• Registrarse
  • Iniciar sesión


  • Resultados 1 al 9 de 9

    Lollipop

    Resumen del tema: Lollipop - Hola, espero que me podáis ayudar. Tengo instalado en Panel de Control / Programas el dichoso Lollipop que no puedo eliminar de ninguna manera. He probado con el Malwarebytes Anti-Malware, CCleaner y el Avira pero ...

    1. #1
      Usuario Avatar de rolling stone
      Registrado
      nov 2012
      Ubicación
      Madrid
      Mensajes
      10

      Lollipop

      Hola,
      espero que me podáis ayudar. Tengo instalado en Panel de Control / Programas el dichoso Lollipop que no puedo eliminar de ninguna manera. He probado con el Malwarebytes Anti-Malware, CCleaner y el Avira pero no lo consigo. ¿Podéis ayudarme por favor? Me gustaría empezar de cero a ver si así lo consigo...

      Gracias por adelantado.

    2. #2
      Warrior Avatar de RevesdeLiberte
      Registrado
      feb 2010
      Ubicación
      México
      Mensajes
      7.864

      Re: Lollipop

      Hola rolling stone
      Bienvenido al Foro de InfoSpyware.






      Realiza el siguiente procedimiento respetando el orden de los pasos. También lee los manuales de las herramientas indicadas. Si un paso resulta imposible realizar continua con el siguiente. Recomiendo imprimir los pasos para realizarlos con todos los programas y ventanas cerrados.



      1.- Descarga las siguientes herramientas en tu escritorio (No las ejecutes aun):



      2.- Ahora ejecuta una a una en el siguiente orden con todas las ventanas cerradas:


      AT-Destroyer:

      • Deshabilita temporalmente el Antivirus y Antispyware.
      • Has doble clic sobre AT-Destroyer.exe para ejecutar la herramienta.
      • Has clic en Si para aceptar los términos, pulsa la tecla 1, a continuación pulsa enter.
      • El escritorio desaparecerá momentáneamente, terminando el análisis clic en Aceptar.


      Malwarebytes Anti-Malware:

      • En su pestaña Escáner > seleccione Realizar un Análisis completo
      • Haga clic en Analizar, seleccione todas las unidades > haga clic en "Examinar"
      • Terminando en "Mostrar resultados" > haga clic en Eliminar seleccionados
      • Aceptar el reinicio si se solicita > un reporte quedara guardado en la pestaña Registros.


      CCleaner:

      • Ejecútalo en su opción Limpiador & Registro tal y como indica su Manual.



      3.- Para terminar copia y pega el contenido completo de los reportes ubicados en:

      • Malwarebytes Anti-Malware > Pestaña Registros
      • AT-Destroyer > Sobre C:\AT-Destroyer.txt



      Me comentas como funciona el ordenador en relación al problema planteado inicialmente.
      La paciencia es un árbol de raíces amargas, pero de frutos dulces.

      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.

    3. #3
      Usuario Avatar de rolling stone
      Registrado
      nov 2012
      Ubicación
      Madrid
      Mensajes
      10

      Re: Lollipop

      Hola,
      muchas gracias por tu ayuda.
      Esto es lo que pone en el informe de Malwarebytes Anti-Malware:
      Malwarebytes Anti-Malware 1.65.1.1000
      Malwarebytes : Free anti-malware download

      Versión de la Base de Datos: v2012.11.15.04

      Windows 7 x64 NTFS
      Internet Explorer 9.0.8112.16421
      Laura y Raúl :: LAURAYRAÚL-VAIO [administrador]

      15/11/2012 13:43:05
      mbam-log-2012-11-15 (13-43-05).txt

      Tipos de Análisis: Análisis Completo (C:\|E:\|F:\|G:\|)
      Opciones de análisis activado: Memoria | Inicio | Registro | Sistema de archivos | Heurística/Extra | Heurística/Shuriken | PUP | PUM
      Opciones de análisis desactivados: P2P
      Objetos examinados: 567632
      Tiempo transcurrido: 4 hora(s), 21 minuto(s), 50 segundo(s)

      Procesos en Memoria Detectados: 0
      (No se han detectado elementos maliciosos)

      Módulos de Memoria Detectados: 0
      (No se han detectado elementos maliciosos)

      Claves del Registro Detectados: 0
      (No se han detectado elementos maliciosos)

      Valores del Registro Detectados: 0
      (No se han detectado elementos maliciosos)

      Elementos de Datos del Registro Detectados: 0
      (No se han detectado elementos maliciosos)

      Carpetas Detectadas: 1
      C:\ProgramData\IBUpdaterService (PUP.InstallBrain) -> En cuarentena y eliminado con éxito.

      Archivos Detectados: 1
      C:\ProgramData\IBUpdaterService\repository.xml (PUP.InstallBrain) -> En cuarentena y eliminado con éxito.

      fin)

      Y en el informe del AT-Destroyer:

      #################################################### A/T-Destroyer by InfoSpyware ############

      A/T-Destroyer 1.0.7 By Infospyware
      InfoSpyware
      Fecha iniciada en el analisis 16/11/2012
      Hora iniciada en el analisis 15:26:10,16
      Usuario Actual : [C:\Users\Laura y Raúl]
      Sistema Operativo: Windows 7 Home Premium
      Arquitectura: Sistema operativo de 64 bits
      Versión Internet Explorer: 9.0.8112.16421
      Modo Actual: Modo Seguro.
      Privilegios: [Laura y Raúl-Administrador]
      Versión Google Chrome:
      Versión Mozilla Firefox:

      ====== Servicios Eliminados By A/T-Destroyer ======




      ====== Claves Eliminadas By A/T-Destroyer ======


      HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar | ( {98889811-442D-49dd-99D7-DC866BE87DBC} )
      HKEY_CURRENT_USER\Software\DataMngr\Files
      HKEY_CURRENT_USER\Software\DataMngr\Files\ChromeHomepage
      HKEY_CURRENT_USER\Software\DataMngr\Files\Homepage
      HKEY_CURRENT_USER\Software\DataMngr\Files\SelectedSearch
      HKEY_CURRENT_USER\Software\DataMngr\Files\UrlbarSearch
      HKEY_CURRENT_USER\Software\DataMngr\List
      HKEY_CURRENT_USER\Software\DataMngr\List\Item1
      HKEY_CURRENT_USER\Software\DataMngr\List\Item2
      HKEY_CURRENT_USER\Software\DataMngr\List\Item3
      HKEY_CURRENT_USER\Software\DataMngr\Toolbar
      HKEY_CURRENT_USER\Software\DataMngr
      HKEY_LOCAL_MACHINE\SOFTWARE\DataMngr\List
      HKEY_LOCAL_MACHINE\SOFTWARE\DataMngr\List\Item1
      HKEY_LOCAL_MACHINE\SOFTWARE\DataMngr\List\Item2
      HKEY_LOCAL_MACHINE\SOFTWARE\DataMngr\List\Item3
      HKEY_LOCAL_MACHINE\SOFTWARE\DataMngr
      HKEY_CLASSES_ROOT\TypeLib\{C2CF0D01-7657-48AA-98C9-AE5E64757FCC}\1.0
      HKEY_CLASSES_ROOT\TypeLib\{C2CF0D01-7657-48AA-98C9-AE5E64757FCC}\1.0\0
      HKEY_CLASSES_ROOT\TypeLib\{C2CF0D01-7657-48AA-98C9-AE5E64757FCC}\1.0\0\win32
      HKEY_CLASSES_ROOT\TypeLib\{C2CF0D01-7657-48AA-98C9-AE5E64757FCC}\1.0\FLAGS
      HKEY_CLASSES_ROOT\TypeLib\{C2CF0D01-7657-48AA-98C9-AE5E64757FCC}\1.0\HELPDIR
      HKCR\TypeLib\{C2CF0D01-7657-48AA-98C9-AE5E64757FCC}
      HKEY_CLASSES_ROOT\Interface\{BBA74401-6D6F-4BBD-9F65-E8623814F3BB}
      HKEY_CLASSES_ROOT\Interface\{BBA74401-6D6F-4BBD-9F65-E8623814F3BB}\ProxyStubClsid32
      HKEY_CLASSES_ROOT\Interface\{BBA74401-6D6F-4BBD-9F65-E8623814F3BB}\TypeLib
      HKCR\Interface\{BBA74401-6D6F-4BBD-9F65-E8623814F3BB}
      HKEY_LOCAL_MACHINE\SOFTWARE\OfferBox
      HKEY_LOCAL_MACHINE\SOFTWARE\OfferBox
      HKEY_CURRENT_USER\Software\OfferBox
      HKEY_CURRENT_USER\Software\OfferBox
      HKEY_CLASSES_ROOT\TypeLib\{09C554C3-109B-483C-A06B-F14172F1A947}\1.0
      HKEY_CLASSES_ROOT\TypeLib\{09C554C3-109B-483C-A06B-F14172F1A947}\1.0\0
      HKEY_CLASSES_ROOT\TypeLib\{09C554C3-109B-483C-A06B-F14172F1A947}\1.0\0\win32
      HKEY_CLASSES_ROOT\TypeLib\{09C554C3-109B-483C-A06B-F14172F1A947}\1.0\FLAGS
      HKEY_CLASSES_ROOT\TypeLib\{09C554C3-109B-483C-A06B-F14172F1A947}\1.0\HELPDIR
      HKEY_CLASSES_ROOT\TypeLib\{09C554C3-109B-483C-A06B-F14172F1A947}
      HKEY_CURRENT_USER\Software\Conduit\AppPaths
      HKEY_CURRENT_USER\Software\Conduit\AppPaths\bsplayer.exe
      HKEY_CURRENT_USER\Software\Conduit
      HKEY_LOCAL_MACHINE\SOFTWARE\Conduit\AppPaths
      HKEY_LOCAL_MACHINE\SOFTWARE\Conduit\AppPaths\bsplayer.exe
      HKEY_LOCAL_MACHINE\SOFTWARE\Conduit\Community Alerts
      HKEY_LOCAL_MACHINE\SOFTWARE\Conduit\HomePage
      HKEY_LOCAL_MACHINE\SOFTWARE\Conduit
      HKEY_LOCAL_MACHINE\SOFTWARE\Iminent
      HKEY_LOCAL_MACHINE\SOFTWARE\Iminent
      HKEY_CURRENT_USER\SOFTWARE\Iminent
      HKEY_CURRENT_USER\SOFTWARE\Iminent


      ====== Archivos/Carpetas Eliminados By A/T-Destroyer ======


      C:\ProgramData\InstallMate\{B01A9061-55EF-4AEF-9983-6BD5B2D76491}
      C:\ProgramData\InstallMate\{B01A9061-55EF-4AEF-9983-6BD5B2D76491}\0.ini
      C:\ProgramData\InstallMate\{B01A9061-55EF-4AEF-9983-6BD5B2D76491}\20120222200912.log
      C:\ProgramData\InstallMate\{B01A9061-55EF-4AEF-9983-6BD5B2D76491}\E12686936A2DEFF5
      "C:\ProgramData\InstallMate"
      "C:\Program Files (x86)\OfferBox"
      C:\Users\Laura y Raúl\AppData\Roaming\OfferBox\config.xml
      "C:\Users\Laura y Raúl\AppData\Roaming\OfferBox"
      C:\Users\Laura y Raúl\AppData\Roaming\Babylon\log_file.txt
      "C:\Users\Laura y Raúl\AppData\Roaming\Babylon"
      C:\Program Files (x86)\Conduit\Community Alerts
      C:\Program Files (x86)\Conduit\Community Alerts\Alert.dll
      "C:\Program Files (x86)\Conduit"
      "C:\Users\Laura y Raúl\Appdata\Local\Conduit"
      "C:\ProgramData\Babylon"
      C:\ProgramData\Ask\APN-Stub
      "C:\ProgramData\Ask"
      C:\Program Files (x86)\mozilla firefox\searchplugins\babylon.xml
      C:\Users\Laura y Raúl\Appdata\Local\GDIPFONTCACHEV1.DAT
      C:\user.js


      ====== Información Extra ======


      -_-_-_-_-_-_-_-_ Configuraciones de internet Explorer -_-_-_-_-_-_-_-_
      "HKCU\Software\Microsoft\Internet Explorer\Main"
      Start Page == Google
      Search Page == Bing
      Local Page == C:\Windows\system32\blank.htm
      Default_Page_URL == iGoogle

      "HKLM\Software\Microsoft\Internet Explorer\Main"
      Start Page == Google
      Search Page == Bing
      Local Page == C:\Windows\SysWOW64\blank.htm
      Default_Search_URL == Bing
      Default_Page_URL == MSN.com


      "HKEY_USERS\S-1-5-21-2381804055-1878552172-1667508263-1004\Software\Microsoft\Internet Explorer\Main"
      Start Page == Google
      Search Page == Bing
      Local Page == C:\Windows\system32\blank.htm
      Default_Page_URL == iGoogle


      -_-_-_-_-_-_-_-_ Configuraciones de Google Chrome-_-_-_-_-_-_-_-_
      "homepage": "http://www.google.com/",
      "homepage_changed": true,
      "homepage_is_newtabpage": false,
      -_-_-_-_-_-_-_-_ Configuraciones de Google Chrome-_-_-_-_-_-_-_-_
      "homepage": "http://www.google.com/",
      "homepage_changed": true,
      "homepage_is_newtabpage": false,


      -_-_-_-_-_-_-_-_ Configuraciones de mozilla Firefox -_-_-_-_-_-_-_-_

      ¿Qué más puedo hacer?

      Gracias

    4. #4
      Warrior Avatar de RevesdeLiberte
      Registrado
      feb 2010
      Ubicación
      México
      Mensajes
      7.864

      Re: Lollipop

      Buenas.



      Realiza lo siguiente:


      • Descarga la herramienta OTL by OldTimer en tu escritorio.
      • Cierre todas las ventanas y programas abiertos. Haga doble clic sobre OTL.exe para ejecutarlo.
      • En Tipo de Análisis marque la casilla "Resultado Mínimo". Por ultimo seleccione las opciones:
        • Usar listado de Compañías Reconocidas
        • Omitir Archivos de Microsoft
        • Buscar LOP
      • Copie el siguiente código: (No copiar la palabra "Código:")

      Código:
      drives
      activex
      netsvcs
      msconfig
      %systemdrive%\*.*
      CREATERESTOREPOINT
      • Pegue el código sobre el área Análisis Personalizados/Código de Reparación.



      • Haga clic en el botón Analizar y espere paciente a que concluya el análisis.
      • Se abrirán dos (2) archivos, OTL.txt y Extras.txt. Éstos aparecerán grabados en donde OTL fue ejecutado.



      Para terminar, solo abra el archivo OTL.txt, copie y pegue todo su contenido en la siguiente respuesta.
      La paciencia es un árbol de raíces amargas, pero de frutos dulces.

      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.

    5. #5
      Usuario Avatar de rolling stone
      Registrado
      nov 2012
      Ubicación
      Madrid
      Mensajes
      10

      Re: Lollipop

      Hola,
      ya he hecho lo que dices. Veo que Lollipop sigue instalado en Panel de Control / Programas.
      Pego aquí lo que pone en el archivo OTL.exe.

      OTL logfile created on: 17/11/2012 9:06:26 - Run 1
      OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Laura y Raúl\Desktop
      64bit- Home Premium Edition (Version = 6.1.7600) - Type = NTWorkstation
      Internet Explorer (Version = 9.0.8112.16421)
      Locale: 00000c0a | Country: España | Language: ESN | Date Format: dd/MM/yyyy

      3,86 Gb Total Physical Memory | 1,74 Gb Available Physical Memory | 45,20% Memory free
      7,71 Gb Paging File | 5,36 Gb Available in Paging File | 69,54% Paging File free
      Paging file location(s): ?:\pagefile.sys [binary data]

      %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
      Drive C: | 287,38 Gb Total Space | 22,00 Gb Free Space | 7,66% Space Free | Partition Type: NTFS

      Computer Name: LAURAYRAÚL-VAIO | User Name: Laura y Raúl | Logged in as Administrator.
      Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans
      Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

      ========== Processes (SafeList) ==========

      PRC - C:\Users\Laura y Raúl\Desktop\OTL.exe (OldTimer Tools)
      PRC - C:\Users\Laura y Raúl\AppData\Local\Lollipop\kebqmqf.exe ()
      PRC - C:\Program Files (x86)\AVG Secure Search\vprot.exe ()
      PRC - C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\13.2.0\ToolbarUpdater.exe ()
      PRC - C:\ProgramData\Browser Manager\2.4.897.175\{61d8b74e-8d89-46ff-afa6-33382c54ac73}\browsermngr.exe ()
      PRC - C:\Program Files (x86)\Advanced System Protector\AdvancedSystemProtector.exe (Systweak)
      PRC - C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_11_4_402_287_ActiveX.exe (Adobe Systems Incorporated)
      PRC - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe (Malwarebytes Corporation)
      PRC - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe (Malwarebytes Corporation)
      PRC - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe (Malwarebytes Corporation)
      PRC - C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe (Avira Operations GmbH & Co. KG)
      PRC - C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe (Avira Operations GmbH & Co. KG)
      PRC - C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe (Avira Operations GmbH & Co. KG)
      PRC - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (Adobe Systems Incorporated)
      PRC - C:\Users\Laura y Raúl\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe ()
      PRC - C:\Program Files (x86)\Common Files\Apple\Internet Services\ubd.exe (Apple Inc.)
      PRC - C:\Archivos de programa\Sony\VAIO Care\VCService.exe (Sony Corporation)
      PRC - C:\Archivos de programa\Sony\VAIO Care\listener.exe (Sony of America Corporation)
      PRC - C:\Program Files (x86)\SONY\VAIO Event Service\VESMgr.exe (Sony Corporation)
      PRC - C:\Program Files (x86)\SONY\Marketing Tools\MarketingTools.exe (Sony Corporation)
      PRC - C:\Archivos de programa\Sony\VCM Intelligent Analyzing Manager\VcmIAlzMgr.exe (Sony Corporation)
      PRC - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe (Intel Corporation)
      PRC - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (Intel Corporation)
      PRC - C:\Program Files (x86)\SONY\VAIO Event Service\VESMgrSub.exe (Sony Corporation)
      PRC - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe (Intel Corporation)
      PRC - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe (Intel Corporation)
      PRC - C:\Program Files (x86)\Sony\PMB\PMBDeviceInfoProvider.exe (Sony Corporation)
      PRC - C:\Program Files (x86)\SONY\PMB\PMBVolumeWatcher.exe (Sony Corporation)
      PRC - C:\Program Files (x86)\Common Files\Sony Shared\VAIO Entertainment Platform\VzCdb\VzCdbSvc.exe (Sony Corporation)
      PRC - C:\Program Files (x86)\Common Files\Sony Shared\VAIO Content Folder Watcher\VCFw.exe (Sony Corporation)
      PRC - C:\Archivos de programa\WIDCOMM\Bluetooth Software\BluetoothHeadsetProxy.exe (Broadcom Corporation.)
      PRC - C:\Program Files (x86)\SONY\ISB Utility\ISBMgr.exe (Sony Corporation)
      PRC - C:\Program Files (x86)\Microsoft Small Business\Business Contact Manager\BcmSqlStartupSvc.exe (Microsoft Corporation)
      PRC - C:\Program Files (x86)\ArcSoft\Magic-i Visual Effects 2\uCamMonitor.exe (ArcSoft, Inc.)


      ========== Modules (No Company Name) ==========

      MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\CustomMarshalers\97ea473f1fcddbc502bf2065c70e6d11\CustomMarshalers.ni.dll ()
      MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Management\d8e7934f5f7b585a06506b3fa400523e\System.Management.ni.dll ()
      MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Core\571e329ec4de8476024e07293d3985c1\System.Core.ni.dll ()
      MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System.ServiceProce#\8b21e4b2fb6b860debf846f1abcb5848\System.ServiceProcess.ni.dll ()
      MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Web.Services\91403f9dc2decc89c9ed4ea2aa00bb29\System.Web.Services.ni.dll ()
      MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Remo#\1430191d067c0f28c3a676d3ecb85b26\System.Runtime.Remoting.ni.dll ()
      MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System.EnterpriseSe#\4524156cebcd0abf4cdb5b9d068510b6\System.EnterpriseServices.ni.dll ()
      MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Transactions\65784cdbdf49469aa8b75c5e09baa8d0\System.Transactions.ni.dll ()
      MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Data\37f1a11fba201843c40f4e3fa7ed1ea6\System.Data.ni.dll ()
      MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\515c6ffea562bb0f03a1ed8f75279648\System.Windows.Forms.ni.dll ()
      MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\f4be07261983040b29685575b69085e8\System.Drawing.ni.dll ()
      MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Deployment\7c4b80bd20da54e7664c29457c38793e\System.Deployment.ni.dll ()
      MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\WindowsBase\6a68e4c50351a220511a5dfc3e025685\WindowsBase.ni.dll ()
      MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\d2d47118e5da6db054d5676e665f2be2\System.Xml.ni.dll ()
      MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\2f44dac350b6161a9e9ce7222ae94335\System.Configuration.ni.dll ()
      MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System\c8ebcd93a2b547dc72dee2fcfabcdd50\System.ni.dll ()
      MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\5530227809880c9b8b1d834e5434e840\mscorlib.ni.dll ()
      MOD - C:\Users\Laura y Raúl\AppData\Local\Lollipop\kebqmqf.exe ()
      MOD - C:\Program Files (x86)\Common Files\AVG Secure Search\SiteSafetyInstaller\13.2.0\SiteSafety.dll ()
      MOD - C:\Program Files (x86)\AVG Secure Search\vprot.exe ()
      MOD - C:\ProgramData\Browser Manager\2.4.897.175\{61d8b74e-8d89-46ff-afa6-33382c54ac73}\browsermngr.exe ()
      MOD - c:\ProgramData\Browser Manager\2.4.897.175\{61d8b74e-8d89-46ff-afa6-33382c54ac73}\browsermngr.dll ()
      MOD - C:\Program Files (x86)\Advanced System Protector\aspsys.dll ()
      MOD - C:\Program Files (x86)\Common Files\AVG Secure Search\DNTInstaller\12.2.0\avgdttbx.dll ()
      MOD - C:\Program Files (x86)\Advanced System Protector\System.Data.SQLite.dll ()
      MOD - C:\Program Files (x86)\Advanced System Protector\UNRAR.DLL ()
      MOD - C:\Users\Laura y Raúl\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe ()
      MOD - C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll ()
      MOD - C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll ()
      MOD - C:\Windows\assembly\GAC_MSIL\System.Windows.Forms.resources\2.0.0.0_es_b77a5c561934e089\System.Windows.Forms.resources.dll ()
      MOD - C:\Windows\assembly\GAC_MSIL\mscorlib.resources\2.0.0.0_es_b77a5c561934e089\mscorlib.resources.dll ()
      MOD - C:\Windows\assembly\GAC_MSIL\System.Deployment.resources\2.0.0.0_es_b03f5f7f11d50a3a\System.Deployment.resources.dll ()
      MOD - C:\Windows\assembly\GAC\Microsoft.mshtml\7.0.3300.0__b03f5f7f11d50a3a\Microsoft.mshtml.dll ()
      MOD - C:\Windows\assembly\GAC_32\System.Transactions\2.0.0.0__b77a5c561934e089\System.Transactions.dll ()
      MOD - C:\Windows\assembly\GAC_32\System.Data\2.0.0.0__b77a5c561934e089\System.Data.dll ()
      MOD - C:\Windows\assembly\GAC_32\CustomMarshalers\2.0.0.0__b03f5f7f11d50a3a\CustomMarshalers.dll ()


      ========== Services (SafeList) ==========

      SRV:64bit: - (SampleCollector) -- C:\Program Files\Sony\VAIO Care\VCPerfService.exe (Sony Corporation)
      SRV:64bit: - (AMD External Events Utility) -- C:\Windows\SysNative\atiesrxx.exe (AMD)
      SRV - (vToolbarUpdater13.2.0) -- C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\13.2.0\ToolbarUpdater.exe ()
      SRV - (Browser Manager) -- C:\ProgramData\Browser Manager\2.4.897.175\{61d8b74e-8d89-46ff-afa6-33382c54ac73}\browsermngr.exe ()
      SRV - (MBAMService) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe (Malwarebytes Corporation)
      SRV - (MBAMScheduler) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe (Malwarebytes Corporation)
      SRV - (AntiVirService) -- C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe (Avira Operations GmbH & Co. KG)
      SRV - (AntiVirSchedulerService) -- C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe (Avira Operations GmbH & Co. KG)
      SRV - (AdobeARMservice) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (Adobe Systems Incorporated)
      SRV - (SkypeUpdate) -- C:\Program Files (x86)\Skype\Updater\Updater.exe (Skype Technologies)
      SRV - (VUAgent) -- C:\Archivos de programa\Sony\VAIO Update Common\VUAgent.exe (Sony Corporation)
      SRV - (VCService) -- C:\Archivos de programa\Sony\VAIO Care\VCService.exe (Sony Corporation)
      SRV - (SQLWriter) -- c:\Archivos de programa\Microsoft SQL Server\90\Shared\sqlwriter.exe (Microsoft Corporation)
      SRV - (HPSLPSVC) -- C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.DLL (Hewlett-Packard Co.)
      SRV - (VSNService) -- C:\Archivos de programa\Sony\VAIO Smart Network\VSNService.exe (Sony Corporation)
      SRV - (VAIO Event Service) -- C:\Program Files (x86)\SONY\VAIO Event Service\VESMgr.exe (Sony Corporation)
      SRV - (clr_optimization_v4.0.30319_32) -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe (Microsoft Corporation)
      SRV - (ACDaemon) -- C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe (ArcSoft Inc.)
      SRV - (VcmXmlIfHelper) -- C:\Archivos de programa\Common Files\Sony Shared\VcmXml\VcmXmlIfHelper64.exe (Sony Corporation)
      SRV - (VcmIAlzMgr) -- C:\Archivos de programa\Sony\VCM Intelligent Analyzing Manager\VcmIAlzMgr.exe (Sony Corporation)
      SRV - (osppsvc) -- C:\Archivos de programa\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE (Microsoft Corporation)
      SRV - (UNS) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe (Intel Corporation)
      SRV - (LMS) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (Intel Corporation)
      SRV - (VAIO Power Management) -- C:\Archivos de programa\Sony\VAIO Power Management\SPMService.exe (Sony Corporation)
      SRV - (IAStorDataMgrSvc) -- C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe (Intel Corporation)
      SRV - (PMBDeviceInfoProvider) -- C:\Program Files (x86)\Sony\PMB\PMBDeviceInfoProvider.exe (Sony Corporation)
      SRV - (SOHDms) -- C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHDms.exe (Sony Corporation)
      SRV - (SOHPlMgr) -- C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHPlMgr.exe (Sony Corporation)
      SRV - (SOHDs) -- C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHDs.exe (Sony Corporation)
      SRV - (SOHCImp) -- C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHCImp.exe (Sony Corporation)
      SRV - (SOHDBSvr) -- C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHDBSvr.exe (Sony Corporation)
      SRV - (VzCdbSvc) -- C:\Program Files (x86)\Common Files\Sony Shared\VAIO Entertainment Platform\VzCdb\VzCdbSvc.exe (Sony Corporation)
      SRV - (VAIO Entertainment TV Device Arbitration Service) -- C:\Program Files (x86)\Common Files\Sony Shared\VAIO Entertainment Platform\VzHardwareResourceManager\VzHardwareResourceManager\VzHardwareResourceManager.exe (Sony Corporation)
      SRV - (VCFw) -- C:\Program Files (x86)\Common Files\Sony Shared\VAIO Content Folder Watcher\VCFw.exe (Sony Corporation)
      SRV - (btwdins) -- C:\Archivos de programa\WIDCOMM\Bluetooth Software\btwdins.exe (Broadcom Corporation.)
      SRV - (VcmINSMgr) -- C:\Archivos de programa\Sony\VCM Intelligent Network Service Manager\VcmINSMgr.exe (Sony Corporation)
      SRV - (Roxio Upnp Server 10) -- C:\Program Files (x86)\Roxio\Digital Home 10\RoxioUpnpService10.exe (Sonic Solutions)
      SRV - (Roxio UPnP Renderer 10) -- C:\Program Files (x86)\Roxio\Digital Home 10\RoxioUPnPRenderer10.exe (Sonic Solutions)
      SRV - (wlidsvc) -- C:\Archivos de programa\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE (Microsoft Corporation)
      SRV - (clr_optimization_v2.0.50727_32) -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe (Microsoft Corporation)
      SRV - (BcmSqlStartupSvc) -- C:\Program Files (x86)\Microsoft Small Business\Business Contact Manager\BcmSqlStartupSvc.exe (Microsoft Corporation)
      SRV - (uCamMonitor) -- C:\Program Files (x86)\ArcSoft\Magic-i Visual Effects 2\uCamMonitor.exe (ArcSoft, Inc.)


      ========== Driver Services (SafeList) ==========

      DRV:64bit: - (avgtp) -- C:\Windows\SysNative\drivers\avgtpx64.sys (AVG Technologies)
      DRV:64bit: - (MBAMProtector) -- C:\Windows\SysNative\drivers\mbam.sys (Malwarebytes Corporation)
      DRV:64bit: - (avipbb) -- C:\Windows\SysNative\drivers\avipbb.sys (Avira GmbH)
      DRV:64bit: - (avgntflt) -- C:\Windows\SysNative\drivers\avgntflt.sys (Avira GmbH)
      DRV:64bit: - (Fs_Rec) -- C:\Windows\SysNative\drivers\fs_rec.sys (Microsoft Corporation)
      DRV:64bit: - (USBAAPL64) -- C:\Windows\SysNative\drivers\usbaapl64.sys (Apple, Inc.)
      DRV:64bit: - (avkmgr) -- C:\Windows\SysNative\drivers\avkmgr.sys (Avira GmbH)
      DRV:64bit: - (amdsata) -- C:\Windows\SysNative\drivers\amdsata.sys (Advanced Micro Devices)
      DRV:64bit: - (amdxata) -- C:\Windows\SysNative\drivers\amdxata.sys (Advanced Micro Devices)
      DRV:64bit: - (atikmdag) -- C:\Windows\SysNative\drivers\atikmdag.sys (ATI Technologies Inc.)
      DRV:64bit: - (amdkmdag) -- C:\Windows\SysNative\drivers\atikmdag.sys (ATI Technologies Inc.)
      DRV:64bit: - (amdkmdap) -- C:\Windows\SysNative\drivers\atikmpag.sys (Advanced Micro Devices, Inc.)
      DRV:64bit: - (IntcDAud) -- C:\Windows\SysNative\drivers\IntcDAud.sys (Intel(R) Corporation)
      DRV:64bit: - (igfx) -- C:\Windows\SysNative\drivers\igdkmd64.sys (Intel Corporation)
      DRV:64bit: - (RTHDMIAzAudService) -- C:\Windows\SysNative\drivers\RtHDMIVX.sys (Realtek Semiconductor Corp.)
      DRV:64bit: - (HECIx64) -- C:\Windows\SysNative\drivers\HECIx64.sys (Intel Corporation)
      DRV:64bit: - (iaStor) -- C:\Windows\SysNative\drivers\iaStor.sys (Intel Corporation)
      DRV:64bit: - (btwrchid) -- C:\Windows\SysNative\drivers\btwrchid.sys (Broadcom Corporation.)
      DRV:64bit: - (btwavdt) -- C:\Windows\SysNative\drivers\btwavdt.sys (Broadcom Corporation.)
      DRV:64bit: - (btwaudio) -- C:\Windows\SysNative\drivers\btwaudio.sys (Broadcom Corporation.)
      DRV:64bit: - (btusbflt) -- C:\Windows\SysNative\drivers\btusbflt.sys (Broadcom Corporation.)
      DRV:64bit: - (btwl2cap) -- C:\Windows\SysNative\drivers\btwl2cap.sys (Broadcom Corporation.)
      DRV:64bit: - (Impcd) -- C:\Windows\SysNative\drivers\Impcd.sys (Intel Corporation)
      DRV:64bit: - (yukonw7) -- C:\Windows\SysNative\drivers\yk62x64.sys ()
      DRV:64bit: - (athr) -- C:\Windows\SysNative\drivers\athrx.sys (Atheros Communications, Inc.)
      DRV:64bit: - (rimspci) -- C:\Windows\SysNative\drivers\rimssne64.sys (REDC)
      DRV:64bit: - (ApfiltrService) -- C:\Windows\SysNative\drivers\Apfiltr.sys (Alps Electric Co., Ltd.)
      DRV:64bit: - (sdbus) -- C:\Windows\SysNative\drivers\sdbus.sys (Microsoft Corporation)
      DRV:64bit: - (risdsnpe) -- C:\Windows\SysNative\drivers\risdsne64.sys (REDC)
      DRV:64bit: - (SFEP) -- C:\Windows\SysNative\drivers\SFEP.sys (Sony Corporation)
      DRV:64bit: - (fssfltr) -- C:\Windows\SysNative\drivers\fssfltr.sys (Microsoft Corporation)
      DRV:64bit: - (amdsbs) -- C:\Windows\SysNative\drivers\amdsbs.sys (AMD Technologies Inc.)
      DRV:64bit: - (LSI_SAS2) -- C:\Windows\SysNative\drivers\lsi_sas2.sys (LSI Corporation)
      DRV:64bit: - (HpSAMD) -- C:\Windows\SysNative\drivers\HpSAMD.sys (Hewlett-Packard Company)
      DRV:64bit: - (stexstor) -- C:\Windows\SysNative\drivers\stexstor.sys (Promise Technology)
      DRV:64bit: - (StillCam) -- C:\Windows\SysNative\drivers\serscan.sys (Microsoft Corporation)
      DRV:64bit: - (ebdrv) -- C:\Windows\SysNative\drivers\evbda.sys (Broadcom Corporation)
      DRV:64bit: - (b06bdrv) -- C:\Windows\SysNative\drivers\bxvbda.sys (Broadcom Corporation)
      DRV:64bit: - (b57nd60a) -- C:\Windows\SysNative\drivers\b57nd60a.sys (Broadcom Corporation)
      DRV:64bit: - (hcw85cir) -- C:\Windows\SysNative\drivers\hcw85cir.sys (Hauppauge Computer Works, Inc.)
      DRV:64bit: - (ArcSoftKsUFilter) -- C:\Windows\SysNative\drivers\ArcSoftKsUFilter.sys (ArcSoft, Inc.)
      DRV:64bit: - (PxHlpa64) -- C:\Windows\SysNative\drivers\PxHlpa64.sys (Sonic Solutions)
      DRV:64bit: - (GEARAspiWDM) -- C:\Windows\SysNative\drivers\GEARAspiWDM.sys (GEAR Software Inc.)
      DRV - (WIMMount) -- C:\Windows\SysWOW64\drivers\wimmount.sys (Microsoft Corporation)


      ========== Standard Registry (SafeList) ==========


      ========== Internet Explorer ==========

      IE:64bit: - HKLM\..\SearchScopes,DefaultScope = {6A1806CD-94D4-4689-BA73-E35EA1EA9990}
      IE:64bit: - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
      IE:64bit: - HKLM\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7
      IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
      IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = Google
      IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://search.babylon.com/?babsrc=SP_ss&q={searchTerms}&mntrId=f44268ad0000000000002a8158fdf5e8&tlver=1.4.19.19&affID=17160
      IE - HKLM\..\SearchScopes,DefaultScope = {6A1806CD-94D4-4689-BA73-E35EA1EA9990}
      IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
      IE - HKLM\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7

      IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,bProtector Start Page = Google
      IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,BrowserMngr Start Page = Google
      IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = iGoogle
      IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,SearchDefaultBranded = 1
      IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = Google
      IE - HKCU\..\URLSearchHook: {fed66dc5-1b74-4a04-8f5c-15c5ace2b9a5} - No CLSID value found
      IE - HKCU\..\SearchScopes,bProtectorDefaultScope = {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}
      IE - HKCU\..\SearchScopes,BrowserMngrDefaultScope = {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}
      IE - HKCU\..\SearchScopes,DefaultScope = {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}
      IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC
      IE - HKCU\..\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}: "URL" = http://www.claro-search.com/?q={searchTerms}&affID=114508&tt=4612_2&babsrc=SP_clro&mntrId=f44268ad0000000000002a8158fdf5e8
      IE - HKCU\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7&rlz=1I7SUNC_esES430
      IE - HKCU\..\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}: "URL" = https://isearch.avg.com/search?cid={C9F30581-9BE0-4613-ADB3-BC5EBF48A46F}&mid=ee95d04f28da47d0b8f1812a550a0e63-a932185a812628b0297a5718f074cf1b25b24313&lang=en&ds=qw011&pr=sa&d=2012-09-04 21:36:27&v=12.2.0.5&sap=dsp&q={searchTerms}
      IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
      IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local


      ========== FireFox ==========

      FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
      FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation)
      FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF32.dll ()
      FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found
      FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
      FF - HKLM\Software\MozillaPlugins\@avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin: C:\Program Files (x86)\Common Files\AVG Secure Search\SiteSafetyInstaller\13.2.0\\npsitesafety.dll ()
      FF - HKLM\Software\MozillaPlugins\@Google.com/GoogleEarthPlugin: C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
      FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.7.2: C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
      FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.7.2: C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
      FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
      FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files (x86)\Microsoft Silverlight\4.1.10329.0\npctrl.dll ( Microsoft Corporation)
      FF - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
      FF - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeLive,version=1.3: C:\Program Files (x86)\Microsoft\Office Live\npOLW.dll (Microsoft Corp.)
      FF - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
      FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=14.0.8081.0709: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
      FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.21.123\npGoogleUpdate3.dll (Google Inc.)
      FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.21.123\npGoogleUpdate3.dll (Google Inc.)
      FF - HKLM\Software\MozillaPlugins\@veetle.com/veetleCorePlugin,version=0.9.18: C:\Program Files (x86)\Veetle\plugins\npVeetle.dll (Veetle Inc)
      FF - HKLM\Software\MozillaPlugins\@veetle.com/veetlePlayerPlugin,version=0.9.18: C:\Program Files (x86)\Veetle\Player\npvlc.dll (Veetle Inc)
      FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)

      FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\[email protected]: C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2011/03/06 21:24:56 | 000,000,000 | ---D | M]
      FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{3252b9ae-c69a-4eaf-9502-dc9c1f6c009e}: C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Default Manager\DMExtension\ [2011/03/10 03:04:29 | 000,000,000 | ---D | M]
      FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\avg@toolbar: C:\ProgramData\AVG Secure Search\12.2.0.5\ [2012/09/04 20:36:33 | 000,000,000 | ---D | M]
      FF - HKEY_CURRENT_USER\software\mozilla\Firefox\Extensions\\[email protected]: C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2011/03/06 21:24:56 | 000,000,000 | ---D | M]
      FF - HKEY_CURRENT_USER\software\mozilla\Firefox\Extensions\\{dfefbe51-ca52-484b-adf0-6b158b05262d}: C:\ProgramData\Browser Manager\2.4.897.175\{61d8b74e-8d89-46ff-afa6-33382c54ac73}\FirefoxExtension [2012/11/14 09:25:40 | 000,000,000 | ---D | M]

      [2012/09/28 18:46:45 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Laura y Raúl\AppData\Roaming\mozilla\Firefox\extensions
      [2012/09/28 18:46:45 | 000,000,000 | ---D | M] (BS Player Community Toolbar) -- C:\Users\Laura y Raúl\AppData\Roaming\mozilla\Firefox\extensions\{fed66dc5-1b74-4a04-8f5c-15c5ace2b9a5}
      [2012/09/05 12:30:22 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\mozilla firefox\extensions

      ========== Chrome ==========

      CHR - default_search_provider: Google (Enabled)
      CHR - default_search_provider: search_url = {google:baseURL}search?{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}{google:searchFieldtrialParameter}{google:instantFieldTrialGroupParameter}sourceid=chrome&ie={inputEncoding}&q={searchTerms}
      CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}{google:instantFieldTrialGroupParameter}client=chrome&hl={language}&q={searchTerms}
      CHR - homepage: Google

      O1 HOSTS File: ([2009/06/10 22:00:26 | 000,000,824 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
      O2:64bit: - BHO: (Windows Live Family Safety Browser Helper Class) - {4f3ed5cd-0726-42a9-87f5-d13f3d2976ac} - C:\Archivos de programa\Windows Live\Family Safety\fssbho.dll (Microsoft Corporation)
      O2:64bit: - BHO: (Groove GFS Browser Helper) - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Archivos de programa\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
      O2:64bit: - BHO: (Windows Live ID Sign-in Helper) - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Archivos de programa\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
      O2:64bit: - BHO: (Office Document Cache Handler) - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Archivos de programa\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
      O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - No CLSID value found.
      O2 - BHO: (Groove GFS Browser Helper) - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL (Microsoft Corporation)
      O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
      O2 - BHO: (AVG Security Toolbar) - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files (x86)\AVG Secure Search\12.2.0.5\AVG Secure Search_toolbar.dll ()
      O2 - BHO: (Skype Browser Helper) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
      O2 - BHO: (Office Document Cache Handler) - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL (Microsoft Corporation)
      O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
      O3 - HKLM\..\Toolbar: (AVG Security Toolbar) - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files (x86)\AVG Secure Search\12.2.0.5\AVG Secure Search_toolbar.dll ()
      O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No CLSID value found.
      O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {D4027C7F-154A-4066-A1AD-4243D8127440} - No CLSID value found.
      O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39} - No CLSID value found.
      O4:64bit: - HKLM..\Run: [Apoint] C:\Archivos de programa\Apoint\Apoint.exe (Alps Electric Co., Ltd.)
      O4:64bit: - HKLM..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Realtek Semiconductor)
      O4 - HKLM..\Run: [APSDaemon] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc.)
      O4 - HKLM..\Run: [avgnt] C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe (Avira Operations GmbH & Co. KG)
      O4 - HKLM..\Run: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe (Intel Corporation)
      O4 - HKLM..\Run: [ISBMgr.exe] C:\Program Files (x86)\Sony\ISB Utility\ISBMgr.exe (Sony Corporation)
      O4 - HKLM..\Run: [MarketingTools] C:\Program Files (x86)\Sony\Marketing Tools\MarketingTools.exe (Sony Corporation)
      O4 - HKLM..\Run: [Nikon Message Center 2] C:\Program Files (x86)\Nikon\Nikon Message Center 2\NkMC2.exe (Nikon Corporation)
      O4 - HKLM..\Run: [NortonOnlineBackupReminder] C:\Program Files (x86)\Symantec\Norton Online Backup\Activation\NobuActivation.exe (Symantec Corporation)
      O4 - HKLM..\Run: [PMBVolumeWatcher] C:\Program Files (x86)\Sony\PMB\PMBVolumeWatcher.exe (Sony Corporation)
      O4 - HKLM..\Run: [ROC_roc_ssl_v12] C:\Program Files (x86)\AVG Secure Search\ROC_roc_ssl_v12.exe ()
      O4 - HKLM..\Run: [StartCCC] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.)
      O4 - HKLM..\Run: [SunJavaUpdateSched] C:\Program Files (x86)\Common Files\Java\Java Update\jaureg.exe (Sun Microsystems, Inc.)
      O4 - HKLM..\Run: [vProt] C:\Program Files (x86)\AVG Secure Search\vprot.exe ()
      O4 - HKCU..\Run: [AdobeBridge] File not found
      O4 - HKCU..\Run: [kebqmqf] c:\users\laura y raúl\appdata\local\lollipop\kebqmqf.exe ()
      O4 - HKCU..\Run: [MobileDocuments] C:\Program Files (x86)\Common Files\Apple\Internet Services\ubd.exe (Apple Inc.)
      O4 - HKCU..\Run: [Spotify Web Helper] C:\Users\Laura y Raúl\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe ()
      O4 - HKCU..\Run: [uTorrent] C:\Program Files (x86)\uTorrent\uTorrent.exe (BitTorrent, Inc.)
      O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
      O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
      O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
      O8:64bit: - Extra context menu item: &Enviar a OneNote - res://C:\PROGRA~2\MICROS~1\Office14\ONBttnIE.dll/105 File not found
      O8:64bit: - Extra context menu item: E&xportar a Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office14\EXCEL.EXE/3000 File not found
      O8:64bit: - Extra context menu item: Enviar imagen al dispositivo &Bluetooth... - C:\Archivos de programa\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm ()
      O8:64bit: - Extra context menu item: Enviar página al dispositivo &Bluetooth... - C:\Archivos de programa\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
      O8 - Extra context menu item: &Enviar a OneNote - res://C:\PROGRA~2\MICROS~1\Office14\ONBttnIE.dll/105 File not found
      O8 - Extra context menu item: E&xportar a Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office14\EXCEL.EXE/3000 File not found
      O8 - Extra context menu item: Enviar imagen al dispositivo &Bluetooth... - C:\Archivos de programa\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm ()
      O8 - Extra context menu item: Enviar página al dispositivo &Bluetooth... - C:\Archivos de programa\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
      O9:64bit: - Extra Button: Enviar a OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Archivos de programa\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation)
      O9:64bit: - Extra 'Tools' menuitem : &Enviar a OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Archivos de programa\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation)
      O9:64bit: - Extra Button: Notas &vinculadas de OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Archivos de programa\Microsoft Office\Office14\ONBttnIELinkedNotes.dll (Microsoft Corporation)
      O9:64bit: - Extra 'Tools' menuitem : Notas &vinculadas de OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Archivos de programa\Microsoft Office\Office14\ONBttnIELinkedNotes.dll (Microsoft Corporation)
      O9:64bit: - Extra Button: @C:\Program Files\WIDCOMM\Bluetooth Software\btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Archivos de programa\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
      O9:64bit: - Extra 'Tools' menuitem : @C:\Program Files\WIDCOMM\Bluetooth Software\btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Archivos de programa\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
      O9 - Extra Button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
      O9 - Extra 'Tools' menuitem : Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
      O9 - Extra Button: Send To Bluetooth - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Archivos de programa\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
      O9 - Extra 'Tools' menuitem : Send to &Bluetooth Device... - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Archivos de programa\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
      O9 - Extra Button: Add to Evernote - {E0B8C461-F8FB-49b4-8373-FE32E92528A6} - C:\Program Files (x86)\Evernote\Evernote3.5\enbar.dll (Evernote Corporation)
      O9 - Extra 'Tools' menuitem : Add to Evernote - {E0B8C461-F8FB-49b4-8373-FE32E92528A6} - C:\Program Files (x86)\Evernote\Evernote3.5\enbar.dll (Evernote Corporation)
      O10:64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000008 [] - C:\Archivos de programa\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL (Microsoft Corporation)
      O10:64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000009 [] - C:\Archivos de programa\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL (Microsoft Corporation)
      O10:64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000010 [] - C:\Archivos de programa\Bonjour\mdnsNSP.dll (Apple Inc.)
      O10 - NameSpace_Catalog5\Catalog_Entries\000000000010 [] - C:\Program Files (x86)\Bonjour\mdnsNSP.dll (Apple Inc.)
      O1364bit: - gopher Prefix: missing
      O13 - gopher Prefix: missing
      O16:64bit: - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jin...ndows-i586.cab (Java Plug-in 1.6.0_16)
      O16:64bit: - DPF: {CAFEEFAC-0016-0000-0016-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jin...ndows-i586.cab (Java Plug-in 1.6.0_16)
      O16:64bit: - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jin...ndows-i586.cab (Reg Error: Key error.)
      O16 - DPF: {0972B098-DEE9-4279-AC7E-4BAAA029102D} http://assets.photobox.com/assets/au...20111117062234 (PhotoboxPhotowaysUploader5 Control)
      O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} http://download.eset.com/special/eos/OnlineScanner.cab (OnlineScanner Control)
      O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jin...ndows-i586.cab (Reg Error: Value error.)
      O16 - DPF: {B785FA3C-1DE9-4D20-8396-613C486FE95E} https://www2.agenciatributaria.gob.e...h/CACTIVEX.CAB (AeatCtl Class)
      O16 - DPF: {C345E174-3E87-4F41-A01C-B066A90A49B4} http://trial.trymicrosoftoffice.com/...soft/wrc32.ocx (WRC Class)
      O16 - DPF: {CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jin...ndows-i586.cab (Java Plug-in 1.6.0_31)
      O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jin...ndows-i586.cab (Java Plug-in 10.7.2)
      O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/ge...sh/swflash.cab (Shockwave Flash Object)
      O16 - DPF: {FD18DD5E-B398-452A-B22A-B54636BA9F0D} http://www.revelalo.com/componentes/CargaFotosFDI2.cab (FDI Carga Fotos 2)
      O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
      O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{5DB63988-98C6-4312-8B36-AA4B2FAA958F}: DhcpNameServer = 192.168.1.1
      O18:64bit: - Protocol\Handler\livecall - No CLSID value found
      O18:64bit: - Protocol\Handler\ms-help - No CLSID value found
      O18:64bit: - Protocol\Handler\msnim - No CLSID value found
      O18:64bit: - Protocol\Handler\mso-offdap11 - No CLSID value found
      O18:64bit: - Protocol\Handler\skype4com - No CLSID value found
      O18:64bit: - Protocol\Handler\skype-ie-addon-data - No CLSID value found
      O18:64bit: - Protocol\Handler\viprotocol - No CLSID value found
      O18:64bit: - Protocol\Handler\wlmailhtml - No CLSID value found
      O18 - Protocol\Handler\livecall {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~2\WIC4A1~1\MESSEN~1\MSGRAP~1.DLL (Microsoft Corporation)
      O18 - Protocol\Handler\msnim {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~2\WIC4A1~1\MESSEN~1\MSGRAP~1.DLL (Microsoft Corporation)
      O18 - Protocol\Handler\mso-offdap11 {32505114-5902-49B2-880A-1F7738E5A384} - C:\PROGRA~2\COMMON~1\MICROS~1\WEBCOM~1\11\OWC11.DLL (Microsoft Corporation)
      O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL (Skype Technologies)
      O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
      O18 - Protocol\Handler\viprotocol {B658800C-F66E-4EF3-AB85-6C0C227862A9} - C:\Program Files (x86)\Common Files\AVG Secure Search\ViProtocolInstaller\12.2.0\ViProtocol.dll ()
      O18:64bit: - Protocol\Filter\text/xml {807573E5-5146-11D5-A672-00B0D022E945} - C:\Archivos de programa\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL (Microsoft Corporation)
      O20 - AppInit_DLLs: (c:\progra~3\browse~1\24897~1.175\{61d8b~1\browse~1.dll) - c:\ProgramData\Browser Manager\2.4.897.175\{61d8b74e-8d89-46ff-afa6-33382c54ac73}\browsermngr.dll ()
      O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
      O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
      O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
      O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysWOW64\userinit.exe (Microsoft Corporation)
      O20:64bit: - Winlogon\Notify\igfxcui: DllName - (igfxdev.dll) - C:\Windows\SysNative\igfxdev.dll (Intel Corporation)
      O20 - Winlogon\Notify\VESWinlogon: DllName - (VESWinlogon.dll) - C:\Windows\SysWow64\VESWinlogon.dll (Sony Corporation)
      O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
      O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
      O28:64bit: - HKLM ShellExecuteHooks: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Archivos de programa\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
      O28 - HKLM ShellExecuteHooks: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL (Microsoft Corporation)
      O32 - HKLM CDRom: AutoRun - 1
      O33 - MountPoints2\{5bd0ee57-7feb-11e0-8393-506313eee790}\Shell - "" = AutoRun
      O33 - MountPoints2\{5bd0ee57-7feb-11e0-8393-506313eee790}\Shell\AutoRun\command - "" = D:\LaunchU3.exe -a
      O33 - MountPoints2\{a78c1538-df4c-11df-904f-506313eee790}\Shell - "" = AutoRun
      O33 - MountPoints2\{a78c1538-df4c-11df-904f-506313eee790}\Shell\AutoRun\command - "" = H:\npeuinst.exe
      O34 - HKLM BootExecute: (autocheck autochk *)
      O35:64bit: - HKLM\..comfile [open] -- "%1" %*
      O35:64bit: - HKLM\..exefile [open] -- "%1" %*
      O35 - HKLM\..comfile [open] -- "%1" %*
      O35 - HKLM\..exefile [open] -- "%1" %*
      O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
      O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
      O37 - HKLM\...com [@ = comfile] -- "%1" %*
      O37 - HKLM\...exe [@ = exefile] -- "%1" %*
      O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
      O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
      O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)

      ActiveX:64bit: {08B0E5C0-4FCB-11CF-AAA5-00401C608500} - Java (Sun)
      ActiveX:64bit: {22d6f312-b0f6-11d0-94ab-0080c74c7e95} - Microsoft Windows Media Player 12.0
      ActiveX:64bit: {2C7339CF-2B09-4501-B3F3-F3508C9228ED} - %SystemRoot%\system32\regsvr32.exe /s /n /i:/UserInstall %SystemRoot%\system32\themeui.dll
      ActiveX:64bit: {3af36230-a269-11d1-b5bf-0000f8051515} - Offline Browsing Pack
      ActiveX:64bit: {44BBA840-CC51-11CF-AAFA-00AA00B6015C} - "%ProgramFiles%\Windows Mail\WinMail.exe" OCInstallUserConfigOE
      ActiveX:64bit: {44BBA855-CC51-11CF-AAFA-00AA00B6015F} - DirectDrawEx
      ActiveX:64bit: {45ea75a0-a269-11d1-b5bf-0000f8051515} - Internet Explorer Help
      ActiveX:64bit: {4f645220-306d-11d2-995d-00c04f98bbc9} - Microsoft Windows Script 5.6
      ActiveX:64bit: {5fd399c0-a70a-11d1-9948-00c04f98bbc9} - Internet Explorer Setup Tools
      ActiveX:64bit: {630b1da0-b465-11d1-9948-00c04f98bbc9} - Browsing Enhancements
      ActiveX:64bit: {6BF52A52-394A-11d3-B153-00C04F79FAA6} - Microsoft Windows Media Player
      ActiveX:64bit: {6fab99d0-bab8-11d1-994a-00c04f98bbc9} - MSN Site Access
      ActiveX:64bit: {7790769C-0471-11d2-AF11-00C04FA35D02} - Address Book 7
      ActiveX:64bit: {89820200-ECBD-11cf-8B85-00AA005B4340} - regsvr32.exe /s /n /i:U shell32.dll
      ActiveX:64bit: {89820200-ECBD-11cf-8B85-00AA005B4383} - C:\Windows\System32\ie4uinit.exe -BaseSettings
      ActiveX:64bit: {89B4C1CD-B018-4511-B0A1-5476DBF70820} - C:\Windows\system32\Rundll32.exe C:\Windows\system32\mscories.dll,Install
      ActiveX:64bit: {9381D8F2-0288-11D0-9501-00AA00B911A5} - Dynamic HTML Data Binding
      ActiveX:64bit: {C9E9A340-D1F1-11D0-821E-444553540600} - Internet Explorer Core Fonts
      ActiveX:64bit: {de5aed00-a4bf-11d1-9948-00c04f98bbc9} - HTML Help
      ActiveX:64bit: {E92B03AB-B707-11d2-9CBD-0000F87A369E} - Active Directory Service Interface
      ActiveX:64bit: {F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4} - .NET Framework
      ActiveX:64bit: {FEBEF00C-046D-438D-8A88-BF94A6C9E703} - .NET Framework
      ActiveX:64bit: >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} - %SystemRoot%\system32\unregmp2.exe /ShowWMP
      ActiveX:64bit: >{26923b43-4d38-484f-9b9e-de460746276c} - C:\Windows\System32\ie4uinit.exe -UserIconConfig
      ActiveX:64bit: >{35615663-6703-484F-BB02-783EBF7D2A36} - RunDLL32 IEDKCS32.DLL,BrandIE4 CUSTOM
      ActiveX:64bit: >{60B49E34-C7CC-11D0-8953-00A0C90347FF} -
      ActiveX: {08B0E5C0-4FCB-11CF-AAA5-00401C608500} - Microsoft VM
      ActiveX: {22d6f312-b0f6-11d0-94ab-0080c74c7e95} - Microsoft Windows Media Player 12.0
      ActiveX: {2C7339CF-2B09-4501-B3F3-F3508C9228ED} - %SystemRoot%\system32\regsvr32.exe /s /n /i:/UserInstall %SystemRoot%\system32\themeui.dll
      ActiveX: {3af36230-a269-11d1-b5bf-0000f8051515} - Offline Browsing Pack
      ActiveX: {44BBA840-CC51-11CF-AAFA-00AA00B6015C} - "%ProgramFiles(x86)%\Windows Mail\WinMail.exe" OCInstallUserConfigOE
      ActiveX: {44BBA855-CC51-11CF-AAFA-00AA00B6015F} - DirectDrawEx
      ActiveX: {45ea75a0-a269-11d1-b5bf-0000f8051515} - Internet Explorer Help
      ActiveX: {4f645220-306d-11d2-995d-00c04f98bbc9} - Microsoft Windows Script 5.6
      ActiveX: {5fd399c0-a70a-11d1-9948-00c04f98bbc9} - Internet Explorer Setup Tools
      ActiveX: {630b1da0-b465-11d1-9948-00c04f98bbc9} - Browsing Enhancements
      ActiveX: {6BF52A52-394A-11d3-B153-00C04F79FAA6} - Microsoft Windows Media Player
      ActiveX: {6fab99d0-bab8-11d1-994a-00c04f98bbc9} - MSN Site Access
      ActiveX: {7790769C-0471-11d2-AF11-00C04FA35D02} - Address Book 7
      ActiveX: {7C028AF8-F614-47B3-82DA-BA94E41B1089} - .NET Framework
      ActiveX: {89820200-ECBD-11cf-8B85-00AA005B4340} - regsvr32.exe /s /n /i:U shell32.dll
      ActiveX: {89820200-ECBD-11cf-8B85-00AA005B4383} - C:\Windows\SysWOW64\ie4uinit.exe -BaseSettings
      ActiveX: {89B4C1CD-B018-4511-B0A1-5476DBF70820} - C:\Windows\SysWOW64\Rundll32.exe C:\Windows\SysWOW64\mscories.dll,Install
      ActiveX: {9381D8F2-0288-11D0-9501-00AA00B911A5} - Dynamic HTML Data Binding
      ActiveX: {C9E9A340-D1F1-11D0-821E-444553540600} - Internet Explorer Core Fonts
      ActiveX: {CE4BC71D-A88B-4943-BB3D-AF9C0E7D4387} - .NET Framework
      ActiveX: {D27CDB6E-AE6D-11CF-96B8-444553540000} - Adobe Flash Player
      ActiveX: {de5aed00-a4bf-11d1-9948-00c04f98bbc9} - HTML Help
      ActiveX: {E92B03AB-B707-11d2-9CBD-0000F87A369E} - Active Directory Service Interface
      ActiveX: {F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4} - .NET Framework
      ActiveX: >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} - %SystemRoot%\system32\unregmp2.exe /ShowWMP
      ActiveX: >{26923b43-4d38-484f-9b9e-de460746276c} - C:\Windows\SysWOW64\ie4uinit.exe -UserIconConfig
      ActiveX: >{60B49E34-C7CC-11D0-8953-00A0C90347FF} - "C:\Windows\SysWOW64\rundll32.exe" "C:\Windows\SysWOW64\iedkcs32.dll",BrandIEActiveSetup SIGNUP



      CREATERESTOREPOINT
      Restore point Set: OTL Restore Point

      ========== Files/Folders - Created Within 30 Days ==========

      [2012/11/17 09:04:17 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Users\Laura y Raúl\Desktop\OTL.exe
      [2012/11/16 15:25:56 | 000,036,864 | ---- | C] (NirSoft) -- C:\Windows\nircmd.exe
      [2012/11/15 20:18:33 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\ESET
      [2012/11/15 13:33:34 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
      [2012/11/15 13:33:33 | 000,000,000 | ---D | C] -- C:\Program Files\CCleaner
      [2012/11/15 10:04:49 | 000,000,000 | ---D | C] -- C:\Users\Laura y Raúl\Desktop\Nilsa
      [2012/11/14 10:01:36 | 000,000,000 | ---D | C] -- C:\Users\Laura y Raúl\AppData\Local\Systweak
      [2012/11/14 09:26:24 | 000,000,000 | ---D | C] -- C:\Users\Laura y Raúl\AppData\Local\Lollipop
      [2012/11/14 09:17:43 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Foolish IT
      [2012/11/14 09:17:43 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Foolish IT
      [2012/11/14 09:16:34 | 000,000,000 | ---D | C] -- C:\ProgramData\Systweak
      [2012/11/14 09:16:34 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Advanced System Protector
      [2012/11/14 09:16:33 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Advanced System Protector
      [2012/11/14 09:16:05 | 000,000,000 | ---D | C] -- C:\Users\Laura y Raúl\AppData\Roaming\Systweak
      [2012/11/14 09:16:04 | 000,018,816 | ---- | C] (Systweak Inc., (Systweak - Download Software utilities for Windows optimization, Scan & Clean Spyware for Free)) -- C:\Windows\SysNative\roboot64.exe
      [2012/11/11 23:58:09 | 000,000,000 | ---D | C] -- C:\ProgramData\Kaspersky Lab
      [2012/10/23 22:31:42 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Air Video Server
      [2012/10/23 22:31:40 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\AirVideoServer
      [2012/10/23 21:37:43 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\WiseConvert_1.2
      [2012/10/19 08:57:32 | 000,000,000 | ---D | C] -- C:\Users\Laura y Raúl\Desktop\Fotos para la tia Marisa
      [3 C:\Windows\SysWow64\*.tmp files -> C:\Windows\SysWow64\*.tmp -> ]
      [1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
      [1 C:\Users\Laura y Raúl\Desktop\*.tmp files -> C:\Users\Laura y Raúl\Desktop\*.tmp -> ]

      ========== Files - Modified Within 30 Days ==========

      [2012/11/17 09:12:25 | 000,001,114 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
      [2012/11/17 09:07:21 | 000,014,144 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
      [2012/11/17 09:07:21 | 000,014,144 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
      [2012/11/17 09:04:20 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Laura y Raúl\Desktop\OTL.exe
      [2012/11/17 09:01:01 | 000,000,270 | ---- | M] () -- C:\Windows\tasks\HP Photo Creations Messager.job
      [2012/11/17 08:59:19 | 000,001,110 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
      [2012/11/17 08:57:09 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
      [2012/11/17 08:56:42 | 3106,480,128 | -HS- | M] () -- C:\hiberfil.sys
      [2012/11/15 20:25:45 | 000,002,120 | ---- | M] () -- C:\scu.dat
      [2012/11/15 13:39:41 | 000,001,113 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
      [2012/11/15 13:33:34 | 000,000,822 | ---- | M] () -- C:\Users\Public\Desktop\CCleaner.lnk
      [2012/11/15 12:00:02 | 005,065,296 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT
      [2012/11/15 11:48:52 | 000,758,972 | ---- | M] () -- C:\Windows\SysNative\perfh00A.dat
      [2012/11/15 11:48:52 | 000,662,950 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
      [2012/11/15 11:48:52 | 000,161,446 | ---- | M] () -- C:\Windows\SysNative\perfc00A.dat
      [2012/11/15 11:48:52 | 000,124,144 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
      [2012/11/15 11:48:27 | 001,701,130 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
      [2012/11/11 10:52:40 | 000,030,568 | ---- | M] (AVG Technologies) -- C:\Windows\SysNative\drivers\avgtpx64.sys
      [2012/10/27 09:58:22 | 005,023,576 | ---- | M] () -- C:\Users\Laura y Raúl\Desktop\Movimientos del Masaje Infantil de IAIM.rar
      [2012/10/23 22:31:43 | 000,001,083 | ---- | M] () -- C:\Users\Public\Desktop\Air Video Server.lnk
      [2012/10/22 09:19:31 | 000,234,750 | ---- | M] () -- C:\test.xml
      [2012/10/21 11:23:54 | 000,256,314 | ---- | M] () -- C:\Users\Laura y Raúl\Desktop\Entrada Vetusta Morla.pdf
      [3 C:\Windows\SysWow64\*.tmp files -> C:\Windows\SysWow64\*.tmp -> ]
      [1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
      [1 C:\Users\Laura y Raúl\Desktop\*.tmp files -> C:\Users\Laura y Raúl\Desktop\*.tmp -> ]

      ========== Files Created - No Company Name ==========

      [2012/11/16 15:25:56 | 000,069,660 | ---- | C] () -- C:\Windows\Fart.exe
      [2012/11/16 15:25:56 | 000,022,528 | ---- | C] () -- C:\Windows\AT-Uninstall.exe
      [2012/11/16 15:25:56 | 000,011,776 | ---- | C] () -- C:\Windows\Colous.exe
      [2012/11/15 20:25:45 | 000,002,120 | ---- | C] () -- C:\scu.dat
      [2012/11/15 13:39:41 | 000,001,113 | ---- | C] () -- C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
      [2012/11/15 13:33:34 | 000,000,822 | ---- | C] () -- C:\Users\Public\Desktop\CCleaner.lnk
      [2012/11/15 10:06:56 | 000,000,003 | ---- | C] () -- C:\Windows\SysNative\drivers\MsftWdf_Kernel_01011_Inbox_Critical.Wdf
      [2012/11/15 09:59:15 | 000,000,003 | ---- | C] () -- C:\Windows\SysNative\drivers\MsftWdf_User_01_11_00_Inbox_Critical.Wdf
      [2012/11/14 09:16:33 | 000,016,896 | ---- | C] () -- C:\Windows\SysNative\sasnative64.exe
      [2012/10/27 09:58:20 | 005,023,576 | ---- | C] () -- C:\Users\Laura y Raúl\Desktop\Movimientos del Masaje Infantil de IAIM.rar
      [2012/10/23 22:31:43 | 000,001,083 | ---- | C] () -- C:\Users\Public\Desktop\Air Video Server.lnk
      [2012/10/21 11:23:54 | 000,256,314 | ---- | C] () -- C:\Users\Laura y Raúl\Desktop\Entrada Vetusta Morla.pdf
      [2012/10/02 09:51:43 | 000,009,566 | -HS- | C] () -- C:\Users\Laura y Raúl\AppData\Local\6o4v7yr6ikfw18072u
      [2012/10/02 09:51:43 | 000,009,566 | -HS- | C] () -- C:\ProgramData\6o4v7yr6ikfw18072u
      [2011/09/28 17:44:14 | 000,179,271 | ---- | C] () -- C:\Windows\SysWow64\xlive.dll.cat
      [2011/07/09 11:08:33 | 000,000,000 | ---- | C] () -- C:\Users\Laura y Raúl\AppData\Local\{44AEA82B-5820-4486-AB6C-69E09124E6AF}
      [2011/06/08 21:47:56 | 000,229,575 | ---- | C] () -- C:\Windows\hpoins49.dat.temp
      [2011/06/08 21:47:52 | 000,001,241 | ---- | C] () -- C:\Windows\hpomdl49.dat.temp
      [2011/05/07 10:54:09 | 000,000,293 | ---- | C] () -- C:\Windows\RENT2008.INI
      [2011/03/06 21:16:37 | 000,229,711 | ---- | C] () -- C:\Windows\hpoins49.dat
      [2011/02/06 10:29:35 | 000,000,268 | RH-- | C] () -- C:\ProgramData\Framework
      [2011/02/06 10:29:35 | 000,000,268 | RH-- | C] () -- C:\ProgramData\Fonts
      [2011/02/06 10:29:35 | 000,000,268 | RH-- | C] () -- C:\Users\Laura y Raúl\AppData\Roaming\Folder Actions
      [2011/02/06 10:29:35 | 000,000,268 | RH-- | C] () -- C:\Users\Laura y Raúl\AppData\Roaming\Flowers
      [2011/02/06 10:29:35 | 000,000,020 | -H-- | C] () -- C:\ProgramData\PKP_DLev.DAT
      [2011/02/06 10:29:35 | 000,000,020 | -H-- | C] () -- C:\ProgramData\PKP_DLes.DAT
      [2011/02/06 10:29:35 | 000,000,012 | RH-- | C] () -- C:\ProgramData\Halftone
      [2011/02/06 10:29:35 | 000,000,012 | RH-- | C] () -- C:\ProgramData\Guitars
      [2011/02/06 10:29:34 | 000,000,268 | RH-- | C] () -- C:\ProgramData\Font Book
      [2011/02/06 10:29:34 | 000,000,268 | RH-- | C] () -- C:\Users\Laura y Raúl\AppData\Roaming\Flanger
      [2011/02/06 10:29:34 | 000,000,020 | -H-- | C] () -- C:\ProgramData\PKP_DLet.DAT
      [2011/02/06 10:29:34 | 000,000,012 | RH-- | C] () -- C:\ProgramData\Guides
      [2010/11/10 21:12:35 | 000,000,056 | -H-- | C] () -- C:\ProgramData\ezsidmv.dat

      ========== ZeroAccess Check ==========

      [2009/07/14 05:55:00 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini

      [HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64

      [HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

      [HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64

      [HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

      [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
      "" = C:\Windows\SysNative\shell32.dll -- [2012/06/09 06:30:56 | 014,165,504 | ---- | M] (Microsoft Corporation)
      "ThreadingModel" = Apartment

      [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
      "" = %SystemRoot%\system32\shell32.dll -- [2012/06/09 05:46:56 | 012,868,608 | ---- | M] (Microsoft Corporation)
      "ThreadingModel" = Apartment

      [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
      "" = C:\Windows\SysNative\wbem\fastprox.dll -- [2009/07/14 02:40:51 | 000,909,312 | ---- | M] (Microsoft Corporation)
      "ThreadingModel" = Free

      [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
      "" = %systemroot%\system32\wbem\fastprox.dll -- [2009/07/14 02:15:20 | 000,605,696 | ---- | M] (Microsoft Corporation)
      "ThreadingModel" = Free

      [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
      "" = C:\Windows\SysNative\wbem\wbemess.dll -- [2009/07/14 02:41:56 | 000,505,856 | ---- | M] (Microsoft Corporation)
      "ThreadingModel" = Both

      [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]

      ========== LOP Check ==========

      [2012/09/04 20:36:57 | 000,000,000 | ---D | M] -- C:\Users\Laura y Raúl\AppData\Roaming\AnvSoft
      [2012/09/28 18:50:28 | 000,000,000 | ---D | M] -- C:\Users\Laura y Raúl\AppData\Roaming\BSplayer
      [2012/09/28 18:46:24 | 000,000,000 | ---D | M] -- C:\Users\Laura y Raúl\AppData\Roaming\BSplayer Pro
      [2011/06/28 20:01:56 | 000,000,000 | ---D | M] -- C:\Users\Laura y Raúl\AppData\Roaming\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1
      [2011/06/26 14:14:32 | 000,000,000 | ---D | M] -- C:\Users\Laura y Raúl\AppData\Roaming\com.adobe.downloadassistant.AdobeDownloadAssistant
      [2012/09/04 22:07:32 | 000,000,000 | ---D | M] -- C:\Users\Laura y Raúl\AppData\Roaming\freeCompressor
      [2011/02/06 11:02:53 | 000,000,000 | ---D | M] -- C:\Users\Laura y Raúl\AppData\Roaming\Nikon
      [2012/04/10 20:40:14 | 000,000,000 | ---D | M] -- C:\Users\Laura y Raúl\AppData\Roaming\PDAppFlex
      [2012/10/03 21:35:19 | 000,000,000 | ---D | M] -- C:\Users\Laura y Raúl\AppData\Roaming\Spotify
      [2012/11/14 21:36:26 | 000,000,000 | ---D | M] -- C:\Users\Laura y Raúl\AppData\Roaming\Systweak
      [2012/11/17 09:00:39 | 000,000,000 | ---D | M] -- C:\Users\Laura y Raúl\AppData\Roaming\uTorrent

      ========== Custom Scans ==========

      ========== Drive Information ==========

      Physical Drives
      ---------------

      Drive: \\\\.\\PHYSICALDRIVE0 - Fixed hard disk media
      Interface type: IDE
      Media Type: Fixed hard disk media
      Model: TOSHIBA MK3265GSX
      Partitions: 3
      Status: OK
      Status Info: 0

      Drive: \\\\.\\PHYSICALDRIVE1 -
      Interface type: IDE
      Media Type:
      Model: Ricoh Memory Stick Disk Device
      Partitions: 0
      Status: OK
      Status Info: 0

      Drive: \\\\.\\PHYSICALDRIVE2 -
      Interface type: IDE
      Media Type:
      Model: Ricoh SD/MMC Disk Device
      Partitions: 0
      Status: OK
      Status Info: 0

      Partitions
      ---------------

      DeviceID: Disk #0, Partition #0
      PartitionType: Unknown
      Bootable: False
      BootPartition: False
      PrimaryPartition: True
      Size: 11,00GB
      Starting Offset: 1048576
      Hidden sectors: 0


      DeviceID: Disk #0, Partition #1
      PartitionType: Installable File System
      Bootable: True
      BootPartition: True
      PrimaryPartition: True
      Size: 100,00MB
      Starting Offset: 11395923968
      Hidden sectors: 0


      DeviceID: Disk #0, Partition #2
      PartitionType: Installable File System
      Bootable: False
      BootPartition: False
      PrimaryPartition: True
      Size: 287,00GB
      Starting Offset: 11500781568
      Hidden sectors: 0


      < %systemdrive%\*.* >
      [2012/11/16 15:27:28 | 000,006,106 | ---- | M] () -- C:\AT-Destroyer.txt
      [2012/09/04 22:09:51 | 000,000,052 | ---- | M] () -- C:\ChromeHPLog.txt
      [2012/11/17 08:56:42 | 3106,480,128 | -HS- | M] () -- C:\hiberfil.sys
      [2011/11/13 17:47:21 | 163,854,297 | ---- | M] () -- C:\Lucas.MOV
      [2012/06/16 09:21:00 | 000,057,180 | ---- | M] () -- C:\lv.log
      [2006/12/01 23:37:14 | 000,904,704 | ---- | M] (Microsoft Corporation) -- C:\msdia80.dll
      [2012/11/17 08:56:48 | 4141,977,600 | -HS- | M] () -- C:\pagefile.sys
      [2012/11/16 15:26:10 | 000,000,114 | ---- | M] () -- C:\prueba.txt
      [2010/03/08 14:51:58 | 000,002,895 | ---- | M] () -- C:\RHDSetup.log
      [2012/11/15 20:25:45 | 000,002,120 | ---- | M] () -- C:\scu.dat
      [2012/02/16 16:37:48 | 000,000,510 | ---- | M] () -- C:\settings.ini
      [2010/03/08 15:05:07 | 000,000,073 | -H-- | M] () -- C:\splash.idx
      [2012/10/22 09:19:31 | 000,234,750 | ---- | M] () -- C:\test.xml
      [2009/12/15 11:53:48 | 000,003,872 | -H-- | M] () -- C:\version

      < End of report >

      ¿Qué más puedo hacer?

      Gracias de nuevo.

      Gracias,

    6. #6
      Warrior Avatar de RevesdeLiberte
      Registrado
      feb 2010
      Ubicación
      México
      Mensajes
      7.864

      Re: Lollipop

      Hola.


      Te pido paciencia mientras analizamos tu reporte de OTL, que como veras es muy extenso y esto lleva su tiempo. Responderé en la mayor brevedad posible.


      IMPORTANTE:

      • NO descargues o instales mas programas mientras terminamos la desinfección.

      • NO ejecutes otras herramientas Antivirus/Antimalwares.

      • NO ejecutes nuevamente OTL hasta que vuelva con una respuesta.



      Saludos.
      La paciencia es un árbol de raíces amargas, pero de frutos dulces.

      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.

    7. #7
      Warrior Avatar de RevesdeLiberte
      Registrado
      feb 2010
      Ubicación
      México
      Mensajes
      7.864

      Re: Lollipop

      Buenas.



      Importante: Has una copia de seguridad del Registro con ERUNT 1.1j como lo indica su Manual.


      Realiza lo siguiente:


      • Haga doble clic sobre la herramienta OTL.exe para ejecutarla.
        • Copie todo el siguiente código: (No copiar la palabra "Código:")
      Código:
      :OTL
      MOD - C:\Users\Laura y Raúl\AppData\Local\Lollipop\kebqmqf.exe ()
      SRV - (Browser Manager) -- C:\ProgramData\Browser Manager\2.4.897.175\{61d8b74e-8d89-46ff-afa6-33382c54ac73}\browsermngr.exe ()
      IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://search.babylon.com/?babsrc=SP_ss&q={searchTerms}&mntrId=f44268ad0000000000002a8158fdf5e8&tlver=1.4.19.19&affID=17160
      IE - HKCU\..\URLSearchHook: {fed66dc5-1b74-4a04-8f5c-15c5ace2b9a5} - No CLSID value found
      IE - HKCU\..\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}: "URL" = http://www.claro-search.com/?q={searchTerms}&affID=114508&tt=4612_2&babsrc=SP_clro&mntrId=f44268ad0000000000002a8158fdf5e8
      IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local
      FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
      FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found
      FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
      FF - HKEY_CURRENT_USER\software\mozilla\Firefox\Extensions\\{dfefbe51-ca52-484b-adf0-6b158b05262d}: C:\ProgramData\Browser Manager\2.4.897.175\{61d8b74e-8d89-46ff-afa6-33382c54ac73}\FirefoxExtension [2012/11/14 09:25:40 | 000,000,000 | ---D | M]
      [2012/09/28 18:46:45 | 000,000,000 | ---D | M] (BS Player Community Toolbar) -- C:\Users\Laura y Raúl\AppData\Roaming\mozilla\Firefox\extensions\{fed66dc5-1b74-4a04-8f5c-15c5ace2b9a5}
      O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - No CLSID value found.
      O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No CLSID value found.
      O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {D4027C7F-154A-4066-A1AD-4243D8127440} - No CLSID value found.
      O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39} - No CLSID value found.
      O4 - HKCU..\Run: [Spotify Web Helper] C:\Users\Laura y Raúl\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe ()
      O4 - HKCU..\Run: [AdobeBridge] File not found
      O4 - HKCU..\Run: [kebqmqf] c:\users\laura y raúl\appdata\local\lollipop\kebqmqf.exe ()
      O8:64bit: - Extra context menu item: &Enviar a OneNote - res://C:\PROGRA~2\MICROS~1\Office14\ONBttnIE.dll/105 File not found
      O8:64bit: - Extra context menu item: E&xportar a Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office14\EXCEL.EXE/3000 File not found
      O8 - Extra context menu item: &Enviar a OneNote - res://C:\PROGRA~2\MICROS~1\Office14\ONBttnIE.dll/105 File not found
      O8 - Extra context menu item: E&xportar a Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office14\EXCEL.EXE/3000 File not found
      O1364bit: - gopher Prefix: missing
      O13 - gopher Prefix: missing
      O16:64bit: - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jin...ndows-i586.cab (Java Plug-in 1.6.0_16)
      O16:64bit: - DPF: {CAFEEFAC-0016-0000-0016-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jin...ndows-i586.cab (Java Plug-in 1.6.0_16)
      O16:64bit: - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jin...ndows-i586.cab (Reg Error: Key error.)
      O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jin...ndows-i586.cab (Reg Error: Value error.)
      O16 - DPF: {CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jin...ndows-i586.cab (Java Plug-in 1.6.0_31)
      O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jin...ndows-i586.cab (Java Plug-in 10.7.2)
      O18:64bit: - Protocol\Handler\livecall - No CLSID value found
      O18:64bit: - Protocol\Handler\ms-help - No CLSID value found
      O18:64bit: - Protocol\Handler\msnim - No CLSID value found
      O18:64bit: - Protocol\Handler\mso-offdap11 - No CLSID value found
      O18:64bit: - Protocol\Handler\skype4com - No CLSID value found
      O18:64bit: - Protocol\Handler\skype-ie-addon-data - No CLSID value found
      O18:64bit: - Protocol\Handler\viprotocol - No CLSID value found
      O18:64bit: - Protocol\Handler\wlmailhtml - No CLSID value found
      O20 - AppInit_DLLs: (c:\progra~3\browse~1\24897~1.175\{61d8b~1\browse~1.dll) - c:\ProgramData\Browser Manager\2.4.897.175\{61d8b74e-8d89-46ff-afa6-33382c54ac73}\browsermngr.dll ()
      O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
      O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
      O33 - MountPoints2\{5bd0ee57-7feb-11e0-8393-506313eee790}\Shell - "" = AutoRun
      O33 - MountPoints2\{5bd0ee57-7feb-11e0-8393-506313eee790}\Shell\AutoRun\command - "" = D:\LaunchU3.exe -a
      O33 - MountPoints2\{a78c1538-df4c-11df-904f-506313eee790}\Shell - "" = AutoRun
      O33 - MountPoints2\{a78c1538-df4c-11df-904f-506313eee790}\Shell\AutoRun\command - "" = H:\npeuinst.exe
      [2012/11/14 09:26:24 | 000,000,000 | ---D | C] -- C:\Users\Laura y Raúl\AppData\Local\Lollipop
      [2012/11/14 09:16:34 | 000,000,000 | ---D | C] -- C:\ProgramData\Systweak
      [2012/11/14 09:16:04 | 000,018,816 | ---- | C] (Systweak Inc., (Systweak - Download Software utilities for Windows optimization, Scan & Clean Spyware for Free)) -- C:\Windows\SysNative\roboot64.exe
      [2012/10/22 09:19:31 | 000,234,750 | ---- | M] () -- C:\test.xml
      [2012/10/02 09:51:43 | 000,009,566 | -HS- | C] () -- C:\Users\Laura y Raúl\AppData\Local\6o4v7yr6ikfw18072u
      [2012/10/02 09:51:43 | 000,009,566 | -HS- | C] () -- C:\ProgramData\6o4v7yr6ikfw18072u
      [2012/11/14 09:16:33 | 000,016,896 | ---- | C] () -- C:\Windows\SysNative\sasnative64.exe
      [2012/10/03 21:35:19 | 000,000,000 | ---D | M] -- C:\Users\Laura y Raúl\AppData\Roaming\Spotify
      [3 C:\Windows\SysWow64\*.tmp files -> C:\Windows\SysWow64\*.tmp -> ]
      [1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
      [1 C:\Users\Laura y Raúl\Desktop\*.tmp files -> C:\Users\Laura y Raúl\Desktop\*.tmp -> ]
      :Files
      C:\ProgramData\Browser Manager
      :Commands
      [Purity]
      [EmptyTemp]
      [EmptyJava]
      • Pegue el código sobre el área Análisis Personalizados/Código de Reparación.



      • Haga clic en el botón Reparar para comenzar la reparación. Se te solicitara reiniciar el ordenador haga clic en Aceptar.
      • Tras el reinicio se abrirá un reporte con los resultados, ese reporte también quedara guardado en C:\_OTL\MovedFiles\***_***.txt (Donde dice "***_***" es la fecha y hora).



      Copia y pega el reporte generado en tu siguiente respuesta comentando si persiste el problema inicial.
      La paciencia es un árbol de raíces amargas, pero de frutos dulces.

      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.

    8. #8
      Usuario Avatar de rolling stone
      Registrado
      nov 2012
      Ubicación
      Madrid
      Mensajes
      10

      Re: Lollipop

      Hola,

      pego el reporte más abajo:

      All processes killed
      ========== OTL ==========
      Service Browser Manager stopped successfully!
      Service Browser Manager deleted successfully!
      C:\ProgramData\Browser Manager\2.4.897.175\{61d8b74e-8d89-46ff-afa6-33382c54ac73}\browsermngr.exe moved successfully.
      HKLM\SOFTWARE\Microsoft\Internet Explorer\Search\\SearchAssistant| /E : value set successfully!
      Registry value HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks\\{fed66dc5-1b74-4a04-8f5c-15c5ace2b9a5} deleted successfully.
      Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{fed66dc5-1b74-4a04-8f5c-15c5ace2b9a5}\ not found.
      Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}\ deleted successfully.
      Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}\ not found.
      HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\\ProxyOverride| /E : value set successfully!
      64bit-Registry key HKEY_LOCAL_MACHINE\Software\MozillaPlugins\@microsoft.com/GENUINE\ deleted successfully.
      Registry key HKEY_LOCAL_MACHINE\Software\MozillaPlugins\@Apple.com/iTunes,version=\ deleted successfully.
      Registry key HKEY_LOCAL_MACHINE\Software\MozillaPlugins\@microsoft.com/GENUINE\ deleted successfully.
      Registry value HKEY_CURRENT_USER\software\mozilla\Firefox\Extensions\\{dfefbe51-ca52-484b-adf0-6b158b05262d} deleted successfully.
      Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{dfefbe51-ca52-484b-adf0-6b158b05262d}\ not found.
      C:\ProgramData\Browser Manager\2.4.897.175\{61d8b74e-8d89-46ff-afa6-33382c54ac73}\FirefoxExtension\content folder moved successfully.
      C:\ProgramData\Browser Manager\2.4.897.175\{61d8b74e-8d89-46ff-afa6-33382c54ac73}\FirefoxExtension\components folder moved successfully.
      C:\ProgramData\Browser Manager\2.4.897.175\{61d8b74e-8d89-46ff-afa6-33382c54ac73}\FirefoxExtension folder moved successfully.
      C:\Users\Laura y Raúl\AppData\Roaming\mozilla\Firefox\extensions\{fed66dc5-1b74-4a04-8f5c-15c5ace2b9a5}\searchplugin folder moved successfully.
      C:\Users\Laura y Raúl\AppData\Roaming\mozilla\Firefox\extensions\{fed66dc5-1b74-4a04-8f5c-15c5ace2b9a5}\Plugins folder moved successfully.
      C:\Users\Laura y Raúl\AppData\Roaming\mozilla\Firefox\extensions\{fed66dc5-1b74-4a04-8f5c-15c5ace2b9a5}\modules folder moved successfully.
      C:\Users\Laura y Raúl\AppData\Roaming\mozilla\Firefox\extensions\{fed66dc5-1b74-4a04-8f5c-15c5ace2b9a5}\META-INF folder moved successfully.
      C:\Users\Laura y Raúl\AppData\Roaming\mozilla\Firefox\extensions\{fed66dc5-1b74-4a04-8f5c-15c5ace2b9a5}\defaults folder moved successfully.
      C:\Users\Laura y Raúl\AppData\Roaming\mozilla\Firefox\extensions\{fed66dc5-1b74-4a04-8f5c-15c5ace2b9a5}\components folder moved successfully.
      C:\Users\Laura y Raúl\AppData\Roaming\mozilla\Firefox\extensions\{fed66dc5-1b74-4a04-8f5c-15c5ace2b9a5}\chrome folder moved successfully.
      C:\Users\Laura y Raúl\AppData\Roaming\mozilla\Firefox\extensions\{fed66dc5-1b74-4a04-8f5c-15c5ace2b9a5} folder moved successfully.
      Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5C255C8A-E604-49b4-9D64-90988571CECB}\ deleted successfully.
      Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{5C255C8A-E604-49b4-9D64-90988571CECB}\ not found.
      Registry value HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{2318C2B1-4965-11D4-9B18-009027A5CD4F} deleted successfully.
      Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{2318C2B1-4965-11D4-9B18-009027A5CD4F}\ not found.
      Registry value HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{D4027C7F-154A-4066-A1AD-4243D8127440} deleted successfully.
      Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{D4027C7F-154A-4066-A1AD-4243D8127440}\ not found.
      Registry value HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39} deleted successfully.
      Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}\ deleted successfully.
      Registry value HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\Spotify Web Helper deleted successfully.
      C:\Users\Laura y Raúl\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe moved successfully.
      Registry value HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\AdobeBridge deleted successfully.
      Registry value HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\kebqmqf deleted successfully.
      c:\users\laura y raúl\appdata\local\lollipop\kebqmqf.exe moved successfully.
      64bit-Registry key HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\MenuExt\&Enviar a OneNote\ deleted successfully.
      64bit-Registry key HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\MenuExt\E&xportar a Microsoft Excel\ deleted successfully.
      Registry key HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\MenuExt\&Enviar a OneNote\ not found.
      Registry key HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\MenuExt\E&xportar a Microsoft Excel\ not found.
      HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\URL\Prefixes\\gopher|:gopher:// /E : value set successfully!
      Starting removal of ActiveX control {8AD9C840-044E-11D1-B3E9-00805F499D93}
      64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{8AD9C840-044E-11D1-B3E9-00805F499D93}\ deleted successfully.
      64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{8AD9C840-044E-11D1-B3E9-00805F499D93}\ deleted successfully.
      Registry key HKEY_CURRENT_USER\SOFTWARE\Classes\CLSID\{8AD9C840-044E-11D1-B3E9-00805F499D93}\ deleted successfully.
      64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{8AD9C840-044E-11D1-B3E9-00805F499D93}\ not found.
      64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{8AD9C840-044E-11D1-B3E9-00805F499D93}\ not found.
      Starting removal of ActiveX control {CAFEEFAC-0016-0000-0016-ABCDEFFEDCBA}
      64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{CAFEEFAC-0016-0000-0016-ABCDEFFEDCBA}\ deleted successfully.
      64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0016-ABCDEFFEDCBA}\ deleted successfully.
      Registry key HKEY_CURRENT_USER\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0016-ABCDEFFEDCBA}\ deleted successfully.
      64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{CAFEEFAC-0016-0000-0016-ABCDEFFEDCBA}\ not found.
      64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0016-ABCDEFFEDCBA}\ not found.
      Starting removal of ActiveX control {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}
      64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}\ deleted successfully.
      64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}\ not found.
      Registry key HKEY_CURRENT_USER\SOFTWARE\Classes\CLSID\{CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}\ deleted successfully.
      64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}\ not found.
      64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}\ not found.
      Starting removal of ActiveX control {8AD9C840-044E-11D1-B3E9-00805F499D93}
      Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{8AD9C840-044E-11D1-B3E9-00805F499D93}\ deleted successfully.
      Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{8AD9C840-044E-11D1-B3E9-00805F499D93}\ deleted successfully.
      Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{8AD9C840-044E-11D1-B3E9-00805F499D93}\ not found.
      Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{8AD9C840-044E-11D1-B3E9-00805F499D93}\ not found.
      Starting removal of ActiveX control {CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA}
      Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA}\ deleted successfully.
      Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA}\ deleted successfully.
      Registry key HKEY_CURRENT_USER\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA}\ deleted successfully.
      Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA}\ not found.
      Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA}\ not found.
      Starting removal of ActiveX control {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}
      Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}\ deleted successfully.
      Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}\ deleted successfully.
      Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}\ not found.
      Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}\ not found.
      64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\livecall\ deleted successfully.
      File Protocol\Handler\livecall - No CLSID value found not found.
      64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\ms-help\ deleted successfully.
      File Protocol\Handler\ms-help - No CLSID value found not found.
      64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\msnim\ deleted successfully.
      File Protocol\Handler\msnim - No CLSID value found not found.
      64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\mso-offdap11\ deleted successfully.
      File Protocol\Handler\mso-offdap11 - No CLSID value found not found.
      64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\skype4com\ deleted successfully.
      File Protocol\Handler\skype4com - No CLSID value found not found.
      64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\skype-ie-addon-data\ deleted successfully.
      File Protocol\Handler\skype-ie-addon-data - No CLSID value found not found.
      64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\viprotocol\ deleted successfully.
      File Protocol\Handler\viprotocol - No CLSID value found not found.
      64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\wlmailhtml\ deleted successfully.
      File Protocol\Handler\wlmailhtml - No CLSID value found not found.
      Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows\\AppInit_Dlls:c:\progra~3\browse~1\24897~1.175\{61d8b~1\browse~1.dll deleted successfully.
      c:\ProgramData\Browser Manager\2.4.897.175\{61d8b74e-8d89-46ff-afa6-33382c54ac73}\browsermngr.dll moved successfully.
      64bit-Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad\\WebCheck deleted successfully.
      64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{E6FB5E20-DE35-11CF-9C87-00AA005127ED}\ not found.
      Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad\\WebCheck deleted successfully.
      Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{E6FB5E20-DE35-11CF-9C87-00AA005127ED}\ not found.
      Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{5bd0ee57-7feb-11e0-8393-506313eee790}\ deleted successfully.
      Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{5bd0ee57-7feb-11e0-8393-506313eee790}\ not found.
      Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{5bd0ee57-7feb-11e0-8393-506313eee790}\ not found.
      Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{5bd0ee57-7feb-11e0-8393-506313eee790}\ not found.
      File D:\LaunchU3.exe -a not found.
      Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{a78c1538-df4c-11df-904f-506313eee790}\ deleted successfully.
      Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{a78c1538-df4c-11df-904f-506313eee790}\ not found.
      Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{a78c1538-df4c-11df-904f-506313eee790}\ not found.
      Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{a78c1538-df4c-11df-904f-506313eee790}\ not found.
      File H:\npeuinst.exe not found.
      C:\Users\Laura y Raúl\AppData\Local\Lollipop folder moved successfully.
      C:\ProgramData\Systweak\Advanced System Protector\updates folder moved successfully.
      C:\ProgramData\Systweak\Advanced System Protector\signatures folder moved successfully.
      C:\ProgramData\Systweak\Advanced System Protector\2.1.1000.10225 folder moved successfully.
      C:\ProgramData\Systweak\Advanced System Protector folder moved successfully.
      C:\ProgramData\Systweak folder moved successfully.
      C:\Windows\SysNative\roboot64.exe moved successfully.
      C:\test.xml moved successfully.
      C:\Users\Laura y Raúl\AppData\Local\6o4v7yr6ikfw18072u moved successfully.
      C:\ProgramData\6o4v7yr6ikfw18072u moved successfully.
      C:\Windows\SysNative\sasnative64.exe moved successfully.
      C:\Users\Laura y Raúl\AppData\Roaming\Spotify\Users\laurinsen-user folder moved successfully.
      C:\Users\Laura y Raúl\AppData\Roaming\Spotify\Users\1115180022-user\LocalStorage\Local Storage folder moved successfully.
      C:\Users\Laura y Raúl\AppData\Roaming\Spotify\Users\1115180022-user\LocalStorage folder moved successfully.
      C:\Users\Laura y Raúl\AppData\Roaming\Spotify\Users\1115180022-user\Cookies folder moved successfully.
      C:\Users\Laura y Raúl\AppData\Roaming\Spotify\Users\1115180022-user\Apps\search-dropdown folder moved successfully.
      C:\Users\Laura y Raúl\AppData\Roaming\Spotify\Users\1115180022-user\Apps\home folder moved successfully.
      C:\Users\Laura y Raúl\AppData\Roaming\Spotify\Users\1115180022-user\Apps\feed folder moved successfully.
      C:\Users\Laura y Raúl\AppData\Roaming\Spotify\Users\1115180022-user\Apps folder moved successfully.
      C:\Users\Laura y Raúl\AppData\Roaming\Spotify\Users\1115180022-user folder moved successfully.
      C:\Users\Laura y Raúl\AppData\Roaming\Spotify\Users folder moved successfully.
      C:\Users\Laura y Raúl\AppData\Roaming\Spotify\Gracenote folder moved successfully.
      C:\Users\Laura y Raúl\AppData\Roaming\Spotify\Data\locales folder moved successfully.
      C:\Users\Laura y Raúl\AppData\Roaming\Spotify\Data folder moved successfully.
      C:\Users\Laura y Raúl\AppData\Roaming\Spotify folder moved successfully.
      C:\Windows\SysWow64\tmp4E6D.tmp deleted successfully.
      C:\Windows\SysWow64\tmp4F78.tmp deleted successfully.
      C:\Windows\SysWow64\tmpED6A.tmp deleted successfully.
      C:\Windows\msdownld.tmp folder deleted successfully.
      C:\Users\Laura y Raúl\Desktop\~WRL0003.tmp deleted successfully.
      ========== FILES ==========
      C:\ProgramData\Browser Manager\2.4.897.175\{61d8b74e-8d89-46ff-afa6-33382c54ac73}\traking_settings folder moved successfully.
      Folder move failed. C:\ProgramData\Browser Manager\2.4.897.175\{61d8b74e-8d89-46ff-afa6-33382c54ac73} scheduled to be moved on reboot.
      Folder move failed. C:\ProgramData\Browser Manager\2.4.897.175 scheduled to be moved on reboot.
      Folder move failed. C:\ProgramData\Browser Manager scheduled to be moved on reboot.
      ========== COMMANDS ==========

      [EMPTYTEMP]

      User: All Users

      User: Default
      ->Temp folder emptied: 0 bytes
      ->Temporary Internet Files folder emptied: 33170 bytes
      ->Flash cache emptied: 56468 bytes

      User: Default User
      ->Temp folder emptied: 0 bytes
      ->Temporary Internet Files folder emptied: 0 bytes
      ->Flash cache emptied: 0 bytes

      User: Invitado
      ->Temp folder emptied: 3072112 bytes
      ->Temporary Internet Files folder emptied: 558755 bytes
      ->Apple Safari cache emptied: 20377600 bytes
      ->Flash cache emptied: 2905 bytes

      User: Laura
      ->Temp folder emptied: 1811644 bytes
      ->Temporary Internet Files folder emptied: 379666087 bytes
      ->Java cache emptied: 719 bytes
      ->Flash cache emptied: 62308 bytes

      User: Laura y Raúl
      ->Temp folder emptied: 1136613 bytes
      ->Temporary Internet Files folder emptied: 34731074 bytes
      ->Java cache emptied: 12988850 bytes
      ->Google Chrome cache emptied: 0 bytes
      ->Apple Safari cache emptied: 0 bytes
      ->Flash cache emptied: 57788 bytes

      User: Public

      %systemdrive% .tmp files removed: 0 bytes
      %systemroot% .tmp files removed: 0 bytes
      %systemroot%\System32 .tmp files removed: 0 bytes
      %systemroot%\System32 (64bit) .tmp files removed: 0 bytes
      %systemroot%\System32\drivers .tmp files removed: 0 bytes
      Windows Temp folder emptied: 114117 bytes
      %systemroot%\sysnative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 160295 bytes
      RecycleBin emptied: 0 bytes

      Total Files Cleaned = 434,00 mb


      [EMPTYJAVA]

      User: All Users

      User: Default

      User: Default User

      User: Invitado

      User: Laura
      ->Java cache emptied: 0 bytes

      User: Laura y Raúl
      ->Java cache emptied: 0 bytes

      User: Public

      Total Java Files Cleaned = 0,00 mb


      OTL by OldTimer - Version 3.2.69.0 log created on 11172012_230018

      Files\Folders moved on Reboot...
      C:\ProgramData\Browser Manager\2.4.897.175\{61d8b74e-8d89-46ff-afa6-33382c54ac73} folder moved successfully.
      C:\ProgramData\Browser Manager\2.4.897.175 folder moved successfully.
      C:\ProgramData\Browser Manager folder moved successfully.
      File\Folder C:\Users\Laura y Raúl\AppData\Local\Temp\Low\Temporary Internet Files\Content.IE5\6PAM8FJG\1x6PE3q8kN4mtQum8BdGohzwaU1vRt7mzw0u1LSDD-suGTpJgTGZy27jtrvmeDs1ehDxwFY-UO5scQ_F_X05sk4YKvB3q_aWom0nD22_Jtbv2ruTE5U0meLeQlijrj2oh4GdMJtEu_WuvddPrY&callback=google.LU[1].js not found!
      File\Folder C:\Users\Laura y Raúl\AppData\Local\Temp\Low\Temporary Internet Files\Content.IE5\28A3EJ75\VRFC4_J843K3Q1mvH71x6PE3q8kN4mtQum8BdGohzwaU1vRt7mzw0u1LSDD-suGTpJgTGZy27jtrvmeDs1ehDxwFY-UO5scQ_F_X05sk4YKvB3q_aWom0nD22_Jtbv2ruTE5U0meLeQlijrj2oh4GdMJtEu_WuvddPrY[1].gif not found!
      C:\Users\Laura y Raúl\AppData\Local\Temp\FXSAPIDebugLogFile.txt moved successfully.
      C:\Users\Laura y Raúl\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\QSMU6TED\ads[3].htm moved successfully.
      C:\Users\Laura y Raúl\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\QSMU6TED\flextag[4].htm moved successfully.
      C:\Users\Laura y Raúl\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\QSMU6TED\t125539[1].htm moved successfully.
      C:\Users\Laura y Raúl\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\QSMU6TED\tweet_button.1352365724[1].htm moved successfully.
      C:\Users\Laura y Raúl\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\OKXLXT2Z\ads[4].htm moved successfully.
      File\Folder C:\Users\Laura y Raúl\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\OKXLXT2Z\EditMessageLight[1].htm not found!
      C:\Users\Laura y Raúl\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\OKXLXT2Z\resourcespreload[1].htm moved successfully.
      File\Folder C:\Users\Laura y Raúl\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\OKXLXT2Z\RteFrame_16.2.8067.1022[1].htm not found!
      File\Folder C:\Users\Laura y Raúl\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\OKXLXT2Z\si[1].htm not found!
      File\Folder C:\Users\Laura y Raúl\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\OKXLXT2Z\si[2].htm not found!
      File\Folder C:\Users\Laura y Raúl\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\OKXLXT2Z\xd_arbiter[1].htm not found!
      C:\Users\Laura y Raúl\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\OKXLXT2Z\xmlProxy[1].htm moved successfully.
      File\Folder C:\Users\Laura y Raúl\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\CIKG6ZBF\ads[2].htm not found!
      C:\Users\Laura y Raúl\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\CIKG6ZBF\AjaxHistoryFrame[1].htm moved successfully.
      File\Folder C:\Users\Laura y Raúl\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\CIKG6ZBF\fastbutton[1].htm not found!
      File\Folder C:\Users\Laura y Raúl\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\CIKG6ZBF\like[1].htm not found!
      File\Folder C:\Users\Laura y Raúl\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\CIKG6ZBF\xd_arbiter[1].htm not found!
      File\Folder C:\Users\Laura y Raúl\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\CIKG6ZBF\xd_arbiter[2].htm not found!
      C:\Users\Laura y Raúl\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\CIKG6ZBF\xmlProxy[1].htm moved successfully.
      C:\Users\Laura y Raúl\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\CIKG6ZBF\xmlProxy[2].htm moved successfully.
      C:\Users\Laura y Raúl\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\7L2R4C5K\adloader[1].htm moved successfully.
      File\Folder C:\Users\Laura y Raúl\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\7L2R4C5K\default[1].htm not found!
      C:\Users\Laura y Raúl\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\7L2R4C5K\LocalStorage[1].htm moved successfully.
      C:\Users\Laura y Raúl\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\7L2R4C5K\Messenger[1].htm moved successfully.
      C:\Users\Laura y Raúl\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\MSIMGSIZ.DAT moved successfully.

      PendingFileRenameOperations files...

      Registry entries deleted on Reboot...

      ------------------------------------------------------------------------------------------------------------------------------

      El problema ha desaparecido aunque en panel de control/ Programas sigue apareciendo Lollipop.

      ¿Está el problema solucionado?

      Muchas gracias por tu ayuda,

    9. #9
      Warrior Avatar de RevesdeLiberte
      Registrado
      feb 2010
      Ubicación
      México
      Mensajes
      7.864

      Re: Lollipop

      Buenas.


      Ejecuta OTL.exe y has clic en Limpiar, luego en Aceptar. También des-instala ERUNT. Respecto a Lollipop, ahora intenta desinstalarlo desde el Panel de control, probablemente te dirá que ya esta desinstalado, yo ya no me preocuparía por que hemos dejado tu ordenador limpio.







      Tema Solucionado.


      _________________________________

      Si deseas reabrir el tema has clic en el icono y plantea tu consulta para que un moderador reabra el tema.
      Como recomendación final, te invitamos a seguirnos en nuestros canales de difusión: Blog, Twitter, Facebook, vía E-Mail para estar al tanto de los nuevos malwares y como prevenirlos.

      Saludos.
      Atentamente.
      El Equipo de InfoSpyware
      www.forospyware.com
      www.infospyware.com
      Twitter: @InfoSpyware
      Última edición por RevesdeLiberte fecha: 18/11/12 a las 16:05:11
      La paciencia es un árbol de raíces amargas, pero de frutos dulces.

      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.