• Registrarse
  • Iniciar sesión


  • Resultados 1 al 8 de 8

    Messenger plus for skype es virus?

    Hola gente pues bueno vengo como siempre a causar molestias que es lo que sé hacer, les comento que por razones personales instalé Messenger plus for skype. El punto es que el programa me forzó ...

    1. #1
      Usuario Avatar de kevin179
      Registrado
      ago 2012
      Ubicación
      Xalapa
      Mensajes
      125

      Pregunta Messenger plus for skype es virus?

      Hola gente pues bueno vengo como siempre a causar molestias que es lo que sé hacer, les comento que por razones personales instalé Messenger plus for skype. El punto es que el programa me forzó a instalar la tool bar la cual no se instaló en ninguno de mis navegadores que son chrome e internet explorer 10, no cambió pagina de inicio ni lanzó porquerías de alertas ni anuncios ni nada. La barra no aparece el panel de control para desinstalarla. El sistema es windwos 8 pro.

      El antivirus que tengo en Windows 8 pro es Bitdefender Windows 8 security y lo marcó como limpio, igual que virus total y malwarebytes, no obstante el modulo de firewall de bitdefender bloqueo el proceso de Messenger plus for skype, lo permití un momento y funcionó, luego lo volví a dejar bloqueado.

      Cuando supe de este programa pensé que era un buen sustituto para camtasia pero he leído aquí (apenas ahora) que contiene adaware y opiniones diferidas sobre si este adaware se puede eliminar quitando al patrocinador o no, en mi caso dicho patrocinador no aparece. De hecho he leído aquí que abre puertas traseras e instala otro monton de virus.

      En una maquina con Windows 7 e ie 9 si se instala y se puede desinstalar el patrocinador, pero en la maquina con Windows 8 no se puede desinstalarlo porque no aparece ¿Será Windows 8?, ¿Sigo seguro?, ¿Les mando otro OTL? (La verdad sus análisis de OTL me calman).

      Para variar malwarebytes en modo seguro, bitdefender en modo agresivo y en escaneo completo y modo de rescate desde su "linux" integrado no detectan nada, en la maquina que tiene Windows 7 tengo bullguard y no detectó nadani bloqueo nada como hizo el modulo de firewall IDS de bitdefender (que vale la pena decir viene desactivado por defecto pero yo lo activo para sentirme más seguro).

      En el soporte de bullguard dicen que es una aplicación sin riesgos y que no es dañina, que sólo manda anuncios y que se pueden desactivar, en la maquina con Windows 7 si puso una pagina rara al inicio, la cual desaparecio al desinstalar la toolbar, por lo que no creo que haya problema con la maquina de Windows 7 no me estresa.

      Me estresa la mia ¿Habré vulnerado mi sistema? ¿Habré vulnerado ambos con algo fuerte e incurable? Les agradesco sus atenciones siempre ante mis paranoias, espero si se puede que me anaicen un otl de ambas maquinas lo hagan y gracias por sus atenciones.

      Y aunque sé que no es foro de quejas en bitdefender me dijeron aquí damos soporte a bitdefender lo de más ni lo conocemos y eso de Messenger plus mejor pregúntelo en otro lado, si su sistema se daña n o nos hacemos responsables (Para quien quiera comprárselo)


      Por cierto les quiero mostrar un presente personal en otra parte del foro que es muestra de mi aprecio y deuda con ustedes

      Ediito para aclarar en maquina con windwos 8 chrome e ie 10 no se instaló la tool bar y no sale por ningún lado ni en control panel ni nada ni en revo ni nada. Por tanto el patrocinador no se puede desinstalar. Bitdefender lo bloqueo en su modulo del firewall, virus total, bit y malwarebytes dicen que está limpio (Estoy confundido)
      En la maquina con Windows 7 si se instaló la barra y mandó pagina rara y pop up al quitarla todo volvió a la normalidad, aquí el antivirus es bullguard y no detectó nada ni bloqueo nada.


      ¿Puedo mandarles mis OTL? espero no haberlos enrreddo
      Última edición por kevin179 fecha: 16/02/13 a las 05:50:05 Razón: Facilidad de lectura

    2. #2
      Moderador.
      Avatar de @Tincho
      Registrado
      may 2008
      Ubicación
      Argentina
      Mensajes
      14.701

      Re: Messenger plus for skype es virus?

      Buenas Kevin.



      Si , en el pasado se instalaba un patrocinador, el temible "CID" que tiraba ventanas emergentes cada 30 minutos, era una forma de conseguir el dinero para el desarrollo del Plus; hoy en día lo son las barras y los buscadores. Estrictamente hablando no son Malware, tiene funciones de Adware es decir te muestran propagandas y lo que bloquea bitdefender es la conexión que lanza a su servidor como lo hace por ejemplo el Ccleaner para actualizarse.
      Concluyendo y para darte una respuesta si el programa te hes funcional déjalo sin ningún problema, y desde luego que puede pegar un Log de OTL así lo veo
      Tyny's
      If on your journey, you should encounter God, God will be cut!

      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.

    3. #3
      Usuario Avatar de kevin179
      Registrado
      ago 2012
      Ubicación
      Xalapa
      Mensajes
      125

      Re: Messenger plus for skype es virus?

      Hola Tinys pues creo que si lo voy a necesitar, por que también he tenido que llevar la laptop al trabajo en la escuela para recoger tareas de mis alumnos y desgraciadamente me ganó el tiempo, es decir, tenia que meter una memoria tras otra para pasarles el material y recoger los suyos y ya tenia al otro maestro en la puerta y no dio tiempo a que se escanearan todos los usbs de ellos, metí como cuatro o cinco usbs y creo que dos tenían virus, y los escaneos estuvieron incompletos, parece que bit los captó pero me quedé con la duda desgraciadamente por el momento (soy nocturno) me desvelé mucho haciendo un plan de estudios y necesito dormir un poco para no cagarla con el otl, por ahí si vez algo del recicler byn o cualquier cosa rara me echas un grito, te mando el otl en unas siete horas después de dormir y estaré despierto toda la noche, gracias por que siempre estas ahí, por cierto tienes treinta días o menos para usar lo que te di

    4. #4
      Usuario Avatar de kevin179
      Registrado
      ago 2012
      Ubicación
      Xalapa
      Mensajes
      125

      Re: Messenger plus for skype es virus?

      Hola viejo pego aquí el otl normal y abajo el extra gracias por tu apoyo y perdona la demora realmente estaba cansado

      OTL logfile created on: 16/02/2013 09:58:32 p. m. - Run 2
      OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Alberto\Desktop
      An unknown product (Version = 6.2.9200) - Type = NTWorkstation
      Internet Explorer (Version = 9.10.9200.16484)
      Locale: 0000080A | Country: México | Language: ESM | Date Format: dd/MM/yyyy

      1.94 Gb Total Physical Memory | 0.77 Gb Available Physical Memory | 39.71% Memory free
      4.87 Gb Paging File | 3.67 Gb Available in Paging File | 75.39% Paging File free
      Paging file location(s): c:\pagefile.sys 3000 3000 [binary data]

      %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
      Drive C: | 58.25 Gb Total Space | 23.87 Gb Free Space | 40.98% Space Free | Partition Type: NTFS
      Drive E: | 224.74 Gb Total Space | 32.27 Gb Free Space | 14.36% Space Free | Partition Type: NTFS
      Drive G: | 3.73 Gb Total Space | 0.01 Gb Free Space | 0.16% Space Free | Partition Type: FAT32

      Computer Name: AKTIFFISO | User Name: Alberto | Logged in as Administrator.
      Boot Mode: Normal | Scan Mode: Current user
      Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

      ========== Processes (SafeList) ==========

      PRC - C:\Users\Alberto\Desktop\OTL.exe (OldTimer Tools)
      PRC - C:\Users\Alberto\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe (Microsoft Corporation)
      PRC - C:\Archivos de programa\Microsoft Office 15\root\office15\onenotem.exe (Microsoft Corporation)
      PRC - C:\Archivos de programa\Microsoft Office 15\root\vfs\ProgramFilesCommonX86\Microsoft Shared\OFFICE15\CSISYNCCLIENT.EXE (Microsoft Corporation)
      PRC - C:\Archivos de programa\Bitdefender\Bitdefender Windows 8 Security\vsserv.exe (Bitdefender)
      PRC - C:\Archivos de programa\Bitdefender\Bitdefender Windows 8 Security\bdagent.exe (Bitdefender)
      PRC - C:\Archivos de programa\TuneUp Utilities 2013\TuneUpUtilitiesApp32.exe (TuneUp Software)
      PRC - C:\Archivos de programa\TuneUp Utilities 2013\TuneUpUtilitiesService32.exe (TuneUp Software)
      PRC - C:\Archivos de programa\Yuna Software\Messenger Plus! for Skype\MsgPlusForSkypeService.exe (Yuna Software)
      PRC - C:\Archivos de programa\Microsoft Office 15\ClientX86\integratedoffice.exe (Microsoft Corporation)
      PRC - C:\Archivos de programa\Bitdefender\Bitdefender Windows 8 Security\updatesrv.exe (Bitdefender)
      PRC - C:\Windows\System32\taskhostex.exe (Microsoft Corporation)
      PRC - C:\Windows\explorer.exe (Microsoft Corporation)
      PRC - C:\Archivos de programa\Lenovo\Energy Management\Energy Management.exe (Lenovo (Beijing) Limited)
      PRC - C:\Archivos de programa\Lenovo\Energy Management\utility.exe (Lenovo(beijing) Limited)
      PRC - C:\Windows\System32\RuntimeBroker.exe (Microsoft Corporation)
      PRC - C:\Archivos de programa\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe (Intel Corporation)
      PRC - C:\Archivos de programa\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe (Intel Corporation)
      PRC - C:\Archivos de programa\CONEXANT\cAudioFilterAgent\CAudioFilterAgent.exe (Conexant Systems, Inc.)
      PRC - C:\Archivos de programa\Intel\Intel(R) Management Engine Components\UNS\UNS.exe (Intel Corporation)
      PRC - C:\Archivos de programa\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (Intel Corporation)
      PRC - C:\Windows\System32\CxAudMsg32.exe (Conexant Systems Inc.)
      PRC - C:\Archivos de programa\USB Camera2\VM332STI.EXE (Vimicro)
      PRC - C:\Archivos de programa\ABBYY Business Card Reader 2.0 Light\NetworkLicenseServer.exe (ABBYY)
      PRC - C:\Archivos de programa\ABBYY Screenshot Reader\ScreenshotReader.exe (ABBYY)
      PRC - C:\Archivos de programa\ABBYY Screenshot Reader\NetworkLicenseServer.exe (ABBYY)


      ========== Modules (No Company Name) ==========

      MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\IAStorUtil\f61cb86d40d67f10a44cd46f19f68246\IAStorUtil.ni.dll ()
      MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Windows.Forms\9c95779cc3d65cda80695cabc367476b\System.Windows.Forms.ni.dll ()
      MOD - C:\Archivos de programa\Microsoft Office 15\root\vfs\ProgramFilesCommonX86\Microsoft Shared\OFFICE15\c2r32.dll ()
      MOD - C:\Archivos de programa\Microsoft Office 15\root\vfs\ProgramFilesCommonX86\Microsoft Shared\OFFICE15\AppVIsvStream32.dll ()
      MOD - C:\Archivos de programa\Microsoft Office 15\root\office15\c2r32.dll ()
      MOD - C:\Archivos de programa\Microsoft Office 15\root\office15\appvisvstream32.dll ()
      MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Servf73e6522#\07e482b2b9035605233f2cb72408d6b1\System.ServiceModel.Web.ni.dll ()
      MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\System.IdentityModel\500a5dd33bb40326f8ca43e385513ec2\System.IdentityModel.ni.dll ()
      MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\IAStorDataMcfeeca6f#\ae639f7ba0abe58167f116c6c970514d\IAStorDataMgrSvcInterfaces.ni.dll ()
      MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\IAStorCommon\2158f85dac5dae9e6e4ddc20342769a7\IAStorCommon.ni.dll ()
      MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\SMDiagnostics\89cc9825811c2121acd4e2e12c0ef044\SMDiagnostics.ni.dll ()
      MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Servd1dec626#\9a4fc56833542881e7e451a099562655\System.ServiceModel.Internals.ni.dll ()
      MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Xml\e1ec8b9a6d4f9af9d6065c4187fb1b5f\System.Xml.ni.dll ()
      MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Xaml\f641b786d36d1cc5a5531a746c96ce1b\System.Xaml.ni.dll ()
      MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\System.ServiceModel\115fb9d1fa2cbda89742b1c2a0631396\System.ServiceModel.ni.dll ()
      MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Runteb92aa12#\cf7db4fae047127374f220b4f59bea45\System.Runtime.Serialization.ni.dll ()
      MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Drawing\38638a559066bf7f2325a53ed53629bc\System.Drawing.ni.dll ()
      MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Configuration\05cc6faa6704d01e78700561b22937e3\System.Configuration.ni.dll ()
      MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Core\0247de206c1c48ac4f8b55df16468405\System.Core.ni.dll ()
      MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\System\a7811936e59aaee26b1d9d467174d6d4\System.ni.dll ()
      MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\mscorlib\374a0cc6603f58864831897ef723bd4a\mscorlib.ni.dll ()
      MOD - C:\Archivos de programa\Bitdefender\Bitdefender Windows 8 Security\txmlutil.dll ()
      MOD - C:\Windows\System32\IccLibDll.dll ()
      MOD - C:\Archivos de programa\Bitdefender\Bitdefender Windows 8 Security\bdmetrics.dll ()
      MOD - C:\Archivos de programa\Unlocker\UnlockerCOM.dll ()


      ========== Services (SafeList) ==========

      SRV - (SkypeUpdate) -- C:\Archivos de programa\Skype\Updater\Updater.exe (Skype Technologies)
      SRV - (vsserv) -- C:\Program Files\Bitdefender\Bitdefender Windows 8 Security\vsserv.exe (Bitdefender)
      SRV - (BdDesktopParental) -- C:\Archivos de programa\Bitdefender\Bitdefender Windows 8 Security\bdparentalservice.exe (Bitdefender)
      SRV - (TuneUp.UtilitiesSvc) -- C:\Archivos de programa\TuneUp Utilities 2013\TuneUpUtilitiesService32.exe (TuneUp Software)
      SRV - (UxTuneUp) -- C:\Windows\System32\uxtuneup.dll (TuneUp Software)
      SRV - (MsgPlusService) -- C:\Archivos de programa\Yuna Software\Messenger Plus! for Skype\MsgPlusForSkypeService.exe (Yuna Software)
      SRV - (wlidsvc) -- C:\Windows\System32\wlidsvc.dll (Microsoft Corporation)
      SRV - (netprofm) -- C:\Windows\System32\netprofmsvc.dll (Microsoft Corporation)
      SRV - (LSM) -- C:\Windows\System32\lsm.dll (Microsoft Corporation)
      SRV - (TeamViewer8) -- C:\Archivos de programa\TeamViewer\Version8\TeamViewer_Service.exe (TeamViewer GmbH)
      SRV - (cphs) -- C:\Windows\System32\IntelCpHeciSvc.exe (Intel Corporation)
      SRV - (ose) -- C:\Archivos de programa\Common Files\microsoft shared\Source Engine\OSE.EXE (Microsoft Corporation)
      SRV - (TimeBroker) -- C:\Windows\System32\TimeBrokerServer.dll (Microsoft Corporation)
      SRV - (SystemEventsBroker) -- C:\Windows\System32\SystemEventsBrokerServer.dll (Microsoft Corporation)
      SRV - (OfficeSvc) -- C:\Archivos de programa\Microsoft Office 15\ClientX86\integratedoffice.exe (Microsoft Corporation)
      SRV - (UPDATESRV) -- C:\Program Files\Bitdefender\Bitdefender Windows 8 Security\updatesrv.exe (Bitdefender)
      SRV - (PrintNotify) -- C:\Windows\System32\spool\drivers\w32x86\3\PrintConfig.dll (Microsoft Corporation)
      SRV - (AudioEndpointBuilder) -- C:\Windows\System32\AudioEndpointBuilder.dll (Microsoft Corporation)
      SRV - (WSService) -- C:\Windows\System32\WSService.dll (Microsoft Corporation)
      SRV - (WMPNetworkSvc) -- C:\Archivos de programa\Windows Media Player\wmpnetwk.exe (Microsoft Corporation)
      SRV - (fhsvc) -- C:\Windows\System32\fhsvc.dll (Microsoft Corporation)
      SRV - (BrokerInfrastructure) -- C:\Windows\System32\bisrv.dll (Microsoft Corporation)
      SRV - (WinDefend) -- C:\Archivos de programa\Windows Defender\MsMpEng.exe (Microsoft Corporation)
      SRV - (WiaRpc) -- C:\Windows\System32\wiarpc.dll (Microsoft Corporation)
      SRV - (Wcmsvc) -- C:\Windows\System32\wcmsvc.dll (Microsoft Corporation)
      SRV - (VaultSvc) -- C:\Windows\System32\vaultsvc.dll (Microsoft Corporation)
      SRV - (StorSvc) -- C:\Windows\System32\StorSvc.dll (Microsoft Corporation)
      SRV - (svsvc) -- C:\Windows\System32\svsvc.dll (Microsoft Corporation)
      SRV - (SensrSvc) -- C:\Windows\System32\sensrsvc.dll (Microsoft Corporation)
      SRV - (PeerDistSvc) -- C:\Windows\System32\PeerDistSvc.dll (Microsoft Corporation)
      SRV - (NcaSvc) -- C:\Windows\System32\NcaSvc.dll (Microsoft Corporation)
      SRV - (NcdAutoSetup) -- C:\Windows\System32\NcdAutoSetup.dll (Microsoft Corporation)
      SRV - (KeyIso) -- C:\Windows\System32\keyiso.dll (Microsoft Corporation)
      SRV - (EFS) -- C:\Windows\System32\efssvc.dll (Microsoft Corporation)
      SRV - (DsmSvc) -- C:\Windows\System32\DeviceSetupManager.dll (Microsoft Corporation)
      SRV - (DeviceAssociationService) -- C:\Windows\System32\das.dll (Microsoft Corporation)
      SRV - (AllUserInstallAgent) -- C:\Windows\System32\AUInstallAgent.dll (Microsoft Corporation)
      SRV - (vmicvss) -- C:\Windows\System32\icsvc.dll (Microsoft Corporation)
      SRV - (vmictimesync) -- C:\Windows\System32\icsvc.dll (Microsoft Corporation)
      SRV - (vmicshutdown) -- C:\Windows\System32\icsvc.dll (Microsoft Corporation)
      SRV - (vmicrdv) -- C:\Windows\System32\icsvc.dll (Microsoft Corporation)
      SRV - (vmickvpexchange) -- C:\Windows\System32\icsvc.dll (Microsoft Corporation)
      SRV - (vmicheartbeat) -- C:\Windows\System32\icsvc.dll (Microsoft Corporation)
      SRV - (IAStorDataMgrSvc) -- C:\Archivos de programa\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe (Intel Corporation)
      SRV - (UNS) -- C:\Archivos de programa\Intel\Intel(R) Management Engine Components\UNS\UNS.exe (Intel Corporation)
      SRV - (LMS) -- C:\Archivos de programa\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (Intel Corporation)
      SRV - (CxAudMsg) -- C:\Windows\System32\CxAudMsg32.exe (Conexant Systems Inc.)
      SRV - (ABBYY.Licensing.BCR.Light.2.0) -- C:\Archivos de programa\ABBYY Business Card Reader 2.0 Light\NetworkLicenseServer.exe (ABBYY)
      SRV - (ABBYY.Licensing.FineReader.ScreenshotReader.9.0) -- C:\Archivos de programa\ABBYY Screenshot Reader\NetworkLicenseServer.exe (ABBYY)


      ========== Driver Services (SafeList) ==========

      DRV - (a0lyzv7d) -- File not found
      DRV - (avckf) -- C:\Windows\System32\Drivers\avckf.sys (BitDefender)
      DRV - (avc3) -- C:\Windows\System32\Drivers\avc3.sys (BitDefender)
      DRV - (BDSandBox) -- C:\Windows\System32\Drivers\bdsandbox.sys (BitDefender SRL)
      DRV - (msgpiowin32) -- C:\Windows\System32\Drivers\msgpiowin32.sys (Microsoft Corporation)
      DRV - (sptd) -- C:\Windows\System32\Drivers\sptd.sys (Duplex Secure Ltd.)
      DRV - (pdc) -- C:\Windows\System32\Drivers\pdc.sys (Microsoft Corporation)
      DRV - (BthAvrcpTg) -- C:\Windows\System32\Drivers\BthAvrcpTg.sys (Microsoft Corporation)
      DRV - (bthhfhid) -- C:\Windows\System32\Drivers\BthhfHid.sys (Microsoft Corporation)
      DRV - (hidi2c) -- C:\Windows\System32\Drivers\hidi2c.sys (Microsoft Corporation)
      DRV - (TuneUpUtilitiesDrv) -- C:\Archivos de programa\TuneUp Utilities 2013\TuneUpUtilitiesDriver32.sys (TuneUp Software)
      DRV - (USBHUB3) -- C:\Windows\System32\Drivers\USBHUB3.SYS (Microsoft Corporation)
      DRV - (FxPPM) -- C:\Windows\System32\Drivers\fxppm.sys (Microsoft Corporation)
      DRV - (avchv) -- C:\Windows\System32\Drivers\avchv.sys (BitDefender)
      DRV - (trufos) -- C:\Windows\System32\Drivers\trufos.sys (BitDefender S.R.L.)
      DRV - (Dot4Print) -- C:\Windows\System32\Drivers\Dot4Prt.sys (Windows (R) Win 7 DDK provider)
      DRV - (dot4) -- C:\Windows\System32\Drivers\Dot4.sys (Windows (R) Win 7 DDK provider)
      DRV - (bdfwfpf) -- C:\Archivos de programa\Common Files\Bitdefender\Bitdefender Firewall\bdfwfpf.sys (BitDefender LLC)
      DRV - (RdpVideoMiniport) -- C:\Windows\System32\Drivers\rdpvideominiport.sys (Microsoft Corporation)
      DRV - (dam) -- C:\Windows\System32\Drivers\dam.sys (Microsoft Corporation)
      DRV - (sdstor) -- C:\Windows\System32\Drivers\sdstor.sys (Microsoft Corporation)
      DRV - (bdselfpr) -- C:\Archivos de programa\Bitdefender\Bitdefender Windows 8 Security\bdselfpr.sys (BitDefender LLC)
      DRV - (cnghwassist) -- C:\Windows\System32\Drivers\cnghwassist.sys (Microsoft Corporation)
      DRV - (USBXHCI) -- C:\Windows\System32\Drivers\USBXHCI.SYS (Microsoft Corporation)
      DRV - (UCX01000) -- C:\Windows\System32\Drivers\UCX01000.SYS (Microsoft Corporation)
      DRV - (GPIOClx0101) -- C:\Windows\System32\Drivers\msgpioclx.sys (Microsoft Corporation)
      DRV - (TPM) -- C:\Windows\System32\Drivers\tpm.sys (Microsoft Corporation)
      DRV - (BdfNdisf) -- C:\Archivos de programa\Common Files\Bitdefender\Bitdefender Firewall\bdfndisf6.sys (BitDefender LLC)
      DRV - (gzflt) -- C:\Windows\System32\Drivers\gzflt.sys (BitDefender LLC)
      DRV - (condrv) -- C:\Windows\System32\Drivers\condrv.sys (Microsoft Corporation)
      DRV - (acpiex) -- C:\Windows\System32\Drivers\acpiex.sys (Microsoft Corporation)
      DRV - (LSI_SSS) -- C:\Windows\System32\Drivers\lsi_sss.sys (LSI Corporation)
      DRV - (EhStorTcgDrv) -- C:\Windows\System32\Drivers\EhStorTcgDrv.sys (Microsoft Corporation)
      DRV - (EhStorClass) -- C:\Windows\System32\Drivers\EhStorClass.sys (Microsoft Corporation)
      DRV - (3ware) -- C:\Windows\System32\Drivers\3ware.sys (LSI)
      DRV - (VSTXRAID) -- C:\Windows\System32\Drivers\VSTXRAID.SYS (VIA Corporation)
      DRV - (VerifierExt) -- C:\Windows\System32\Drivers\VerifierExt.sys (Microsoft Corporation)
      DRV - (UASPStor) -- C:\Windows\System32\Drivers\uaspstor.sys (Microsoft Corporation)
      DRV - (storahci) -- C:\Windows\System32\Drivers\storahci.sys (Microsoft Corporation)
      DRV - (spaceport) -- C:\Windows\System32\Drivers\spaceport.sys (Microsoft Corporation)
      DRV - (mvumis) -- C:\Windows\System32\Drivers\mvumis.sys (Marvell Semiconductor, Inc.)
      DRV - (WFPLWFS) -- C:\Windows\System32\Drivers\wfplwfs.sys (Microsoft Corporation)
      DRV - (CLFS) -- C:\Windows\System32\Drivers\clfs.sys (Microsoft Corporation)
      DRV - (terminpt) -- C:\Windows\System32\Drivers\terminpt.sys (Microsoft Corporation)
      DRV - (WdFilter) -- C:\Windows\System32\Drivers\WdFilter.sys (Microsoft Corporation)
      DRV - (vmbus) -- C:\Windows\System32\Drivers\vmbus.sys (Microsoft Corporation)
      DRV - (storflt) -- C:\Windows\System32\Drivers\vmstorfl.sys (Microsoft Corporation)
      DRV - (storvsc) -- C:\Windows\System32\Drivers\storvsc.sys (Microsoft Corporation)
      DRV - (WdBoot) -- C:\Windows\System32\Drivers\WdBoot.sys (Microsoft Corporation)
      DRV - (BasicDisplay) -- C:\Windows\System32\Drivers\BasicDisplay.sys (Microsoft Corporation)
      DRV - (mshidumdf) -- C:\Windows\System32\Drivers\mshidumdf.sys (Microsoft Corporation)
      DRV - (HyperVideo) -- C:\Windows\System32\Drivers\HyperVideo.sys (Microsoft Corporation)
      DRV - (BasicRender) -- C:\Windows\System32\Drivers\BasicRender.sys (Microsoft Corporation)
      DRV - (s3cap) -- C:\Windows\System32\Drivers\vms3cap.sys (Microsoft Corporation)
      DRV - (npsvctrig) -- C:\Windows\System32\Drivers\npsvctrig.sys (Microsoft Corporation)
      DRV - (kdnic) -- C:\Windows\System32\Drivers\kdnic.sys (Microsoft Corporation)
      DRV - (acpitime) -- C:\Windows\System32\Drivers\acpitime.sys (Microsoft Corporation)
      DRV - (gencounter) -- C:\Windows\System32\Drivers\vmgencounter.sys (Microsoft Corporation)
      DRV - (acpipagr) -- C:\Windows\System32\Drivers\acpipagr.sys (Microsoft Corporation)
      DRV - (WpdUpFltr) -- C:\Windows\System32\Drivers\WpdUpFltr.sys (Microsoft Corporation)
      DRV - (VMBusHID) -- C:\Windows\System32\Drivers\VMBusHID.sys (Microsoft Corporation)
      DRV - (hyperkbd) -- C:\Windows\System32\Drivers\hyperkbd.sys (Microsoft Corporation)
      DRV - (SerCx) -- C:\Windows\System32\Drivers\SerCx.sys (Microsoft Corporation)
      DRV - (SpbCx) -- C:\Windows\System32\Drivers\SpbCx.sys (Microsoft Corporation)
      DRV - (vwifimp) -- C:\Windows\System32\Drivers\vwifimp.sys (Microsoft Corporation)
      DRV - (WinUsb) -- C:\Windows\System32\Drivers\winusb.sys (Microsoft Corporation)
      DRV - (TsUsbGD) -- C:\Windows\System32\Drivers\TsUsbGD.sys (Microsoft Corporation)
      DRV - (BthHFEnum) -- C:\Windows\System32\Drivers\bthhfenum.sys (Microsoft Corporation)
      DRV - (TsUsbFlt) -- C:\Windows\System32\Drivers\TsUsbFlt.sys (Microsoft Corporation)
      DRV - (dmvsc) -- C:\Windows\System32\Drivers\dmvsc.sys (Microsoft Corporation)
      DRV - (wpcfltr) -- C:\Windows\System32\Drivers\wpcfltr.sys (Microsoft Corporation)
      DRV - (NdisImPlatform) -- C:\Windows\System32\Drivers\NdisImPlatform.sys (Microsoft Corporation)
      DRV - (MsLldp) -- C:\Windows\System32\Drivers\mslldp.sys (Microsoft Corporation)
      DRV - (Ndu) -- C:\Windows\System32\Drivers\Ndu.sys (Microsoft Corporation)
      DRV - (bdelam) -- C:\Windows\System32\Drivers\bdelam.sys (Bitdefender)
      DRV - (iaStorA) -- C:\Windows\System32\Drivers\iaStorA.sys (Intel Corporation)
      DRV - (vm332avs) -- C:\Windows\System32\Drivers\vm332avs.sys (Vimicro Corporation)
      DRV - (L1C) -- C:\Windows\System32\Drivers\L1C63x86.sys (Qualcomm Atheros Co., Ltd.)
      DRV - (CnxtHdAudService) -- C:\Windows\System32\Drivers\CHDRT32.sys (Conexant Systems Inc.)
      DRV - (RSUSBVSTOR) -- C:\Windows\System32\Drivers\RtsUVStor.sys (Realtek Semiconductor Corp.)
      DRV - (athr) -- C:\Windows\System32\Drivers\athw8.sys (Qualcomm Atheros Communications, Inc.)
      DRV - (MEI) -- C:\Windows\System32\Drivers\HECI.sys (Intel Corporation)
      DRV - (ACPIVPC) -- C:\Windows\System32\Drivers\AcpiVpc.sys (Lenovo Corporation)
      DRV - (UnlockerDriver5) -- C:\Archivos de programa\Unlocker\UnlockerDriver5.sys ()
      DRV - (LHDmgr) -- C:\Windows\System32\Drivers\LhdX86.sys (Lenovo.)


      ========== Standard Registry (SafeList) ==========


      ========== Internet Explorer ==========

      IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank
      IE - HKLM\..\SearchScopes,DefaultScope = {6A1806CD-94D4-4689-BA73-E35EA1EA9990}
      IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
      IE - HKLM\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7

      IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default Download Directory = E:\Downloads
      IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank
      IE - HKCU\..\SearchScopes,DefaultScope = {6A1806CD-94D4-4689-BA73-E35EA1EA9990}
      IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE10SR
      IE - HKCU\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7&rlz=
      IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0


      ========== FireFox ==========

      FF - HKLM\Software\MozillaPlugins\@docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf: C:\Program Files\Tracker Software\PDF Viewer\npPDFXCviewNPPlugin.dll (Tracker Software Products (Canada) Ltd.)
      FF - HKLM\Software\MozillaPlugins\@Google.com/GoogleEarthPlugin: C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
      FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files\Microsoft Silverlight\5.1.10411.0\npctrl.dll ( Microsoft Corporation)
      FF - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL (Microsoft Corporation)
      FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=16.4.3505.0912: C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
      FF - HKLM\Software\MozillaPlugins\@real.com/nppl3260;version=6.0.12.450: C:\Program Files\Real Alternative\browser\plugins\nppl3260.dll (RealNetworks, Inc.)
      FF - HKLM\Software\MozillaPlugins\@real.com/nprpjplug;version=6.0.12.448: C:\Program Files\Real Alternative\browser\plugins\nprpjplug.dll (RealNetworks, Inc.)
      FF - HKLM\Software\MozillaPlugins\@real.com/nsJSRealPlayerPlugin;version=: File not found
      FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.124\npGoogleUpdate3.dll (Google Inc.)
      FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.124\npGoogleUpdate3.dll (Google Inc.)
      FF - HKLM\Software\MozillaPlugins\@tracker-software.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf: C:\Program Files\Tracker Software\PDF Viewer\npPDFXCviewNPPlugin.dll (Tracker Software Products (Canada) Ltd.)
      FF - HKCU\Software\MozillaPlugins\@docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf: C:\Program Files\Tracker Software\PDF Viewer\npPDFXCviewNPPlugin.dll (Tracker Software Products (Canada) Ltd.)



      ========== Chrome ==========

      CHR - homepage: Google
      CHR - default_search_provider: Google (Enabled)
      CHR - default_search_provider: search_url = {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}sourceid=chrome&ie={inputEncoding}
      CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client=chrome&hl={language}&q={searchTerms}&sugkey={google:suggestAPIKeyParameter},
      CHR - homepage: Google
      CHR - plugin: Shockwave Flash (Enabled) = C:\Program Files\Google\Chrome\Application\24.0.1312.57\PepperFlash\pepflashplayer.dll
      CHR - plugin: Chrome Remote Desktop Viewer (Enabled) = internal-remoting-viewer
      CHR - plugin: Native Client (Enabled) = C:\Program Files\Google\Chrome\Application\24.0.1312.57\ppGoogleNaClPluginChrome.dll
      CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Program Files\Google\Chrome\Application\24.0.1312.57\pdf.dll
      CHR - plugin: Microsoft Office 2010 (Enabled) = C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL
      CHR - plugin: Microsoft Office 2010 (Enabled) = C:\PROGRA~1\MICROS~1\Office14\NPSPWRAP.DLL
      CHR - plugin: Google Update (Enabled) = C:\Program Files\Google\Update\1.3.21.124\npGoogleUpdate3.dll
      CHR - Extension: Google Drive = C:\Users\Alberto\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\
      CHR - Extension: YouTube = C:\Users\Alberto\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\
      CHR - Extension: Adblock Plus = C:\Users\Alberto\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.3.4_0\
      CHR - Extension: B\u00FAsqueda de Google = C:\Users\Alberto\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\

      O1 HOSTS File: ([2012/07/25 22:17:20 | 000,000,824 | ---- | M]) - C:\Windows\System32\Drivers\etc\hosts
      O2 - BHO: (Office Document Cache Handler) - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Archivos de programa\Microsoft Office 15\root\office15\urlredir.dll (Microsoft Corporation)
      O4 - HKLM..\Run: [] File not found
      O4 - HKLM..\Run: [332BigDog] C:\Archivos de programa\USB Camera2\VM332STI.EXE (Vimicro)
      O4 - HKLM..\Run: [APSDaemon] C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc.)
      O4 - HKLM..\Run: [Bdagent] C:\Archivos de programa\Bitdefender\Bitdefender Windows 8 Security\bdagent.exe (Bitdefender)
      O4 - HKLM..\Run: [cAudioFilterAgent] C:\Archivos de programa\CONEXANT\cAudioFilterAgent\CAudioFilterAgent.exe (Conexant Systems, Inc.)
      O4 - HKLM..\Run: [Energy Management] C:\Archivos de programa\Lenovo\Energy Management\Energy Management.exe (Lenovo (Beijing) Limited)
      O4 - HKLM..\Run: [EnergyUtility] C:\Archivos de programa\Lenovo\Energy Management\utility.exe (Lenovo(beijing) Limited)
      O4 - HKLM..\Run: [IAStorIcon] C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe (Intel Corporation)
      O4 - HKLM..\Run: [MessengerPlusForSkypeService] C:\Program Files\Yuna Software\Messenger Plus! for Skype\MsgPlusForSkypeService.exe (Yuna Software)
      O4 - HKLM..\Run: [SmartAudio] C:\Program Files\CONEXANT\SAII\SACpl.exe (Conexant Systems, Inc.)
      O4 - HKCU..\Run: [ABBYY Screenshot Reader Retail] File not found
      O4 - HKCU..\Run: [DAEMON Tools Lite] C:\Program Files\DAEMON Tools Lite\DTLite.exe (DT Soft Ltd)
      O4 - HKCU..\Run: [SkyDrive] C:\Users\Alberto\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe (Microsoft Corporation)
      O4 - HKCU..\Run: [Speech Recognition] C:\Windows\Speech\Common\sapisvr.exe (Microsoft Corporation)
      O4 - Startup: C:\Users\Alberto\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Enviar a OneNote.lnk = C:\Archivos de programa\Microsoft Office 15\root\office15\onenotem.exe (Microsoft Corporation)
      O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 255
      O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
      O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutorunSetting = 1
      O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
      O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableCursorSuppression = 1
      O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
      O8 - Extra context menu item: &Enviar a OneNote - res://C:\PROGRA~1\MICROS~1\Office14\ONBttnIE.dll/105 File not found
      O8 - Extra context menu item: E&xport to Microsoft Excel - C:\Program Files\Microsoft Office 15\Root\Office15\EXCEL.EXE (Microsoft Corporation)
      O8 - Extra context menu item: E&xportar a Microsoft Excel - res://C:\PROGRA~1\MICROS~1\Office14\EXCEL.EXE/3000 File not found
      O8 - Extra context menu item: Se&nd to OneNote - C:\Program Files\Microsoft Office 15\Root\Office15\ONBttnIE.dll (Microsoft Corporation)
      O9 - Extra Button: @C:\Program Files\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Archivos de programa\Windows Live\Writer\WriterBrowserExtension.dll (Microsoft Corporation)
      O9 - Extra 'Tools' menuitem : @C:\Program Files\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Archivos de programa\Windows Live\Writer\WriterBrowserExtension.dll (Microsoft Corporation)
      O9 - Extra Button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Archivos de programa\Microsoft Office 15\root\office15\onbttnie.dll (Microsoft Corporation)
      O9 - Extra 'Tools' menuitem : Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Archivos de programa\Microsoft Office 15\root\office15\onbttnie.dll (Microsoft Corporation)
      O9 - Extra Button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Archivos de programa\Microsoft Office 15\root\office15\onbttnielinkednotes.dll (Microsoft Corporation)
      O9 - Extra 'Tools' menuitem : OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Archivos de programa\Microsoft Office 15\root\office15\onbttnielinkednotes.dll (Microsoft Corporation)
      O13 - gopher Prefix: missing
      O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} http://download.eset.com/special/eos/OnlineScanner.cab (Reg Error: Key error.)
      O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.0.1
      O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{875BD794-8827-40D2-B6C9-0B6F19518938}: DhcpNameServer = 192.168.0.1
      O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{9A0A9554-10C5-4CC6-BFC0-E79AEF7F8E11}: DhcpNameServer = 192.168.0.1
      O18 - Protocol\Handler\livecall {828030A1-22C1-4009-854F-8E305202313F} - C:\Archivos de programa\Windows Live\Messenger\msgrapp.dll (Microsoft Corporation)
      O18 - Protocol\Handler\msnim {828030A1-22C1-4009-854F-8E305202313F} - C:\Archivos de programa\Windows Live\Messenger\msgrapp.dll (Microsoft Corporation)
      O18 - Protocol\Handler\osf {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Archivos de programa\Microsoft Office 15\root\office15\msosb.dll (Microsoft Corporation)
      O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Archivos de programa\Common Files\Skype\Skype4COM.dll (Skype Technologies)
      O18 - Protocol\Handler\wlmailhtml {03C514A3-1EFB-4856-9F99-10D7BE1653C0} - C:\Archivos de programa\Windows Live\Mail\mailcomm.dll (Microsoft Corporation)
      O18 - Protocol\Handler\wlpg {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Archivos de programa\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll (Microsoft Corporation)
      O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
      O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\System32\userinit.exe (Microsoft Corporation)
      O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\System32\SystemPropertiesPerformance.exe (Microsoft Corporation)
      O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
      O32 - HKLM CDRom: AutoRun - 1
      O32 - AutoRun File - [2012/07/26 00:52:25 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
      O34 - HKLM BootExecute: (autocheck autochk *)
      O34 - HKLM BootExecute: (DfSDKBt)
      O35 - HKLM\..comfile [open] -- "%1" %*
      O35 - HKLM\..exefile [open] -- "%1" %*
      O37 - HKLM\...com [@ = comfile] -- "%1" %*
      O37 - HKLM\...exe [@ = exefile] -- "%1" %*
      O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
      O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)

      ========== Files/Folders - Created Within 30 Days ==========

      [2013/02/16 21:51:09 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Users\Alberto\Desktop\OTL.exe
      [2013/02/16 21:26:08 | 000,000,000 | ---D | C] -- C:\Users\Alberto\AppData\Roaming\ABBYY
      [2013/02/16 21:15:43 | 000,000,000 | ---D | C] -- C:\Users\Alberto\AppData\Roaming\Opera
      [2013/02/15 18:02:37 | 000,000,000 | ---D | C] -- C:\ProgramData\Messenger Plus! for Skype
      [2013/02/15 17:39:55 | 000,000,000 | ---D | C] -- C:\Program Files\Yuna Software
      [2013/02/15 17:34:02 | 000,000,000 | R--D | C] -- C:\Program Files\Skype
      [2013/02/15 17:34:02 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
      [2013/02/15 17:34:02 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Skype
      [2013/02/10 03:25:26 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Recuva
      [2013/02/10 03:25:22 | 000,000,000 | ---D | C] -- C:\Program Files\Recuva
      [2013/02/09 23:48:35 | 000,000,000 | ---D | C] -- C:\Users\Alberto\AppData\Roaming\dvdcss
      [2013/02/09 00:47:31 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Real Alternative
      [2013/02/09 00:47:26 | 000,278,528 | ---- | C] (Real Networks, Inc) -- C:\Windows\System32\pncrt.dll
      [2013/02/09 00:47:24 | 000,000,000 | ---D | C] -- C:\Program Files\Real Alternative
      [2013/02/08 00:06:40 | 000,000,000 | ---D | C] -- C:\Users\Alberto\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Unlocker
      [2013/02/08 00:06:40 | 000,000,000 | ---D | C] -- C:\Program Files\Unlocker
      [2013/02/08 00:06:34 | 000,000,000 | ---D | C] -- C:\ProgramData\Babylon
      [2013/02/07 23:43:55 | 000,029,984 | ---- | C] (TuneUp Software) -- C:\Windows\System32\uxtuneup.dll
      [2013/02/05 20:51:57 | 000,000,000 | ---D | C] -- C:\Users\Alberto\AppData\Roaming\TeamViewer
      [2013/02/05 20:14:13 | 000,000,000 | ---D | C] -- C:\Program Files\TeamViewer
      [2013/02/04 20:45:05 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Scribus 1.4.2
      [2013/02/04 20:43:32 | 000,000,000 | ---D | C] -- C:\Program Files\Scribus 1.4.2
      [2013/02/02 11:37:00 | 000,000,000 | ---D | C] -- C:\Users\Alberto\AppData\Local\Cyberlink
      [2013/02/02 11:36:59 | 000,000,000 | ---D | C] -- C:\Users\Alberto\Documents\My Videos
      [2013/02/02 11:36:33 | 000,000,000 | ---D | C] -- C:\ProgramData\CyberLink
      [2013/02/02 11:36:32 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Nikon
      [2013/02/02 11:36:31 | 000,000,000 | R--D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CyberLink PhotoDirector 3
      [2013/02/02 11:35:25 | 000,000,000 | ---D | C] -- C:\Program Files\CyberLink
      [2013/02/02 11:33:36 | 000,000,000 | ---D | C] -- C:\ProgramData\Temp
      [2013/02/02 11:33:33 | 000,000,000 | ---D | C] -- C:\ProgramData\install_clap
      [2013/02/02 03:36:18 | 000,000,000 | ---D | C] -- C:\Users\Alberto\Documents\Plantillas personalizadas de Office
      [2013/02/01 16:22:13 | 000,000,000 | ---D | C] -- C:\Users\Alberto\AppData\Roaming\Windows Live Writer
      [2013/02/01 16:22:13 | 000,000,000 | ---D | C] -- C:\Users\Alberto\AppData\Local\Windows Live Writer
      [2013/02/01 13:38:20 | 000,000,000 | RH-D | C] -- C:\MSOCache
      [2013/02/01 06:34:00 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft SkyDrive
      [2013/02/01 06:33:59 | 000,000,000 | R--D | C] -- C:\Users\Alberto\SkyDrive
      [2013/02/01 06:33:37 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft SkyDrive
      [2013/02/01 06:33:14 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\DESIGNER
      [2013/02/01 04:56:28 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Office
      [2013/02/01 04:23:57 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013
      [2013/02/01 04:14:25 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Office 15
      [2013/02/01 03:27:19 | 000,482,928 | ---- | C] (BitDefender) -- C:\Windows\System32\drivers\avckf.sys
      [2013/02/01 03:26:57 | 000,625,128 | ---- | C] (BitDefender) -- C:\Windows\System32\drivers\avc3.sys
      [2013/02/01 03:25:39 | 000,066,392 | ---- | C] (BitDefender SRL) -- C:\Windows\System32\drivers\bdsandbox.sys
      [2013/02/01 02:58:35 | 000,032,032 | ---- | C] (TuneUp Software) -- C:\Windows\System32\TURegOpt.exe
      [2013/02/01 02:58:35 | 000,021,792 | ---- | C] (TuneUp Software) -- C:\Windows\System32\authuitu.dll
      [2013/02/01 02:58:02 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TuneUp Utilities 2013
      [2013/02/01 02:57:31 | 000,000,000 | ---D | C] -- C:\Users\Alberto\AppData\Roaming\TuneUp Software
      [2013/02/01 02:57:19 | 000,000,000 | ---D | C] -- C:\Program Files\TuneUp Utilities 2013
      [2013/02/01 02:57:07 | 000,000,000 | ---D | C] -- C:\ProgramData\TuneUp Software
      [2013/02/01 02:56:53 | 000,000,000 | -HSD | C] -- C:\ProgramData\{C4ABDBC8-1C81-42C9-BFFC-4A68511E9E4F}
      [2013/02/01 02:56:52 | 000,000,000 | -H-D | C] -- C:\ProgramData\Common Files
      [2013/01/26 01:35:51 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDF-XChange PDF Viewer
      [2013/01/26 01:35:39 | 000,000,000 | ---D | C] -- C:\Program Files\Tracker Software
      [2013/01/25 22:55:16 | 000,000,000 | ---D | C] -- C:\Windows\ehome
      [2013/01/25 04:07:17 | 000,000,000 | ---D | C] -- C:\Users\Alberto\Documents\Adobe
      [2013/01/23 16:47:20 | 000,000,000 | ---D | C] -- C:\Program Files\SystemRequirementsLab
      [2013/01/23 13:26:04 | 000,000,000 | ---D | C] -- C:\Users\Alberto\Documents\Updater
      [2013/01/23 13:18:59 | 000,000,000 | ---D | C] -- C:\Users\Alberto\AppData\Local\CrashDumps
      [2013/01/23 03:17:01 | 000,000,000 | ---D | C] -- C:\Users\Alberto\AppData\Roaming\Malwarebytes
      [2013/01/23 03:16:44 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware
      [2013/01/23 03:16:43 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
      [2013/01/23 03:16:39 | 000,021,104 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbam.sys
      [2013/01/23 03:16:39 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware
      [2013/01/23 02:12:33 | 000,000,000 | ---D | C] -- C:\Program Files\Audacity
      [2013/01/22 17:37:44 | 000,000,000 | ---D | C] -- C:\Users\Alberto\AppData\Roaming\Greyfirst
      [2013/01/22 17:37:44 | 000,000,000 | ---D | C] -- C:\Users\Alberto\AppData\Local\Greyfirst
      [2013/01/22 17:26:17 | 000,000,000 | ---D | C] -- C:\Users\Alberto\AppData\Local\bdch
      [2013/01/22 14:39:15 | 000,000,000 | ---D | C] -- C:\Users\Alberto\AppData\Local\HP
      [2013/01/20 14:20:47 | 000,000,000 | ---D | C] -- C:\Users\Alberto\Documents\AdobeStockPhotos
      [2013/01/20 1437 | 000,000,000 | ---D | C] -- C:\Users\Alberto\AppData\Local\Adobe
      [2013/01/20 00:07:59 | 000,000,000 | ---D | C] -- C:\Users\Alberto\AppData\Roaming\TechSmith
      [2013/01/20 00:07:39 | 000,000,000 | ---D | C] -- C:\Users\Alberto\Documents\Camtasia Studio
      [2013/01/19 09:50:07 | 000,000,000 | ---D | C] -- C:\Users\Alberto\AppData\Roaming\Apple Computer
      [2013/01/19 0011 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime
      [2013/01/19 0002 | 000,000,000 | ---D | C] -- C:\Program Files\QuickTime
      [2013/01/19 0002 | 000,000,000 | ---D | C] -- C:\ProgramData\Apple Computer
      [2013/01/19 00:08:56 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Apple
      [2013/01/19 00:08:38 | 000,000,000 | ---D | C] -- C:\Users\Alberto\AppData\Local\Apple
      [2013/01/19 00:08:35 | 000,000,000 | ---D | C] -- C:\Program Files\Apple Software Update
      [2013/01/19 00:08:34 | 000,000,000 | ---D | C] -- C:\ProgramData\Apple
      [2013/01/18 19:30:37 | 000,000,000 | ---D | C] -- C:\ProgramData\bdch
      [2013/01/18 09:33:57 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\BVRP Software

      ========== Files - Modified Within 30 Days ==========

      [2013/02/16 21:51:09 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Alberto\Desktop\OTL.exe
      [2013/02/16 21:43:01 | 000,001,110 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
      [2013/02/16 21:33:22 | 000,001,254 | ---- | M] () -- C:\Users\Alberto\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Enviar a OneNote.lnk
      [2013/02/16 21:08:18 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
      [2013/02/16 21:07:00 | 000,001,106 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
      [2013/02/16 21:06:06 | 268,435,456 | -HS- | M] () -- C:\swapfile.sys
      [2013/02/16 18:25:32 | 000,000,307 | -H-- | M] () -- C:\bdr-cf01
      [2013/02/16 09:39:53 | 000,800,318 | ---- | M] () -- C:\Windows\System32\perfh00A.dat
      [2013/02/16 09:39:53 | 000,711,282 | ---- | M] () -- C:\Windows\System32\perfh009.dat
      [2013/02/16 09:39:53 | 000,163,592 | ---- | M] () -- C:\Windows\System32\perfc00A.dat
      [2013/02/16 09:39:53 | 000,133,150 | ---- | M] () -- C:\Windows\System32\perfc009.dat
      [2013/02/15 20:37:53 | 000,427,400 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT
      [2013/02/15 17:34:02 | 000,002,503 | ---- | M] () -- C:\Users\Public\Desktop\Skype.lnk
      [2013/02/10 03:25:26 | 000,001,799 | ---- | M] () -- C:\Users\Public\Desktop\Recuva.lnk
      [2013/02/05 20:14:24 | 000,001,124 | ---- | M] () -- C:\Users\Public\Desktop\TeamViewer 8.lnk
      [2013/02/04 20:46:05 | 000,001,023 | ---- | M] () -- C:\Users\Public\Desktop\Scribus 1.4.2.lnk
      [2013/02/02 11:36:31 | 000,002,237 | ---- | M] () -- C:\Users\Public\Desktop\CyberLink PhotoDirector 3.lnk
      [2013/02/01 03:27:19 | 000,482,928 | ---- | M] (BitDefender) -- C:\Windows\System32\drivers\avckf.sys
      [2013/02/01 03:26:57 | 000,625,128 | ---- | M] (BitDefender) -- C:\Windows\System32\drivers\avc3.sys
      [2013/02/01 03:25:39 | 000,066,392 | ---- | M] (BitDefender SRL) -- C:\Windows\System32\drivers\bdsandbox.sys
      [2013/02/01 03:02:03 | 000,000,969 | ---- | M] () -- C:\Users\Public\Desktop\CCleaner.lnk
      [2013/02/01 02:58:02 | 000,002,189 | ---- | M] () -- C:\Users\Public\Desktop\TuneUp Mantenimiento con 1 clic.lnk
      [2013/02/01 02:58:02 | 000,002,133 | ---- | M] () -- C:\Users\Public\Desktop\TuneUp Utilities 2013.lnk
      [2013/01/28 07:19:34 | 000,032,032 | ---- | M] (TuneUp Software) -- C:\Windows\System32\TURegOpt.exe
      [2013/01/28 07:19:30 | 000,029,984 | ---- | M] (TuneUp Software) -- C:\Windows\System32\uxtuneup.dll
      [2013/01/28 07:19:30 | 000,021,792 | ---- | M] (TuneUp Software) -- C:\Windows\System32\authuitu.dll
      [2013/01/26 21:37:04 | 000,000,000 | -H-- | M] () -- C:\Windows\System32\drivers\Msft_User_WpdMtpDr_01_11_00.Wdf
      [2013/01/26 01:35:51 | 000,001,175 | ---- | M] () -- C:\Users\Public\Desktop\PDF-Viewer.lnk
      [2013/01/25 20:02:11 | 000,000,297 | ---- | M] () -- C:\Users\Alberto\Desktop\Herramientas de diagnóstico de impresora HP.url
      [2013/01/25 19:29:40 | 000,053,248 | ---- | M] () -- C:\Windows\System32\pxhpinst.exe
      [2013/01/24 01:29:47 | 000,000,479 | ---- | M] () -- C:\Windows\System32\checkdnsid.xml
      [2013/01/23 03:16:45 | 000,001,071 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
      [2013/01/23 02:14:02 | 000,000,969 | ---- | M] () -- C:\Users\Alberto\Desktop\Audacity.lnk
      [2013/01/19 0011 | 000,001,815 | ---- | M] () -- C:\Users\Public\Desktop\QuickTime Player.lnk

      ========== Files Created - No Company Name ==========

      [2013/02/15 20:37:37 | 000,427,400 | ---- | C] () -- C:\Windows\System32\FNTCACHE.DAT
      [2013/02/15 17:34:02 | 000,002,503 | ---- | C] () -- C:\Users\Public\Desktop\Skype.lnk
      [2013/02/13 18:13:02 | 000,386,577 | ---- | C] () -- C:\Windows\System32\ApnDatabase.xml
      [2013/02/10 03:25:26 | 000,001,799 | ---- | C] () -- C:\Users\Public\Desktop\Recuva.lnk
      [2013/02/05 20:14:24 | 000,001,136 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer 8.lnk
      [2013/02/05 20:14:24 | 000,001,124 | ---- | C] () -- C:\Users\Public\Desktop\TeamViewer 8.lnk
      [2013/02/04 20:46:05 | 000,001,023 | ---- | C] () -- C:\Users\Public\Desktop\Scribus 1.4.2.lnk
      [2013/02/02 11:36:31 | 000,002,237 | ---- | C] () -- C:\Users\Public\Desktop\CyberLink PhotoDirector 3.lnk
      [2013/02/01 16:21:05 | 000,001,404 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live Mail.lnk
      [2013/02/01 13:33:13 | 000,001,254 | ---- | C] () -- C:\Users\Alberto\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Enviar a OneNote.lnk
      [2013/02/01 06:33:58 | 000,002,300 | ---- | C] () -- C:\Users\Alberto\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SkyDrive.lnk
      [2013/02/01 02:58:02 | 000,002,189 | ---- | C] () -- C:\Users\Public\Desktop\TuneUp Mantenimiento con 1 clic.lnk
      [2013/02/01 02:58:02 | 000,002,145 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TuneUp Utilities 2013.lnk
      [2013/02/01 02:58:02 | 000,002,133 | ---- | C] () -- C:\Users\Public\Desktop\TuneUp Utilities 2013.lnk
      [2013/01/26 21:37:04 | 000,000,000 | -H-- | C] () -- C:\Windows\System32\drivers\Msft_User_WpdMtpDr_01_11_00.Wdf
      [2013/01/26 01:35:51 | 000,001,175 | ---- | C] () -- C:\Users\Public\Desktop\PDF-Viewer.lnk
      [2013/01/25 22:45:31 | 000,015,901 | ---- | C] () -- C:\Windows\ProfessionalWMC.xml
      [2013/01/25 19:30:31 | 000,053,248 | ---- | C] () -- C:\Windows\System32\pxhpinst.exe
      [2013/01/23 18:47:07 | 000,000,297 | ---- | C] () -- C:\Users\Alberto\Desktop\Herramientas de diagnóstico de impresora HP.url
      [2013/01/23 03:16:45 | 000,001,071 | ---- | C] () -- C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
      [2013/01/23 02:14:02 | 000,000,981 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Audacity.lnk
      [2013/01/23 02:14:02 | 000,000,969 | ---- | C] () -- C:\Users\Alberto\Desktop\Audacity.lnk
      [2013/01/22 13:48:57 | 000,000,479 | ---- | C] () -- C:\Windows\System32\checkdnsid.xml
      [2013/01/19 0011 | 000,001,815 | ---- | C] () -- C:\Users\Public\Desktop\QuickTime Player.lnk
      [2013/01/19 00:08:36 | 000,002,519 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apple Software Update.lnk
      [2013/01/16 21:15:54 | 000,016,384 | ---- | C] () -- C:\Windows\System32\FileOps.exe
      [2013/01/06 22:13:10 | 000,178,688 | ---- | C] () -- C:\Windows\System32\unrar.dll
      [2013/01/06 19:21:32 | 000,488,448 | ---- | C] () -- C:\Windows\System32\apdfprintmon.dll
      [2013/01/06 18:37:45 | 002,470,907 | ---- | C] () -- C:\ProgramData\1357513686.bdinstall.bin
      [2013/01/06 17:00:41 | 000,525,950 | ---- | C] () -- C:\ProgramData\1357512166.bdinstall.bin
      [2013/01/06 06:42:23 | 000,083,968 | ---- | C] () -- C:\Windows\System32\OEMLicense.dll
      [2013/01/06 06:14:00 | 000,217,501 | ---- | C] () -- C:\Windows\hpoins19.dat
      [2013/01/06 06:14:00 | 000,015,561 | ---- | C] () -- C:\Windows\hpomdl19.dat
      [2013/01/06 03:43:11 | 000,008,192 | ---- | C] () -- C:\Windows\System32\drivers\IntelMEFWVer.dll
      [2013/01/06 03:24:49 | 000,001,915 | ---- | C] () -- C:\Windows\vm332Rmv.ini
      [2013/01/06 03:24:49 | 000,001,915 | ---- | C] () -- C:\Windows\System32\vm332Rmv.ini
      [2012/12/14 02:02:20 | 000,064,512 | ---- | C] () -- C:\Windows\System32\igdde32.dll
      [2012/12/14 02:02:20 | 000,000,268 | ---- | C] () -- C:\Windows\System32\GfxUI.exe.config
      [2012/10/22 10:40:04 | 000,272,928 | ---- | C] () -- C:\Windows\System32\igvpkrng600.bin
      [2012/10/22 10:39:58 | 000,009,728 | ---- | C] ( ) -- C:\Windows\System32\IGFXDEVLib.dll
      [2012/10/22 10:39:46 | 000,963,452 | ---- | C] () -- C:\Windows\System32\igcodeckrng600.bin
      [2012/10/22 10:39:44 | 000,094,208 | ---- | C] () -- C:\Windows\System32\IccLibDll.dll
      [2012/10/19 04:52:30 | 002,907,040 | ---- | C] () -- C:\Windows\System32\PortChanger.exe
      [2012/07/26 02:36:07 | 000,800,318 | ---- | C] () -- C:\Windows\System32\perfh00A.dat
      [2012/07/26 02:36:07 | 000,346,536 | ---- | C] () -- C:\Windows\System32\perfi00A.dat
      [2012/07/26 02:36:07 | 000,163,592 | ---- | C] () -- C:\Windows\System32\perfc00A.dat
      [2012/07/26 02:36:07 | 000,043,804 | ---- | C] () -- C:\Windows\System32\perfd00A.dat
      [2012/07/26 00:55:27 | 000,711,282 | ---- | C] () -- C:\Windows\System32\perfh009.dat
      [2012/07/26 00:55:27 | 000,296,742 | ---- | C] () -- C:\Windows\System32\perfi009.dat
      [2012/07/26 00:55:27 | 000,133,150 | ---- | C] () -- C:\Windows\System32\perfc009.dat
      [2012/07/26 00:55:27 | 000,033,362 | ---- | C] () -- C:\Windows\System32\perfd009.dat
      [2012/07/26 00:53:47 | 000,215,943 | ---- | C] () -- C:\Windows\System32\dssec.dat
      [2012/07/26 00:53:46 | 000,000,741 | ---- | C] () -- C:\Windows\System32\NOISE.DAT
      [2012/07/26 00:03:55 | 000,067,584 | --S- | C] () -- C:\Windows\bootstat.dat
      [2012/07/25 19:20:38 | 000,071,680 | ---- | C] () -- C:\Windows\System32\BthpanContextHandler.dll
      [2012/07/25 19:17:42 | 000,043,520 | ---- | C] () -- C:\Windows\System32\BWContextHandler.dll
      [2012/07/25 14:41:36 | 000,043,131 | ---- | C] () -- C:\Windows\mib.bin
      [2012/07/25 14:24:47 | 000,526,068 | ---- | C] () -- C:\Windows\System32\staticurllist.bin
      [2012/07/13 20:00:46 | 000,043,882 | ---- | C] () -- C:\Windows\System32\srms.dat
      [2012/06/02 14:25:24 | 000,008,192 | ---- | C] () -- C:\Windows\System32\settings.dat
      [2012/06/02 08:31:24 | 001,520,828 | ---- | C] () -- C:\Windows\System32\WpcNBModel.bin
      [2012/06/02 08:31:19 | 000,673,088 | ---- | C] () -- C:\Windows\System32\mlang.dat
      [2011/09/14 11:11:16 | 001,048,576 | ---- | C] () -- C:\Windows\System32\syndata.bin

      ========== ZeroAccess Check ==========

      [2013/01/06 20:27:31 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini

      [HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

      [HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

      [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
      "" = %SystemRoot%\system32\shell32.dll -- [2013/01/09 17:26:23 | 017,560,576 | ---- | M] (Microsoft Corporation)
      "ThreadingModel" = Apartment

      [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
      "" = %systemroot%\system32\wbem\fastprox.dll -- [2012/07/25 21:18:27 | 000,784,896 | ---- | M] (Microsoft Corporation)
      "ThreadingModel" = Free

      [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
      "" = %systemroot%\system32\wbem\wbemess.dll -- [2012/07/25 21:20:13 | 000,354,304 | ---- | M] (Microsoft Corporation)
      "ThreadingModel" = Both

      ========== LOP Check ==========

      [2013/02/16 2121 | 000,000,000 | ---D | M] -- C:\Users\Alberto\AppData\Roaming\Audacity
      [2013/01/06 19:51:34 | 000,000,000 | ---D | M] -- C:\Users\Alberto\AppData\Roaming\Balabolka
      [2013/01/06 17:11:07 | 000,000,000 | ---D | M] -- C:\Users\Alberto\AppData\Roaming\Bitdefender
      [2013/01/06 20:52:44 | 000,000,000 | ---D | M] -- C:\Users\Alberto\AppData\Roaming\DAEMON Tools Lite
      [2013/01/06 19:53:00 | 000,000,000 | ---D | M] -- C:\Users\Alberto\AppData\Roaming\Digiarty
      [2013/01/22 17:37:44 | 000,000,000 | ---D | M] -- C:\Users\Alberto\AppData\Roaming\Greyfirst
      [2013/02/16 21:15:43 | 000,000,000 | ---D | M] -- C:\Users\Alberto\AppData\Roaming\Opera
      [2013/01/06 16:55:46 | 000,000,000 | ---D | M] -- C:\Users\Alberto\AppData\Roaming\QuickScan
      [2013/02/05 20:53:39 | 000,000,000 | ---D | M] -- C:\Users\Alberto\AppData\Roaming\TeamViewer
      [2013/01/20 00:07:59 | 000,000,000 | ---D | M] -- C:\Users\Alberto\AppData\Roaming\TechSmith
      [2013/02/01 02:57:31 | 000,000,000 | ---D | M] -- C:\Users\Alberto\AppData\Roaming\TuneUp Software
      [2013/02/10 03:25:47 | 000,000,000 | ---D | M] -- C:\Users\Alberto\AppData\Roaming\Windows Live Writer

      ========== Purity Check ==========



      < End of report >

    5. #5
      Usuario Avatar de kevin179
      Registrado
      ago 2012
      Ubicación
      Xalapa
      Mensajes
      125

      Re: Messenger plus for skype es virus?

      OTL Extras logfile created on: 16/02/2013 09:58:32 p. m. - Run 2
      OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Alberto\Desktop
      An unknown product (Version = 6.2.9200) - Type = NTWorkstation
      Internet Explorer (Version = 9.10.9200.16484)
      Locale: 0000080A | Country: México | Language: ESM | Date Format: dd/MM/yyyy

      1.94 Gb Total Physical Memory | 0.77 Gb Available Physical Memory | 39.71% Memory free
      4.87 Gb Paging File | 3.67 Gb Available in Paging File | 75.39% Paging File free
      Paging file location(s): c:\pagefile.sys 3000 3000 [binary data]

      %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
      Drive C: | 58.25 Gb Total Space | 23.87 Gb Free Space | 40.98% Space Free | Partition Type: NTFS
      Drive E: | 224.74 Gb Total Space | 32.27 Gb Free Space | 14.36% Space Free | Partition Type: NTFS
      Drive G: | 3.73 Gb Total Space | 0.01 Gb Free Space | 0.16% Space Free | Partition Type: FAT32

      Computer Name: AKTIFFISO | User Name: Alberto | Logged in as Administrator.
      Boot Mode: Normal | Scan Mode: Current user
      Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

      ========== Extra Registry (SafeList) ==========


      ========== File Associations ==========

      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
      .cpl [@ = cplfile] -- C:\Windows\System32\control.exe (Microsoft Corporation)
      .hlp [@ = hlpfile] -- C:\Windows\winhlp32.exe (Microsoft Corporation)

      ========== Shell Spawning ==========

      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
      batfile [open] -- "%1" %*
      cmdfile [open] -- "%1" %*
      comfile [open] -- "%1" %*
      cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
      exefile [open] -- "%1" %*
      helpfile [open] -- Reg Error: Key error.
      hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation)
      htmlfile [edit] -- Reg Error: Key error.
      htmlfile [print] -- Reg Error: Value error.
      inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
      piffile [open] -- "%1" %*
      regfile [merge] -- Reg Error: Key error.
      scrfile [config] -- "%1"
      scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
      scrfile [open] -- "%1" /S
      txtfile [edit] -- Reg Error: Key error.
      Unknown [openas] -- %SystemRoot%\system32\OpenWith.exe "%1" (Microsoft Corporation)
      Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
      Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
      Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
      Folder [explore] -- Reg Error: Value error.
      Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

      ========== Security Center Settings ==========

      [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
      "cval" = 1

      [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

      [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
      "VistaSp1" = Reg Error: Unknown registry data type -- File not found
      "AntiVirusOverride" = 0
      "AntiSpywareOverride" = 0
      "FirewallOverride" = 0

      [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]

      ========== Firewall Settings ==========

      [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
      "EnableFirewall" = 0
      "DisableNotifications" = 0

      [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
      "EnableFirewall" = 0
      "DisableNotifications" = 0

      [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
      "EnableFirewall" = 0
      "DisableNotifications" = 0

      ========== Authorized Applications List ==========


      ========== Vista Active Open Ports Exception List ==========

      [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
      "{14A895B5-58B5-40E4-B11B-313E3043237B}" = rport=138 | protocol=17 | dir=out | app=system |
      "{1E9945AA-D32B-4B2B-822D-CF9990689106}" = rport=139 | protocol=6 | dir=out | app=system |
      "{26C95FEE-60A8-412C-A7A4-AA849F1EF22F}" = lport=138 | protocol=17 | dir=in | app=system |
      "{2F937F0F-AA1F-4373-8691-E959A2275E7E}" = lport=1900 | protocol=17 | dir=in | name=windows live communications platform (ssdp) |
      "{327582B8-9C2D-4AE7-ADBA-8DCE908364FD}" = lport=2869 | protocol=6 | dir=in | name=windows live communications platform (upnp) |
      "{5723CC51-5304-412D-91E0-A46AD2048269}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
      "{75BF3E1A-4041-43BA-BC0A-D9A38C626F52}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | [email protected],-28539 |
      "{85FF5723-B39F-4436-AB6C-168B79EFB4D2}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
      "{8BBBC65B-D62B-4D55-A6A0-F25F3BE952E2}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe |
      "{B4ACB02A-09E2-4838-AA68-93BC4DC27783}" = rport=137 | protocol=17 | dir=out | app=system |
      "{B51321D9-ECAC-437B-BFA7-26ADD15BD103}" = rport=445 | protocol=6 | dir=out | app=system |
      "{C1FF380C-2F87-49E4-91B7-AF240378D2B2}" = lport=445 | protocol=6 | dir=in | app=system |
      "{CE244F8F-B868-4EB6-B2CD-2970B3F792EE}" = lport=139 | protocol=6 | dir=in | app=system |
      "{DEC8E73E-D799-4D47-A67B-B4236F54D4C3}" = lport=137 | protocol=17 | dir=in | app=system |

      ========== Vista Active Application Exception List ==========

      [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
      "{04C620CC-F1E1-486B-8401-36FF956877D1}" = dir=in | app=c:\program files\hp\digital imaging\bin\hpqgplgtupl.exe |
      "{07C75EB2-4DBA-4A08-BA62-8B64440D4301}" = dir=in | app=c:\program files\hp\digital imaging\bin\hpoews01.exe |
      "{08133672-EC05-4752-AC05-2ECBA0B5CFFD}" = dir=in | app=c:\program files\hp\digital imaging\bin\hpqnrs08.exe |
      "{0A2B65DC-AFE4-42B2-952D-3CC2CA9E3B6C}" = dir=out | name=@{microsoft.bingtravel_1.7.0.26_x86__8wekyb3d8bbwe?ms-resource://microsoft.bingtravel/resources/apptitle} |
      "{0BD718AF-F4EF-45E0-881B-3498DF2C4607}" = dir=in | app=c:\program files\hp\digital imaging\bin\hposid01.exe |
      "{13EFC101-4CAD-4836-9007-743E69595D1D}" = dir=out | name=@{microsoft.skypeapp_1.3.0.112_x86__kzf8qxf38zg5c?ms-resource://microsoft.skypeapp/resources/manifest_display_name} |
      "{1E19684D-A484-41F6-945F-77C05241C746}" = dir=out | name=@{microsoft.bingmaps_1.5.1.240_x86__8wekyb3d8bbwe?ms-resource://microsoft.bingmaps/resources/appdisplayname} |
      "{20188472-76B5-4124-B509-5E8BF655B5A6}" = dir=out | name=@{artifexmundi.nightmaresfromthedeepthecursedheart_1.0.0.50_x86__xmkq9zz36w32m?ms-resource://artifexmundi.nightmaresfromthedeepthecursedheart/resources/packagedisplayname} |
      "{2260B1F6-29FA-4B07-A884-5C26E98826DF}" = dir=in | app=c:\program files\hp\digital imaging\bin\hpzwiz01.exe |
      "{26BE1D6B-A768-498F-AAA6-5FF717F77370}" = dir=in | app=c:\program files\windows live\contacts\wlcomm.exe |
      "{3236C46E-F098-4234-B458-7ED4E18D19F2}" = dir=in | app=c:\program files\windows live\messenger\msnmsgr.exe |
      "{360AD54E-D2B6-44C9-A84A-681A04F31810}" = dir=out | name=angry birds star wars |
      "{3794802B-F312-4702-A351-874CFA8FE1A7}" = dir=in | name=@{microsoft.skypeapp_1.3.0.112_x86__kzf8qxf38zg5c?ms-resource://microsoft.skypeapp/resources/manifest_display_name} |
      "{383A2E08-9D9C-4428-9D5A-486482AE51D1}" = dir=in | name=@{microsoft.reader_6.2.9200.20523_x86__8wekyb3d8bbwe?ms-resource://microsoft.reader/resources/shortdisplayname} |
      "{3CA07557-0C70-4E59-A8B7-2769DD5249CA}" = dir=out | name=@{microsoft.windowscommunicationsapps_16.4.4406.1205_x86__8wekyb3d8bbwe?ms-resource://microsoft.windowscommunicationsapps/resources/communicationspackagename} |
      "{3CD66FEA-A11B-41E0-AE60-0F28662C8BC9}" = dir=out | name=@{microsoft.bingnews_1.7.0.38_x86__8wekyb3d8bbwe?ms-resource://microsoft.bingnews/resources/news} |
      "{43AD4FD4-56E9-4AD1-99EA-5C0A00C99789}" = dir=out | name=angry birds space |
      "{457E81B6-8884-4472-9B6B-B4BDA749962E}" = dir=out | name=@{microsoft.reader_6.2.9200.20523_x86__8wekyb3d8bbwe?ms-resource://microsoft.reader/resources/shortdisplayname} |
      "{47711BA4-7159-4A31-9F5E-8D31C4EDA450}" = dir=in | name=@{microsoft.windowscommunicationsapps_16.4.4406.1205_x86__8wekyb3d8bbwe?ms-resource://microsoft.windowscommunicationsapps/resources/communicationspackagename} |
      "{4A524511-4932-4636-B82D-1A36C4D46FC1}" = dir=in | app=c:\program files\common files\apple\apple application support\webkit2webprocess.exe |
      "{4DCC62C9-3E85-4F09-A560-F99C14034FD3}" = protocol=1 | dir=out | [email protected],-28544 |
      "{51542CB7-9D88-4120-87B9-CCF1EB82AA7A}" = dir=in | app=c:\users\alberto\appdata\local\microsoft\skydrive\skydrive.exe |
      "{54BF439A-A4E6-4AC0-BF98-2C26EA7F475A}" = dir=out | name=windows_ie_ac_001 |
      "{5ABC0ABA-F74F-45DA-B2A3-485C384ED50E}" = protocol=6 | dir=in | app=c:\program files\teamviewer\version8\teamviewer_service.exe |
      "{6C885B98-0106-4F6C-BF2A-CAB2302C51BF}" = dir=in | app=c:\program files\hp\digital imaging\bin\hpqusgm.exe |
      "{70B94F4B-A350-4028-9689-FCE37DABF933}" = dir=in | app=c:\program files\skype\phone\skype.exe |
      "{77C2D87D-0E8C-482E-A214-64BC5D93F597}" = dir=out | name=@{c:\windows\winstore\resources.pri?ms-resource://winstore/resources/displayname} |
      "{817F92BC-2596-44A0-9768-E24C6E797BF0}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
      "{83122EC7-DA6B-413F-B289-E0490AF11F51}" = protocol=58 | dir=out | [email protected],-28546 |
      "{8429CA4D-68C6-4F47-93C1-3368821D3BE0}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
      "{8C4A941D-F0D5-43DF-AE4C-A98733E1222D}" = protocol=17 | dir=in | app=c:\program files\teamviewer\version8\teamviewer.exe |
      "{8C87CC5A-6228-45A6-9C3E-0310AA265CED}" = dir=in | app=c:\program files\hp\hp software update\hpwucli.exe |
      "{8FE59F89-CB59-4A06-A48C-AA22324CBF50}" = dir=in | app=c:\program files\hp\digital imaging\bin\hpqkygrp.exe |
      "{97413AF8-B1BE-4CF7-BBDD-60658818312B}" = dir=out | name=@{microsoft.windowsphotos_16.4.4388.928_x86__8wekyb3d8bbwe?ms-resource://microsoft.windowsphotos/photo/residappname} |
      "{A32A2A7E-F865-4FDB-B0E6-75FEEA673E1A}" = dir=out | name=@{microsoft.bingweather_1.7.0.26_x86__8wekyb3d8bbwe?ms-resource://microsoft.bingweather/resources/apptitle} |
      "{A3881749-6851-4769-8097-A7A900C38D48}" = dir=out | name=@{microsoft.zunevideo_1.1.134.0_x86__8wekyb3d8bbwe?ms-resource://microsoft.zunevideo/resources/33270} |
      "{A5888127-E77B-4B2E-A0BF-CC83B129CDA1}" = dir=in | app=c:\program files\hp\digital imaging\bin\hposfx08.exe |
      "{A908ECB9-378F-403C-BF6A-2C891F85EA7A}" = dir=in | app=c:\program files\hp\digital imaging\bin\hpofxm08.exe |
      "{B27E8936-3B82-48D3-A620-B2E36B5A8CAF}" = protocol=58 | dir=in | [email protected],-28545 |
      "{B289A795-53D8-4492-94EB-1E3106126E3E}" = dir=in | app=c:\program files\hp\digital imaging\bin\hpqtra08.exe |
      "{B3E53F51-4514-45A3-AAA9-E290C7F4E4D4}" = dir=in | app=c:\program files\hp\digital imaging\bin\hpqcopy2.exe |
      "{B52597E4-C37A-440A-A408-E740C002DBC3}" = dir=in | name=@{microsoft.windowsphotos_16.4.4388.928_x86__8wekyb3d8bbwe?ms-resource://microsoft.windowsphotos/photo/residappname} |
      "{BD2D4A11-BA19-4680-A06B-0DE30402C1D4}" = dir=out | name=@{microsoft.zunemusic_1.1.144.0_x86__8wekyb3d8bbwe?ms-resource://microsoft.zunemusic/resources/33273} |
      "{C62D3A68-893E-4B19-B4DD-D9C4E9B07D70}" = dir=in | app=c:\program files\hp\digital imaging\bin\hpqste08.exe |
      "{C721B4A6-9159-48F6-8609-91C63DDE035D}" = dir=in | app=c:\program files\hp\digital imaging\bin\hpiscnapp.exe |
      "{CA27FC02-5184-4E49-BC9E-06758BE9F819}" = protocol=6 | dir=in | app=c:\program files\teamviewer\version8\teamviewer.exe |
      "{CE140DBE-5D10-4A57-B698-3A75EEF1F443}" = dir=in | app=c:\program files\hp\digital imaging\bin\hpqusgh.exe |
      "{D35E86A6-0301-48BA-A377-BC466701BB3D}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
      "{E5DDB322-8F24-4315-841C-05FD3EC4BC80}" = protocol=17 | dir=in | app=c:\program files\teamviewer\version8\teamviewer_service.exe |
      "{E87C4EB6-6F4C-4E7F-8385-633B5F0CA2DD}" = dir=in | name=@{c:\windows\winstore\resources.pri?ms-resource://winstore/resources/displayname} |
      "{EA0A2FFF-C768-4E74-9FE8-35F23D6DBEB0}" = dir=in | app=c:\program files\hp\digital imaging\bin\hpfccopy.exe |
      "{EE7F67FB-FFB4-4F2E-8495-7632954CE04E}" = dir=in | app=c:\program files\hp\digital imaging\bin\hpqgpc01.exe |
      "{F12CE34E-7080-4D58-8F2F-94947838325A}" = dir=in | app=c:\program files\hp\digital imaging\bin\hpqfxt08.exe |
      "{F8B3F93B-BA75-42F7-800B-A685F9349494}" = protocol=1 | dir=in | [email protected],-28543 |
      "{FB3F0DFB-2701-4C91-B500-DE6B739DD815}" = dir=in | app=c:\program files\hp\digital imaging\bin\hpofxs08.exe |
      "{FEEB1F86-5B78-4352-8943-E9E9A6FB14E2}" = dir=out | name=@{microsoft.xboxlivegames_1.1.134.0_x86__8wekyb3d8bbwe?ms-resource://microsoft.xboxlivegames/resources/34150} |

      ========== HKEY_LOCAL_MACHINE Uninstall List ==========

      [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
      "{01944037-D136-45EE-A007-403EAD929FC7}" = Windows Live Writer
      "{0454BB9A-2A7A-4214-BDFF-937F7A711A44}" = Windows Live Communications Platform
      "{061FF8F3-5226-4278-8AAB-282C1B024F58}" = Photo Common
      "{06A1D88C-E102-4527-AF70-29FFD7AF215A}" = Scan
      "{104066F4-5897-4067-85D3-4C88B67CCF75}" = AIO_Scan
      "{13F3CEA5-9E2C-4C4E-9F0F-D0DB389CF4A9}" = Movie Maker
      "{1458BB78-1DC5-4BC0-B9A3-2B644F5A8105}" = DeviceDiscovery
      "{150B6201-E9E6-4DFB-960E-CCBD53FBDDED}" = HPProductAssistant
      "{18455581-E099-4BA8-BC6B-F34B2F06600C}" = Google Toolbar for Internet Explorer
      "{1B947146-366B-42CD-86D5-219993CE3EE2}" = Windows Live MIME IFilter
      "{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
      "{1FEE19BC-6F0C-42E4-82FF-FB597F6141DF}" = Windows Live Essentials
      "{2318C2B1-4965-11d4-9B18-009027A5CD4F}" = Google Toolbar for Internet Explorer
      "{236BB7C4-4419-42FD-0409-1E257A25E34D}" = Adobe Photoshop CS2
      "{28006915-2739-4EBE-B5E8-49B25D32EB33}" = Qualcomm Atheros Client Installation Program
      "{292F0F52-B62D-4E71-921B-89A682402201}" = Toolbox
      "{2DFDE21D-AFFE-4CDD-BBD4-3B7832BEC036}" = AIO_CDB_Software
      "{30F99474-EBE3-4134-A02B-F6CD38CFE243}" = Photo Gallery
      "{3130FBF6-BAF1-4ED3-9977-6E6B353EBF35}" = Loquendo TTS Carlos 6.6.0
      "{39337565-330E-4ab6-A9AE-AC81E0720B10}" = CyberLink PhotoDirector 3
      "{3A4A028F-A5B3-4248-AE75-EE62A80C1B9B}" = Adobe Audition Loopology Content
      "{3C63F944-803E-49A7-B3A2-B8AB3313E883}" = Windows Live UX Platform Language Pack
      "{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}" = Intel(R) Rapid Storage Technology
      "{400C31E4-796F-4E86-8FDC-C3C4FACC6847}" = Junk Mail filter update
      "{4CCBD1F4-CEEC-452A-9CB8-46564B501315}" = Windows Live UX Platform
      "{4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}" = Skype™ 6.2
      "{53C141BA-4F9E-43FB-B4F9-0C01BB716FA8}" = Adobe Audition 3.0
      "{5B025634-7D5B-4B8D-BE2A-7943C1CF2D5D}" = Status
      "{5E6D6161-5509-4f55-9372-1E01792F843A}" = F300_Help
      "{65153EA5-8B6E-43B6-857B-C6E4FC25798A}" = Intel(R) Management Engine Components
      "{6A8DB215-7BCD-4377-B015-2E4541A3E7C6}" = Windows Live PIMT Platform
      "{6F545E5E-4595-11E2-93B6-B8AC6F97B88E}" = Google Earth
      "{6F5B70F0-EA6C-4A5B-BB16-8390BD66B251}" = HP Photosmart Officejet and Deskjet All-In-One Driver Software
      "{70854FE6-3BF1-4C69-94D0-BEB821102E34}" = Windows Live Mail
      "{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
      "{786C5747-1033-0000-B58E-000000000001}" = Adobe Stock Photos 1.0
      "{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}" = Apple Software Update
      "{7F4C8163-F259-49A0-A018-2857A90578BC}" = Adobe InDesign CS2
      "{8030AE22-7FA0-4880-A538-8906EDBF49F4}" = Windows Live Writer Resources
      "{846B5DED-DC8C-4E1A-B5B4-9F5B39A0CACE}" = HPDiagnosticAlert
      "{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
      "{8A642ACD-CE3A-4A23-A8B1-A0F7EB12B214}" = Windows Live SOXE Definitions
      "{8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}" = MSVCRT
      "{8E14DDC8-EA60-4E18-B3E3-1937104D5BDA}" = MSVCRT110
      "{8EDBA74D-0686-4C99-BFDD-F894678E5B39}" = Adobe Common File Installer
      "{8EE94FD8-5F52-4463-A340-185D16328158}" = WebReg
      "{8F7FECEC-088F-431D-A5FB-2B59E1E69943}" = Galería de fotos
      "{90150000-007E-0000-0000-0000000FF1CE}" = Office 15 Click-to-Run Licensing Component
      "{90150000-008C-0000-0000-0000000FF1CE}" = Office 15 Click-to-Run Extensibility Component
      "{90150000-008C-0C0A-0000-0000000FF1CE}" = Office 15 Click-to-Run Localization Component
      "{9294F169-72EE-4D74-AE92-CA25F64B4FF8}" = Fax
      "{95120000-00B9-0409-0000-0000000FF1CE}" = Microsoft Application Error Reporting
      "{96914829-DF65-40AE-8A31-6F3E96BAEBBD}" = Windows Live Mail
      "{96AE7E41-E34E-47D0-AC07-1091A8127911}" = Realtek USB 2.0 Card Reader
      "{97C79BEC-43F7-4BD8-A6A7-85C0257E488A}" = Windows Live Writer
      "{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
      "{9B362566-EC1B-4700-BB9C-EC661BDE2175}" = DocProc
      "{9BE466FF-70B7-4DA8-807C-DB4C3610FDAA}" = Copy
      "{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
      "{9ECCF4FE-B9D5-4935-B7D2-6A2B53E0A94E}" = F300
      "{A278382D-4F1B-4D47-9885-8523F7261E8D}_is1" = PDF-Viewer
      "{A80FA752-C491-4ED9-ABF0-4278563160B2}" = 32 Bit HP CIO Components Installer
      "{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
      "{AC35A885-0F8F-4857-B7DA-6E8DFB43E6B3}" = HPSSupply
      "{ADE16A9D-FBDC-4ECC-B6BD-9C31E51D0333}" = Lenovo EasyCamera
      "{AF0CE7C0-A3E4-4D73-988B-B29187EC6E9A}" = QuickTime
      "{B0069CFA-5BB9-4C03-B1C6-89CE290E5AFE}" = HP Update
      "{B20B30E2-3071-4A7B-8967-3A4B3932DADF}" = Network
      "{B2F5D08C-7E79-4FCD-AAF4-57AD35FF0601}" = Adobe Illustrator CS2
      "{B51BE9B4-FF29-4843-A6A4-71EC24754B56}" = TuneUp Utilities Language Pack (es-MX)
      "{B74D4E10-1033-0000-0000-000000000001}" = Adobe Bridge 1.0
      "{BB3447F6-9553-4AA9-960E-0DB5310C5779}" = GPBaseService2
      "{BC200000-0001-0000-0000-074957833700}" = ABBYY Business Card Reader 2.0 Light
      "{BC5DD87B-0143-4D14-AAE6-97109614DC6B}" = SolutionCenter
      "{BD7204BA-DD64-499E-9B55-6A282CDF4FA4}" = Destinations
      "{C424CD5E-EA05-4D3E-B5DA-F9F149E1D3AC}" = Windows Live Installer
      "{C4ABDBC8-1C81-42C9-BFFC-4A68511E9E4F}" = TuneUp Utilities 2013
      "{C7CA731B-BF9A-46D9-92CF-8A8737AE9240}" = System Requirements Lab for Intel
      "{C9B6EFD0-4F01-4BBA-8374-39AD99A3ED72}" = Windows Live Photo Common
      "{CAE4213F-F797-439D-BD9E-79B71D115BE3}" = HPPhotoGadget
      "{CD31E63D-47FD-491C-8117-CF201D0AFAB5}" = TrayApp
      "{D0956C11-0F60-43FE-99AD-524E833471BB}" = Energy Management
      "{D2C146B1-948D-47EF-8387-5D1C6B980F7C}" = Windows Live Writer
      "{D360FA88-17C8-4F14-B67F-13AAF9607B12}" = MarketResearch
      "{D379380A-3B00-4DB2-8F87-A6A4D07CF07E}" = Google SketchUp 8
      "{D5045A94-1D46-44A7-9C4F-7D05B40D82EC}" = AIO_CDB_ProductContext
      "{DB169E8F-5332-4DBF-B085-84AA2C373304}" = Windows Live Messenger
      "{E09C4DB7-630C-4F06-A631-8EA7239923AF}" = D3DX10
      "{E9787678-1033-0000-8E67-000000000001}" = Adobe Help Center 1.0
      "{ED6C77F9-4D7E-447C-9EC0-9A212D075535}" = Movie Maker
      "{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}" = Microsoft SQL Server 2005 Compact Edition [ENU]
      "{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
      "{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}" = Intel(R) Processor Graphics
      "{F2235E5E-7881-4293-9B6F-04B2609FBFF0}" = Windows Live Messenger
      "{F5266D28-E0B2-4130-BFC5-EE155AD514DC}" = Compatibilidad con Aplicaciones de Apple
      "{F6AC5364-2FB7-437a-811A-D645F22AA6AC}" = F300Trb
      "{F8A9085D-4C7A-41a9-8A77-C8998A96C421}" = Intel(R) Control Center
      "{F9000000-0015-0000-0000-074957833700}" = ABBYY Screenshot Reader
      "{FA0FF682-CC70-4C57-93CD-E276F3E7537E}" = BufferChm
      "{FA17A726-B229-4116-B793-A2AB1A4EAE2E}" = Adobe Premiere Pro 2.0
      "{FCB3772C-B7D0-4933-B1A9-3707EBACC573}" = Intel(R) SDK for OpenCL - CPU Only Runtime Package
      "{FE7C0B3D-50B9-4951-BE78-A321CBF86552}" = Windows Live SOXE
      "7-Zip" = 7-Zip 9.20
      "Adobe Audition 3.0" = Adobe Audition 3.0
      "Adobe Illustrator CS2" = Adobe Illustrator CS2
      "Adobe InDesign CS2 - {7F4C8163-F259-49A0-A018-2857A90578BC}" = Adobe InDesign CS2
      "Adobe Photoshop CS2 - {236BB7C4-4419-42FD-0409-1E257A25E34D}" = Adobe Photoshop CS2
      "Adobe Premiere Pro 2.0" = Adobe Premiere Pro 2.0
      "Adobe SVG Viewer" = Adobe SVG Viewer 3.0
      "Audacity_is1" = Audacity 2.0.3
      "Balabolka" = Balabolka
      "Bitdefender" = Bitdefender Windows 8 Security
      "BurnAware Free_is1" = BurnAware Free 5.5
      "CCleaner" = CCleaner
      "Celtx (2.9.7)" = Celtx (2.9.7)
      "CNXT_AUDIO_HDA" = Conexant HD Audio
      "DAEMON Tools Lite" = DAEMON Tools Lite
      "Google Chrome" = Google Chrome
      "GPL Ghostscript 8.71" = GPL Ghostscript 8.71
      "HomeStudentRetail - es-es" = Microsoft Office Hogar y Estudiantes 2013 - es-es
      "HP Imaging Device Functions" = HP Imaging Device Functions 14.0
      "HP Solution Center & Imaging Support Tools" = HP Solution Center 14.0
      "HPExtendedCapabilities" = HP Customer Participation Program 14.0
      "HPOCR" = OCR Software by I.R.I.S. 14.0
      "InstallShield_{39337565-330E-4ab6-A9AE-AC81E0720B10}" = CyberLink PhotoDirector 3
      "InstallShield_{D0956C11-0F60-43FE-99AD-524E833471BB}" = Energy Management
      "LoqTTS-Carmen_is1" = Loquendo TTS: Carmen (Spanish)
      "Malwarebytes' Anti-Malware_is1" = Malwarebytes Anti-Malware versión 1.70.0.1100
      "Messenger Plus! for Skype" = Messenger Plus!
      "RealAlt_is1" = Real Alternative 2.0.2
      "Recuva" = Recuva
      "Revo Uninstaller" = Revo Uninstaller 1.94
      "Scribus 1.4.2" = Scribus 1.4.2
      "Shop for HP Supplies" = Shop for HP Supplies
      "SynTPDeinstKey" = Synaptics Pointing Device Driver
      "TeamViewer 8" = TeamViewer 8
      "TuneUp Utilities 2013" = TuneUp Utilities 2013
      "Unlocker" = Unlocker 1.9.1
      "WinLiveSuite" = Windows Live Essentials
      "WinX DVD Ripper_is1" = WinX DVD Ripper 5.5.8
      "WinX HD Video Converter Deluxe_is1" = WinX HD Video Converter Deluxe 3.12.5
      "WinX YouTube Downloader 3.0.4_is1" = WinX YouTube Downloader 3.0.4
      "Word to FlipBook for Windows 32-bit_is1" = Word to FlipBook

      ========== HKEY_CURRENT_USER Uninstall List ==========

      [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
      "SkyDriveSetup.exe" = Microsoft SkyDrive
      "Songr" = Songr

      ========== Last 20 Event Log Errors ==========

      [ Application Events ]
      Error - 16/02/2013 1214 a. m. | Computer Name = Aktiffiso | Source = MsgPlusService | ID = 0
      Description =

      Error - 16/02/2013 05:52:01 a. m. | Computer Name = Aktiffiso | Source = MsgPlusService | ID = 0
      Description =

      Error - 16/02/2013 05:52:01 a. m. | Computer Name = Aktiffiso | Source = MsgPlusService | ID = 0
      Description =

      Error - 16/02/2013 10:36:44 a. m. | Computer Name = Aktiffiso | Source = MsgPlusService | ID = 0
      Description =

      Error - 16/02/2013 10:36:44 a. m. | Computer Name = Aktiffiso | Source = MsgPlusService | ID = 0
      Description =

      Error - 16/02/2013 02:32:36 p. m. | Computer Name = Aktiffiso | Source = MsgPlusService | ID = 0
      Description =

      Error - 16/02/2013 02:32:36 p. m. | Computer Name = Aktiffiso | Source = MsgPlusService | ID = 0
      Description =

      Error - 16/02/2013 08:25:56 p. m. | Computer Name = Aktiffiso | Source = MsgPlusService | ID = 0
      Description =

      Error - 16/02/2013 08:25:56 p. m. | Computer Name = Aktiffiso | Source = MsgPlusService | ID = 0
      Description =

      Error - 16/02/2013 11:54:44 p. m. | Computer Name = Aktiffiso | Source = Application Hang | ID = 1002
      Description = El programa OTL.exe, versión 3.2.69.0, dejó de interactuar con Windows
      y se cerró. Para ver si hay más información disponible acerca del problema, compruebe
      el historial de problemas en el panel de control Centro de actividades. Identificador
      de proceso: 730 Hora de inicio: 01ce0cc22d989f47 Hora de finalización: 4294967295

      Ruta
      de acceso de la aplicación: C:\Users\Alberto\Desktop\OTL.exe Identificador de informe:
      c2e2570c-78b5-11e2-b040-dc0ea1e86bf0 Nombre completo de paquete con errores: Identificador
      de aplicación relativa del paquete con errores:

      [ System Events ]
      Error - 16/02/2013 10:19:48 p. m. | Computer Name = Aktiffiso | Source = Service Control Manager | ID = 7001
      Description = El servicio Servicio de lista de redes depende del servicio Reconoc.
      ubicación de red, el cual no pudo iniciarse debido al siguiente error: %%1068

      Error - 16/02/2013 10:19:48 p. m. | Computer Name = Aktiffiso | Source = DCOM | ID = 10005
      Description =

      Error - 16/02/2013 10:19:48 p. m. | Computer Name = Aktiffiso | Source = Service Control Manager | ID = 7001
      Description = El servicio Reconoc. ubicación de red depende del servicio Cliente
      DHCP, el cual no pudo iniciarse debido al siguiente error: %%1068

      Error - 16/02/2013 10:19:48 p. m. | Computer Name = Aktiffiso | Source = Service Control Manager | ID = 7001
      Description = El servicio Servicio de lista de redes depende del servicio Reconoc.
      ubicación de red, el cual no pudo iniciarse debido al siguiente error: %%1068

      Error - 16/02/2013 10:19:48 p. m. | Computer Name = Aktiffiso | Source = DCOM | ID = 10005
      Description =

      Error - 16/02/2013 11:04:06 p. m. | Computer Name = Aktiffiso | Source = DCOM | ID = 10005
      Description =

      Error - 16/02/2013 11:04:12 p. m. | Computer Name = Aktiffiso | Source = DCOM | ID = 10005
      Description =

      Error - 16/02/2013 11:04:16 p. m. | Computer Name = Aktiffiso | Source = DCOM | ID = 10005
      Description =

      Error - 16/02/2013 11:46:59 p. m. | Computer Name = Aktiffiso | Source = Schannel | ID = 36888
      Description = Se generó una alerta irrecuperable y se envió al extremo remoto. Esto
      puede provocar la finalización de la conexión. El código de error irrecuperable
      definido del protocolo TLS es 51. El estado del error SChannel de Windows es 900.

      Error - 16/02/2013 11:48:27 p. m. | Computer Name = Aktiffiso | Source = Schannel | ID = 36888
      Description = Se generó una alerta irrecuperable y se envió al extremo remoto. Esto
      puede provocar la finalización de la conexión. El código de error irrecuperable
      definido del protocolo TLS es 51. El estado del error SChannel de Windows es 900.


      < End of report >

    6. #6
      Moderador.
      Avatar de @Tincho
      Registrado
      may 2008
      Ubicación
      Argentina
      Mensajes
      14.701

      Re: Messenger plus for skype es virus?

      Buenas Estimado.


      Esta todo correcto en el Log. No se ve ningún tipo de Malware, etc.

      Nos cuentas.

      Saludos.
      Tyny's
      If on your journey, you should encounter God, God will be cut!

      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.

    7. #7
      Usuario Avatar de kevin179
      Registrado
      ago 2012
      Ubicación
      Xalapa
      Mensajes
      125

      Re: Messenger plus for skype es virus?

      Hola tynys pues podemos darlo por solucionado, te agradesco que siempre solucionas mis paranoias, ya he podido volver a hacer mi imagen de sistema porque había tenido que usar el hdd externo para un respaldo importante de un cliente, en fin, realmente te agradesco y al igual que mi buen amigo jdoares te nombraré segundo padrino mio, espero un dia por mensajes privados puedas apoyarme enseñándome a leer estos logs o los de hijackthis para no darte tantos problemas y sobre todo poder ayudarme a mí y a mi gente, en fin, te agradesco esto y espero puedas echar un tuto de esto seria buena idea, ojalá puedas hacerlo por mp nos vemos hermano y mil gracias de nuevo, lo que me parece extraño es que no se instaló la barrita esa y bueno ya vez eso preocupaba igual que bitdefender es medio jodon, en la maquina con Windows 7 abriré un tema la otra semana porque es de mi madre y la usa toda la semana y no puede perder tiempo en el log, tu comprendes, en fin, si se queda abierto el tema para el nuevo log lo pongo aquí sino abro otro, la única diferencia es que allá si hubo unos ads y algo de publicidad de limpiadores de registro a los que nunca dimos click y que desaparecieron al eliminar la barra y que de hecho bullguard y malwarebytes no han detectado nada en modo seguro. En fin, como sea gracias hermano DTB

    8. #8
      Moderador.
      Avatar de @Tincho
      Registrado
      may 2008
      Ubicación
      Argentina
      Mensajes
      14.701

      Re: Messenger plus for skype es virus?

      Buenas.

      Gracias por lo que nos escribes

      No hay ningun tipo de problema, dejamos el tema abierto para cuando quieras pegar el log!!

      Saludos.
      Tyny's
      If on your journey, you should encounter God, God will be cut!

      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.