• Registrarse
  • Iniciar sesión


  • Resultados 1 al 3 de 3

    Dichoso Lollipop

    Hola, estoy intentando quitar el Lollipop de mi Windows XP. Voy a copiar el .txt del OTL para ver si alguien puede decirme qué arreglar exactamente. Muchas gracias. OTL logfile created on: 17/01/2013 05:17:49 p.m. ...

    1. #1
      Usuario Avatar de Sconvix
      Registrado
      ene 2009
      Ubicación
      Luxemburgo
      Mensajes
      3

      Dichoso Lollipop

      Hola, estoy intentando quitar el Lollipop de mi Windows XP. Voy a copiar el .txt del OTL para ver si alguien puede decirme qué arreglar exactamente.

      Muchas gracias.

      OTL logfile created on: 17/01/2013 05:17:49 p.m. - Run 1
      OTL by OldTimer - Version 3.2.69.0 Folder = C:\Documents and Settings\VECINO\Mis documentos
      Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
      Internet Explorer (Version = 8.0.6001.18702)
      Locale: 00002C0A | Country: Argentina | Language: ESS | Date Format: dd/MM/yyyy

      1014,42 Mb Total Physical Memory | 403,85 Mb Available Physical Memory | 39,81% Memory free
      2,38 Gb Paging File | 1,89 Gb Available in Paging File | 79,28% Paging File free
      Paging file location(s): C:\pagefile.sys 1521 3048 [binary data]

      %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Archivos de programa
      Drive C: | 74,52 Gb Total Space | 18,56 Gb Free Space | 24,91% Space Free | Partition Type: NTFS

      Computer Name: WINDOWS-D528602 | User Name: VECINO | Logged in as Administrator.
      Boot Mode: Normal | Scan Mode: All users
      Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

      ========== Processes (SafeList) ==========

      PRC - [2013/01/17 17:17:32 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\VECINO\Mis documentos\OTL.exe
      PRC - [2013/01/15 20:30:06 | 001,226,240 | ---- | M] () -- C:\Documents and Settings\VECINO\Configuración local\Datos de programa\Lollipop\Lollipop.exe
      PRC - [2009/12/03 10:12:12 | 000,976,320 | ---- | M] (SEIKO EPSON CORPORATION) -- C:\Archivos de programa\Epson Software\Event Manager\EEventManager.exe
      PRC - [2009/08/12 21:27:49 | 001,036,288 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
      PRC - [2009/05/14 17:07:14 | 000,759,048 | ---- | M] (ABBYY) -- C:\Archivos de programa\Archivos comunes\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe
      PRC - [2008/12/01 16:33:56 | 001,406,192 | ---- | M] (Piriform Ltd) -- C:\Archivos de programa\CCleaner\CCleaner.exe
      PRC - [2008/06/24 16:06:06 | 001,840,424 | ---- | M] (Nero AG) -- C:\Archivos de programa\Archivos comunes\Nero\Lib\NMIndexStoreSvr.exe
      PRC - [2008/06/24 16:05:56 | 000,537,896 | ---- | M] (Nero AG) -- C:\Archivos de programa\Archivos comunes\Nero\Lib\NMIndexingService.exe
      PRC - [2003/05/08 10:00:58 | 000,049,152 | ---- | M] (ScanSoft, Inc.) -- C:\Archivos de programa\ScanSoft\OmniPageSE2.0\opwareSE2.exe


      ========== Modules (No Company Name) ==========

      MOD - [2013/01/15 20:30:06 | 001,226,240 | ---- | M] () -- C:\Documents and Settings\VECINO\Configuración local\Datos de programa\Lollipop\Lollipop.exe
      MOD - [2009/02/27 18:35:50 | 000,311,296 | ---- | M] () -- C:\Archivos de programa\Archivos comunes\Adobe\Acrobat\ActiveX\pdfshell.ESP
      MOD - [2008/11/26 05:34:58 | 000,024,576 | ---- | M] () -- C:\Archivos de programa\CCleaner\lang-1034.dll


      ========== Services (SafeList) ==========

      SRV - File not found [Disabled | Stopped] -- %SystemRoot%\System32\hidserv.dll -- (HidServ)
      SRV - [2009/05/14 17:07:14 | 000,759,048 | ---- | M] (ABBYY) [Auto | Running] -- C:\Archivos de programa\Archivos comunes\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe -- (ABBYY.Licensing.FineReader.Sprint.9.0)
      SRV - [2008/11/04 01:06:28 | 000,441,712 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Archivos de programa\Archivos comunes\Microsoft Shared\OFFICE12\ODSERV.EXE -- (odserv)
      SRV - [2008/06/24 16:05:56 | 000,537,896 | ---- | M] (Nero AG) [On_Demand | Running] -- C:\Archivos de programa\Archivos comunes\Nero\Lib\NMIndexingService.exe -- (NMIndexingService)
      SRV - [2007/01/22 14:26:10 | 000,024,072 | ---- | M] (TuneUp Software GmbH) [Auto | Running] -- C:\WINDOWS\system32\uxtuneup.dll -- (UxTuneUp)
      SRV - [2006/10/26 14:03:08 | 000,145,184 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Archivos de programa\Archivos comunes\Microsoft Shared\Source Engine\OSE.EXE -- (ose)


      ========== Driver Services (SafeList) ==========

      DRV - File not found [Kernel | On_Demand | Stopped] -- -- (WDICA)
      DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\snp2uvc.sys -- (SNP2UVC)
      DRV - File not found [Kernel | System | Stopped] -- C:\WINDOWS\system32\drivers\SBREDrv.sys -- (SBRE)
      DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDRFRAME)
      DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDRELI)
      DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDFRAME)
      DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDCOMP)
      DRV - File not found [Kernel | System | Stopped] -- -- (PCIDump)
      DRV - File not found [Kernel | System | Stopped] -- -- (lbrtfdc)
      DRV - File not found [Kernel | System | Stopped] -- -- (i2omgmt)
      DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\ewusbdev.sys -- (hwusbdev)
      DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\ewusbmdm.sys -- (hwdatacard)
      DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\ewusbnet.sys -- (ewusbnet)
      DRV - File not found [Kernel | System | Stopped] -- -- (Changer)
      DRV - File not found [Kernel | Auto | Stopped] -- -- (adfs)
      DRV - [2013/01/16 22:07:44 | 000,013,560 | ---- | M] (GFI Software) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\gfibto.sys -- (gfibto)
      DRV - [2012/12/17 06:43:06 | 000,033,616 | ---- | M] (GFI Software) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\gfiark.sys -- (gfiark)
      DRV - [2010/08/18 13:43:00 | 000,020,480 | ---- | M] (NT Kernel Resources) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ndisrd.sys -- (ndisrd)
      DRV - [2010/03/26 14:26:03 | 002,216,064 | ---- | M] (Intel® Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\w29n51.sys -- (w29n51)
      DRV - [2010/03/26 14:24:35 | 004,071,272 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ALCXWDM.SYS -- (ALCXWDM)
      DRV - [2010/03/26 14:24:08 | 001,096,832 | ---- | M] (Motorola Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\smserial.sys -- (smserial)
      DRV - [2010/03/26 14:23:16 | 000,105,088 | ---- | M] (Realtek Semiconductor Corporation ) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\Rtnicxp.sys -- (RTL8023xp)
      DRV - [2009/08/12 21:33:49 | 000,009,472 | ---- | M] (Microsoft Corporation) [Kernel | System | Stopped] -- C:\WINDOWS\System32\drivers\dumpdrv.sys -- (DumpDrv)
      DRV - [2008/11/11 12:42:00 | 000,024,832 | ---- | M] (LG Electronics Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\lgusbmodem.sys -- (USBModem)
      DRV - [2008/11/11 12:41:00 | 000,019,968 | ---- | M] (LG Electronics Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\lgusbdiag.sys -- (UsbDiag)
      DRV - [2008/11/11 12:41:00 | 000,013,056 | ---- | M] (LG Electronics Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\lgusbbus.sys -- (usbbus)
      DRV - [2008/04/14 12:00:00 | 000,088,320 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\nwlnkipx.sys -- (NwlnkIpx)
      DRV - [2008/04/14 12:00:00 | 000,063,232 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\nwlnknb.sys -- (NwlnkNb)
      DRV - [2008/04/14 12:00:00 | 000,055,936 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\nwlnkspx.sys -- (NwlnkSpx)
      DRV - [2008/04/14 01:05:40 | 000,020,992 | ---- | M] (Realtek Semiconductor Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\RTL8139.sys -- (rtl8139)
      DRV - [2005/09/23 21:18:32 | 000,171,520 | ---- | M] (Pinnacle Systems GmbH) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\MarvinBus.sys -- (MarvinBus)


      ========== Standard Registry (SafeList) ==========


      ========== Internet Explorer ==========

      IE - HKLM\..\SearchScopes,DefaultScope = {6A1806CD-94D4-4689-BA73-E35EA1EA9990}
      IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.live.com/results.aspx?q={searchTerms}&src={referrer:source?}
      IE - HKLM\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7


      IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

      IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0


      IE - HKU\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

      IE - HKU\S-1-5-21-57989841-1708537768-1417001333-1005\SOFTWARE\Microsoft\Internet Explorer\Main,Disable Script Debugger Default = yes
      IE - HKU\S-1-5-21-57989841-1708537768-1417001333-1005\SOFTWARE\Microsoft\Internet Explorer\Main,DisableScriptDebuggerIE Default =
      IE - HKU\S-1-5-21-57989841-1708537768-1417001333-1005\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.es/
      IE - HKU\S-1-5-21-57989841-1708537768-1417001333-1005\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = es-AR
      IE - HKU\S-1-5-21-57989841-1708537768-1417001333-1005\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = D0 0C 35 B0 F4 8F CB 01 [binary data]
      IE - HKU\S-1-5-21-57989841-1708537768-1417001333-1005\..\SearchScopes,DefaultScope = {6A1806CD-94D4-4689-BA73-E35EA1EA9990}
      IE - HKU\S-1-5-21-57989841-1708537768-1417001333-1005\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7&rlz=1I7MOOI_es
      IE - HKU\S-1-5-21-57989841-1708537768-1417001333-1005\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0


      ========== FireFox ==========

      FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\WINDOWS\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
      FF - HKLM\Software\MozillaPlugins\@Google.com/GoogleEarthPlugin: C:\Archivos de programa\Google\Google Earth\plugin\npgeplugin.dll (Google)
      FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Archivos de programa\Microsoft Silverlight\4.1.10329.0\npctrl.dll ( Microsoft Corporation)
      FF - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeLive,version=1.3: C:\Archivos de programa\Microsoft\Office Live\npOLW.dll (Microsoft Corp.)
      FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
      FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Archivos de programa\Google\Update\1.3.21.123\npGoogleUpdate3.dll (Google Inc.)
      FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Archivos de programa\Google\Update\1.3.21.123\npGoogleUpdate3.dll (Google Inc.)
      FF - HKLM\Software\MozillaPlugins\@veetle.com/veetleCorePlugin,version=0.9.18: C:\Archivos de programa\Veetle\plugins\npVeetle.dll (Veetle Inc)
      FF - HKLM\Software\MozillaPlugins\@veetle.com/veetlePlayerPlugin,version=0.9.18: C:\Archivos de programa\Veetle\Player\npvlc.dll (Veetle Inc)
      FF - HKLM\Software\MozillaPlugins\@zylom.com/ZylomGamesPlayer: C:\Documents and Settings\All Users\Datos de programa\Zylom\ZylomGamesPlayer\npzylomgamesplayer.dll (Zylom)

      FF - HKEY_LOCAL_MACHINE\software\mozilla\Thunderbird\Extensions\\[email protected]: C:\Archivos de programa\ESET\ESET Smart Security\Mozilla Thunderbird


      O1 HOSTS File: ([2013/01/17 16:46:39 | 000,000,027 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
      O1 - Hosts: 127.0.0.1 localhost
      O2 - BHO: (Adobe PDF Link Helper) - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Archivos de programa\Archivos comunes\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
      O2 - BHO: (Conduit Engine) - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Archivos de programa\ConduitEngine\ConduitEngine.dll (Conduit Ltd.)
      O2 - BHO: (Windows Live Aplicación auxiliar de inicio de sesión) - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Archivos de programa\Archivos comunes\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
      O2 - BHO: (Easy Photo Print) - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Archivos de programa\Epson Software\Easy Photo Print\EPTBL.dll (SEIKO EPSON CORPORATION / CyCom Technology Corp.)
      O3 - HKLM\..\Toolbar: (Easy Photo Print) - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Archivos de programa\Epson Software\Easy Photo Print\EPTBL.dll (SEIKO EPSON CORPORATION / CyCom Technology Corp.)
      O4 - HKLM..\Run: [EEventManager] C:\Archivos de programa\Epson Software\Event Manager\EEventManager.exe (SEIKO EPSON CORPORATION)
      O4 - HKLM..\Run: [OpwareSE2] C:\Archivos de programa\ScanSoft\OmniPageSE2.0\OpwareSE2.exe (ScanSoft, Inc.)
      O4 - HKU\S-1-5-21-57989841-1708537768-1417001333-1005..\Run: [IndxStoreSvr_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] C:\Archivos de programa\Archivos comunes\Nero\Lib\NMIndexStoreSvr.exe (Nero AG)
      O4 - HKU\S-1-5-21-57989841-1708537768-1417001333-1005..\Run: [lollipop] c:\documents and settings\vecino\configuración local\datos de programa\lollipop\lollipop.exe ()
      O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
      O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
      O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
      O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
      O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
      O7 - HKU\.DEFAULT\Software\Policies\Microsoft\Internet Explorer\Control Panel present
      O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
      O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
      O7 - HKU\S-1-5-18\Software\Policies\Microsoft\Internet Explorer\Control Panel present
      O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
      O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
      O7 - HKU\S-1-5-19\Software\Policies\Microsoft\Internet Explorer\Control Panel present
      O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 149
      O7 - HKU\S-1-5-20\Software\Policies\Microsoft\Internet Explorer\Control Panel present
      O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
      O7 - HKU\S-1-5-21-57989841-1708537768-1417001333-1005\Software\Policies\Microsoft\Internet Explorer\Control Panel present
      O7 - HKU\S-1-5-21-57989841-1708537768-1417001333-1005\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
      O7 - HKU\S-1-5-21-57989841-1708537768-1417001333-1005\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
      O7 - HKU\S-1-5-21-57989841-1708537768-1417001333-1005\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
      O8 - Extra context menu item: Google Sidewiki... - res://C:\Archivos de programa\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_950DF09FAB501E03.dll/cmsidewiki.html File not found
      O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\WINDOWS\system32\nwprovau.dll (Microsoft Corporation)
      O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_18-windows-i586.cab (Java Plug-in 1.6.0_18)
      O16 - DPF: {CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab (Java Plug-in 1.6.0_17)
      O16 - DPF: {CAFEEFAC-0016-0000-0018-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_18-windows-i586.cab (Java Plug-in 1.6.0_18)
      O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_18-windows-i586.cab (Java Plug-in 1.6.0_18)
      O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 62.42.230.24 62.42.63.52
      O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{56D52A62-FBF4-4188-A168-94562CDF8545}: DhcpNameServer = 62.42.230.24 62.42.63.52
      O18 - Protocol\Handler\ipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Archivos de programa\Archivos comunes\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
      O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Archivos de programa\Archivos comunes\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
      O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Archivos de programa\Archivos comunes\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
      O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Archivos de programa\Archivos comunes\Microsoft Shared\Help\hxds.dll (Microsoft Corporation)
      O18 - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\Archivos de programa\Archivos comunes\Microsoft Shared\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)
      O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
      O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) - C:\WINDOWS\system32\userinit.exe (Microsoft Corporation)
      O24 - Desktop Components:0 (Mi página de inicio actual) - About:Home
      O24 - Desktop WallPaper: C:\Documents and Settings\VECINO\Configuración local\Datos de programa\Microsoft\Wallpaper1.bmp
      O24 - Desktop BackupWallPaper: C:\Documents and Settings\VECINO\Configuración local\Datos de programa\Microsoft\Wallpaper1.bmp
      O28 - HKLM ShellExecuteHooks: {56F9679E-7826-4C84-81F3-532071A8BCC5} - C:\Archivos de programa\Windows Desktop Search\MSNLNamespaceMgr.dll (Microsoft Corporation)
      O28 - HKLM ShellExecuteHooks: {AEB6717E-7E19-11d0-97EE-00C04FD91972} - No CLSID value found.
      O30 - LSA: Authentication Packages - (nwprovau) - C:\WINDOWS\System32\nwprovau.dll (Microsoft Corporation)
      O32 - HKLM CDRom: AutoRun - 1
      O32 - AutoRun File - [2010/03/26 17:18:28 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
      O34 - HKLM BootExecute: (autocheck autochk *)
      O35 - HKLM\..comfile [open] -- "%1" %*
      O35 - HKLM\..exefile [open] -- "%1" %*
      O37 - HKLM\...com [@ = comfile] -- "%1" %*
      O37 - HKLM\...exe [@ = exefile] -- "%1" %*
      O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
      O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)

      NetSvcs: 6to4 - File not found
      NetSvcs: HidServ - %SystemRoot%\System32\hidserv.dll File not found
      NetSvcs: Ias - File not found
      NetSvcs: Iprip - File not found
      NetSvcs: Irmon - File not found
      NetSvcs: Nwsapagent - File not found
      NetSvcs: UxTuneUp - C:\WINDOWS\system32\uxtuneup.dll (TuneUp Software GmbH)
      NetSvcs: WmdmPmSp - File not found

      MsConfig - StartUpFolder: C:^Documents and Settings^All Users^Menú Inicio^Programas^Inicio^Actualizar la licencia de ESET.lnk - - File not found
      MsConfig - StartUpFolder: C:^Documents and Settings^All Users^Menú Inicio^Programas^Inicio^Windows Search.lnk - C:\Archivos de programa\Windows Desktop Search\WindowsSearch.exe - (Microsoft Corporation)
      MsConfig - StartUpFolder: C:^Documents and Settings^Patri^Menú Inicio^Programas^Inicio^Registros Seagate 2GE3WKC6.lnk - C:\Documents and Settings\Patri\Datos de programa\Leadertech\PowerRegister\Registros Seagate 2GE3WKC6.exe - (Leader Technologies/Seagate)
      MsConfig - StartUpReg: Adobe ARM - hkey= - key= - C:\Archivos de programa\Archivos comunes\Adobe\ARM\1.0\AdobeARM.exe (Adobe Systems Incorporated)
      MsConfig - StartUpReg: Adobe Reader Speed Launcher - hkey= - key= - C:\Archivos de programa\Adobe\Reader 9.0\Reader\Reader_sl.exe (Adobe Systems Incorporated)
      MsConfig - StartUpReg: CTFMON.EXE - hkey= - key= - File not found
      MsConfig - StartUpReg: GrooveMonitor - hkey= - key= - C:\Archivos de programa\Microsoft Office\Office12\GrooveMonitor.exe (Microsoft Corporation)
      MsConfig - StartUpReg: igfxhkcmd - hkey= - key= - File not found
      MsConfig - StartUpReg: igfxpers - hkey= - key= - File not found
      MsConfig - StartUpReg: igfxtray - hkey= - key= - File not found
      MsConfig - StartUpReg: IMJPMIG8.1 - hkey= - key= - C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE (Microsoft Corporation)
      MsConfig - StartUpReg: IndxStoreSvr_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA} - hkey= - key= - C:\Archivos de programa\Archivos comunes\Nero\Lib\NMIndexStoreSvr.exe (Nero AG)
      MsConfig - StartUpReg: NBKeyScan - hkey= - key= - C:\Archivos de programa\Nero\Nero8\Nero BackItUp\NBKeyScan.exe (Nero AG)
      MsConfig - StartUpReg: NeroFilterCheck - hkey= - key= - C:\Archivos de programa\Archivos comunes\Nero\Lib\NeroCheck.exe (Nero AG)
      MsConfig - StartUpReg: OpwareSE2 - hkey= - key= - C:\Archivos de programa\ScanSoft\OmniPageSE2.0\OpwareSE2.exe (ScanSoft, Inc.)
      MsConfig - StartUpReg: PHIME2002A - hkey= - key= - File not found
      MsConfig - StartUpReg: PHIME2002ASync - hkey= - key= - File not found
      MsConfig - StartUpReg: SMSERIAL - hkey= - key= - C:\Archivos de programa\Motorola\SMSERIAL\sm56hlpr.exe (Motorola Inc.)
      MsConfig - StartUpReg: SoundMan - hkey= - key= - C:\WINDOWS\SOUNDMAN.EXE (Realtek Semiconductor Corp.)
      MsConfig - StartUpReg: USBToolTip - hkey= - key= - C:\Archivos de programa\Pinnacle\Shared files\Programs\USBTip\USBTip.exe (Pinnacle Systems GmbH)
      MsConfig - State: "system.ini" - 0
      MsConfig - State: "win.ini" - 0
      MsConfig - State: "bootini" - 0
      MsConfig - State: "services" - 0
      MsConfig - State: "startup" - 2

      CREATERESTOREPOINT
      Restore point Set: OTL Restore Point

      ========== Files/Folders - Created Within 30 Days ==========

      [2013/01/17 17:17:31 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\VECINO\Mis documentos\OTL.exe
      [2013/01/17 17:04:44 | 000,000,000 | ---D | C] -- C:\WINDOWS\SxsCaPendDel
      [2013/01/17 16:34:23 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\VECINO\Recent
      [2013/01/17 16:33:41 | 000,000,000 | RHSD | C] -- C:\cmdcons
      [2013/01/17 16:24:27 | 000,000,000 | ---D | C] -- C:\WINDOWS\erdnt
      [2013/01/17 16:13:18 | 000,000,000 | ---D | C] -- C:\WINDOWS\ServicePackFiles
      [2013/01/17 16:12:46 | 000,032,866 | ---- | C] (Smart Link) -- C:\WINDOWS\slrundll.exe
      [2013/01/17 00:05:55 | 000,033,616 | ---- | C] (GFI Software) -- C:\WINDOWS\System32\drivers\gfiark.sys
      [2013/01/16 23:41:31 | 000,138,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\afd.sys
      [2013/01/16 23:41:30 | 000,361,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tcpip.sys
      [2013/01/16 23:41:30 | 000,248,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mswsock.dll
      [2013/01/16 23:41:30 | 000,149,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dnsapi.dll
      [2013/01/16 23:41:30 | 000,045,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dnsrslvr.dll
      [2013/01/16 23:18:30 | 000,734,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\lsasrv.dll
      [2013/01/16 23:05:23 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\packager.exe
      [2013/01/16 23:02:23 | 000,758,784 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\vgx.dll
      [2013/01/16 23:00:27 | 000,105,984 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\url.dll
      [2013/01/16 23:00:18 | 000,522,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\jsdbgui.dll
      [2013/01/16 22:55:40 | 000,010,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ndistapi.sys
      [2013/01/16 22:54:44 | 000,045,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wab.exe
      [2013/01/16 22:44:20 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Datos de programa\Ad-Aware Antivirus
      [2013/01/16 22:40:11 | 000,000,000 | ---D | C] -- C:\Documents and Settings\VECINO\Datos de programa\LavasoftStatistics
      [2013/01/16 2237 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Datos de programa\Lavasoft
      [2013/01/16 22:08:02 | 000,000,000 | ---D | C] -- C:\Documents and Settings\VECINO\Configuración local\Datos de programa\Downloaded Installations
      [2013/01/16 22:07:48 | 000,013,560 | ---- | C] (GFI Software) -- C:\WINDOWS\System32\drivers\gfibto.sys
      [2013/01/16 22:07:23 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Datos de programa\blekko toolbars
      [2013/01/16 22:07:08 | 000,000,000 | ---D | C] -- C:\Documents and Settings\VECINO\Datos de programa\adawaretb
      [2013/01/16 22:02:53 | 000,000,000 | ---D | C] -- C:\Documents and Settings\VECINO\Datos de programa\Ad-Aware Antivirus
      [2013/01/16 20:50:17 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Datos de programa\Spybot - Search & Destroy
      [2013/01/16 20:41:48 | 000,000,000 | ---D | C] -- C:\Documents and Settings\VECINO\Datos de programa\Malwarebytes
      [2013/01/16 20:41:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Datos de programa\Malwarebytes
      [2013/01/16 16:53:55 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menú Inicio\Programas\Windows Live
      [2013/01/15 20:38:30 | 000,000,000 | ---D | C] -- C:\Documents and Settings\VECINO\Datos de programa\Windows Search
      [2013/01/15 20:30:05 | 000,000,000 | ---D | C] -- C:\Documents and Settings\VECINO\Configuración local\Datos de programa\Lollipop
      [2013/01/15 20:30:02 | 000,000,000 | ---D | C] -- C:\Documents and Settings\VECINO\Datos de programa\Funmoods
      [2013/01/14 16:13:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\VECINO\Datos de programa\Skype
      [2013/01/14 16:13:00 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Datos de programa\Skype
      [2013/01/14 1627 | 000,000,000 | ---D | C] -- C:\Documents and Settings\VECINO\Tracing
      [2013/01/14 14:37:36 | 000,000,000 | ---D | C] -- C:\Free Chess
      [2013/01/14 14:33:41 | 000,000,000 | ---D | C] -- C:\Archivos de programa\JuegosMania
      [2013/01/14 14:30:26 | 000,290,816 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\LcAIns34.exe
      [2013/01/14 14:26:10 | 000,000,000 | ---D | C] -- C:\Documents and Settings\VECINO\Datos de programa\Zylom
      [2013/01/14 14:24:40 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Datos de programa\Zylom
      [2 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

      ========== Files - Modified Within 30 Days ==========

      [2013/01/17 17:25:00 | 000,000,488 | -H-- | M] () -- C:\WINDOWS\tasks\User_Feed_Synchronization-{07B8CB90-3ABB-4854-B3C2-D428A90E46F8}.job
      [2013/01/17 17:17:32 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\VECINO\Mis documentos\OTL.exe
      [2013/01/17 17:14:57 | 000,001,034 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
      [2013/01/17 17:14:50 | 002,297,128 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
      [2013/01/17 17:14:32 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
      [2013/01/17 17:03:50 | 000,001,374 | ---- | M] () -- C:\WINDOWS\imsins.BAK
      [2013/01/17 16:46:39 | 000,000,027 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\hosts
      [2013/01/17 16:33:47 | 000,000,327 | RHS- | M] () -- C:\boot.ini
      [2013/01/17 16:12:49 | 000,032,866 | ---- | M] (Smart Link) -- C:\WINDOWS\slrundll.exe
      [2013/01/17 15:36:55 | 000,532,250 | ---- | M] () -- C:\WINDOWS\System32\perfh00A.dat
      [2013/01/17 15:36:55 | 000,443,922 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
      [2013/01/17 15:36:55 | 000,101,504 | ---- | M] () -- C:\WINDOWS\System32\perfc00A.dat
      [2013/01/17 15:36:55 | 000,072,180 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
      [2013/01/17 15:35:01 | 000,001,038 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
      [2013/01/17 15:21:25 | 000,000,423 | ---- | M] () -- C:\WINDOWS\wininit.ini
      [2013/01/16 22:07:44 | 000,013,560 | ---- | M] (GFI Software) -- C:\WINDOWS\System32\drivers\gfibto.sys
      [2013/01/16 20:05:51 | 000,000,069 | ---- | M] () -- C:\WINDOWS\NeroDigital.ini
      [2013/01/16 17:30:19 | 000,014,336 | ---- | M] () -- C:\Documents and Settings\VECINO\Configuración local\Datos de programa\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
      [2013/01/15 20:29:57 | 000,031,465 | ---- | M] () -- C:\Documents and Settings\VECINO\Configuración local\Datos de programa\funmoods.crx
      [2013/01/14 14:30:26 | 000,290,816 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\LcAIns34.exe
      [2013/01/14 14:30:24 | 000,074,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\ST6UNST.EXE
      [2013/01/12 19:47:24 | 000,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
      [2 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

      ========== Files Created - No Company Name ==========

      [2013/01/17 17:03:49 | 000,001,374 | ---- | C] () -- C:\WINDOWS\imsins.BAK
      [2013/01/17 16:33:47 | 000,000,211 | ---- | C] () -- C:\Boot.bak
      [2013/01/17 16:33:43 | 000,260,272 | RHS- | C] () -- C:\cmldr
      [2013/01/16 22:55:10 | 000,003,072 | ---- | C] () -- C:\WINDOWS\System32\iacenc.dll
      [2013/01/16 22:55:10 | 000,003,072 | ---- | C] () -- C:\WINDOWS\System32\dllcache\iacenc.dll
      [2013/01/16 21:25:22 | 000,000,423 | ---- | C] () -- C:\WINDOWS\wininit.ini
      [2013/01/15 20:30:02 | 000,031,465 | ---- | C] () -- C:\Documents and Settings\VECINO\Configuración local\Datos de programa\funmoods.crx
      [2011/01/17 17:00:48 | 000,000,060 | ---- | C] () -- C:\Documents and Settings\VECINO\Datos de programa\default.pls
      [2010/11/30 01:03:47 | 000,014,336 | ---- | C] () -- C:\Documents and Settings\VECINO\Configuración local\Datos de programa\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
      [2010/11/20 14:07:39 | 000,000,086 | ---- | C] () -- C:\Documents and Settings\VECINO\DelF1E.bat
      [2010/10/14 15:06:51 | 000,258,072 | ---- | C] () -- C:\Documents and Settings\LocalService\Configuración local\Datos de programa\FontCache3.0.0.0.dat

      ========== ZeroAccess Check ==========

      [2010/03/26 17:21:05 | 000,000,227 | RHS- | M] () -- C:\WINDOWS\assembly\Desktop.ini

      [HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

      [HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

      [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
      "" = %SystemRoot%\system32\shdocvw.dll -- [2008/04/14 12:00:00 | 001,499,648 | ---- | M] (Microsoft Corporation)
      "ThreadingModel" = Apartment

      [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
      "" = %systemroot%\system32\wbem\fastprox.dll -- [2009/08/12 21:27:50 | 000,473,600 | ---- | M] (Microsoft Corporation)
      "ThreadingModel" = Free

      [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
      "" = %systemroot%\system32\wbem\wbemess.dll -- [2008/04/14 12:00:00 | 000,273,920 | ---- | M] (Microsoft Corporation)
      "ThreadingModel" = Both

      ========== LOP Check ==========

      [2010/03/26 17:33:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrador\Datos de programa\Windows Desktop Search
      [2013/01/16 22:44:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Datos de programa\Ad-Aware Antivirus
      [2013/01/16 22:07:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Datos de programa\blekko toolbars
      [2011/01/06 11:49:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Datos de programa\EPSON
      [2010/11/20 13:29:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Datos de programa\ESET
      [2010/12/12 18:13:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Datos de programa\Pinnacle
      [2010/04/13 15:13:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Datos de programa\Pinnacle Studio Ultimate Collection
      [2010/04/06 10:19:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Datos de programa\Seagate
      [2010/04/08 15:30:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Datos de programa\SSScanAppDataDir
      [2010/04/08 15:30:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Datos de programa\SSScanWizard
      [2010/12/12 18:35:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Datos de programa\TuneUp Software
      [2011/01/06 11:43:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Datos de programa\UDL
      [2013/01/14 14:26:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Datos de programa\Zylom
      [2010/03/29 19:36:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Patri\Datos de programa\CyberDefender
      [2011/04/05 19:41:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Patri\Datos de programa\Epson
      [2010/03/26 21:41:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Patri\Datos de programa\ESET
      [2010/04/06 10:18:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Patri\Datos de programa\Leadertech
      [2010/04/16 22:05:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Patri\Datos de programa\PhotoFiltre Studio X
      [2010/10/19 18:24:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Patri\Datos de programa\PriceGong
      [2010/04/08 15:31:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Patri\Datos de programa\ScanSoft
      [2010/04/12 20:20:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Patri\Datos de programa\Windows Search
      [2013/01/17 00:05:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\VECINO\Datos de programa\Ad-Aware Antivirus
      [2013/01/16 22:07:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\VECINO\Datos de programa\adawaretb
      [2010/12/01 19:29:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\VECINO\Datos de programa\Canon
      [2011/01/06 12:05:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\VECINO\Datos de programa\Epson
      [2010/11/20 14:09:37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\VECINO\Datos de programa\ESET
      [2013/01/15 20:31:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\VECINO\Datos de programa\Funmoods
      [2010/12/12 18:36:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\VECINO\Datos de programa\TuneUp Software
      [2013/01/15 20:38:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\VECINO\Datos de programa\Windows Search
      [2013/01/14 14:26:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\VECINO\Datos de programa\Zylom

      ========== Purity Check ==========



      ========== Custom Scans ==========

      < %systemroot%\System32\config\*.sav >
      [2010/03/26 14:01:31 | 000,094,208 | ---- | M] () -- C:\WINDOWS\System32\config\default.sav
      [2010/03/26 14:01:31 | 001,093,632 | ---- | M] () -- C:\WINDOWS\System32\config\software.sav
      [2010/03/26 14:01:31 | 000,495,616 | ---- | M] () -- C:\WINDOWS\System32\config\system.sav

      < %SYSTEMDRIVE%\*.* >
      [2010/03/26 17:18:28 | 000,000,000 | ---- | M] () -- C:\AUTOEXEC.BAT
      [2010/11/20 13:32:04 | 000,000,211 | ---- | M] () -- C:\Boot.bak
      [2013/01/17 16:33:47 | 000,000,327 | RHS- | M] () -- C:\boot.ini
      [2008/04/14 12:00:00 | 000,004,952 | RHS- | M] () -- C:\Bootfont.bin
      [2004/08/03 23:00:00 | 000,260,272 | RHS- | M] () -- C:\cmldr
      [2010/03/26 17:18:28 | 000,000,000 | ---- | M] () -- C:\CONFIG.SYS
      [2010/03/26 17:18:28 | 000,000,000 | RHS- | M] () -- C:\IO.SYS
      [2010/03/26 17:18:28 | 000,000,000 | RHS- | M] () -- C:\MSDOS.SYS
      [2008/04/14 12:00:00 | 000,047,564 | RHS- | M] () -- C:\NTDETECT.COM
      [2008/04/14 12:00:00 | 000,251,168 | RHS- | M] () -- C:\ntldr
      [2013/01/17 17:14:24 | 1594,884,096 | -HS- | M] () -- C:\pagefile.sys
      [2011/02/24 19:30:54 | 000,000,021 | ---- | M] () -- C:\Uni.dat

      < %appdata%\* >
      [2011/02/17 19:32:52 | 000,000,060 | ---- | M] () -- C:\Documents and Settings\VECINO\Datos de programa\default.pls
      [2010/03/26 13:03:36 | 000,000,062 | -HS- | M] () -- C:\Documents and Settings\VECINO\Datos de programa\desktop.ini

      < End of report >

    2. #2
      Usuario Avatar de Sconvix
      Registrado
      ene 2009
      Ubicación
      Luxemburgo
      Mensajes
      3

      Re: Dichoso Lollipop

      OTL Extras logfile created on: 17/01/2013 05:17:49 p.m. - Run 1
      OTL by OldTimer - Version 3.2.69.0 Folder = C:\Documents and Settings\VECINO\Mis documentos
      Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
      Internet Explorer (Version = 8.0.6001.18702)
      Locale: 00002C0A | Country: Argentina | Language: ESS | Date Format: dd/MM/yyyy

      1014,42 Mb Total Physical Memory | 403,85 Mb Available Physical Memory | 39,81% Memory free
      2,38 Gb Paging File | 1,89 Gb Available in Paging File | 79,28% Paging File free
      Paging file location(s): C:\pagefile.sys 1521 3048 [binary data]

      %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Archivos de programa
      Drive C: | 74,52 Gb Total Space | 18,56 Gb Free Space | 24,91% Space Free | Partition Type: NTFS

      Computer Name: WINDOWS-D528602 | User Name: VECINO | Logged in as Administrator.
      Boot Mode: Normal | Scan Mode: All users
      Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

      ========== Extra Registry (SafeList) ==========


      ========== File Associations ==========

      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
      .cpl [@ = cplfile] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
      .url [@ = InternetShortcut] -- rundll32.exe ieframe.dll,OpenURL %l

      ========== Shell Spawning ==========

      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
      batfile [open] -- "%1" %*
      cmdfile [open] -- "%1" %*
      comfile [open] -- "%1" %*
      cplfile [cplopen] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
      exefile [open] -- "%1" %*
      InternetShortcut [open] -- rundll32.exe ieframe.dll,OpenURL %l
      piffile [open] -- "%1" %*
      regfile [merge] -- Reg Error: Key error.
      scrfile [config] -- "%1"
      scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
      scrfile [open] -- "%1" /S
      txtfile [edit] -- Reg Error: Key error.
      Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
      Directory [AddToPlaylistVLC] -- "C:\Archivos de programa\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" ()
      Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
      Directory [PlayWithVLC] -- "C:\Archivos de programa\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" ()
      Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
      Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
      Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

      ========== Security Center Settings ==========

      [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
      "FirstRunDisabled" = 1
      "AntiVirusDisableNotify" = 0
      "FirewallDisableNotify" = 0
      "UpdatesDisableNotify" = 0
      "AntiVirusOverride" = 1
      "FirewallOverride" = 0

      [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

      [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]

      [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]

      [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]

      [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]

      [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]

      [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]

      [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]

      [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]

      [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]

      [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]

      [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]

      [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]

      [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]

      [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]

      ========== System Restore Settings ==========

      [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
      "DisableSR" = 0

      [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Sr]
      "Start" = 0

      [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SrService]
      "Start" = 2

      ========== Firewall Settings ==========

      [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall]

      [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile]

      [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\StandardProfile]

      [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
      "EnableFirewall" = 1

      [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
      "EnableFirewall" = 1

      [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]

      ========== Authorized Applications List ==========

      [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
      "%windir%\Network Diagnostic\xpnetdiag.exe" = %windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000 -- (Microsoft Corporation)
      "%windir%\system32\sessmgr.exe" = %windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019 -- (Microsoft Corporation)
      "C:\Archivos de programa\Windows Live\Sync\WindowsLiveSync.exe" = C:\Archivos de programa\Windows Live\Sync\WindowsLiveSync.exe:*:Enabled:Windows Live Sync -- (Microsoft Corporation)
      "C:\Archivos de programa\Windows Live\Messenger\msnmsgr.exe" = C:\Archivos de programa\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger -- (Microsoft Corporation)

      [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
      "%windir%\Network Diagnostic\xpnetdiag.exe" = %windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000 -- (Microsoft Corporation)
      "%windir%\system32\sessmgr.exe" = %windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019 -- (Microsoft Corporation)
      "C:\Archivos de programa\Microsoft Office\Office12\OUTLOOK.EXE" = C:\Archivos de programa\Microsoft Office\Office12\OUTLOOK.EXE:*:Enabled:Microsoft Office Outlook -- (Microsoft Corporation)
      "C:\Archivos de programa\Microsoft Office\Office12\GROOVE.EXE" = C:\Archivos de programa\Microsoft Office\Office12\GROOVE.EXE:*:Enabled:Microsoft Office Groove -- (Microsoft Corporation)
      "C:\Archivos de programa\Microsoft Office\Office12\ONENOTE.EXE" = C:\Archivos de programa\Microsoft Office\Office12\ONENOTE.EXE:*:Enabled:Microsoft Office OneNote -- (Microsoft Corporation)
      "C:\Archivos de programa\Windows Live\Sync\WindowsLiveSync.exe" = C:\Archivos de programa\Windows Live\Sync\WindowsLiveSync.exe:*:Enabled:Windows Live Sync -- (Microsoft Corporation)
      "C:\Archivos de programa\Windows Live\Messenger\msnmsgr.exe" = C:\Archivos de programa\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger -- (Microsoft Corporation)
      "C:\Archivos de programa\Epson Software\Event Manager\EEventManager.exe" = C:\Archivos de programa\Epson Software\Event Manager\EEventManager.exe:*:Enabled:EEventManager Application -- (SEIKO EPSON CORPORATION)


      ========== HKEY_LOCAL_MACHINE Uninstall List ==========

      [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
      "{03B8AA32-F23C-4178-B8E6-09ECD07EAA47}" = Epson Event Manager
      "{1FE28984-90B9-46B1-ABB1-75D1F4B321FE}" = Microsoft .NET Framework Service Pack 3 (español) v1.0.3705
      "{205C6BDD-7B73-42DE-8505-9A093F35A238}" = Herramienta de carga de Windows Live
      "{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}" = MSVCRT
      "{26A24AE4-039D-4CA4-87B4-2F83216017F0}" = Java(TM) 6 Update 17
      "{26A24AE4-039D-4CA4-87B4-2F83216017FF}" = Java(TM) 6 Update 18
      "{2B83A043-BA8C-4164-98AA-29529D0BE756}" = Windows Live Essentials
      "{3175E049-F9A9-4A3D-8F19-AC9FB04514D1}" = Windows Live Communications Platform
      "{350C9C0A-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
      "{3921A67A-5AB1-4E48-9444-C71814CF3027}" = VCRedistSetup
      "{39F58DDB-B2B8-4B86-AF20-4706A80EB30D}" = Epson Easy Photo Print 2
      "{3E31400D-274E-4647-916C-2CACC3741799}" = EpsonNet Print
      "{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
      "{56C049BE-79E9-4502-BEA7-9754A3E60F9B}" = neroxml
      "{57F0ED40-8F11-41AA-B926-4A66D0D1A9CC}" = Microsoft Office Live Add-in 1.3
      "{5A3C1721-F8ED-11E0-8AFB-B8AC6F97B88E}" = Google Earth
      "{6DE721A5-5E89-4D74-994C-652BB3C0672E}" = Controlador de Pinnacle Video
      "{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
      "{7593234B-2AEB-4FC9-B02D-C9B30D86084C}" = Windows Live Asistente para el inicio de sesión
      "{79D5997E-BF79-48BB-8B41-9BE59C15C2D7}" = OmniPage SE
      "{83169D43-4660-4347-BC95-E9D6E6BE65CE}" = Paquete de idioma de Microsoft .NET Framework 1.1 Service Pack 1 - ESN
      "{85AC0FFA-643D-3103-9310-7086ECB0C36C}" = Paquete de idioma de Microsoft .NET Framework 2.0 Service Pack 2 - ESN
      "{8924FD04-AFF1-4387-B08B-6A979485F2BD}" = Windows Live Call
      "{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
      "{8A708DD8-A5E6-11D4-A706-000629E95E20}" = Intel(R) Graphics Media Accelerator Driver for Mobile
      "{90120000-0010-0C0A-0000-0000000FF1CE}" = Microsoft Software Update for Web Folders (Spanish) 12
      "{90120000-0015-0C0A-0000-0000000FF1CE}" = Microsoft Office Access MUI (Spanish) 2007
      "{90120000-0015-0C0A-0000-0000000FF1CE}_ENTERPRISE_{91A7F72A-3273-4C1E-8BE0-BC9DD0D9345C}" = 2007 Microsoft Office Suite Service Pack 2 (SP2)
      "{90120000-0016-0C0A-0000-0000000FF1CE}" = Microsoft Office Excel MUI (Spanish) 2007
      "{90120000-0016-0C0A-0000-0000000FF1CE}_ENTERPRISE_{91A7F72A-3273-4C1E-8BE0-BC9DD0D9345C}" = 2007 Microsoft Office Suite Service Pack 2 (SP2)
      "{90120000-0018-0C0A-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (Spanish) 2007
      "{90120000-0018-0C0A-0000-0000000FF1CE}_ENTERPRISE_{91A7F72A-3273-4C1E-8BE0-BC9DD0D9345C}" = 2007 Microsoft Office Suite Service Pack 2 (SP2)
      "{90120000-0019-0C0A-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (Spanish) 2007
      "{90120000-0019-0C0A-0000-0000000FF1CE}_ENTERPRISE_{91A7F72A-3273-4C1E-8BE0-BC9DD0D9345C}" = 2007 Microsoft Office Suite Service Pack 2 (SP2)
      "{90120000-001A-0C0A-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (Spanish) 2007
      "{90120000-001A-0C0A-0000-0000000FF1CE}_ENTERPRISE_{91A7F72A-3273-4C1E-8BE0-BC9DD0D9345C}" = 2007 Microsoft Office Suite Service Pack 2 (SP2)
      "{90120000-001B-0C0A-0000-0000000FF1CE}" = Microsoft Office Word MUI (Spanish) 2007
      "{90120000-001B-0C0A-0000-0000000FF1CE}_ENTERPRISE_{91A7F72A-3273-4C1E-8BE0-BC9DD0D9345C}" = 2007 Microsoft Office Suite Service Pack 2 (SP2)
      "{90120000-001F-0403-0000-0000000FF1CE}" = Microsoft Office Proof (Catalan) 2007
      "{90120000-001F-0403-0000-0000000FF1CE}_ENTERPRISE_{4B47C31E-46B0-462B-BEE4-DC383B6A1F2A}" = Microsoft Office SharePoint Designer 2007 Service Pack 2 (SP2)
      "{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
      "{90120000-001F-0409-0000-0000000FF1CE}_ENTERPRISE_{ABDDE972-355B-4AF1-89A8-DA50B7B5C045}" = Microsoft Office SharePoint Designer 2007 Service Pack 2 (SP2)
      "{90120000-001F-040C-0000-0000000FF1CE}" = Microsoft Office Proof (French) 2007
      "{90120000-001F-040C-0000-0000000FF1CE}_ENTERPRISE_{F580DDD5-8D37-4998-968E-EBB76BB86787}" = Microsoft Office SharePoint Designer 2007 Service Pack 2 (SP2)
      "{90120000-001F-0416-0000-0000000FF1CE}" = Microsoft Office Proof (Portuguese (Brazil)) 2007
      "{90120000-001F-0416-0000-0000000FF1CE}_ENTERPRISE_{75EBE365-7FC5-4720-A7D3-804BF550D1BC}" = Microsoft Office SharePoint Designer 2007 Service Pack 2 (SP2)
      "{90120000-001F-042D-0000-0000000FF1CE}" = Microsoft Office Proof (Basque) 2007
      "{90120000-001F-042D-0000-0000000FF1CE}_ENTERPRISE_{E62E1AA9-F2F1-4230-8EC7-5D90ECCDFE1A}" = Microsoft Office SharePoint Designer 2007 Service Pack 2 (SP2)
      "{90120000-001F-0456-0000-0000000FF1CE}" = Microsoft Office Proof (Galician) 2007
      "{90120000-001F-0456-0000-0000000FF1CE}_ENTERPRISE_{D93B4372-B042-4AB2-A657-C5C5C25F8BAC}" = Microsoft Office SharePoint Designer 2007 Service Pack 2 (SP2)
      "{90120000-001F-0C0A-0000-0000000FF1CE}" = Microsoft Office Proof (Spanish) 2007
      "{90120000-001F-0C0A-0000-0000000FF1CE}_ENTERPRISE_{187308AB-5FA7-4F14-9AB9-D290383A10D9}" = Microsoft Office SharePoint Designer 2007 Service Pack 2 (SP2)
      "{90120000-0020-0409-0000-0000000FF1CE}" = Compatibility Pack for the 2007 Office system
      "{90120000-002C-0C0A-0000-0000000FF1CE}" = Microsoft Office Proofing (Spanish) 2007
      "{90120000-0030-0000-0000-0000000FF1CE}" = Microsoft Office Enterprise 2007
      "{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{0B36C6D6-F5D8-4EAF-BF94-4376A230AD5B}" = 2007 Microsoft Office Suite Service Pack 2 (SP2)
      "{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{3D019598-7B59-447A-80AE-815B703B84FF}" = Security Update for Microsoft Office system 2007 (972581)
      "{90120000-0044-0C0A-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (Spanish) 2007
      "{90120000-0044-0C0A-0000-0000000FF1CE}_ENTERPRISE_{91A7F72A-3273-4C1E-8BE0-BC9DD0D9345C}" = 2007 Microsoft Office Suite Service Pack 2 (SP2)
      "{90120000-006E-0C0A-0000-0000000FF1CE}" = Microsoft Office Shared MUI (Spanish) 2007
      "{90120000-006E-0C0A-0000-0000000FF1CE}_ENTERPRISE_{6113C11D-BACA-4D8E-8002-03C8D06FD5E6}" = Microsoft Office SharePoint Designer 2007 Service Pack 2 (SP2)
      "{90120000-00A1-0C0A-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (Spanish) 2007
      "{90120000-00A1-0C0A-0000-0000000FF1CE}_ENTERPRISE_{91A7F72A-3273-4C1E-8BE0-BC9DD0D9345C}" = 2007 Microsoft Office Suite Service Pack 2 (SP2)
      "{90120000-00BA-0C0A-0000-0000000FF1CE}" = Microsoft Office Groove MUI (Spanish) 2007
      "{90120000-00BA-0C0A-0000-0000000FF1CE}_ENTERPRISE_{91A7F72A-3273-4C1E-8BE0-BC9DD0D9345C}" = 2007 Microsoft Office Suite Service Pack 2 (SP2)
      "{90140000-2005-0000-0000-0000000FF1CE}" = Microsoft Office File Validation Add-In
      "{92E4A65F-7007-3357-A69A-167F71A337BD}" = Microsoft .NET Framework 3.5 Language Pack SP1 - esn
      "{95120000-00B9-0409-0000-0000000FF1CE}" = Microsoft Application Error Reporting
      "{953D4586-9A16-495E-BA1F-EE5AA66604DB}" = Windows Live Sync
      "{A1F66FC9-11EE-4F2F-98C9-16F8D1E69FB7}" = Segoe UI
      "{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}" = Microsoft .NET Framework 3.0 Service Pack 2
      "{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
      "{AC76BA86-7AD7-1034-7B44-A94000000001}" = Adobe Reader 9.4.1 - Español
      "{B2544A03-10D0-4E5E-BA69-0362FFC20D18}" = OGA Notifier 2.0.0048.0
      "{B2D55EB8-32C5-4B43-9006-9E97DECBA178}" = Epson Easy Photo Print Plug-in for PMB(Picture Motion Browser)
      "{BDEDB104-4067-3D5E-81F0-DBEBFE856B45}" = Paquete de idioma de Microsoft .NET Framework 3.0 Service Pack 2 - ESN
      "{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2
      "{C4156B59-DD7E-40DF-AF08-E568A27A6409}" = Windows Live Messenger
      "{C8BB4912-12D9-42AE-B571-E580D8CD1B5B}" = TuneUp Utilities 2007
      "{C9D8A041-2963-4B31-8FFC-1500F3DB9293}" = EpsonNet Setup 3.2
      "{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}" = Microsoft .NET Framework 1.1 Service Pack 1
      "{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
      "{D6C9AF27-9414-46C8-B9D8-D878BA041033}" = Nero 8
      "{D8DFA46A-39F7-4368-810D-18AFCFDDAEAF}" = Adobe Shockwave Player
      "{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}" = Microsoft SQL Server 2005 Compact Edition [ENU]
      "{F0E12BBA-AD66-4022-A453-A1C8A0C4D570}" = Microsoft Choice Guard
      "{F9000000-0018-0000-0000-074957833700}" = ABBYY FineReader 9.0 Sprint
      "{FA02ACAC-9E14-4878-A257-92A22A647C2C}" = LG USB Modem Drivers
      "{FB08F381-6533-4108-B7DD-039E11FBC27E}" = Realtek AC'97 Audio
      "ABBYY FineReader 9.0 Sprint" = ABBYY FineReader 9.0 Sprint
      "Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
      "CCleaner" = CCleaner (remove only)
      "CrucigramaJuego Nro 1" = Crucigrama - Juego Nro 1
      "Dominó Profesional 3.0" = Dominó Profesional 3.0
      "ENTERPRISE" = Microsoft Office Enterprise 2007
      "EPSON Scanner" = EPSON Scan
      "EPSON SX420W Series" = EPSON SX420W Series Printer Uninstall
      "EPSON SX420W Series Manual" = EPSON SX420W Series Manual
      "EPSON SX420W Series Network Guide" = Manual de red de EPSON SX420W Series
      "Microsoft .NET Framework 1.1 (1033)" = Microsoft .NET Framework 1.1
      "Microsoft .NET Framework 3.5 Language Pack SP1 - esn" = Paquete de idioma de Microsoft .NET Framework 3.5 SP1 - esn
      "Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
      "MSNINST" = MSN
      "SMSERIAL" = Motorola SM56 Speakerphone Modem
      "Veetle TV" = Veetle TV 0.9.18
      "VLC media player" = VLC media player 1.1.4
      "WinLiveSuite_Wave3" = Windows Live Essentials
      "WinRAR archiver" = Compresor WinRAR

      ========== HKEY_USERS Uninstall List ==========

      [HKEY_USERS\S-1-5-21-57989841-1708537768-1417001333-1005\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
      "lollipop" = Lollipop

      ========== Last 20 Event Log Errors ==========

      [ Application Events ]
      Error - 16/01/2013 02:31:34 p.m. | Computer Name = WINDOWS-D528602 | Source = Application Error | ID = 1000
      Description = Aplicación con errores: free chess.exe, versión: 0.0.0.0, módulo con
      error: ntdll.dll, versión 5.1.2600.5755, dirección de error 0x0001ac4a.

      Error - 16/01/2013 03:52:28 p.m. | Computer Name = WINDOWS-D528602 | Source = Application Hang | ID = 1002
      Description = Aplicación que no responde: iexplore.exe, versión 8.0.6001.18702,
      módulo que no responde hungapp, versión 0.0.0.0, dirección que no responde 0x00000000.

      Error - 16/01/2013 03:54:00 p.m. | Computer Name = WINDOWS-D528602 | Source = crypt32 | ID = 131083
      Description = Error en la extracción de la lista raíz de terceros del archivo .CAB
      actualizado automáticamente: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab>
      con el error: Un certificado requerido no se encuentra dentro del periodo de validez
      cuando se ha realizado la comprobación con el reloj de sistema actual o con la
      marca de fecha y hora en el archivo firmado.

      Error - 16/01/2013 03:54:01 p.m. | Computer Name = WINDOWS-D528602 | Source = crypt32 | ID = 131083
      Description = Error en la extracción de la lista raíz de terceros del archivo .CAB
      actualizado automáticamente: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab>
      con el error: Un certificado requerido no se encuentra dentro del periodo de validez
      cuando se ha realizado la comprobación con el reloj de sistema actual o con la
      marca de fecha y hora en el archivo firmado.

      Error - 16/01/2013 05:41:31 p.m. | Computer Name = WINDOWS-D528602 | Source = Application Hang | ID = 1002
      Description = Aplicación que no responde: mbam.exe, versión 1.70.0.9, módulo que
      no responde hungapp, versión 0.0.0.0, dirección que no responde 0x00000000.

      Error - 16/01/2013 06:58:14 p.m. | Computer Name = WINDOWS-D528602 | Source = Application Hang | ID = 1002
      Description = Aplicación que no responde: iexplore.exe, versión 8.0.6001.18702,
      módulo que no responde hungapp, versión 0.0.0.0, dirección que no responde 0x00000000.

      Error - 16/01/2013 06:58:15 p.m. | Computer Name = WINDOWS-D528602 | Source = Application Hang | ID = 1002
      Description = Aplicación que no responde: iexplore.exe, versión 8.0.6001.18702,
      módulo que no responde hungapp, versión 0.0.0.0, dirección que no responde 0x00000000.

      Error - 16/01/2013 07:24:50 p.m. | Computer Name = WINDOWS-D528602 | Source = Application Hang | ID = 1002
      Description = Aplicación que no responde: iexplore.exe, versión 8.0.6001.18702,
      módulo que no responde hungapp, versión 0.0.0.0, dirección que no responde 0x00000000.

      Error - 17/01/2013 11:16:20 a.m. | Computer Name = WINDOWS-D528602 | Source = Application Hang | ID = 1002
      Description = Aplicación que no responde: DLLSuite.exe, versión 2013.0.0.1004, módulo
      que no responde hungapp, versión 0.0.0.0, dirección que no responde 0x00000000.

      Error - 17/01/2013 11:53:42 a.m. | Computer Name = WINDOWS-D528602 | Source = Application Error | ID = 1000
      Description = Aplicación con errores: free chess.exe, versión: 0.0.0.0, módulo con
      error: ntdll.dll, versión 5.1.2600.6055, dirección de error 0x00019fca.

      [ OSession Events ]
      Error - 31/03/2010 02:23:34 p.m. | Computer Name = WINDOWS-D528602 | Source = Microsoft Office 12 Sessions | ID = 7001
      Description = ID: 0, Application Name: Microsoft Office Word, Application Version:
      12.0.6504.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 13
      seconds with 0 seconds of active time. This session ended with a crash.

      Error - 31/03/2010 02:24:22 p.m. | Computer Name = WINDOWS-D528602 | Source = Microsoft Office 12 Sessions | ID = 7001
      Description = ID: 0, Application Name: Microsoft Office Word, Application Version:
      12.0.6504.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 12
      seconds with 0 seconds of active time. This session ended with a crash.

      Error - 31/03/2010 02:28:06 p.m. | Computer Name = WINDOWS-D528602 | Source = Microsoft Office 12 Sessions | ID = 7001
      Description = ID: 0, Application Name: Microsoft Office Word, Application Version:
      12.0.6504.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 10
      seconds with 0 seconds of active time. This session ended with a crash.

      Error - 31/03/2010 02:28:59 p.m. | Computer Name = WINDOWS-D528602 | Source = Microsoft Office 12 Sessions | ID = 7001
      Description = ID: 0, Application Name: Microsoft Office Word, Application Version:
      12.0.6504.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 12
      seconds with 0 seconds of active time. This session ended with a crash.

      Error - 31/03/2010 02:43:51 p.m. | Computer Name = WINDOWS-D528602 | Source = Microsoft Office 12 Sessions | ID = 7001
      Description = ID: 0, Application Name: Microsoft Office Word, Application Version:
      12.0.6504.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 18
      seconds with 0 seconds of active time. This session ended with a crash.

      Error - 19/04/2010 11:30:25 a.m. | Computer Name = WINDOWS-D528602 | Source = Microsoft Office 12 Sessions | ID = 7001
      Description = ID: 0, Application Name: Microsoft Office Word, Application Version:
      12.0.6504.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 6881
      seconds with 3540 seconds of active time. This session ended with a crash.

      Error - 19/04/2010 03:34:01 p.m. | Computer Name = WINDOWS-D528602 | Source = Microsoft Office 12 Sessions | ID = 7001
      Description = ID: 0, Application Name: Microsoft Office Word, Application Version:
      12.0.6504.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 14479
      seconds with 2400 seconds of active time. This session ended with a crash.

      Error - 19/04/2010 05:24:45 p.m. | Computer Name = WINDOWS-D528602 | Source = Microsoft Office 12 Sessions | ID = 7001
      Description = ID: 0, Application Name: Microsoft Office Word, Application Version:
      12.0.6504.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 10
      seconds with 0 seconds of active time. This session ended with a crash.

      Error - 21/05/2010 03:59:37 p.m. | Computer Name = WINDOWS-D528602 | Source = Microsoft Office 12 Sessions | ID = 7001
      Description = ID: 0, Application Name: Microsoft Office Word, Application Version:
      12.0.6504.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 24
      seconds with 0 seconds of active time. This session ended with a crash.

      Error - 21/05/2010 04:01:20 p.m. | Computer Name = WINDOWS-D528602 | Source = Microsoft Office 12 Sessions | ID = 7001
      Description = ID: 0, Application Name: Microsoft Office Word, Application Version:
      12.0.6504.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 9
      seconds with 0 seconds of active time. This session ended with a crash.

      [ System Events ]
      Error - 17/01/2013 10:32:46 a.m. | Computer Name = WINDOWS-D528602 | Source = Service Control Manager | ID = 7023
      Description = El servicio Actualizaciones automáticas terminó con el error: %%3228369022

      Error - 17/01/2013 10:32:52 a.m. | Computer Name = WINDOWS-D528602 | Source = Service Control Manager | ID = 7031
      Description = El servicio Cola de impresión terminó inesperadamente. Lo ha hecho
      1 veces. Se realizará la siguiente acción correctora en 60000 milisegundos: Reiniciar
      el servicio.

      Error - 17/01/2013 10:35:52 a.m. | Computer Name = WINDOWS-D528602 | Source = Service Control Manager | ID = 7031
      Description = El servicio Cola de impresión terminó inesperadamente. Lo ha hecho
      2 veces. Se realizará la siguiente acción correctora en 60000 milisegundos: Reiniciar
      el servicio.

      Error - 17/01/2013 10:38:52 a.m. | Computer Name = WINDOWS-D528602 | Source = Service Control Manager | ID = 7034
      Description = El servicio Cola de impresión se terminó de manera inesperada. Esto
      ha sucedido 3 veces.

      Error - 17/01/2013 11:07:50 a.m. | Computer Name = WINDOWS-D528602 | Source = Service Control Manager | ID = 7023
      Description = El servicio Actualizaciones automáticas terminó con el error: %%3228369022

      Error - 17/01/2013 1134 a.m. | Computer Name = WINDOWS-D528602 | Source = Service Control Manager | ID = 7023
      Description = El servicio Actualizaciones automáticas terminó con el error: %%3228369022

      Error - 17/01/2013 11:11:04 a.m. | Computer Name = WINDOWS-D528602 | Source = DCOM | ID = 10010
      Description = El servidor {E60687F7-01A1-40AA-86AC-DB1CBF673334} no se registró
      con DCOM dentro del tiempo de espera requerido.

      Error - 17/01/2013 11:16:30 a.m. | Computer Name = WINDOWS-D528602 | Source = Service Control Manager | ID = 7023
      Description = El servicio Actualizaciones automáticas terminó con el error: %%3228369022

      Error - 17/01/2013 11:17:00 a.m. | Computer Name = WINDOWS-D528602 | Source = DCOM | ID = 10010
      Description = El servidor {E60687F7-01A1-40AA-86AC-DB1CBF673334} no se registró
      con DCOM dentro del tiempo de espera requerido.

      Error - 17/01/2013 11:18:32 a.m. | Computer Name = WINDOWS-D528602 | Source = Service Control Manager | ID = 7000
      Description = El servicio adfs no pudo iniciarse debido al siguiente error: %%2


      < End of report >

    3. #3
      Usuario Avatar de Raudron
      Registrado
      sep 2012
      Ubicación
      El Mundo
      Mensajes
      1.467

      Re: Dichoso Lollipop

      Hola Juan

      Por favor, edita los mensajes y borra el reporte de OTL, ya que esa herramienta está reservada para los Expertos. Sólo pega los reportes si un miembro del Staff te lo solicita.

      Las ventanas emergentes corresponden a una infección con Navipromo o Egdaccess.
      Para eliminarlo, realiza lo siguiente:

      Descarga y ejecuta >> Ccleaner.
      • Usando primero su opción de "Limpiador" para borrar cookies, temporales de Internet y todos los archivos que te muestre como obsoletos.
      • Después usa su opción de "Registro" para limpiar todo el registro de Windows (haciendo copia de seguridad).


      Realiza un análisis completo con Eset Online Scanner de la siguiente forma:
      Lo ejecutas.

      Marcas las casillas de Eliminar las amenazas detectadas y Analizar archivos.

      Haces clic en Configuración adicional y ahi marcas las casillas:
      • Analizar en busca de aplicaciones potencialmente indeseables.
      • Analizar en busca de aplicaciones potencialmente peligrosas.
      • Activar la tecnolgía Anti-Stealth.


      Pulsas en Iniciar para que empiece a descargar la base firmas de virus y posteriormente empiece a analizar tu sistema.

      Presioná Lista de las amenazas encontradas.


      Exportá a un archivo de texto.

      Localizar el reporte en C:\Archivos de programa\ESET\ESET Online Scanner\log.txt
      • Descarga >> AT-Destroyer 2.0 (Adwares/Toolbars-Destroyer 2.0) by @Infospyware.
      • Desactiva temporalmente el Antivirus y/o Antispyware.
      • Ejecuta AT-Destroyer. (Si usas Windows Vista o 7 Presiona clic derecho y selecciona "Ejecutar como Administrador.")
      • Aparecerá el Disclaimer, si estás de acuerdo, presiona SI para continuar.
      • Presiona sobre la opción Buscar y Destruir para comenzar el escaneo.
      • AT-Destroyer desconectará el escritorio momentáneamente, esto es normal.
      • Una vez terminado el escaneo, podrás volver a ver el escritorio y se te abrirá un reporte, que deberás copiar en tu próxima respuesta comentando cómo funciona el sistema.(También lo puedes encontrar en C:\AT-Destroyer.log)
      • Inmediatamente debes Reiniciar el equipo.
      Nos traes los reportes de ESET Online Scanner y AT-Destroyer.
      Y nos comentas cómo funciona el ordenador.
      Saludos
      Última edición por Raudron fecha: 17/01/13 a las 12:39:33