Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Computer shutdowns randomly with weird keyboard auto-typing before it


  • Please log in to reply
11 replies to this topic

#1 Hydra

Hydra

  • Members
  • 11 posts
  • OFFLINE
  •  
  • Local time:06:14 PM

Posted 08 May 2014 - 03:20 AM

It's been like this for 3 months, my computer will open some tabs on firefox (or whatever my cursor is hovering on) and will start typing something like '11' '0111' '5555' etc then the computer starts to shutdown by itself closing all programs and then going off, I'm pretty sure its not about hardware stuff (heat, dust). I've tried to format the hard drive twice, used every single tool recommended here (Junkware tool, Adwcleaner, etc) and while sometimes it seems that it deletes something, it just comes back a few days later to do the same thing.

I'll attach my DDS logs

Attached File  dds.txt   9.54KB   1 downloadsAttached File  attach.txt   3.71KB   1 downloads

ComboFix:

COMBOFIX: ComboFix 14-04-30.01 - Administrador 04/05/2014   9:31.1.4 - x64
Microsoft Windows 7 Ultimate   6.1.7600.0.1252.34.3082.18.4095.2737 [GMT -3:00]
Running from: c:\users\Administrador\Downloads\ComboFix.exe
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
(((((((((((((((((((((((((((((((((((((((   Other Deletions   )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\program files (x86)\ESET\MiNODLogin
c:\program files (x86)\ESET\MiNODLogin\MiNODLogin.exe
c:\program files (x86)\ESET\MiNODLogin\MiNODLogin.jar
c:\program files (x86)\ESET\MiNODLogin\MiNODLoginLib.dll
c:\program files (x86)\ESET\MiNODLogin\servidores.xml
.
.
(((((((((((((((((((((((((   Files Created from 2014-04-04 to 2014-05-04  )))))))))))))))))))))))))))))))
.
.
2014-05-04 12:33 . 2014-05-04 12:33    --------    d-----w-    c:\users\Default\AppData\Local\temp
2014-05-04 12:24 . 2014-05-04 12:24    --------    d-----w-    c:\program files (x86)\Mozilla Maintenance Service
2014-05-04 12:18 . 2014-05-04 12:18    --------    d-----w-    c:\programdata\ATI
2014-05-04 12:18 . 2014-05-04 12:18    --------    d-----w-    c:\program files (x86)\AMD AVT
2014-05-04 12:18 . 2014-05-04 12:18    --------    d-----w-    c:\program files (x86)\AMD APP
2014-05-04 12:16 . 2012-05-14 06:12    96896    ----a-w-    c:\windows\system32\drivers\AtihdW76.sys
2014-05-04 12:15 . 2014-05-04 12:16    --------    d-----w-    c:\windows\LastGood.Tmp
2014-05-04 12:15 . 2012-07-28 03:43    70144    ----a-w-    c:\windows\system32\coinst_8.982.dll
2014-05-04 12:15 . 2012-07-28 02:10    442368    ----a-w-    c:\windows\system32\ATIDEMGX.dll
2014-05-04 12:04 . 2014-05-04 12:04    0    ----a-w-    c:\windows\ativpsrm.bin
2014-05-04 11:42 . 2014-05-04 11:42    --------    d-----w-    c:\program files\Trend Micro
2014-05-04 11:38 . 2012-08-31 11:18    7164176    ----a-w-    c:\windows\system32\R4EEP64A.dll
2014-05-04 11:37 . 2014-05-04 12:18    --------    d-----w-    c:\programdata\AMD
2014-05-04 11:37 . 2010-02-18 12:18    46136    ----a-w-    c:\windows\system32\drivers\amdiox64.sys
2014-05-04 11:37 . 2014-05-04 12:17    --------    d-----w-    c:\program files\ATI Technologies
2014-05-04 11:37 . 2010-06-17 09:15    16440    ----a-w-    c:\windows\system32\drivers\AtiPcie64.sys
2014-05-04 11:36 . 2014-05-04 11:36    --------    d-----w-    c:\program files\ATI
2014-05-04 11:36 . 2014-05-04 12:16    --------    d-----w-    c:\program files (x86)\ATI Technologies
2014-05-04 11:27 . 2014-05-04 11:27    --------    d-----w-    C:\MSI
2014-05-04 10:48 . 2014-05-04 10:48    --------    d-----w-    c:\windows\system32\appmgmt
2014-05-04 10:31 . 2009-08-07 02:24    38112    ----a-w-    c:\windows\system32\wups.dll
2014-05-04 10:31 . 2009-08-07 02:23    700640    ----a-w-    c:\windows\system32\wuapi.dll
2014-05-04 10:31 . 2009-08-07 01:59    98816    ----a-w-    c:\windows\system32\wudriver.dll
2014-05-04 10:31 . 2009-08-06 22:23    185416    ----a-w-    c:\windows\system32\wuwebv.dll
2014-05-04 10:31 . 2009-08-06 21:59    36864    ----a-w-    c:\windows\system32\wuapp.exe
2014-05-04 10:31 . 2009-08-07 02:24    43744    ----a-w-    c:\windows\system32\wups2.dll
2014-05-04 10:31 . 2009-08-07 02:24    57560    ----a-w-    c:\windows\system32\wuauclt.exe
2014-05-04 10:31 . 2009-08-07 02:24    2424024    ----a-w-    c:\windows\system32\wuaueng.dll
2014-05-04 10:31 . 2009-08-07 01:59    2621440    ----a-w-    c:\windows\system32\wucltux.dll
2014-05-04 10:29 . 2007-05-16 19:45    4496232    ----a-w-    c:\windows\system32\d3dx9_34.dll
2014-05-04 10:28 . 2014-05-04 10:28    --------    d-----w-    c:\program files (x86)\Microsoft
2014-05-04 10:27 . 2014-05-04 10:27    --------    d-----w-    c:\program files (x86)\Windows Live SkyDrive
2014-05-04 10:26 . 2014-05-04 10:28    --------    d-----w-    c:\program files (x86)\Windows Live
2014-05-04 10:26 . 2014-05-04 10:26    --------    d-----w-    c:\windows\SysWow64\Macromed
2014-05-04 10:25 . 2014-05-04 10:25    --------    d-----w-    c:\programdata\Apple Computer
2014-05-04 10:25 . 2010-03-17 20:53    94208    ----a-w-    c:\windows\SysWow64\QuickTimeVR.qtx
2014-05-04 10:25 . 2010-03-17 20:53    69632    ----a-w-    c:\windows\SysWow64\QuickTime.qts
2014-05-04 10:25 . 2010-03-17 20:53    180224    ----a-w-    c:\windows\SysWow64\QTCF.dll
2014-05-04 10:25 . 2014-05-04 10:25    --------    d-----w-    c:\program files (x86)\QT Lite
2014-05-04 10:25 . 2014-05-04 11:38    --------    d--h--w-    c:\program files (x86)\InstallShield Installation Information
2014-05-04 10:25 . 2014-05-04 10:25    --------    d-----w-    c:\program files (x86)\Common Files\CyberLink
2014-05-04 10:24 . 2014-05-04 10:24    --------    d-----w-    c:\program files (x86)\CyberLink
2014-05-04 10:24 . 2014-05-04 10:24    29480    ----a-w-    c:\windows\SysWow64\msxml3a.dll
2014-05-04 10:23 . 2014-05-04 10:23    --------    d-----w-    c:\windows\SysWow64\Adobe
2014-05-04 10:23 . 2014-05-04 10:23    --------    d-----w-    c:\program files (x86)\MSECache
2014-05-04 10:21 . 2014-05-04 10:21    --------    d-----w-    c:\program files (x86)\Common Files\Adobe
2014-05-04 10:21 . 2014-05-04 12:18    --------    d-sh--w-    c:\windows\Installer
2014-05-04 10:18 . 2009-12-08 16:40    11956    ----a-w-    c:\windows\SysWow64\PorDefecto_Win7_64bits.reg
2014-05-04 10:18 . 2009-12-08 16:40    11723    ----a-w-    c:\windows\SysWow64\PorDefecto_Win7_32bits.reg
2014-05-04 10:18 . 2009-07-14 01:41    44544    ----a-w-    c:\windows\system32\themeservice.dll.backup
2014-05-04 10:18 . 2009-07-14 01:41    2851328    ----a-w-    c:\windows\system32\themeui.dll.backup
2014-05-04 10:18 . 2009-07-14 01:41    332288    ----a-w-    c:\windows\system32\uxtheme.dll.backup
2014-05-04 06:12 . 2014-05-04 10:17    --------    d-----w-    c:\windows\Panther
2014-05-04 06:12 . 2010-06-29 09:57    11756    ----a-r-    c:\windows\system32\ServiciosPorDefecto_Win7_32bits.reg
2014-05-04 06:12 . 2010-06-29 09:57    11989    ----a-r-    c:\windows\system32\ServiciosPorDefecto_Win7_64bits.reg
.
.
.
((((((((((((((((((((((((((((((((((((((((   Find3M Report   ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2014-05-04 10:24 . 2010-04-29 09:47    505128    ----a-w-    c:\windows\SysWow64\msvcp71.dll
2014-05-04 10:24 . 2010-04-29 09:47    353576    ----a-w-    c:\windows\SysWow64\msvcr71.dll
2014-05-04 10:18 . 2009-07-13 23:54    2851328    ----a-w-    c:\windows\system32\themeui.dll
2014-05-04 10:18 . 2009-07-13 23:54    44544    ----a-w-    c:\windows\system32\themeservice.dll
2014-05-04 10:18 . 2009-07-13 23:55    332288    ----a-w-    c:\windows\system32\uxtheme.dll
.
.
(((((((((((((((((((((((((((((((((((((   Reg Loading Points   ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"SunJavaUpdateSched"="-" [X]
"Super-Charger"="c:\program files (x86)\MSI\Super-Charger\Super-Charger.exe" [2012-10-23 502328]
"StartCCC"="c:\program files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2012-08-06 642216]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"EnableLUA"= 0 (0x0)
"ConsentPromptBehaviorAdmin"= 0 (0x0)
"ConsentPromptBehaviorUser"= 0 (0x0)
"PromptOnSecureDesktop"= 0 (0x0)
.
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\system]
"DisableLockWorkstation"= 1 (0x1)
.
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer]
"AlwaysShowClassicMenu"= 1 (0x1)
"NoResolveTrack"= 1 (0x1)
.
R3 NTIOLib_1_0_C;NTIOLib_1_0_C;e:\ntiolib_x64.sys;e:\NTIOLib_X64.sys [x]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe;c:\windows\SYSNATIVE\atiesrxx.exe [x]
S2 AMD FUEL Service;AMD FUEL Service;c:\program files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe;c:\program files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [x]
S2 AODDriver4.1;AODDriver4.1;c:\program files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys;c:\program files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [x]
S2 MSI_SuperCharger;MSI_SuperCharger;c:\program files (x86)\MSI\Super-Charger\ChargeService.exe;c:\program files (x86)\MSI\Super-Charger\ChargeService.exe [x]
S3 amdiox64;AMD IO Driver;c:\windows\system32\DRIVERS\amdiox64.sys;c:\windows\SYSNATIVE\DRIVERS\amdiox64.sys [x]
S3 AtiHDAudioService;AMD Function Driver for HD Audio Service;c:\windows\system32\drivers\AtihdW76.sys;c:\windows\SYSNATIVE\drivers\AtihdW76.sys [x]
S3 NTIOLib_1_0_3;NTIOLib_1_0_3;c:\program files (x86)\MSI\Super-Charger\NTIOLib_X64.sys;c:\program files (x86)\MSI\Super-Charger\NTIOLib_X64.sys [x]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys;c:\windows\SYSNATIVE\DRIVERS\Rt64win7.sys [x]
S3 usbfilter;AMD USB Filter Driver;c:\windows\system32\DRIVERS\usbfilter.sys;c:\windows\SYSNATIVE\DRIVERS\usbfilter.sys [x]
.
.
--- Other Services/Drivers In Memory ---
.
*NewlyCreated* - NTIOLIB_1_0_3
*NewlyCreated* - WS2IFSL
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2014-05-04 11:52    1078088    ----a-w-    c:\program files (x86)\Google\Chrome\Application\34.0.1847.131\Installer\chrmstp.exe
.
Contents of the 'Scheduled Tasks' folder
.
2014-05-04 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2014-05-04 11:38]
.
2014-05-04 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2014-05-04 11:38]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RTHDVCPL"="c:\program files\Realtek\Audio\HDA\RtkNGUI64.exe" [2012-09-13 6839952]
.
------- Supplementary Scan -------
.
uStart Page = hxxp://www.google.com.ar
uLocal Page = c:\windows\system32\blank.htm
mLocal Page = c:\windows\SysWOW64\blank.htm
uSearchURL,(Default) = hxxp://www.google.com/keyword/%s
IE: E&xportar a Microsoft Excel - c:\progra~2\MICROS~1\OFFICE11\EXCEL.EXE/3000
TCP: DhcpNameServer = 10.0.0.2
FF - ProfilePath - c:\users\Administrador\AppData\Roaming\Mozilla\Firefox\Profiles\q32brp3f.default\
.
- - - - ORPHANS REMOVED - - - -
.
AddRemove-Adobe Shockwave Player - c:\windows\system32\Adobe\Shockwave 11\uninstaller.exe
.
.
.
--------------------- LOCKED REGISTRY KEYS ---------------------
.
[HKEY_USERS\S-1-5-21-1683039108-844445456-3957198558-500\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.htm\UserChoice]
@Denied: (2) (Administrator)
"Progid"="FirefoxHTML"
.
[HKEY_USERS\S-1-5-21-1683039108-844445456-3957198558-500\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.html\UserChoice]
@Denied: (2) (Administrator)
"Progid"="FirefoxHTML"
.
[HKEY_USERS\S-1-5-21-1683039108-844445456-3957198558-500\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.shtml\UserChoice]
@Denied: (2) (Administrator)
"Progid"="FirefoxHTML"
.
[HKEY_USERS\S-1-5-21-1683039108-844445456-3957198558-500\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.xht\UserChoice]
@Denied: (2) (Administrator)
"Progid"="FirefoxHTML"
.
[HKEY_USERS\S-1-5-21-1683039108-844445456-3957198558-500\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.xhtml\UserChoice]
@Denied: (2) (Administrator)
"Progid"="FirefoxHTML"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{19114156-8E9A-4D4E-9EE9-17A0E48D3BBB}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil10e.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{19114156-8E9A-4D4E-9EE9-17A0E48D3BBB}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{19114156-8E9A-4D4E-9EE9-17A0E48D3BBB}\LocalServer32]
@="c:\\Windows\\SysWow64\\Macromed\\Flash\\FlashUtil10e.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{19114156-8E9A-4D4E-9EE9-17A0E48D3BBB}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWow64\\Macromed\\Flash\\Flash10e.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.10"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWow64\\Macromed\\Flash\\Flash10e.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWow64\\Macromed\\Flash\\Flash10e.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWow64\\Macromed\\Flash\\Flash10e.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{1D4C8A81-B7AC-460A-8C23-98713C41D6B3}]
@Denied: (A 2) (Everyone)
@="IFlashBroker3"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{1D4C8A81-B7AC-460A-8C23-98713C41D6B3}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{1D4C8A81-B7AC-460A-8C23-98713C41D6B3}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Completion time: 2014-05-04  09:37:33 - machine was rebooted
ComboFix-quarantined-files.txt  2014-05-04 12:37
.
Pre-Run: 190.684.438.528 bytes libres
Post-Run: 190.463.410.176 bytes libres
.
- - End Of File - - 57F0DF53223616F07D57FEF094E6E059
A36C5E4F47E84449FF07ED3517B43A31

 



BC AdBot (Login to Remove)

 


m

#2 nasdaq

nasdaq

  • Malware Response Team
  • 38,264 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Montreal, QC. Canada
  • Local time:03:14 PM

Posted 11 May 2014 - 09:18 AM

Hello, Welcome to BleepingComputer.
I'm nasdaq and will be helping you.

If you can please print this topic it will make it easier for you to follow the instructions and complete all of the necessary steps in the order listed.
===

There are 44 open topics and yours was the 12th one.

my computer will open some tabs on firefox (or whatever my cursor is hovering on) and will start typing something like '11' '0111' '5555' etc then the computer starts to shutdown by itself closing all programs and then going off,

I suspect that this is caused by a failing mouse. I have seen this activiry before.
Replace your mouse .

Download the correct version of this tool for your operating system.
Farbar Recovery Scan Tool (64 bit)
Farbar Recovery Scan Tool (32 bit)
and save it to a folder on your computer's Desktop.
Double-click to run it. When the tool opens click Yes to disclaimer.
Press Scan button.
It will make a log (FRST.txt) in the same directory the tool is run. Please copy and paste it to your reply.
The first time the tool is run, it makes also another log (Addition.txt). Please attach it to your reply.

===

Please paste the logs in your next reply DO NOT ATTACH THEM unless specified.

Let me know what problem persists.

#3 Hydra

Hydra
  • Topic Starter

  • Members
  • 11 posts
  • OFFLINE
  •  
  • Local time:06:14 PM

Posted 11 May 2014 - 10:00 AM

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 11-05-2014
Ran by Administrador (administrator) on WIN-PNBUVJ9FTUG on 11-05-2014 11:57:35
Running from C:\Users\Administrador\Downloads
Platform: Windows 7 Ultimate (X64) OS Language: Spanish Modern Sort
Internet Explorer Version 8
Boot Mode: Safe Mode (with Networking)

The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/81/
Download link for 64-Bit Version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/82/
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [6839952 2012-09-12] (Realtek Semiconductor)
HKLM-x32\...\Run: [SunJavaUpdateSched] => -
HKLM-x32\...\Run: [Super-Charger] => C:\Program Files (x86)\MSI\Super-Charger\Super-Charger.exe [502328 2012-10-23] (MSI)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [642216 2012-08-06] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [SDTray] => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe [4101584 2014-04-25] (Safer-Networking Ltd.)
Winlogon\Notify\SDWinLogon-x32: SDWinLogon.dll [X]
HKU\S-1-5-21-1683039108-844445456-3957198558-500\...\Run: [puush] => C:\Program Files (x86)\puush\puush.exe [567880 2014-05-04] ()
HKU\S-1-5-21-1683039108-844445456-3957198558-500\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [20922016 2014-02-10] (Skype Technologies S.A.)
HKU\S-1-5-21-1683039108-844445456-3957198558-500\...\Policies\system: [DisableLockWorkstation] 1
HKU\S-1-5-21-1683039108-844445456-3957198558-500\...\Policies\Explorer: [AlwaysShowClassicMenu] 1
HKU\S-1-5-21-1683039108-844445456-3957198558-500\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1
HKU\S-1-5-21-1683039108-844445456-3957198558-500\...\Policies\Explorer: [NoRecentDocsHistory] 1
HKU\S-1-5-21-1683039108-844445456-3957198558-500\...\Policies\Explorer: [NoRecentDocsMenu] 1
HKU\S-1-5-21-1683039108-844445456-3957198558-500\...\Policies\Explorer: [NoCDBurning] 1

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = www.google.com
StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
BHO-x32: Adobe PDF Link Helper - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
BHO-x32: Windows Live Aplicación auxiliar de inicio de sesión - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
BHO-x32: Java™ Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
Toolbar: HKCU - No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} -  No File
DPF: HKLM {7530BFB8-7293-4D34-9923-61A11451AFC5} http://download.eset.com/special/eos/OnlineScanner.cab
Handler-x32: http\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: http\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: https\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: https\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.14.0.8117.0416.dll (Microsoft Corporation)
Handler-x32: msdaipp\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: msdaipp\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.14.0.8117.0416.dll (Microsoft Corporation)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Filter: text/xml - {807553E5-5146-11D5-A672-00B0D022E945} -  No File
Tcpip\Parameters: [DhcpNameServer] 10.0.0.2

FireFox:
========
FF ProfilePath: C:\Users\Administrador\AppData\Roaming\Mozilla\Firefox\Profiles\q32brp3f.default
FF SearchEngineOrder.1: (Google)
FF SelectedSearchEngine: Google
FF Homepage: hxxp://google.com
FF Keyword.URL: https://www.google.com/search?q=
FF NetworkProxy: "autoconfig_url", "https://mediahint.com/default.pac"
FF NetworkProxy: "type", 2
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_13_0_0_206.dll ()
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_13_0_0_206.dll ()
FF Plugin-x32: @adobe.com/ShockwavePlayer - C:\Windows\system32\Adobe\Director\np32dsw.dll No File
FF Plugin-x32: @pandonetworks.com/PandoWebPlugin - C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.24.7\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.24.7\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: pandonetworks.com/PandoWebPlugin - C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin2.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin3.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin4.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin5.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin6.dll (Apple Inc.)
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\creativecommons.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\drae.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\mercadolibre-ar.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-ar.xml
FF Extension: Media Hint - C:\Users\Administrador\AppData\Roaming\Mozilla\Firefox\Profiles\q32brp3f.default\Extensions\mediahint@jetpack.xpi [2014-05-04]
FF Extension: Adblock Plus - C:\Users\Administrador\AppData\Roaming\Mozilla\Firefox\Profiles\q32brp3f.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2014-05-04]

Chrome:
=======
CHR HomePage: hxxp://www.google.com/
CHR StartupUrls: "hxxp://www.google.com/"
CHR DefaultSearchURL: {google:baseURL}search?{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}{google:searchFieldtrialParameter}{google:instantFieldTrialGroupParameter}sourceid=chrome&ie={inputEncoding}&q={searchTerms}
CHR Extension: (Google Docs) - C:\Users\Administrador\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-05-04]
CHR Extension: (Google Drive) - C:\Users\Administrador\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-05-04]
CHR Extension: (YouTube) - C:\Users\Administrador\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-05-04]
CHR Extension: (Google Search) - C:\Users\Administrador\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-05-04]
CHR Extension: (Google Wallet) - C:\Users\Administrador\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-05-04]
CHR Extension: (Gmail) - C:\Users\Administrador\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-05-04]

==================== Services (Whitelisted) =================

S2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [361984 2012-08-06] (Advanced Micro Devices, Inc.)
S2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [1809720 2014-04-03] (Malwarebytes Corporation)
S2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [857912 2014-04-03] (Malwarebytes Corporation)
S2 MSI_SuperCharger; C:\Program Files (x86)\MSI\Super-Charger\ChargeService.exe [143416 2012-10-25] (MSI)
S2 SDScannerService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [1738200 2014-04-25] (Safer-Networking Ltd.)
S2 SDUpdateService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [2081752 2014-04-25] (Safer-Networking Ltd.)
S2 SDWSCService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [171928 2014-04-25] (Safer-Networking Ltd.)

==================== Drivers (Whitelisted) ====================

S2 AODDriver4.1; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [53888 2012-03-05] (Advanced Micro Devices)
S3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2014-04-03] (Malwarebytes Corporation)
S3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [63192 2014-04-03] (Malwarebytes Corporation)
S3 NTIOLib_1_0_3; C:\Program Files (x86)\MSI\Super-Charger\NTIOLib_X64.sys [13368 2012-10-25] (MSI)
S3 catchme; \??\C:\ComboFix\catchme.sys [X]
S3 NTIOLib_1_0_C; \??\E:\NTIOLib_X64.sys [X]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-05-11 11:57 - 2014-05-11 11:57 - 00010845 _____ () C:\Users\Administrador\Downloads\FRST.txt
2014-05-11 11:57 - 2014-05-11 11:57 - 00000000 ____D () C:\FRST
2014-05-11 11:56 - 2014-05-11 11:57 - 02066432 _____ (Farbar) C:\Users\Administrador\Downloads\FRST64.exe
2014-05-09 20:14 - 2014-05-09 20:14 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-05-08 06:47 - 2014-05-08 06:47 - 00000000 ___SD () C:\ComboFix
2014-05-07 19:15 - 2014-05-07 19:16 - 01316991 _____ () C:\Users\Administrador\Downloads\AdwCleaner.exe
2014-05-07 19:13 - 2014-05-07 19:13 - 00982016 _____ (Farbar) C:\Users\Administrador\Downloads\MiniToolBox.exe
2014-05-07 19:13 - 2014-05-07 19:13 - 00024009 _____ () C:\Users\Administrador\Downloads\Result.txt
2014-05-07 18:51 - 2014-05-07 19:11 - 00000454 _____ () C:\Users\Administrador\Desktop\ffe.txt
2014-05-07 14:04 - 2014-05-07 14:04 - 00000000 ____D () C:\Users\Administrador\Desktop\Nueva carpeta
2014-05-07 13:59 - 2014-05-07 13:59 - 00000000 ____D () C:\Users\Administrador\AppData\Local\Skype
2014-05-07 13:58 - 2014-05-10 14:28 - 00000000 ____D () C:\Users\Administrador\AppData\Roaming\Skype
2014-05-07 13:58 - 2014-05-07 13:58 - 00002697 _____ () C:\Users\Public\Desktop\Skype.lnk
2014-05-07 13:58 - 2014-05-07 13:58 - 00000000 ___RD () C:\Program Files (x86)\Skype
2014-05-07 13:58 - 2014-05-07 13:58 - 00000000 ____D () C:\ProgramData\Skype
2014-05-07 13:58 - 2014-05-07 13:58 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2014-05-07 13:57 - 2014-05-07 13:57 - 01678496 _____ (Skype Technologies S.A.) C:\Users\Administrador\Downloads\SkypeSetup.exe
2014-05-05 13:12 - 2014-05-05 13:12 - 00000000 ____D () C:\Users\Administrador\AppData\Roaming\LolClient
2014-05-05 13:11 - 2014-05-05 13:11 - 00001111 _____ () C:\Users\Administrador\Desktop\system - Acceso directo.lnk
2014-05-05 10:00 - 2014-05-05 10:00 - 00000000 ____D () C:\Users\Administrador\Documents\ProcAlyzer Dumps
2014-05-05 09:59 - 2014-05-05 09:59 - 00000000 ____D () C:\Windows\System32\Tasks\Safer-Networking
2014-05-05 09:58 - 2014-05-05 10:30 - 00000000 ____D () C:\ProgramData\Spybot - Search & Destroy
2014-05-05 09:58 - 2014-05-05 10:05 - 00000000 ____D () C:\Program Files (x86)\Spybot - Search & Destroy 2
2014-05-05 09:58 - 2014-05-05 09:58 - 00001391 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot-S&D Start Center.lnk
2014-05-05 09:58 - 2014-05-05 09:58 - 00001379 _____ () C:\Users\Public\Desktop\Spybot-S&D Start Center.lnk
2014-05-05 09:58 - 2014-05-05 09:58 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot - Search & Destroy 2
2014-05-05 09:58 - 2013-09-20 10:49 - 00021040 _____ (Safer Networking Limited) C:\Windows\system32\sdnclean64.exe
2014-05-05 09:54 - 2014-05-05 09:58 - 46392680 _____ (Safer-Networking Ltd. ) C:\Users\Administrador\Downloads\spybot-2.3.exe
2014-05-05 09:35 - 2014-05-05 09:41 - 00017819 _____ () C:\Users\Administrador\Desktop\hijackthis.log
2014-05-05 09:31 - 2014-05-05 09:31 - 00002971 _____ () C:\Users\Administrador\Desktop\HiJackThis.lnk
2014-05-05 09:31 - 2014-05-05 09:31 - 00000000 ____D () C:\Users\Administrador\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\HiJackThis
2014-05-05 09:31 - 2014-05-05 09:31 - 00000000 ____D () C:\Program Files (x86)\Trend Micro
2014-05-05 09:30 - 2014-05-05 09:30 - 01402880 _____ () C:\Users\Administrador\Downloads\HiJackThis.msi
2014-05-05 09:24 - 2014-05-05 09:30 - 00000000 ____D () C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2014-05-05 09:22 - 2014-05-05 09:30 - 00000000 ____D () C:\Users\Administrador\Desktop\mbar
2014-05-05 09:22 - 2014-05-05 09:22 - 12589848 _____ (Malwarebytes Corp.) C:\Users\Administrador\Downloads\mbar-1.07.0.1009.exe
2014-05-05 09:17 - 2014-05-05 09:18 - 00010827 _____ () C:\AT-Destroyer.txt
2014-05-05 09:16 - 2014-05-05 09:17 - 00000000 ____D () C:\_AT-Destroyer
2014-05-05 09:16 - 2014-05-05 09:16 - 01199088 _____ () C:\Users\Administrador\Downloads\AT-Destroyer.exe
2014-05-05 09:15 - 2014-05-10 14:24 - 00000728 _____ () C:\Windows\setupact.log
2014-05-05 09:15 - 2014-05-05 09:15 - 00000000 _____ () C:\Windows\setuperr.log
2014-05-05 09:10 - 2014-05-05 09:10 - 00000000 ____D () C:\TDSSKiller_Quarantine
2014-05-05 07:33 - 2014-05-05 07:34 - 04164448 _____ (Kaspersky Lab ZAO) C:\Users\Administrador\Downloads\tdsskiller.exe
2014-05-05 07:29 - 2014-05-05 07:32 - 00000000 ____D () C:\Program Files (x86)\Trojan . Shutdown Removal Tool
2014-05-05 07:29 - 2014-05-05 07:29 - 00001419 _____ () C:\Users\Administrador\Desktop\Trojan . Shutdown Removal Tool.lnk
2014-05-05 07:29 - 2014-05-05 07:29 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Trojan . Shutdown Removal Tool
2014-05-05 07:29 - 2013-11-05 14:38 - 01122304 _____ (The OpenSSL Project, http://www.openssl.org/) C:\Windows\SysWOW64\libeay32.dll
2014-05-05 07:29 - 2013-11-05 14:38 - 00274432 _____ (The OpenSSL Project, http://www.openssl.org/) C:\Windows\SysWOW64\ssleay32.dll
2014-05-05 07:29 - 2012-12-10 11:04 - 00356352 _____ (eSellerate Inc.) C:\Windows\eSellerateEngine.dll
2014-05-05 07:29 - 2012-12-10 11:04 - 00081920 _____ (eSellerate Inc.) C:\Windows\eSellerateControl350.dll
2014-05-05 07:26 - 2014-05-05 07:26 - 03249776 _____ (Security Stronghold ) C:\Users\Administrador\Downloads\Trojan.ShutdownRemovalTool.exe
2014-05-05 07:24 - 2014-05-09 07:14 - 00002938 _____ () C:\Windows\PFRO.log
2014-05-04 20:14 - 2014-05-07 09:45 - 00000000 ____D () C:\Users\Administrador\AppData\Roaming\TS3Client
2014-05-04 20:14 - 2014-05-04 20:14 - 00000967 _____ () C:\Users\Public\Desktop\TeamSpeak 3 Client.lnk
2014-05-04 20:14 - 2014-05-04 20:14 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamSpeak 3 Client
2014-05-04 20:14 - 2014-05-04 20:14 - 00000000 ____D () C:\Program Files\TeamSpeak 3 Client
2014-05-04 20:03 - 2014-05-04 20:14 - 29498592 _____ (TeamSpeak Systems GmbH) C:\Users\Administrador\Downloads\TeamSpeak3-Client-win64-3.0.14.exe
2014-05-04 19:33 - 2014-05-05 09:16 - 00000000 ____D () C:\ProgramData\Package Cache
2014-05-04 19:32 - 2014-05-04 19:33 - 04530864 _____ (Avira Operations GmbH & Co. KG) C:\Users\Administrador\Downloads\avira_es_av___ws.exe
2014-05-04 18:50 - 2014-05-04 18:50 - 00000000 ____D () C:\Users\Administrador\AppData\Roaming\Google
2014-05-04 18:19 - 2014-05-10 14:25 - 00119512 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-05-04 18:19 - 2014-05-05 09:22 - 00091352 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2014-05-04 18:19 - 2014-05-04 19:29 - 00001102 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2014-05-04 18:19 - 2014-05-04 19:29 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2014-05-04 18:19 - 2014-05-04 19:29 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware
2014-05-04 18:19 - 2014-05-04 18:19 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-05-04 18:19 - 2014-04-03 09:51 - 00063192 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2014-05-04 18:19 - 2014-04-03 09:50 - 00025816 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2014-05-04 18:17 - 2014-05-04 18:19 - 17523520 _____ (Malwarebytes Corporation ) C:\Users\Administrador\Downloads\mbam-setup.exe
2014-05-04 18:14 - 2014-05-04 18:14 - 00000768 _____ () C:\Users\Administrador\Desktop\JRT.txt
2014-05-04 18:12 - 2014-05-04 18:12 - 00000000 ____D () C:\Windows\ERUNT
2014-05-04 18:06 - 2010-08-30 08:34 - 00536576 _____ (SQLite Development Team) C:\Windows\SysWOW64\sqlite3.dll
2014-05-04 18:05 - 2014-05-07 19:17 - 00000000 ____D () C:\AdwCleaner
2014-05-04 18:04 - 2014-05-04 18:04 - 01016261 _____ (Thisisu) C:\Users\Administrador\Downloads\JRT.exe
2014-05-04 10:24 - 2014-05-04 18:29 - 00000000 ____D () C:\Program Files (x86)\puush
2014-05-04 10:24 - 2014-05-04 10:24 - 01085440 _____ () C:\Users\Administrador\Downloads\puush.msi
2014-05-04 10:24 - 2014-05-04 10:24 - 00000000 ____D () C:\Users\Administrador\AppData\Roaming\puush
2014-05-04 10:24 - 2014-05-04 10:24 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\puush
2014-05-04 10:16 - 2014-05-04 10:16 - 00000000 ____D () C:\Users\Administrador\AppData\Roaming\Macromedia
2014-05-04 10:16 - 2014-05-04 10:16 - 00000000 ____D () C:\Users\Administrador\AppData\Roaming\Adobe
2014-05-04 10:16 - 2014-05-04 10:16 - 00000000 ____D () C:\Users\Administrador\AppData\Local\Macromedia
2014-05-04 10:14 - 2014-05-09 22:10 - 00000838 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-05-04 10:14 - 2014-05-04 10:14 - 00692400 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-05-04 10:14 - 2014-05-04 10:14 - 00070832 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-05-04 10:14 - 2014-05-04 10:14 - 00003776 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-05-04 10:14 - 2014-05-04 10:14 - 00000000 ____D () C:\Windows\system32\Macromed
2014-05-04 10:14 - 2014-05-04 10:14 - 00000000 ____D () C:\ProgramData\McAfee
2014-05-04 10:13 - 2014-05-04 10:16 - 00000000 ____D () C:\Users\Administrador\AppData\Local\Adobe
2014-05-04 09:45 - 2014-05-04 09:45 - 00001613 _____ () C:\Users\Public\Desktop\Play League of Legends.lnk
2014-05-04 09:45 - 2014-05-04 09:45 - 00000000 ____D () C:\Riot Games
2014-05-04 09:45 - 2014-05-04 09:45 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\League of Legends
2014-05-04 09:45 - 2008-07-12 08:18 - 03851784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_39.dll
2014-05-04 09:45 - 2008-07-12 08:18 - 01493528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_39.dll
2014-05-04 09:45 - 2008-07-12 08:18 - 00467984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_39.dll
2014-05-04 09:44 - 2014-05-10 14:43 - 00000000 ____D () C:\Users\Administrador\AppData\Local\PMB Files
2014-05-04 09:44 - 2014-05-07 09:13 - 00000000 ____D () C:\ProgramData\PMB Files
2014-05-04 09:44 - 2014-05-04 09:44 - 00000000 ____D () C:\Users\Administrador\AppData\Roaming\Riot Games
2014-05-04 09:44 - 2014-05-04 09:44 - 00000000 ____D () C:\Program Files (x86)\Pando Networks
2014-05-04 09:42 - 2014-05-04 09:44 - 32268976 _____ (Riot Games) C:\Users\Administrador\Downloads\LeagueofLegends_LA1_Installer_06_11_13.exe
2014-05-04 09:30 - 2014-05-08 06:47 - 00000000 ____D () C:\Qoobox
2014-05-04 09:30 - 2014-05-04 09:36 - 00000000 ____D () C:\Windows\erdnt
2014-05-04 09:30 - 2011-06-26 03:45 - 00256000 _____ () C:\Windows\PEV.exe
2014-05-04 09:30 - 2010-11-07 14:20 - 00208896 _____ () C:\Windows\MBR.exe
2014-05-04 09:30 - 2009-04-20 01:56 - 00060416 _____ (NirSoft) C:\Windows\NIRCMD.exe
2014-05-04 09:30 - 2000-08-30 21:00 - 00518144 _____ (SteelWerX) C:\Windows\SWREG.exe
2014-05-04 09:30 - 2000-08-30 21:00 - 00406528 _____ (SteelWerX) C:\Windows\SWSC.exe
2014-05-04 09:30 - 2000-08-30 21:00 - 00098816 _____ () C:\Windows\sed.exe
2014-05-04 09:30 - 2000-08-30 21:00 - 00080412 _____ () C:\Windows\grep.exe
2014-05-04 09:30 - 2000-08-30 21:00 - 00068096 _____ () C:\Windows\zip.exe
2014-05-04 09:29 - 2014-05-04 09:30 - 05197895 ____R (Swearware) C:\Users\Administrador\Downloads\ComboFix.exe
2014-05-04 09:28 - 2014-05-04 09:28 - 00688992 ____R (Swearware) C:\Users\Administrador\Downloads\dds.com
2014-05-04 09:28 - 2014-05-04 09:28 - 00009769 _____ () C:\Users\Administrador\Desktop\dds.txt
2014-05-04 09:28 - 2014-05-04 09:28 - 00003803 _____ () C:\Users\Administrador\Desktop\attach.txt
2014-05-04 09:24 - 2014-05-11 11:55 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2014-05-04 09:24 - 2014-05-04 09:24 - 00001159 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2014-05-04 09:24 - 2014-05-04 09:24 - 00001147 _____ () C:\Users\Public\Desktop\Mozilla Firefox.lnk
2014-05-04 09:24 - 2014-05-04 09:24 - 00000000 ____D () C:\Users\Administrador\AppData\Roaming\Mozilla
2014-05-04 09:24 - 2014-05-04 09:24 - 00000000 ____D () C:\ProgramData\Mozilla
2014-05-04 09:22 - 2014-05-04 09:22 - 00283080 _____ (Mozilla) C:\Users\Administrador\Downloads\Firefox Setup Stub 29.0.exe
2014-05-04 09:18 - 2014-05-04 09:24 - 00000000 ____D () C:\Users\Administrador\AppData\Local\Mozilla
2014-05-04 09:18 - 2014-05-04 09:18 - 00000000 ____D () C:\ProgramData\ATI
2014-05-04 09:18 - 2014-05-04 09:18 - 00000000 ____D () C:\Program Files (x86)\AMD AVT
2014-05-04 09:18 - 2014-05-04 09:18 - 00000000 ____D () C:\Program Files (x86)\AMD APP
2014-05-04 09:17 - 2014-05-04 09:17 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD VISION Engine Control Center
2014-05-04 09:16 - 2012-05-14 03:12 - 00096896 _____ (Advanced Micro Devices) C:\Windows\system32\Drivers\AtihdW76.sys
2014-05-04 09:15 - 2012-07-28 00:43 - 00070144 _____ (AMD) C:\Windows\system32\coinst_8.982.dll
2014-05-04 09:15 - 2012-07-27 23:17 - 00268728 _____ () C:\Windows\SysWOW64\atiapfxx.blb
2014-05-04 09:15 - 2012-07-27 23:17 - 00268728 _____ () C:\Windows\system32\atiapfxx.blb
2014-05-04 09:15 - 2012-07-27 23:10 - 00442368 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\ATIDEMGX.dll
2014-05-04 09:15 - 2012-07-27 22:39 - 00204952 _____ () C:\Windows\SysWOW64\ativvsvl.dat
2014-05-04 09:15 - 2012-07-27 22:39 - 00204952 _____ () C:\Windows\system32\ativvsvl.dat
2014-05-04 09:15 - 2012-07-27 22:39 - 00157144 _____ () C:\Windows\SysWOW64\ativvsva.dat
2014-05-04 09:15 - 2012-07-27 22:39 - 00157144 _____ () C:\Windows\system32\ativvsva.dat
2014-05-04 09:15 - 2012-07-16 06:33 - 00038557 _____ () C:\Windows\atiogl.xml
2014-05-04 09:10 - 2014-05-04 09:10 - 00000000 ____D () C:\Users\Administrador\AppData\Roaming\ATI
2014-05-04 09:10 - 2014-05-04 09:10 - 00000000 ____D () C:\Users\Administrador\AppData\Local\ATI
2014-05-04 09:10 - 2014-05-04 09:10 - 00000000 ____D () C:\Users\Administrador\AppData\Local\AMD
2014-05-04 09:04 - 2014-05-04 09:04 - 00000000 _____ () C:\Windows\ativpsrm.bin
2014-05-04 08:42 - 2014-05-04 08:42 - 00000036 _____ () C:\Users\Administrador\AppData\Local\housecall.guid.cache
2014-05-04 08:42 - 2014-05-04 08:42 - 00000000 ____D () C:\Program Files\Trend Micro
2014-05-04 08:39 - 2014-05-05 07:24 - 00000000 ____D () C:\Program Files\Google
2014-05-04 08:39 - 2014-05-04 08:52 - 00002181 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2014-05-04 08:39 - 2014-05-04 08:52 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
2014-05-04 08:39 - 2014-05-04 08:39 - 00002063 _____ () C:\Users\Public\Desktop\Super-Charger.lnk
2014-05-04 08:39 - 2014-05-04 08:39 - 00000000 ____D () C:\Windows\SysWOW64\RTCOM
2014-05-04 08:39 - 2014-05-04 08:39 - 00000000 ____D () C:\SuperChargerProfile
2014-05-04 08:39 - 2014-05-04 08:39 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MSI
2014-05-04 08:39 - 2014-05-04 08:39 - 00000000 ____D () C:\Program Files\Realtek
2014-05-04 08:39 - 2014-05-04 08:39 - 00000000 ____D () C:\Program Files (x86)\MSI
2014-05-04 08:39 - 2012-09-25 13:33 - 07272960 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoRes64.dat
2014-05-04 08:39 - 2012-09-25 09:09 - 04155536 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RTKVHD64.sys
2014-05-04 08:39 - 2012-09-25 08:47 - 00115344 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoInstII64.dll
2014-05-04 08:39 - 2012-09-25 04:12 - 00352341 _____ () C:\Windows\system32\Drivers\RTAIODAT.DAT
2014-05-04 08:39 - 2012-09-24 08:28 - 03643024 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkAPO64.dll
2014-05-04 08:39 - 2012-09-24 05:32 - 02080120 _____ (Waves Audio Ltd.) C:\Windows\system32\WavesGUILib64.dll
2014-05-04 08:39 - 2012-09-11 22:51 - 02743440 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtPgEx64.dll
2014-05-04 08:39 - 2012-08-28 06:25 - 01267856 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTCOM64.dll
2014-05-04 08:39 - 2012-08-21 03:51 - 00881808 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkApi64.dll
2014-05-04 08:39 - 2012-08-13 07:06 - 01561744 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTSnMg64.cpl
2014-05-04 08:39 - 2012-08-10 08:31 - 00770688 _____ (Sony Corporation) C:\Windows\system32\SFSS_APO.dll
2014-05-04 08:39 - 2012-01-30 00:43 - 00836544 _____ (TOSHIBA Corporation) C:\Windows\system32\tadefxapo264.dll
2014-05-04 08:39 - 2012-01-09 23:20 - 00065944 _____ (TOSHIBA CORPORATION.) C:\Windows\system32\tepeqapo64.dll
2014-05-04 08:39 - 2011-12-20 04:32 - 00331880 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtlCPAPI64.dll
2014-05-04 08:39 - 2011-11-22 05:28 - 00014952 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCoLDR64.dll
2014-05-04 08:39 - 2011-09-02 03:21 - 00221024 _____ (Synopsys, Inc.) C:\Windows\system32\SFNHK64.dll
2014-05-04 08:39 - 2011-09-02 03:21 - 00081248 _____ (Synopsys, Inc.) C:\Windows\system32\SFCOM64.dll
2014-05-04 08:39 - 2011-09-02 03:21 - 00078688 _____ (Synopsys, Inc.) C:\Windows\system32\SFAPO64.dll
2014-05-04 08:39 - 2011-03-17 01:17 - 01361336 _____ (TOSHIBA Corporation) C:\Windows\system32\tosade.dll
2014-05-04 08:39 - 2011-03-07 06:11 - 00148416 _____ (TOSHIBA Corporation) C:\Windows\system32\tadefxapo.dll
2014-05-04 08:39 - 2010-11-07 20:31 - 00375128 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEP64A.dll
2014-05-04 08:39 - 2010-11-07 20:31 - 00310104 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DHT64.dll
2014-05-04 08:39 - 2010-11-07 20:31 - 00310104 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DAA64.dll
2014-05-04 08:39 - 2010-11-07 20:31 - 00204120 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEED64A.dll
2014-05-04 08:39 - 2010-11-07 20:31 - 00101208 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEL64A.dll
2014-05-04 08:39 - 2010-11-07 20:31 - 00078680 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEG64A.dll
2014-05-04 08:39 - 2010-11-03 07:30 - 00149608 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCfg64.dll
2014-05-04 08:39 - 2010-07-22 05:48 - 00074064 _____ (Virage Logic Corporation / Sonic Focus) C:\Windows\SysWOW64\SFCOM.dll
2014-05-04 08:39 - 2009-11-23 22:55 - 00518896 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSX64.dll
2014-05-04 08:39 - 2009-11-23 22:55 - 00211184 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSH64.dll
2014-05-04 08:39 - 2009-11-23 22:55 - 00198896 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSHP64.dll
2014-05-04 08:39 - 2009-11-23 22:55 - 00155888 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSWOW64.dll
2014-05-04 08:38 - 2014-05-10 14:24 - 00001046 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-05-04 08:38 - 2014-05-09 21:54 - 00001050 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-05-04 08:38 - 2014-05-09 19:49 - 00004046 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2014-05-04 08:38 - 2014-05-09 19:49 - 00003794 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2014-05-04 08:38 - 2014-05-05 07:24 - 00000000 ____D () C:\Program Files (x86)\Google
2014-05-04 08:38 - 2014-05-04 18:52 - 00000000 ____D () C:\Users\Administrador\AppData\Local\Google
2014-05-04 08:38 - 2014-05-04 08:39 - 00002306 _____ () C:\RHDSetup.log
2014-05-04 08:38 - 2014-05-04 08:39 - 00000189 _____ () C:\mylog.log
2014-05-04 08:38 - 2014-05-04 08:38 - 00000000 ____D () C:\Program Files\Common Files\ATI Technologies
2014-05-04 08:38 - 2014-05-04 08:38 - 00000000 ____D () C:\Program Files (x86)\Realtek
2014-05-04 08:38 - 2012-09-24 05:32 - 07601528 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioRealtek64.dll
2014-05-04 08:38 - 2012-08-31 08:18 - 07164176 _____ (Dolby Laboratories) C:\Windows\system32\R4EEP64A.dll
2014-05-04 08:38 - 2012-08-31 08:17 - 00434960 _____ (Dolby Laboratories) C:\Windows\system32\R4EED64A.dll
2014-05-04 08:38 - 2012-08-31 08:17 - 00141584 _____ (Dolby Laboratories) C:\Windows\system32\R4EEL64A.dll
2014-05-04 08:38 - 2012-08-31 08:17 - 00124176 _____ (Dolby Laboratories) C:\Windows\system32\R4EEA64A.dll
2014-05-04 08:38 - 2012-08-31 08:17 - 00075024 _____ (Dolby Laboratories) C:\Windows\system32\R4EEG64A.dll
2014-05-04 08:38 - 2012-08-28 06:25 - 02535008 _____ (Fortemedia Corporation) C:\Windows\system32\FMAPO64.dll
2014-05-04 08:38 - 2012-08-03 07:18 - 01706640 ____R (Realtek Semiconductor Corp.) C:\Windows\RtlExUpd.dll
2014-05-04 08:38 - 2012-07-23 05:44 - 01433976 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioRealtek264.dll
2014-05-04 08:38 - 2012-07-19 05:52 - 02028920 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioEQ64.dll
2014-05-04 08:38 - 2012-07-19 05:51 - 00834936 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPOShell64.dll
2014-05-04 08:38 - 2012-07-15 10:13 - 00394616 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVolumeSDAPO.dll
2014-05-04 08:38 - 2012-07-15 10:13 - 00394616 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO30.dll
2014-05-04 08:38 - 2012-06-20 06:26 - 00110592 _____ (Real Sound Lab SIA) C:\Windows\system32\CONEQMSAPOGUILibrary.dll
2014-05-04 08:38 - 2012-03-08 00:47 - 00202336 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAC64.dll
2014-05-04 08:38 - 2012-03-08 00:47 - 00108640 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAR64.dll
2014-05-04 08:38 - 2012-02-16 02:42 - 00676968 _____ (Realtek ) C:\Windows\system32\Drivers\Rt64win7.sys
2014-05-04 08:38 - 2012-02-16 02:42 - 00107624 _____ (Realtek Semiconductor Corporation) C:\Windows\system32\RTNUninst64.dll
2014-05-04 08:38 - 2012-02-16 02:42 - 00074344 _____ (Realtek Semiconductor Corporation) C:\Windows\system32\RtNicProp64.dll
2014-05-04 08:38 - 2012-01-23 11:30 - 00537456 _____ (DTS) C:\Windows\system32\DTSU2PLFX64.dll
2014-05-04 08:38 - 2012-01-23 11:30 - 00524656 _____ (DTS) C:\Windows\system32\DTSU2PGFX64.dll
2014-05-04 08:38 - 2012-01-23 11:30 - 00449392 _____ (DTS) C:\Windows\system32\DTSU2PREC64.dll
2014-05-04 08:38 - 2011-08-23 06:00 - 00603984 _____ (Knowles Acoustics ) C:\Windows\system32\KAAPORT64.dll
2014-05-04 08:38 - 2011-05-30 22:42 - 01756264 _____ (DTS) C:\Windows\system32\DTSS2SpeakerDLL64.dll
2014-05-04 08:38 - 2011-05-30 22:42 - 01568360 _____ (DTS) C:\Windows\system32\DTSS2HeadphoneDLL64.dll
2014-05-04 08:38 - 2011-05-30 22:42 - 01486952 _____ (DTS) C:\Windows\system32\DTSBoostDLL64.dll
2014-05-04 08:38 - 2011-05-30 22:42 - 00728680 _____ (DTS) C:\Windows\system32\DTSBassEnhancementDLL64.dll
2014-05-04 08:38 - 2011-05-30 22:42 - 00712296 _____ (DTS) C:\Windows\system32\DTSSymmetryDLL64.dll
2014-05-04 08:38 - 2011-05-30 22:42 - 00693352 _____ (DTS) C:\Windows\system32\DTSVoiceClarityDLL64.dll
2014-05-04 08:38 - 2011-05-30 22:42 - 00491112 _____ (DTS) C:\Windows\system32\DTSNeoPCDLL64.dll
2014-05-04 08:38 - 2011-05-30 22:42 - 00432744 _____ (DTS) C:\Windows\system32\DTSLimiterDLL64.dll
2014-05-04 08:38 - 2011-05-30 22:42 - 00428648 _____ (DTS) C:\Windows\system32\DTSGainCompensatorDLL64.dll
2014-05-04 08:38 - 2011-05-30 22:42 - 00242792 _____ (DTS) C:\Windows\system32\DTSLFXAPO64.dll
2014-05-04 08:38 - 2011-05-30 22:42 - 00242792 _____ (DTS) C:\Windows\system32\DTSGFXAPO64.dll
2014-05-04 08:38 - 2011-05-30 22:42 - 00241768 _____ (DTS) C:\Windows\system32\DTSGFXAPONS64.dll
2014-05-04 08:38 - 2010-11-28 17:50 - 00044672 ____R (Advanced Micro Devices) C:\Windows\system32\Drivers\usbfilter.sys
2014-05-04 08:38 - 2010-09-26 22:34 - 00318808 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO20.dll
2014-05-04 08:37 - 2014-05-04 09:18 - 00000000 ____D () C:\ProgramData\AMD
2014-05-04 08:37 - 2014-05-04 09:17 - 00000000 ____D () C:\Program Files\ATI Technologies
2014-05-04 08:37 - 2010-06-17 06:15 - 00016440 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\Drivers\AtiPcie64.sys
2014-05-04 08:37 - 2010-02-18 09:18 - 00046136 _____ (Advanced Micro Devices) C:\Windows\system32\Drivers\amdiox64.sys
2014-05-04 08:36 - 2014-05-04 09:16 - 00000000 ____D () C:\Program Files (x86)\ATI Technologies
2014-05-04 08:36 - 2014-05-04 08:36 - 00000000 ____D () C:\Program Files\ATI
2014-05-04 08:36 - 2011-09-12 19:06 - 00003917 _____ () C:\Windows\SysWOW64\atipblag.dat
2014-05-04 08:36 - 2011-09-12 19:06 - 00003917 _____ () C:\Windows\system32\atipblag.dat
2014-05-04 08:27 - 2014-05-04 08:27 - 00000000 ____D () C:\MSI
2014-05-04 07:48 - 2014-05-04 07:48 - 00000000 ____D () C:\Windows\system32\appmgmt
2014-05-04 07:39 - 2014-05-04 07:39 - 00000000 ____D () C:\Users\Administrador\AppData\Roaming\Media Player Classic
2014-05-04 07:31 - 2014-05-04 07:31 - 00001427 _____ () C:\Users\Administrador\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-05-04 07:31 - 2014-05-04 07:31 - 00001393 _____ () C:\Users\Administrador\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer (64-bit).lnk
2014-05-04 07:31 - 2014-05-04 07:31 - 00000000 ___RD () C:\Users\Administrador\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2014-05-04 07:31 - 2014-05-04 07:31 - 00000000 ___RD () C:\Users\Administrador\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2014-05-04 07:31 - 2009-08-06 23:24 - 02424024 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2014-05-04 07:31 - 2009-08-06 23:24 - 00057560 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2014-05-04 07:31 - 2009-08-06 23:24 - 00043744 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2014-05-04 07:31 - 2009-08-06 23:24 - 00038112 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2014-05-04 07:31 - 2009-08-06 23:23 - 00700640 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2014-05-04 07:31 - 2009-08-06 22:59 - 02621440 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2014-05-04 07:31 - 2009-08-06 22:59 - 00098816 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2014-05-04 07:31 - 2009-08-06 19:23 - 00185416 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2014-05-04 07:31 - 2009-08-06 18:59 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2014-05-04 07:30 - 2014-05-04 19:07 - 00000000 ____D () C:\Program Files (x86)\ESET
2014-05-04 07:30 - 2014-05-04 07:34 - 00000000 ____D () C:\Program Files (x86)\The KMPlayer
2014-05-04 07:30 - 2014-05-04 07:33 - 00000000 ____D () C:\Program Files (x86)\AIMP2 Tools
2014-05-04 07:30 - 2014-05-04 07:31 - 00000000 ____D () C:\1b9248a80cb1fb9d299b9659
2014-05-04 07:30 - 2014-05-04 07:30 - 00000963 _____ () C:\Users\Public\Desktop\AIMP2.lnk
2014-05-04 07:30 - 2014-05-04 07:30 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AIMP2
2014-05-04 07:30 - 2010-06-02 04:55 - 00527192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_7.dll
2014-05-04 07:30 - 2010-06-02 04:55 - 00518488 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_7.dll
2014-05-04 07:30 - 2010-06-02 04:55 - 00239960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_7.dll
2014-05-04 07:30 - 2010-06-02 04:55 - 00176984 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_7.dll
2014-05-04 07:30 - 2010-06-02 04:55 - 00077656 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_5.dll
2014-05-04 07:30 - 2010-06-02 04:55 - 00074072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_5.dll
2014-05-04 07:30 - 2010-05-26 11:41 - 02526056 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_43.dll
2014-05-04 07:30 - 2010-05-26 11:41 - 02401112 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_43.dll
2014-05-04 07:30 - 2010-05-26 11:41 - 02106216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_43.dll
2014-05-04 07:30 - 2010-05-26 11:41 - 01998168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_43.dll
2014-05-04 07:30 - 2010-05-26 11:41 - 01907552 _____ (Microsoft Corporation) C:\Windows\system32\d3dcsx_43.dll
2014-05-04 07:30 - 2010-05-26 11:41 - 01868128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dcsx_43.dll
2014-05-04 07:30 - 2010-05-26 11:41 - 00511328 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_43.dll
2014-05-04 07:30 - 2010-05-26 11:41 - 00470880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_43.dll
2014-05-04 07:30 - 2010-05-26 11:41 - 00276832 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_43.dll
2014-05-04 07:30 - 2010-05-26 11:41 - 00248672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_43.dll
2014-05-04 07:30 - 2010-02-04 10:01 - 00530776 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_6.dll
2014-05-04 07:30 - 2010-02-04 10:01 - 00528216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_6.dll
2014-05-04 07:30 - 2010-02-04 10:01 - 00238936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_6.dll
2014-05-04 07:30 - 2010-02-04 10:01 - 00176984 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_6.dll
2014-05-04 07:30 - 2010-02-04 10:01 - 00078680 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_4.dll
2014-05-04 07:30 - 2010-02-04 10:01 - 00074072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_4.dll
2014-05-04 07:30 - 2010-02-04 10:01 - 00024920 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_7.dll
2014-05-04 07:30 - 2010-02-04 10:01 - 00022360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_7.dll
2014-05-04 07:30 - 2009-09-04 17:44 - 00517960 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_5.dll
2014-05-04 07:30 - 2009-09-04 17:44 - 00515416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_5.dll
2014-05-04 07:30 - 2009-09-04 17:44 - 00238936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_5.dll
2014-05-04 07:30 - 2009-09-04 17:44 - 00176968 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_5.dll
2014-05-04 07:30 - 2009-09-04 17:44 - 00073544 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_3.dll
2014-05-04 07:30 - 2009-09-04 17:44 - 00069464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_3.dll
2014-05-04 07:30 - 2009-09-04 17:29 - 05554512 _____ (Microsoft Corporation) C:\Windows\system32\d3dcsx_42.dll
2014-05-04 07:30 - 2009-09-04 17:29 - 05501792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dcsx_42.dll
2014-05-04 07:30 - 2009-09-04 17:29 - 02582888 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_42.dll
2014-05-04 07:30 - 2009-09-04 17:29 - 02475352 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_42.dll
2014-05-04 07:30 - 2009-09-04 17:29 - 01974616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_42.dll
2014-05-04 07:30 - 2009-09-04 17:29 - 01892184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_42.dll
2014-05-04 07:30 - 2009-09-04 17:29 - 00523088 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_42.dll
2014-05-04 07:30 - 2009-09-04 17:29 - 00453456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_42.dll
2014-05-04 07:30 - 2009-09-04 17:29 - 00285024 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_42.dll
2014-05-04 07:30 - 2009-09-04 17:29 - 00235344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_42.dll
2014-05-04 07:30 - 2009-03-16 14:18 - 00521560 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_4.dll
2014-05-04 07:30 - 2009-03-16 14:18 - 00517448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_4.dll
2014-05-04 07:30 - 2009-03-16 14:18 - 00235352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_4.dll
2014-05-04 07:30 - 2009-03-16 14:18 - 00174936 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_4.dll
2014-05-04 07:30 - 2009-03-16 14:18 - 00024920 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_6.dll
2014-05-04 07:30 - 2009-03-16 14:18 - 00022360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_6.dll
2014-05-04 07:30 - 2009-03-09 15:27 - 05425496 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_41.dll
2014-05-04 07:30 - 2009-03-09 15:27 - 04178264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_41.dll
2014-05-04 07:30 - 2009-03-09 15:27 - 02430312 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_41.dll
2014-05-04 07:30 - 2009-03-09 15:27 - 01846632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_41.dll
2014-05-04 07:30 - 2009-03-09 15:27 - 00520544 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_41.dll
2014-05-04 07:30 - 2009-03-09 15:27 - 00453456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_41.dll
2014-05-04 07:30 - 2008-10-27 10:04 - 00518480 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_3.dll
2014-05-04 07:30 - 2008-10-27 10:04 - 00514384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_3.dll
2014-05-04 07:30 - 2008-10-27 10:04 - 00235856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_3.dll
2014-05-04 07:30 - 2008-10-27 10:04 - 00175440 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_3.dll
2014-05-04 07:30 - 2008-10-27 10:04 - 00074576 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_2.dll
2014-05-04 07:30 - 2008-10-27 10:04 - 00070992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_2.dll
2014-05-04 07:30 - 2008-10-27 10:04 - 00025936 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_5.dll
2014-05-04 07:30 - 2008-10-27 10:04 - 00023376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_5.dll
2014-05-04 07:30 - 2008-10-15 06:22 - 05631312 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_40.dll
2014-05-04 07:30 - 2008-10-15 06:22 - 04379984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_40.dll
2014-05-04 07:30 - 2008-10-15 06:22 - 02605920 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_40.dll
2014-05-04 07:30 - 2008-10-15 06:22 - 02036576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_40.dll
2014-05-04 07:30 - 2008-10-15 06:22 - 00519000 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_40.dll
2014-05-04 07:30 - 2008-10-15 06:22 - 00452440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_40.dll
2014-05-04 07:30 - 2008-07-31 10:41 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_2.dll
2014-05-04 07:30 - 2008-07-31 10:41 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_2.dll
2014-05-04 07:30 - 2008-07-31 10:41 - 00072200 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_1.dll
2014-05-04 07:30 - 2008-07-31 10:41 - 00068616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_1.dll
2014-05-04 07:30 - 2008-07-31 10:40 - 00513544 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_2.dll
2014-05-04 07:30 - 2008-07-31 10:40 - 00509448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_2.dll
2014-05-04 07:30 - 2008-07-10 11:00 - 04992520 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_39.dll
2014-05-04 07:30 - 2008-07-10 11:00 - 01942552 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_39.dll
2014-05-04 07:30 - 2008-07-10 11:00 - 00540688 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_39.dll
2014-05-04 07:30 - 2008-05-30 14:19 - 00511496 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_1.dll
2014-05-04 07:30 - 2008-05-30 14:19 - 00507400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_1.dll
2014-05-04 07:30 - 2008-05-30 14:18 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_1.dll
2014-05-04 07:30 - 2008-05-30 14:18 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_1.dll
2014-05-04 07:30 - 2008-05-30 14:17 - 00068104 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_0.dll
2014-05-04 07:30 - 2008-05-30 14:17 - 00065032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_0.dll
2014-05-04 07:30 - 2008-05-30 14:17 - 00025608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_4.dll
2014-05-04 07:30 - 2008-05-30 14:16 - 00028168 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_4.dll
2014-05-04 07:30 - 2008-05-30 14:11 - 04991496 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_38.dll
2014-05-04 07:30 - 2008-05-30 14:11 - 03850760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_38.dll
2014-05-04 07:30 - 2008-05-30 14:11 - 01941528 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_38.dll
2014-05-04 07:30 - 2008-05-30 14:11 - 01491992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_38.dll
2014-05-04 07:30 - 2008-05-30 14:11 - 00540688 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_38.dll
2014-05-04 07:30 - 2008-05-30 14:11 - 00467984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_38.dll
2014-05-04 07:30 - 2008-03-05 16:04 - 00489480 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_0.dll
2014-05-04 07:30 - 2008-03-05 16:03 - 00479752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_0.dll
2014-05-04 07:30 - 2008-03-05 16:03 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_0.dll
2014-05-04 07:30 - 2008-03-05 16:03 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_0.dll
2014-05-04 07:30 - 2008-03-05 16:00 - 00028168 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_3.dll
2014-05-04 07:30 - 2008-03-05 16:00 - 00025608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_3.dll
2014-05-04 07:30 - 2008-03-05 15:56 - 04910088 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_37.dll
2014-05-04 07:30 - 2008-03-05 15:56 - 03786760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_37.dll
2014-05-04 07:30 - 2008-03-05 15:56 - 01860120 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_37.dll
2014-05-04 07:30 - 2008-03-05 15:56 - 01420824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_37.dll
2014-05-04 07:30 - 2008-02-05 23:07 - 00529424 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_37.dll
2014-05-04 07:30 - 2008-02-05 23:07 - 00462864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_37.dll
2014-05-04 07:30 - 2007-10-22 03:40 - 00411656 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_10.dll
2014-05-04 07:30 - 2007-10-22 03:39 - 00267272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_10.dll
2014-05-04 07:30 - 2007-10-22 03:37 - 00021000 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_2.dll
2014-05-04 07:30 - 2007-10-22 03:37 - 00017928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_2.dll
2014-05-04 07:30 - 2007-10-12 15:14 - 05081608 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_36.dll
2014-05-04 07:30 - 2007-10-12 15:14 - 03734536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_36.dll
2014-05-04 07:30 - 2007-10-12 15:14 - 02006552 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_36.dll
2014-05-04 07:30 - 2007-10-12 15:14 - 01374232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_36.dll
2014-05-04 07:30 - 2007-10-02 09:56 - 00508264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_36.dll
2014-05-04 07:30 - 2007-10-02 09:56 - 00444776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_36.dll
2014-05-04 07:30 - 2007-07-20 00:57 - 00411496 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_9.dll
2014-05-04 07:30 - 2007-07-20 00:57 - 00267112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_9.dll
2014-05-04 07:30 - 2007-07-19 18:14 - 05073256 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_35.dll
2014-05-04 07:30 - 2007-07-19 18:14 - 03727720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_35.dll
2014-05-04 07:30 - 2007-07-19 18:14 - 01985904 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_35.dll
2014-05-04 07:30 - 2007-07-19 18:14 - 01358192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_35.dll
2014-05-04 07:30 - 2007-07-19 18:14 - 00508264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_35.dll
2014-05-04 07:30 - 2007-07-19 18:14 - 00444776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_35.dll
2014-05-04 07:30 - 2007-06-20 20:49 - 00409960 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_8.dll
2014-05-04 07:30 - 2007-06-20 20:46 - 00266088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_8.dll
2014-05-04 07:30 - 2007-05-16 16:45 - 01401200 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_34.dll
2014-05-04 07:30 - 2007-05-16 16:45 - 01124720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_34.dll
2014-05-04 07:30 - 2007-05-16 16:45 - 00506728 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_34.dll
2014-05-04 07:30 - 2007-05-16 16:45 - 00443752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_34.dll
2014-05-04 07:29 - 2014-05-04 07:29 - 00001037 _____ () C:\Users\Administrador\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\uTorrent 2.0.2.lnk
2014-05-04 07:29 - 2014-05-04 07:29 - 00001007 _____ () C:\Users\Administrador\Desktop\CCleaner.lnk
2014-05-04 07:29 - 2014-05-04 07:29 - 00000977 _____ () C:\Users\Administrador\Desktop\Total Video Player.lnk
2014-05-04 07:29 - 2014-05-04 07:29 - 00000977 _____ () C:\Users\Administrador\Desktop\Total Video Converter.lnk
2014-05-04 07:29 - 2014-05-04 07:29 - 00000000 ____D () C:\Users\Administrador\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2014-05-04 07:29 - 2014-05-04 07:29 - 00000000 ____D () C:\Users\Administrador\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CCleaner
2014-05-04 07:29 - 2014-05-04 07:29 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2014-05-04 07:29 - 2014-05-04 07:29 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Total Video Converter
2014-05-04 07:29 - 2014-05-04 07:29 - 00000000 ____D () C:\Program Files (x86)\Winrar
2014-05-04 07:29 - 2014-05-04 07:29 - 00000000 ____D () C:\Program Files (x86)\Total Video Converter
2014-05-04 07:29 - 2014-05-04 07:29 - 00000000 ____D () C:\Program Files (x86)\CCleaner
2014-05-04 07:29 - 2010-05-29 12:26 - 00000000 ____D () C:\Program Files (x86)\uTorrent
2014-05-04 07:29 - 2007-05-16 16:45 - 04496232 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_34.dll
2014-05-04 07:29 - 2007-05-16 16:45 - 03497832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_34.dll
2014-05-04 07:29 - 2007-04-04 18:55 - 00403304 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_7.dll
2014-05-04 07:29 - 2007-04-04 18:55 - 00261480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_7.dll
2014-05-04 07:29 - 2007-04-04 18:54 - 00107368 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_3.dll
2014-05-04 07:29 - 2007-04-04 18:53 - 00081768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_3.dll
2014-05-04 07:29 - 2007-03-15 16:57 - 00506728 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_33.dll
2014-05-04 07:29 - 2007-03-15 16:57 - 00443752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_33.dll
2014-05-04 07:29 - 2007-03-12 16:42 - 04494184 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_33.dll
2014-05-04 07:29 - 2007-03-12 16:42 - 03495784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_33.dll
2014-05-04 07:29 - 2007-03-12 16:42 - 01400176 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_33.dll
2014-05-04 07:29 - 2007-03-12 16:42 - 01123696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_33.dll
2014-05-04 07:29 - 2007-03-05 12:42 - 00017688 _____ (Microsoft Corporation) C:\Windows\system32\x3daudio1_1.dll
2014-05-04 07:29 - 2007-03-05 12:42 - 00015128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\x3daudio1_1.dll
2014-05-04 07:29 - 2007-01-24 15:27 - 00393576 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_6.dll
2014-05-04 07:29 - 2007-01-24 15:27 - 00255848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_6.dll
2014-05-04 07:29 - 2006-12-08 12:02 - 00251672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_5.dll
2014-05-04 07:29 - 2006-12-08 12:00 - 00390424 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_5.dll
2014-05-04 07:29 - 2006-11-29 13:06 - 04398360 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_32.dll
2014-05-04 07:29 - 2006-11-29 13:06 - 03426072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_32.dll
2014-05-04 07:29 - 2006-11-29 13:06 - 00469264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10.dll
2014-05-04 07:29 - 2006-11-29 13:06 - 00440080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10.dll
2014-05-04 07:29 - 2006-09-28 16:05 - 03977496 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_31.dll
2014-05-04 07:29 - 2006-09-28 16:05 - 02414360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_31.dll
2014-05-04 07:29 - 2006-09-28 16:05 - 00237848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_4.dll
2014-05-04 07:29 - 2006-09-28 16:04 - 00364824 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_4.dll
2014-05-04 07:29 - 2006-07-28 09:31 - 00083736 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_2.dll
2014-05-04 07:29 - 2006-07-28 09:30 - 00363288 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_3.dll
2014-05-04 07:29 - 2006-07-28 09:30 - 00236824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_3.dll
2014-05-04 07:29 - 2006-07-28 09:30 - 00062744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_2.dll
2014-05-04 07:29 - 2006-05-31 07:24 - 00230168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_2.dll
2014-05-04 07:29 - 2006-05-31 07:22 - 00354072 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_2.dll
2014-05-04 07:29 - 2006-03-31 12:41 - 03927248 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_30.dll
2014-05-04 07:29 - 2006-03-31 12:40 - 02388176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_30.dll
2014-05-04 07:29 - 2006-03-31 12:40 - 00352464 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_1.dll
2014-05-04 07:29 - 2006-03-31 12:39 - 00229584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_1.dll
2014-05-04 07:29 - 2006-03-31 12:39 - 00083664 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_1.dll
2014-05-04 07:29 - 2006-03-31 12:39 - 00062672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_1.dll
2014-05-04 07:29 - 2006-02-03 08:43 - 03830992 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_29.dll
2014-05-04 07:29 - 2006-02-03 08:43 - 02332368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_29.dll
2014-05-04 07:29 - 2006-02-03 08:42 - 00355536 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_0.dll
2014-05-04 07:29 - 2006-02-03 08:42 - 00230096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_0.dll
2014-05-04 07:29 - 2006-02-03 08:41 - 00016592 _____ (Microsoft Corporation) C:\Windows\system32\x3daudio1_0.dll
2014-05-04 07:29 - 2006-02-03 08:41 - 00014032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\x3daudio1_0.dll
2014-05-04 07:29 - 2005-12-05 18:09 - 03815120 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_28.dll
2014-05-04 07:29 - 2005-12-05 18:09 - 02323664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_28.dll
2014-05-04 07:29 - 2005-07-22 19:59 - 03807440 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_27.dll
2014-05-04 07:29 - 2005-07-22 19:59 - 02319568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_27.dll
2014-05-04 07:29 - 2005-05-26 15:34 - 03767504 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_26.dll
2014-05-04 07:29 - 2005-05-26 15:34 - 02297552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_26.dll
2014-05-04 07:29 - 2005-03-18 17:19 - 03823312 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_25.dll
2014-05-04 07:29 - 2005-03-18 17:19 - 02337488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_25.dll
2014-05-04 07:29 - 2005-02-05 19:45 - 03544272 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_24.dll
2014-05-04 07:29 - 2005-02-05 19:45 - 02222800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_24.dll
2014-05-04 07:29 - 2000-05-22 22:58 - 00608448 _____ (Microsoft Corporation) C:\Windows\system32\comctl32.ocx
2014-05-04 07:27 - 2014-05-04 07:28 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live
2014-05-04 07:27 - 2014-05-04 07:27 - 00000000 ____D () C:\Program Files (x86)\Windows Live SkyDrive
2014-05-04 07:26 - 2014-05-04 07:28 - 00000000 ____D () C:\Program Files (x86)\Windows Live
2014-05-04 07:26 - 2014-05-04 07:26 - 00000000 ____D () C:\Windows\SysWOW64\Macromed
2014-05-04 07:25 - 2014-05-04 08:38 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2014-05-04 07:25 - 2014-05-04 07:25 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QT Lite
2014-05-04 07:25 - 2014-05-04 07:25 - 00000000 ____D () C:\ProgramData\Apple Computer
2014-05-04 07:25 - 2014-05-04 07:25 - 00000000 ____D () C:\Program Files (x86)\QT Lite
2014-05-04 07:25 - 2010-03-17 17:53 - 00180224 _____ (Apple Inc.) C:\Windows\SysWOW64\QTCF.dll
2014-05-04 07:25 - 2010-03-17 17:53 - 00094208 _____ (Apple Inc.) C:\Windows\SysWOW64\QuickTimeVR.qtx
2014-05-04 07:25 - 2010-03-17 17:53 - 00069632 _____ (Apple Inc.) C:\Windows\SysWOW64\QuickTime.qts
2014-05-04 07:24 - 2014-05-04 07:24 - 00029480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3a.dll
2014-05-04 07:24 - 2014-05-04 07:24 - 00000000 ____D () C:\Program Files (x86)\CyberLink
2014-05-04 07:23 - 2014-05-04 07:23 - 00000376 _____ () C:\Windows\ODBC.INI
2014-05-04 07:23 - 2014-05-04 07:23 - 00000000 ____D () C:\Windows\SysWOW64\Adobe
2014-05-04 07:23 - 2014-05-04 07:23 - 00000000 ____D () C:\Program Files (x86)\MSECache
2014-05-04 07:22 - 2014-05-04 07:23 - 00000000 ____D () C:\Program Files (x86)\Microsoft Office
2014-05-04 07:22 - 2014-05-04 07:22 - 00411368 _____ (Sun Microsystems, Inc.) C:\Windows\SysWOW64\deployJava1.dll
2014-05-04 07:22 - 2014-05-04 07:22 - 00153376 _____ (Sun Microsystems, Inc.) C:\Windows\SysWOW64\javaws.exe
2014-05-04 07:22 - 2014-05-04 07:22 - 00145184 _____ (Sun Microsystems, Inc.) C:\Windows\SysWOW64\javaw.exe
2014-05-04 07:22 - 2014-05-04 07:22 - 00145184 _____ (Sun Microsystems, Inc.) C:\Windows\SysWOW64\java.exe
2014-05-04 07:22 - 2014-05-04 07:22 - 00000000 ____D () C:\Windows\SHELLNEW
2014-05-04 07:22 - 2014-05-04 07:22 - 00000000 ____D () C:\Windows\PCHEALTH
2014-05-04 07:22 - 2014-05-04 07:22 - 00000000 ____D () C:\ProgramData\Sun
2014-05-04 07:22 - 2014-05-04 07:22 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
2014-05-04 07:22 - 2014-05-04 07:22 - 00000000 ____D () C:\Program Files (x86)\Microsoft Works
2014-05-04 07:22 - 2014-05-04 07:22 - 00000000 ____D () C:\Program Files (x86)\Java
2014-05-04 07:22 - 2010-03-15 06:31 - 00165376 _____ () C:\Windows\SysWOW64\unrar.dll
2014-05-04 07:21 - 2014-05-04 07:21 - 00002026 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader 9.lnk
2014-05-04 07:21 - 2014-05-04 07:21 - 00000000 ____D () C:\ProgramData\Adobe
2014-05-04 07:21 - 2014-05-04 07:21 - 00000000 ____D () C:\Program Files (x86)\Adobe
2014-05-04 07:18 - 2014-05-10 14:44 - 00079256 _____ () C:\Windows\WindowsUpdate.log
2014-05-04 07:18 - 2009-12-08 13:40 - 00011956 _____ () C:\Windows\SysWOW64\PorDefecto_Win7_64bits.reg
2014-05-04 07:18 - 2009-12-08 13:40 - 00011723 _____ () C:\Windows\SysWOW64\PorDefecto_Win7_32bits.reg
2014-05-04 07:18 - 2009-07-13 22:41 - 02851328 _____ (Microsoft Corporation) C:\Windows\system32\themeui.dll.backup
2014-05-04 07:18 - 2009-07-13 22:41 - 00332288 _____ (Microsoft Corporation) C:\Windows\system32\uxtheme.dll.backup
2014-05-04 07:18 - 2009-07-13 22:41 - 00044544 _____ (Microsoft Corporation) C:\Windows\system32\themeservice.dll.backup
2014-05-04 07:17 - 2014-05-04 07:31 - 00000000 ____D () C:\Users\Administrador
2014-05-04 07:17 - 2014-05-04 07:28 - 00084128 _____ () C:\Users\Administrador\AppData\Local\GDIPFONTCACHEV1.DAT
2014-05-04 07:17 - 2014-05-04 07:17 - 00000020 ___SH () C:\Users\Administrador\ntuser.ini
2014-05-04 07:17 - 2014-05-04 07:17 - 00000000 _SHDL () C:\Users\Public\Documents\Mis vídeos
2014-05-04 07:17 - 2014-05-04 07:17 - 00000000 _SHDL () C:\Users\Public\Documents\Mis imágenes
2014-05-04 07:17 - 2014-05-04 07:17 - 00000000 _SHDL () C:\Users\Public\Documents\Mi música
2014-05-04 07:17 - 2014-05-04 07:17 - 00000000 _SHDL () C:\Users\Default\Reciente
2014-05-04 07:17 - 2014-05-04 07:17 - 00000000 _SHDL () C:\Users\Default\Plantillas
2014-05-04 07:17 - 2014-05-04 07:17 - 00000000 _SHDL () C:\Users\Default\Mis documentos
2014-05-04 07:17 - 2014-05-04 07:17 - 00000000 _SHDL () C:\Users\Default\Menú Inicio
2014-05-04 07:17 - 2014-05-04 07:17 - 00000000 _SHDL () C:\Users\Default\Impresoras
2014-05-04 07:17 - 2014-05-04 07:17 - 00000000 _SHDL () C:\Users\Default\Entorno de red
2014-05-04 07:17 - 2014-05-04 07:17 - 00000000 _SHDL () C:\Users\Default\Documents\Mis vídeos
2014-05-04 07:17 - 2014-05-04 07:17 - 00000000 _SHDL () C:\Users\Default\Documents\Mis imágenes
2014-05-04 07:17 - 2014-05-04 07:17 - 00000000 _SHDL () C:\Users\Default\Documents\Mi música
2014-05-04 07:17 - 2014-05-04 07:17 - 00000000 _SHDL () C:\Users\Default\Datos de programa
2014-05-04 07:17 - 2014-05-04 07:17 - 00000000 _SHDL () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programas
2014-05-04 07:17 - 2014-05-04 07:17 - 00000000 _SHDL () C:\Users\Default\AppData\Local\Historial
2014-05-04 07:17 - 2014-05-04 07:17 - 00000000 _SHDL () C:\Users\Default\AppData\Local\Datos de programa
2014-05-04 07:17 - 2014-05-04 07:17 - 00000000 _SHDL () C:\Users\Default\AppData\Local\Archivos temporales de Internet
2014-05-04 07:17 - 2014-05-04 07:17 - 00000000 _SHDL () C:\Users\Default User\Documents\Mis vídeos
2014-05-04 07:17 - 2014-05-04 07:17 - 00000000 _SHDL () C:\Users\Default User\Documents\Mis imágenes
2014-05-04 07:17 - 2014-05-04 07:17 - 00000000 _SHDL () C:\Users\Default User\Documents\Mi música
2014-05-04 07:17 - 2014-05-04 07:17 - 00000000 _SHDL () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programas
2014-05-04 07:17 - 2014-05-04 07:17 - 00000000 _SHDL () C:\Users\Default User\AppData\Local\Historial
2014-05-04 07:17 - 2014-05-04 07:17 - 00000000 _SHDL () C:\Users\Default User\AppData\Local\Datos de programa
2014-05-04 07:17 - 2014-05-04 07:17 - 00000000 _SHDL () C:\Users\Default User\AppData\Local\Archivos temporales de Internet
2014-05-04 07:17 - 2014-05-04 07:17 - 00000000 _SHDL () C:\Users\Administrador\Reciente
2014-05-04 07:17 - 2014-05-04 07:17 - 00000000 _SHDL () C:\Users\Administrador\Plantillas
2014-05-04 07:17 - 2014-05-04 07:17 - 00000000 _SHDL () C:\Users\Administrador\Mis documentos
2014-05-04 07:17 - 2014-05-04 07:17 - 00000000 _SHDL () C:\Users\Administrador\Menú Inicio
2014-05-04 07:17 - 2014-05-04 07:17 - 00000000 _SHDL () C:\Users\Administrador\Impresoras
2014-05-04 07:17 - 2014-05-04 07:17 - 00000000 _SHDL () C:\Users\Administrador\Entorno de red
2014-05-04 07:17 - 2014-05-04 07:17 - 00000000 _SHDL () C:\Users\Administrador\Documents\Mis vídeos
2014-05-04 07:17 - 2014-05-04 07:17 - 00000000 _SHDL () C:\Users\Administrador\Documents\Mis imágenes
2014-05-04 07:17 - 2014-05-04 07:17 - 00000000 _SHDL () C:\Users\Administrador\Documents\Mi música
2014-05-04 07:17 - 2014-05-04 07:17 - 00000000 _SHDL () C:\Users\Administrador\Datos de programa
2014-05-04 07:17 - 2014-05-04 07:17 - 00000000 _SHDL () C:\Users\Administrador\AppData\Roaming\Microsoft\Windows\Start Menu\Programas
2014-05-04 07:17 - 2014-05-04 07:17 - 00000000 _SHDL () C:\Users\Administrador\AppData\Local\Historial
2014-05-04 07:17 - 2014-05-04 07:17 - 00000000 _SHDL () C:\Users\Administrador\AppData\Local\Datos de programa
2014-05-04 07:17 - 2014-05-04 07:17 - 00000000 _SHDL () C:\Users\Administrador\AppData\Local\Archivos temporales de Internet
2014-05-04 07:17 - 2014-05-04 07:17 - 00000000 _SHDL () C:\ProgramData\Plantillas
2014-05-04 07:17 - 2014-05-04 07:17 - 00000000 _SHDL () C:\ProgramData\Microsoft\Windows\Start Menu\Programas
2014-05-04 07:17 - 2014-05-04 07:17 - 00000000 _SHDL () C:\ProgramData\Menú Inicio
2014-05-04 07:17 - 2014-05-04 07:17 - 00000000 _SHDL () C:\ProgramData\Favoritos
2014-05-04 07:17 - 2014-05-04 07:17 - 00000000 _SHDL () C:\ProgramData\Escritorio
2014-05-04 07:17 - 2014-05-04 07:17 - 00000000 _SHDL () C:\ProgramData\Documentos
2014-05-04 07:17 - 2014-05-04 07:17 - 00000000 _SHDL () C:\ProgramData\Datos de programa
2014-05-04 07:17 - 2014-05-04 07:17 - 00000000 _SHDL () C:\Program Files\Archivos comunes
2014-05-04 07:17 - 2014-05-04 07:17 - 00000000 _SHDL () C:\Archivos de programa
2014-05-04 07:17 - 2014-05-04 07:17 - 00000000 ____D () C:\Recovery
2014-05-04 07:17 - 2009-07-14 01:54 - 00000000 ___RD () C:\Users\Administrador\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2014-05-04 07:17 - 2009-07-14 01:49 - 00000000 ___RD () C:\Users\Administrador\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2014-05-04 03:12 - 2014-05-04 07:17 - 00000000 ____D () C:\Windows\Panther
2014-05-04 03:12 - 2010-06-29 06:57 - 00011989 ____R () C:\Windows\system32\ServiciosPorDefecto_Win7_64bits.reg
2014-05-04 03:12 - 2010-06-29 06:57 - 00011756 ____R () C:\Windows\system32\ServiciosPorDefecto_Win7_32bits.reg

==================== One Month Modified Files and Folders =======

2014-05-11 11:57 - 2014-05-11 11:57 - 00010845 _____ () C:\Users\Administrador\Downloads\FRST.txt
2014-05-11 11:57 - 2014-05-11 11:57 - 00000000 ____D () C:\FRST
2014-05-11 11:57 - 2014-05-11 11:56 - 02066432 _____ (Farbar) C:\Users\Administrador\Downloads\FRST64.exe
2014-05-11 11:55 - 2014-05-04 09:24 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2014-05-10 14:44 - 2014-05-04 07:18 - 00079256 _____ () C:\Windows\WindowsUpdate.log
2014-05-10 14:43 - 2014-05-04 09:44 - 00000000 ____D () C:\Users\Administrador\AppData\Local\PMB Files
2014-05-10 14:32 - 2009-07-14 01:45 - 00014192 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-05-10 14:32 - 2009-07-14 01:45 - 00014192 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-05-10 14:30 - 2009-07-14 06:31 - 00703602 _____ () C:\Windows\system32\perfh00A.dat
2014-05-10 14:30 - 2009-07-14 06:31 - 00137600 _____ () C:\Windows\system32\perfc00A.dat
2014-05-10 14:30 - 2009-07-14 02:13 - 01555646 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-05-10 14:28 - 2014-05-07 13:58 - 00000000 ____D () C:\Users\Administrador\AppData\Roaming\Skype
2014-05-10 14:25 - 2014-05-04 18:19 - 00119512 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-05-10 14:24 - 2014-05-05 09:15 - 00000728 _____ () C:\Windows\setupact.log
2014-05-10 14:24 - 2014-05-04 08:38 - 00001046 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-05-10 14:24 - 2009-07-14 02:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-05-09 22:10 - 2014-05-04 10:14 - 00000838 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-05-09 21:54 - 2014-05-04 08:38 - 00001050 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-05-09 20:14 - 2014-05-09 20:14 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-05-09 19:49 - 2014-05-04 08:38 - 00004046 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2014-05-09 19:49 - 2014-05-04 08:38 - 00003794 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2014-05-09 07:14 - 2014-05-05 07:24 - 00002938 _____ () C:\Windows\PFRO.log
2014-05-08 06:47 - 2014-05-08 06:47 - 00000000 ___SD () C:\ComboFix
2014-05-08 06:47 - 2014-05-04 09:30 - 00000000 ____D () C:\Qoobox
2014-05-07 19:17 - 2014-05-04 18:05 - 00000000 ____D () C:\AdwCleaner
2014-05-07 19:16 - 2014-05-07 19:15 - 01316991 _____ () C:\Users\Administrador\Downloads\AdwCleaner.exe
2014-05-07 19:13 - 2014-05-07 19:13 - 00982016 _____ (Farbar) C:\Users\Administrador\Downloads\MiniToolBox.exe
2014-05-07 19:13 - 2014-05-07 19:13 - 00024009 _____ () C:\Users\Administrador\Downloads\Result.txt
2014-05-07 19:11 - 2014-05-07 18:51 - 00000454 _____ () C:\Users\Administrador\Desktop\ffe.txt
2014-05-07 14:04 - 2014-05-07 14:04 - 00000000 ____D () C:\Users\Administrador\Desktop\Nueva carpeta
2014-05-07 13:59 - 2014-05-07 13:59 - 00000000 ____D () C:\Users\Administrador\AppData\Local\Skype
2014-05-07 13:58 - 2014-05-07 13:58 - 00002697 _____ () C:\Users\Public\Desktop\Skype.lnk
2014-05-07 13:58 - 2014-05-07 13:58 - 00000000 ___RD () C:\Program Files (x86)\Skype
2014-05-07 13:58 - 2014-05-07 13:58 - 00000000 ____D () C:\ProgramData\Skype
2014-05-07 13:58 - 2014-05-07 13:58 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2014-05-07 13:57 - 2014-05-07 13:57 - 01678496 _____ (Skype Technologies S.A.) C:\Users\Administrador\Downloads\SkypeSetup.exe
2014-05-07 09:45 - 2014-05-04 20:14 - 00000000 ____D () C:\Users\Administrador\AppData\Roaming\TS3Client
2014-05-07 09:13 - 2014-05-04 09:44 - 00000000 ____D () C:\ProgramData\PMB Files
2014-05-05 13:12 - 2014-05-05 13:12 - 00000000 ____D () C:\Users\Administrador\AppData\Roaming\LolClient
2014-05-05 13:11 - 2014-05-05 13:11 - 00001111 _____ () C:\Users\Administrador\Desktop\system - Acceso directo.lnk
2014-05-05 10:30 - 2014-05-05 09:58 - 00000000 ____D () C:\ProgramData\Spybot - Search & Destroy
2014-05-05 10:05 - 2014-05-05 09:58 - 00000000 ____D () C:\Program Files (x86)\Spybot - Search & Destroy 2
2014-05-05 10:00 - 2014-05-05 10:00 - 00000000 ____D () C:\Users\Administrador\Documents\ProcAlyzer Dumps
2014-05-05 09:59 - 2014-05-05 09:59 - 00000000 ____D () C:\Windows\System32\Tasks\Safer-Networking
2014-05-05 09:58 - 2014-05-05 09:58 - 00001391 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot-S&D Start Center.lnk
2014-05-05 09:58 - 2014-05-05 09:58 - 00001379 _____ () C:\Users\Public\Desktop\Spybot-S&D Start Center.lnk
2014-05-05 09:58 - 2014-05-05 09:58 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot - Search & Destroy 2
2014-05-05 09:58 - 2014-05-05 09:54 - 46392680 _____ (Safer-Networking Ltd. ) C:\Users\Administrador\Downloads\spybot-2.3.exe
2014-05-05 09:41 - 2014-05-05 09:35 - 00017819 _____ () C:\Users\Administrador\Desktop\hijackthis.log
2014-05-05 09:31 - 2014-05-05 09:31 - 00002971 _____ () C:\Users\Administrador\Desktop\HiJackThis.lnk
2014-05-05 09:31 - 2014-05-05 09:31 - 00000000 ____D () C:\Users\Administrador\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\HiJackThis
2014-05-05 09:31 - 2014-05-05 09:31 - 00000000 ____D () C:\Program Files (x86)\Trend Micro
2014-05-05 09:30 - 2014-05-05 09:30 - 01402880 _____ () C:\Users\Administrador\Downloads\HiJackThis.msi
2014-05-05 09:30 - 2014-05-05 09:24 - 00000000 ____D () C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2014-05-05 09:30 - 2014-05-05 09:22 - 00000000 ____D () C:\Users\Administrador\Desktop\mbar
2014-05-05 09:22 - 2014-05-05 09:22 - 12589848 _____ (Malwarebytes Corp.) C:\Users\Administrador\Downloads\mbar-1.07.0.1009.exe
2014-05-05 09:22 - 2014-05-04 18:19 - 00091352 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2014-05-05 09:18 - 2014-05-05 09:17 - 00010827 _____ () C:\AT-Destroyer.txt
2014-05-05 09:17 - 2014-05-05 09:16 - 00000000 ____D () C:\_AT-Destroyer
2014-05-05 09:16 - 2014-05-05 09:16 - 01199088 _____ () C:\Users\Administrador\Downloads\AT-Destroyer.exe
2014-05-05 09:16 - 2014-05-04 19:33 - 00000000 ____D () C:\ProgramData\Package Cache
2014-05-05 09:15 - 2014-05-05 09:15 - 00000000 _____ () C:\Windows\setuperr.log
2014-05-05 09:10 - 2014-05-05 09:10 - 00000000 ____D () C:\TDSSKiller_Quarantine
2014-05-05 07:34 - 2014-05-05 07:33 - 04164448 _____ (Kaspersky Lab ZAO) C:\Users\Administrador\Downloads\tdsskiller.exe
2014-05-05 07:32 - 2014-05-05 07:29 - 00000000 ____D () C:\Program Files (x86)\Trojan . Shutdown Removal Tool
2014-05-05 07:29 - 2014-05-05 07:29 - 00001419 _____ () C:\Users\Administrador\Desktop\Trojan . Shutdown Removal Tool.lnk
2014-05-05 07:29 - 2014-05-05 07:29 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Trojan . Shutdown Removal Tool
2014-05-05 07:26 - 2014-05-05 07:26 - 03249776 _____ (Security Stronghold ) C:\Users\Administrador\Downloads\Trojan.ShutdownRemovalTool.exe
2014-05-05 07:24 - 2014-05-04 08:39 - 00000000 ____D () C:\Program Files\Google
2014-05-05 07:24 - 2014-05-04 08:38 - 00000000 ____D () C:\Program Files (x86)\Google
2014-05-04 20:14 - 2014-05-04 20:14 - 00000967 _____ () C:\Users\Public\Desktop\TeamSpeak 3 Client.lnk
2014-05-04 20:14 - 2014-05-04 20:14 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamSpeak 3 Client
2014-05-04 20:14 - 2014-05-04 20:14 - 00000000 ____D () C:\Program Files\TeamSpeak 3 Client
2014-05-04 20:14 - 2014-05-04 20:03 - 29498592 _____ (TeamSpeak Systems GmbH) C:\Users\Administrador\Downloads\TeamSpeak3-Client-win64-3.0.14.exe
2014-05-04 19:33 - 2014-05-04 19:32 - 04530864 _____ (Avira Operations GmbH & Co. KG) C:\Users\Administrador\Downloads\avira_es_av___ws.exe
2014-05-04 19:29 - 2014-05-04 18:19 - 00001102 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2014-05-04 19:29 - 2014-05-04 18:19 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2014-05-04 19:29 - 2014-05-04 18:19 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware
2014-05-04 19:07 - 2014-05-04 07:30 - 00000000 ____D () C:\Program Files (x86)\ESET
2014-05-04 18:52 - 2014-05-04 08:38 - 00000000 ____D () C:\Users\Administrador\AppData\Local\Google
2014-05-04 18:50 - 2014-05-04 18:50 - 00000000 ____D () C:\Users\Administrador\AppData\Roaming\Google
2014-05-04 18:33 - 2009-07-13 23:34 - 00000215 _____ () C:\Windows\system.ini
2014-05-04 18:29 - 2014-05-04 10:24 - 00000000 ____D () C:\Program Files (x86)\puush
2014-05-04 18:19 - 2014-05-04 18:19 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-05-04 18:19 - 2014-05-04 18:17 - 17523520 _____ (Malwarebytes Corporation ) C:\Users\Administrador\Downloads\mbam-setup.exe
2014-05-04 18:14 - 2014-05-04 18:14 - 00000768 _____ () C:\Users\Administrador\Desktop\JRT.txt
2014-05-04 18:12 - 2014-05-04 18:12 - 00000000 ____D () C:\Windows\ERUNT
2014-05-04 18:04 - 2014-05-04 18:04 - 01016261 _____ (Thisisu) C:\Users\Administrador\Downloads\JRT.exe
2014-05-04 10:24 - 2014-05-04 10:24 - 01085440 _____ () C:\Users\Administrador\Downloads\puush.msi
2014-05-04 10:24 - 2014-05-04 10:24 - 00000000 ____D () C:\Users\Administrador\AppData\Roaming\puush
2014-05-04 10:24 - 2014-05-04 10:24 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\puush
2014-05-04 10:17 - 2009-07-14 00:20 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
2014-05-04 10:16 - 2014-05-04 10:16 - 00000000 ____D () C:\Users\Administrador\AppData\Roaming\Macromedia
2014-05-04 10:16 - 2014-05-04 10:16 - 00000000 ____D () C:\Users\Administrador\AppData\Roaming\Adobe
2014-05-04 10:16 - 2014-05-04 10:16 - 00000000 ____D () C:\Users\Administrador\AppData\Local\Macromedia
2014-05-04 10:16 - 2014-05-04 10:13 - 00000000 ____D () C:\Users\Administrador\AppData\Local\Adobe
2014-05-04 10:14 - 2014-05-04 10:14 - 00692400 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-05-04 10:14 - 2014-05-04 10:14 - 00070832 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-05-04 10:14 - 2014-05-04 10:14 - 00003776 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-05-04 10:14 - 2014-05-04 10:14 - 00000000 ____D () C:\Windows\system32\Macromed
2014-05-04 10:14 - 2014-05-04 10:14 - 00000000 ____D () C:\ProgramData\McAfee
2014-05-04 09:45 - 2014-05-04 09:45 - 00001613 _____ () C:\Users\Public\Desktop\Play League of Legends.lnk
2014-05-04 09:45 - 2014-05-04 09:45 - 00000000 ____D () C:\Riot Games
2014-05-04 09:45 - 2014-05-04 09:45 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\League of Legends
2014-05-04 09:44 - 2014-05-04 09:44 - 00000000 ____D () C:\Users\Administrador\AppData\Roaming\Riot Games
2014-05-04 09:44 - 2014-05-04 09:44 - 00000000 ____D () C:\Program Files (x86)\Pando Networks
2014-05-04 09:44 - 2014-05-04 09:42 - 32268976 _____ (Riot Games) C:\Users\Administrador\Downloads\LeagueofLegends_LA1_Installer_06_11_13.exe
2014-05-04 09:37 - 2009-07-14 00:20 - 00000000 __RHD () C:\Users\Default
2014-05-04 09:36 - 2014-05-04 09:30 - 00000000 ____D () C:\Windows\erdnt
2014-05-04 09:30 - 2014-05-04 09:29 - 05197895 ____R (Swearware) C:\Users\Administrador\Downloads\ComboFix.exe
2014-05-04 09:28 - 2014-05-04 09:28 - 00688992 ____R (Swearware) C:\Users\Administrador\Downloads\dds.com
2014-05-04 09:28 - 2014-05-04 09:28 - 00009769 _____ () C:\Users\Administrador\Desktop\dds.txt
2014-05-04 09:28 - 2014-05-04 09:28 - 00003803 _____ () C:\Users\Administrador\Desktop\attach.txt
2014-05-04 09:24 - 2014-05-04 09:24 - 00001159 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2014-05-04 09:24 - 2014-05-04 09:24 - 00001147 _____ () C:\Users\Public\Desktop\Mozilla Firefox.lnk
2014-05-04 09:24 - 2014-05-04 09:24 - 00000000 ____D () C:\Users\Administrador\AppData\Roaming\Mozilla
2014-05-04 09:24 - 2014-05-04 09:24 - 00000000 ____D () C:\ProgramData\Mozilla
2014-05-04 09:24 - 2014-05-04 09:18 - 00000000 ____D () C:\Users\Administrador\AppData\Local\Mozilla
2014-05-04 09:22 - 2014-05-04 09:22 - 00283080 _____ (Mozilla) C:\Users\Administrador\Downloads\Firefox Setup Stub 29.0.exe
2014-05-04 09:18 - 2014-05-04 09:18 - 00000000 ____D () C:\ProgramData\ATI
2014-05-04 09:18 - 2014-05-04 09:18 - 00000000 ____D () C:\Program Files (x86)\AMD AVT
2014-05-04 09:18 - 2014-05-04 09:18 - 00000000 ____D () C:\Program Files (x86)\AMD APP
2014-05-04 09:18 - 2014-05-04 08:37 - 00000000 ____D () C:\ProgramData\AMD
2014-05-04 09:17 - 2014-05-04 09:17 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD VISION Engine Control Center
2014-05-04 09:17 - 2014-05-04 08:37 - 00000000 ____D () C:\Program Files\ATI Technologies
2014-05-04 09:16 - 2014-05-04 08:36 - 00000000 ____D () C:\Program Files (x86)\ATI Technologies
2014-05-04 09:10 - 2014-05-04 09:10 - 00000000 ____D () C:\Users\Administrador\AppData\Roaming\ATI
2014-05-04 09:10 - 2014-05-04 09:10 - 00000000 ____D () C:\Users\Administrador\AppData\Local\ATI
2014-05-04 09:10 - 2014-05-04 09:10 - 00000000 ____D () C:\Users\Administrador\AppData\Local\AMD
2014-05-04 09:04 - 2014-05-04 09:04 - 00000000 _____ () C:\Windows\ativpsrm.bin
2014-05-04 09:04 - 2009-07-14 01:45 - 00337576 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-05-04 08:52 - 2014-05-04 08:39 - 00002181 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2014-05-04 08:52 - 2014-05-04 08:39 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
2014-05-04 08:42 - 2014-05-04 08:42 - 00000036 _____ () C:\Users\Administrador\AppData\Local\housecall.guid.cache
2014-05-04 08:42 - 2014-05-04 08:42 - 00000000 ____D () C:\Program Files\Trend Micro
2014-05-04 08:39 - 2014-05-04 08:39 - 00002063 _____ () C:\Users\Public\Desktop\Super-Charger.lnk
2014-05-04 08:39 - 2014-05-04 08:39 - 00000000 ____D () C:\Windows\SysWOW64\RTCOM
2014-05-04 08:39 - 2014-05-04 08:39 - 00000000 ____D () C:\SuperChargerProfile
2014-05-04 08:39 - 2014-05-04 08:39 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MSI
2014-05-04 08:39 - 2014-05-04 08:39 - 00000000 ____D () C:\Program Files\Realtek
2014-05-04 08:39 - 2014-05-04 08:39 - 00000000 ____D () C:\Program Files (x86)\MSI
2014-05-04 08:39 - 2014-05-04 08:38 - 00002306 _____ () C:\RHDSetup.log
2014-05-04 08:39 - 2014-05-04 08:38 - 00000189 _____ () C:\mylog.log
2014-05-04 08:38 - 2014-05-04 08:38 - 00000000 ____D () C:\Program Files\Common Files\ATI Technologies
2014-05-04 08:38 - 2014-05-04 08:38 - 00000000 ____D () C:\Program Files (x86)\Realtek
2014-05-04 08:38 - 2014-05-04 07:25 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2014-05-04 08:36 - 2014-05-04 08:36 - 00000000 ____D () C:\Program Files\ATI
2014-05-04 08:36 - 2009-07-14 00:20 - 00000000 ____D () C:\Program Files\Common Files\Microsoft Shared
2014-05-04 08:27 - 2014-05-04 08:27 - 00000000 ____D () C:\MSI
2014-05-04 07:48 - 2014-05-04 07:48 - 00000000 ____D () C:\Windows\system32\appmgmt
2014-05-04 07:39 - 2014-05-04 07:39 - 00000000 ____D () C:\Users\Administrador\AppData\Roaming\Media Player Classic
2014-05-04 07:34 - 2014-05-04 07:30 - 00000000 ____D () C:\Program Files (x86)\The KMPlayer
2014-05-04 07:33 - 2014-05-04 07:30 - 00000000 ____D () C:\Program Files (x86)\AIMP2 Tools
2014-05-04 07:31 - 2014-05-04 07:31 - 00001427 _____ () C:\Users\Administrador\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-05-04 07:31 - 2014-05-04 07:31 - 00001393 _____ () C:\Users\Administrador\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer (64-bit).lnk
2014-05-04 07:31 - 2014-05-04 07:31 - 00000000 ___RD () C:\Users\Administrador\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2014-05-04 07:31 - 2014-05-04 07:31 - 00000000 ___RD () C:\Users\Administrador\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2014-05-04 07:31 - 2014-05-04 07:30 - 00000000 ____D () C:\1b9248a80cb1fb9d299b9659
2014-05-04 07:31 - 2014-05-04 07:17 - 00000000 ____D () C:\Users\Administrador
2014-05-04 07:31 - 2009-07-14 01:57 - 00001547 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2014-05-04 07:30 - 2014-05-04 07:30 - 00000963 _____ () C:\Users\Public\Desktop\AIMP2.lnk
2014-05-04 07:30 - 2014-05-04 07:30 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AIMP2
2014-05-04 07:29 - 2014-05-04 07:29 - 00001037 _____ () C:\Users\Administrador\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\uTorrent 2.0.2.lnk
2014-05-04 07:29 - 2014-05-04 07:29 - 00001007 _____ () C:\Users\Administrador\Desktop\CCleaner.lnk
2014-05-04 07:29 - 2014-05-04 07:29 - 00000977 _____ () C:\Users\Administrador\Desktop\Total Video Player.lnk
2014-05-04 07:29 - 2014-05-04 07:29 - 00000977 _____ () C:\Users\Administrador\Desktop\Total Video Converter.lnk
2014-05-04 07:29 - 2014-05-04 07:29 - 00000000 ____D () C:\Users\Administrador\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2014-05-04 07:29 - 2014-05-04 07:29 - 00000000 ____D () C:\Users\Administrador\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CCleaner
2014-05-04 07:29 - 2014-05-04 07:29 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2014-05-04 07:29 - 2014-05-04 07:29 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Total Video Converter
2014-05-04 07:29 - 2014-05-04 07:29 - 00000000 ____D () C:\Program Files (x86)\Winrar
2014-05-04 07:29 - 2014-05-04 07:29 - 00000000 ____D () C:\Program Files (x86)\Total Video Converter
2014-05-04 07:29 - 2014-05-04 07:29 - 00000000 ____D () C:\Program Files (x86)\CCleaner
2014-05-04 07:28 - 2014-05-04 07:27 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live
2014-05-04 07:28 - 2014-05-04 07:26 - 00000000 ____D () C:\Program Files (x86)\Windows Live
2014-05-04 07:28 - 2014-05-04 07:17 - 00084128 _____ () C:\Users\Administrador\AppData\Local\GDIPFONTCACHEV1.DAT
2014-05-04 07:27 - 2014-05-04 07:27 - 00000000 ____D () C:\Program Files (x86)\Windows Live SkyDrive
2014-05-04 07:26 - 2014-05-04 07:26 - 00000000 ____D () C:\Windows\SysWOW64\Macromed
2014-05-04 07:25 - 2014-05-04 07:25 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QT Lite
2014-05-04 07:25 - 2014-05-04 07:25 - 00000000 ____D () C:\ProgramData\Apple Computer
2014-05-04 07:25 - 2014-05-04 07:25 - 00000000 ____D () C:\Program Files (x86)\QT Lite
2014-05-04 07:24 - 2014-05-04 07:24 - 00029480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3a.dll
2014-05-04 07:24 - 2014-05-04 07:24 - 00000000 ____D () C:\Program Files (x86)\CyberLink
2014-05-04 07:24 - 2010-04-29 06:47 - 00505128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcp71.dll
2014-05-04 07:24 - 2010-04-29 06:47 - 00353576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcr71.dll
2014-05-04 07:23 - 2014-05-04 07:23 - 00000376 _____ () C:\Windows\ODBC.INI
2014-05-04 07:23 - 2014-05-04 07:23 - 00000000 ____D () C:\Windows\SysWOW64\Adobe
2014-05-04 07:23 - 2014-05-04 07:23 - 00000000 ____D () C:\Program Files (x86)\MSECache
2014-05-04 07:23 - 2014-05-04 07:22 - 00000000 ____D () C:\Program Files (x86)\Microsoft Office
2014-05-04 07:22 - 2014-05-04 07:22 - 00411368 _____ (Sun Microsystems, Inc.) C:\Windows\SysWOW64\deployJava1.dll
2014-05-04 07:22 - 2014-05-04 07:22 - 00153376 _____ (Sun Microsystems, Inc.) C:\Windows\SysWOW64\javaws.exe
2014-05-04 07:22 - 2014-05-04 07:22 - 00145184 _____ (Sun Microsystems, Inc.) C:\Windows\SysWOW64\javaw.exe
2014-05-04 07:22 - 2014-05-04 07:22 - 00145184 _____ (Sun Microsystems, Inc.) C:\Windows\SysWOW64\java.exe
2014-05-04 07:22 - 2014-05-04 07:22 - 00000000 ____D () C:\Windows\SHELLNEW
2014-05-04 07:22 - 2014-05-04 07:22 - 00000000 ____D () C:\Windows\PCHEALTH
2014-05-04 07:22 - 2014-05-04 07:22 - 00000000 ____D () C:\ProgramData\Sun
2014-05-04 07:22 - 2014-05-04 07:22 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
2014-05-04 07:22 - 2014-05-04 07:22 - 00000000 ____D () C:\Program Files (x86)\Microsoft Works
2014-05-04 07:22 - 2014-05-04 07:22 - 00000000 ____D () C:\Program Files (x86)\Java
2014-05-04 07:22 - 2009-07-14 00:20 - 00000000 ____D () C:\Windows\system
2014-05-04 07:22 - 2009-07-14 00:20 - 00000000 ____D () C:\Windows\IME
2014-05-04 07:22 - 2009-07-14 00:20 - 00000000 ____D () C:\Windows\Help
2014-05-04 07:21 - 2014-05-04 07:21 - 00002026 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader 9.lnk
2014-05-04 07:21 - 2014-05-04 07:21 - 00000000 ____D () C:\ProgramData\Adobe
2014-05-04 07:21 - 2014-05-04 07:21 - 00000000 ____D () C:\Program Files (x86)\Adobe
2014-05-04 07:21 - 2009-07-14 02:32 - 00000000 ____D () C:\Windows\system32\restore
2014-05-04 07:18 - 2009-07-13 20:55 - 00332288 _____ (Microsoft Corporation) C:\Windows\system32\uxtheme.dll
2014-05-04 07:18 - 2009-07-13 20:54 - 02851328 _____ (Microsoft Corporation) C:\Windows\system32\themeui.dll
2014-05-04 07:18 - 2009-07-13 20:54 - 00044544 _____ (Microsoft Corporation) C:\Windows\system32\themeservice.dll
2014-05-04 07:17 - 2014-05-04 07:17 - 00000020 ___SH () C:\Users\Administrador\ntuser.ini
2014-05-04 07:17 - 2014-05-04 07:17 - 00000000 _SHDL () C:\Users\Public\Documents\Mis vídeos
2014-05-04 07:17 - 2014-05-04 07:17 - 00000000 _SHDL () C:\Users\Public\Documents\Mis imágenes
2014-05-04 07:17 - 2014-05-04 07:17 - 00000000 _SHDL () C:\Users\Public\Documents\Mi música
2014-05-04 07:17 - 2014-05-04 07:17 - 00000000 _SHDL () C:\Users\Default\Reciente
2014-05-04 07:17 - 2014-05-04 07:17 - 00000000 _SHDL () C:\Users\Default\Plantillas
2014-05-04 07:17 - 2014-05-04 07:17 - 00000000 _SHDL () C:\Users\Default\Mis documentos
2014-05-04 07:17 - 2014-05-04 07:17 - 00000000 _SHDL () C:\Users\Default\Menú Inicio
2014-05-04 07:17 - 2014-05-04 07:17 - 00000000 _SHDL () C:\Users\Default\Impresoras
2014-05-04 07:17 - 2014-05-04 07:17 - 00000000 _SHDL () C:\Users\Default\Entorno de red
2014-05-04 07:17 - 2014-05-04 07:17 - 00000000 _SHDL () C:\Users\Default\Documents\Mis vídeos
2014-05-04 07:17 - 2014-05-04 07:17 - 00000000 _SHDL () C:\Users\Default\Documents\Mis imágenes
2014-05-04 07:17 - 2014-05-04 07:17 - 00000000 _SHDL () C:\Users\Default\Documents\Mi música
2014-05-04 07:17 - 2014-05-04 07:17 - 00000000 _SHDL () C:\Users\Default\Datos de programa
2014-05-04 07:17 - 2014-05-04 07:17 - 00000000 _SHDL () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programas
2014-05-04 07:17 - 2014-05-04 07:17 - 00000000 _SHDL () C:\Users\Default\AppData\Local\Historial
2014-05-04 07:17 - 2014-05-04 07:17 - 00000000 _SHDL () C:\Users\Default\AppData\Local\Datos de programa
2014-05-04 07:17 - 2014-05-04 07:17 - 00000000 _SHDL () C:\Users\Default\AppData\Local\Archivos temporales de Internet
2014-05-04 07:17 - 2014-05-04 07:17 - 00000000 _SHDL () C:\Users\Default User\Documents\Mis vídeos
2014-05-04 07:17 - 2014-05-04 07:17 - 00000000 _SHDL () C:\Users\Default User\Documents\Mis imágenes
2014-05-04 07:17 - 2014-05-04 07:17 - 00000000 _SHDL () C:\Users\Default User\Documents\Mi música
2014-05-04 07:17 - 2014-05-04 07:17 - 00000000 _SHDL () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programas
2014-05-04 07:17 - 2014-05-04 07:17 - 00000000 _SHDL () C:\Users\Default User\AppData\Local\Historial
2014-05-04 07:17 - 2014-05-04 07:17 - 00000000 _SHDL () C:\Users\Default User\AppData\Local\Datos de programa
2014-05-04 07:17 - 2014-05-04 07:17 - 00000000 _SHDL () C:\Users\Default User\AppData\Local\Archivos temporales de Internet
2014-05-04 07:17 - 2014-05-04 07:17 - 00000000 _SHDL () C:\Users\Administrador\Reciente
2014-05-04 07:17 - 2014-05-04 07:17 - 00000000 _SHDL () C:\Users\Administrador\Plantillas
2014-05-04 07:17 - 2014-05-04 07:17 - 00000000 _SHDL () C:\Users\Administrador\Mis documentos
2014-05-04 07:17 - 2014-05-04 07:17 - 00000000 _SHDL () C:\Users\Administrador\Menú Inicio
2014-05-04 07:17 - 2014-05-04 07:17 - 00000000 _SHDL () C:\Users\Administrador\Impresoras
2014-05-04 07:17 - 2014-05-04 07:17 - 00000000 _SHDL () C:\Users\Administrador\Entorno de red
2014-05-04 07:17 - 2014-05-04 07:17 - 00000000 _SHDL () C:\Users\Administrador\Documents\Mis vídeos
2014-05-04 07:17 - 2014-05-04 07:17 - 00000000 _SHDL () C:\Users\Administrador\Documents\Mis imágenes
2014-05-04 07:17 - 2014-05-04 07:17 - 00000000 _SHDL () C:\Users\Administrador\Documents\Mi música
2014-05-04 07:17 - 2014-05-04 07:17 - 00000000 _SHDL () C:\Users\Administrador\Datos de programa
2014-05-04 07:17 - 2014-05-04 07:17 - 00000000 _SHDL () C:\Users\Administrador\AppData\Roaming\Microsoft\Windows\Start Menu\Programas
2014-05-04 07:17 - 2014-05-04 07:17 - 00000000 _SHDL () C:\Users\Administrador\AppData\Local\Historial
2014-05-04 07:17 - 2014-05-04 07:17 - 00000000 _SHDL () C:\Users\Administrador\AppData\Local\Datos de programa
2014-05-04 07:17 - 2014-05-04 07:17 - 00000000 _SHDL () C:\Users\Administrador\AppData\Local\Archivos temporales de Internet
2014-05-04 07:17 - 2014-05-04 07:17 - 00000000 _SHDL () C:\ProgramData\Plantillas
2014-05-04 07:17 - 2014-05-04 07:17 - 00000000 _SHDL () C:\ProgramData\Microsoft\Windows\Start Menu\Programas
2014-05-04 07:17 - 2014-05-04 07:17 - 00000000 _SHDL () C:\ProgramData\Menú Inicio
2014-05-04 07:17 - 2014-05-04 07:17 - 00000000 _SHDL () C:\ProgramData\Favoritos
2014-05-04 07:17 - 2014-05-04 07:17 - 00000000 _SHDL () C:\ProgramData\Escritorio
2014-05-04 07:17 - 2014-05-04 07:17 - 00000000 _SHDL () C:\ProgramData\Documentos
2014-05-04 07:17 - 2014-05-04 07:17 - 00000000 _SHDL () C:\ProgramData\Datos de programa
2014-05-04 07:17 - 2014-05-04 07:17 - 00000000 _SHDL () C:\Program Files\Archivos comunes
2014-05-04 07:17 - 2014-05-04 07:17 - 00000000 _SHDL () C:\Archivos de programa
2014-05-04 07:17 - 2014-05-04 07:17 - 00000000 ____D () C:\Recovery
2014-05-04 07:17 - 2014-05-04 03:12 - 00000000 ____D () C:\Windows\Panther
2014-05-04 07:17 - 2009-07-14 00:20 - 00000000 ____D () C:\Windows\system32\Recovery
2014-05-04 07:17 - 2009-07-14 00:20 - 00000000 ____D () C:\Windows\rescache
2014-05-04 07:17 - 2009-07-14 00:20 - 00000000 ____D () C:\Program Files\Windows NT
2014-05-04 07:15 - 2009-07-14 00:20 - 00000000 ____D () C:\Windows\system32\sysprep
2014-05-04 07:13 - 2009-07-14 07:11 - 00000000 ____D () C:\Windows\CSC
2014-05-04 03:12 - 2009-07-14 02:38 - 00025600 ___SH () C:\Windows\system32\config\BCD-Template.LOG
2014-05-04 03:12 - 2009-07-14 02:32 - 00028672 _____ () C:\Windows\system32\config\BCD-Template

Some content of TEMP:
====================
C:\Users\Administrador\AppData\Local\temp\Quarantine.exe


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2014-05-04 08:52

==================== End Of Log ============================


Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 11-05-2014
Ran by Administrador (administrator) on WIN-PNBUVJ9FTUG on 11-05-2014 11:57:35
Running from C:\Users\Administrador\Downloads
Platform: Windows 7 Ultimate (X64) OS Language: Spanish Modern Sort
Internet Explorer Version 8
Boot Mode: Safe Mode (with Networking)

The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/81/
Download link for 64-Bit Version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/82/
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [6839952 2012-09-12] (Realtek Semiconductor)
HKLM-x32\...\Run: [SunJavaUpdateSched] => -
HKLM-x32\...\Run: [Super-Charger] => C:\Program Files (x86)\MSI\Super-Charger\Super-Charger.exe [502328 2012-10-23] (MSI)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [642216 2012-08-06] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [SDTray] => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe [4101584 2014-04-25] (Safer-Networking Ltd.)
Winlogon\Notify\SDWinLogon-x32: SDWinLogon.dll [X]
HKU\S-1-5-21-1683039108-844445456-3957198558-500\...\Run: [puush] => C:\Program Files (x86)\puush\puush.exe [567880 2014-05-04] ()
HKU\S-1-5-21-1683039108-844445456-3957198558-500\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [20922016 2014-02-10] (Skype Technologies S.A.)
HKU\S-1-5-21-1683039108-844445456-3957198558-500\...\Policies\system: [DisableLockWorkstation] 1
HKU\S-1-5-21-1683039108-844445456-3957198558-500\...\Policies\Explorer: [AlwaysShowClassicMenu] 1
HKU\S-1-5-21-1683039108-844445456-3957198558-500\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1
HKU\S-1-5-21-1683039108-844445456-3957198558-500\...\Policies\Explorer: [NoRecentDocsHistory] 1
HKU\S-1-5-21-1683039108-844445456-3957198558-500\...\Policies\Explorer: [NoRecentDocsMenu] 1
HKU\S-1-5-21-1683039108-844445456-3957198558-500\...\Policies\Explorer: [NoCDBurning] 1

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = www.google.com
StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
BHO-x32: Adobe PDF Link Helper - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
BHO-x32: Windows Live Aplicación auxiliar de inicio de sesión - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
BHO-x32: Java™ Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
Toolbar: HKCU - No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} -  No File
DPF: HKLM {7530BFB8-7293-4D34-9923-61A11451AFC5} http://download.eset.com/special/eos/OnlineScanner.cab
Handler-x32: http\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: http\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: https\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: https\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.14.0.8117.0416.dll (Microsoft Corporation)
Handler-x32: msdaipp\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: msdaipp\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.14.0.8117.0416.dll (Microsoft Corporation)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Filter: text/xml - {807553E5-5146-11D5-A672-00B0D022E945} -  No File
Tcpip\Parameters: [DhcpNameServer] 10.0.0.2

FireFox:
========
FF ProfilePath: C:\Users\Administrador\AppData\Roaming\Mozilla\Firefox\Profiles\q32brp3f.default
FF SearchEngineOrder.1: (Google)
FF SelectedSearchEngine: Google
FF Homepage: hxxp://google.com
FF Keyword.URL: https://www.google.com/search?q=
FF NetworkProxy: "autoconfig_url", "https://mediahint.com/default.pac"
FF NetworkProxy: "type", 2
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_13_0_0_206.dll ()
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_13_0_0_206.dll ()
FF Plugin-x32: @adobe.com/ShockwavePlayer - C:\Windows\system32\Adobe\Director\np32dsw.dll No File
FF Plugin-x32: @pandonetworks.com/PandoWebPlugin - C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.24.7\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.24.7\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: pandonetworks.com/PandoWebPlugin - C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin2.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin3.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin4.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin5.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin6.dll (Apple Inc.)
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\creativecommons.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\drae.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\mercadolibre-ar.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-ar.xml
FF Extension: Media Hint - C:\Users\Administrador\AppData\Roaming\Mozilla\Firefox\Profiles\q32brp3f.default\Extensions\mediahint@jetpack.xpi [2014-05-04]
FF Extension: Adblock Plus - C:\Users\Administrador\AppData\Roaming\Mozilla\Firefox\Profiles\q32brp3f.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2014-05-04]

Chrome:
=======
CHR HomePage: hxxp://www.google.com/
CHR StartupUrls: "hxxp://www.google.com/"
CHR DefaultSearchURL: {google:baseURL}search?{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}{google:searchFieldtrialParameter}{google:instantFieldTrialGroupParameter}sourceid=chrome&ie={inputEncoding}&q={searchTerms}
CHR Extension: (Google Docs) - C:\Users\Administrador\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-05-04]
CHR Extension: (Google Drive) - C:\Users\Administrador\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-05-04]
CHR Extension: (YouTube) - C:\Users\Administrador\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-05-04]
CHR Extension: (Google Search) - C:\Users\Administrador\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-05-04]
CHR Extension: (Google Wallet) - C:\Users\Administrador\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-05-04]
CHR Extension: (Gmail) - C:\Users\Administrador\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-05-04]

==================== Services (Whitelisted) =================

S2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [361984 2012-08-06] (Advanced Micro Devices, Inc.)
S2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [1809720 2014-04-03] (Malwarebytes Corporation)
S2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [857912 2014-04-03] (Malwarebytes Corporation)
S2 MSI_SuperCharger; C:\Program Files (x86)\MSI\Super-Charger\ChargeService.exe [143416 2012-10-25] (MSI)
S2 SDScannerService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [1738200 2014-04-25] (Safer-Networking Ltd.)
S2 SDUpdateService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [2081752 2014-04-25] (Safer-Networking Ltd.)
S2 SDWSCService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [171928 2014-04-25] (Safer-Networking Ltd.)

==================== Drivers (Whitelisted) ====================

S2 AODDriver4.1; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [53888 2012-03-05] (Advanced Micro Devices)
S3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2014-04-03] (Malwarebytes Corporation)
S3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [63192 2014-04-03] (Malwarebytes Corporation)
S3 NTIOLib_1_0_3; C:\Program Files (x86)\MSI\Super-Charger\NTIOLib_X64.sys [13368 2012-10-25] (MSI)
S3 catchme; \??\C:\ComboFix\catchme.sys [X]
S3 NTIOLib_1_0_C; \??\E:\NTIOLib_X64.sys [X]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-05-11 11:57 - 2014-05-11 11:57 - 00010845 _____ () C:\Users\Administrador\Downloads\FRST.txt
2014-05-11 11:57 - 2014-05-11 11:57 - 00000000 ____D () C:\FRST
2014-05-11 11:56 - 2014-05-11 11:57 - 02066432 _____ (Farbar) C:\Users\Administrador\Downloads\FRST64.exe
2014-05-09 20:14 - 2014-05-09 20:14 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-05-08 06:47 - 2014-05-08 06:47 - 00000000 ___SD () C:\ComboFix
2014-05-07 19:15 - 2014-05-07 19:16 - 01316991 _____ () C:\Users\Administrador\Downloads\AdwCleaner.exe
2014-05-07 19:13 - 2014-05-07 19:13 - 00982016 _____ (Farbar) C:\Users\Administrador\Downloads\MiniToolBox.exe
2014-05-07 19:13 - 2014-05-07 19:13 - 00024009 _____ () C:\Users\Administrador\Downloads\Result.txt
2014-05-07 18:51 - 2014-05-07 19:11 - 00000454 _____ () C:\Users\Administrador\Desktop\ffe.txt
2014-05-07 14:04 - 2014-05-07 14:04 - 00000000 ____D () C:\Users\Administrador\Desktop\Nueva carpeta
2014-05-07 13:59 - 2014-05-07 13:59 - 00000000 ____D () C:\Users\Administrador\AppData\Local\Skype
2014-05-07 13:58 - 2014-05-10 14:28 - 00000000 ____D () C:\Users\Administrador\AppData\Roaming\Skype
2014-05-07 13:58 - 2014-05-07 13:58 - 00002697 _____ () C:\Users\Public\Desktop\Skype.lnk
2014-05-07 13:58 - 2014-05-07 13:58 - 00000000 ___RD () C:\Program Files (x86)\Skype
2014-05-07 13:58 - 2014-05-07 13:58 - 00000000 ____D () C:\ProgramData\Skype
2014-05-07 13:58 - 2014-05-07 13:58 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2014-05-07 13:57 - 2014-05-07 13:57 - 01678496 _____ (Skype Technologies S.A.) C:\Users\Administrador\Downloads\SkypeSetup.exe
2014-05-05 13:12 - 2014-05-05 13:12 - 00000000 ____D () C:\Users\Administrador\AppData\Roaming\LolClient
2014-05-05 13:11 - 2014-05-05 13:11 - 00001111 _____ () C:\Users\Administrador\Desktop\system - Acceso directo.lnk
2014-05-05 10:00 - 2014-05-05 10:00 - 00000000 ____D () C:\Users\Administrador\Documents\ProcAlyzer Dumps
2014-05-05 09:59 - 2014-05-05 09:59 - 00000000 ____D () C:\Windows\System32\Tasks\Safer-Networking
2014-05-05 09:58 - 2014-05-05 10:30 - 00000000 ____D () C:\ProgramData\Spybot - Search & Destroy
2014-05-05 09:58 - 2014-05-05 10:05 - 00000000 ____D () C:\Program Files (x86)\Spybot - Search & Destroy 2
2014-05-05 09:58 - 2014-05-05 09:58 - 00001391 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot-S&D Start Center.lnk
2014-05-05 09:58 - 2014-05-05 09:58 - 00001379 _____ () C:\Users\Public\Desktop\Spybot-S&D Start Center.lnk
2014-05-05 09:58 - 2014-05-05 09:58 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot - Search & Destroy 2
2014-05-05 09:58 - 2013-09-20 10:49 - 00021040 _____ (Safer Networking Limited) C:\Windows\system32\sdnclean64.exe
2014-05-05 09:54 - 2014-05-05 09:58 - 46392680 _____ (Safer-Networking Ltd. ) C:\Users\Administrador\Downloads\spybot-2.3.exe
2014-05-05 09:35 - 2014-05-05 09:41 - 00017819 _____ () C:\Users\Administrador\Desktop\hijackthis.log
2014-05-05 09:31 - 2014-05-05 09:31 - 00002971 _____ () C:\Users\Administrador\Desktop\HiJackThis.lnk
2014-05-05 09:31 - 2014-05-05 09:31 - 00000000 ____D () C:\Users\Administrador\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\HiJackThis
2014-05-05 09:31 - 2014-05-05 09:31 - 00000000 ____D () C:\Program Files (x86)\Trend Micro
2014-05-05 09:30 - 2014-05-05 09:30 - 01402880 _____ () C:\Users\Administrador\Downloads\HiJackThis.msi
2014-05-05 09:24 - 2014-05-05 09:30 - 00000000 ____D () C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2014-05-05 09:22 - 2014-05-05 09:30 - 00000000 ____D () C:\Users\Administrador\Desktop\mbar
2014-05-05 09:22 - 2014-05-05 09:22 - 12589848 _____ (Malwarebytes Corp.) C:\Users\Administrador\Downloads\mbar-1.07.0.1009.exe
2014-05-05 09:17 - 2014-05-05 09:18 - 00010827 _____ () C:\AT-Destroyer.txt
2014-05-05 09:16 - 2014-05-05 09:17 - 00000000 ____D () C:\_AT-Destroyer
2014-05-05 09:16 - 2014-05-05 09:16 - 01199088 _____ () C:\Users\Administrador\Downloads\AT-Destroyer.exe
2014-05-05 09:15 - 2014-05-10 14:24 - 00000728 _____ () C:\Windows\setupact.log
2014-05-05 09:15 - 2014-05-05 09:15 - 00000000 _____ () C:\Windows\setuperr.log
2014-05-05 09:10 - 2014-05-05 09:10 - 00000000 ____D () C:\TDSSKiller_Quarantine
2014-05-05 07:33 - 2014-05-05 07:34 - 04164448 _____ (Kaspersky Lab ZAO) C:\Users\Administrador\Downloads\tdsskiller.exe
2014-05-05 07:29 - 2014-05-05 07:32 - 00000000 ____D () C:\Program Files (x86)\Trojan . Shutdown Removal Tool
2014-05-05 07:29 - 2014-05-05 07:29 - 00001419 _____ () C:\Users\Administrador\Desktop\Trojan . Shutdown Removal Tool.lnk
2014-05-05 07:29 - 2014-05-05 07:29 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Trojan . Shutdown Removal Tool
2014-05-05 07:29 - 2013-11-05 14:38 - 01122304 _____ (The OpenSSL Project, http://www.openssl.org/) C:\Windows\SysWOW64\libeay32.dll
2014-05-05 07:29 - 2013-11-05 14:38 - 00274432 _____ (The OpenSSL Project, http://www.openssl.org/) C:\Windows\SysWOW64\ssleay32.dll
2014-05-05 07:29 - 2012-12-10 11:04 - 00356352 _____ (eSellerate Inc.) C:\Windows\eSellerateEngine.dll
2014-05-05 07:29 - 2012-12-10 11:04 - 00081920 _____ (eSellerate Inc.) C:\Windows\eSellerateControl350.dll
2014-05-05 07:26 - 2014-05-05 07:26 - 03249776 _____ (Security Stronghold ) C:\Users\Administrador\Downloads\Trojan.ShutdownRemovalTool.exe
2014-05-05 07:24 - 2014-05-09 07:14 - 00002938 _____ () C:\Windows\PFRO.log
2014-05-04 20:14 - 2014-05-07 09:45 - 00000000 ____D () C:\Users\Administrador\AppData\Roaming\TS3Client
2014-05-04 20:14 - 2014-05-04 20:14 - 00000967 _____ () C:\Users\Public\Desktop\TeamSpeak 3 Client.lnk
2014-05-04 20:14 - 2014-05-04 20:14 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamSpeak 3 Client
2014-05-04 20:14 - 2014-05-04 20:14 - 00000000 ____D () C:\Program Files\TeamSpeak 3 Client
2014-05-04 20:03 - 2014-05-04 20:14 - 29498592 _____ (TeamSpeak Systems GmbH) C:\Users\Administrador\Downloads\TeamSpeak3-Client-win64-3.0.14.exe
2014-05-04 19:33 - 2014-05-05 09:16 - 00000000 ____D () C:\ProgramData\Package Cache
2014-05-04 19:32 - 2014-05-04 19:33 - 04530864 _____ (Avira Operations GmbH & Co. KG) C:\Users\Administrador\Downloads\avira_es_av___ws.exe
2014-05-04 18:50 - 2014-05-04 18:50 - 00000000 ____D () C:\Users\Administrador\AppData\Roaming\Google
2014-05-04 18:19 - 2014-05-10 14:25 - 00119512 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-05-04 18:19 - 2014-05-05 09:22 - 00091352 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2014-05-04 18:19 - 2014-05-04 19:29 - 00001102 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2014-05-04 18:19 - 2014-05-04 19:29 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2014-05-04 18:19 - 2014-05-04 19:29 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware
2014-05-04 18:19 - 2014-05-04 18:19 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-05-04 18:19 - 2014-04-03 09:51 - 00063192 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2014-05-04 18:19 - 2014-04-03 09:50 - 00025816 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2014-05-04 18:17 - 2014-05-04 18:19 - 17523520 _____ (Malwarebytes Corporation ) C:\Users\Administrador\Downloads\mbam-setup.exe
2014-05-04 18:14 - 2014-05-04 18:14 - 00000768 _____ () C:\Users\Administrador\Desktop\JRT.txt
2014-05-04 18:12 - 2014-05-04 18:12 - 00000000 ____D () C:\Windows\ERUNT
2014-05-04 18:06 - 2010-08-30 08:34 - 00536576 _____ (SQLite Development Team) C:\Windows\SysWOW64\sqlite3.dll
2014-05-04 18:05 - 2014-05-07 19:17 - 00000000 ____D () C:\AdwCleaner
2014-05-04 18:04 - 2014-05-04 18:04 - 01016261 _____ (Thisisu) C:\Users\Administrador\Downloads\JRT.exe
2014-05-04 10:24 - 2014-05-04 18:29 - 00000000 ____D () C:\Program Files (x86)\puush
2014-05-04 10:24 - 2014-05-04 10:24 - 01085440 _____ () C:\Users\Administrador\Downloads\puush.msi
2014-05-04 10:24 - 2014-05-04 10:24 - 00000000 ____D () C:\Users\Administrador\AppData\Roaming\puush
2014-05-04 10:24 - 2014-05-04 10:24 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\puush
2014-05-04 10:16 - 2014-05-04 10:16 - 00000000 ____D () C:\Users\Administrador\AppData\Roaming\Macromedia
2014-05-04 10:16 - 2014-05-04 10:16 - 00000000 ____D () C:\Users\Administrador\AppData\Roaming\Adobe
2014-05-04 10:16 - 2014-05-04 10:16 - 00000000 ____D () C:\Users\Administrador\AppData\Local\Macromedia
2014-05-04 10:14 - 2014-05-09 22:10 - 00000838 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-05-04 10:14 - 2014-05-04 10:14 - 00692400 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-05-04 10:14 - 2014-05-04 10:14 - 00070832 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-05-04 10:14 - 2014-05-04 10:14 - 00003776 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-05-04 10:14 - 2014-05-04 10:14 - 00000000 ____D () C:\Windows\system32\Macromed
2014-05-04 10:14 - 2014-05-04 10:14 - 00000000 ____D () C:\ProgramData\McAfee
2014-05-04 10:13 - 2014-05-04 10:16 - 00000000 ____D () C:\Users\Administrador\AppData\Local\Adobe
2014-05-04 09:45 - 2014-05-04 09:45 - 00001613 _____ () C:\Users\Public\Desktop\Play League of Legends.lnk
2014-05-04 09:45 - 2014-05-04 09:45 - 00000000 ____D () C:\Riot Games
2014-05-04 09:45 - 2014-05-04 09:45 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\League of Legends
2014-05-04 09:45 - 2008-07-12 08:18 - 03851784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_39.dll
2014-05-04 09:45 - 2008-07-12 08:18 - 01493528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_39.dll
2014-05-04 09:45 - 2008-07-12 08:18 - 00467984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_39.dll
2014-05-04 09:44 - 2014-05-10 14:43 - 00000000 ____D () C:\Users\Administrador\AppData\Local\PMB Files
2014-05-04 09:44 - 2014-05-07 09:13 - 00000000 ____D () C:\ProgramData\PMB Files
2014-05-04 09:44 - 2014-05-04 09:44 - 00000000 ____D () C:\Users\Administrador\AppData\Roaming\Riot Games
2014-05-04 09:44 - 2014-05-04 09:44 - 00000000 ____D () C:\Program Files (x86)\Pando Networks
2014-05-04 09:42 - 2014-05-04 09:44 - 32268976 _____ (Riot Games) C:\Users\Administrador\Downloads\LeagueofLegends_LA1_Installer_06_11_13.exe
2014-05-04 09:30 - 2014-05-08 06:47 - 00000000 ____D () C:\Qoobox
2014-05-04 09:30 - 2014-05-04 09:36 - 00000000 ____D () C:\Windows\erdnt
2014-05-04 09:30 - 2011-06-26 03:45 - 00256000 _____ () C:\Windows\PEV.exe
2014-05-04 09:30 - 2010-11-07 14:20 - 00208896 _____ () C:\Windows\MBR.exe
2014-05-04 09:30 - 2009-04-20 01:56 - 00060416 _____ (NirSoft) C:\Windows\NIRCMD.exe
2014-05-04 09:30 - 2000-08-30 21:00 - 00518144 _____ (SteelWerX) C:\Windows\SWREG.exe
2014-05-04 09:30 - 2000-08-30 21:00 - 00406528 _____ (SteelWerX) C:\Windows\SWSC.exe
2014-05-04 09:30 - 2000-08-30 21:00 - 00098816 _____ () C:\Windows\sed.exe
2014-05-04 09:30 - 2000-08-30 21:00 - 00080412 _____ () C:\Windows\grep.exe
2014-05-04 09:30 - 2000-08-30 21:00 - 00068096 _____ () C:\Windows\zip.exe
2014-05-04 09:29 - 2014-05-04 09:30 - 05197895 ____R (Swearware) C:\Users\Administrador\Downloads\ComboFix.exe
2014-05-04 09:28 - 2014-05-04 09:28 - 00688992 ____R (Swearware) C:\Users\Administrador\Downloads\dds.com
2014-05-04 09:28 - 2014-05-04 09:28 - 00009769 _____ () C:\Users\Administrador\Desktop\dds.txt
2014-05-04 09:28 - 2014-05-04 09:28 - 00003803 _____ () C:\Users\Administrador\Desktop\attach.txt
2014-05-04 09:24 - 2014-05-11 11:55 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2014-05-04 09:24 - 2014-05-04 09:24 - 00001159 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2014-05-04 09:24 - 2014-05-04 09:24 - 00001147 _____ () C:\Users\Public\Desktop\Mozilla Firefox.lnk
2014-05-04 09:24 - 2014-05-04 09:24 - 00000000 ____D () C:\Users\Administrador\AppData\Roaming\Mozilla
2014-05-04 09:24 - 2014-05-04 09:24 - 00000000 ____D () C:\ProgramData\Mozilla
2014-05-04 09:22 - 2014-05-04 09:22 - 00283080 _____ (Mozilla) C:\Users\Administrador\Downloads\Firefox Setup Stub 29.0.exe
2014-05-04 09:18 - 2014-05-04 09:24 - 00000000 ____D () C:\Users\Administrador\AppData\Local\Mozilla
2014-05-04 09:18 - 2014-05-04 09:18 - 00000000 ____D () C:\ProgramData\ATI
2014-05-04 09:18 - 2014-05-04 09:18 - 00000000 ____D () C:\Program Files (x86)\AMD AVT
2014-05-04 09:18 - 2014-05-04 09:18 - 00000000 ____D () C:\Program Files (x86)\AMD APP
2014-05-04 09:17 - 2014-05-04 09:17 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD VISION Engine Control Center
2014-05-04 09:16 - 2012-05-14 03:12 - 00096896 _____ (Advanced Micro Devices) C:\Windows\system32\Drivers\AtihdW76.sys
2014-05-04 09:15 - 2012-07-28 00:43 - 00070144 _____ (AMD) C:\Windows\system32\coinst_8.982.dll
2014-05-04 09:15 - 2012-07-27 23:17 - 00268728 _____ () C:\Windows\SysWOW64\atiapfxx.blb
2014-05-04 09:15 - 2012-07-27 23:17 - 00268728 _____ () C:\Windows\system32\atiapfxx.blb
2014-05-04 09:15 - 2012-07-27 23:10 - 00442368 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\ATIDEMGX.dll
2014-05-04 09:15 - 2012-07-27 22:39 - 00204952 _____ () C:\Windows\SysWOW64\ativvsvl.dat
2014-05-04 09:15 - 2012-07-27 22:39 - 00204952 _____ () C:\Windows\system32\ativvsvl.dat
2014-05-04 09:15 - 2012-07-27 22:39 - 00157144 _____ () C:\Windows\SysWOW64\ativvsva.dat
2014-05-04 09:15 - 2012-07-27 22:39 - 00157144 _____ () C:\Windows\system32\ativvsva.dat
2014-05-04 09:15 - 2012-07-16 06:33 - 00038557 _____ () C:\Windows\atiogl.xml
2014-05-04 09:10 - 2014-05-04 09:10 - 00000000 ____D () C:\Users\Administrador\AppData\Roaming\ATI
2014-05-04 09:10 - 2014-05-04 09:10 - 00000000 ____D () C:\Users\Administrador\AppData\Local\ATI
2014-05-04 09:10 - 2014-05-04 09:10 - 00000000 ____D () C:\Users\Administrador\AppData\Local\AMD
2014-05-04 09:04 - 2014-05-04 09:04 - 00000000 _____ () C:\Windows\ativpsrm.bin
2014-05-04 08:42 - 2014-05-04 08:42 - 00000036 _____ () C:\Users\Administrador\AppData\Local\housecall.guid.cache
2014-05-04 08:42 - 2014-05-04 08:42 - 00000000 ____D () C:\Program Files\Trend Micro
2014-05-04 08:39 - 2014-05-05 07:24 - 00000000 ____D () C:\Program Files\Google
2014-05-04 08:39 - 2014-05-04 08:52 - 00002181 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2014-05-04 08:39 - 2014-05-04 08:52 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
2014-05-04 08:39 - 2014-05-04 08:39 - 00002063 _____ () C:\Users\Public\Desktop\Super-Charger.lnk
2014-05-04 08:39 - 2014-05-04 08:39 - 00000000 ____D () C:\Windows\SysWOW64\RTCOM
2014-05-04 08:39 - 2014-05-04 08:39 - 00000000 ____D () C:\SuperChargerProfile
2014-05-04 08:39 - 2014-05-04 08:39 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MSI
2014-05-04 08:39 - 2014-05-04 08:39 - 00000000 ____D () C:\Program Files\Realtek
2014-05-04 08:39 - 2014-05-04 08:39 - 00000000 ____D () C:\Program Files (x86)\MSI
2014-05-04 08:39 - 2012-09-25 13:33 - 07272960 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoRes64.dat
2014-05-04 08:39 - 2012-09-25 09:09 - 04155536 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RTKVHD64.sys
2014-05-04 08:39 - 2012-09-25 08:47 - 00115344 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoInstII64.dll
2014-05-04 08:39 - 2012-09-25 04:12 - 00352341 _____ () C:\Windows\system32\Drivers\RTAIODAT.DAT
2014-05-04 08:39 - 2012-09-24 08:28 - 03643024 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkAPO64.dll
2014-05-04 08:39 - 2012-09-24 05:32 - 02080120 _____ (Waves Audio Ltd.) C:\Windows\system32\WavesGUILib64.dll
2014-05-04 08:39 - 2012-09-11 22:51 - 02743440 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtPgEx64.dll
2014-05-04 08:39 - 2012-08-28 06:25 - 01267856 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTCOM64.dll
2014-05-04 08:39 - 2012-08-21 03:51 - 00881808 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkApi64.dll
2014-05-04 08:39 - 2012-08-13 07:06 - 01561744 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTSnMg64.cpl
2014-05-04 08:39 - 2012-08-10 08:31 - 00770688 _____ (Sony Corporation) C:\Windows\system32\SFSS_APO.dll
2014-05-04 08:39 - 2012-01-30 00:43 - 00836544 _____ (TOSHIBA Corporation) C:\Windows\system32\tadefxapo264.dll
2014-05-04 08:39 - 2012-01-09 23:20 - 00065944 _____ (TOSHIBA CORPORATION.) C:\Windows\system32\tepeqapo64.dll
2014-05-04 08:39 - 2011-12-20 04:32 - 00331880 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtlCPAPI64.dll
2014-05-04 08:39 - 2011-11-22 05:28 - 00014952 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCoLDR64.dll
2014-05-04 08:39 - 2011-09-02 03:21 - 00221024 _____ (Synopsys, Inc.) C:\Windows\system32\SFNHK64.dll
2014-05-04 08:39 - 2011-09-02 03:21 - 00081248 _____ (Synopsys, Inc.) C:\Windows\system32\SFCOM64.dll
2014-05-04 08:39 - 2011-09-02 03:21 - 00078688 _____ (Synopsys, Inc.) C:\Windows\system32\SFAPO64.dll
2014-05-04 08:39 - 2011-03-17 01:17 - 01361336 _____ (TOSHIBA Corporation) C:\Windows\system32\tosade.dll
2014-05-04 08:39 - 2011-03-07 06:11 - 00148416 _____ (TOSHIBA Corporation) C:\Windows\system32\tadefxapo.dll
2014-05-04 08:39 - 2010-11-07 20:31 - 00375128 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEP64A.dll
2014-05-04 08:39 - 2010-11-07 20:31 - 00310104 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DHT64.dll
2014-05-04 08:39 - 2010-11-07 20:31 - 00310104 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DAA64.dll
2014-05-04 08:39 - 2010-11-07 20:31 - 00204120 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEED64A.dll
2014-05-04 08:39 - 2010-11-07 20:31 - 00101208 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEL64A.dll
2014-05-04 08:39 - 2010-11-07 20:31 - 00078680 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEG64A.dll
2014-05-04 08:39 - 2010-11-03 07:30 - 00149608 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCfg64.dll
2014-05-04 08:39 - 2010-07-22 05:48 - 00074064 _____ (Virage Logic Corporation / Sonic Focus) C:\Windows\SysWOW64\SFCOM.dll
2014-05-04 08:39 - 2009-11-23 22:55 - 00518896 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSX64.dll
2014-05-04 08:39 - 2009-11-23 22:55 - 00211184 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSH64.dll
2014-05-04 08:39 - 2009-11-23 22:55 - 00198896 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSHP64.dll
2014-05-04 08:39 - 2009-11-23 22:55 - 00155888 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSWOW64.dll
2014-05-04 08:38 - 2014-05-10 14:24 - 00001046 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-05-04 08:38 - 2014-05-09 21:54 - 00001050 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-05-04 08:38 - 2014-05-09 19:49 - 00004046 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2014-05-04 08:38 - 2014-05-09 19:49 - 00003794 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2014-05-04 08:38 - 2014-05-05 07:24 - 00000000 ____D () C:\Program Files (x86)\Google
2014-05-04 08:38 - 2014-05-04 18:52 - 00000000 ____D () C:\Users\Administrador\AppData\Local\Google
2014-05-04 08:38 - 2014-05-04 08:39 - 00002306 _____ () C:\RHDSetup.log
2014-05-04 08:38 - 2014-05-04 08:39 - 00000189 _____ () C:\mylog.log
2014-05-04 08:38 - 2014-05-04 08:38 - 00000000 ____D () C:\Program Files\Common Files\ATI Technologies
2014-05-04 08:38 - 2014-05-04 08:38 - 00000000 ____D () C:\Program Files (x86)\Realtek
2014-05-04 08:38 - 2012-09-24 05:32 - 07601528 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioRealtek64.dll
2014-05-04 08:38 - 2012-08-31 08:18 - 07164176 _____ (Dolby Laboratories) C:\Windows\system32\R4EEP64A.dll
2014-05-04 08:38 - 2012-08-31 08:17 - 00434960 _____ (Dolby Laboratories) C:\Windows\system32\R4EED64A.dll
2014-05-04 08:38 - 2012-08-31 08:17 - 00141584 _____ (Dolby Laboratories) C:\Windows\system32\R4EEL64A.dll
2014-05-04 08:38 - 2012-08-31 08:17 - 00124176 _____ (Dolby Laboratories) C:\Windows\system32\R4EEA64A.dll
2014-05-04 08:38 - 2012-08-31 08:17 - 00075024 _____ (Dolby Laboratories) C:\Windows\system32\R4EEG64A.dll
2014-05-04 08:38 - 2012-08-28 06:25 - 02535008 _____ (Fortemedia Corporation) C:\Windows\system32\FMAPO64.dll
2014-05-04 08:38 - 2012-08-03 07:18 - 01706640 ____R (Realtek Semiconductor Corp.) C:\Windows\RtlExUpd.dll
2014-05-04 08:38 - 2012-07-23 05:44 - 01433976 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioRealtek264.dll
2014-05-04 08:38 - 2012-07-19 05:52 - 02028920 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioEQ64.dll
2014-05-04 08:38 - 2012-07-19 05:51 - 00834936 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPOShell64.dll
2014-05-04 08:38 - 2012-07-15 10:13 - 00394616 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVolumeSDAPO.dll
2014-05-04 08:38 - 2012-07-15 10:13 - 00394616 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO30.dll
2014-05-04 08:38 - 2012-06-20 06:26 - 00110592 _____ (Real Sound Lab SIA) C:\Windows\system32\CONEQMSAPOGUILibrary.dll
2014-05-04 08:38 - 2012-03-08 00:47 - 00202336 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAC64.dll
2014-05-04 08:38 - 2012-03-08 00:47 - 00108640 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAR64.dll
2014-05-04 08:38 - 2012-02-16 02:42 - 00676968 _____ (Realtek ) C:\Windows\system32\Drivers\Rt64win7.sys
2014-05-04 08:38 - 2012-02-16 02:42 - 00107624 _____ (Realtek Semiconductor Corporation) C:\Windows\system32\RTNUninst64.dll
2014-05-04 08:38 - 2012-02-16 02:42 - 00074344 _____ (Realtek Semiconductor Corporation) C:\Windows\system32\RtNicProp64.dll
2014-05-04 08:38 - 2012-01-23 11:30 - 00537456 _____ (DTS) C:\Windows\system32\DTSU2PLFX64.dll
2014-05-04 08:38 - 2012-01-23 11:30 - 00524656 _____ (DTS) C:\Windows\system32\DTSU2PGFX64.dll
2014-05-04 08:38 - 2012-01-23 11:30 - 00449392 _____ (DTS) C:\Windows\system32\DTSU2PREC64.dll
2014-05-04 08:38 - 2011-08-23 06:00 - 00603984 _____ (Knowles Acoustics ) C:\Windows\system32\KAAPORT64.dll
2014-05-04 08:38 - 2011-05-30 22:42 - 01756264 _____ (DTS) C:\Windows\system32\DTSS2SpeakerDLL64.dll
2014-05-04 08:38 - 2011-05-30 22:42 - 01568360 _____ (DTS) C:\Windows\system32\DTSS2HeadphoneDLL64.dll
2014-05-04 08:38 - 2011-05-30 22:42 - 01486952 _____ (DTS) C:\Windows\system32\DTSBoostDLL64.dll
2014-05-04 08:38 - 2011-05-30 22:42 - 00728680 _____ (DTS) C:\Windows\system32\DTSBassEnhancementDLL64.dll
2014-05-04 08:38 - 2011-05-30 22:42 - 00712296 _____ (DTS) C:\Windows\system32\DTSSymmetryDLL64.dll
2014-05-04 08:38 - 2011-05-30 22:42 - 00693352 _____ (DTS) C:\Windows\system32\DTSVoiceClarityDLL64.dll
2014-05-04 08:38 - 2011-05-30 22:42 - 00491112 _____ (DTS) C:\Windows\system32\DTSNeoPCDLL64.dll
2014-05-04 08:38 - 2011-05-30 22:42 - 00432744 _____ (DTS) C:\Windows\system32\DTSLimiterDLL64.dll
2014-05-04 08:38 - 2011-05-30 22:42 - 00428648 _____ (DTS) C:\Windows\system32\DTSGainCompensatorDLL64.dll
2014-05-04 08:38 - 2011-05-30 22:42 - 00242792 _____ (DTS) C:\Windows\system32\DTSLFXAPO64.dll
2014-05-04 08:38 - 2011-05-30 22:42 - 00242792 _____ (DTS) C:\Windows\system32\DTSGFXAPO64.dll
2014-05-04 08:38 - 2011-05-30 22:42 - 00241768 _____ (DTS) C:\Windows\system32\DTSGFXAPONS64.dll
2014-05-04 08:38 - 2010-11-28 17:50 - 00044672 ____R (Advanced Micro Devices) C:\Windows\system32\Drivers\usbfilter.sys
2014-05-04 08:38 - 2010-09-26 22:34 - 00318808 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO20.dll
2014-05-04 08:37 - 2014-05-04 09:18 - 00000000 ____D () C:\ProgramData\AMD
2014-05-04 08:37 - 2014-05-04 09:17 - 00000000 ____D () C:\Program Files\ATI Technologies
2014-05-04 08:37 - 2010-06-17 06:15 - 00016440 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\Drivers\AtiPcie64.sys
2014-05-04 08:37 - 2010-02-18 09:18 - 00046136 _____ (Advanced Micro Devices) C:\Windows\system32\Drivers\amdiox64.sys
2014-05-04 08:36 - 2014-05-04 09:16 - 00000000 ____D () C:\Program Files (x86)\ATI Technologies
2014-05-04 08:36 - 2014-05-04 08:36 - 00000000 ____D () C:\Program Files\ATI
2014-05-04 08:36 - 2011-09-12 19:06 - 00003917 _____ () C:\Windows\SysWOW64\atipblag.dat
2014-05-04 08:36 - 2011-09-12 19:06 - 00003917 _____ () C:\Windows\system32\atipblag.dat
2014-05-04 08:27 - 2014-05-04 08:27 - 00000000 ____D () C:\MSI
2014-05-04 07:48 - 2014-05-04 07:48 - 00000000 ____D () C:\Windows\system32\appmgmt
2014-05-04 07:39 - 2014-05-04 07:39 - 00000000 ____D () C:\Users\Administrador\AppData\Roaming\Media Player Classic
2014-05-04 07:31 - 2014-05-04 07:31 - 00001427 _____ () C:\Users\Administrador\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-05-04 07:31 - 2014-05-04 07:31 - 00001393 _____ () C:\Users\Administrador\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer (64-bit).lnk
2014-05-04 07:31 - 2014-05-04 07:31 - 00000000 ___RD () C:\Users\Administrador\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2014-05-04 07:31 - 2014-05-04 07:31 - 00000000 ___RD () C:\Users\Administrador\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2014-05-04 07:31 - 2009-08-06 23:24 - 02424024 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2014-05-04 07:31 - 2009-08-06 23:24 - 00057560 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2014-05-04 07:31 - 2009-08-06 23:24 - 00043744 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2014-05-04 07:31 - 2009-08-06 23:24 - 00038112 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2014-05-04 07:31 - 2009-08-06 23:23 - 00700640 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2014-05-04 07:31 - 2009-08-06 22:59 - 02621440 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2014-05-04 07:31 - 2009-08-06 22:59 - 00098816 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2014-05-04 07:31 - 2009-08-06 19:23 - 00185416 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2014-05-04 07:31 - 2009-08-06 18:59 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2014-05-04 07:30 - 2014-05-04 19:07 - 00000000 ____D () C:\Program Files (x86)\ESET
2014-05-04 07:30 - 2014-05-04 07:34 - 00000000 ____D () C:\Program Files (x86)\The KMPlayer
2014-05-04 07:30 - 2014-05-04 07:33 - 00000000 ____D () C:\Program Files (x86)\AIMP2 Tools
2014-05-04 07:30 - 2014-05-04 07:31 - 00000000 ____D () C:\1b9248a80cb1fb9d299b9659
2014-05-04 07:30 - 2014-05-04 07:30 - 00000963 _____ () C:\Users\Public\Desktop\AIMP2.lnk
2014-05-04 07:30 - 2014-05-04 07:30 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AIMP2
2014-05-04 07:30 - 2010-06-02 04:55 - 00527192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_7.dll
2014-05-04 07:30 - 2010-06-02 04:55 - 00518488 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_7.dll
2014-05-04 07:30 - 2010-06-02 04:55 - 00239960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_7.dll
2014-05-04 07:30 - 2010-06-02 04:55 - 00176984 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_7.dll
2014-05-04 07:30 - 2010-06-02 04:55 - 00077656 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_5.dll
2014-05-04 07:30 - 2010-06-02 04:55 - 00074072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_5.dll
2014-05-04 07:30 - 2010-05-26 11:41 - 02526056 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_43.dll
2014-05-04 07:30 - 2010-05-26 11:41 - 02401112 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_43.dll
2014-05-04 07:30 - 2010-05-26 11:41 - 02106216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_43.dll
2014-05-04 07:30 - 2010-05-26 11:41 - 01998168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_43.dll
2014-05-04 07:30 - 2010-05-26 11:41 - 01907552 _____ (Microsoft Corporation) C:\Windows\system32\d3dcsx_43.dll
2014-05-04 07:30 - 2010-05-26 11:41 - 01868128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dcsx_43.dll
2014-05-04 07:30 - 2010-05-26 11:41 - 00511328 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_43.dll
2014-05-04 07:30 - 2010-05-26 11:41 - 00470880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_43.dll
2014-05-04 07:30 - 2010-05-26 11:41 - 00276832 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_43.dll
2014-05-04 07:30 - 2010-05-26 11:41 - 00248672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_43.dll
2014-05-04 07:30 - 2010-02-04 10:01 - 00530776 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_6.dll
2014-05-04 07:30 - 2010-02-04 10:01 - 00528216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_6.dll
2014-05-04 07:30 - 2010-02-04 10:01 - 00238936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_6.dll
2014-05-04 07:30 - 2010-02-04 10:01 - 00176984 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_6.dll
2014-05-04 07:30 - 2010-02-04 10:01 - 00078680 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_4.dll
2014-05-04 07:30 - 2010-02-04 10:01 - 00074072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_4.dll
2014-05-04 07:30 - 2010-02-04 10:01 - 00024920 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_7.dll
2014-05-04 07:30 - 2010-02-04 10:01 - 00022360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_7.dll
2014-05-04 07:30 - 2009-09-04 17:44 - 00517960 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_5.dll
2014-05-04 07:30 - 2009-09-04 17:44 - 00515416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_5.dll
2014-05-04 07:30 - 2009-09-04 17:44 - 00238936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_5.dll
2014-05-04 07:30 - 2009-09-04 17:44 - 00176968 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_5.dll
2014-05-04 07:30 - 2009-09-04 17:44 - 00073544 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_3.dll
2014-05-04 07:30 - 2009-09-04 17:44 - 00069464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_3.dll
2014-05-04 07:30 - 2009-09-04 17:29 - 05554512 _____ (Microsoft Corporation) C:\Windows\system32\d3dcsx_42.dll
2014-05-04 07:30 - 2009-09-04 17:29 - 05501792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dcsx_42.dll
2014-05-04 07:30 - 2009-09-04 17:29 - 02582888 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_42.dll
2014-05-04 07:30 - 2009-09-04 17:29 - 02475352 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_42.dll
2014-05-04 07:30 - 2009-09-04 17:29 - 01974616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_42.dll
2014-05-04 07:30 - 2009-09-04 17:29 - 01892184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_42.dll
2014-05-04 07:30 - 2009-09-04 17:29 - 00523088 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_42.dll
2014-05-04 07:30 - 2009-09-04 17:29 - 00453456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_42.dll
2014-05-04 07:30 - 2009-09-04 17:29 - 00285024 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_42.dll
2014-05-04 07:30 - 2009-09-04 17:29 - 00235344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_42.dll
2014-05-04 07:30 - 2009-03-16 14:18 - 00521560 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_4.dll
2014-05-04 07:30 - 2009-03-16 14:18 - 00517448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_4.dll
2014-05-04 07:30 - 2009-03-16 14:18 - 00235352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_4.dll
2014-05-04 07:30 - 2009-03-16 14:18 - 00174936 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_4.dll
2014-05-04 07:30 - 2009-03-16 14:18 - 00024920 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_6.dll
2014-05-04 07:30 - 2009-03-16 14:18 - 00022360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_6.dll
2014-05-04 07:30 - 2009-03-09 15:27 - 05425496 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_41.dll
2014-05-04 07:30 - 2009-03-09 15:27 - 04178264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_41.dll
2014-05-04 07:30 - 2009-03-09 15:27 - 02430312 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_41.dll
2014-05-04 07:30 - 2009-03-09 15:27 - 01846632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_41.dll
2014-05-04 07:30 - 2009-03-09 15:27 - 00520544 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_41.dll
2014-05-04 07:30 - 2009-03-09 15:27 - 00453456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_41.dll
2014-05-04 07:30 - 2008-10-27 10:04 - 00518480 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_3.dll
2014-05-04 07:30 - 2008-10-27 10:04 - 00514384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_3.dll
2014-05-04 07:30 - 2008-10-27 10:04 - 00235856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_3.dll
2014-05-04 07:30 - 2008-10-27 10:04 - 00175440 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_3.dll
2014-05-04 07:30 - 2008-10-27 10:04 - 00074576 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_2.dll
2014-05-04 07:30 - 2008-10-27 10:04 - 00070992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_2.dll
2014-05-04 07:30 - 2008-10-27 10:04 - 00025936 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_5.dll
2014-05-04 07:30 - 2008-10-27 10:04 - 00023376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_5.dll
2014-05-04 07:30 - 2008-10-15 06:22 - 05631312 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_40.dll
2014-05-04 07:30 - 2008-10-15 06:22 - 04379984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_40.dll
2014-05-04 07:30 - 2008-10-15 06:22 - 02605920 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_40.dll
2014-05-04 07:30 - 2008-10-15 06:22 - 02036576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_40.dll
2014-05-04 07:30 - 2008-10-15 06:22 - 00519000 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_40.dll
2014-05-04 07:30 - 2008-10-15 06:22 - 00452440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_40.dll
2014-05-04 07:30 - 2008-07-31 10:41 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_2.dll
2014-05-04 07:30 - 2008-07-31 10:41 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_2.dll
2014-05-04 07:30 - 2008-07-31 10:41 - 00072200 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_1.dll
2014-05-04 07:30 - 2008-07-31 10:41 - 00068616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_1.dll
2014-05-04 07:30 - 2008-07-31 10:40 - 00513544 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_2.dll
2014-05-04 07:30 - 2008-07-31 10:40 - 00509448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_2.dll
2014-05-04 07:30 - 2008-07-10 11:00 - 04992520 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_39.dll
2014-05-04 07:30 - 2008-07-10 11:00 - 01942552 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_39.dll
2014-05-04 07:30 - 2008-07-10 11:00 - 00540688 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_39.dll
2014-05-04 07:30 - 2008-05-30 14:19 - 00511496 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_1.dll
2014-05-04 07:30 - 2008-05-30 14:19 - 00507400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_1.dll
2014-05-04 07:30 - 2008-05-30 14:18 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_1.dll
2014-05-04 07:30 - 2008-05-30 14:18 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_1.dll
2014-05-04 07:30 - 2008-05-30 14:17 - 00068104 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_0.dll
2014-05-04 07:30 - 2008-05-30 14:17 - 00065032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_0.dll
2014-05-04 07:30 - 2008-05-30 14:17 - 00025608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_4.dll
2014-05-04 07:30 - 2008-05-30 14:16 - 00028168 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_4.dll
2014-05-04 07:30 - 2008-05-30 14:11 - 04991496 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_38.dll
2014-05-04 07:30 - 2008-05-30 14:11 - 03850760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_38.dll
2014-05-04 07:30 - 2008-05-30 14:11 - 01941528 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_38.dll
2014-05-04 07:30 - 2008-05-30 14:11 - 01491992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_38.dll
2014-05-04 07:30 - 2008-05-30 14:11 - 00540688 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_38.dll
2014-05-04 07:30 - 2008-05-30 14:11 - 00467984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_38.dll
2014-05-04 07:30 - 2008-03-05 16:04 - 00489480 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_0.dll
2014-05-04 07:30 - 2008-03-05 16:03 - 00479752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_0.dll
2014-05-04 07:30 - 2008-03-05 16:03 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_0.dll
2014-05-04 07:30 - 2008-03-05 16:03 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_0.dll
2014-05-04 07:30 - 2008-03-05 16:00 - 00028168 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_3.dll
2014-05-04 07:30 - 2008-03-05 16:00 - 00025608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_3.dll
2014-05-04 07:30 - 2008-03-05 15:56 - 04910088 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_37.dll
2014-05-04 07:30 - 2008-03-05 15:56 - 03786760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_37.dll
2014-05-04 07:30 - 2008-03-05 15:56 - 01860120 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_37.dll
2014-05-04 07:30 - 2008-03-05 15:56 - 01420824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_37.dll
2014-05-04 07:30 - 2008-02-05 23:07 - 00529424 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_37.dll
2014-05-04 07:30 - 2008-02-05 23:07 - 00462864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_37.dll
2014-05-04 07:30 - 2007-10-22 03:40 - 00411656 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_10.dll
2014-05-04 07:30 - 2007-10-22 03:39 - 00267272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_10.dll
2014-05-04 07:30 - 2007-10-22 03:37 - 00021000 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_2.dll
2014-05-04 07:30 - 2007-10-22 03:37 - 00017928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_2.dll
2014-05-04 07:30 - 2007-10-12 15:14 - 05081608 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_36.dll
2014-05-04 07:30 - 2007-10-12 15:14 - 03734536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_36.dll
2014-05-04 07:30 - 2007-10-12 15:14 - 02006552 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_36.dll
2014-05-04 07:30 - 2007-10-12 15:14 - 01374232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_36.dll
2014-05-04 07:30 - 2007-10-02 09:56 - 00508264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_36.dll
2014-05-04 07:30 - 2007-10-02 09:56 - 00444776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_36.dll
2014-05-04 07:30 - 2007-07-20 00:57 - 00411496 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_9.dll
2014-05-04 07:30 - 2007-07-20 00:57 - 00267112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_9.dll
2014-05-04 07:30 - 2007-07-19 18:14 - 05073256 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_35.dll
2014-05-04 07:30 - 2007-07-19 18:14 - 03727720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_35.dll
2014-05-04 07:30 - 2007-07-19 18:14 - 01985904 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_35.dll
2014-05-04 07:30 - 2007-07-19 18:14 - 01358192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_35.dll
2014-05-04 07:30 - 2007-07-19 18:14 - 00508264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_35.dll
2014-05-04 07:30 - 2007-07-19 18:14 - 00444776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_35.dll
2014-05-04 07:30 - 2007-06-20 20:49 - 00409960 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_8.dll
2014-05-04 07:30 - 2007-06-20 20:46 - 00266088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_8.dll
2014-05-04 07:30 - 2007-05-16 16:45 - 01401200 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_34.dll
2014-05-04 07:30 - 2007-05-16 16:45 - 01124720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_34.dll
2014-05-04 07:30 - 2007-05-16 16:45 - 00506728 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_34.dll
2014-05-04 07:30 - 2007-05-16 16:45 - 00443752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_34.dll
2014-05-04 07:29 - 2014-05-04 07:29 - 00001037 _____ () C:\Users\Administrador\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\uTorrent 2.0.2.lnk
2014-05-04 07:29 - 2014-05-04 07:29 - 00001007 _____ () C:\Users\Administrador\Desktop\CCleaner.lnk
2014-05-04 07:29 - 2014-05-04 07:29 - 00000977 _____ () C:\Users\Administrador\Desktop\Total Video Player.lnk
2014-05-04 07:29 - 2014-05-04 07:29 - 00000977 _____ () C:\Users\Administrador\Desktop\Total Video Converter.lnk
2014-05-04 07:29 - 2014-05-04 07:29 - 00000000 ____D () C:\Users\Administrador\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2014-05-04 07:29 - 2014-05-04 07:29 - 00000000 ____D () C:\Users\Administrador\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CCleaner
2014-05-04 07:29 - 2014-05-04 07:29 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2014-05-04 07:29 - 2014-05-04 07:29 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Total Video Converter
2014-05-04 07:29 - 2014-05-04 07:29 - 00000000 ____D () C:\Program Files (x86)\Winrar
2014-05-04 07:29 - 2014-05-04 07:29 - 00000000 ____D () C:\Program Files (x86)\Total Video Converter
2014-05-04 07:29 - 2014-05-04 07:29 - 00000000 ____D () C:\Program Files (x86)\CCleaner
2014-05-04 07:29 - 2010-05-29 12:26 - 00000000 ____D () C:\Program Files (x86)\uTorrent
2014-05-04 07:29 - 2007-05-16 16:45 - 04496232 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_34.dll
2014-05-04 07:29 - 2007-05-16 16:45 - 03497832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_34.dll
2014-05-04 07:29 - 2007-04-04 18:55 - 00403304 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_7.dll
2014-05-04 07:29 - 2007-04-04 18:55 - 00261480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_7.dll
2014-05-04 07:29 - 2007-04-04 18:54 - 00107368 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_3.dll
2014-05-04 07:29 - 2007-04-04 18:53 - 00081768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_3.dll
2014-05-04 07:29 - 2007-03-15 16:57 - 00506728 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_33.dll
2014-05-04 07:29 - 2007-03-15 16:57 - 00443752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_33.dll
2014-05-04 07:29 - 2007-03-12 16:42 - 04494184 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_33.dll
2014-05-04 07:29 - 2007-03-12 16:42 - 03495784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_33.dll
2014-05-04 07:29 - 2007-03-12 16:42 - 01400176 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_33.dll
2014-05-04 07:29 - 2007-03-12 16:42 - 01123696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_33.dll
2014-05-04 07:29 - 2007-03-05 12:42 - 00017688 _____ (Microsoft Corporation) C:\Windows\system32\x3daudio1_1.dll
2014-05-04 07:29 - 2007-03-05 12:42 - 00015128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\x3daudio1_1.dll
2014-05-04 07:29 - 2007-01-24 15:27 - 00393576 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_6.dll
2014-05-04 07:29 - 2007-01-24 15:27 - 00255848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_6.dll
2014-05-04 07:29 - 2006-12-08 12:02 - 00251672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_5.dll
2014-05-04 07:29 - 2006-12-08 12:00 - 00390424 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_5.dll
2014-05-04 07:29 - 2006-11-29 13:06 - 04398360 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_32.dll
2014-05-04 07:29 - 2006-11-29 13:06 - 03426072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_32.dll
2014-05-04 07:29 - 2006-11-29 13:06 - 00469264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10.dll
2014-05-04 07:29 - 2006-11-29 13:06 - 00440080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10.dll
2014-05-04 07:29 - 2006-09-28 16:05 - 03977496 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_31.dll
2014-05-04 07:29 - 2006-09-28 16:05 - 02414360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_31.dll
2014-05-04 07:29 - 2006-09-28 16:05 - 00237848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_4.dll
2014-05-04 07:29 - 2006-09-28 16:04 - 00364824 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_4.dll
2014-05-04 07:29 - 2006-07-28 09:31 - 00083736 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_2.dll
2014-05-04 07:29 - 2006-07-28 09:30 - 00363288 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_3.dll
2014-05-04 07:29 - 2006-07-28 09:30 - 00236824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_3.dll
2014-05-04 07:29 - 2006-07-28 09:30 - 00062744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_2.dll
2014-05-04 07:29 - 2006-05-31 07:24 - 00230168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_2.dll
2014-05-04 07:29 - 2006-05-31 07:22 - 00354072 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_2.dll
2014-05-04 07:29 - 2006-03-31 12:41 - 03927248 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_30.dll
2014-05-04 07:29 - 2006-03-31 12:40 - 02388176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_30.dll
2014-05-04 07:29 - 2006-03-31 12:40 - 00352464 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_1.dll
2014-05-04 07:29 - 2006-03-31 12:39 - 00229584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_1.dll
2014-05-04 07:29 - 2006-03-31 12:39 - 00083664 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_1.dll
2014-05-04 07:29 - 2006-03-31 12:39 - 00062672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_1.dll
2014-05-04 07:29 - 2006-02-03 08:43 - 03830992 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_29.dll
2014-05-04 07:29 - 2006-02-03 08:43 - 02332368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_29.dll
2014-05-04 07:29 - 2006-02-03 08:42 - 00355536 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_0.dll
2014-05-04 07:29 - 2006-02-03 08:42 - 00230096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_0.dll
2014-05-04 07:29 - 2006-02-03 08:41 - 00016592 _____ (Microsoft Corporation) C:\Windows\system32\x3daudio1_0.dll
2014-05-04 07:29 - 2006-02-03 08:41 - 00014032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\x3daudio1_0.dll
2014-05-04 07:29 - 2005-12-05 18:09 - 03815120 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_28.dll
2014-05-04 07:29 - 2005-12-05 18:09 - 02323664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_28.dll
2014-05-04 07:29 - 2005-07-22 19:59 - 03807440 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_27.dll
2014-05-04 07:29 - 2005-07-22 19:59 - 02319568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_27.dll
2014-05-04 07:29 - 2005-05-26 15:34 - 03767504 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_26.dll
2014-05-04 07:29 - 2005-05-26 15:34 - 02297552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_26.dll
2014-05-04 07:29 - 2005-03-18 17:19 - 03823312 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_25.dll
2014-05-04 07:29 - 2005-03-18 17:19 - 02337488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_25.dll
2014-05-04 07:29 - 2005-02-05 19:45 - 03544272 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_24.dll
2014-05-04 07:29 - 2005-02-05 19:45 - 02222800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_24.dll
2014-05-04 07:29 - 2000-05-22 22:58 - 00608448 _____ (Microsoft Corporation) C:\Windows\system32\comctl32.ocx
2014-05-04 07:27 - 2014-05-04 07:28 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live
2014-05-04 07:27 - 2014-05-04 07:27 - 00000000 ____D () C:\Program Files (x86)\Windows Live SkyDrive
2014-05-04 07:26 - 2014-05-04 07:28 - 00000000 ____D () C:\Program Files (x86)\Windows Live
2014-05-04 07:26 - 2014-05-04 07:26 - 00000000 ____D () C:\Windows\SysWOW64\Macromed
2014-05-04 07:25 - 2014-05-04 08:38 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2014-05-04 07:25 - 2014-05-04 07:25 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QT Lite
2014-05-04 07:25 - 2014-05-04 07:25 - 00000000 ____D () C:\ProgramData\Apple Computer
2014-05-04 07:25 - 2014-05-04 07:25 - 00000000 ____D () C:\Program Files (x86)\QT Lite
2014-05-04 07:25 - 2010-03-17 17:53 - 00180224 _____ (Apple Inc.) C:\Windows\SysWOW64\QTCF.dll
2014-05-04 07:25 - 2010-03-17 17:53 - 00094208 _____ (Apple Inc.) C:\Windows\SysWOW64\QuickTimeVR.qtx
2014-05-04 07:25 - 2010-03-17 17:53 - 00069632 _____ (Apple Inc.) C:\Windows\SysWOW64\QuickTime.qts
2014-05-04 07:24 - 2014-05-04 07:24 - 00029480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3a.dll
2014-05-04 07:24 - 2014-05-04 07:24 - 00000000 ____D () C:\Program Files (x86)\CyberLink
2014-05-04 07:23 - 2014-05-04 07:23 - 00000376 _____ () C:\Windows\ODBC.INI
2014-05-04 07:23 - 2014-05-04 07:23 - 00000000 ____D () C:\Windows\SysWOW64\Adobe
2014-05-04 07:23 - 2014-05-04 07:23 - 00000000 ____D () C:\Program Files (x86)\MSECache
2014-05-04 07:22 - 2014-05-04 07:23 - 00000000 ____D () C:\Program Files (x86)\Microsoft Office
2014-05-04 07:22 - 2014-05-04 07:22 - 00411368 _____ (Sun Microsystems, Inc.) C:\Windows\SysWOW64\deployJava1.dll
2014-05-04 07:22 - 2014-05-04 07:22 - 00153376 _____ (Sun Microsystems, Inc.) C:\Windows\SysWOW64\javaws.exe
2014-05-04 07:22 - 2014-05-04 07:22 - 00145184 _____ (Sun Microsystems, Inc.) C:\Windows\SysWOW64\javaw.exe
2014-05-04 07:22 - 2014-05-04 07:22 - 00145184 _____ (Sun Microsystems, Inc.) C:\Windows\SysWOW64\java.exe
2014-05-04 07:22 - 2014-05-04 07:22 - 00000000 ____D () C:\Windows\SHELLNEW
2014-05-04 07:22 - 2014-05-04 07:22 - 00000000 ____D () C:\Windows\PCHEALTH
2014-05-04 07:22 - 2014-05-04 07:22 - 00000000 ____D () C:\ProgramData\Sun
2014-05-04 07:22 - 2014-05-04 07:22 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
2014-05-04 07:22 - 2014-05-04 07:22 - 00000000 ____D () C:\Program Files (x86)\Microsoft Works
2014-05-04 07:22 - 2014-05-04 07:22 - 00000000 ____D () C:\Program Files (x86)\Java
2014-05-04 07:22 - 2010-03-15 06:31 - 00165376 _____ () C:\Windows\SysWOW64\unrar.dll
2014-05-04 07:21 - 2014-05-04 07:21 - 00002026 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader 9.lnk
2014-05-04 07:21 - 2014-05-04 07:21 - 00000000 ____D () C:\ProgramData\Adobe
2014-05-04 07:21 - 2014-05-04 07:21 - 00000000 ____D () C:\Program Files (x86)\Adobe
2014-05-04 07:18 - 2014-05-10 14:44 - 00079256 _____ () C:\Windows\WindowsUpdate.log
2014-05-04 07:18 - 2009-12-08 13:40 - 00011956 _____ () C:\Windows\SysWOW64\PorDefecto_Win7_64bits.reg
2014-05-04 07:18 - 2009-12-08 13:40 - 00011723 _____ () C:\Windows\SysWOW64\PorDefecto_Win7_32bits.reg
2014-05-04 07:18 - 2009-07-13 22:41 - 02851328 _____ (Microsoft Corporation) C:\Windows\system32\themeui.dll.backup
2014-05-04 07:18 - 2009-07-13 22:41 - 00332288 _____ (Microsoft Corporation) C:\Windows\system32\uxtheme.dll.backup
2014-05-04 07:18 - 2009-07-13 22:41 - 00044544 _____ (Microsoft Corporation) C:\Windows\system32\themeservice.dll.backup
2014-05-04 07:17 - 2014-05-04 07:31 - 00000000 ____D () C:\Users\Administrador
2014-05-04 07:17 - 2014-05-04 07:28 - 00084128 _____ () C:\Users\Administrador\AppData\Local\GDIPFONTCACHEV1.DAT
2014-05-04 07:17 - 2014-05-04 07:17 - 00000020 ___SH () C:\Users\Administrador\ntuser.ini
2014-05-04 07:17 - 2014-05-04 07:17 - 00000000 _SHDL () C:\Users\Public\Documents\Mis vídeos
2014-05-04 07:17 - 2014-05-04 07:17 - 00000000 _SHDL () C:\Users\Public\Documents\Mis imágenes
2014-05-04 07:17 - 2014-05-04 07:17 - 00000000 _SHDL () C:\Users\Public\Documents\Mi música
2014-05-04 07:17 - 2014-05-04 07:17 - 00000000 _SHDL () C:\Users\Default\Reciente
2014-05-04 07:17 - 2014-05-04 07:17 - 00000000 _SHDL () C:\Users\Default\Plantillas
2014-05-04 07:17 - 2014-05-04 07:17 - 00000000 _SHDL () C:\Users\Default\Mis documentos
2014-05-04 07:17 - 2014-05-04 07:17 - 00000000 _SHDL () C:\Users\Default\Menú Inicio
2014-05-04 07:17 - 2014-05-04 07:17 - 00000000 _SHDL () C:\Users\Default\Impresoras
2014-05-04 07:17 - 2014-05-04 07:17 - 00000000 _SHDL () C:\Users\Default\Entorno de red
2014-05-04 07:17 - 2014-05-04 07:17 - 00000000 _SHDL () C:\Users\Default\Documents\Mis vídeos
2014-05-04 07:17 - 2014-05-04 07:17 - 00000000 _SHDL () C:\Users\Default\Documents\Mis imágenes
2014-05-04 07:17 - 2014-05-04 07:17 - 00000000 _SHDL () C:\Users\Default\Documents\Mi música
2014-05-04 07:17 - 2014-05-04 07:17 - 00000000 _SHDL () C:\Users\Default\Datos de programa
2014-05-04 07:17 - 2014-05-04 07:17 - 00000000 _SHDL () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programas
2014-05-04 07:17 - 2014-05-04 07:17 - 00000000 _SHDL () C:\Users\Default\AppData\Local\Historial
2014-05-04 07:17 - 2014-05-04 07:17 - 00000000 _SHDL () C:\Users\Default\AppData\Local\Datos de programa
2014-05-04 07:17 - 2014-05-04 07:17 - 00000000 _SHDL () C:\Users\Default\AppData\Local\Archivos temporales de Internet
2014-05-04 07:17 - 2014-05-04 07:17 - 00000000 _SHDL () C:\Users\Default User\Documents\Mis vídeos
2014-05-04 07:17 - 2014-05-04 07:17 - 00000000 _SHDL () C:\Users\Default User\Documents\Mis imágenes
2014-05-04 07:17 - 2014-05-04 07:17 - 00000000 _SHDL () C:\Users\Default User\Documents\Mi música
2014-05-04 07:17 - 2014-05-04 07:17 - 00000000 _SHDL () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programas
2014-05-04 07:17 - 2014-05-04 07:17 - 00000000 _SHDL () C:\Users\Default User\AppData\Local\Historial
2014-05-04 07:17 - 2014-05-04 07:17 - 00000000 _SHDL () C:\Users\Default User\AppData\Local\Datos de programa
2014-05-04 07:17 - 2014-05-04 07:17 - 00000000 _SHDL () C:\Users\Default User\AppData\Local\Archivos temporales de Internet
2014-05-04 07:17 - 2014-05-04 07:17 - 00000000 _SHDL () C:\Users\Administrador\Reciente
2014-05-04 07:17 - 2014-05-04 07:17 - 00000000 _SHDL () C:\Users\Administrador\Plantillas
2014-05-04 07:17 - 2014-05-04 07:17 - 00000000 _SHDL () C:\Users\Administrador\Mis documentos
2014-05-04 07:17 - 2014-05-04 07:17 - 00000000 _SHDL () C:\Users\Administrador\Menú Inicio
2014-05-04 07:17 - 2014-05-04 07:17 - 00000000 _SHDL () C:\Users\Administrador\Impresoras
2014-05-04 07:17 - 2014-05-04 07:17 - 00000000 _SHDL () C:\Users\Administrador\Entorno de red
2014-05-04 07:17 - 2014-05-04 07:17 - 00000000 _SHDL () C:\Users\Administrador\Documents\Mis vídeos
2014-05-04 07:17 - 2014-05-04 07:17 - 00000000 _SHDL () C:\Users\Administrador\Documents\Mis imágenes
2014-05-04 07:17 - 2014-05-04 07:17 - 00000000 _SHDL () C:\Users\Administrador\Documents\Mi música
2014-05-04 07:17 - 2014-05-04 07:17 - 00000000 _SHDL () C:\Users\Administrador\Datos de programa
2014-05-04 07:17 - 2014-05-04 07:17 - 00000000 _SHDL () C:\Users\Administrador\AppData\Roaming\Microsoft\Windows\Start Menu\Programas
2014-05-04 07:17 - 2014-05-04 07:17 - 00000000 _SHDL () C:\Users\Administrador\AppData\Local\Historial
2014-05-04 07:17 - 2014-05-04 07:17 - 00000000 _SHDL () C:\Users\Administrador\AppData\Local\Datos de programa
2014-05-04 07:17 - 2014-05-04 07:17 - 00000000 _SHDL () C:\Users\Administrador\AppData\Local\Archivos temporales de Internet
2014-05-04 07:17 - 2014-05-04 07:17 - 00000000 _SHDL () C:\ProgramData\Plantillas
2014-05-04 07:17 - 2014-05-04 07:17 - 00000000 _SHDL () C:\ProgramData\Microsoft\Windows\Start Menu\Programas
2014-05-04 07:17 - 2014-05-04 07:17 - 00000000 _SHDL () C:\ProgramData\Menú Inicio
2014-05-04 07:17 - 2014-05-04 07:17 - 00000000 _SHDL () C:\ProgramData\Favoritos
2014-05-04 07:17 - 2014-05-04 07:17 - 00000000 _SHDL () C:\ProgramData\Escritorio
2014-05-04 07:17 - 2014-05-04 07:17 - 00000000 _SHDL () C:\ProgramData\Documentos
2014-05-04 07:17 - 2014-05-04 07:17 - 00000000 _SHDL () C:\ProgramData\Datos de programa
2014-05-04 07:17 - 2014-05-04 07:17 - 00000000 _SHDL () C:\Program Files\Archivos comunes
2014-05-04 07:17 - 2014-05-04 07:17 - 00000000 _SHDL () C:\Archivos de programa
2014-05-04 07:17 - 2014-05-04 07:17 - 00000000 ____D () C:\Recovery
2014-05-04 07:17 - 2009-07-14 01:54 - 00000000 ___RD () C:\Users\Administrador\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2014-05-04 07:17 - 2009-07-14 01:49 - 00000000 ___RD () C:\Users\Administrador\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2014-05-04 03:12 - 2014-05-04 07:17 - 00000000 ____D () C:\Windows\Panther
2014-05-04 03:12 - 2010-06-29 06:57 - 00011989 ____R () C:\Windows\system32\ServiciosPorDefecto_Win7_64bits.reg
2014-05-04 03:12 - 2010-06-29 06:57 - 00011756 ____R () C:\Windows\system32\ServiciosPorDefecto_Win7_32bits.reg

==================== One Month Modified Files and Folders =======

2014-05-11 11:57 - 2014-05-11 11:57 - 00010845 _____ () C:\Users\Administrador\Downloads\FRST.txt
2014-05-11 11:57 - 2014-05-11 11:57 - 00000000 ____D () C:\FRST
2014-05-11 11:57 - 2014-05-11 11:56 - 02066432 _____ (Farbar) C:\Users\Administrador\Downloads\FRST64.exe
2014-05-11 11:55 - 2014-05-04 09:24 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2014-05-10 14:44 - 2014-05-04 07:18 - 00079256 _____ () C:\Windows\WindowsUpdate.log
2014-05-10 14:43 - 2014-05-04 09:44 - 00000000 ____D () C:\Users\Administrador\AppData\Local\PMB Files
2014-05-10 14:32 - 2009-07-14 01:45 - 00014192 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-05-10 14:32 - 2009-07-14 01:45 - 00014192 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-05-10 14:30 - 2009-07-14 06:31 - 00703602 _____ () C:\Windows\system32\perfh00A.dat
2014-05-10 14:30 - 2009-07-14 06:31 - 00137600 _____ () C:\Windows\system32\perfc00A.dat
2014-05-10 14:30 - 2009-07-14 02:13 - 01555646 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-05-10 14:28 - 2014-05-07 13:58 - 00000000 ____D () C:\Users\Administrador\AppData\Roaming\Skype
2014-05-10 14:25 - 2014-05-04 18:19 - 00119512 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-05-10 14:24 - 2014-05-05 09:15 - 00000728 _____ () C:\Windows\setupact.log
2014-05-10 14:24 - 2014-05-04 08:38 - 00001046 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-05-10 14:24 - 2009-07-14 02:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-05-09 22:10 - 2014-05-04 10:14 - 00000838 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-05-09 21:54 - 2014-05-04 08:38 - 00001050 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-05-09 20:14 - 2014-05-09 20:14 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-05-09 19:49 - 2014-05-04 08:38 - 00004046 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2014-05-09 19:49 - 2014-05-04 08:38 - 00003794 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2014-05-09 07:14 - 2014-05-05 07:24 - 00002938 _____ () C:\Windows\PFRO.log
2014-05-08 06:47 - 2014-05-08 06:47 - 00000000 ___SD () C:\ComboFix
2014-05-08 06:47 - 2014-05-04 09:30 - 00000000 ____D () C:\Qoobox
2014-05-07 19:17 - 2014-05-04 18:05 - 00000000 ____D () C:\AdwCleaner
2014-05-07 19:16 - 2014-05-07 19:15 - 01316991 _____ () C:\Users\Administrador\Downloads\AdwCleaner.exe
2014-05-07 19:13 - 2014-05-07 19:13 - 00982016 _____ (Farbar) C:\Users\Administrador\Downloads\MiniToolBox.exe
2014-05-07 19:13 - 2014-05-07 19:13 - 00024009 _____ () C:\Users\Administrador\Downloads\Result.txt
2014-05-07 19:11 - 2014-05-07 18:51 - 00000454 _____ () C:\Users\Administrador\Desktop\ffe.txt
2014-05-07 14:04 - 2014-05-07 14:04 - 00000000 ____D () C:\Users\Administrador\Desktop\Nueva carpeta
2014-05-07 13:59 - 2014-05-07 13:59 - 00000000 ____D () C:\Users\Administrador\AppData\Local\Skype
2014-05-07 13:58 - 2014-05-07 13:58 - 00002697 _____ () C:\Users\Public\Desktop\Skype.lnk
2014-05-07 13:58 - 2014-05-07 13:58 - 00000000 ___RD () C:\Program Files (x86)\Skype
2014-05-07 13:58 - 2014-05-07 13:58 - 00000000 ____D () C:\ProgramData\Skype
2014-05-07 13:58 - 2014-05-07 13:58 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2014-05-07 13:57 - 2014-05-07 13:57 - 01678496 _____ (Skype Technologies S.A.) C:\Users\Administrador\Downloads\SkypeSetup.exe
2014-05-07 09:45 - 2014-05-04 20:14 - 00000000 ____D () C:\Users\Administrador\AppData\Roaming\TS3Client
2014-05-07 09:13 - 2014-05-04 09:44 - 00000000 ____D () C:\ProgramData\PMB Files
2014-05-05 13:12 - 2014-05-05 13:12 - 00000000 ____D () C:\Users\Administrador\AppData\Roaming\LolClient
2014-05-05 13:11 - 2014-05-05 13:11 - 00001111 _____ () C:\Users\Administrador\Desktop\system - Acceso directo.lnk
2014-05-05 10:30 - 2014-05-05 09:58 - 00000000 ____D () C:\ProgramData\Spybot - Search & Destroy
2014-05-05 10:05 - 2014-05-05 09:58 - 00000000 ____D () C:\Program Files (x86)\Spybot - Search & Destroy 2
2014-05-05 10:00 - 2014-05-05 10:00 - 00000000 ____D () C:\Users\Administrador\Documents\ProcAlyzer Dumps
2014-05-05 09:59 - 2014-05-05 09:59 - 00000000 ____D () C:\Windows\System32\Tasks\Safer-Networking
2014-05-05 09:58 - 2014-05-05 09:58 - 00001391 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot-S&D Start Center.lnk
2014-05-05 09:58 - 2014-05-05 09:58 - 00001379 _____ () C:\Users\Public\Desktop\Spybot-S&D Start Center.lnk
2014-05-05 09:58 - 2014-05-05 09:58 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot - Search & Destroy 2
2014-05-05 09:58 - 2014-05-05 09:54 - 46392680 _____ (Safer-Networking Ltd. ) C:\Users\Administrador\Downloads\spybot-2.3.exe
2014-05-05 09:41 - 2014-05-05 09:35 - 00017819 _____ () C:\Users\Administrador\Desktop\hijackthis.log
2014-05-05 09:31 - 2014-05-05 09:31 - 00002971 _____ () C:\Users\Administrador\Desktop\HiJackThis.lnk
2014-05-05 09:31 - 2014-05-05 09:31 - 00000000 ____D () C:\Users\Administrador\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\HiJackThis
2014-05-05 09:31 - 2014-05-05 09:31 - 00000000 ____D () C:\Program Files (x86)\Trend Micro
2014-05-05 09:30 - 2014-05-05 09:30 - 01402880 _____ () C:\Users\Administrador\Downloads\HiJackThis.msi
2014-05-05 09:30 - 2014-05-05 09:24 - 00000000 ____D () C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2014-05-05 09:30 - 2014-05-05 09:22 - 00000000 ____D () C:\Users\Administrador\Desktop\mbar
2014-05-05 09:22 - 2014-05-05 09:22 - 12589848 _____ (Malwarebytes Corp.) C:\Users\Administrador\Downloads\mbar-1.07.0.1009.exe
2014-05-05 09:22 - 2014-05-04 18:19 - 00091352 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2014-05-05 09:18 - 2014-05-05 09:17 - 00010827 _____ () C:\AT-Destroyer.txt
2014-05-05 09:17 - 2014-05-05 09:16 - 00000000 ____D () C:\_AT-Destroyer
2014-05-05 09:16 - 2014-05-05 09:16 - 01199088 _____ () C:\Users\Administrador\Downloads\AT-Destroyer.exe
2014-05-05 09:16 - 2014-05-04 19:33 - 00000000 ____D () C:\ProgramData\Package Cache
2014-05-05 09:15 - 2014-05-05 09:15 - 00000000 _____ () C:\Windows\setuperr.log
2014-05-05 09:10 - 2014-05-05 09:10 - 00000000 ____D () C:\TDSSKiller_Quarantine
2014-05-05 07:34 - 2014-05-05 07:33 - 04164448 _____ (Kaspersky Lab ZAO) C:\Users\Administrador\Downloads\tdsskiller.exe
2014-05-05 07:32 - 2014-05-05 07:29 - 00000000 ____D () C:\Program Files (x86)\Trojan . Shutdown Removal Tool
2014-05-05 07:29 - 2014-05-05 07:29 - 00001419 _____ () C:\Users\Administrador\Desktop\Trojan . Shutdown Removal Tool.lnk
2014-05-05 07:29 - 2014-05-05 07:29 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Trojan . Shutdown Removal Tool
2014-05-05 07:26 - 2014-05-05 07:26 - 03249776 _____ (Security Stronghold ) C:\Users\Administrador\Downloads\Trojan.ShutdownRemovalTool.exe
2014-05-05 07:24 - 2014-05-04 08:39 - 00000000 ____D () C:\Program Files\Google
2014-05-05 07:24 - 2014-05-04 08:38 - 00000000 ____D () C:\Program Files (x86)\Google
2014-05-04 20:14 - 2014-05-04 20:14 - 00000967 _____ () C:\Users\Public\Desktop\TeamSpeak 3 Client.lnk
2014-05-04 20:14 - 2014-05-04 20:14 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamSpeak 3 Client
2014-05-04 20:14 - 2014-05-04 20:14 - 00000000 ____D () C:\Program Files\TeamSpeak 3 Client
2014-05-04 20:14 - 2014-05-04 20:03 - 29498592 _____ (TeamSpeak Systems GmbH) C:\Users\Administrador\Downloads\TeamSpeak3-Client-win64-3.0.14.exe
2014-05-04 19:33 - 2014-05-04 19:32 - 04530864 _____ (Avira Operations GmbH & Co. KG) C:\Users\Administrador\Downloads\avira_es_av___ws.exe
2014-05-04 19:29 - 2014-05-04 18:19 - 00001102 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2014-05-04 19:29 - 2014-05-04 18:19 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2014-05-04 19:29 - 2014-05-04 18:19 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware
2014-05-04 19:07 - 2014-05-04 07:30 - 00000000 ____D () C:\Program Files (x86)\ESET
2014-05-04 18:52 - 2014-05-04 08:38 - 00000000 ____D () C:\Users\Administrador\AppData\Local\Google
2014-05-04 18:50 - 2014-05-04 18:50 - 00000000 ____D () C:\Users\Administrador\AppData\Roaming\Google
2014-05-04 18:33 - 2009-07-13 23:34 - 00000215 _____ () C:\Windows\system.ini
2014-05-04 18:29 - 2014-05-04 10:24 - 00000000 ____D () C:\Program Files (x86)\puush
2014-05-04 18:19 - 2014-05-04 18:19 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-05-04 18:19 - 2014-05-04 18:17 - 17523520 _____ (Malwarebytes Corporation ) C:\Users\Administrador\Downloads\mbam-setup.exe
2014-05-04 18:14 - 2014-05-04 18:14 - 00000768 _____ () C:\Users\Administrador\Desktop\JRT.txt
2014-05-04 18:12 - 2014-05-04 18:12 - 00000000 ____D () C:\Windows\ERUNT
2014-05-04 18:04 - 2014-05-04 18:04 - 01016261 _____ (Thisisu) C:\Users\Administrador\Downloads\JRT.exe
2014-05-04 10:24 - 2014-05-04 10:24 - 01085440 _____ () C:\Users\Administrador\Downloads\puush.msi
2014-05-04 10:24 - 2014-05-04 10:24 - 00000000 ____D () C:\Users\Administrador\AppData\Roaming\puush
2014-05-04 10:24 - 2014-05-04 10:24 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\puush
2014-05-04 10:17 - 2009-07-14 00:20 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
2014-05-04 10:16 - 2014-05-04 10:16 - 00000000 ____D () C:\Users\Administrador\AppData\Roaming\Macromedia
2014-05-04 10:16 - 2014-05-04 10:16 - 00000000 ____D () C:\Users\Administrador\AppData\Roaming\Adobe
2014-05-04 10:16 - 2014-05-04 10:16 - 00000000 ____D () C:\Users\Administrador\AppData\Local\Macromedia
2014-05-04 10:16 - 2014-05-04 10:13 - 00000000 ____D () C:\Users\Administrador\AppData\Local\Adobe
2014-05-04 10:14 - 2014-05-04 10:14 - 00692400 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-05-04 10:14 - 2014-05-04 10:14 - 00070832 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-05-04 10:14 - 2014-05-04 10:14 - 00003776 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-05-04 10:14 - 2014-05-04 10:14 - 00000000 ____D () C:\Windows\system32\Macromed
2014-05-04 10:14 - 2014-05-04 10:14 - 00000000 ____D () C:\ProgramData\McAfee
2014-05-04 09:45 - 2014-05-04 09:45 - 00001613 _____ () C:\Users\Public\Desktop\Play League of Legends.lnk
2014-05-04 09:45 - 2014-05-04 09:45 - 00000000 ____D () C:\Riot Games
2014-05-04 09:45 - 2014-05-04 09:45 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\League of Legends
2014-05-04 09:44 - 2014-05-04 09:44 - 00000000 ____D () C:\Users\Administrador\AppData\Roaming\Riot Games
2014-05-04 09:44 - 2014-05-04 09:44 - 00000000 ____D () C:\Program Files (x86)\Pando Networks
2014-05-04 09:44 - 2014-05-04 09:42 - 32268976 _____ (Riot Games) C:\Users\Administrador\Downloads\LeagueofLegends_LA1_Installer_06_11_13.exe
2014-05-04 09:37 - 2009-07-14 00:20 - 00000000 __RHD () C:\Users\Default
2014-05-04 09:36 - 2014-05-04 09:30 - 00000000 ____D () C:\Windows\erdnt
2014-05-04 09:30 - 2014-05-04 09:29 - 05197895 ____R (Swearware) C:\Users\Administrador\Downloads\ComboFix.exe
2014-05-04 09:28 - 2014-05-04 09:28 - 00688992 ____R (Swearware) C:\Users\Administrador\Downloads\dds.com
2014-05-04 09:28 - 2014-05-04 09:28 - 00009769 _____ () C:\Users\Administrador\Desktop\dds.txt
2014-05-04 09:28 - 2014-05-04 09:28 - 00003803 _____ () C:\Users\Administrador\Desktop\attach.txt
2014-05-04 09:24 - 2014-05-04 09:24 - 00001159 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2014-05-04 09:24 - 2014-05-04 09:24 - 00001147 _____ () C:\Users\Public\Desktop\Mozilla Firefox.lnk
2014-05-04 09:24 - 2014-05-04 09:24 - 00000000 ____D () C:\Users\Administrador\AppData\Roaming\Mozilla
2014-05-04 09:24 - 2014-05-04 09:24 - 00000000 ____D () C:\ProgramData\Mozilla
2014-05-04 09:24 - 2014-05-04 09:18 - 00000000 ____D () C:\Users\Administrador\AppData\Local\Mozilla
2014-05-04 09:22 - 2014-05-04 09:22 - 00283080 _____ (Mozilla) C:\Users\Administrador\Downloads\Firefox Setup Stub 29.0.exe
2014-05-04 09:18 - 2014-05-04 09:18 - 00000000 ____D () C:\ProgramData\ATI
2014-05-04 09:18 - 2014-05-04 09:18 - 00000000 ____D () C:\Program Files (x86)\AMD AVT
2014-05-04 09:18 - 2014-05-04 09:18 - 00000000 ____D () C:\Program Files (x86)\AMD APP
2014-05-04 09:18 - 2014-05-04 08:37 - 00000000 ____D () C:\ProgramData\AMD
2014-05-04 09:17 - 2014-05-04 09:17 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD VISION Engine Control Center
2014-05-04 09:17 - 2014-05-04 08:37 - 00000000 ____D () C:\Program Files\ATI Technologies
2014-05-04 09:16 - 2014-05-04 08:36 - 00000000 ____D () C:\Program Files (x86)\ATI Technologies
2014-05-04 09:10 - 2014-05-04 09:10 - 00000000 ____D () C:\Users\Administrador\AppData\Roaming\ATI
2014-05-04 09:10 - 2014-05-04 09:10 - 00000000 ____D () C:\Users\Administrador\AppData\Local\ATI
2014-05-04 09:10 - 2014-05-04 09:10 - 00000000 ____D () C:\Users\Administrador\AppData\Local\AMD
2014-05-04 09:04 - 2014-05-04 09:04 - 00000000 _____ () C:\Windows\ativpsrm.bin
2014-05-04 09:04 - 2009-07-14 01:45 - 00337576 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-05-04 08:52 - 2014-05-04 08:39 - 00002181 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2014-05-04 08:52 - 2014-05-04 08:39 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
2014-05-04 08:42 - 2014-05-04 08:42 - 00000036 _____ () C:\Users\Administrador\AppData\Local\housecall.guid.cache
2014-05-04 08:42 - 2014-05-04 08:42 - 00000000 ____D () C:\Program Files\Trend Micro
2014-05-04 08:39 - 2014-05-04 08:39 - 00002063 _____ () C:\Users\Public\Desktop\Super-Charger.lnk
2014-05-04 08:39 - 2014-05-04 08:39 - 00000000 ____D () C:\Windows\SysWOW64\RTCOM
2014-05-04 08:39 - 2014-05-04 08:39 - 00000000 ____D () C:\SuperChargerProfile
2014-05-04 08:39 - 2014-05-04 08:39 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MSI
2014-05-04 08:39 - 2014-05-04 08:39 - 00000000 ____D () C:\Program Files\Realtek
2014-05-04 08:39 - 2014-05-04 08:39 - 00000000 ____D () C:\Program Files (x86)\MSI
2014-05-04 08:39 - 2014-05-04 08:38 - 00002306 _____ () C:\RHDSetup.log
2014-05-04 08:39 - 2014-05-04 08:38 - 00000189 _____ () C:\mylog.log
2014-05-04 08:38 - 2014-05-04 08:38 - 00000000 ____D () C:\Program Files\Common Files\ATI Technologies
2014-05-04 08:38 - 2014-05-04 08:38 - 00000000 ____D () C:\Program Files (x86)\Realtek
2014-05-04 08:38 - 2014-05-04 07:25 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2014-05-04 08:36 - 2014-05-04 08:36 - 00000000 ____D () C:\Program Files\ATI
2014-05-04 08:36 - 2009-07-14 00:20 - 00000000 ____D () C:\Program Files\Common Files\Microsoft Shared
2014-05-04 08:27 - 2014-05-04 08:27 - 00000000 ____D () C:\MSI
2014-05-04 07:48 - 2014-05-04 07:48 - 00000000 ____D () C:\Windows\system32\appmgmt
2014-05-04 07:39 - 2014-05-04 07:39 - 00000000 ____D () C:\Users\Administrador\AppData\Roaming\Media Player Classic
2014-05-04 07:34 - 2014-05-04 07:30 - 00000000 ____D () C:\Program Files (x86)\The KMPlayer
2014-05-04 07:33 - 2014-05-04 07:30 - 00000000 ____D () C:\Program Files (x86)\AIMP2 Tools
2014-05-04 07:31 - 2014-05-04 07:31 - 00001427 _____ () C:\Users\Administrador\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-05-04 07:31 - 2014-05-04 07:31 - 00001393 _____ () C:\Users\Administrador\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer (64-bit).lnk
2014-05-04 07:31 - 2014-05-04 07:31 - 00000000 ___RD () C:\Users\Administrador\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2014-05-04 07:31 - 2014-05-04 07:31 - 00000000 ___RD () C:\Users\Administrador\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2014-05-04 07:31 - 2014-05-04 07:30 - 00000000 ____D () C:\1b9248a80cb1fb9d299b9659
2014-05-04 07:31 - 2014-05-04 07:17 - 00000000 ____D () C:\Users\Administrador
2014-05-04 07:31 - 2009-07-14 01:57 - 00001547 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2014-05-04 07:30 - 2014-05-04 07:30 - 00000963 _____ () C:\Users\Public\Desktop\AIMP2.lnk
2014-05-04 07:30 - 2014-05-04 07:30 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AIMP2
2014-05-04 07:29 - 2014-05-04 07:29 - 00001037 _____ () C:\Users\Administrador\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\uTorrent 2.0.2.lnk
2014-05-04 07:29 - 2014-05-04 07:29 - 00001007 _____ () C:\Users\Administrador\Desktop\CCleaner.lnk
2014-05-04 07:29 - 2014-05-04 07:29 - 00000977 _____ () C:\Users\Administrador\Desktop\Total Video Player.lnk
2014-05-04 07:29 - 2014-05-04 07:29 - 00000977 _____ () C:\Users\Administrador\Desktop\Total Video Converter.lnk
2014-05-04 07:29 - 2014-05-04 07:29 - 00000000 ____D () C:\Users\Administrador\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2014-05-04 07:29 - 2014-05-04 07:29 - 00000000 ____D () C:\Users\Administrador\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CCleaner
2014-05-04 07:29 - 2014-05-04 07:29 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2014-05-04 07:29 - 2014-05-04 07:29 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Total Video Converter
2014-05-04 07:29 - 2014-05-04 07:29 - 00000000 ____D () C:\Program Files (x86)\Winrar
2014-05-04 07:29 - 2014-05-04 07:29 - 00000000 ____D () C:\Program Files (x86)\Total Video Converter
2014-05-04 07:29 - 2014-05-04 07:29 - 00000000 ____D () C:\Program Files (x86)\CCleaner
2014-05-04 07:28 - 2014-05-04 07:27 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live
2014-05-04 07:28 - 2014-05-04 07:26 - 00000000 ____D () C:\Program Files (x86)\Windows Live
2014-05-04 07:28 - 2014-05-04 07:17 - 00084128 _____ () C:\Users\Administrador\AppData\Local\GDIPFONTCACHEV1.DAT
2014-05-04 07:27 - 2014-05-04 07:27 - 00000000 ____D () C:\Program Files (x86)\Windows Live SkyDrive
2014-05-04 07:26 - 2014-05-04 07:26 - 00000000 ____D () C:\Windows\SysWOW64\Macromed
2014-05-04 07:25 - 2014-05-04 07:25 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QT Lite
2014-05-04 07:25 - 2014-05-04 07:25 - 00000000 ____D () C:\ProgramData\Apple Computer
2014-05-04 07:25 - 2014-05-04 07:25 - 00000000 ____D () C:\Program Files (x86)\QT Lite
2014-05-04 07:24 - 2014-05-04 07:24 - 00029480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3a.dll
2014-05-04 07:24 - 2014-05-04 07:24 - 00000000 ____D () C:\Program Files (x86)\CyberLink
2014-05-04 07:24 - 2010-04-29 06:47 - 00505128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcp71.dll
2014-05-04 07:24 - 2010-04-29 06:47 - 00353576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcr71.dll
2014-05-04 07:23 - 2014-05-04 07:23 - 00000376 _____ () C:\Windows\ODBC.INI
2014-05-04 07:23 - 2014-05-04 07:23 - 00000000 ____D () C:\Windows\SysWOW64\Adobe
2014-05-04 07:23 - 2014-05-04 07:23 - 00000000 ____D () C:\Program Files (x86)\MSECache
2014-05-04 07:23 - 2014-05-04 07:22 - 00000000 ____D () C:\Program Files (x86)\Microsoft Office
2014-05-04 07:22 - 2014-05-04 07:22 - 00411368 _____ (Sun Microsystems, Inc.) C:\Windows\SysWOW64\deployJava1.dll
2014-05-04 07:22 - 2014-05-04 07:22 - 00153376 _____ (Sun Microsystems, Inc.) C:\Windows\SysWOW64\javaws.exe
2014-05-04 07:22 - 2014-05-04 07:22 - 00145184 _____ (Sun Microsystems, Inc.) C:\Windows\SysWOW64\javaw.exe
2014-05-04 07:22 - 2014-05-04 07:22 - 00145184 _____ (Sun Microsystems, Inc.) C:\Windows\SysWOW64\java.exe
2014-05-04 07:22 - 2014-05-04 07:22 - 00000000 ____D () C:\Windows\SHELLNEW
2014-05-04 07:22 - 2014-05-04 07:22 - 00000000 ____D () C:\Windows\PCHEALTH
2014-05-04 07:22 - 2014-05-04 07:22 - 00000000 ____D () C:\ProgramData\Sun
2014-05-04 07:22 - 2014-05-04 07:22 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
2014-05-04 07:22 - 2014-05-04 07:22 - 00000000 ____D () C:\Program Files (x86)\Microsoft Works
2014-05-04 07:22 - 2014-05-04 07:22 - 00000000 ____D () C:\Program Files (x86)\Java
2014-05-04 07:22 - 2009-07-14 00:20 - 00000000 ____D () C:\Windows\system
2014-05-04 07:22 - 2009-07-14 00:20 - 00000000 ____D () C:\Windows\IME
2014-05-04 07:22 - 2009-07-14 00:20 - 00000000 ____D () C:\Windows\Help
2014-05-04 07:21 - 2014-05-04 07:21 - 00002026 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader 9.lnk
2014-05-04 07:21 - 2014-05-04 07:21 - 00000000 ____D () C:\ProgramData\Adobe
2014-05-04 07:21 - 2014-05-04 07:21 - 00000000 ____D () C:\Program Files (x86)\Adobe
2014-05-04 07:21 - 2009-07-14 02:32 - 00000000 ____D () C:\Windows\system32\restore
2014-05-04 07:18 - 2009-07-13 20:55 - 00332288 _____ (Microsoft Corporation) C:\Windows\system32\uxtheme.dll
2014-05-04 07:18 - 2009-07-13 20:54 - 02851328 _____ (Microsoft Corporation) C:\Windows\system32\themeui.dll
2014-05-04 07:18 - 2009-07-13 20:54 - 00044544 _____ (Microsoft Corporation) C:\Windows\system32\themeservice.dll
2014-05-04 07:17 - 2014-05-04 07:17 - 00000020 ___SH () C:\Users\Administrador\ntuser.ini
2014-05-04 07:17 - 2014-05-04 07:17 - 00000000 _SHDL () C:\Users\Public\Documents\Mis vídeos
2014-05-04 07:17 - 2014-05-04 07:17 - 00000000 _SHDL () C:\Users\Public\Documents\Mis imágenes
2014-05-04 07:17 - 2014-05-04 07:17 - 00000000 _SHDL () C:\Users\Public\Documents\Mi música
2014-05-04 07:17 - 2014-05-04 07:17 - 00000000 _SHDL () C:\Users\Default\Reciente
2014-05-04 07:17 - 2014-05-04 07:17 - 00000000 _SHDL () C:\Users\Default\Plantillas
2014-05-04 07:17 - 2014-05-04 07:17 - 00000000 _SHDL () C:\Users\Default\Mis documentos
2014-05-04 07:17 - 2014-05-04 07:17 - 00000000 _SHDL () C:\Users\Default\Menú Inicio
2014-05-04 07:17 - 2014-05-04 07:17 - 00000000 _SHDL () C:\Users\Default\Impresoras
2014-05-04 07:17 - 2014-05-04 07:17 - 00000000 _SHDL () C:\Users\Default\Entorno de red
2014-05-04 07:17 - 2014-05-04 07:17 - 00000000 _SHDL () C:\Users\Default\Documents\Mis vídeos
2014-05-04 07:17 - 2014-05-04 07:17 - 00000000 _SHDL () C:\Users\Default\Documents\Mis imágenes
2014-05-04 07:17 - 2014-05-04 07:17 - 00000000 _SHDL () C:\Users\Default\Documents\Mi música
2014-05-04 07:17 - 2014-05-04 07:17 - 00000000 _SHDL () C:\Users\Default\Datos de programa
2014-05-04 07:17 - 2014-05-04 07:17 - 00000000 _SHDL () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programas
2014-05-04 07:17 - 2014-05-04 07:17 - 00000000 _SHDL () C:\Users\Default\AppData\Local\Historial
2014-05-04 07:17 - 2014-05-04 07:17 - 00000000 _SHDL () C:\Users\Default\AppData\Local\Datos de programa
2014-05-04 07:17 - 2014-05-04 07:17 - 00000000 _SHDL () C:\Users\Default\AppData\Local\Archivos temporales de Internet
2014-05-04 07:17 - 2014-05-04 07:17 - 00000000 _SHDL () C:\Users\Default User\Documents\Mis vídeos
2014-05-04 07:17 - 2014-05-04 07:17 - 00000000 _SHDL () C:\Users\Default User\Documents\Mis imágenes
2014-05-04 07:17 - 2014-05-04 07:17 - 00000000 _SHDL () C:\Users\Default User\Documents\Mi música
2014-05-04 07:17 - 2014-05-04 07:17 - 00000000 _SHDL () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programas
2014-05-04 07:17 - 2014-05-04 07:17 - 00000000 _SHDL () C:\Users\Default User\AppData\Local\Historial
2014-05-04 07:17 - 2014-05-04 07:17 - 00000000 _SHDL () C:\Users\Default User\AppData\Local\Datos de programa
2014-05-04 07:17 - 2014-05-04 07:17 - 00000000 _SHDL () C:\Users\Default User\AppData\Local\Archivos temporales de Internet
2014-05-04 07:17 - 2014-05-04 07:17 - 00000000 _SHDL () C:\Users\Administrador\Reciente
2014-05-04 07:17 - 2014-05-04 07:17 - 00000000 _SHDL () C:\Users\Administrador\Plantillas
2014-05-04 07:17 - 2014-05-04 07:17 - 00000000 _SHDL () C:\Users\Administrador\Mis documentos
2014-05-04 07:17 - 2014-05-04 07:17 - 00000000 _SHDL () C:\Users\Administrador\Menú Inicio
2014-05-04 07:17 - 2014-05-04 07:17 - 00000000 _SHDL () C:\Users\Administrador\Impresoras
2014-05-04 07:17 - 2014-05-04 07:17 - 00000000 _SHDL () C:\Users\Administrador\Entorno de red
2014-05-04 07:17 - 2014-05-04 07:17 - 00000000 _SHDL () C:\Users\Administrador\Documents\Mis vídeos
2014-05-04 07:17 - 2014-05-04 07:17 - 00000000 _SHDL () C:\Users\Administrador\Documents\Mis imágenes
2014-05-04 07:17 - 2014-05-04 07:17 - 00000000 _SHDL () C:\Users\Administrador\Documents\Mi música
2014-05-04 07:17 - 2014-05-04 07:17 - 00000000 _SHDL () C:\Users\Administrador\Datos de programa
2014-05-04 07:17 - 2014-05-04 07:17 - 00000000 _SHDL () C:\Users\Administrador\AppData\Roaming\Microsoft\Windows\Start Menu\Programas
2014-05-04 07:17 - 2014-05-04 07:17 - 00000000 _SHDL () C:\Users\Administrador\AppData\Local\Historial
2014-05-04 07:17 - 2014-05-04 07:17 - 00000000 _SHDL () C:\Users\Administrador\AppData\Local\Datos de programa
2014-05-04 07:17 - 2014-05-04 07:17 - 00000000 _SHDL () C:\Users\Administrador\AppData\Local\Archivos temporales de Internet
2014-05-04 07:17 - 2014-05-04 07:17 - 00000000 _SHDL () C:\ProgramData\Plantillas
2014-05-04 07:17 - 2014-05-04 07:17 - 00000000 _SHDL () C:\ProgramData\Microsoft\Windows\Start Menu\Programas
2014-05-04 07:17 - 2014-05-04 07:17 - 00000000 _SHDL () C:\ProgramData\Menú Inicio
2014-05-04 07:17 - 2014-05-04 07:17 - 00000000 _SHDL () C:\ProgramData\Favoritos
2014-05-04 07:17 - 2014-05-04 07:17 - 00000000 _SHDL () C:\ProgramData\Escritorio
2014-05-04 07:17 - 2014-05-04 07:17 - 00000000 _SHDL () C:\ProgramData\Documentos
2014-05-04 07:17 - 2014-05-04 07:17 - 00000000 _SHDL () C:\ProgramData\Datos de programa
2014-05-04 07:17 - 2014-05-04 07:17 - 00000000 _SHDL () C:\Program Files\Archivos comunes
2014-05-04 07:17 - 2014-05-04 07:17 - 00000000 _SHDL () C:\Archivos de programa
2014-05-04 07:17 - 2014-05-04 07:17 - 00000000 ____D () C:\Recovery
2014-05-04 07:17 - 2014-05-04 03:12 - 00000000 ____D () C:\Windows\Panther
2014-05-04 07:17 - 2009-07-14 00:20 - 00000000 ____D () C:\Windows\system32\Recovery
2014-05-04 07:17 - 2009-07-14 00:20 - 00000000 ____D () C:\Windows\rescache
2014-05-04 07:17 - 2009-07-14 00:20 - 00000000 ____D () C:\Program Files\Windows NT
2014-05-04 07:15 - 2009-07-14 00:20 - 00000000 ____D () C:\Windows\system32\sysprep
2014-05-04 07:13 - 2009-07-14 07:11 - 00000000 ____D () C:\Windows\CSC
2014-05-04 03:12 - 2009-07-14 02:38 - 00025600 ___SH () C:\Windows\system32\config\BCD-Template.LOG
2014-05-04 03:12 - 2009-07-14 02:32 - 00028672 _____ () C:\Windows\system32\config\BCD-Template

Some content of TEMP:
====================
C:\Users\Administrador\AppData\Local\temp\Quarantine.exe


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2014-05-04 08:52

==================== End Of Log ============================

Attached Files



#4 nasdaq

nasdaq

  • Malware Response Team
  • 38,264 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Montreal, QC. Canada
  • Local time:03:14 PM

Posted 11 May 2014 - 12:43 PM


Open notepad (Start =>All Programs => Accessories => Notepad). Please copy the entire contents of the code box below.

start

HKLM-x32\...\Run: [SunJavaUpdateSched] => -
BHO-x32: Java™ Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
Toolbar: HKCU - No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} -  No File
Filter: text/xml - {807553E5-5146-11D5-A672-00B0D022E945} -  No File
FF Plugin-x32: @adobe.com/ShockwavePlayer - C:\Windows\system32\Adobe\Director\np32dsw.dll No File
S3 catchme; \??\C:\ComboFix\catchme.sys [X]
S3 NTIOLib_1_0_C; \??\E:\NTIOLib_X64.sys [X]

end
Save the files as fixlist.txt in to the same folder as FRST
Run FRST and click Fix only once and wait.

Restart the computer to reset the registry.

The tool will create a log (Fixlog.txt) please post it to your reply.

====

One last scan.

Download Security Check by screen317 from here.
  • Save it to your Desktop.
  • Double click SecurityCheck.exe and follow the onscreen instructions inside of the black box.
  • A Notepad document should open automatically called checkup.txt; please post the contents of that document.
p.s.
If the SecurityCheck program fails to run for any reason, run it as an Administrator.
===

#5 Hydra

Hydra
  • Topic Starter

  • Members
  • 11 posts
  • OFFLINE
  •  
  • Local time:06:14 PM

Posted 11 May 2014 - 04:46 PM

Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 11-05-2014 01
Ran by Administrador at 2014-05-11 18:40:45 Run:1
Running from C:\Users\Administrador\Downloads\Nueva carpeta
Boot Mode: Normal
==============================================

Content of fixlist:
*****************
start

HKLM-x32\...\Run: [SunJavaUpdateSched] => -
BHO-x32: Java™ Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
Toolbar: HKCU - No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} -  No File
Filter: text/xml - {807553E5-5146-11D5-A672-00B0D022E945} -  No File
FF Plugin-x32: @adobe.com/ShockwavePlayer - C:\Windows\system32\Adobe\Director\np32dsw.dll No File
S3 catchme; \??\C:\ComboFix\catchme.sys [X]
S3 NTIOLib_1_0_C; \??\E:\NTIOLib_X64.sys [X]

end
*****************

HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\SunJavaUpdateSched => Value deleted successfully.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9} => Key deleted successfully.
HKCR\Wow6432Node\CLSID\{DBC80044-A445-435b-BC74-9C25C1C588A9} => Key deleted successfully.
HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{2318C2B1-4965-11D4-9B18-009027A5CD4F} => Value deleted successfully.
HKCR\CLSID\{2318C2B1-4965-11D4-9B18-009027A5CD4F} => Key not found.
HKCR\PROTOCOLS\Filter\text/xml => Key deleted successfully.
HKCR\CLSID\{807553E5-5146-11D5-A672-00B0D022E945} => Key not found.
HKLM\Software\Wow6432Node\MozillaPlugins\@adobe.com/ShockwavePlayer => Key deleted successfully.
C:\Windows\system32\Adobe\Director\np32dsw.dll not found.
catchme => Service deleted successfully.
NTIOLib_1_0_C => Service deleted successfully.

==== End of Fixlog ====




Security check

 Results of screen317's Security Check version 0.99.83  
 Windows 7  x64 (UAC is disabled!)  
 Out of date service pack!!
``````````````Antivirus/Firewall Check:``````````````
 WMI entry may not exist for antivirus; attempting automatic update.
`````````Anti-malware/Other Utilities Check:`````````
 Spybot - Search & Destroy
 CCleaner     
 Java™ 6 Update 20  
 Java version out of Date!
 Adobe Flash Player 10 Flash Player out of Date!
 Adobe Flash Player 13.0.0.206  
 Adobe Reader 9 Adobe Reader out of Date!
 Mozilla Firefox (29.0.1)
 Google Chrome 18.0.1025.142  
 Google Chrome 34.0.1847.131  
````````Process Check: objlist.exe by Laurent````````  
 Malwarebytes Anti-Malware mbamservice.exe  
 Malwarebytes Anti-Malware mbam.exe  
 Spybot Teatimer.exe is disabled!
 Malwarebytes Anti-Malware mbamscheduler.exe   
`````````````````System Health check`````````````````
 Total Fragmentation on Drive C: 7%
````````````````````End of Log``````````````````````
 



#6 nasdaq

nasdaq

  • Malware Response Team
  • 38,264 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Montreal, QC. Canada
  • Local time:03:14 PM

Posted 12 May 2014 - 07:07 AM

Secure your system by updating 3rd party programs.

Your version of Java is outdated and needs to be updated to take advantage of fixes that have eliminated security vulnerabilities.
Latest version is Java JRE 7u55.

You can manually check your present version and update as recommended.
https://www.java.com/en/download/installed.jsp

Be careful not to install malware posing as Java update!
Important read this blog.
http://blog.trendmicro.com/trendlabs-security-intelligence/malware-poses-as-an-update-for-java-0-day-fix/

Quoted from the page.
"In light of the recent events surrounding Java, users must seriously consider their use of Java. Do they really need it? If yes, make sure that users follow the steps we recommended and get the security update directly from the official oracle website." at:
http://www.oracle.com/technetwork/java/javase/downloads/index.html

How to disable Java in your browsers
http://www.infoworld.com/t/web-browsers/how-disable-java-in-your-browsers-210882


If present remove the old version(s) of Java using the Add/Remove Programs applet.

Java 6 Update 20

Remove also this old version of Fash.
Adobe Flash Player 10

===

Get the latest version of the Adobe Reader.
http://get.adobe.com/reader/
Before your download I suggest you unckeck the box on the top right "Yes, install McAfee Security Scan Plus - optional" this is not required if you are not a McAfee subscriber. While the installation is in progress you can also deny the installation of any other programs that may be suggested.

When installed remove your old version of the Reader using the Add/Remove Programs applet if present.
<<<>>>

For you added security install Windows 7 Service Pack 1 (SP1)
http://windows.microsoft.com/installwindows7sp1
===

Let me know of any remaining issues with this computer.

#7 Hydra

Hydra
  • Topic Starter

  • Members
  • 11 posts
  • OFFLINE
  •  
  • Local time:06:14 PM

Posted 12 May 2014 - 01:11 PM

Hey, I've had days where my computer didn't shut down for even a week, but I didn't have any of them so far, so thanks, once paypal stops a issue they have with my acc I'll give you $$. I'd like to know if my mouse had to do with anything of this so I can have it back as well, thanks, you can close this after your reply, if I start getting shutdowns again i'll open a new topic or pm you to reopen this one.



#8 nasdaq

nasdaq

  • Malware Response Team
  • 38,264 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Montreal, QC. Canada
  • Local time:03:14 PM

Posted 13 May 2014 - 08:48 AM

once paypal stops a issue they have with my acc I'll give you $$.

My services are free. You should consider a donation to the owner or the programs we used.
Thanks.

#9 Hydra

Hydra
  • Topic Starter

  • Members
  • 11 posts
  • OFFLINE
  •  
  • Local time:06:14 PM

Posted 14 May 2014 - 08:27 PM

Hey, problem is back, my computer just shut down with that random 1111111 typing even with my old mouse, I think it's not that.



#10 nasdaq

nasdaq

  • Malware Response Team
  • 38,264 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Montreal, QC. Canada
  • Local time:03:14 PM

Posted 15 May 2014 - 08:03 AM

Can you disconnect the mouse and just use the key pad on the laptop.

Then close the computer is the problem persisting?

#11 Hydra

Hydra
  • Topic Starter

  • Members
  • 11 posts
  • OFFLINE
  •  
  • Local time:06:14 PM

Posted 15 May 2014 - 05:07 PM

Yes, it seems that mouse is not the problem. It's not a laptop btw.


Edited by Hydra, 15 May 2014 - 05:08 PM.


#12 nasdaq

nasdaq

  • Malware Response Team
  • 38,264 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Montreal, QC. Canada
  • Local time:03:14 PM

Posted 16 May 2014 - 07:10 AM

If you changed or tried an other mouse then and only then will I be satisfied that it's not the mouse. May be reinstalling it may be a solution.

By performing a Clean startup as suggested here you may be able to find the culprit.
Do not forget to restart the computer every time you disable some program.

Perform a Clean Startup
Follow the instructions on this page.
http://www.sevenforums.com/tutorials/179159-troubleshoot-application-conflicts-performing-clean-startup.html




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users