• Registrarse
  • Iniciar sesión


  • Página 1 de 2 12 ÚltimoÚltimo
    Resultados 1 al 10 de 12

    Posible Malware

    Que tal, acudo a su apoyo nuevamente, mi pc tiene un problema que no he identificado, en mi secion cuando abro la ventana del Skype no me aparece las ventanas donde se escribe el usuario ...

    1. #1
      Usuario Avatar de Roberto45
      Registrado
      nov 2010
      Ubicación
      Veracruz, Mexico
      Mensajes
      31

      Posible Malware

      Que tal, acudo a su apoyo nuevamente, mi pc tiene un problema que no he identificado, en mi secion cuando abro la ventana del Skype no me aparece las ventanas donde se escribe el usuario y el password, tampoco puedo usar el antivirus ( tengo McAfee) abre pero la ventana esta en blanco, no lo puedo correr, cuando enciendo la maquina como a los 5 minutos se congela toda la pantalla y asi se queda, ( la apago y la vuelvo a encender ) y ya puedo trabajar, otro detalle cuando abro la ventana del Facebook se congela por un minuto aproximadamente ( antes de poner usuario y pasword) hace 4 dias reeistale el antivirus desde la pagina de mcAfee y quedo bien abria el Skype, pero al otro dia lo mismo, gracias por su atencion
      la PC es una Acer con windows vista, de 32 bits home basic

      Roberto

    2. #2
      Ex-Colaborador Avatar de Gemsa_03
      Registrado
      feb 2012
      Ubicación
      Málaga-España
      Mensajes
      6.615

      Re: Posible Malware

      Hola!

      A ver si puedo ayudarte con los problemas de tu Equipo.
      Mientras dure este proceso, no descargues ningún Programa/Aplicación que yo no te diga, y siempre que realices los Análisis, mantén las demás Aplicaciones/Programas cerrados.



      Descarga AT-destroyer 2.1 y lo trasladas al Escritorio.
      Descarga Adwcleaner y lo trasladas al Escritorio.
      Descarga/Actualiza el Malwarebytes Anti-Malware 1.65.1 | InfoSpyware - Manual de Malwarebytes Anti-Malware 2.



      PRIMERO
      AT-Destroyer Desactiva temporalmente tu Antivirus
      • Ejecútalo y le das al botón Buscar y destruir. IMAGEN AT-destroyer
      • Toda vez que haya realizado su proceso te pedirá reiniciar, lo haces. Al Iniciar de nuevo te saldrá una ventana con los resultados LA GUARDAS
      • También puedes recuperar el Informe del botón reporte de la aplicación


      SEGUNDO
      Adwcleaner
      • Ejecútalo y le das al botón supresión. IMAGEN AdwCleaner
      • Toda vez que haya realizado su proceso te pedirá reiniciar, lo haces. Al Iniciar de nuevo te saldrá una ventana con los resultados LA GUARDAS
      • También puedes recuperar el Informe de C:\AdwCleaner[S1].txt -
      YA PUEDES ACTIVAR TU ANTIVIRUS

      TERCERO
      Malwarebytes
      • Ejecútalo, seleccionando "Análisis Completo".
      • Clickea en Mostrar los resultados
      • Elimina lo Seleccionado según se ve en esta IMAGEN
      • Adjunta el Informe en tu próxima respuesta, que se encontrará en la pestaña Registros del Programa.


      Adjuntas: reporte del AT, del Adwcleaner y del Malwarebytes.

      Un saludo.
      Última edición por Gemsa_03 fecha: 25/02/13 a las 23:14:42 Razón: corrección

    3. #3
      Usuario Avatar de Roberto45
      Registrado
      nov 2010
      Ubicación
      Veracruz, Mexico
      Mensajes
      31

      Re: Posible Malware

      Hola, gracias por la respuesta, realice lo que se pidio y he aki los reportes, debo comentar que aun no puedo entrar al Skype ni activar el McAfee creo que lo volvere a instalar, aver que coementan, por los pronto ya no se ha congelado la imagen,


      ######################## AT-Destroyer [2.1] By Infospyware.
      Hora/Día/Mes/Año: 19:02:43 \\\ 26/02/2013
      AT-Destroyer 2.1 By Infospyware ---> InfoSpyware
      Última actualización: 30/11/2012
      Opción escogida: 2 :Buscar y Destruir
      Versión Internet Explorer:9.0.8112.16421
      Google Chrome:24.0.1312.57
      Privilegios: Roberto - Administrador
      Modo Actual: Modo Normal.
      Nombre del pc: CONTROLTPR
      Información del sistema operativo:X86-WIN_VISTA-Service Pack 2
      nombre del usuario:Roberto
      Lenguaje del sistema: Español



      >>>>>>> Servicios <<<<<<<



      >>>>>> Carpetas <<<<<<

      C:\Users\Roberto\AppData\Roaming\OpenCandy\OpenCandy_7B3C2B54206046FCA9BEF9FF9A4B06EA (W32/Adware.OpenCandy)
      C:\Users\Roberto\AppData\Roaming\OpenCandy\OpenCandy_7B3C2B54206046FCA9BEF9FF9A4B06EA\2209.ico (W32/Adware.OpenCandy)
      C:\Users\Roberto\AppData\Roaming\OpenCandy\OpenCandy_7B3C2B54206046FCA9BEF9FF9A4B06EA\driverscanner (33).exe (W32/Adware.OpenCandy)
      C:\Users\Roberto\AppData\Roaming\OpenCandy\OpenCandy_7B3C2B54206046FCA9BEF9FF9A4B06EA\LatestDLMgr.exe (W32/Adware.OpenCandy)
      C:\Users\Roberto\AppData\Roaming\OpenCandy (W32/Adware.OpenCandy)
      C:\Users\Roberto\AppData\Roaming\Babylon\log_file.txt (W32/PND.Babylon Toolbar)
      C:\Users\Roberto\AppData\Roaming\Babylon (W32/PND.Babylon Toolbar)
      C:\Program Files\BrowserCompanion\blabbers-ch.crx (W32/Adware.BrowserCompanion)
      C:\Program Files\BrowserCompanion\logo.ico (W32/Adware.BrowserCompanion)
      C:\Program Files\BrowserCompanion (W32/Adware.BrowserCompanion)
      C:\ProgramData\SweetIM\Communicator (W32/PND.SweetIM)
      C:\ProgramData\SweetIM\Communicator\conf (W32/PND.SweetIM)
      C:\ProgramData\SweetIM\Communicator\conf\communicator.xml (W32/PND.SweetIM)
      C:\ProgramData\SweetIM\Communicator\conf\LocalStorage (W32/PND.SweetIM)
      C:\ProgramData\SweetIM\Communicator\conf\LocalStorage\config.xml (W32/PND.SweetIM)
      C:\ProgramData\SweetIM\Communicator\conf\LocalStorage\notify.txt (W32/PND.SweetIM)
      C:\ProgramData\SweetIM\Communicator\Logs (W32/PND.SweetIM)
      C:\ProgramData\SweetIM\Messenger (W32/PND.SweetIM)
      C:\ProgramData\SweetIM\Messenger\conf (W32/PND.SweetIM)
      C:\ProgramData\SweetIM\Messenger\conf\adapter.xml (W32/PND.SweetIM)
      C:\ProgramData\SweetIM\Messenger\conf\autoupdate.xml (W32/PND.SweetIM)
      C:\ProgramData\SweetIM\Messenger\conf\contentpackages.xml (W32/PND.SweetIM)
      C:\ProgramData\SweetIM\Messenger\conf\logger.xml (W32/PND.SweetIM)
      C:\ProgramData\SweetIM\Messenger\conf\messages.xml (W32/PND.SweetIM)
      C:\ProgramData\SweetIM\Messenger\conf\sweetim.xml (W32/PND.SweetIM)
      C:\ProgramData\SweetIM\Messenger\conf\sweetimapp.xml (W32/PND.SweetIM)
      C:\ProgramData\SweetIM\Messenger\conf\users (W32/PND.SweetIM)
      C:\ProgramData\SweetIM\Messenger\conf\users\AllUsers (W32/PND.SweetIM)
      C:\ProgramData\SweetIM\Messenger\conf\users\AllUsers\active_packages.xml (W32/PND.SweetIM)
      C:\ProgramData\SweetIM\Messenger\conf\users\main_user_config.xml (W32/PND.SweetIM)
      C:\ProgramData\SweetIM\Messenger\conf\users\[email protected] (W32/PND.SweetIM)
      C:\ProgramData\SweetIM\Messenger\conf\users\[email protected]\content_update_notification.xml (W32/PND.SweetIM)
      C:\ProgramData\SweetIM\Messenger\conf\users\[email protected]\emoticons_shortcut.xml (W32/PND.SweetIM)
      C:\ProgramData\SweetIM\Messenger\conf\users\[email protected]\user_config.xml (W32/PND.SweetIM)
      C:\ProgramData\SweetIM\Messenger\conf\users\[email protected] (W32/PND.SweetIM)
      C:\ProgramData\SweetIM\Messenger\conf\users\[email protected]\content_update_notification.xml (W32/PND.SweetIM)
      C:\ProgramData\SweetIM\Messenger\conf\users\[email protected]\emoticons_shortcut.xml (W32/PND.SweetIM)
      C:\ProgramData\SweetIM\Messenger\conf\users\[email protected]\user_config.xml (W32/PND.SweetIM)
      C:\ProgramData\SweetIM\Messenger\data (W32/PND.SweetIM)
      C:\ProgramData\SweetIM\Messenger\data\Bars (W32/PND.SweetIM)
      C:\ProgramData\SweetIM\Messenger\data\Bars\100 (W32/PND.SweetIM)
      C:\ProgramData\SweetIM\Messenger\data\Bars\100\bar0104 (W32/PND.SweetIM)
      C:\ProgramData\SweetIM\Messenger\data\Bars\100\bar0104\bar.html (W32/PND.SweetIM)
      C:\ProgramData\SweetIM\Messenger\data\Bars\100\bar0104\bar.js (W32/PND.SweetIM)
      C:\ProgramData\SweetIM\Messenger\data\Bars\100\bar0104\bar.swf (W32/PND.SweetIM)
      C:\ProgramData\SweetIM\Messenger\data\Bars\100\bar0104\validator.xml (W32/PND.SweetIM)
      C:\ProgramData\SweetIM\Messenger\data\Bars\100\bar0172 (W32/PND.SweetIM)
      C:\ProgramData\SweetIM\Messenger\data\Bars\100\bar0172\bar.html (W32/PND.SweetIM)
      C:\ProgramData\SweetIM\Messenger\data\Bars\100\bar0172\bar.js (W32/PND.SweetIM)
      C:\ProgramData\SweetIM\Messenger\data\Bars\100\bar0172\bar.swf (W32/PND.SweetIM)
      C:\ProgramData\SweetIM\Messenger\data\Bars\100\bar0172\validator.xml (W32/PND.SweetIM)
      C:\ProgramData\SweetIM\Messenger\data\Bars\100\default (W32/PND.SweetIM)
      C:\ProgramData\SweetIM\Messenger\data\Bars\100\default\bar.html (W32/PND.SweetIM)
      C:\ProgramData\SweetIM\Messenger\data\Bars\100\default\bar.js (W32/PND.SweetIM)
      C:\ProgramData\SweetIM\Messenger\data\Bars\100\default\bar.swf (W32/PND.SweetIM)
      C:\ProgramData\SweetIM\Messenger\data\Bars\100\default\validator.xml (W32/PND.SweetIM)
      C:\ProgramData\SweetIM\Messenger\data\Bars\Default (W32/PND.SweetIM)
      C:\ProgramData\SweetIM\Messenger\data\Bars\Default\100 (W32/PND.SweetIM)
      C:\ProgramData\SweetIM\Messenger\data\Bars\Default\100\bar.html (W32/PND.SweetIM)
      C:\ProgramData\SweetIM\Messenger\data\Bars\Default\100\bar.js (W32/PND.SweetIM)
      C:\ProgramData\SweetIM\Messenger\data\Bars\Default\100\bar.swf (W32/PND.SweetIM)
      C:\ProgramData\SweetIM\Messenger\data\Bars\Default\200 (W32/PND.SweetIM)
      C:\ProgramData\SweetIM\Messenger\data\Bars\Default\200\bar.html (W32/PND.SweetIM)
      C:\ProgramData\SweetIM\Messenger\data\Bars\Default\200\bar.js (W32/PND.SweetIM)
      C:\ProgramData\SweetIM\Messenger\data\Bars\Default\200\bar.swf (W32/PND.SweetIM)
      C:\ProgramData\SweetIM\Messenger\data\Bars\Default\400 (W32/PND.SweetIM)
      C:\ProgramData\SweetIM\Messenger\data\Bars\Default\400\bar.html (W32/PND.SweetIM)
      C:\ProgramData\SweetIM\Messenger\data\Bars\Default\400\bar.js (W32/PND.SweetIM)
      C:\ProgramData\SweetIM\Messenger\data\Bars\Default\400\bar.swf (W32/PND.SweetIM)
      C:\ProgramData\SweetIM\Messenger\data\contentdb (W32/PND.SweetIM)
      C:\ProgramData\SweetIM\Messenger\data\contentdb\cache_indx.dat (W32/PND.SweetIM)
      C:\ProgramData\SweetIM\Messenger\data\contentdb\installcontentvalidation.xml (W32/PND.SweetIM)
      C:\ProgramData\SweetIM\Messenger\data\packages (W32/PND.SweetIM)
      C:\ProgramData\SweetIM\Messenger\data\packages\FailDialog (W32/PND.SweetIM)
      C:\ProgramData\SweetIM\Messenger\data\packages\FailDialog\activationFail.htm (W32/PND.SweetIM)
      C:\ProgramData\SweetIM\Messenger\data\packages\FailDialog\close_but.gif (W32/PND.SweetIM)
      C:\ProgramData\SweetIM\Messenger\data\packages\FailDialog\failure_dialog_BG.jpg (W32/PND.SweetIM)
      C:\ProgramData\SweetIM\Messenger\logs (W32/PND.SweetIM)
      C:\ProgramData\SweetIM\Messenger\update (W32/PND.SweetIM)
      C:\ProgramData\SweetIM\Messenger\update\sweetimsetup.exe (W32/PND.SweetIM)
      C:\ProgramData\SweetIM (W32/PND.SweetIM)
      C:\Program Files\SweetIM\Communicator (W32/PND.SweetIM)
      C:\Program Files\SweetIM\Communicator\mgcommon.dll (W32/PND.SweetIM)
      C:\Program Files\SweetIM\Communicator\mgcommunication.dll (W32/PND.SweetIM)
      C:\Program Files\SweetIM\Communicator\mgsimcommon.dll (W32/PND.SweetIM)
      C:\Program Files\SweetIM\Communicator\mgxml_wrapper.dll (W32/PND.SweetIM)
      C:\Program Files\SweetIM\Communicator\Microsoft.VC90.CRT (W32/PND.SweetIM)
      C:\Program Files\SweetIM\Communicator\Microsoft.VC90.CRT\Microsoft.VC90.CRT.manifest (W32/PND.SweetIM)
      C:\Program Files\SweetIM\Communicator\Microsoft.VC90.CRT\msvcm90.dll (W32/PND.SweetIM)
      C:\Program Files\SweetIM\Communicator\Microsoft.VC90.CRT\msvcp90.dll (W32/PND.SweetIM)
      C:\Program Files\SweetIM\Communicator\Microsoft.VC90.CRT\msvcr90.dll (W32/PND.SweetIM)
      C:\Program Files\SweetIM\Communicator\resources (W32/PND.SweetIM)
      C:\Program Files\SweetIM\Communicator\resources\sqlite (W32/PND.SweetIM)
      C:\Program Files\SweetIM\Communicator\resources\sqlite\mgSqlite3.dll (W32/PND.SweetIM)
      C:\Program Files\SweetIM\Communicator\SweetPacksUpdateManager.exe (W32/PND.SweetIM)
      C:\Program Files\SweetIM\Messenger (W32/PND.SweetIM)
      C:\Program Files\SweetIM\Messenger\ContentPackagesActivationHandler.exe (W32/PND.SweetIM)
      C:\Program Files\SweetIM\Messenger\default.xml (W32/PND.SweetIM)
      C:\Program Files\SweetIM\Messenger\mgAdaptersProxy.dll (W32/PND.SweetIM)
      C:\Program Files\SweetIM\Messenger\mgArchive.dll (W32/PND.SweetIM)
      C:\Program Files\SweetIM\Messenger\mgcommon.dll (W32/PND.SweetIM)
      C:\Program Files\SweetIM\Messenger\mgcommunication.dll (W32/PND.SweetIM)
      C:\Program Files\SweetIM\Messenger\mgconfig.dll (W32/PND.SweetIM)
      C:\Program Files\SweetIM\Messenger\mgFlashPlayer.dll (W32/PND.SweetIM)
      C:\Program Files\SweetIM\Messenger\mghooking.dll (W32/PND.SweetIM)
      C:\Program Files\SweetIM\Messenger\mgICQAuto.dll (W32/PND.SweetIM)
      C:\Program Files\SweetIM\Messenger\mgICQMessengerAdapter.dll (W32/PND.SweetIM)
      C:\Program Files\SweetIM\Messenger\mglogger.dll (W32/PND.SweetIM)
      C:\Program Files\SweetIM\Messenger\mgMediaPlayer.dll (W32/PND.SweetIM)
      C:\Program Files\SweetIM\Messenger\mgMsnAuto.dll (W32/PND.SweetIM)
      C:\Program Files\SweetIM\Messenger\mgMsnMessengerAdapter.dll (W32/PND.SweetIM)
      C:\Program Files\SweetIM\Messenger\mgsimcommon.dll (W32/PND.SweetIM)
      C:\Program Files\SweetIM\Messenger\mgSweetIM.dll (W32/PND.SweetIM)
      C:\Program Files\SweetIM\Messenger\mgUpdateSupport.dll (W32/PND.SweetIM)
      C:\Program Files\SweetIM\Messenger\mgxml_wrapper.dll (W32/PND.SweetIM)
      C:\Program Files\SweetIM\Messenger\mgYahooAuto.dll (W32/PND.SweetIM)
      C:\Program Files\SweetIM\Messenger\mgYahooMessengerAdapter.dll (W32/PND.SweetIM)
      C:\Program Files\SweetIM\Messenger\msvcp71.dll (W32/PND.SweetIM)
      C:\Program Files\SweetIM\Messenger\msvcr71.dll (W32/PND.SweetIM)
      C:\Program Files\SweetIM\Messenger\resources (W32/PND.SweetIM)
      C:\Program Files\SweetIM\Messenger\resources\images (W32/PND.SweetIM)
      C:\Program Files\SweetIM\Messenger\resources\images\AudibleButton.png (W32/PND.SweetIM)
      C:\Program Files\SweetIM\Messenger\resources\images\DisplayPicturesButton.png (W32/PND.SweetIM)
      C:\Program Files\SweetIM\Messenger\resources\images\EmoticonButton.png (W32/PND.SweetIM)
      C:\Program Files\SweetIM\Messenger\resources\images\GamesButton.png (W32/PND.SweetIM)
      C:\Program Files\SweetIM\Messenger\resources\images\KeyboardButton.png (W32/PND.SweetIM)
      C:\Program Files\SweetIM\Messenger\resources\images\NudgeButton.png (W32/PND.SweetIM)
      C:\Program Files\SweetIM\Messenger\resources\images\SoundFxButton.png (W32/PND.SweetIM)
      C:\Program Files\SweetIM\Messenger\resources\images\WinksButton.png (W32/PND.SweetIM)
      C:\Program Files\SweetIM\Messenger\resources\sqlite (W32/PND.SweetIM)
      C:\Program Files\SweetIM\Messenger\resources\sqlite\mgSqlite3.dll (W32/PND.SweetIM)
      C:\Program Files\SweetIM\Messenger\SweetIM.exe (W32/PND.SweetIM)
      C:\Program Files\SweetIM\Toolbars (W32/PND.SweetIM)
      C:\Program Files\SweetIM\Toolbars\Internet Explorer (W32/PND.SweetIM)
      C:\Program Files\SweetIM\Toolbars\Internet Explorer\ClearHist.exe (W32/PND.SweetIM)
      C:\Program Files\SweetIM\Toolbars\Internet Explorer\conf (W32/PND.SweetIM)
      C:\Program Files\SweetIM\Toolbars\Internet Explorer\conf\logger.xml (W32/PND.SweetIM)
      C:\Program Files\SweetIM\Toolbars\Internet Explorer\default.xml (W32/PND.SweetIM)
      C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgcommon.dll (W32/PND.SweetIM)
      C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgconfig.dll (W32/PND.SweetIM)
      C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgHelper.dll (W32/PND.SweetIM)
      C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgHelperApp.exe (W32/PND.SweetIM)
      C:\Program Files\SweetIM\Toolbars\Internet Explorer\mghooking.dll (W32/PND.SweetIM)
      C:\Program Files\SweetIM\Toolbars\Internet Explorer\mglogger.dll (W32/PND.SweetIM)
      C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgsimcommon.dll (W32/PND.SweetIM)
      C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll (W32/PND.SweetIM)
      C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarProxy.dll (W32/PND.SweetIM)
      C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgxml_wrapper.dll (W32/PND.SweetIM)
      C:\Program Files\SweetIM\Toolbars\Internet Explorer\Microsoft.VC90.CRT (W32/PND.SweetIM)
      C:\Program Files\SweetIM\Toolbars\Internet Explorer\Microsoft.VC90.CRT\Microsoft.VC90.CRT.manifest (W32/PND.SweetIM)
      C:\Program Files\SweetIM\Toolbars\Internet Explorer\Microsoft.VC90.CRT\msvcm90.dll (W32/PND.SweetIM)
      C:\Program Files\SweetIM\Toolbars\Internet Explorer\Microsoft.VC90.CRT\msvcp90.dll (W32/PND.SweetIM)
      C:\Program Files\SweetIM\Toolbars\Internet Explorer\Microsoft.VC90.CRT\msvcr90.dll (W32/PND.SweetIM)
      C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources (W32/PND.SweetIM)
      C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\about.html (W32/PND.SweetIM)
      C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\affid.dat (W32/PND.SweetIM)
      C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\basis.xml (W32/PND.SweetIM)
      C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\bing.png (W32/PND.SweetIM)
      C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\blue (W32/PND.SweetIM)
      C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\blue\search_button.png (W32/PND.SweetIM)
      C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\blue\search_button_bing.png (W32/PND.SweetIM)
      C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\blue\search_button_current.png (W32/PND.SweetIM)
      C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\blue\search_button_dictionary.png (W32/PND.SweetIM)
      C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\blue\search_button_google.png (W32/PND.SweetIM)
      C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\blue\search_button_hover.png (W32/PND.SweetIM)
      C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\blue\search_button_left.png (W32/PND.SweetIM)
      C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\blue\search_button_photo.png (W32/PND.SweetIM)
      C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\blue\search_button_video.png (W32/PND.SweetIM)
      C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\blue\search_button_web.png (W32/PND.SweetIM)
      C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\blue\search_button_yahoo.png (W32/PND.SweetIM)
      C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\clear-history.png (W32/PND.SweetIM)
      C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\content-notifier-anim-over.gif (W32/PND.SweetIM)
      C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\content-notifier-anim.gif (W32/PND.SweetIM)
      C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\content-notifier.js (W32/PND.SweetIM)
      C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\dating.png (W32/PND.SweetIM)
      C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\dictionary.png (W32/PND.SweetIM)
      C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\eye_icon.png (W32/PND.SweetIM)
      C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\eye_icon_over.png (W32/PND.SweetIM)
      C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\e_cards.png (W32/PND.SweetIM)
      C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\find.png (W32/PND.SweetIM)
      C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\free_stuff.png (W32/PND.SweetIM)
      C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\games.png (W32/PND.SweetIM)
      C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\glitter.png (W32/PND.SweetIM)
      C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\google.png (W32/PND.SweetIM)
      C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\green (W32/PND.SweetIM)
      C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\green\search_button.png (W32/PND.SweetIM)
      C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\green\search_button_bing.png (W32/PND.SweetIM)
      C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\green\search_button_current.png (W32/PND.SweetIM)
      C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\green\search_button_dictionary.png (W32/PND.SweetIM)
      C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\green\search_button_google.png (W32/PND.SweetIM)
      C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\green\search_button_hover.png (W32/PND.SweetIM)
      C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\green\search_button_left.png (W32/PND.SweetIM)
      C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\green\search_button_photo.png (W32/PND.SweetIM)
      C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\green\search_button_video.png (W32/PND.SweetIM)
      C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\green\search_button_web.png (W32/PND.SweetIM)
      C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\green\search_button_yahoo.png (W32/PND.SweetIM)
      C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\help.png (W32/PND.SweetIM)
      C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\highlight.png (W32/PND.SweetIM)
      C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\locales.xml (W32/PND.SweetIM)
      C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\logo_16x16.png (W32/PND.SweetIM)
      C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\logo_21x18.png (W32/PND.SweetIM)
      C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\logo_32x32.png (W32/PND.SweetIM)
      C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\logo_about.png (W32/PND.SweetIM)
      C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\MenuExt.html (W32/PND.SweetIM)
      C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\more-search-providers.png (W32/PND.SweetIM)
      C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\music.png (W32/PND.SweetIM)
      C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\news.png (W32/PND.SweetIM)
      C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\options.html (W32/PND.SweetIM)
      C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\orange (W32/PND.SweetIM)
      C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\orange\search_button.png (W32/PND.SweetIM)
      C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\orange\search_button_bing.png (W32/PND.SweetIM)
      C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\orange\search_button_current.png (W32/PND.SweetIM)
      C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\orange\search_button_dictionary.png (W32/PND.SweetIM)
      C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\orange\search_button_google.png (W32/PND.SweetIM)
      C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\orange\search_button_hover.png (W32/PND.SweetIM)
      C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\orange\search_button_left.png (W32/PND.SweetIM)
      C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\orange\search_button_photo.png (W32/PND.SweetIM)
      C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\orange\search_button_video.png (W32/PND.SweetIM)
      C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\orange\search_button_web.png (W32/PND.SweetIM)
      C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\orange\search_button_yahoo.png (W32/PND.SweetIM)
      C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\photos.png (W32/PND.SweetIM)
      C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\search-current-site.png (W32/PND.SweetIM)
      C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\shopping.png (W32/PND.SweetIM)
      C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\SmileySmile.png (W32/PND.SweetIM)
      C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\SmileyWink.png (W32/PND.SweetIM)
      C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\sweetim_text.png (W32/PND.SweetIM)
      C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\toolbar.xml (W32/PND.SweetIM)
      C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\video.png (W32/PND.SweetIM)
      C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\web-search.png (W32/PND.SweetIM)
      C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\web-toolbar.js (W32/PND.SweetIM)
      C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\yahoo.png (W32/PND.SweetIM)
      C:\Program Files\SweetIM (W32/PND.SweetIM)
      C:\Program Files\PriceGong\2.6.9 (W32/PND.PriceGong)
      C:\Program Files\PriceGong\2.6.9\PriceGong.crx (W32/PND.PriceGong)
      C:\Program Files\PriceGong (W32/PND.PriceGong)
      C:\ProgramData\Babylon (W32/PND.Babylon Toolbar)
      C:\ProgramData\Tarma Installer\{361E80BE-388B-4270-BF54-A10C2B756504} 97
      C:\ProgramData\Tarma Installer\{361E80BE-388B-4270-BF54-A10C2B756504}\Cache 97
      C:\ProgramData\Tarma Installer\{361E80BE-388B-4270-BF54-A10C2B756504}\Setup.dat 97
      C:\ProgramData\Tarma Installer\{889DF117-14D1-44EE-9F31-C5FB5D47F68B} 97
      C:\ProgramData\Tarma Installer\{889DF117-14D1-44EE-9F31-C5FB5D47F68B}\Cache 97
      C:\ProgramData\Tarma Installer\{889DF117-14D1-44EE-9F31-C5FB5D47F68B}\Setup.dat 97
      C:\ProgramData\Tarma Installer 97


      >>>>>> Archivos <<<<<<

      C:\Program Files\mozilla firefox\searchplugins\babylon.xml
      C:\Program Files\Mozilla Firefox\extensions\[email protected]
      C:\Windows\system32\DEBUG.log
      C:\user.js


      >>>>>> Registro <<<<<<

      HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EEE6C35C-6118-11DC-9C72-001320C79847}
      HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}
      HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchScopes\{EEE6C360-6118-11DC-9C72-001320C79847}
      HKLM\Software\Microsoft\Internet Explorer\Toolbar ----> {EEE6C35B-6118-11DC-9C72-001320C79847}


      >>>>>> Heurística <<<<<<



      >>>>>> Internet Explorer <<<<<<

      Start Page==www.google.com
      Local Page==
      Search Page==http://go.microsoft.com/fwlink/?LinkId=54896
      Default_search_url==http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
      Default_Page_URL==http://www.onmylike.com/?utm_source=b&utm_medium=mdg&from=mdg&uid=1789_16910336_58269_3219913727_FA43E394&ts=1345747815


      ''HKCU\Software\Microsoft\Internet Explorer\Main''
      Start Page==www.google.com
      Local Page==
      Search Page==http://go.microsoft.com/fwlink/?LinkId=54896
      Default_search_url==http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
      Default_Page_URL==http://www.onmylike.com/?utm_source=b&utm_medium=mdg&from=mdg&uid=1789_16910336_58269_3219913727_FA43E394&ts=1345747815


      HKEY_USERS\S-1-5-21-1200896126-1239609497-2984541291-1000\Software\Microsoft\Internet Explorer\Main''
      Start Page==www.google.com
      Local Page==
      Search Page==http://go.microsoft.com/fwlink/?LinkId=54896
      Default_search_url==http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
      Default_Page_URL==http://www.onmylike.com/?utm_source=b&utm_medium=mdg&from=mdg&uid=1789_16910336_58269_3219913727_FA43E394&ts=1345747815


      >>>>>> Firefox <<<<<<



      >>>>>> Plugins Firefox <<<<<<

      HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer
      HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Apple.com/iTunes,version=
      HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Apple.com/iTunes,version=1.0
      HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Google.com/GoogleEarthPlugin
      HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=10.13.2
      HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin,version=10.13.2
      HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@mcafee.com/MSC,version=10
      HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@mcafee.com/SAFFPlugin
      HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@messenger.yahoo.com/YahooMessengerStatePlugin;version=1.0.0.6
      HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0

      >>>>>> Google Chrome <<<<<<

      "homepage": "http://www.google.com/",
      "homepage_changed": true,
      "homepage_is_newtabpage": false,


      >>>>>> Extensiones Google Chrome <<<<<<

      C:\Users\Roberto\AppData\Local\Google\Chrome\User Data\Default\Extensions\7
      C:\Users\Roberto\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo
      C:\Users\Roberto\AppData\Local\Google\Chrome\User Data\Default\Extensions\capanopkcpoomknfiopjknnacehffjdh
      C:\Users\Roberto\AppData\Local\Google\Chrome\User Data\Default\Extensions\lneaknkopdijkpnocmklfnjbeapigfbh
      C:\Users\Roberto\AppData\Local\Google\Chrome\User Data\Default\Extensions\newtab.crx
      C:\Users\Roberto\AppData\Local\Google\Chrome\User Data\Default\Extensions\novo_price_comparison.crx
      C:\Users\Roberto\AppData\Local\Google\Chrome\User Data\Default\Extensions\obnbckhkflagepicciklepbieanoondk
      C:\Users\Roberto\AppData\Local\Google\Chrome\User Data\Default\Extensions\pgjchkcfmigkkhedgjedmffdepgmpfil

      ======== Listado ===========

      [21/10/2010 10:43 p.m.] [21/10/2010 10:43 p.m.] [N] C:\Users\Roberto\AppData\Roaming\Acer
      [30/10/2010 10:40 a.m.] [21/10/2010 10:40 p.m.] [N] C:\Users\Roberto\AppData\Roaming\Acer GameZone Console
      [18/02/2011 02:47 p.m.] [22/10/2010 02:06 p.m.] [N] C:\Users\Roberto\AppData\Roaming\Adobe
      [02/12/2010 02:45 p.m.] [02/12/2010 02:42 p.m.] [N] C:\Users\Roberto\AppData\Roaming\Any Video Converter Professional
      [06/11/2012 12:17 p.m.] [28/10/2010 01:23 p.m.] [N] C:\Users\Roberto\AppData\Roaming\Apple Computer
      [24/12/2012 08:18 p.m.] [10/04/2011 08:45 a.m.] [N] C:\Users\Roberto\AppData\Roaming\ArcSoft
      [18/06/2011 06:47 p.m.] [18/06/2011 06:47 p.m.] [N] C:\Users\Roberto\AppData\Roaming\Ashampoo
      [13/06/2010 06:34 p.m.] [21/12/2009 02:52 p.m.] [N] C:\Users\Roberto\AppData\Roaming\CameraWindowDC
      [14/12/2010 02:16 p.m.] [14/12/2010 02:16 p.m.] [N] C:\Users\Roberto\AppData\Roaming\Canon
      [21/12/2009 02:52 p.m.] [21/12/2009 02:52 p.m.] [N] C:\Users\Roberto\AppData\Roaming\CANON INC
      [15/02/2010 08:19 p.m.] [15/02/2010 08:19 p.m.] [N] C:\Users\Roberto\AppData\Roaming\com.adobe.example.avatarAirApplication.199ED43C2CFEB351CD0244628B93195D7C58F98C.1
      [24/12/2012 11:40 a.m.] [24/12/2012 11:40 a.m.] [N] C:\Users\Roberto\AppData\Roaming\CoSoSys
      [28/12/2009 07:55 p.m.] [28/12/2009 07:55 p.m.] [N] C:\Users\Roberto\AppData\Roaming\CyberLink
      [25/01/2013 12:56 p.m.] [25/01/2013 12:54 p.m.] [N] C:\Users\Roberto\AppData\Roaming\Desk 365
      C:\Users\Roberto\AppData\Roaming\desktop.ini [HSAN] 6 bytes ( )
      [19/07/2011 01:17 p.m.] [19/07/2011 01:17 p.m.] [N] C:\Users\Roberto\AppData\Roaming\Digilabs
      [24/10/2010 10:25 a.m.] [24/10/2010 10:25 a.m.] [N] C:\Users\Roberto\AppData\Roaming\DisplayTune
      [20/12/2010 01:29 p.m.] [18/12/2010 07:46 p.m.] [N] C:\Users\Roberto\AppData\Roaming\DivX
      [24/02/2013 12:57 p.m.] [24/12/2011 01:23 p.m.] [N] C:\Users\Roberto\AppData\Roaming\dvdcss
      [03/11/2010 06:32 p.m.] [03/11/2010 06:32 p.m.] [N] C:\Users\Roberto\AppData\Roaming\EPSON
      [22/10/2010 03:38 p.m.] [22/10/2010 03:38 p.m.] [N] C:\Users\Roberto\AppData\Roaming\eSobi
      [11/05/2010 01:01 p.m.] [11/05/2010 01:01 p.m.] [N] C:\Users\Roberto\AppData\Roaming\Flickr
      [22/10/2010 03:12 p.m.] [21/10/2010 11:21 p.m.] [N] C:\Users\Roberto\AppData\Roaming\Google
      [30/10/2010 10:05 a.m.] [21/10/2010 10:42 p.m.] [N] C:\Users\Roberto\AppData\Roaming\Identities
      [22/10/2010 06:08 p.m.] [22/10/2010 06:08 p.m.] [N] C:\Users\Roberto\AppData\Roaming\InstallShield
      [24/10/2010 09:58 a.m.] [24/10/2010 09:58 a.m.] [N] C:\Users\Roberto\AppData\Roaming\InterTrust
      [24/02/2013 12:57 p.m.] [03/11/2010 05:47 p.m.] [N] C:\Users\Roberto\AppData\Roaming\iolo
      [13/04/2011 07:16 p.m.] [13/04/2011 07:16 p.m.] [N] C:\Users\Roberto\AppData\Roaming\Kodak
      [11/04/2011 06:49 p.m.] [11/04/2011 06:49 p.m.] [N] C:\Users\Roberto\AppData\Roaming\Leader Technologies
      [21/10/2010 10:43 p.m.] [21/10/2010 10:43 p.m.] [N] C:\Users\Roberto\AppData\Roaming\Leadertech
      [21/10/2010 10:54 p.m.] [21/10/2010 10:54 p.m.] [N] C:\Users\Roberto\AppData\Roaming\Macromedia
      [22/11/2011 05:57 p.m.] [22/11/2011 05:57 p.m.] [N] C:\Users\Roberto\AppData\Roaming\Malwarebytes
      [18/02/2011 02:47 p.m.] [21/10/2010 10:40 p.m.] [SN] C:\Users\Roberto\AppData\Roaming\Microsoft
      [19/05/2010 01:07 p.m.] [19/05/2010 01:03 p.m.] [N] C:\Users\Roberto\AppData\Roaming\mIRC
      [24/07/2012 11:15 p.m.] [24/07/2012 11:15 p.m.] [N] C:\Users\Roberto\AppData\Roaming\Mobile Action
      [24/02/2013 12:57 p.m.] [27/12/2009 11:03 p.m.] [N] C:\Users\Roberto\AppData\Roaming\Move Networks
      [05/02/2013 11:57 p.m.] [01/03/2010 11:18 a.m.] [N] C:\Users\Roberto\AppData\Roaming\Mozilla
      [09/04/2010 07:46 p.m.] [10/02/2010 01:59 p.m.] [N] C:\Users\Roberto\AppData\Roaming\Nokia
      [06/02/2012 01:49 p.m.] [06/02/2012 01:49 p.m.] [N] C:\Users\Roberto\AppData\Roaming\Nuance
      [16/02/2012 10:07 p.m.] [14/05/2010 08:11 p.m.] [N] C:\Users\Roberto\AppData\Roaming\NVIDIA
      [10/02/2010 02:18 p.m.] [10/02/2010 01:59 p.m.] [N] C:\Users\Roberto\AppData\Roaming\PC Suite
      [02/01/2010 07:06 p.m.] [02/01/2010 07:06 p.m.] [N] C:\Users\Roberto\AppData\Roaming\PeerNetworking
      [24/02/2013 12:57 p.m.] [03/12/2010 05:46 p.m.] [N] C:\Users\Roberto\AppData\Roaming\PhotoScape
      [28/11/2011 12:06 a.m.] [29/10/2010 12:12 a.m.] [0] C:\Users\Roberto\AppData\Roaming\Real
      [18/02/2012 10:42 a.m.] [18/02/2012 10:42 a.m.] [HN] C:\Users\Roberto\AppData\Roaming\RPPrivate
      [05/05/2011 01:57 p.m.] [05/05/2011 01:57 p.m.] [N] C:\Users\Roberto\AppData\Roaming\Samsung
      [13/04/2011 10:00 p.m.] [13/04/2011 10:00 p.m.] [N] C:\Users\Roberto\AppData\Roaming\Skinux
      [26/02/2013 06:44 p.m.] [16/02/2013 03:47 p.m.] [N] C:\Users\Roberto\AppData\Roaming\Skype
      [24/05/2011 08:52 a.m.] [24/10/2010 09:46 a.m.] [N] C:\Users\Roberto\AppData\Roaming\Sony
      [25/12/2009 11:40 a.m.] [25/12/2009 11:40 a.m.] [N] C:\Users\Roberto\AppData\Roaming\Sony Setup
      [15/03/2012 08:45 p.m.] [15/03/2012 08:45 p.m.] [N] C:\Users\Roberto\AppData\Roaming\SumatraPDF
      [03/09/2011 01:36 p.m.] [03/09/2011 01:36 p.m.] [N] C:\Users\Roberto\AppData\Roaming\Template
      [26/04/2011 03:34 p.m.] [26/04/2011 03:34 p.m.] [N] C:\Users\Roberto\AppData\Roaming\TweetDeckFast.FFF259DC0CE2657847BBB4AFF0E62062EFC56543.1
      C:\Users\Roberto\AppData\Roaming\UserTile.png [AN] 27.2 KB ( )
      [24/02/2013 12:57 p.m.] [08/08/2011 05:29 p.m.] [N] C:\Users\Roberto\AppData\Roaming\vlc
      [01/11/2010 05:49 p.m.] [23/10/2010 09:42 p.m.] [N] C:\Users\Roberto\AppData\Roaming\Windows Live Writer
      [03/12/2012 12:50 p.m.] [09/07/2012 05:42 p.m.] [N] C:\Users\Roberto\AppData\Roaming\WinRAR
      C:\Users\Roberto\AppData\Roaming\wklnhst.dat [AN] 0 bytes ( )
      [21/12/2010 10:20 p.m.] [21/12/2009 02:54 p.m.] [N] C:\Users\Roberto\AppData\Roaming\ZoomBrowser EX
      [21/10/2010 10:44 p.m.] [21/10/2010 10:44 p.m.] [0] C:\Program Files\Acer Arcade Live
      [24/10/2010 10:02 a.m.] [24/10/2010 10:02 a.m.] [0] C:\Program Files\Acer Display
      [30/10/2010 10:10 a.m.] [08/01/2009 12:38 p.m.] [0] C:\Program Files\Acer GameZone
      [21/10/2010 10:54 p.m.] [21/10/2010 10:54 p.m.] [0] C:\Program Files\Acer Incorporated
      [24/02/2013 12:55 p.m.] [08/01/2009 12:54 p.m.] [0] C:\Program Files\Activation Assistant for the 2007 Microsoft Office suites
      [24/06/2011 07:51 p.m.] [08/01/2009 12:37 p.m.] [0] C:\Program Files\Adobe
      [04/12/2010 02:11 p.m.] [04/12/2010 02:11 p.m.] [0] C:\Program Files\Adobe Media Player
      [26/12/2012 05:47 p.m.] [26/12/2012 05:35 p.m.] [0] C:\Program Files\Advanced Driver Updater
      [24/02/2013 12:55 p.m.] [27/07/2011 09:49 a.m.] [0] C:\Program Files\Apple Software Update
      [21/10/2010 10:37 p.m.] [21/10/2010 10:37 p.m.] [HSN] C:\Program Files\Archivos comunes
      [24/12/2012 08:16 p.m.] [13/04/2011 09:53 p.m.] [0] C:\Program Files\ArcSoft
      [24/02/2013 12:55 p.m.] [03/12/2010 10:34 p.m.] [0] C:\Program Files\Asistente Infinitum
      [24/02/2013 12:55 p.m.] [28/10/2010 01:07 p.m.] [0] C:\Program Files\Bonjour
      [08/04/2012 10:05 p.m.] [24/10/2010 10:34 a.m.] [0] C:\Program Files\Canon
      [16/02/2013 03:47 p.m.] [02/11/2006 05:18 a.m.] [0] C:\Program Files\Common Files
      [08/01/2009 01:07 p.m.] [08/01/2009 01:03 p.m.] [0] C:\Program Files\Cyberlink
      [25/01/2013 02:04 p.m.] [25/01/2013 12:54 p.m.] [0] C:\Program Files\Desk 365
      C:\Program Files\desktop.ini [HSA] 174 bytes( 0)
      [13/04/2011 07:14 p.m.] [10/02/2010 01:47 p.m.] [0] C:\Program Files\DIFX
      [24/02/2013 12:55 p.m.] [18/12/2010 07:28 p.m.] [0] C:\Program Files\DivX
      [03/11/2010 02:08 p.m.] [22/10/2010 06:08 p.m.] [0] C:\Program Files\EPSON
      [08/01/2009 01:09 p.m.] [08/01/2009 01:09 p.m.] [0] C:\Program Files\eSobi
      [12/11/2010 09:08 a.m.] [11/11/2010 09:14 p.m.] [0] C:\Program Files\ewido anti-malware
      [24/02/2013 12:55 p.m.] [24/10/2010 10:30 p.m.] [0] C:\Program Files\Feedback Tool
      [19/07/2011 01:41 p.m.] [19/07/2011 10:40 a.m.] [0] C:\Program Files\Fotosmile
      [31/12/2012 05:26 p.m.] [21/10/2010 10:41 p.m.] [N] C:\Program Files\Google
      [28/12/2012 11:16 a.m.] [28/12/2012 11:16 a.m.] [0] C:\Program Files\IB Updater
      [11/09/2011 10:36 a.m.] [17/08/2011 12:39 p.m.] [0] C:\Program Files\iDownloader
      [01/02/2010 08:34 p.m.] [01/02/2010 08:09 p.m.] [0] C:\Program Files\iMesh Applications
      [28/12/2012 05:34 p.m.] [28/12/2012 05:32 p.m.] [0] C:\Program Files\Inbox Toolbar
      [24/12/2012 08:16 p.m.] [08/01/2009 12:25 p.m.] [H] C:\Program Files\InstallShield Installation Information
      [01/12/2010 06:23 p.m.] [01/12/2010 05:34 p.m.] [0] C:\Program Files\Intel Corporation
      [20/02/2013 12:14 p.m.] [02/11/2006 05:18 a.m.] [0] C:\Program Files\Internet Explorer
      [24/12/2010 01:30 p.m.] [28/10/2010 01:21 p.m.] [0] C:\Program Files\iPod
      [24/02/2013 12:55 p.m.] [28/10/2010 01:21 p.m.] [0] C:\Program Files\iTunes
      [23/02/2013 03:46 p.m.] [27/12/2009 10:48 p.m.] [0] C:\Program Files\Java
      [15/02/2013 09:16 p.m.] [10/04/2011 08:46 a.m.] [0] C:\Program Files\Kodak
      [01/06/2012 08:51 a.m.] [25/11/2011 05:19 p.m.] [0] C:\Program Files\LG Electronics
      [05/05/2011 01:56 p.m.] [05/05/2011 01:56 p.m.] [0] C:\Program Files\MarkAny
      [24/02/2013 12:48 p.m.] [22/10/2010 03:58 p.m.] [0] C:\Program Files\McAfee
      [24/02/2013 12:55 p.m.] [23/10/2010 10:17 p.m.] [0] C:\Program Files\McAfee Security Scan
      [23/02/2013 04:18 p.m.] [23/02/2013 04:18 p.m.] [0] C:\Program Files\McAfee(6849).com
      [24/02/2013 12:55 p.m.] [15/12/2010 03:17 p.m.] [0] C:\Program Files\McAfee.com
      [10/03/2011 09:54 a.m.] [23/10/2010 02:17 p.m.] [0] C:\Program Files\Microsoft
      [24/02/2013 12:55 p.m.] [22/10/2010 09:03 p.m.] [0] C:\Program Files\Microsoft ATS
      [06/11/2010 10:27 a.m.] [06/11/2010 10:25 a.m.] [0] C:\Program Files\Microsoft Encarta
      [24/02/2013 12:56 p.m.] [28/10/2010 09:56 a.m.] [0] C:\Program Files\Microsoft Fix it Center
      [02/11/2006 06:35 a.m.] [02/11/2006 06:35 a.m.] [0] C:\Program Files\Microsoft Games
      [05/07/2011 11:09 a.m.] [08/01/2009 12:50 p.m.] [0] C:\Program Files\Microsoft Office
      [24/02/2013 12:56 p.m.] [23/10/2010 02:43 p.m.] [0] C:\Program Files\Microsoft Silverlight
      [24/02/2013 12:56 p.m.] [29/08/2012 08:12 a.m.] [0] C:\Program Files\Microsoft SkyDrive
      [23/10/2010 02:24 p.m.] [23/10/2010 02:24 p.m.] [0] C:\Program Files\Microsoft SQL Server Compact Edition
      [21/12/2009 12:58 p.m.] [21/12/2009 12:58 p.m.] [0] C:\Program Files\Microsoft Sync Framework
      [28/10/2010 09:05 p.m.] [28/10/2010 09:05 p.m.] [0] C:\Program Files\Microsoft Windows 7 Upgrade Advisor
      [24/02/2013 12:56 p.m.] [08/01/2009 12:52 p.m.] [0] C:\Program Files\Microsoft Works
      [23/10/2010 11:35 a.m.] [08/01/2009 12:52 p.m.] [0] C:\Program Files\Microsoft.NET
      [24/07/2012 11:12 p.m.] [24/07/2012 11:12 p.m.] [0] C:\Program Files\Mobile Action
      [10/05/2012 08:37 a.m.] [03/09/2011 08:39 a.m.] [0] C:\Program Files\Motorola
      [23/10/2010 10:37 a.m.] [02/11/2006 06:35 a.m.] [0] C:\Program Files\Movie Maker
      [24/02/2013 12:56 p.m.] [14/02/2011 12:36 p.m.] [0] C:\Program Files\Mozilla Firefox
      [02/11/2006 06:35 a.m.] [02/11/2006 06:35 a.m.] [0] C:\Program Files\MSBuild
      [10/02/2010 01:16 p.m.] [10/02/2010 01:16 p.m.] [0] C:\Program Files\MSXML 4.0
      [24/02/2013 12:56 p.m.] [23/08/2012 12:50 p.m.] [0] C:\Program Files\newtabs
      [21/10/2010 10:49 p.m.] [21/10/2010 10:47 p.m.] [0] C:\Program Files\NewTech Infosystems
      [11/07/2010 06:46 p.m.] [10/02/2010 01:43 p.m.] [0] C:\Program Files\Nokia
      [24/02/2013 12:56 p.m.] [23/10/2010 11:41 a.m.] [0] C:\Program Files\NVIDIA Corporation
      [24/02/2013 12:56 p.m.] [23/08/2012 12:50 p.m.] [0] C:\Program Files\omlSoft
      [24/12/2012 03:42 p.m.] [24/12/2012 03:42 p.m.] [0] C:\Program Files\PANDORA.TV
      [08/04/2012 10:01 p.m.] [11/07/2010 06:44 p.m.] [0] C:\Program Files\PC Connectivity Solution
      [28/12/2012 11:17 a.m.] [28/12/2012 11:17 a.m.] [0] C:\Program Files\Perion
      [24/02/2013 12:56 p.m.] [26/01/2010 03:20 p.m.] [0] C:\Program Files\Pokemon PC 2.0
      [24/10/2010 10:07 a.m.] [24/10/2010 10:07 a.m.] [0] C:\Program Files\Portrait Displays
      [24/02/2013 12:56 p.m.] [24/10/2010 09:49 a.m.] [0] C:\Program Files\QuickTime
      [28/10/2010 01:18 p.m.] [28/10/2010 01:17 p.m.] [0] C:\Program Files\QuickTime(128)
      [30/10/2010 10:04 a.m.] [29/10/2010 12:12 a.m.] [0] C:\Program Files\Real
      [08/01/2009 12:25 p.m.] [08/01/2009 12:25 p.m.] [0] C:\Program Files\Realtek
      [02/11/2006 06:35 a.m.] [02/11/2006 06:35 a.m.] [0] C:\Program Files\Reference Assemblies
      [08/09/2011 06:40 p.m.] [25/12/2009 01:32 p.m.] [0] C:\Program Files\Safari
      [05/05/2011 01:59 p.m.] [05/05/2011 01:55 p.m.] [0] C:\Program Files\Samsung
      [15/12/2010 03:22 p.m.] [15/12/2010 03:22 p.m.] [0] C:\Program Files\SiteAdvisor
      [24/02/2013 12:56 p.m.] [16/02/2013 03:47 p.m.] [R] C:\Program Files\Skype
      [24/02/2010 02:59 p.m.] [24/02/2010 02:59 p.m.] [0] C:\Program Files\Smallvideosoft
      [24/02/2013 12:56 p.m.] [23/08/2012 12:50 p.m.] [0] C:\Program Files\Software Plate
      [03/12/2010 11:47 p.m.] [24/10/2010 09:50 a.m.] [0] C:\Program Files\Sony
      [24/02/2013 12:56 p.m.] [03/12/2010 11:34 p.m.] [0] C:\Program Files\Sony Media Go Install
      [25/12/2009 11:40 a.m.] [25/12/2009 11:40 a.m.] [0] C:\Program Files\Sony Setup
      [24/02/2013 12:56 p.m.] [14/05/2010 07:55 p.m.] [0] C:\Program Files\SystemRequirementsLab
      [24/02/2013 12:56 p.m.] [28/12/2010 07:42 p.m.] [0] C:\Program Files\The KMPlayer
      [24/02/2013 12:56 p.m.] [11/03/2010 09:31 a.m.] [0] C:\Program Files\Tuk Notes
      [02/11/2006 06:58 a.m.] [02/11/2006 06:58 a.m.] [H] C:\Program Files\Uninstall Information
      [06/08/2011 10:05 a.m.] [06/08/2011 10:05 a.m.] [0] C:\Program Files\VideoLAN
      [24/02/2013 12:56 p.m.] [14/02/2011 11:42 a.m.] [0] C:\Program Files\Winamp
      [23/10/2010 10:37 a.m.] [02/11/2006 06:35 a.m.] [0] C:\Program Files\Windows Calendar
      [23/10/2010 10:37 a.m.] [02/11/2006 06:35 a.m.] [0] C:\Program Files\Windows Collaboration
      [23/10/2010 10:37 a.m.] [02/11/2006 06:35 a.m.] [0] C:\Program Files\Windows Defender
      [15/02/2013 10:39 p.m.] [23/10/2010 02:18 p.m.] [0] C:\Program Files\Windows Live
      [30/10/2010 10:32 a.m.] [28/10/2010 07:47 p.m.] [0] C:\Program Files\Windows Live Safety Center
      [21/12/2009 12:55 p.m.] [21/12/2009 12:55 p.m.] [0] C:\Program Files\Windows Live SkyDrive
      [24/02/2013 12:56 p.m.] [02/11/2006 05:18 a.m.] [0] C:\Program Files\Windows Mail
      [30/10/2010 10:32 a.m.] [02/11/2006 06:35 a.m.] [0] C:\Program Files\Windows Media Player
      [21/10/2010 10:37 p.m.] [02/11/2006 05:18 a.m.] [0] C:\Program Files\Windows NT
      [23/10/2010 10:37 a.m.] [02/11/2006 06:35 a.m.] [0] C:\Program Files\Windows Photo Gallery
      [23/10/2010 01:56 p.m.] [23/10/2010 01:56 p.m.] [0] C:\Program Files\Windows Portable Devices
      [23/10/2010 10:37 a.m.] [02/11/2006 06:35 a.m.] [0] C:\Program Files\Windows Sidebar
      [24/02/2013 12:56 p.m.] [09/07/2012 05:42 p.m.] [0] C:\Program Files\WinRAR
      [03/09/2011 08:07 a.m.] [04/12/2010 01:48 p.m.] [0] C:\Program Files\WinZip
      [30/12/2012 09:11 p.m.] [30/12/2012 09:11 p.m.] [0] C:\Program Files\Wondershare
      [24/02/2013 12:56 p.m.] [27/06/2012 10:41 a.m.] [0] C:\Program Files\WOT
      [24/02/2013 12:56 p.m.] [18/12/2010 07:28 p.m.] [0] C:\Program Files\Xvid
      [15/02/2013 09:00 p.m.] [20/04/2010 01:36 p.m.] [0] C:\Program Files\Yahoo!
      [28/12/2012 11:19 a.m.] [28/12/2012 11:18 a.m.] [0] C:\Program Files\Yontoo
      [08/01/2009 12:38 p.m.] [08/01/2009 12:38 p.m.] [N] C:\ProgramData\Acer GameZone Console
      [10/11/2012 04:09 p.m.] [08/01/2009 12:37 p.m.] [N] C:\ProgramData\Adobe
      [28/07/2011 05:05 p.m.] [24/10/2010 09:48 a.m.] [N] C:\ProgramData\Apple
      [04/12/2010 12:25 a.m.] [03/12/2010 11:46 p.m.] [N] C:\ProgramData\Apple Computer
      [28/10/2010 01:21 p.m.] [28/10/2010 01:17 p.m.] [0] C:\ProgramData\Apple Computer(129)
      [02/11/2006 06:59 a.m.] [02/11/2006 06:59 a.m.] [HSN] C:\ProgramData\Application Data
      [08/04/2012 10:07 p.m.] [10/04/2011 08:48 a.m.] [H] C:\ProgramData\ArcSoft
      [26/12/2012 05:26 p.m.] [26/12/2012 05:26 p.m.] [N] C:\ProgramData\ashampoo
      [05/11/2010 05:48 p.m.] [21/10/2010 10:45 p.m.] [N] C:\ProgramData\CyberLink
      [21/10/2010 10:37 p.m.] [21/10/2010 10:37 p.m.] [HSN] C:\ProgramData\Datos de programa
      [02/11/2006 06:59 a.m.] [02/11/2006 06:59 a.m.] [HSN] C:\ProgramData\Desktop
      [23/06/2011 03:40 p.m.] [18/12/2010 07:23 p.m.] [N] C:\ProgramData\DivX
      [21/10/2010 10:37 p.m.] [21/10/2010 10:37 p.m.] [HSN] C:\ProgramData\Documentos
      [02/11/2006 06:59 a.m.] [02/11/2006 06:59 a.m.] [HSN] C:\ProgramData\Documents
      [18/06/2011 06:44 p.m.] [18/06/2011 06:44 p.m.] [0] C:\ProgramData\DVDXStudio
      [22/10/2010 06:10 p.m.] [22/10/2010 06:10 p.m.] [N] C:\ProgramData\EPSON
      [21/10/2010 10:37 p.m.] [21/10/2010 10:37 p.m.] [HSN] C:\ProgramData\Escritorio
      [26/10/2011 08:17 a.m.] [08/01/2009 01:09 p.m.] [N] C:\ProgramData\eSobi
      C:\ProgramData\ezsidmv.dat [HAN] 56 bytes 0
      [02/11/2006 06:59 a.m.] [02/11/2006 06:59 a.m.] [HSN] C:\ProgramData\Favorites
      [21/10/2010 10:37 p.m.] [21/10/2010 10:37 p.m.] [HSN] C:\ProgramData\Favoritos
      [04/12/2010 01:30 p.m.] [04/12/2010 01:30 p.m.] [N] C:\ProgramData\FileCure
      [08/01/2009 12:39 p.m.] [08/01/2009 12:39 p.m.] [N] C:\ProgramData\FloodLightGames
      [22/10/2010 02:06 p.m.] [21/10/2010 10:41 p.m.] [N] C:\ProgramData\Google
      [17/08/2011 12:39 p.m.] [17/08/2011 12:39 p.m.] [N] C:\ProgramData\iDownloader Limited
      [08/04/2012 08:20 p.m.] [04/11/2010 06:05 p.m.] [N] C:\ProgramData\Installations
      [28/10/2011 07:23 p.m.] [03/11/2010 05:47 p.m.] [N] C:\ProgramData\iolo
      [15/02/2013 09:17 p.m.] [13/04/2011 09:10 p.m.] [N] C:\ProgramData\Kodak
      [24/02/2013 12:56 p.m.] [25/11/2011 06:23 p.m.] [N] C:\ProgramData\LGMOBILEAX
      [18/12/2010 05:33 p.m.] [18/12/2010 05:33 p.m.] [N] C:\ProgramData\LightScribe
      [22/11/2011 05:57 p.m.] [22/11/2011 05:57 p.m.] [N] C:\ProgramData\Malwarebytes
      [24/02/2013 12:56 p.m.] [08/01/2009 12:32 p.m.] [N] C:\ProgramData\McAfee
      [24/02/2013 12:56 p.m.] [23/10/2010 10:17 p.m.] [N] C:\ProgramData\McAfee Security Scan
      [21/10/2010 10:37 p.m.] [21/10/2010 10:37 p.m.] [HSN] C:\ProgramData\Menú Inicio
      [18/04/2011 06:49 p.m.] [02/11/2006 05:18 a.m.] [SN] C:\ProgramData\Microsoft
      [24/02/2013 12:56 p.m.] [08/01/2009 12:50 p.m.] [N] C:\ProgramData\Microsoft Help
      [29/08/2012 08:11 a.m.] [29/08/2012 08:11 a.m.] [N] C:\ProgramData\Microsoft SkyDrive
      [28/12/2012 01:34 p.m.] [28/12/2012 01:34 p.m.] [N] C:\ProgramData\Mozilla
      [24/12/2011 05:00 p.m.] [19/06/2011 09:02 p.m.] [N] C:\ProgramData\Norton
      [07/06/2011 02:40 p.m.] [07/06/2011 02:40 p.m.] [N] C:\ProgramData\NortonInstaller
      [27/12/2010 04:31 p.m.] [27/12/2010 04:31 p.m.] [N] C:\ProgramData\NtiDvdCopy
      C:\ProgramData\ntuser.pol [RHSAN] 282 bytes 0
      [10/11/2012 10:28 a.m.] [08/01/2009 12:25 p.m.] [N] C:\ProgramData\NVIDIA
      [23/10/2010 11:41 a.m.] [23/10/2010 11:41 a.m.] [N] C:\ProgramData\NVIDIA Corporation
      [22/10/2010 08:52 p.m.] [22/10/2010 08:52 p.m.] [N] C:\ProgramData\Office Genuine Advantage
      [21/06/2011 09:09 a.m.] [04/11/2010 06:09 p.m.] [N] C:\ProgramData\PC Suite
      [22/12/2010 02:41 p.m.] [14/12/2010 02:16 p.m.] [N] C:\ProgramData\PhotoStitch
      [21/10/2010 10:37 p.m.] [21/10/2010 10:37 p.m.] [HSN] C:\ProgramData\Plantillas
      [12/10/2011 03:48 p.m.] [12/10/2011 03:48 p.m.] [N] C:\ProgramData\PopCap Games
      [03/10/2012 10:58 a.m.] [29/10/2010 12:12 a.m.] [0] C:\ProgramData\Real
      [04/12/2010 02:16 p.m.] [04/12/2010 02:16 p.m.] [N] C:\ProgramData\regid.1986-12.com.adobe
      [22/10/2010 02:30 p.m.] [08/01/2009 12:34 p.m.] [N] C:\ProgramData\SiteAdvisor
      [16/02/2013 03:47 p.m.] [26/11/2010 01:27 p.m.] [N] C:\ProgramData\Skype
      [03/12/2010 11:56 p.m.] [03/12/2010 11:47 p.m.] [N] C:\ProgramData\Sony Corporation
      [02/11/2006 06:59 a.m.] [02/11/2006 06:59 a.m.] [HSN] C:\ProgramData\Start Menu
      [25/11/2010 10:14 p.m.] [25/11/2010 10:14 p.m.] [N] C:\ProgramData\Sun
      [14/11/2010 12:52 p.m.] [14/11/2010 12:52 p.m.] [N] C:\ProgramData\SUPERAntiSpyware.com
      [24/12/2011 04:51 p.m.] [19/06/2011 09:02 p.m.] [N] C:\ProgramData\Symantec
      [30/09/2011 10:20 a.m.] [30/10/2010 01:15 p.m.] [AN] C:\ProgramData\TEMP
      [02/11/2006 06:59 a.m.] [02/11/2006 06:59 a.m.] [HSN] C:\ProgramData\Templates
      [03/11/2010 02:11 p.m.] [22/10/2010 06:16 p.m.] [N] C:\ProgramData\UDL
      [26/07/2011 12:44 p.m.] [26/07/2011 12:44 p.m.] [N] C:\ProgramData\Uniblue
      [17/08/2011 10:56 a.m.] [17/08/2011 10:56 a.m.] [N] C:\ProgramData\Web Installer
      [12/11/2010 04:02 p.m.] [12/11/2010 04:02 p.m.] [N] C:\ProgramData\WindowsSearch
      [03/09/2011 08:07 a.m.] [04/12/2010 01:49 p.m.] [N] C:\ProgramData\WinZip
      [03/09/2011 08:12 a.m.] [03/09/2011 08:12 a.m.] [N] C:\ProgramData\WinZipSE
      [12/01/2012 12:55 p.m.] [04/08/2011 10:49 p.m.] [0] C:\ProgramData\Yahoo!
      [24/02/2013 12:56 p.m.] [08/01/2009 12:54 p.m.] [N] C:\ProgramData\{174892B1-CBE7-44F5-86FF-AB555EFD73A3}
      [28/10/2010 01:22 p.m.] [28/10/2010 01:21 p.m.] [0] C:\ProgramData\{429CAD59-35B1-4DBC-BB6D-1DB246563521}
      [24/02/2013 12:56 p.m.] [06/10/2011 08:11 p.m.] [N] C:\ProgramData\{A0559A84-0A11-425F-BFFC-532378694B25}
      [24/02/2013 12:56 p.m.] [13/04/2011 07:09 p.m.] [N] C:\ProgramData\{A2A58654-12AA-408A-B411-58A76959BE7F}
      [24/02/2013 12:56 p.m.] [28/06/2012 12:01 p.m.] [N] C:\ProgramData\{C3B35EBF-B1F6-4DE1-9682-ED71913E187B}
      [24/02/2013 12:56 p.m.] [02/03/2012 11:44 a.m.] [N] C:\ProgramData\{FD7CAB3E-E895-4E98-9D68-A307CC601204}

      ==================== EOF ==================


      otro reporte mas....



      # AdwCleaner v2.113 - Fichero creado el 26/02/2013 a 19:23:52
      # Actualizado el 23/02/2013 por Xplode
      # Sistema operativo : Windows Vista (TM) Home Basic Service Pack 2 (32 bits)
      # Usuario : Roberto - CONTROLTPR
      # Modo de inicio : Normal
      # Ejecutado desde : C:\Users\Roberto\Desktop\adwcleaner.exe
      # Opción [Supresión]


      ***** [Servicios] *****


      ***** [Ficheros / Carpetas] *****

      Carpeta Suprimido : C:\Program Files\IB Updater
      Carpeta Suprimido : C:\Program Files\iMesh Applications\Mediabar
      Carpeta Suprimido : C:\Program Files\Inbox Toolbar
      Carpeta Suprimido : C:\Program Files\Mozilla Firefox\Extensions\[email protected]
      Carpeta Suprimido : C:\Program Files\Perion
      Carpeta Suprimido : C:\Program Files\Yontoo
      Carpeta Suprimido : C:\Users\Axel Ared.Controltpr\AppData\Local\Winamp Toolbar
      Carpeta Suprimido : C:\Users\Axel Ared.Controltpr\AppData\LocalLow\boost_interprocess
      Carpeta Suprimido : C:\Users\Axel Ared.Controltpr\AppData\LocalLow\PriceGong
      Carpeta Suprimido : C:\Users\Axel Ared.Controltpr\AppData\Roaming\Mozilla\Firefox\Profiles\s2p3tu9k.default\extensions\[email protected](4883).com
      Carpeta Suprimido : C:\Users\Axel Ared.Controltpr\AppData\Roaming\Mozilla\Firefox\Profiles\s2p3tu9k.default\extensions\[email protected]
      Carpeta Suprimido : C:\Users\Invitado\AppData\Roaming\Mozilla\Firefox\Profiles\fz90tvl2.default\extensions\[email protected]
      Carpeta Suprimido : C:\Users\Luis Roberto\AppData\Roaming\Mozilla\Firefox\Profiles\l0erdolp.default\extensions\[email protected]
      Carpeta Suprimido : C:\Users\Roberto\AppData\Local\OpenCandy
      Carpeta Suprimido : C:\Users\Roberto\AppData\LocalLow\PriceGong
      Carpeta Suprimido : C:\Users\Roberto\AppData\LocalLow\ShoppingReport2
      Carpeta Suprimido : C:\Users\Roberto\AppData\Roaming\Mozilla\Firefox\Profiles\xti8dj3s.default\extensions\[email protected]
      Carpeta Suprimido : C:\Windows\Installer\{A0C9DF2B-89B5-4483-8983-18A68200F1B4}
      Carpeta Suprimido : C:\Windows\Installer\{C3E85EE9-5892-4142-B537-BCEB3DAC4C3D}
      Fichero Suprimido : C:\Users\Axel Ared.Controltpr\AppData\Roaming\Mozilla\Firefox\Profiles\s2p3tu9k.default\searchplugins\SweetIm.xml

      ***** [Registro] *****

      Clave Supprimida : HKCU\Software\APN PIP
      Clave Supprimida : HKCU\Software\AppDataLow\Software\Crossrider
      Clave Supprimida : HKCU\Software\AppDataLow\Software\ShoppingReport2
      Clave Supprimida : HKCU\Software\Blabbers
      Clave Supprimida : HKCU\Software\InstallCore
      Clave Supprimida : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4D79-A620-CCE0C0A66CC9}
      Clave Supprimida : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{70D46D94-BF1E-45ED-B567-48701376298E}
      Clave Supprimida : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{EEE6C360-6118-11DC-9C72-001320C79847}
      Clave Supprimida : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{0C43FE6B-E881-4AFC-B384-4AEBC90047E8}
      Clave Supprimida : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{A0C9DF2B-89B5-4483-8983-18A68200F1B4}
      Clave Supprimida : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{C3E85EE9-5892-4142-B537-BCEB3DAC4C3D}
      Clave Supprimida : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{EA8FA6BE-29BE-4AF2-9352-841F83215EB0}
      Clave Supprimida : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\DealPly
      Clave Supprimida : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\ShoppingReport2
      Clave Supprimida : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\Winamp Toolbar
      Clave Supprimida : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{02478D38-C3F9-4EFB-9B51-7695ECA05670}
      Clave Supprimida : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{97F2FF5B-260C-4CCF-834A-2DDA4E29E39E}
      Clave Supprimida : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{EEE6C35B-6118-11DC-9C72-001320C79847}
      Clave Supprimida : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{EEE6C35C-6118-11DC-9C72-001320C79847}
      Clave Supprimida : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{02478D38-C3F9-4EFB-9B51-7695ECA05670}
      Clave Supprimida : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EEE6C35B-6118-11DC-9C72-001320C79847}
      Clave Supprimida : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EEE6C35C-6118-11DC-9C72-001320C79847}
      Clave Supprimida : HKCU\Software\PIP
      Clave Supprimida : HKCU\Software\Softonic
      Clave Supprimida : HKLM\Software\Babylon
      Clave Supprimida : HKLM\SOFTWARE\Classes\AppID\{BDB69379-802F-4EAF-B541-F8DE92DD98DB}
      Clave Supprimida : HKLM\SOFTWARE\Classes\CLSID\{042DA63B-0933-403D-9395-B49307691690}
      Clave Supprimida : HKLM\SOFTWARE\Classes\CLSID\{37540F19-DD4C-478B-B2DF-C19281BCAF27}
      Clave Supprimida : HKLM\SOFTWARE\Classes\CLSID\{612AD33D-9824-4E87-8396-92374E91C4BB}
      Clave Supprimida : HKLM\SOFTWARE\Classes\CLSID\{82AC53B4-164C-4B07-A016-437A8388B81A}
      Clave Supprimida : HKLM\SOFTWARE\Classes\CLSID\{A4A0CB15-8465-4F58-A7E5-73084EA2A064}
      Clave Supprimida : HKLM\SOFTWARE\Classes\CLSID\{D3D233D5-9F6D-436C-B6C7-E63F77503B30}
      Clave Supprimida : HKLM\SOFTWARE\Classes\CLSID\{D7E97865-918F-41E4-9CD0-25AB1C574CE8}
      Clave Supprimida : HKLM\SOFTWARE\Classes\CLSID\{EEE6C35B-6118-11DC-9C72-001320C79847}
      Clave Supprimida : HKLM\SOFTWARE\Classes\CLSID\{EEE6C35C-6118-11DC-9C72-001320C79847}
      Clave Supprimida : HKLM\SOFTWARE\Classes\CLSID\{EEE6C35D-6118-11DC-9C72-001320C79847}
      Clave Supprimida : HKLM\SOFTWARE\Classes\Inbox.AppServer
      Clave Supprimida : HKLM\SOFTWARE\Classes\Inbox.IBX404
      Clave Supprimida : HKLM\SOFTWARE\Classes\Inbox.JSServer
      Clave Supprimida : HKLM\SOFTWARE\Classes\Inbox.Toolbar
      Clave Supprimida : HKLM\Software\Classes\Installer\Features\9EE58E3C298524145B73CBBED3CAC4D3
      Clave Supprimida : HKLM\Software\Classes\Installer\Features\B2FD9C0A5B9838449838816A28001F4B
      Clave Supprimida : HKLM\Software\Classes\Installer\Features\EB6AF8AEEB922FA4392548F13812E50B
      Clave Supprimida : HKLM\Software\Classes\Installer\Products\9EE58E3C298524145B73CBBED3CAC4D3
      Clave Supprimida : HKLM\Software\Classes\Installer\Products\B2FD9C0A5B9838449838816A28001F4B
      Clave Supprimida : HKLM\Software\Classes\Installer\Products\EB6AF8AEEB922FA4392548F13812E50B
      Clave Supprimida : HKLM\SOFTWARE\Classes\Interface\{030C9927-10FC-4169-97A2-55BECD5D88D8}
      Clave Supprimida : HKLM\SOFTWARE\Classes\Interface\{0EB3F101-224A-4B2B-9E5B-DF720857529C}
      Clave Supprimida : HKLM\SOFTWARE\Classes\Interface\{28C3737A-32D1-492D-B76B-8D75EBBFB887}
      Clave Supprimida : HKLM\SOFTWARE\Classes\Interface\{A1F1ECD3-4806-44C6-A869-F0DADF11C57C}
      Clave Supprimida : HKLM\SOFTWARE\Classes\Interface\{A439801C-961D-452C-AB42-7848E9CBD289}
      Clave Supprimida : HKLM\SOFTWARE\Classes\Interface\{CE057E0D-2D7E-4DFF-A890-07BA69B8C762}
      Clave Supprimida : HKLM\SOFTWARE\Classes\Interface\{EEE6C358-6118-11DC-9C72-001320C79847}
      Clave Supprimida : HKLM\SOFTWARE\Classes\Interface\{EEE6C359-6118-11DC-9C72-001320C79847}
      Clave Supprimida : HKLM\SOFTWARE\Classes\Interface\{EEE6C35A-6118-11DC-9C72-001320C79847}
      Clave Supprimida : HKLM\SOFTWARE\Classes\Interface\{F4EBB1E2-21F3-4786-8CF4-16EC5925867F}
      Clave Supprimida : HKLM\SOFTWARE\Classes\MediaPlayer.GraphicsUtils
      Clave Supprimida : HKLM\SOFTWARE\Classes\MediaPlayer.GraphicsUtils.1
      Clave Supprimida : HKLM\SOFTWARE\Classes\MgMediaPlayer.GifAnimator
      Clave Supprimida : HKLM\SOFTWARE\Classes\MgMediaPlayer.GifAnimator.1
      Clave Supprimida : HKLM\SOFTWARE\Classes\Prod.cap
      Clave Supprimida : HKLM\SOFTWARE\Classes\PROTOCOLS\Handler\inbox
      Clave Supprimida : HKLM\SOFTWARE\Classes\sim-packages
      Clave Supprimida : HKLM\SOFTWARE\Classes\SWEETIE.IEToolbar
      Clave Supprimida : HKLM\SOFTWARE\Classes\SWEETIE.IEToolbar.1
      Clave Supprimida : HKLM\SOFTWARE\Classes\sweetim_urlsearchhook.toolbarurlsearchhook
      Clave Supprimida : HKLM\SOFTWARE\Classes\sweetim_urlsearchhook.toolbarurlsearchhook.1
      Clave Supprimida : HKLM\SOFTWARE\Classes\Toolbar3.sweetie
      Clave Supprimida : HKLM\SOFTWARE\Classes\Toolbar3.sweetie.1
      Clave Supprimida : HKLM\SOFTWARE\Classes\TypeLib\{4D3B167E-5FD8-4276-8FD7-9DF19C1E4D19}
      Clave Supprimida : HKLM\SOFTWARE\Classes\TypeLib\{615E8AA1-6BB8-4A3D-A1CC-373194DB612C}
      Clave Supprimida : HKLM\SOFTWARE\Classes\TypeLib\{CBEF8724-D080-4737-88DA-111EEC6651AA}
      Clave Supprimida : HKLM\SOFTWARE\Classes\TypeLib\{EEE6C35E-6118-11DC-9C72-001320C79847}
      Clave Supprimida : HKLM\SOFTWARE\Classes\TypeLib\{EEE6C35F-6118-11DC-9C72-001320C79847}
      Clave Supprimida : HKLM\Software\Freeze.com
      Clave Supprimida : HKLM\SOFTWARE\Google\Chrome\Extensions\dhkplhfnhceodhffomolpfigojocbpcb
      Clave Supprimida : HKLM\SOFTWARE\Google\Chrome\Extensions\jcdgjdiieiljkfkdcloehkohchhpekkn
      Clave Supprimida : HKLM\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{2EECD738-5844-4A99-B4B6-146BF802613B}
      Clave Supprimida : HKLM\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{97F2FF5B-260C-4CCF-834A-2DDA4E29E39E}
      Clave Supprimida : HKLM\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{98889811-442D-49DD-99D7-DC866BE87DBC}
      Clave Supprimida : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{612AD33D-9824-4E87-8396-92374E91C4BB}
      Clave Supprimida : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{EEE6C367-6118-11DC-9C72-001320C79847}
      Clave Supprimida : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\SweetIM.exe
      Clave Supprimida : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{02478D38-C3F9-4EFB-9B51-7695ECA05670}
      Clave Supprimida : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{02478D38-C3F9-4EFB-9B51-7695ECA05670}
      Clave Supprimida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\02F47BF73B948514FAACADD8CBBDF37D
      Clave Supprimida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\063A857434EDED11A893800002C0A966
      Clave Supprimida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\07D5290CDBDAE4242926B8E6CA650501
      Clave Supprimida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\080D9F5E1E95FEE4794CE438E635239E
      Clave Supprimida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\08E33F7B61DEFF24BB9673ED7D467636
      Clave Supprimida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0E3D8A5B48622A445A7DF73FEFF32C3F
      Clave Supprimida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\12BF94BD06C95F343A77631402B9556A
      Clave Supprimida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\1E264E0A5959A1C46BA9175A878B12EA
      Clave Supprimida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2124D8A8CF720FD44866190AF560228E
      Clave Supprimida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\27A325ACED8CA4743A30127638591ADB
      Clave Supprimida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2E6768B6932D112438F047C54D180635
      Clave Supprimida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\34EDDB1BFB3A2D448845F3EFD0F15A43
      Clave Supprimida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\350D17402BD84234EAF7D32F08172D7C
      Clave Supprimida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\351716A953E21214898904032EAE2E81
      Clave Supprimida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\397C771A7BCAC904697C3EC629ED33ED
      Clave Supprimida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\3EE8C5F419057E1478A654868CEE60B5
      Clave Supprimida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\427EA997C413D1D47907CBFC7B2DB432
      Clave Supprimida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\4318DF19719275242801CBE292063A4C
      Clave Supprimida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\45FC115D1FEAEF849A4E1610D6EC8BF0
      Clave Supprimida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\46A5861A389ADB844AF89E31BC9DF0A1
      Clave Supprimida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\4735D908D66E1BA46B6C2D7185A12B2B
      Clave Supprimida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\49B0E1A6FF50BBE4289E4E23DE6EA0C7
      Clave Supprimida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\4CCCAC049F34D0540AAC13011398BEDB
      Clave Supprimida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\5C4389D0BFB302C479DE4178BD5D9EBA
      Clave Supprimida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\5D2B09BDEF4FE54418E6F3373CDBC7AC
      Clave Supprimida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\61B65D3397A1FBF4CB1571B5E4F6B5B0
      Clave Supprimida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\68E8A05C60DD9254591DBD16C94EDDBF
      Clave Supprimida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\697E782CF574CC34CBB9566440BA12BC
      Clave Supprimida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\69D6A6B2ED56AF24EA6335EAD6E91CA4
      Clave Supprimida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6AE27A8613CF7EA4782F2886F67295E5
      Clave Supprimida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\75D5168E5E176C24981B4E5DBD991078
      Clave Supprimida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\76D8378E2DDAED3428720A631F6E3BF0
      Clave Supprimida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\7CE172051F585E04187BCB97570BFA74
      Clave Supprimida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\7FFA128C2B0FF414D805FC5627883401
      Clave Supprimida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\86A901BA5265452499DCBF719C378EE3
      Clave Supprimida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\86EDC790504E1834DBC20C9A04328FD2
      Clave Supprimida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\8724E58E6C7D00C48A0D4F3345EB2C26
      Clave Supprimida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\88ABD1CD5C40EC84789A7F6EF86DAC5E
      Clave Supprimida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\97C3D0F82E712E241A2F969F45E3351C
      Clave Supprimida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\980289C22F80A7C4BB9323DC61255E4E
      Clave Supprimida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\98CC8BF5A4A6E6C4ABF7051DDAB8B058
      Clave Supprimida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\9A001B259DB7D694E818BE29B973992C
      Clave Supprimida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\9A4B7EF3789F871419D9302583B20C15
      Clave Supprimida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\9E7F556BF224D804D96A96F0F6344789
      Clave Supprimida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A189D17A469616C4688D23E192996267
      Clave Supprimida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A6C53B0F76C44004A8F36716213017DB
      Clave Supprimida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\AB676B0E1B9EFA049B9F7DDDA9645734
      Clave Supprimida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B31BBB0B825EDEF45AB0FE7099C68C81
      Clave Supprimida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B471D8D7319336B4CA89374ED0D7B806
      Clave Supprimida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B59F2D8189784CC46A4597F2842480B0
      Clave Supprimida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BAE2EC163C6A68A48921573E0E7E199D
      Clave Supprimida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BC30043663AA2CA4DA1DAA9CA5FDCC75
      Clave Supprimida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BD746FB95FB8E5B45BF66BE54D5FD91F
      Clave Supprimida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BF4F885EDEE45644EB1E0C99E0162399
      Clave Supprimida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\C06C6662FA5B04646829E4A460857770
      Clave Supprimida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\CCF399FCD6D2D3F46BF02A1378654FC9
      Clave Supprimida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\CE21F3FD57B244142880EF15A165A156
      Clave Supprimida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\CEEB3E14ABE8270419B0FD762E18F7C6
      Clave Supprimida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D149C1355C98DE24E82CEFBD996FE06A
      Clave Supprimida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D15DAF33C220F91468A1D7D57C31ACD7
      Clave Supprimida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D3BA76A44C779424889063D5098ED2D6
      Clave Supprimida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D6D0EB9FDBD90C04D92A7E729058F10D
      Clave Supprimida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\DB59FDB786388EA4D897F3EE715683AC
      Clave Supprimida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\DB8DAD19CFBCC2049A4477183787E8C5
      Clave Supprimida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E1C820A74ED67374BA048B52CB3C3804
      Clave Supprimida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E4748F9A4181FCE46A23C13B517B9420
      Clave Supprimida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\EC65F200D112357449C8B1BC3CFA03D0
      Clave Supprimida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\ED1B5E9A3BDB51349BF96E842C062D98
      Clave Supprimida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F327D0C73C0973644A21E8CC852267A0
      Clave Supprimida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\FA96423FE2B98E248A3B23548D1E22D9
      Clave Supprimida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\FDC83385E6C239F4C876A77A37DF581D
      Clave Supprimida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\FECBC2BC14DA6CD459BD59A041709836
      Clave Supprimida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\9EE58E3C298524145B73CBBED3CAC4D3
      Clave Supprimida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\B2FD9C0A5B9838449838816A28001F4B
      Clave Supprimida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\EB6AF8AEEB922FA4392548F13812E50B
      Clave Supprimida : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{0C43FE6B-E881-4AFC-B384-4AEBC90047E8}
      Clave Supprimida : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{A0C9DF2B-89B5-4483-8983-18A68200F1B4}
      Clave Supprimida : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{C3E85EE9-5892-4142-B537-BCEB3DAC4C3D}
      Clave Supprimida : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{EA8FA6BE-29BE-4AF2-9352-841F83215EB0}
      Clave Supprimida : HKLM\Software\PIP
      Valor Supprimida : HKCU\Software\Microsoft\Internet Explorer\New Windows\Allow [*.crossrider.com]
      Valor Supprimida : HKLM\SOFTWARE\Microsoft\Internet Explorer\New Windows\Allow [*.crossrider.com]
      Valor Supprimida : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDLLs [C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgHelperApp.exe]
      Valor Supprimida : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDLLs [C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarProxy.dll]

      ***** [Navegadores] *****

      -\\ Internet Explorer v9.0.8112.16464

      [OK] El registro no contiene ninguna entrada ilegítima.

      -\\ Mozilla Firefox v [Imposible obtener la versión]

      Fichero : C:\Users\Luis Roberto\AppData\Roaming\Mozilla\Firefox\Profiles\l0erdolp.default\prefs.js

      Supprimida : user_pref("extensions.crossriderapp2258.adsOldValue", -1);

      Fichero : C:\Users\Axel Ared.Controltpr\AppData\Roaming\Mozilla\Firefox\Profiles\s2p3tu9k.default\prefs.js

      Supprimida : user_pref("browser.search.defaultenginename", "SweetIM Search");
      Supprimida : user_pref("browser.search.selectedEngine", "SweetIM Search");
      Supprimida : user_pref("extensions.BabylonToolbar.bbDpng", 28);
      Supprimida : user_pref("extensions.BabylonToolbar.cntry", "MX");
      Supprimida : user_pref("extensions.BabylonToolbar.firstRun", false);
      Supprimida : user_pref("extensions.BabylonToolbar.hdrMd5", "7ADF21B391C7BDC6C36AC51D7121918A");
      Supprimida : user_pref("extensions.BabylonToolbar.lastActv", "28");
      Supprimida : user_pref("extensions.BabylonToolbar.lastDP", 28);
      Supprimida : user_pref("extensions.BabylonToolbar.lastVrsnTs", "1.4.31.218:21:35");
      Supprimida : user_pref("extensions.enabledAddons", "{ABDE892B-13A8-4d1b-88E6-365A6E755758}:14.0.2,[email protected][...]
      Supprimida : user_pref("keyword.URL", "hxxp://search.babylon.com/?babsrc=toolbar2&q=");
      Supprimida : user_pref("extensions.crossriderapp2258.adsOldValue", -1);
      Supprimida : user_pref("browser.startup.homepage", "hxxp://home.sweetim.com/?st=2&barid={E1B975C3-4554-11E2-9C52-[...]
      Supprimida : user_pref("sweetim.toolbar.previous.browser.startup.homepage", "");
      Supprimida : user_pref("sweetim.toolbar.urls.homepage", "hxxp://home.sweetim.com/?st=2&barid={E1B975C3-4554-11E2-[...]
      Supprimida : user_pref("sweetim.toolbar.previous.browser.search.defaultenginename", "Búsqueda segura");
      Supprimida : user_pref("sweetim.toolbar.previous.browser.search.selectedEngine", "Búsqueda segura");

      Fichero : C:\Users\Invitado\AppData\Roaming\Mozilla\Firefox\Profiles\fz90tvl2.default\prefs.js

      Supprimida : user_pref("extensions.BabylonToolbar.bbDpng", 12);
      Supprimida : user_pref("extensions.BabylonToolbar.cntry", "MX");
      Supprimida : user_pref("extensions.BabylonToolbar.firstRun", false);
      Supprimida : user_pref("extensions.BabylonToolbar.hdrMd5", "7ADF21B391C7BDC6C36AC51D7121918A");
      Supprimida : user_pref("extensions.BabylonToolbar.lastActv", "12");
      Supprimida : user_pref("extensions.BabylonToolbar.lastDP", 12);
      Supprimida : user_pref("extensions.BabylonToolbar.lastVrsnTs", "1.4.31.218:21:35");
      Supprimida : user_pref("extensions.enabledAddons", "[email protected]:1.1.8,{20a82645-c095-46ed-80e3-0882576053[...]
      Supprimida : user_pref("keyword.URL", "hxxp://search.babylon.com/?babsrc=toolbar2&q=");
      Supprimida : user_pref("extensions.crossriderapp2258.adsOldValue", -1);

      -\\ Google Chrome v24.0.1312.57

      Fichero : C:\Users\Roberto\AppData\Local\Google\Chrome\User Data\Default\Preferences

      [OK] El fichero no contiene ninguna entrada ilegítima.

      Fichero : C:\Users\Axel Ared.Controltpr\AppData\Local\Google\Chrome\User Data\Default\Preferences

      [OK] El fichero no contiene ninguna entrada ilegítima.

      Fichero : C:\Users\Katty\AppData\Local\Google\Chrome\User Data\Default\Preferences

      Supprimida [l.48] : keyword = "search.babylon.com",
      Supprimida [l.51] : search_url = "hxxp://search.babylon.com/?q={searchTerms}&babsrc=SP_def&AF=17284",

      Fichero : C:\Users\Invitado\AppData\Local\Google\Chrome\User Data\Default\Preferences

      [OK] El fichero no contiene ninguna entrada ilegítima.

      *************************

      AdwCleaner[S1].txt - [24826 octets] - [26/02/2013 19:23:52]

      ########## EOF - C:\AdwCleaner[S1].txt - [24887 octets] ##########


      Y el Ultimo...



      Malwarebytes Anti-Malware 1.70.0.1100
      Malwarebytes : Free anti-malware download

      Versión de la Base de Datos: v2013.02.27.01

      Windows Vista Service Pack 2 x86 NTFS
      Internet Explorer 9.0.8112.16421
      Roberto :: CONTROLTPR [administrador]

      26/02/2013 07:40:15 p.m.
      mbam-log-2013-02-26 (19-40-15).txt

      Tipos de Análisis: Análisis Completo (C:\|D:\|G:\|)
      Opciones de análisis activado: Memoria | Inicio | Registro | Sistema de archivos | Heurística/Extra | Heurística/Shuriken | PUP | PUM
      Opciones de análisis desactivados: P2P
      Objetos examinados: 618005
      Tiempo transcurrido: 7 hora(s), 59 minuto(s), 56 segundo(s)

      Procesos en Memoria Detectados: 0
      (No se han detectado elementos maliciosos)

      Módulos de Memoria Detectados: 0
      (No se han detectado elementos maliciosos)

      Claves del Registro Detectados: 0
      (No se han detectado elementos maliciosos)

      Valores del Registro Detectados: 0
      (No se han detectado elementos maliciosos)

      Elementos de Datos del Registro Detectados: 0
      (No se han detectado elementos maliciosos)

      Carpetas Detectadas: 0
      (No se han detectado elementos maliciosos)

      Archivos Detectados: 0
      (No se han detectado elementos maliciosos)

      fin)
      , gracias y espero sus comentarios

    4. #4
      Ex-Colaborador Avatar de Gemsa_03
      Registrado
      feb 2012
      Ubicación
      Málaga-España
      Mensajes
      6.615

      Re: Posible Malware

      Hola!

      Tenemos trabajo por delante.

      Ejecuta RKill (disfrazado de Winlogon)
      • Comenzará un procedimiento en el que buscará procesos maliciosos para detenerlos, entre otras acciones.
      • Toda vez finalizado, saldrá una ventana emergente con los resultados. La guardas.
      • EJEMPLO RKill


      Desactiva temporalmente tu Antivirus

      Desactiva temporalmente tu Antivirus
      • Ejecuta el ESET SMART INSTALLER
      • Selecciona las casillas de IMAGEN
      • Adjunta el Reporte en tu próxima respuesta que estará ubicado en C:\Program Files(x86)\ESET\ESET Online\log


      Ejecuta CCleaner - Descargar | InfoSpyware - Manual de CCleaner
      • Pulsa en el botón "HERRAMIENTAS" (a la izquierda) y dejas que carguen todos los Programas. A la derecha abajo verás un Botón para "Guardar a un archivo de texto", lo pulsas y lo guardas en el Escritorio como PROGRAMAS. IMAGEN CCLEANER_PROGRAMAS
      • En la misma pantalla verás en la parte superior una pestaña que pone "INICIO", la pulsas y te saldrán los programas/aplicaciones que se cargan de inicio, abajo en la derecha verás el mismo boton para "Guardar a un Archivo de Texto" lo pulsas y lo guardas en el Escritorio como "INICIO". IMAGEN PROGRAMAS / APLICACIONES INICIO
      • En tu próxima respuesta adjuntas los archivos PROGRAMAS e INICIO


      Tienes restos de Programas y seguramente tendremos que hacer más pasos, pero de momento "HAZ ESTOS" y NO DESINSTALES NADA.

      Informes que tienes que adjuntar =>> RKill, BitDefender, ESET Online, y los 2 archivos de Ccleaner: PROGRAMAS e INICIO

      Un saludo!
      Última edición por Gemsa_03 fecha: 27/02/13 a las 23:07:11 Razón: corrección

    5. #5
      Usuario Avatar de Roberto45
      Registrado
      nov 2010
      Ubicación
      Veracruz, Mexico
      Mensajes
      31

      Re: Posible Malware

      Cita Originalmente publicado por gemsa_03 Ver Mensaje
      Hola!

      Tenemos trabajo por delante.

      Ejecuta RKill (disfrazado de Winlogon)
      • Comenzará un procedimiento en el que buscará procesos maliciosos para detenerlos, entre otras acciones.
      • Toda vez finalizado, saldrá una ventana emergente con los resultados. La guardas.
      • EJEMPLO RKill


      Desactiva temporalmente tu Antivirus

      Desactiva temporalmente tu Antivirus
      • Ejecuta el ESET SMART INSTALLER
      • Selecciona las casillas de IMAGEN
      • Adjunta el Reporte en tu próxima respuesta que estará ubicado en C:\Program Files(x86)\ESET\ESET Online\log


      Ejecuta CCleaner - Descargar | InfoSpyware - Manual de CCleaner
      • Pulsa en el botón "HERRAMIENTAS" (a la izquierda) y dejas que carguen todos los Programas. A la derecha abajo verás un Botón para "Guardar a un archivo de texto", lo pulsas y lo guardas en el Escritorio como PROGRAMAS. IMAGEN CCLEANER_PROGRAMAS
      • En la misma pantalla verás en la parte superior una pestaña que pone "INICIO", la pulsas y te saldrán los programas/aplicaciones que se cargan de inicio, abajo en la derecha verás el mismo boton para "Guardar a un Archivo de Texto" lo pulsas y lo guardas en el Escritorio como "INICIO". IMAGEN PROGRAMAS / APLICACIONES INICIO
      • En tu próxima respuesta adjuntas los archivos PROGRAMAS e INICIO


      Tienes restos de Programas y seguramente tendremos que hacer más pasos, pero de momento "HAZ ESTOS" y NO DESINSTALES NADA.

      Informes que tienes que adjuntar =>> RKill, BitDefender, ESET Online, y los 2 archivos de Ccleaner: PROGRAMAS e INICIO

      Un saludo!

      HOLAS DISCULPA DE NUEVO POR LA TARDANZA PERO AQUÍ ESTÁN LOS REPORTES EXCEPTO EL DE "ESET" TARDA MUCHO EN EJECUTAR LO DEJE CORRIENDO ANOCHE YA ERAN COMO LAS 2 AM Y TENIA MUCHO SUEÑO DEJE LA MAQUINA CON EL SSCANEO Y EN LA MAÑANA ESTABA APAGADA Y DEPUES CUANDO BUSQUE EL REPORTE ESTA VACIO HARA OTRO SCANEO Y DESPUES TE LO ADJUNTO MIENTRAS TE DEJO ESTOS.
      SALUDOS

      AQUI RKILL

      Rkill 2.4.7 by Lawrence Abrams (Grinler)
      http://www.bleepingcomputer.com/
      Copyright 2008-2013 BleepingComputer.com
      More Information about Rkill can be found at this link:
      http://www.bleepingcomputer.com/forums/topic308364.html

      Program started at: 02/28/2013 06:15:21 PM in x86 mode.
      Windows Version: Windows Vista (TM) Home Basic Service Pack 2

      Checking for Windows services to stop:

      * No malware services found to stop.

      Checking for processes to terminate:

      * C:\Windows\system32\FsUsbExService.Exe (PID: 3408) [WD-HEUR]
      * C:\Users\Roberto\AppData\Roaming\CoSoSys\HDDtoGO\HDDtoGOLaunch.exe (PID: 3640) [UP-HEUR]

      2 proccesses terminated!

      Checking Registry for malware related settings:

      * No issues found in the Registry.

      Resetting .EXE, .COM, & .BAT associations in the Windows Registry.

      Performing miscellaneous checks:

      * Windows Defender Disabled

      [HKLM\SOFTWARE\Microsoft\Windows Defender]
      "DisableAntiSpyware" = dword:00000001

      Checking Windows Service Integrity:

      * Windows Defender (WinDefend) is not Running.
      Startup Type set to: Automatic

      Searching for Missing Digital Signatures:

      * No issues found.

      Checking HOSTS File:

      * HOSTS file entries found:

      127.0.0.1 localhost
      ::1 localhost

      Program finished at: 02/28/2013 06:17:43 PM
      Execution time: 0 hours(s), 2 minute(s), and 22 seconds(s)


      AQUI EL SIGUIENTE EL DE bIT DEFENDER


      uickScan 32-bit v0.9.9.118
      ---------------------------
      Fecha de Análisis: Thu Feb 28 18:30:49 2013
      ID de la Máquina: FA43E394



      No se han encontrado infecciones.
      ---------------------------------



      Procesos
      --------
      Apple Software Update 2824 C:\Program Files\Apple Software Update\SoftwareUpdate.exe
      EPSON Status Monitor 3 1660 C:\Windows\System32\spool\drivers\w32x86\3\E_FATICCL.EXE
      Google Chrome 628 C:\Program Files\Google\Chrome\Application\chrome.exe
      Google Chrome 1588 C:\Program Files\Google\Chrome\Application\chrome.exe
      Google Chrome 1928 C:\Program Files\Google\Chrome\Application\chrome.exe
      Google Chrome 2812 C:\Program Files\Google\Chrome\Application\chrome.exe
      Google Chrome 4456 C:\Program Files\Google\Chrome\Application\chrome.exe
      Google Chrome 9584 C:\Program Files\Google\Chrome\Application\chrome.exe
      Google Chrome 9784 C:\Program Files\Google\Chrome\Application\chrome.exe
      Google Drive 308 C:\Program Files\Google\Drive\googledrivesync.exe
      Google Drive 1564 C:\Program Files\Google\Drive\googledrivesync.exe
      iTunes 1360 C:\Program Files\iTunes\iTunesHelper.exe
      Java(TM) Platform SE Auto Updater 2 0 1168 C:\Program Files\Common Files\Java\Java Update\jusched.exe
      McAfee SecurityCenter 1120 C:\Program Files\McAfee.com\Agent\mcagent.exe
      Microsoft SkyDrive 992 C:\Users\Roberto\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe
      Microsoft® Windows® Operating System 6104 C:\Windows\System32\wbem\unsecapp.exe
      NVIDIA Settings 1708 C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
      RealPlayer (32-bit) 1792 C:\Program Files\Real\RealPlayer\Update\realsched.exe
      Samsung PC Studio 3464 C:\Program Files\Samsung\Samsung New PC Studio\NPSAgent.exe
      Sistema operativo Microsoft® Windows® 5936 C:\Windows\explorer.exe
      Sistema operativo Microsoft® Windows® 5456 C:\Windows\System32\taskeng.exe
      Sistema operativo Microsoft® Windows® 492 C:\Windows\System32\taskmgr.exe
      Skype 1612 C:\Program Files\Skype\Phone\Skype.exe
      Windows 1232 C:\Windows\System32\wpcumi.exe
      (verificado) Sistema operativo Microsoft® Windows® 5480 C:\Windows\System32\dwm.exe


      Actividad de red
      ----------------
      Proceso googledrivesync.exe (308) conectado en el puerto 5222 (XMPP/Jabber) --> 74.125.133.125
      Proceso SkyDrive.exe (992) conectado en el puerto 443 (HTTP over SSL) --> 157.56.100.44
      Proceso chrome.exe (1588) conectado en el puerto 5222 (XMPP/Jabber) --> 74.125.133.125
      Proceso chrome.exe (1588) conectado en el puerto 443 (HTTP over SSL) --> 207.46.124.197
      Proceso chrome.exe (1588) conectado en el puerto 443 (HTTP over SSL) --> 65.55.246.85
      Proceso chrome.exe (1588) conectado en el puerto 443 (HTTP over SSL) --> 65.55.246.85
      Proceso chrome.exe (1588) conectado en el puerto 443 (HTTP over SSL) --> 207.46.124.197
      Proceso chrome.exe (1588) conectado en el puerto 80 (HTTP) --> 74.125.227.98
      Proceso chrome.exe (1588) conectado en el puerto 80 (HTTP) --> 74.125.227.109
      Proceso chrome.exe (1588) conectado en el puerto 443 (HTTP over SSL) --> 31.13.66.7
      Proceso chrome.exe (1588) conectado en el puerto 443 (HTTP over SSL) --> 74.125.227.105
      Proceso chrome.exe (1588) conectado en el puerto 443 (HTTP over SSL) --> 74.125.227.107



      Autoruns y archivos críticos
      ----------------------------
      Adobe Reader and Acrobat Manager C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
      Apple Push C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe
      Application C:\Program Files\Google\Chrome\Application
      EPSON Status Monitor 3 C:\Windows\System32\spool\drivers\w32x86\3\E_FATICCL.EXE
      Google Desktop C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
      Google Desktop C:\Program Files\Google\Google Desktop Search\GoogleDesktopNetwork3.dll
      Google Drive C:\Program Files\Google\Drive\googledrivesync.exe
      Google Update C:\Users\Roberto\AppData\Local\Google\Update\GoogleUpdate.exe
      HDDtoGOLaunch.exe C:\Users\Roberto\AppData\Roaming\CoSoSys\HDDtoGO\HDDtoGOLaunch.exe
      iTunes C:\Program Files\iTunes\iTunesHelper.exe
      Java(TM) Platform SE Auto Updater 2 0 C:\Program Files\Common Files\Java\Java Update\jusched.exe
      McAfee SecurityCenter C:\Program Files\McAfee.com\Agent\mcagent.exe
      Microsoft SkyDrive C:\Users\Roberto\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe
      RealPlayer (32-bit) C:\Program Files\Real\RealPlayer\Update\realsched.exe
      Samsung PC Studio C:\Program Files\Samsung\Samsung New PC Studio\NPSAgent.exe
      Sistema operativo Microsoft® Windows® C:\Windows\system32\BROWSEUI.dll
      Skype C:\Program Files\Skype\Phone\Skype.exe
      Windows C:\Windows\System32\wpcumi.exe
      Windows® Internet Explorer C:\Windows\system32\msfeedssync.exe
      Windows® Internet Explorer c:\windows\system32\webcheck.dll
      (verificado) GoogleToolbarNotifier C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
      (verificado) Sistema operativo Microsoft® Windows® c:\windows\system32\userinit.exe
      (verificado) Windows Defender C:\Program Files\Windows Defender\MSASCui.exe


      Plugins del Navegador
      ---------------------
      Acer eDataSecurity Management c:\program files\acer\empowering technology\edatasecurity\x86\edstoolbar.dll
      AcroIEHelperShim Library c:\program files\common files\adobe\acrobat\activex\acroiehelpershim.dll
      ActiveToolBand Module C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\ActiveToolBand.dll
      Adobe Acrobat C:\Program Files\Adobe\Acrobat 5.0\Reader\Browser\nppdf32.dll
      Adobe Acrobat C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll
      Adobe Acrobat C:\Program Files\Internet Explorer\plugins\nppdf32.dll
      Barra de Bing c:\program files\microsoft\bingbar\7.1.391.0\bingext.dll
      Bonjour C:\Program Files\Bonjour\mdnsNSP.dll
      Google Earth Plugin C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll
      Google Talk Plugin C:\Users\Roberto\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll
      Google Talk Plugin Video Accelerator C:\Users\Roberto\AppData\Roaming\Mozilla\plugins\npgtpo3dautoplugin.dll
      Google Talk Plugin Video Renderer C:\Users\Roberto\AppData\Roaming\Mozilla\plugins\npo1d.dll
      Google Toolbar for Internet Explorer c:\program files\google\google toolbar\googletoolbar_32.dll
      Google Update C:\Program Files\Google\Update\1.3.21.135\npGoogleUpdate3.dll
      Google Update C:\Users\Roberto\AppData\Local\Google\Update\1.3.21.135\npGoogleUpdate3.dll
      Java Deployment Toolkit 7.0.130.20 C:\Windows\system32\npDeployJava1.dll
      Java(TM) Platform SE 7 U13 c:\program files\java\jre7\bin\jp2ssv.dll
      Java(TM) Platform SE 7 U13 C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll
      Java(TM) Platform SE 7 U13 c:\program files\java\jre7\bin\ssv.dll
      McAfee SiteAdvisor c:\program files\mcafee\siteadvisor\mcieplg.dll
      McAfee SiteAdvisor C:\Program Files\McAfee\SiteAdvisor\npmcffplg32.dll
      Microsoft Encarta c:\program files\common files\microsoft shared\encarta web companion\2007\encwcbar.dll
      Microsoft® CoReXT c:\program files\common files\microsoft shared\windows live\windowslivelogin.dll
      Move Media Player 7 C:\Users\Roberto\AppData\Roaming\Move Networks\plugins\071803000001\npqmp071803000001.dll
      npitunes.dll C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll
      npMcSnFFPl.dll c:\Program Files\McAfee\MSC\npMcSnFFPl.dll
      NPSWF32_11_6_602_171.dll C:\Windows\system32\Macromed\Flash\NPSWF32_11_6_602_171.dll
      Proxy Help c:\windows\system32\newtabs_onmylike.dll
      RealJukebox NS Plugin c:\program files\real\realplayer\Netscape6\nprjplug.dll
      RealNetworks(tm) Chrome Background Exte C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprpchromebrowserrecordext.dll
      RealPlayer Download and Record Plugin c:\programdata\real\realplayer\browserrecordplugin\ie\rpbrowserrecordplugin.dll
      RealPlayer Download Plugin c:\program files\real\realplayer\Netscape6\nprpplugin.dll
      RealPlayer(tm) G2 LiveConnect-Enabled P c:\program files\real\realplayer\Netscape6\nppl3260.dll
      RealPlayer(tm) HTML5VideoShim Plug-In ( C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll
      Silverlight Plug-In C:\Program Files\Microsoft Silverlight\5.1.10411.0\npctrl.dll
      VLC Web Plugin C:\Program Files\VideoLAN\VLC\npvlc.dll
      Windows C:\Windows\system32\wpclsp.dll
      Windows Live Messenger Companion c:\program files\windows live\companion\companioncore.dll
      Windows Live™ Photo Gallery C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll
      Windows Presentation Foundation C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll
      Windows® Internet Explorer C:\Windows\system32\ieframe.dll
      wot.dll c:\program files\wot\wot.dll
      Yahoo Application State Plugin C:\Program Files\Yahoo!\Shared\npYState.dll
      (verificado) Microsoft® Windows® Operating System C:\Windows\system32\NLAapi.dll
      (verificado) Microsoft® Windows® Operating System C:\Windows\System32\winrnr.dll
      (verificado) Sistema operativo Microsoft® Windows® C:\Windows\system32\MSWSOCK.dll
      (verificado) Sistema operativo Microsoft® Windows® C:\Windows\system32\napinsp.dll
      (verificado) Sistema operativo Microsoft® Windows® C:\Windows\system32\pnrpnsp.dll


      Archivos perdidos
      -----------------
      Archivo no encontrado: "c:\program files\microsoft\bingbar\7.1.391.0\bingext.dll"
      --> HKLM\Software\Classes\CLSID\{8dcb7100-df86-4384-8842-8fa844297b3f}\InprocServer32\"(default)"

      Archivo no encontrado: c:\program files\common files\mcafee\systemcore\scriptsn.20121023130237.dll
      --> HKLM\Software\Classes\CLSID\{7DB2D5A0-7241-4E79-B68D-6309F01C5231}\InprocServer32\"(default)"


      Analizar
      --------
      MD5: fd87de0220bf7004c38ae21754436f39 C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\ActiveToolBand.dll
      MD5: b1f2503e23425b386df0f3413b2596f3 C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\eDSService.exe
      MD5: 938e7a6bb7a7ca8ff54b0052fcaa3835 c:\program files\acer\empowering technology\edatasecurity\x86\edstoolbar.dll
      MD5: 9d7a3f50c4f002fc3de6f9b005a9a487 C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\PSDProtect.dll
      MD5: ea4424793c30adfa2bd5c51823dbae1b C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\sysenv.dll
      MD5: 27d2754314d12eb27d81d462fd0d86c0 C:\Program Files\Acer\Empowering Technology\Service\ETService.exe
      MD5: d27ce4eaf23411589a33e0c99d176311 C:\Program Files\Adobe\Acrobat 5.0\Reader\Browser\nppdf32.dll
      MD5: db988b4550db9bce86f9199d961057fc C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll
      MD5: 22538d34a639fe53d28a9dbb2a261178 C:\Program Files\Apple Software Update\ScriptingObjectModel.dll
      MD5: 34ebd4ff6a24d86bb4716d6afcc1a89b C:\Program Files\Apple Software Update\SoftwareUpdate.exe
      MD5: a8055c71bcc849ebb17f0c144d7375b8 C:\Program Files\Apple Software Update\SoftwareUpdate.Resources\es.lproj\SoftwareUpdateLocalized.dll
      MD5: 8a62e57f39ab14c2cd29a84fd684a512 C:\Program Files\Apple Software Update\SoftwareUpdateAdmin.dll
      MD5: 74b5041dfb014b1a3768f5f033675056 C:\Program Files\Apple Software Update\SoftwareUpdateFiles.dll
      MD5: d2a7895a2a0770c9f9f5530d3c51d793 C:\Program Files\Apple Software Update\SoftwareUpdateFiles.Resources\es.lproj\SoftwareUpdateFilesLocalized.dll
      MD5: 27cf7a7375722284a048f360f275a082 C:\Program Files\Asistente Infinitum\IsaMonitor.exe
      MD5: 40947436a70e0034e41123df5a0a7702 C:\Program Files\Bonjour\mdnsNSP.dll
      MD5: db5bea73edaf19ac68b2c0fad0f92b1a C:\Program Files\Bonjour\mDNSResponder.exe
      MD5: 40986a81053401e5379154818fa8733c c:\program files\common files\adobe\acrobat\activex\acroiehelpershim.dll
      MD5: 3cb07566302bceeb898de270a0bec175 C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
      MD5: 3927397ac60d943daf8808affed582b7 C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
      MD5: c26b09276755e0698b31cf0bae0bf182 C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe
      MD5: f6fd367c9eaaedf90cd7a7952ae0b336 C:\Program Files\Common Files\Apple\Apple Application Support\ASL.dll
      MD5: af54247f97ccf3539de7505c09972ff9 C:\Program Files\Common Files\Apple\Apple Application Support\CFNetwork.dll
      MD5: ef8cd3c64ee9c08980d6d06ccce46c68 C:\Program Files\Common Files\Apple\Apple Application Support\CoreFoundation.dll
      MD5: 149d74e1128a86dc9cfb2851fbea11eb C:\Program Files\Common Files\Apple\Apple Application Support\icudt46.dll
      MD5: ff9831030678c7b6d70bac00f68f8976 C:\Program Files\Common Files\Apple\Apple Application Support\libdispatch.dll
      MD5: fd86c605fd7ad4a41c01ec7a4a1e1c5d C:\Program Files\Common Files\Apple\Apple Application Support\libicuin.dll
      MD5: a3609397ef273b03295dbb10274be12c C:\Program Files\Common Files\Apple\Apple Application Support\libicuuc.dll
      MD5: 18301b40411b2108076ab685b4e4b6dc C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
      MD5: 78865abc5f5d13190f8b35bd9044714a C:\Program Files\Common Files\Apple\Apple Application Support\objc.dll
      MD5: df1c1cd0c7ee95cc00d71e9e415e7bcd C:\Program Files\Common Files\Apple\Apple Application Support\pthreadVC2.dll
      MD5: c28fd3b37b6f18751c99e6022a2a9782 C:\Program Files\Common Files\Apple\Apple Application Support\SQLite3.dll
      MD5: a56ccbbfccedce2fd9c69fed24e035e3 C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
      MD5: a5299d04ed225d64cf07a568a3e1bf8c C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
      MD5: ab781c0e4c09e08f464081d17c0f6184 C:\Program Files\Common Files\Apple\Mobile Device Support\iTunesMobileDevice.dll
      MD5: 12916e0642e92561c98b18a2a2d01b14 C:\Program Files\Common Files\Java\Java Update\jusched.exe
      MD5: 793ff718477345cd5d232c50bed1e452 C:\Program Files\Common Files\LightScribe\LSSrvc.exe
      MD5: 28e60c4ec03340ee7c5d51d79c19498b c:\Program Files\Common Files\Mcafee\Core\mccoreps.dll
      MD5: ecab006ac6136f1307e140b633cdb8c2 C:\Program Files\Common Files\Mcafee\McSvcHost\McSvHost.exe
      MD5: ae02e6dac99fa4dc642c71b10fee9971 C:\Program Files\Common Files\McAfee\MSC\LangSel.dll
      MD5: 85ad707f3c3af8079b2f22c1dc7238c0 C:\Program Files\Common Files\Mcafee\MSC\mcbrwsr2.dll
      MD5: 017ec72c3c9add080daa10956374884a c:\Program Files\Common Files\Mcafee\MSC\McDspWrp.dll
      MD5: 4be8d8fb641f43f4c4d6cf6ab5ade968 C:\Program Files\Common Files\McAfee\MSC\McRtMui.dll
      MD5: 0989817c05ccabc34eae994b398c6be5 c:\Program Files\Common Files\Mcafee\MSC\mcutil\11,6,275,0\mcutil.dll
      MD5: fdde814145d01a986a10fe1ea5959b9f C:\Program Files\Common Files\McAfee\SystemCore\\mcshield.exe
      MD5: d3aa7664de86fdb2125f48d393a486b3 C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe
      MD5: 6c5bebc36a199b438b593e9a4dcd21f4 c:\program files\common files\microsoft shared\encarta web companion\2007\encwcbar.dll
      MD5: 2424231bbd703a677d115c29983b4293 C:\Program Files\Common Files\microsoft shared\OFFICE12\MSOXMLMF.DLL
      MD5: 785f487a64950f3cb8e9f16253ba3b7b C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
      MD5: cf39a105cd553eed31e2255aff4c6742 c:\program files\common files\microsoft shared\windows live\windowslivelogin.dll
      MD5: fb01d4ae207b9efdbabfc55dc95c7e31 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
      MD5: a1f1260ad7aeaba9d53724e66aa274ba C:\Program Files\Common Files\Portrait Displays\Drivers\pdisrvc.exe
      MD5: 47ecb641bf04d4c2353b0487abc9d268 C:\Program Files\Common Files\Portrait Displays\Plugins\AM\dtsslsrv.exe
      MD5: 0a734c0b4e780b47c24f7fbb53e3b137 C:\Program Files\Common Files\Portrait Displays\Plugins\AM\wmiutils.dll
      MD5: 3430a3d6a97c0e827db0930fee017499 C:\Program Files\Common Files\Portrait Displays\Shared\DTSRVC.exe
      MD5: a035a7bf5132682f53f1e7b955690ce7 C:\Program Files\Cyberlink\Shared files\RichVideo.exe
      MD5: 91df34e16e19e255ea9ecae6b8a08579 C:\Program Files\Google\Chrome\Application\25.0.1364.97\chrome.dll
      MD5: 1c9b45e87528b8bb8cfa884ea0099a85 C:\Program Files\Google\Chrome\Application\25.0.1364.97\d3dcompiler_43.dll
      MD5: 86e39e9161c3d930d93822f1563c280d C:\Program Files\Google\Chrome\Application\25.0.1364.97\d3dx9_43.dll
      MD5: 463720201490db1f1d2f0583c5def2fa C:\Program Files\Google\Chrome\Application\25.0.1364.97\ffmpegsumo.dll
      MD5: 8472f4a6f1769b0271f33f005a2625db C:\Program Files\Google\Chrome\Application\25.0.1364.97\icudt.dll
      MD5: e0605322eafa4a2248796fa0c97a93f2 C:\Program Files\Google\Chrome\Application\25.0.1364.97\libegl.dll
      MD5: 069f1857d53e39c1287580a358091897 C:\Program Files\Google\Chrome\Application\25.0.1364.97\libglesv2.dll
      MD5: 744185ca4e05c2182a40e7532e240094 C:\Program Files\Google\Chrome\Application\25.0.1364.97\pdf.dll
      MD5: 886c27ed78cb6a65418fcb15e18eadc6 C:\Program Files\Google\Chrome\Application\25.0.1364.97\PepperFlash\pepflashplayer.dll
      MD5: 61824c5f77876d97f6523601074ac37e C:\Program Files\Google\Chrome\Application\25.0.1364.97\ppGoogleNaClPluginChrome.dll
      MD5: 84f6d5fe968852c59bcd3e06a36dc356 C:\Program Files\Google\Chrome\Application\chrome.exe
      MD5: 5d4bc124faae6730ac002cdb67bf1a1c C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
      MD5: ece9413226d1c6778a9ee4dfc199c1d4 C:\Program Files\Google\Drive\googledrivesync.exe
      MD5: f55db197b472671289c5dc67ec88fb3d C:\Program Files\Google\Drive\googledrivesync32.dll
      MD5: df5f4ecacf6df29a0738ccae7e322371 C:\Program Files\Google\Google Desktop Search\GoogleDesktopCommon.dll
      MD5: 6434b5f02751b9140deecf4e4a3bab47 C:\Program Files\Google\Google Desktop Search\GoogleDesktopNetwork3.dll
      MD5: c936a24740304e51e24a81f0e6a35efc C:\Program Files\Google\Google Desktop Search\GoogleDesktopResources_es.dll
      MD5: 2437be68d5a37a75fad51c5f0e9a03ed C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll
      MD5: b9497c5acaea521663bffbb321dd3afa c:\program files\google\google toolbar\googletoolbar_32.dll
      MD5: e0ff893763ba82baabb869a351f0c455 C:\Program Files\Google\Update\1.3.21.135\npGoogleUpdate3.dll
      MD5: f647d0bea553c1d0c251ce07da6a5511 C:\Program Files\Internet Explorer\plugins\nppdf32.dll
      MD5: e8a39d41474be42fd8830ced32932d6c C:\Program Files\iPod\bin\iPodService.exe
      MD5: c85eccbaa179719e658ffdbf99221e1e C:\Program Files\iTunes\iTunesHelper.dll
      MD5: e4401cf27225c1d6e664e86195978562 C:\Program Files\iTunes\iTunesHelper.exe
      MD5: 9d8ef8fbd8b764c1023010f47273f637 C:\Program Files\iTunes\iTunesHelper.Resources\es.lproj\iTunesHelperLocalized.DLL
      MD5: 814a169c40b55178bd8e1f79d1ada649 C:\Program Files\iTunes\iTunesHelper.Resources\iTunesHelper.DLL
      MD5: 2658ce01d183bc62e7c46a1c9969632e C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll
      MD5: cadee0ec4341755344540477599f08a8 c:\program files\java\jre7\bin\jp2ssv.dll
      MD5: 2abe014a1e38eb4f597b3de1356c347f C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll
      MD5: 14728086710d0416329ee84e3a9438ed c:\program files\java\jre7\bin\ssv.dll
      MD5: e99d7fbb1a8c40f92465e34d1260e226 C:\Program Files\McAfee.com\Agent\mcagent.exe
      MD5: 36a9ccb35f52ba497c75d7097b679485 c:\Program Files\McAfee\MPF\FWJsRes.dll
      MD5: a727eaf1c956f05f51592d715e50f725 c:\Program Files\McAfee\MPF\MpfApi.dll
      MD5: a75338fabf3c24ebc4058faf8a7203d7 c:\Program Files\McAfee\MPF\MpfShm.dll
      MD5: e666404ad413cc1bb2bdaa441d285a52 c:\Program Files\McAfee\MPF\MpfSvcPS.dll
      MD5: 2b6cb9e78f40b3a7b857548495a6d99d c:\Program Files\McAfee\MPS\mpscfg.dll
      MD5: f158180ace853c7c698c4b905b3e6cb5 c:\Program Files\McAfee\MPS\MPSMisp.dll
      MD5: 2b77ef36f06ed282814b38243e92e32b c:\Program Files\McAfee\MPS\MpsShim.dll
      MD5: f891d113ae1488653db2c0fa34a6fbe9 c:\Program Files\McAfee\MQS\QCProgressIcon.dll
      MD5: 9aa3ee13e8cb7671db730015a23f5af5 c:\Program Files\McAfee\MSC\McGsShm.dll
      MD5: 7c51822e2c94257f3c39551b2e4b8d6a c:\Program Files\McAfee\MSC\McIPTShm.dll
      MD5: fd83993dbfec4eee7c13bc8fa74dfacc C:\Program Files\McAfee\MSC\mclwapi.dll
      MD5: d390cda2d132c6d8cc27db7e007970fa c:\Program Files\McAfee\MSC\mcmispps.dll
      MD5: c76be4b014d2fad9a3e38f2a773bd912 c:\Program Files\McAfee\MSC\mcmschlp.dll
      MD5: b01860e256305c775c4678f66710aa60 c:\Program Files\McAfee\MSC\McMscShm.dll
      MD5: e418df04a16b21dbae5e46e687a594eb C:\Program Files\McAfee\MSC\McOemRes.dll
      MD5: 2b07418ae23172777fe4ad68361f24df C:\Program Files\McAfee\MSC\mcprlalt.dll
      MD5: 720bbc29a495f39e688e5f8114854c4f C:\Program Files\McAfee\MSC\mcprlres.dll
      MD5: b8491a0d064e79b633ba58be13db61f5 c:\Program Files\McAfee\MSC\mcsubmgr\11,6,476,0\mcsubmgr.dll
      MD5: e7abc004978055616431654f63a3e5a7 c:\Program Files\McAfee\MSC\mcuicfg.dll
      MD5: 354277d6e1b93f111351d523845b6257 c:\Program Files\McAfee\MSC\McUpdShm.dll
      MD5: 5f7e4cb62c093c26c20e47149bd4c8ab C:\Program Files\McAfee\MSC\mscjsres.dll
      MD5: 17cdc502ab7f526c26d7938f1878606f c:\Program Files\McAfee\MSC\mscuild.dll
      MD5: a44bffa5d6cc1e909e6a3c16d9bb009b c:\Program Files\McAfee\MSC\npMcSnFFPl.dll
      MD5: a30bd130a0fd635f00398e5c93168261 C:\Program Files\McAfee\MSC\OemUI.dll
      MD5: 8f440fb5f44fcc09fd1158899817657c c:\Program Files\McAfee\MSC\oemuild.dll
      MD5: d871a25555f041b6b79a70e60a9f1f0d c:\Program Files\McAfee\MSC\TskTCShm.dll
      MD5: 6fab79b6d0eb1b31f6b11b0ef377563b c:\Program Files\McAfee\MSK\mskcshim.dll
      MD5: 5c4ba8ef8fba80397c33cc33f7f3922f c:\program files\mcafee\siteadvisor\mcieplg.dll
      MD5: c6fd288c265157410a17ae0531d3af4c C:\Program Files\McAfee\SiteAdvisor\npmcffplg32.dll
      MD5: e84b3cb28ab4d95c07738ae9937c2734 c:\Program Files\McAfee\SiteAdvisor\sahook.dll
      MD5: 9bd0c29c5c78c74a8d177399f07bd194 c:\Program Files\McAfee\VirusScan\McOasShm.dll
      MD5: c7da06c9a9aeefbe37aac281ea6385d5 C:\Program Files\McAfee\VirusScan\mcods.exe
      MD5: 93624b1849df1f5ed709522a302a1db2 c:\Program Files\McAfee\VirusScan\mcodsax.dll
      MD5: 512e8d19d800eaa67bed5e65e8579251 c:\Program Files\McAfee\VirusScan\mcodsps.dll
      MD5: 57ccef1a8228d9386a474076edf3c5be c:\Program Files\McAfee\VirusScan\McOdsShm.dll
      MD5: b8b742537bfa1ac4f742b36beb310bf6 c:\Program Files\McAfee\VirusScan\McVsPs.dll
      MD5: 7cc9484fbc922f7dc0b1d767a256c1e5 c:\Program Files\McAfee\VirusScan\NaiAnn.dll
      MD5: 149da63ed179de9b46d5c38a867f3199 c:\Program Files\McAfee\VirusScan\NaiAnnPs.dll
      MD5: 618b5e4d16dcba693b421c5062d84f9a c:\Program Files\McAfee\VirusScan\VSJsRes.dll
      MD5: bfcce364e88a2cb9d64327f7ba7a77f5 C:\Program Files\McAfee\VirusScan\vsores.dll
      MD5: ddf15a42e27e8efe27b18fd403151a86 C:\Program Files\Microsoft Fix it Center\Matsvc.exe
      MD5: 9013599b12923a45c029c34e8d2211ac C:\Program Files\Microsoft Silverlight\5.1.10411.0\npctrl.dll
      MD5: 559d9cbfc29dee2773b28d38851683ba C:\Program Files\Microsoft Silverlight\xapauthenticodesip.dll
      MD5: f48feb7da35821da15e0b006dcb9a169 C:\Program Files\Microsoft\BingBar\7.1.391.0\BBSvc.exe
      MD5: 0ee4008e662b0647310b696b62dc4a1b c:\program files\microsoft\bingbar\7.1.391.0\bingext.dll
      MD5: 8e16f7a85441986fd2b9ce6c879524e4 C:\Program Files\Microsoft\BingBar\7.1.391.0\SeaPort.exe
      MD5: a2b6583a5652a385dff5e4f49ad48761 C:\Program Files\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe
      MD5: 09e6affae6c0e9158bf05c7d08d0107a C:\Program Files\NewTech Infosystems\NTI Backup Now 5\Client\Agentsvc.exe
      MD5: 40b87fe8a1a9a5ac9e5a91d96f212bcd C:\Program Files\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe
      MD5: d610cdedf1f702eb0a86b0fbd9bb49e5 C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
      MD5: 4ed8382d5f1c9d2028fbda35e3b2dd47 C:\Program Files\NVIDIA Corporation\Display\NvUI.dll
      MD5: 0629259e3af6bb0534fceca208973404 C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
      MD5: 716ccad4089663248f1d98b1fe3bb234 C:\Program Files\NVIDIA Corporation\Update Common\easyDaemonAPIU.DLL
      MD5: 07b74b353ceda9629092ae2aa3c53f90 C:\Program Files\NVIDIA Corporation\Update Common\NvUpdt.dll
      MD5: f5f08bf486998efa8171cb09065b15d9 C:\Program Files\NVIDIA Corporation\Update Common\NVUPDTR.DLL
      MD5: 1011c779c9fcd01afa96490c86a50421 C:\Program Files\PANDORA.TV\PanService\PandoraService.exe
      MD5: 2dc6257a367a6182e40f748d0396aaf9 c:\program files\real\realplayer\Netscape6\nppl3260.dll
      MD5: 256c847cd03160c9088fb440db929448 c:\program files\real\realplayer\Netscape6\nprjplug.dll
      MD5: 1e3aa02f2c91a2b25efb4e355160cdca c:\program files\real\realplayer\Netscape6\nprpplugin.dll
      MD5: a73731a0b0a165907799e9afb461f856 C:\Program Files\Real\RealPlayer\Update\realsched.exe
      MD5: 00131c008d00eea37ffa687c547049aa C:\Program Files\Samsung\Samsung New PC Studio\NPSAgent.exe
      MD5: 7d5a64b5f313255d31e97fff75116846 C:\Program Files\Skype\Phone\Skype.exe
      MD5: c84a3dce4d9d70a4d8fbfa4b7dd6ff0b C:\Program Files\Skype\Updater\Updater.exe
      MD5: fd27f32a38e991e1bc45abce247df382 C:\Program Files\Software Plate\svcgdp.exe
      MD5: 3f9f8e0f93d6fa7b7552077a3df171de C:\Program Files\VideoLAN\VLC\npvlc.dll
      MD5: b7dc98f6f4e7611a9c0849945fb28fb9 C:\Program Files\Windows Defender\MpOav.dll
      MD5: 8513a7bb078a669e75f2adc3fb007b24 c:\program files\windows live\companion\companioncore.dll
      MD5: 28ddeeec44e988657b732cf404d504cb C:\Program Files\Windows Live\Family Safety\fsssvc.exe
      MD5: 6067acef367e79914af628fa1e9b5330 C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
      MD5: c517e5ea7cee783f3681f62d2a362e5b C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll
      MD5: 407badb85fe722c1aa17afe3265a2ed4 c:\program files\wot\wot.dll
      MD5: 7b008329e43bd97ae8bef5551a6e210e C:\Program Files\Yahoo!\Shared\npYState.dll
      MD5: 8fe6ab59cab8f2c038fea9522a5eeba7 C:\ProgramData\EPSON\EPW!3 SSRP\E_S40RP7.EXE
      MD5: 78693efb803c77f731726e7fa65a6517 C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\Chrome\Hook\rpchrome150browserrecordhelper.dll
      MD5: eada87878d898aa6fd9dd67201cb6da0 C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\Common\rpcommon150browserrecordplugin.dll
      MD5: c61e4513204bcc4b330e7ad50c4c82c0 c:\programdata\real\realplayer\browserrecordplugin\ie\rpbrowserrecordplugin.dll
      MD5: 555e65306a5d3a5978be74e1dd62cdd9 C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprpchromebrowserrecordext.dll
      MD5: e32771b0ae3f18ceffc12d682025238a C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll
      MD5: 853e987a635c0008f53e3cc13290af6b C:\Users\Roberto\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pdnkcidphdcakpkheohlhocaicfamjie\0.9.9.118_0\npqscan.dll
      MD5: e0ff893763ba82baabb869a351f0c455 C:\Users\Roberto\AppData\Local\Google\Update\1.3.21.135\npGoogleUpdate3.dll
      MD5: 506708142bc63daba64f2d3ad1dcd5bf C:\Users\Roberto\AppData\Local\Google\Update\GoogleUpdate.exe
      MD5: fb8f47695f149d0b5872233b52b61d9c C:\Users\Roberto\AppData\Local\Microsoft\SkyDrive\17.0.2003.1112\logging.dll
      MD5: ab09ce954c647f3c2b4328b57d519996 C:\Users\Roberto\AppData\Local\Microsoft\SkyDrive\17.0.2003.1112\MSVCP110.dll
      MD5: 80e987dbe08677e2ec09615cd4358607 C:\Users\Roberto\AppData\Local\Microsoft\SkyDrive\17.0.2003.1112\MSVCR110.dll
      MD5: ce700a91dc4228c8cbb9126950a04973 C:\Users\Roberto\AppData\Local\Microsoft\SkyDrive\17.0.2003.1112\RemoteAccess.dll
      MD5: 5744b0d74770c2407f58cca7a12f0869 C:\Users\Roberto\AppData\Local\Microsoft\SkyDrive\17.0.2003.1112\SkyDrive.Resources.dll
      MD5: cf47ff19107c4c80fe845cdc8129598f C:\Users\Roberto\AppData\Local\Microsoft\SkyDrive\17.0.2003.1112\SkyDriveClient.dll
      MD5: f5a402473ad9cbe6cd170ee6cda2242b C:\Users\Roberto\AppData\Local\Microsoft\SkyDrive\17.0.2003.1112\SkyDriveSessions.dll
      MD5: 14d5a923bc7f439c4c379dceb6c9f982 C:\Users\Roberto\AppData\Local\Microsoft\SkyDrive\17.0.2003.1112\SkyDriveShell.dll
      MD5: 00f94978303d8fe742c8eb4d24a7847e C:\Users\Roberto\AppData\Local\Microsoft\SkyDrive\17.0.2003.1112\SyncEngine.DLL
      MD5: 7c618a3abe955d5398f6b4afb3d658ef C:\Users\Roberto\AppData\Local\Microsoft\SkyDrive\17.0.2003.1112\Telemetry.dll
      MD5: cf7a9aad23f710d7e85061b8587712bc C:\Users\Roberto\AppData\Local\Microsoft\SkyDrive\17.0.2003.1112\VideoStreamingPlugin.dll
      MD5: e810d0489177af1d6c1d50215774881a C:\Users\Roberto\AppData\Local\Microsoft\SkyDrive\17.0.2003.1112\WnsClientApi.dll
      MD5: a090f19f57deba7f82498c634ea855b7 C:\Users\Roberto\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe
      MD5: 8dc2eb39af2a01c5c28e50685f5b78a5 C:\Users\Roberto\AppData\Local\Temp\_MEI15642\_ctypes.pyd
      MD5: 37fae00d4f6dec20efafc157c4b3499a C:\Users\Roberto\AppData\Local\Temp\_MEI15642\_elementtree.pyd
      MD5: 78b16d439f3562552aeb38d352f00567 C:\Users\Roberto\AppData\Local\Temp\_MEI15642\_hashlib.pyd
      MD5: 2931b1a98fa187834f7e39a598b947e1 C:\Users\Roberto\AppData\Local\Temp\_MEI15642\_socket.pyd
      MD5: 234cf1a2306cd5645011a298f0d3584a C:\Users\Roberto\AppData\Local\Temp\_MEI15642\_ssl.pyd
      MD5: df495f31aa306dbfec3e7cdbb2711cf1 C:\Users\Roberto\AppData\Local\Temp\_MEI15642\pyexpat.pyd
      MD5: 15de81ec02716d08b17ebf5afc2190b8 C:\Users\Roberto\AppData\Local\Temp\_MEI15642\pysqlite2._sqlite.pyd
      MD5: 30f3d3e322c5339004415d7bc8bf246e C:\Users\Roberto\AppData\Local\Temp\_MEI15642\python26.dll
      MD5: 65ee7a7c20134ded91485aef23c882d4 C:\Users\Roberto\AppData\Local\Temp\_MEI15642\pythoncom26.dll
      MD5: abc5dcac962ae8af7af214dd0d6d4ff6 C:\Users\Roberto\AppData\Local\Temp\_MEI15642\pywintypes26.dll
      MD5: 3c303c9d3ea9c64742931cac0e351910 C:\Users\Roberto\AppData\Local\Temp\_MEI15642\select.pyd
      MD5: ba3c226b01ff615107659411ae01e3b0 C:\Users\Roberto\AppData\Local\Temp\_MEI15642\unicodedata.pyd
      MD5: 526d928d13e0e141c01ba3799fd8338b C:\Users\Roberto\AppData\Local\Temp\_MEI15642\win32api.pyd
      MD5: a78890bf2712d6e472788711fb60113b C:\Users\Roberto\AppData\Local\Temp\_MEI15642\win32com.shell.shell.pyd
      MD5: 6ec174e577b7ab75b3a1a9858b2db261 C:\Users\Roberto\AppData\Local\Temp\_MEI15642\win32crypt.pyd
      MD5: e282ea80be94b90e656a475efcac89c2 C:\Users\Roberto\AppData\Local\Temp\_MEI15642\win32event.pyd
      MD5: 94cd8007843957c9a499f3b4ecbaf0d8 C:\Users\Roberto\AppData\Local\Temp\_MEI15642\win32file.pyd
      MD5: a294a77b4271ce24bc830f8ca376e018 C:\Users\Roberto\AppData\Local\Temp\_MEI15642\win32inet.pyd
      MD5: 61a4e2e48cd692390ec964f0f1bbefe2 C:\Users\Roberto\AppData\Local\Temp\_MEI15642\win32pdh.pyd
      MD5: 5bf6ba38b703df5bbe18358a3188c929 C:\Users\Roberto\AppData\Local\Temp\_MEI15642\win32process.pyd
      MD5: 76014d0c563859fbe8777ab4521d18ac C:\Users\Roberto\AppData\Local\Temp\_MEI15642\win32profile.pyd
      MD5: 3c1e19c2e71967311f2d7b2790d18615 C:\Users\Roberto\AppData\Local\Temp\_MEI15642\win32security.pyd
      MD5: 969d2374476243ccf7abc1835481f7cb C:\Users\Roberto\AppData\Local\Temp\_MEI15642\win32ts.pyd
      MD5: 7bbec5e9bdc9b406f693d3c868d11227 C:\Users\Roberto\AppData\Local\Temp\_MEI15642\windows._cacheinvalidation.pyd
      MD5: 09b6a5a2f9ead10d50e3aea7934e6de4 C:\Users\Roberto\AppData\Local\Temp\_MEI15642\wx._controls_.pyd
      MD5: dafa56c9092c7cc163cd85a246e5a674 C:\Users\Roberto\AppData\Local\Temp\_MEI15642\wx._core_.pyd
      MD5: 86aef2219e35f086ab78ba9fbc0fa1e7 C:\Users\Roberto\AppData\Local\Temp\_MEI15642\wx._gdi_.pyd
      MD5: 3a4f66adddf413dcd1c714b2bebaf98a C:\Users\Roberto\AppData\Local\Temp\_MEI15642\wx._html2.pyd
      MD5: 03b6d87d79e269526aa2b1370de65675 C:\Users\Roberto\AppData\Local\Temp\_MEI15642\wx._misc_.pyd
      MD5: 6cb0403bdfb83f114f6ebfbd1163b220 C:\Users\Roberto\AppData\Local\Temp\_MEI15642\wx._windows_.pyd
      MD5: 7106be04428936372fb6d826956a12d4 C:\Users\Roberto\AppData\Local\Temp\_MEI15642\wx._wizard.pyd
      MD5: 29cd1f3e9148fcd542dec355a41776af C:\Users\Roberto\AppData\Local\Temp\_MEI15642\wxbase293u_net_vc.dll
      MD5: 9e6ad2917d6fd7730ff37b50f7053183 C:\Users\Roberto\AppData\Local\Temp\_MEI15642\wxbase293u_vc.dll
      MD5: ff13bc0ead656e2de88bd245ba3d2bf7 C:\Users\Roberto\AppData\Local\Temp\_MEI15642\wxmsw293u_adv_vc.dll
      MD5: 2b9a6b7b7a3997c12841a5d869f022a4 C:\Users\Roberto\AppData\Local\Temp\_MEI15642\wxmsw293u_core_vc.dll
      MD5: 699efc4d6fe0a2fe24d7049608f2d543 C:\Users\Roberto\AppData\Local\Temp\_MEI15642\wxmsw293u_html_vc.dll
      MD5: 3d01c7f884349a6170a1e0d3cf812333 C:\Users\Roberto\AppData\Local\Temp\_MEI15642\wxmsw293u_webview_vc.dll
      MD5: 5ffac6d6d2c3e36004bc77d3192cbf4e C:\Users\Roberto\AppData\Roaming\CoSoSys\HDDtoGO\HDDtoGOLaunch.exe
      MD5: 9908039140742c5d143106d10d27d2e7 C:\Users\Roberto\AppData\Roaming\Move Networks\plugins\071803000001\npqmp071803000001.dll
      MD5: 07ff4cbae4ee041f36f02f4a7a4ddbc7 C:\Users\Roberto\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll
      MD5: 9a0b64bd965496e0c493fc703b798ff0 C:\Users\Roberto\AppData\Roaming\Mozilla\plugins\npgtpo3dautoplugin.dll
      MD5: 6db8fae061a6139fd2b373035f63bd61 C:\Users\Roberto\AppData\Roaming\Mozilla\plugins\npo1d.dll
      MD5: ab87eeffd18f2baafc274e7075ea6c67 C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll
      MD5: 82a98d0eb83505529ad81e4c1fadc37d C:\Windows\Microsoft.NET\Framework\v4.0.30319\clr.dll
      MD5: f5df6846f30e9f54ea60ccaeb3fb2055 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscoreei.dll
      MD5: 00d2c06a552f782c1f16acf77db765a5 C:\Windows\system32\ATL100.DLL
      MD5: 74f26fc01b180d4a99a168ed69c30a53 C:\Windows\system32\cmd.exe
      MD5: b0f9073be86c6d4edd4eba674251e699 C:\Windows\system32\CRYPT32.dll
      MD5: 09469b8edd2755143fda06867aad7e73 C:\Windows\system32\cryptnet.dll
      MD5: f1e8c34892336d33eddcdfe44e474f64 C:\Windows\system32\cryptsvc.dll
      MD5: e9b39c81c87e5b790fce121da9e02701 C:\Windows\system32\d2d1.dll
      MD5: 8b02d2ecc7ef6e1f6af08459e3f741f6 C:\Windows\system32\d3d10.dll
      MD5: 5256383d1d266a9eefcdb270340c0e5c C:\Windows\system32\d3d10_1.dll
      MD5: a441f5b43eaf4bd4e3acfbe38841b46b C:\Windows\system32\d3d10_1core.dll
      MD5: 9c7094f537782a82b6a29b4a7172e180 C:\Windows\system32\d3d10core.dll
      MD5: 4a4c71376eca305d6dea021f1a44816d C:\Windows\system32\D3D10Warp.dll
      MD5: 85e861d0b88db2b54acb0839654c09f7 C:\Windows\system32\DNSAPI.dll
      MD5: 57d762f6f5974af0da2be88a3349baaa C:\Windows\System32\dnsrslvr.dll
      MD5: 062373995eae5f0eac9eaa9192136bfb C:\Windows\system32\dnssd.dll
      MD5: fe3ea6e9afc1a78e6edca121e006afb7 C:\Windows\system32\drivers\Afc.sys
      MD5: 3911b972b55fea0478476b2e777b29fa C:\Windows\system32\drivers\afd.sys
      MD5: 35f376253f687bde63976ccb3f2108ca C:\Windows\system32\DRIVERS\bowser.sys
      MD5: 57479e5bf0b7b97112354e5eca8eefb1 C:\Windows\system32\drivers\cfwids.sys
      MD5: 622c41a07ca7e6dd91770f50d532cb6c C:\Windows\System32\Drivers\dfsc.sys
      MD5: c68ac676b0ef30cfbb1080adce49eb1f C:\Windows\System32\drivers\dxgkrnl.sys
      MD5: b0082808a6856a252f7cdd939892ce50 C:\Windows\system32\DRIVERS\fssfltr.sys
      MD5: 185ada973b5020655cee342059a86cbb C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
      MD5: d61e53e3fec0c92bc8dd3969fad63f87 C:\Windows\system32\drivers\HipShieldK.sys
      MD5: c6e5276c00ebdeb096bb5ef4b797d1b6 C:\Windows\system32\drivers\int15.sys
      MD5: 4a1445efa932a3baf5bdb02d7131ee20 C:\Windows\System32\Drivers\ksecdd.sys
      MD5: 3e59df4984fbd6800d6621480b38a34e C:\Windows\system32\DRIVERS\lgandbus.sys
      MD5: 8e0bf6f3b2c9c292bc7ce0de727cdd56 C:\Windows\system32\DRIVERS\lganddiag.sys
      MD5: 1d2c90e25483363d54b652898bbc8f2a C:\Windows\system32\DRIVERS\lgandgps.sys
      MD5: b1b06a95da2cac7fa19832c60c348c85 C:\Windows\system32\DRIVERS\lgandmodem.sys
      MD5: 1d038ca6c529203087a990e5e97887b4 C:\Windows\system32\DRIVERS\lgbtbus.sys
      MD5: 4dd47b5af0b24871ebb9efc012a7474e C:\Windows\system32\DRIVERS\lgbtport.sys
      MD5: 26f1976a330195d62a6224c76968cf0d C:\Windows\system32\DRIVERS\lgvmodem.sys
      MD5: d7010580bf4e45d5e793a1fe75758c69 C:\Windows\system32\DRIVERS\mdc8021x.sys
      MD5: 449c611308f52932c85468ba0e91b4a7 C:\Windows\system32\drivers\mfeapfk.sys
      MD5: 080c59e365b358551b819836658fde42 C:\Windows\system32\drivers\mfeavfk.sys
      MD5: 0dbcb0c95196b3d12d550426db683867 C:\Windows\system32\drivers\mfebopk.sys
      MD5: 8776b9e3dc1f2b0f6ba7cdc66f51b201 C:\Windows\system32\drivers\mfefirek.sys
      MD5: 5702e118d70a9ee95b6a5d9230076efc C:\Windows\system32\drivers\mfehidk.sys
      MD5: fad22aa17da864c3b56e24603e0f067f C:\Windows\system32\drivers\mferkdet.sys
      MD5: b9a785b5137759fee58837b04ff1db94 C:\Windows\system32\drivers\mfewfpk.sys
      MD5: 1e94971c4b446ab2290deb71d01cf0c2 C:\Windows\system32\DRIVERS\mrxsmb.sys
      MD5: 4fccb34d793b116423209c0f8b7a3b03 C:\Windows\system32\DRIVERS\mrxsmb10.sys
      MD5: c3cb1b40ad4a0124d617a1199b0b9d7c C:\Windows\system32\DRIVERS\mrxsmb20.sys
      MD5: af997b1e67971c5ec34f52962617b55d C:\Windows\system32\DRIVERS\netr28.sys
      MD5: 94e08dcc43f46471d96953e712b6d82b C:\Windows\system32\drivers\NTIDrvr.sys
      MD5: 3d7fb57354703809b5f0c23287fac1d6 C:\Windows\system32\drivers\nvhda32v.sys
      MD5: 0a1b502cbc8230da74befbaaddb58916 C:\Windows\system32\DRIVERS\nvlddmkm.sys
      MD5: 84427c3b7488bd05d89d86163401b3ec C:\Windows\system32\DRIVERS\nvmfdx32.sys
      MD5: 97778c3cb3af6b2243648d0dcd4d8916 C:\Windows\system32\DRIVERS\nvstor32.sys
      MD5: b9c2b89f08670e159f7181891e449cd9 C:\Windows\System32\drivers\partmgr.sys
      MD5: 1636d43f10416aeb483bc6001097b26c C:\Windows\system32\drivers\pciide.sys
      MD5: 5abf7be682488903a0268ed83e10c88b C:\Windows\System32\Drivers\PdiPorts.sys
      MD5: 628321c8dd76ad369b362b202e655a68 C:\Windows\system32\DRIVERS\psdfilter.sys
      MD5: 79d7117e62709c7690cf3dd55acead37 C:\Windows\system32\DRIVERS\PSDNServ.sys
      MD5: cae5e82827990cf4bd4a49576bde3a43 C:\Windows\system32\DRIVERS\PSDVdisk.sys
      MD5: febdd0310fba3da13f56ede2e9f7b5dc C:\Windows\system32\drivers\RTKVHDA.sys
      MD5: ce9ec966638ef0b10b864ddedf62a099 C:\Windows\system32\DRIVERS\serenum.sys
      MD5: 6d663022db3e7058907784ae14b69898 C:\Windows\system32\DRIVERS\serial.sys
      MD5: d08d19ee68cb88ab1bc5da3081505847 C:\Windows\system32\DRIVERS\snpstd.sys
      MD5: 41987f9fc0e61adf54f581e15029ad91 C:\Windows\System32\DRIVERS\srv.sys
      MD5: ff33aff99564b1aa534f58868cbe41ef C:\Windows\System32\DRIVERS\srv2.sys
      MD5: 7605c0e1d01a08f3ecd743f38b834a44 C:\Windows\System32\DRIVERS\srvnet.sys
      MD5: 14622ae81c72b08691eedaabc1d4a129 C:\Windows\system32\DRIVERS\ssm_bus.sys
      MD5: 43ee5e9fda61a5e0eac4c1de699e6e4d C:\Windows\system32\DRIVERS\ssm_mdfl.sys
      MD5: 918cfd32c7feb174f356a0a6fad11f4b C:\Windows\system32\DRIVERS\ssm_mdm.sys
      MD5: 74e2d020c47bb2b2fccba29a518a7eb4 C:\Windows\System32\drivers\tcpip.sys
      MD5: 97dd70feca64fb4f63de7bb7e66a80b1 C:\Windows\system32\drivers\tvicport.sys
      MD5: 6827eae2419c16092a6be2432935e4f1 C:\Windows\system32\drivers\UBHelper.sys
      MD5: 83cafcb53201bbac04d822f32438e244 C:\Windows\System32\Drivers\usbaapl.sys
      MD5: 786db5771f05ef300390399f626bf30a C:\Windows\system32\drivers\volsnap.sys
      MD5: a840213f1acdcc175b4d1d5aaeac0d7a C:\Windows\system32\drivers\Wdf01000.sys
      MD5: 06e6f32c8d0a3f66d956f57b43a2e070 C:\Windows\system32\drivers\WudfPf.sys
      MD5: 867c301e8b790040ae9cf6486e8041df C:\Windows\system32\DRIVERS\WUDFRd.sys
      MD5: 40ac8590cc9006dbb99ffcb37879d4c6 C:\Windows\system32\drivers\zntport.sys
      MD5: cabd1b34bd05c986b4dbc18bc0e947ee C:\Windows\system32\DWrite.dll
      MD5: aaae543c535ed596ecad2ab8761c2c6f C:\Windows\system32\dxgi.dll
      MD5: 4312debdacbe338f0b90e7f08e7672be C:\Windows\system32\Dxtmsft.dll
      MD5: ca493a92da9880b6f1a89c3dbd54ba5b C:\Windows\system32\Dxtrans.dll
      MD5: 8ce364388c8eca59b14b539179276d44 C:\Windows\system32\FntCache.dll
      MD5: 790a4ca68f44be35967b3df61f3e4675 C:\Windows\system32\FsUsbExDisk.SYS
      MD5: d3f9205cc4cb07553f2f9472c767ea87 C:\Windows\system32\FsUsbExService.Exe
      MD5: 0e816ea3c5dce94c95099e8b38e75e67 C:\Windows\system32\ieframe.dll
      MD5: d171eaa745a2c0c583cdda13d9088ee4 C:\Windows\system32\iertutil.dll
      MD5: eb49faa5ebbc06356fb12476438781b9 C:\Windows\system32\imagehlp.dll
      MD5: 8843b6a1b8e102841b2dff02805c5cec C:\Windows\system32\jscript.dll
      MD5: c079169e6a07fc4412475c02969eb9ce C:\Windows\system32\jscript9.dll
      MD5: dc3105cc925a0d47f61b54e66ab730fc C:\Windows\system32\kernel32.dll
      MD5: 8b2d61ca83825cead423228acd40cfbc C:\Windows\system32\loadperf.dll
      MD5: a3e186b4b935905b829219502557314e C:\Windows\system32\lsass.exe
      MD5: 9942dc4cc265cda00486504444ef521d C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
      MD5: e64819b6014a93e2503bb52419a0f6f3 C:\Windows\system32\Macromed\Flash\NPSWF32_11_6_602_171.dll
      MD5: 67d16247c56c26a4f0d79d1a7f272b8f C:\Windows\system32\mf.dll
      MD5: ab2d7f16a9745c41297752ab07c98f46 C:\Windows\system32\mfevtps.exe
      MD5: bf142d4f8c61ed3629a9cdd7ba867900 C:\Windows\system32\mfplat.dll
      MD5: 1d3ee28ba231cbb9600f5d102eaf4ea7 C:\Windows\system32\msfeedssync.exe
      MD5: c97434c851c4821bd92d2831fdf1ecbe C:\Windows\system32\mshtml.dll
      MD5: 2955a48be10fd1f7a112b0a890a6271d C:\Windows\system32\MSISIP.DLL
      MD5: 35aae2e841aa1a949775168e119482c9 C:\Windows\system32\msls31.dll
      MD5: f67f3a6b7953f426c0943f278a9ea1ad C:\Windows\system32\msscript.ocx
      MD5: ff41e1ac301f51e16f61ad7c0f45467c C:\Windows\System32\msshsq.dll
      MD5: e3c817f7fe44cc870ecdbcbc3ea36132 C:\Windows\system32\MSVCP100.dll
      MD5: bf38660a9125935658cfa3e53fdc7d65 C:\Windows\system32\MSVCR100.dll
      MD5: 17af64d727545f2804f6e6d998327e3f C:\Windows\system32\msvcrt.dll
      MD5: 6abd253226770eae1292b4c945ed4b4b C:\Windows\System32\msxml3.dll
      MD5: 0296daeb5555a248e8abf7e5012a37a6 C:\Windows\System32\msxml6.dll
      MD5: 13cc59c1b04e9f20a87987c68cd4be3f C:\Windows\system32\ncrypt.dll
      MD5: 98b656eaf128cd06f625b09c84d959e1 C:\Windows\system32\NETAPI32.dll
      MD5: ec68d5ecd1ea15c81fc88dd6343c9080 c:\windows\system32\newtabs_onmylike.dll
      MD5: 3328610fa4de8ac8ab0a13020ddc5a13 C:\Windows\System32\NLSLexicons000a.dll
      MD5: 2616b4d6d04f18c579b7861f02b0b592 C:\Windows\system32\npDeployJava1.dll
      MD5: dda770bbd7c2ed024d6f50e279d90e5b C:\Windows\system32\ntdll.dll
      MD5: 82fc59a500aa685f833e61e3a1bb7daf C:\Windows\system32\nvd3dum.dll
      MD5: eb5a13f9139f20ad71adf4bf79c3aa29 C:\Windows\system32\nvvsvc.exe
      MD5: 9586e7cb2255a8b097a7e4538202585e C:\Windows\system32\ole32.dll
      MD5: dc15ab7168c0309d8f04fd95b6240422 C:\Windows\system32\OLEACC.dll
      MD5: b218342214d9bba0f54ea12ba2e9278c C:\Windows\system32\OLEAUT32.dll
      MD5: 4a1feebf039b283258b0e479fa135dba C:\Windows\System32\osbaseln.dll
      MD5: 50e3e76b0901bb4fc029bb88bfa5ce79 C:\Windows\system32\schannel.dll
      MD5: 1a58069db21d05eb2ab58ee5753ebe8d C:\Windows\system32\schedsvc.dll
      MD5: d602fedbd9155fc2ded6863fb60c950f C:\Windows\system32\secur32.dll
      MD5: 0a990afb9f2726323d61c8ecb8b70b17 C:\Windows\system32\security.dll
      MD5: 167ac31450c0c53a01fa1491e94d7678 C:\Windows\system32\shdocvw.dll
      MD5: aaf101900a23d75ae1ae00840fa6f3b8 C:\Windows\system32\SHELL32.dll
      MD5: 420b075cd71ab9e58d15dd258958fba3 C:\Windows\system32\SHLWAPI.dll
      MD5: c7230fbee14437716701c15be02c27b8 C:\Windows\System32\shsvcs.dll
      MD5: 67a129b113aaf8d4a31327a3aec55b9b C:\Windows\System32\spool\drivers\w32x86\3\E_FATICCL.EXE
      MD5: 208bb12b813b11900a703be2376b378e C:\Windows\system32\spool\DRIVERS\W32X86\3\E_FAUDCCL.DLL
      MD5: 8554097e5136c3bf9f69fe578a1b35f4 C:\Windows\System32\spoolsv.exe
      MD5: 1bf5eebfd518dd7298434d8c862f825d C:\Windows\system32\srvsvc.dll
      MD5: b5950df243837d8217f4e597919b224a C:\Windows\system32\stobject.dll
      MD5: 3d50c4b10352367d5cb20ed1f50f8da2 C:\Windows\System32\taskeng.exe
      MD5: 52e129522c1775dbb8cc252e7a0655c7 C:\Windows\system32\taskschd.dll
      MD5: cde36a70a5280fc0696e6e4363c4c71d C:\Windows\system32\TaskSchdPS.dll
      MD5: be157c3800da3010efc48280ecf81c16 C:\Windows\system32\urlmon.dll
      MD5: 80fff14f1757b9af8be9d314fc1ae88b C:\Windows\system32\USP10.dll
      MD5: df1f51d2938a403bfe671b13a12fa434 C:\Windows\system32\VDMDBG.dll
      MD5: 5193de33f3284c447e0d31dafbf92570 c:\windows\system32\webcheck.dll
      MD5: 7943a80f1a6fd37969aacd411b511f91 C:\Windows\System32\WindowsPowerShell\v1.0\pwrshsip.dll
      MD5: dbd02e3e6f061ebbbf9b99a9d7cba30b C:\Windows\system32\Winhttp.dll
      MD5: b49b56b64f57699a1a663d2cf7d0a56f C:\Windows\system32\WININET.dll
      MD5: 14ff750efe13b0c21e5a06507c3a97b1 C:\Windows\system32\WINMM.dll
      MD5: 3fcb7347d2de38488c85a31ea7838a3c C:\Windows\system32\WinSATAPI.dll
      MD5: 5ec8fb83f31aa2d6f421f02c3f4f4475 C:\Windows\system32\WINSPOOL.DRV
      MD5: b2e569ef26dac9d6994a2aff4f601b7a C:\Windows\system32\WINTRUST.dll
      MD5: a9662bcf218bc76869a8d91635d5f93a C:\Windows\System32\Wpc.dll
      MD5: dd1d685d387a8ac666ba3b7539c774e8 C:\Windows\system32\wpclsp.dll
      MD5: c456658af90f42be3cdf1048f9cdb5ca C:\Windows\System32\wpcumi.exe
      MD5: 9c50130e941a24805a608e6f3d2a3c8f C:\Windows\system32\wshext.dll
      MD5: fc3ec24fce372c89423e015a2ac1a31e C:\Windows\system32\wuaueng.dll
      MD5: fe47b7bc8ea320c2d9b5e5bf6e303765 C:\Windows\System32\WUDFSvc.dll
      MD5: 1908cc7673f72601affdca022689cedf C:\Windows\system32\XmlLite.dll
      MD5: e7a2d42ddfe1af501e06d27a11c170de C:\Windows\TEMP\009692~1.EXE
      MD5: 0b3595a4ff0b36d68e5fc67fd7d70fdc C:\Windows\WinSxS\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\MSVCP80.dll
      MD5: c9564cf4976e7e96b4052737aa2492b4 C:\Windows\WinSxS\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\MSVCR80.dll
      MD5: e2c48cd0132d4d1dc7d0df9a6bef686a C:\Windows\WinSxS\x86_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_cbf5e994470a1a8f\MFC80U.DLL
      MD5: d07aac2bc04602d886c3a925eb209d15 C:\Windows\WinSxS\x86_microsoft.vc80.mfcloc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_03ce2c72205943d3\MFC80ESP.DLL
      MD5: 4c39358ebdd2ffcd9132a30e1ec31e16 C:\Windows\WinSxS\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\MSVCP90.dll
      MD5: cdbe9690cf2b8409facad94fac9479c9 C:\Windows\WinSxS\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\MSVCR90.dll
      MD5: 35acd5ea63d75e97dd0e9a1629e582b2 C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.6002.18305_none_88f3a38569c2c436\COMCTL32.dll
      MD5: be3c082837866c4c291adaf163c10ea6 C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6002.18305_none_5cb72f2a088b0ed3\comctl32.dll
      MD5: 76eaef4ddebbc7c38853f586c0e91dce C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6002.18581_none_9e591052ca1013d0\gdiplus.dll


      Archivo no enviado

      Scan finished - communication took 3 sec
      Total traffic - 0.02 MB enviado, 1.58 KB recibido
      Scanned 844 files and modules - 127 seconds

      ==============================================================================

      AHORA EL REPORTE DE... ESET

      [email protected] as downloader log:
      all ok



      POR ULTIMO LOS DE CCLEANER pROGRAMAS


      cer eDataSecurity Management Egis Inc. 08/01/2009 69.3 MB 3.0.3065
      Acer eDisplay Management Portrait Displays, Inc. 24/10/2010 9.66 MB 1.20.011
      Acer Empowering Technology Acer Incorporated 08/01/2009 133 MB 3.0.3009
      Acer eRecovery Management Acer Incorporated 21/10/2010 27.5 MB 3.0.3014
      Acer eSettings Management Acer Incorporated 08/01/2009 27.3 MB 3.0.3007
      Acer GameZone Console DTV 2.0.1.1 Oberon Media, Inc. 08/01/2009 38.4 MB
      Acer Registration Acer - Leader Technologies 21/10/2010 3.27 MB
      Acer ScreenSaver Acer Incorporated 21/10/2010 4.01.0422
      Acer VideoMagician Acer Inc. 21/10/2010 183 MB 1.4.2203
      Activation Assistant for the 2007 Microsoft Office suites Microsoft Corporation 21/10/2010 14.0 MB
      Actualización de NVIDIA 1.10.8 NVIDIA Corporation 10/11/2012 3.53 MB 1.10.8
      Adobe Acrobat 5.0 Adobe Systems, Inc. 04/11/2010 18.1 MB 5.0
      Adobe AIR Adobe Systems Incorporated 26/04/2011 29.7 MB 2.6.0.19140
      Adobe CreatePDF Desktop Printer Nombre de su organización 25/02/2011 10.0 KB 3.1.0
      Adobe Flash Player 11 ActiveX Adobe Systems Incorporated 26/02/2013 11.6.602.171
      Adobe Flash Player 11 Plugin Adobe Systems Incorporated 26/02/2013 11.6.602.171
      Adobe Photoshop CS5 Adobe Systems Incorporated 05/12/2010 1.51 GB 12.0
      Adobe Reader X (10.0.1) - Español Adobe Systems Incorporated 18/02/2011 10.0.1
      Adobe Reader X (10.1.6) - Español Adobe Systems Incorporated 20/02/2013 117 MB 10.1.6
      Agatha Christie Death on the Nile Oberon Media 21/10/2010 160 MB
      Alcatel Android Manager Mobile Action 25/07/2012 242 MB 11.11.2970
      Alice Greenfingers Oberon Media 21/10/2010 13.3 MB
      Apple Mobile Device Support Apple Inc. 30/11/2012 24.5 MB 6.0.1.3
      Apple Software Update Apple Inc. 27/07/2011 2.38 MB 2.1.3.127
      Asistente Infinitum Fine Point Technologies, Inc. 03/12/2010 18.9 MB 1.7.0
      Azada Oberon Media 21/10/2010 61.2 MB
      Big Kahuna Reef Oberon Media 21/10/2010 11.4 MB
      Bing Bar Microsoft Corporation 18/09/2012 527 KB 7.1.391.0
      Bonjour Apple Inc. 28/10/2011 1.02 MB 3.0.0.10
      Bricks of Egypt Oberon Media 21/10/2010 6.71 MB
      Cake Mania Oberon Media 21/10/2010 17.5 MB
      CCleaner Piriform 25/02/2013 4.76 MB 3.28
      Chicken Invaders 3 Oberon Media 21/10/2010 53.3 MB
      Chuzzle Oberon Media 21/10/2010 10.2 MB
      Compatibilidad con Aplicaciones de Apple Apple Inc. 30/11/2012 64.9 MB 2.3.2
      Control ActiveX de Windows Live Mesh para conexiones remotas Microsoft Corporation 23/10/2010 5.57 MB 15.4.5722.2
      Diner Dash Flo on the Go Oberon Media 21/10/2010 17.2 MB
      EPSON Easy Photo Print SEIKO EPSON CORPORATION 03/11/2010 84.4 MB 1.5.0.0
      eSobi v2 esobi Inc. 08/01/2009 16.8 MB 2.0.3.000201
      Feedback Tool Microsoft Corporation 16/02/2011 2.27 MB 1.2.0
      Google Chrome Google Inc. 30/10/2010 220 MB 25.0.1364.97
      Google Desktop Google 22/10/2010 30.2 MB 5.9.1005.12335
      Google Drive Google, Inc. 18/01/2013 16.0 MB 1.7.4018.3496
      Google Earth Google 23/11/2011 92.7 MB 6.1.0.5001
      Google Talk Plugin Google 01/03/2013 21.1 MB 3.14.17.11865
      Google Toolbar for Internet Explorer Google Inc. 14/01/2013 42.5 MB 7.4.3607.2246
      iCloud Apple Inc. 30/11/2012 48.3 MB 2.1.0.39
      Internet Explorer (Enable DEP) 06/10/2012 7.14 MB
      iTunes Apple Inc. 14/12/2012 187 MB 11.0.1.12
      Java 7 Update 15 Oracle 01/03/2013 129 MB 7.0.150
      Java(TM) 6 Update 31 Oracle 25/02/2012 95.1 MB 6.0.310
      Jewel Quest Solitaire Oberon Media 21/10/2010 26.9 MB
      Kick N Rush Oberon Media 21/10/2010 43.3 MB
      LG Bluetooth Drivers LG Electronics 25/11/2011 704 KB 1.1
      LG PC Suite IV LG Electronics 01/06/2012 134 MB 4.3.67.20120418
      LG United Mobile Drivers LG Electronics 01/06/2012 6.33 MB 3.7.1.0
      Mahjong Escape Ancient China Oberon Media 21/10/2010 13.5 MB
      Manual del usuario C110 22/10/2010
      McAfee Internet Security Suite McAfee, Inc. 01/03/2013 76.1 MB 11.6.477
      McAfee Security Scan Plus McAfee, Inc. 29/10/2010 9.05 MB 2.0.181.2
      Microsoft .NET Framework 3.5 SP1 Microsoft Corporation 22/10/2010 36.9 MB
      Microsoft .NET Framework 4 Client Profile Microsoft Corporation 23/10/2010 120 MB 4.0.30319
      Microsoft Encarta 2007 Biblioteca Premium Microsoft Corporation 06/11/2010 2.23 GB 2007
      Microsoft Fix it Center Microsoft Corporation 13/08/2011 22.0 MB 1.0.0100
      Microsoft Office File Validation Add-In Microsoft Corporation 15/09/2011 7.91 MB 14.0.5130.5003
      Microsoft Office Home and Student 2007 Microsoft Corporation 09/11/2011 320 MB 12.0.6612.1000
      Microsoft Silverlight Microsoft Corporation 09/05/2012 5.1.10411.0
      Microsoft SkyDrive Microsoft Corporation 15/11/2012 41.5 MB 17.0.2003.1112
      Microsoft SQL Server 2005 Compact Edition [ENU] Microsoft Corporation 23/10/2010 1.74 MB 3.1.0000
      Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 Microsoft Corporation 22/10/2010 251 KB 8.0.50727.4053
      Microsoft Visual C++ 2005 Redistributable Microsoft Corporation 30/12/2012 2.37 MB 8.0.59193
      Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 Microsoft Corporation 24/10/2010 199 KB 9.0.30729.4148
      Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 Microsoft Corporation 03/05/2011 592 KB 9.0.30729.5570
      Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 Microsoft Corporation 01/12/2010 1.41 MB 9.0.21022
      Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022.218 Microsoft Corporation 13/04/2011 226 KB 9.0.21022.218
      Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 Microsoft Corporation 24/10/2010 590 KB 9.0.30729
      Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 Microsoft Corporation 03/12/2010 587 KB 9.0.30729.4148
      Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 Microsoft Corporation 25/06/2011 594 KB 9.0.30729.6161
      Microsoft Works Microsoft Corporation 22/10/2010 08.05.0822
      MobileMe Control Panel Apple Inc. 05/11/2011 12.9 MB 3.1.8.0
      Move Media Player Move Networks 26/12/2010
      MSXML 4.0 SP2 (KB927978) Microsoft Corporation 14/04/2011 34.0 KB 4.20.9841.0
      MSXML 4.0 SP2 (KB954430) Microsoft Corporation 14/04/2011 35.0 KB 4.20.9870.0
      MSXML 4.0 SP2 (KB973688) Microsoft Corporation 14/04/2011 1.33 MB 4.20.9876.0
      MSXML 4.0 SP2 Parser and SDK Microsoft Corporation 25/11/2011 36.0 KB 4.20.9818.0
      Mystery Case Files - Huntsville Oberon Media 21/10/2010 25.9 MB
      Mystery Solitaire - Secret Island Oberon Media 21/10/2010 19.8 MB
      NewTabs Uninstall ELEX Technology 23/08/2012 260 KB
      NTI Backup Now 5 NewTech Infosystems 21/10/2010 28.5 MB 5.1.2.606
      NTI Media Maker 8 NewTech Infosystems 21/10/2010 187 MB 8.0.2.6329
      NVIDIA Controlador de audio HD 1.3.12.0 NVIDIA Corporation 13/03/2012 3.40 MB 1.3.12.0
      NVIDIA Controlador de gráficos 306.97 NVIDIA Corporation 10/11/2012 114 MB 306.97
      NVIDIA Drivers NVIDIA Corporation 02/06/2011 1.10.62.40
      OML Homepage Uninstaller OnMylike Technology 23/08/2012 564 KB
      Pandora Service Pandora.TV 24/12/2012 9.16 MB
      Paquete de controladores de Windows - MobileTop (sshpmdm) Modem (01/26/2008 2.6.0.0) MobileTop 05/05/2011 11.6 MB 01/26/2008 2.6.0.0
      Paquete de controladores de Windows - MobileTop (sshpmdm) Modem (02/23/2007 2.5.0.0) MobileTop 05/05/2011 11.6 MB 02/23/2007 2.5.0.0
      Paquete de controladores de Windows - MobileTop (sshpusb) USB (02/23/2007 2.5.0.0) MobileTop 05/05/2011 11.6 MB 02/23/2007 2.5.0.0
      Paquete de idioma de Microsoft .NET Framework 3.5 SP1 - esn Microsoft Corporation 22/10/2010 37.2 MB
      Paquete de idioma de Microsoft .NET Framework 4 Client Profile ESN Microsoft Corporation 23/10/2010 29.3 MB 4.0.30319
      PCSpeedUp www.pcspeedup.com 01/06/2012
      PlayStation(R)Network Downloader Sony Computer Entertainment Inc. 03/12/2010 530 KB 2.04.00651
      PlayStation(R)Store Sony Computer Entertainment Inc. 03/12/2010 4.09 MB 4.0.14.10643
      PowerDirector (Acer DT) CyberLink Corp. 08/01/2009 198 MB 6.5.2929
      PowerDVD 7.0 with 5.1ch CyberLink Corporation 21/10/2010 6.93 MB 7.0.2802b
      ProdigyWizard ProdigyMSN 16/12/2010 1.0.0.25
      QuickTime Apple Inc. 10/11/2012 73.1 MB 7.73.80.64
      RealPlayer RealNetworks 03/10/2012 100 MB 15.0.6
      Realtek High Definition Audio Driver Realtek Semiconductor Corp. 21/10/2010 23.4 MB 6.0.1.5688
      SAMSUNG Mobile Composite Device Software 05/05/2011
      Samsung Mobile Modem Device Software 05/05/2011
      SAMSUNG Mobile Modem Driver Set 05/05/2011
      SAMSUNG Mobile Modem V2 Software 05/05/2011
      Samsung Mobile phone USB driver Software 05/05/2011
      SAMSUNG Mobile USB Modem 1.0 Software 05/05/2011
      SAMSUNG Mobile USB Modem Software 05/05/2011
      Samsung New PC Studio Samsung Electronics Co., Ltd. 05/05/2011 203 MB 1.00.0000
      Samsung New PC Studio USB Driver Installer Samsung Electronics Co., Ltd. 05/05/2011 14.3 MB 1.00.0000
      SAMSUNG SYMBIAN USB Download Driver SAMSUNG Electronics CO,.LTD 05/05/2011 2.43 MB 1.1.808.7165
      SAMSUNG USB Mobile Device Software 05/05/2011
      SamsungConnectivityCableDriver Samsung 05/05/2011 633 KB 6.83.6.2.1
      Skype™ 6.2 Skype Technologies S.A. 16/02/2013 20.2 MB 6.2.106
      Software de impresora EPSON SEIKO EPSON Corporation 03/11/2010 1.12 GB
      SweetPacks bundle uninstaller 08/01/2009
      System Requirements Lab for Intel Husdawg, LLC 01/12/2010 846 KB 4.3.13.0
      The KMPlayer (remove only) KMP Media co., Ltd 24/12/2012 48.7 MB 3.4.0.59
      Turbo Pizza Oberon Media 21/10/2010 175 MB
      Utilidad Intel(R) para ID de procesadores Intel Corporation 01/12/2010 3.96 MB 4.23.0000
      VLC media player 2.0.2 VideoLAN 12/09/2012 76.5 MB 2.0.2
      Windows Live Essentials Microsoft Corporation 05/04/2012 15.4.3555.0308
      Windows Media Player Firefox Plugin Microsoft Corp 11/11/2011 296 KB 1.0.0.8
      WinRAR 4.20 (32-bit) win.rar GmbH 09/07/2012 4.23 MB 4.20.0
      Wondershare PDF to Word (Build 3.5.0) Wondershare Software 30/12/2012 19.6 MB 3.5.0
      WOT para Internet Explorer WOT Services Oy 04/12/2012 1.31 MB 12.8.2.0
      Xvid 1.2.1 final uninstall Xvid team (Koepi) 18/12/2010 736 KB 1.2
      Yahoo! Messenger Yahoo! Inc. 12/01/2012 35.7 MB
      Yahoo! Software Update 04/08/2011 692 KB
      Zuma Deluxe Oberon Media 21/10/2010 11.1 MB


      AHORA APLICACIONES INICIO

      Si HKCU:Run AutoStartNPSAgent Samsung Electronics Co., Ltd. C:\Program Files\Samsung\Samsung New PC Studio\NPSAgent.exe
      Si HKCU:Run EPSON Stylus C110 Series SEIKO EPSON CORPORATION C:\Windows\system32\spool\DRIVERS\W32X86\3\E_FATICCL.EXE /FU "C:\Users\Roberto\AppData\Local\Temp\E_S6181.tmp" /EF "HKCU"
      Si HKCU:Run Google Update Google Inc. "C:\Users\Roberto\AppData\Local\Google\Update\GoogleUpdate.exe" /c
      Si HKCU:Run GoogleDriveSync Google "C:\Program Files\Google\Drive\googledrivesync.exe" /autostart
      Si HKCU:Run HDDtoGOLaunch C:\Users\Roberto\AppData\Roaming\CoSoSys\HDDtoGO\HDDtoGOLaunch.exe
      Si HKCU:Run SkyDrive Microsoft Corporation "C:\Users\Roberto\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe" /background
      Si HKCU:Run Skype Skype Technologies S.A. "C:\Program Files\Skype\Phone\Skype.exe" /minimized /regrun
      Si HKCU:Run swg Google Inc. "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
      No HKLM:Run Acer Empowering Technology Monitor C:\Program Files\Acer\Empowering Technology\SysMonitor.exe
      Si HKLM:Run Adobe ARM Adobe Systems Incorporated "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
      No HKLM:Run AppleSyncNotifier Apple Inc. C:\Program Files\Common Files\Apple\Mobile Device Support\AppleSyncNotifier.exe
      Si HKLM:Run APSDaemon Apple Inc. "C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe"
      No HKLM:Run B2C_AGENT LG Electronics C:\ProgramData\LGMOBILEAX\B2C_Client\B2CNotiAgent.exe
      No HKLM:Run BkupTray "C:\Program Files\NewTech Infosystems\NTI Backup Now 5\BkupTray.exe"
      No HKLM:Run DT ACR C:\Program Files\Common Files\Portrait Displays\Shared\DT_startup.exe -ACR
      No HKLM:Run eDataSecurity Loader Egis Incorporated C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\eDSloader.exe
      No HKLM:Run EmpoweringTechnology C:\Program Files\Acer\Empowering Technology\Framework.Launcher.exe boot
      No HKLM:Run eRecoveryService
      Si HKLM:Run Google Desktop Search Google "C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe" /startup
      Si HKLM:Run iTunesHelper Apple Inc. "C:\Program Files\iTunes\iTunesHelper.exe"
      No HKLM:Run LanguageShortcut CyberLink "C:\Program Files\CyberLink\PowerDVD\Language\Language.exe"
      Si HKLM:Run mcui_exe McAfee, Inc. "C:\Program Files\McAfee.com\Agent\mcagent.exe" /runkey
      No HKLM:Run NPSStartup
      No HKLM:Run QuickTime Task Apple Inc. "C:\Program Files\QuickTime\QTTask.exe" -atboottime
      No HKLM:Run RemoteControl Cyberlink Corp. "C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe"
      No HKLM:Run RtHDVCpl Realtek Semiconductor RtHDVCpl.exe
      No HKLM:Run snpstd C:\Windows\vsnpstd.exe
      Si HKLM:Run SunJavaUpdateSched Sun Microsystems, Inc. "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
      Si HKLM:Run TkBellExe RealNetworks, Inc. "c:\program files\real\realplayer\Update\realsched.exe" -osboot
      Si HKLM:Run Windows Defender Microsoft Corporation %ProgramFiles%\Windows Defender\MSASCui.exe -hide
      Si HKLM:Run WPCUMI Microsoft Corporation C:\Windows\system32\WpcUmi.exe

    6. #6
      Ex-Colaborador Avatar de Gemsa_03
      Registrado
      feb 2012
      Ubicación
      Málaga-España
      Mensajes
      6.615

      Re: Posible Malware

      Hola!
      Realiza lo siguiente:
      En Ccleaner Herramientas/Inicio desactívame todas las entradas menos tu antivirus

      PRIMERO
      • Descarga OTM by OLDTimer y colócalo en tu Escritorio Manual de OTM - (OTMoveit)
      • Desactiva cualquier Programa de Seguridad que tengas Cómo deshabilitar temporalmente su Antivirus
      • Ejecútalo y copia y pega las siguientes instrucciones (se excluye la palabra código) en Paste Instructions for Items to be Moved Parte izquierda de la ventana te adjunto IMAGEN DE MUESTRA
      • Código:
        :files
        C:\Users\Roberto\AppData\Roaming\Ashampoo /d
        C:\Users\Roberto\AppData\Roaming\Flickr /d
        C:\Users\Roberto\AppData\Roaming\Nuance /d
        C:\Users\Roberto\AppData\Roaming\RPPrivate /d
        C:\Users\Roberto\AppData\Roaming\Skinux
        C:\Users\Roberto\AppData\Roaming\SumatraPDF
        C:\Users\Roberto\AppData\Roaming\TweetDeckFast.FFF259DC0CE2657847BBB4AFF0E62062EFC56543.1
        C:\Users\Roberto\AppData\Roaming\ZoomBrowser EX /d
        C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprpchromebrowserrecordext.dll
        C:\Users\Roberto\AppData\Roaming\com.adobe.example.avatarAirApplication.199ED43C2CFEB351CD0244628B93195D7C58F98C.1
        C:\ProgramData\ashampoo /d
        C:\ProgramData\ezsidmv.dat
        C:\ProgramData\regid.1986-12.com.adobe
        C:\ProgramData\UDL /d
        C:\ProgramData\Uniblue /d
        :commands
        [emptytemp]
        [emptyjava]
        [reboot]
      • Posteriormente clickea en el Botón Move It! El Programa empezará a realizar las instrucciones que le hemos dado.
      • El Programa te pedirá reiniciar, en caso contrario, reálizalo manualmente.
      • Al reiniciar te aparecerá una ventana emergente con los resultados LA GUARDAS. Por otro lado el Informe se guardará en
        C: \ _ OTM\MovedFiles\***_***.log (Donde sale "***_***" es la fecha y hora).
      • Adjunta los resultados en tu próximo post.


      SEGUNDO
      Descarga el Revo Uninstaller | InfoSpyware - EJEMPLO DESINSTALACIÓN DE UN PROGRAMA
      Desinstala en MODO AVANZADO los siguientes Programas:
      1. Inbox Toolbar
      2. IB Updater



      TERCERO
      Analízame según Manual de VirusTotal los siguientes archivos:
      1. C:\Windows\system32\msfeedssync.exe
      2. C:\Windows\System32\wpcumi.exe



      CUARTO
      Ejecuta CCleaner - Descargar | InfoSpyware - Manual de CCleaner
      • Ejecuta su función LIMPIADOR / REGISTRO para borrar cookies, temporales y archivos de registro obsoletos IMAGEN CCLEANER.



      En tu próxima respuesta me adjuntas: Informe del OTM, Informe de VIRUS TOTAL y me comentas cómo va el Equipo.
      Un saludo.
      Última edición por Gemsa_03 fecha: 02/03/13 a las 10:25:50 Razón: corrección

    7. #7
      Usuario Avatar de Roberto45
      Registrado
      nov 2010
      Ubicación
      Veracruz, Mexico
      Mensajes
      31

      Re: Posible Malware

      Que tal, el equipo ha mejorado bastante ya no se congela despues de iniciar la secion, ya puedo aceder al Skype normalmente ya puedo ver la ventana del antivirus, no se desbloquea solo el Firewall, solo que da algo que no te comente al incio y que es lo siguiente:

      cuando voy a entrar a FACEBOOK escribo en el buscador el nombre ( ya sea desde Google Chrome o Internet Explorer) aparece la direccion en el buscador le doy click para abrir la ventana y ahi se congela la maquina por espacio de minuto a minuto y medio y ya despues te deja abrir la ventana del face y la maquina sigue oprerando normal.

      aqui los reportes , el Revo Uninstaller no encontro para poder eliminar segun tus indicaciones el Inbox Toolbar ni tampoco encontro el IB Updater, todo lo demas se hizo bien de acuerdo con tus indicaciones, ahi van los reportes.

      All processes killed
      ========== FILES ==========
      C:\Users\Roberto\AppData\Roaming\Ashampoo\log\ashampoo-acdw-log.txt deleted successfully.
      C:\Users\Roberto\AppData\Roaming\Ashampoo\log folder deleted successfully.
      C:\Users\Roberto\AppData\Roaming\Ashampoo\Ashampoo Burning Studio 9\log folder deleted successfully.
      C:\Users\Roberto\AppData\Roaming\Ashampoo\Ashampoo Burning Studio 9 folder deleted successfully.
      C:\Users\Roberto\AppData\Roaming\Ashampoo folder deleted successfully.
      C:\Users\Roberto\AppData\Roaming\Flickr\Flickr Uploadr\Profiles\dwigmgua.default\images\[SomosMovies.com] Stone (2010).avi-thumb.jpg deleted successfully.
      C:\Users\Roberto\AppData\Roaming\Flickr\Flickr Uploadr\Profiles\dwigmgua.default\images folder deleted successfully.
      C:\Users\Roberto\AppData\Roaming\Flickr\Flickr Uploadr\Profiles\dwigmgua.default\extensions folder deleted successfully.
      C:\Users\Roberto\AppData\Roaming\Flickr\Flickr Uploadr\Profiles\dwigmgua.default\compatibility.ini deleted successfully.
      C:\Users\Roberto\AppData\Roaming\Flickr\Flickr Uploadr\Profiles\dwigmgua.default\compreg.dat deleted successfully.
      C:\Users\Roberto\AppData\Roaming\Flickr\Flickr Uploadr\Profiles\dwigmgua.default\cookies.sqlite deleted successfully.
      C:\Users\Roberto\AppData\Roaming\Flickr\Flickr Uploadr\Profiles\dwigmgua.default\cookies.sqlite-journal deleted successfully.
      C:\Users\Roberto\AppData\Roaming\Flickr\Flickr Uploadr\Profiles\dwigmgua.default\extensions.cache deleted successfully.
      C:\Users\Roberto\AppData\Roaming\Flickr\Flickr Uploadr\Profiles\dwigmgua.default\extensions.ini deleted successfully.
      C:\Users\Roberto\AppData\Roaming\Flickr\Flickr Uploadr\Profiles\dwigmgua.default\extensions.rdf deleted successfully.
      C:\Users\Roberto\AppData\Roaming\Flickr\Flickr Uploadr\Profiles\dwigmgua.default\localstore.rdf deleted successfully.
      C:\Users\Roberto\AppData\Roaming\Flickr\Flickr Uploadr\Profiles\dwigmgua.default\mimeTypes.rdf deleted successfully.
      C:\Users\Roberto\AppData\Roaming\Flickr\Flickr Uploadr\Profiles\dwigmgua.default\permissions.sqlite deleted successfully.
      C:\Users\Roberto\AppData\Roaming\Flickr\Flickr Uploadr\Profiles\dwigmgua.default\photos.json deleted successfully.
      C:\Users\Roberto\AppData\Roaming\Flickr\Flickr Uploadr\Profiles\dwigmgua.default\places.sqlite deleted successfully.
      C:\Users\Roberto\AppData\Roaming\Flickr\Flickr Uploadr\Profiles\dwigmgua.default\places.sqlite-journal deleted successfully.
      C:\Users\Roberto\AppData\Roaming\Flickr\Flickr Uploadr\Profiles\dwigmgua.default\prefs.js deleted successfully.
      C:\Users\Roberto\AppData\Roaming\Flickr\Flickr Uploadr\Profiles\dwigmgua.default\users.json deleted successfully.
      C:\Users\Roberto\AppData\Roaming\Flickr\Flickr Uploadr\Profiles\dwigmgua.default\xpti.dat deleted successfully.
      C:\Users\Roberto\AppData\Roaming\Flickr\Flickr Uploadr\Profiles\dwigmgua.default folder deleted successfully.
      C:\Users\Roberto\AppData\Roaming\Flickr\Flickr Uploadr\Profiles\5jo2h536.default\extensions folder deleted successfully.
      C:\Users\Roberto\AppData\Roaming\Flickr\Flickr Uploadr\Profiles\5jo2h536.default\compreg.dat deleted successfully.
      C:\Users\Roberto\AppData\Roaming\Flickr\Flickr Uploadr\Profiles\5jo2h536.default\cookies.sqlite deleted successfully.
      C:\Users\Roberto\AppData\Roaming\Flickr\Flickr Uploadr\Profiles\5jo2h536.default\cookies.sqlite-journal deleted successfully.
      C:\Users\Roberto\AppData\Roaming\Flickr\Flickr Uploadr\Profiles\5jo2h536.default\extensions.cache deleted successfully.
      C:\Users\Roberto\AppData\Roaming\Flickr\Flickr Uploadr\Profiles\5jo2h536.default\extensions.rdf deleted successfully.
      C:\Users\Roberto\AppData\Roaming\Flickr\Flickr Uploadr\Profiles\5jo2h536.default\localstore.rdf deleted successfully.
      C:\Users\Roberto\AppData\Roaming\Flickr\Flickr Uploadr\Profiles\5jo2h536.default\mimeTypes.rdf deleted successfully.
      C:\Users\Roberto\AppData\Roaming\Flickr\Flickr Uploadr\Profiles\5jo2h536.default\permissions.sqlite deleted successfully.
      C:\Users\Roberto\AppData\Roaming\Flickr\Flickr Uploadr\Profiles\5jo2h536.default\photos.json deleted successfully.
      C:\Users\Roberto\AppData\Roaming\Flickr\Flickr Uploadr\Profiles\5jo2h536.default\places.sqlite deleted successfully.
      C:\Users\Roberto\AppData\Roaming\Flickr\Flickr Uploadr\Profiles\5jo2h536.default\places.sqlite-journal deleted successfully.
      C:\Users\Roberto\AppData\Roaming\Flickr\Flickr Uploadr\Profiles\5jo2h536.default\users.json deleted successfully.
      C:\Users\Roberto\AppData\Roaming\Flickr\Flickr Uploadr\Profiles\5jo2h536.default\xpti.dat deleted successfully.
      C:\Users\Roberto\AppData\Roaming\Flickr\Flickr Uploadr\Profiles\5jo2h536.default folder deleted successfully.
      C:\Users\Roberto\AppData\Roaming\Flickr\Flickr Uploadr\Profiles folder deleted successfully.
      C:\Users\Roberto\AppData\Roaming\Flickr\Flickr Uploadr\profiles.ini deleted successfully.
      C:\Users\Roberto\AppData\Roaming\Flickr\Flickr Uploadr folder deleted successfully.
      C:\Users\Roberto\AppData\Roaming\Flickr folder deleted successfully.
      C:\Users\Roberto\AppData\Roaming\Nuance\OmniPageCSDK16 folder deleted successfully.
      C:\Users\Roberto\AppData\Roaming\Nuance folder deleted successfully.
      C:\Users\Roberto\AppData\Roaming\RPPrivate\mediafile4258709.flv deleted successfully.
      C:\Users\Roberto\AppData\Roaming\RPPrivate folder deleted successfully.
      C:\Users\Roberto\AppData\Roaming\Skinux folder moved successfully.
      C:\Users\Roberto\AppData\Roaming\SumatraPDF\sumatrapdfcache folder moved successfully.
      C:\Users\Roberto\AppData\Roaming\SumatraPDF folder moved successfully.
      C:\Users\Roberto\AppData\Roaming\TweetDeckFast.FFF259DC0CE2657847BBB4AFF0E62062EFC56543.1\Local Store\#ApplicationUpdater folder moved successfully.
      C:\Users\Roberto\AppData\Roaming\TweetDeckFast.FFF259DC0CE2657847BBB4AFF0E62062EFC56543.1\Local Store folder moved successfully.
      C:\Users\Roberto\AppData\Roaming\TweetDeckFast.FFF259DC0CE2657847BBB4AFF0E62062EFC56543.1 folder moved successfully.
      C:\Users\Roberto\AppData\Roaming\ZoomBrowser EX folder deleted successfully.
      DllUnregisterServer procedure not found in C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprpchromebrowserrecordext.dll
      C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprpchromebrowserrecordext.dll moved successfully.
      C:\Users\Roberto\AppData\Roaming\com.adobe.example.avatarAirApplication.199ED43C2CFEB351CD0244628B93195D7C58F98C.1\Local Store\#SharedObjects\avatarAirApplication.swf folder moved successfully.
      C:\Users\Roberto\AppData\Roaming\com.adobe.example.avatarAirApplication.199ED43C2CFEB351CD0244628B93195D7C58F98C.1\Local Store\#SharedObjects folder moved successfully.
      C:\Users\Roberto\AppData\Roaming\com.adobe.example.avatarAirApplication.199ED43C2CFEB351CD0244628B93195D7C58F98C.1\Local Store\#ApplicationUpdater folder moved successfully.
      C:\Users\Roberto\AppData\Roaming\com.adobe.example.avatarAirApplication.199ED43C2CFEB351CD0244628B93195D7C58F98C.1\Local Store folder moved successfully.
      C:\Users\Roberto\AppData\Roaming\com.adobe.example.avatarAirApplication.199ED43C2CFEB351CD0244628B93195D7C58F98C.1 folder moved successfully.
      C:\ProgramData\ashampoo\drivers\driverdatabase.xml deleted successfully.
      C:\ProgramData\ashampoo\drivers folder deleted successfully.
      C:\ProgramData\ashampoo folder deleted successfully.
      C:\ProgramData\ezsidmv.dat moved successfully.
      C:\ProgramData\regid.1986-12.com.adobe folder moved successfully.
      C:\ProgramData\UDL\PIFCategory.def deleted successfully.
      C:\ProgramData\UDL\PIFCategory_de.def deleted successfully.
      C:\ProgramData\UDL\PIFCategory_en_GB.def deleted successfully.
      C:\ProgramData\UDL\PIFCategory_en_US.def deleted successfully.
      C:\ProgramData\UDL\PIFCategory_es.def deleted successfully.
      C:\ProgramData\UDL\PIFCategory_fr.def deleted successfully.
      C:\ProgramData\UDL\PIFCategory_it.def deleted successfully.
      C:\ProgramData\UDL\PIFCategory_nl.def deleted successfully.
      C:\ProgramData\UDL\PIFCategory_pt.def deleted successfully.
      C:\ProgramData\UDL\PIFCategory_ru.def deleted successfully.
      C:\ProgramData\UDL folder deleted successfully.
      C:\ProgramData\Uniblue\DriverScanner folder deleted successfully.
      C:\ProgramData\Uniblue folder deleted successfully.
      ========== COMMANDS ==========

      [EMPTYTEMP]

      User: All Users

      User: Axel Ared
      ->Java cache emptied: 22497508 bytes
      ->Google Chrome cache emptied: 1905008 bytes
      ->Apple Safari cache emptied: 57344 bytes
      ->Flash cache emptied: 44280 bytes

      User: Axel Ared.Controltpr
      ->Temp folder emptied: 613389203 bytes
      ->Temporary Internet Files folder emptied: 988316909 bytes
      ->Java cache emptied: 1567425 bytes
      ->FireFox cache emptied: 242208019 bytes
      ->Google Chrome cache emptied: 297372316 bytes
      ->Flash cache emptied: 299910056 bytes

      User: Default
      ->Temp folder emptied: 0 bytes
      ->Temporary Internet Files folder emptied: 33170 bytes
      ->Flash cache emptied: 56466 bytes

      User: Default User
      ->Temp folder emptied: 0 bytes
      ->Temporary Internet Files folder emptied: 0 bytes
      ->Flash cache emptied: 0 bytes

      User: Invitado
      ->Temp folder emptied: 88034 bytes
      ->Temporary Internet Files folder emptied: 381043 bytes
      ->FireFox cache emptied: 8205149 bytes
      ->Google Chrome cache emptied: 15895103 bytes
      ->Flash cache emptied: 59304 bytes

      User: Katty
      ->Temp folder emptied: 2970870 bytes
      ->Temporary Internet Files folder emptied: 160013526 bytes
      ->Java cache emptied: 0 bytes
      ->Google Chrome cache emptied: 289127900 bytes
      ->Flash cache emptied: 60869 bytes

      User: Luis Roberto
      ->Temp folder emptied: 3766276 bytes
      ->Temporary Internet Files folder emptied: 23989378 bytes
      ->FireFox cache emptied: 1192824 bytes

      User: Public

      User: Roberto
      ->Temp folder emptied: 77753117 bytes
      ->Temporary Internet Files folder emptied: 30081988 bytes
      ->Java cache emptied: 1740267 bytes
      ->FireFox cache emptied: 339019623 bytes
      ->Google Chrome cache emptied: 0 bytes
      ->Apple Safari cache emptied: 0 bytes
      ->Flash cache emptied: 57503 bytes

      User: UpdatusUser
      ->Temp folder emptied: 0 bytes
      ->Temporary Internet Files folder emptied: 33170 bytes
      ->Flash cache emptied: 56466 bytes

      %systemdrive% .tmp files removed: 0 bytes
      %systemroot% .tmp files removed: 0 bytes
      %systemroot%\System32 .tmp files removed: 0 bytes
      %systemroot%\System32\drivers .tmp files removed: 0 bytes
      Windows Temp folder emptied: 90 bytes
      %systemroot%\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 18006397 bytes
      %systemroot%\system32\config\systemprofile\AppData\LocalLow\Sun\Java\Deployment folder emptied: 741 bytes
      RecycleBin emptied: 0 bytes

      Total Files Cleaned = 3,281.00 mb


      [EMPTYJAVA]

      User: All Users

      User: Axel Ared
      ->Java cache emptied: 0 bytes

      User: Axel Ared.Controltpr
      ->Java cache emptied: 0 bytes

      User: Default

      User: Default User

      User: Invitado

      User: Katty
      ->Java cache emptied: 0 bytes

      User: Luis Roberto

      User: Public

      User: Roberto
      ->Java cache emptied: 0 bytes

      User: UpdatusUser

      Total Java Files Cleaned = 0.00 mb


      OTM by OldTimer - Version 3.1.21.0 log created on 03022013_202518

      Files moved on Reboot...

      Registry entries deleted on Reboot...


      https://www.virustotal.com/es-mx/fil...is/1362280915/


      https://www.virustotal.com/es-mx/fil...is/1362281157/


      Saludos.

    8. #8
      Ex-Colaborador Avatar de Gemsa_03
      Registrado
      feb 2012
      Ubicación
      Málaga-España
      Mensajes
      6.615

      Re: Posible Malware

      Hola!

      Bueno, me alegro de que vaya mejor.
      Antes de Nada me desinstalas/instalas/ejecutas:
      el Adobe Reader que está desactualizado junto con una versión desactualizada del Java (a pesar de que tienes ya la última versión) y lo descargas de

      PRIMERO
      • Descarga/Realiza una limpieza del Registro (escoges la opción "según defecto" del Programa) con Regcleaner - Manual de Argente - Registry Cleaner
      • Ejecuta una desfragmentación del Disco Duro según Manual de Defraggler
      • En Ccleaner Herramietas/Inicio desplázate a los Botones de los distintos navegadores que tienes y desactiva lo que no creas que te sirva, navegarás más rápido


      Comenta resultados del funcionamiento del Equipo.

      Un saludo.
      Última edición por Gemsa_03 fecha: 03/03/13 a las 11:11:49 Razón: corrección

    9. #9
      Usuario Avatar de Roberto45
      Registrado
      nov 2010
      Ubicación
      Veracruz, Mexico
      Mensajes
      31

      Re: Posible Malware

      Cita Originalmente publicado por gemsa_03 Ver Mensaje
      Hola!

      Bueno, me alegro de que vaya mejor.
      Antes de Nada me desinstalas/instalas/ejecutas:
      el Adobe Reader que está desactualizado junto con una versión desactualizada del Java (a pesar de que tienes ya la última versión) y lo descargas de

      PRIMERO
      • Descarga/Realiza una limpieza del Registro (escoges la opción "según defecto" del Programa) con Regcleaner - Manual de Argente - Registry Cleaner
      • Ejecuta una desfragmentación del Disco Duro según Manual de Defraggler
      • En Ccleaner Herramietas/Inicio desplázate a los Botones de los distintos navegadores que tienes y desactiva lo que no creas que te sirva, navegarás más rápido


      Comenta resultados del funcionamiento del Equipo.

      Un saludo.

      Hola gracias mejoro aun mas la computadora, se actualizo el Adobe Reader, Se elimino la versión de Java que recomendaste, por ahi solo se omitio la limpieza del Regitro con RegCleaner no se pudo hace la copia de seguridad ciompleta, se defragmento el disco "C" y de una vez el "D" tambien y veremos con el paso de los dias que pasa, gracias

      el Regcleaner marco un erro al intentar hacer la copia de seguridad completa y si encontró 2970 errores en el registro despues del analisis.

    10. #10
      Ex-Colaborador Avatar de Gemsa_03
      Registrado
      feb 2012
      Ubicación
      Málaga-España
      Mensajes
      6.615

      Re: Posible Malware

      Hola!

      Me alegro de que las cosas vayan mejor.
      • Avísanos si encuentras cambios y/o podemos dar el tema por SOLUCIONADO.
      • No obstante voy a revisar con más calma el tema (un análisis más profundo) por si se me hubiera pasado algo por alto.

      Un saludo cordial.

    Página 1 de 2 12 ÚltimoÚltimo