• Registrarse
  • Iniciar sesión


  • Resultados 1 al 5 de 5

    no puedo eliminar eset internet security

    un cordial saludo, hace un tiempo instale eset en periodo de prueba por 30 dias y ahora quiero desinstalarlo y me pide contraseña que por cierto nunca me pidio que estableciera en principio, leyendo otro ...

    1. #1
      Usuario Avatar de jona1381
      Registrado
      dic 2015
      Ubicación
      venezuela
      Mensajes
      4

      no puedo eliminar eset internet security

      un cordial saludo, hace un tiempo instale eset en periodo de prueba por 30 dias y ahora quiero desinstalarlo y me pide contraseña que por cierto nunca me pidio que estableciera en principio, leyendo otro tema del foro sobre la pc lenta e internet lento hice un analisis tal cual como se lo recomendaron a otro usuario les envio el resultado de cada uno... agradecido de antemano..
      # AdwCleaner v6.046 - Archivo de registro creado 27/04/2017 en 14:19:08
      # Actualizado en 24/04/2017 por Malwarebytes
      # Base de datos : 2017-04-25.1 [Servidor]
      # Sistema Operativo : Windows 7 Professional Service Pack 1 (X64)
      # Nombre de usuario : Administrador - ORIENTADOR8
      # Ejecutado desde : C:\Users\Administrador\Downloads\AdwCleaner.exe
      # Modo: Limpiar
      # Soporte : https://www.malwarebytes.com/support



      ***** [ Servicios ] *****



      ***** [ Carpetas ] *****

      [-] Carpeta eliminada: C:\extensions
      [-] Carpeta eliminada: C:\Users\Administrador\AppData\Local\Google\Chrome\User Data\Default\Extensions\fcfenmboojpjinhpgggodefccipikbpd
      [-] Carpeta eliminada: C:\Users\Administrador\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\fcfenmboojpjinhpgggodefccipikbpd
      [-] Carpeta eliminada: C:\Users\Administrador\AppData\Local\Google\Chrome\User Data\Default\Extensions\ijjnmdphpnlnelhbhefnfmimenjgbfcn
      [-] Carpeta eliminada: C:\Users\Administrador\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\ijjnmdphpnlnelhbhefnfmimenjgbfcn
      [-] Carpeta eliminada: C:\Users\Invitado\AppData\Local\Google\Chrome\User Data\Default\Extensions\bcfhgdmheejcmagbkanbhgafgjblopee


      ***** [ Archivos ] *****

      [-] Archivo eliminado: C:\Users\Administrador\AppData\Local\Google\Chrome\User Data\Profile 2\Local Storage\chrome-extension_fcfenmboojpjinhpgggodefccipikbpd_0.localstorage
      [-] Archivo eliminado: C:\Users\Invitado\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_bcfhgdmheejcmagbkanbhgafgjblopee_0.localstorage
      [-] Archivo eliminado: C:\Users\Administrador\AppData\Local\Google\Chrome\User Data\Profile 2\Local Storage\hxxp_st.chatango.com_0.localstorage
      [-] Archivo eliminado: C:\Users\Invitado\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_st.chatango.com_0.localstorage
      [-] Archivo eliminado: C:\Users\Administrador\AppData\Local\Google\Chrome\User Data\Profile 2\Local Storage\hxxp_st.chatango.com_0.localstorage-journal
      [-] Archivo eliminado: C:\Users\Invitado\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_st.chatango.com_0.localstorage-journal
      [#] Archivo eliminado: C:\Users\Administrador\AppData\Local\Google\Chrome\User Data\Profile 2\Local Storage\hxxp_st.chatango.com_0.localstorage
      [#] Archivo eliminado: C:\Users\Invitado\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_st.chatango.com_0.localstorage
      [#] Archivo eliminado: C:\Users\Administrador\AppData\Local\Google\Chrome\User Data\Profile 2\Local Storage\hxxp_st.chatango.com_0.localstorage-journal
      [#] Archivo eliminado: C:\Users\Invitado\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_st.chatango.com_0.localstorage-journal


      ***** [ DLL ] *****



      ***** [ WMI ] *****



      ***** [ Accesos directos ] *****



      ***** [ Tareas programadas ] *****



      ***** [ Registro ] *****

      [-] Llave eliminada: HKCU\Software\Google\Chrome\Extensions\fcfenmboojpjinhpgggodefccipikbpd
      [#] Llave eliminada al reiniciar: [x64] HKCU\Software\Google\Chrome\Extensions\fcfenmboojpjinhpgggodefccipikbpd


      ***** [ Navegadores ] *****

      [-] [C:\Users\Administrador\AppData\Local\Google\Chrome\User Data\Default] [extension] Eliminado: fcfenmboojpjinhpgggodefccipikbpd
      [-] [C:\Users\Administrador\AppData\Local\Google\Chrome\User Data\Default] [extension] Eliminado: ijjnmdphpnlnelhbhefnfmimenjgbfcn
      [-] [C:\Users\Administrador\AppData\Local\Google\Chrome\User Data\Profile 2] [extension] Eliminado: fcfenmboojpjinhpgggodefccipikbpd
      [-] [C:\Users\Invitado\AppData\Local\Google\Chrome\User Data\Default] [extension] Eliminado: bcfhgdmheejcmagbkanbhgafgjblopee


      *************************

      :: Llaves "Tracing" eliminadas
      :: Se han borrado los ajustes de Winsock

      *************************

      C:\AdwCleaner\AdwCleaner[C0].txt - [3823 Bytes] - [27/04/2017 14:19:08]
      C:\AdwCleaner\AdwCleaner[S0].txt - [4193 Bytes] - [27/04/2017 1452]

      ########## EOF - C:\AdwCleaner\AdwCleaner[C0].txt - [3969 Bytes] ##########

    2. #2
      Usuario Avatar de jona1381
      Registrado
      dic 2015
      Ubicación
      venezuela
      Mensajes
      4

      Re: no puedo eliminar eset internet security

      Junkware Removal Tool (JRT) by Malwarebytes
      Version: 8.1.3 (04.10.2017)
      Operating System: Windows 7 Professional x64
      Ran by Administrador (Administrator) on 27/04/2017 at 14:21:54,58
      ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




      File System: 24

      Successfully deleted: C:\Users\Administrador\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\0PS72R2M (Temporary Internet Files Folder)
      Successfully deleted: C:\Users\Administrador\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\0S37OD8L (Temporary Internet Files Folder)
      Successfully deleted: C:\Users\Administrador\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\60PPWU27 (Temporary Internet Files Folder)
      Successfully deleted: C:\Users\Administrador\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\62AXOPQ5 (Temporary Internet Files Folder)
      Successfully deleted: C:\Users\Administrador\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\FUR6BG7B (Temporary Internet Files Folder)
      Successfully deleted: C:\Users\Administrador\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\FZG8CKJ5 (Temporary Internet Files Folder)
      Successfully deleted: C:\Users\Administrador\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\LIXMVQOA (Temporary Internet Files Folder)
      Successfully deleted: C:\Users\Administrador\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\NEOY3MR3 (Temporary Internet Files Folder)
      Successfully deleted: C:\Users\Administrador\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\NJIA3UCB (Temporary Internet Files Folder)
      Successfully deleted: C:\Users\Administrador\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\PJVVFJ08 (Temporary Internet Files Folder)
      Successfully deleted: C:\Users\Administrador\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\QZB6FSEN (Temporary Internet Files Folder)
      Successfully deleted: C:\Users\Administrador\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\UH5Q4LFI (Temporary Internet Files Folder)
      Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\0PS72R2M (Temporary Internet Files Folder)
      Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\0S37OD8L (Temporary Internet Files Folder)
      Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\60PPWU27 (Temporary Internet Files Folder)
      Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\62AXOPQ5 (Temporary Internet Files Folder)
      Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\FUR6BG7B (Temporary Internet Files Folder)
      Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\FZG8CKJ5 (Temporary Internet Files Folder)
      Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\LIXMVQOA (Temporary Internet Files Folder)
      Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\NEOY3MR3 (Temporary Internet Files Folder)
      Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\NJIA3UCB (Temporary Internet Files Folder)
      Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\PJVVFJ08 (Temporary Internet Files Folder)
      Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\QZB6FSEN (Temporary Internet Files Folder)
      Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\UH5Q4LFI (Temporary Internet Files Folder)

      Deleted the following from C:\Users\Administrador\AppData\Roaming\Mozilla\Firefox\Profiles\ph9xf85t.default\prefs.js
      user_pref(browser.urlbar.suggest.searches, true);



      Registry: 0





      ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
      Scan was completed on 27/04/2017 at 14:24:52,87
      End of JRT log
      ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

    3. #3
      Usuario Avatar de jona1381
      Registrado
      dic 2015
      Ubicación
      venezuela
      Mensajes
      4

      Re: no puedo eliminar eset internet security

      OTL logfile created on: 27/04/2017 15:50:36 - Run 1
      OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Administrador\Downloads
      64bit- Professional Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
      Internet Explorer (Version = 9.11.9600.18638)
      Locale: 00000c0a | Country: España | Language: ESN | Date Format: dd/MM/yyyy

      3,70 Gb Total Physical Memory | 2,26 Gb Available Physical Memory | 61,15% Memory free
      7,41 Gb Paging File | 6,07 Gb Available in Paging File | 81,93% Paging File free
      Paging file location(s): ?:\pagefile.sys [binary data]

      %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
      Drive C: | 465,66 Gb Total Space | 378,55 Gb Free Space | 81,29% Space Free | Partition Type: NTFS

      Computer Name: ORIENTADOR8 | User Name: Administrador | Logged in as Administrator.
      Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans
      Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 360 Days

      ========== Processes (SafeList) ==========

      PRC - C:\Users\Administrador\Downloads\OTL.exe (OldTimer Tools)
      PRC - C:\Archivos de programa\Malwarebytes\Anti-Malware\mbamtray.exe (Malwarebytes)
      PRC - C:\Program Files (x86)\Motorola\MotoConnectService\MotoConnectService.exe ()
      PRC - C:\Program Files (x86)\Motorola\MotoConnectService\MotoConnect.exe (Motorola)


      ========== Modules (No Company Name) ==========


      ========== Services (SafeList) ==========

      SRV:64bit: - (IEEtwCollectorService) -- C:\Windows\SysNative\IEEtwCollector.exe (Microsoft Corporation)
      SRV:64bit: - (DiagTrack) -- C:\Windows\SysNative\diagtrack.dll (Microsoft Corporation)
      SRV:64bit: - (HFGService) -- C:\Windows\SysNative\HFGService.dll (CSR, plc)
      SRV:64bit: - (AppMgmt) -- C:\Windows\SysNative\appmgmts.dll (Microsoft Corporation)
      SRV - (MozillaMaintenance) -- C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe (Mozilla Foundation)
      SRV - (clr_optimization_v4.0.30319_32) -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe (Microsoft Corporation)
      SRV - (MBAMService) -- C:\Archivos de programa\Malwarebytes\Anti-Malware\MBAMService.exe (Malwarebytes)
      SRV - (ekrn) -- C:\Archivos de programa\ESET\ESET Internet Security\ekrn.exe (ESET)
      SRV - (SkypeUpdate) -- C:\Program Files (x86)\Skype\Updater\Updater.exe (Skype Technologies)
      SRV - (clr_optimization_v2.0.50727_32) -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe (Microsoft Corporation)
      SRV - (cphs) -- C:\Windows\SysWOW64\IntelCpHeciSvc.exe (Intel Corporation)
      SRV - (EPSON_Port_Communication_Service) -- C:\Archivos de programa\EPSON\portcommunicationservice\PCSVC.exe (SEIKO EPSON CORPORATION)
      SRV - (EPSON_Device_Control_Log_Service) -- C:\Archivos de programa\EPSON\portcommunicationservice\DeviceControlLog.exe (SEIKO EPSON CORPORATION)
      SRV - (wlidsvc) -- C:\Archivos de programa\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE (Microsoft Corp.)
      SRV - (MSCamSvc) -- C:\Archivos de programa\Microsoft LifeCam\MSCamS64.exe (Microsoft Corporation)
      SRV - (MotoConnect Service) -- C:\Program Files (x86)\Motorola\MotoConnectService\MotoConnectService.exe ()
      SRV - (osppsvc) -- C:\Archivos de programa\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE (Microsoft Corporation)


      ========== Driver Services (SafeList) ==========

      DRV:64bit: - (MBAMWebProtection) -- C:\Windows\SysNative\drivers\mwac.sys (Malwarebytes)
      DRV:64bit: - (MBAMFarflt) -- C:\Windows\SysNative\drivers\farflt.sys (Malwarebytes)
      DRV:64bit: - (MBAMProtection) -- C:\Windows\SysNative\drivers\mbam.sys (Malwarebytes)
      DRV:64bit: - (MBAMSwissArmy) -- C:\Windows\SysNative\drivers\MBAMSwissArmy.sys (Malwarebytes)
      DRV:64bit: - (MBAMChameleon) -- C:\Windows\SysNative\drivers\MBAMChameleon.sys (Malwarebytes)
      DRV:64bit: - (ESProtectionDriver) -- C:\Windows\SysNative\drivers\mbae64.sys ()
      DRV:64bit: - (ehdrv) -- C:\Windows\SysNative\drivers\ehdrv.sys (ESET)
      DRV:64bit: - (eamonm) -- C:\Windows\SysNative\drivers\eamonm.sys (ESET)
      DRV:64bit: - (edevmon) -- C:\Windows\SysNative\drivers\edevmon.sys (ESET)
      DRV:64bit: - (epfwwfp) -- C:\Windows\SysNative\drivers\epfwwfp.sys (ESET)
      DRV:64bit: - (epfw) -- C:\Windows\SysNative\drivers\epfw.sys (ESET)
      DRV:64bit: - (EpfwLWF) -- C:\Windows\SysNative\drivers\EpfwLWF.sys (ESET)
      DRV:64bit: - (ekbdflt) -- C:\Windows\SysNative\drivers\ekbdflt.sys (ESET)
      DRV:64bit: - (wdm_usb) -- C:\Windows\SysNative\drivers\usb2ser.sys (MBB)
      DRV:64bit: - (SCDEmu) -- C:\Windows\SysNative\drivers\scdemu.sys (Power Software Ltd)
      DRV:64bit: - (RTL8167) -- C:\Windows\SysNative\drivers\Rt64win7.sys (Realtek )
      DRV:64bit: - (Ser2pl) -- C:\Windows\SysNative\drivers\ser2pl64.sys (Prolific Technology Inc.)
      DRV:64bit: - (igfx) -- C:\Windows\SysNative\drivers\igdkmd64.sys (Intel Corporation)
      DRV:64bit: - (TsUsbFlt) -- C:\Windows\SysNative\drivers\TsUsbFlt.sys (Microsoft Corporation)
      DRV:64bit: - (RimVSerPort) -- C:\Windows\SysNative\drivers\RimSerial_AMD64.sys (Research in Motion Ltd)
      DRV:64bit: - (EPSON_PCS_Parallel_Port_Driver) -- C:\Windows\SysNative\drivers\pcslpt.sys (SEIKO EPSON CORPORATION)
      DRV:64bit: - (RdpVideoMiniport) -- C:\Windows\SysNative\drivers\rdpvideominiport.sys (Microsoft Corporation)
      DRV:64bit: - (TsUsbGD) -- C:\Windows\SysNative\drivers\TsUsbGD.sys (Microsoft Corporation)
      DRV:64bit: - (Fs_Rec) -- C:\Windows\SysNative\drivers\fs_rec.sys (Microsoft Corporation)
      DRV:64bit: - (ssadserd) -- C:\Windows\SysNative\drivers\ssadserd.sys (MCCI Corporation)
      DRV:64bit: - (ssadbus) -- C:\Windows\SysNative\drivers\ssadbus.sys (MCCI Corporation)
      DRV:64bit: - (amdsata) -- C:\Windows\SysNative\drivers\amdsata.sys (Advanced Micro Devices)
      DRV:64bit: - (amdxata) -- C:\Windows\SysNative\drivers\amdxata.sys (Advanced Micro Devices)
      DRV:64bit: - (dmvsc) -- C:\Windows\SysNative\drivers\dmvsc.sys (Microsoft Corporation)
      DRV:64bit: - (HpSAMD) -- C:\Windows\SysNative\drivers\HpSAMD.sys (Hewlett-Packard Company)
      DRV:64bit: - (MEIx64) -- C:\Windows\SysNative\drivers\HECIx64.sys (Intel Corporation)
      DRV:64bit: - (Motousbnet) -- C:\Windows\SysNative\drivers\Motousbnet.sys (Motorola)
      DRV:64bit: - (motusbdevice) -- C:\Windows\SysNative\drivers\motusbdevice.sys (Motorola Inc)
      DRV:64bit: - (BthAudioHF) -- C:\Windows\SysNative\drivers\BthAudioHF.sys (CSR, plc)
      DRV:64bit: - (motmodem) -- C:\Windows\SysNative\drivers\motmodem.sys (Motorola)
      DRV:64bit: - (GenericMount) -- C:\Windows\SysNative\drivers\GenericMount.sys (Symantec Corporation)
      DRV:64bit: - (amdsbs) -- C:\Windows\SysNative\drivers\amdsbs.sys (AMD Technologies Inc.)
      DRV:64bit: - (LSI_SAS2) -- C:\Windows\SysNative\drivers\lsi_sas2.sys (LSI Corporation)
      DRV:64bit: - (stexstor) -- C:\Windows\SysNative\drivers\stexstor.sys (Promise Technology)
      DRV:64bit: - (ROOTMODEM) -- C:\Windows\SysNative\drivers\rootmdm.sys (Microsoft Corporation)
      DRV:64bit: - (motccgp) -- C:\Windows\SysNative\drivers\motccgp.sys (Motorola)
      DRV:64bit: - (ebdrv) -- C:\Windows\SysNative\drivers\evbda.sys (Broadcom Corporation)
      DRV:64bit: - (b06bdrv) -- C:\Windows\SysNative\drivers\bxvbda.sys (Broadcom Corporation)
      DRV:64bit: - (b57nd60a) -- C:\Windows\SysNative\drivers\b57nd60a.sys (Broadcom Corporation)
      DRV:64bit: - (hcw85cir) -- C:\Windows\SysNative\drivers\hcw85cir.sys (Hauppauge Computer Works, Inc.)
      DRV:64bit: - (motccgpfl) -- C:\Windows\SysNative\drivers\motccgpfl.sys (Motorola)
      DRV:64bit: - (BTCFilterService) -- C:\Windows\SysNative\drivers\motfilt.sys (Motorola Inc)
      DRV:64bit: - (MotoSwitchService) -- C:\Windows\SysNative\drivers\motswch.sys (Motorola)
      DRV - (WIMMount) -- C:\Windows\SysWOW64\drivers\wimmount.sys (Microsoft Corporation)


      ========== Standard Registry (SafeList) ==========


      ========== Internet Explorer ==========

      IE:64bit: - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
      IE:64bit: - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
      IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
      IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
      IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC

      IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = Entra a Hotmail, Outlook, últimas noticias, juegos, videos, en MSN
      IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = es-ES
      IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 71 DF 81 16 3F B9 D2 01 [binary data]
      IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page_TIMESTAMP = 90 D6 A9 CC C9 F1 D1 01 [binary data]
      IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,SyncHomePage Protected - It is a violation of Windows Policy to modify. See aka.ms/browserpolicy = Reg Error: Value error.
      IE - HKCU\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
      IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IESR02
      IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

      ========== FireFox ==========

      FF - prefs.js..browser.search.countryCode: "VE"
      FF - prefs.js..browser.search.region: "VE"
      FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:52.0.2
      FF - user.js - File not found

      FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
      FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
      FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.17.2: C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
      FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.17.2: C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
      FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
      FF - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
      FF - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
      FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=16.4.3528.0331: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
      FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.33.3\npGoogleUpdate3.dll (Google Inc.)
      FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.33.3\npGoogleUpdate3.dll (Google Inc.)
      FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.2.4: C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)

      FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 52.0.2\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components
      FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 52.0.2\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins
      FF - HKEY_LOCAL_MACHINE\software\mozilla\Thunderbird\Extensions\\eplgTb@eset.com: C:\Program Files\ESET\ESET Endpoint Antivirus\Mozilla Thunderbird

      [2016/08/24 16:51:56 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Administrador\AppData\Roaming\mozilla\Extensions
      [2017/03/13 16:19:28 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Administrador\AppData\Roaming\mozilla\Firefox\Profiles\ph9xf85t.default\extensions
      [2017/04/22 18:43:00 | 000,005,328 | ---- | M] () (No name found) -- C:\Users\Administrador\AppData\Roaming\mozilla\firefox\profiles\ph9xf85t.default\features\{20da0d97-5613-4806-8476-5bc4c952f5b6}\disable-cert-transparency@mozilla.org.xpi
      [2017/04/22 18:43:00 | 000,005,297 | ---- | M] () (No name found) -- C:\Users\Administrador\AppData\Roaming\mozilla\firefox\profiles\ph9xf85t.default\features\{20da0d97-5613-4806-8476-5bc4c952f5b6}\disable-prefetch@mozilla.org.xpi
      [2017/04/22 18:43:00 | 000,007,195 | ---- | M] () (No name found) -- C:\Users\Administrador\AppData\Roaming\mozilla\firefox\profiles\ph9xf85t.default\features\{20da0d97-5613-4806-8476-5bc4c952f5b6}\e10srollout@mozilla.org.xpi
      [2017/04/01 18:23:55 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\mozilla firefox\browser\extensions

      ========== Chrome ==========

      CHR - default_search_provider: ()
      CHR - default_search_provider: search_url =
      CHR - default_search_provider: suggest_url =
      CHR - plugin: Error reading preferences file
      CHR - Extension: No name found = C:\Users\Administrador\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek\0.9_0\
      CHR - Extension: No name found = C:\Users\Administrador\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.9_0\
      CHR - Extension: No name found = C:\Users\Administrador\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\14.1_0\
      CHR - Extension: No name found = C:\Users\Administrador\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.8_0\
      CHR - Extension: No name found = C:\Users\Administrador\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\
      CHR - Extension: No name found = C:\Users\Administrador\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap\1.1_0\
      CHR - Extension: No name found = C:\Users\Administrador\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.4_0\
      CHR - Extension: No name found = C:\Users\Administrador\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.1_0\
      CHR - Extension: No name found = C:\Users\Administrador\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\8.1_0\
      CHR - Extension: No name found = C:\Users\Administrador\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\5616.1121.0.3_0\

      O1 HOSTS File: ([2009/06/10 17:00:26 | 000,000,824 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
      O2:64bit: - BHO: (Groove GFS Browser Helper) - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Archivos de programa\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
      O2:64bit: - BHO: (Windows Live ID Sign-in Helper) - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Archivos de programa\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
      O2:64bit: - BHO: (Office Document Cache Handler) - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Archivos de programa\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
      O2 - BHO: (Groove GFS Browser Helper) - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL (Microsoft Corporation)
      O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
      O2 - BHO: (Office Document Cache Handler) - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL (Microsoft Corporation)
      O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
      O4:64bit: - HKLM..\Run: [Malwarebytes TrayApp] C:\Archivos de programa\Malwarebytes\Anti-Malware\mbamtray.exe (Malwarebytes)
      O4 - HKCU..\Run: [CCleaner Monitoring] C:\Program Files\CCleaner\CCleaner64.exe (Piriform Ltd)
      O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
      O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
      O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
      O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
      O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
      O8:64bit: - Extra context menu item: &Enviar a OneNote - res://C:\PROGRA~2\MICROS~1\Office14\ONBttnIE.dll/105 File not found
      O8:64bit: - Extra context menu item: E&xportar a Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office14\EXCEL.EXE/3000 File not found
      O8 - Extra context menu item: &Enviar a OneNote - res://C:\PROGRA~2\MICROS~1\Office14\ONBttnIE.dll/105 File not found
      O8 - Extra context menu item: E&xportar a Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office14\EXCEL.EXE/3000 File not found
      O9:64bit: - Extra Button: Enviar a OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Archivos de programa\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation)
      O9:64bit: - Extra 'Tools' menuitem : &Enviar a OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Archivos de programa\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation)
      O9:64bit: - Extra Button: Notas &vinculadas de OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Archivos de programa\Microsoft Office\Office14\ONBttnIELinkedNotes.dll (Microsoft Corporation)
      O9:64bit: - Extra 'Tools' menuitem : Notas &vinculadas de OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Archivos de programa\Microsoft Office\Office14\ONBttnIELinkedNotes.dll (Microsoft Corporation)
      O9 - Extra 'Tools' menuitem : Consola de Sun Java - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files (x86)\Java\jre7\bin\jp2iexp.dll ()
      O10:64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000008 [] - C:\Archivos de programa\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL (Microsoft Corp.)
      O10:64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000009 [] - C:\Archivos de programa\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL (Microsoft Corp.)
      O1364bit: - gopher Prefix: missing
      O13 - gopher Prefix: missing
      O15:64bit: - ..Trusted Domains: eset.com ([help] http in Trusted sites)
      O15 - HKLM\..Trusted Domains: eset.com ([help] http in Trusted sites)
      O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jin...ndows-i586.cab (Reg Error: Value error.)
      O16 - DPF: {CAFEEFAC-0016-0000-0004-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jin...ndows-i586.cab (Java Plug-in 1.6.0_04)
      O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jin...ndows-i586.cab (Java Plug-in 10.17.2)
      O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 200.109.78.12 200.44.32.12
      O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{74C3BF7A-2DC2-40E3-BE89-7C503FB2834F}: DhcpNameServer = 200.109.78.12 200.44.32.12
      O18:64bit: - Protocol\Handler\livecall - No CLSID value found
      O18:64bit: - Protocol\Handler\ms-help - No CLSID value found
      O18:64bit: - Protocol\Handler\msnim - No CLSID value found
      O18:64bit: - Protocol\Handler\wlpg - No CLSID value found
      O18:64bit: - Protocol\Filter\text/xml {807573E5-5146-11D5-A672-00B0D022E945} - C:\Archivos de programa\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL (Microsoft Corporation)
      O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
      O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
      O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
      O20 - HKLM Winlogon: UserInit - (userinit.exe) - C:\Windows\SysWow64\userinit.exe (Microsoft Corporation)
      O20:64bit: - Winlogon\Notify\igfxcui: DllName - (igfxdev.dll) - C:\Windows\SysNative\igfxdev.dll (Intel Corporation)
      O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
      O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
      O28:64bit: - HKLM ShellExecuteHooks: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Archivos de programa\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
      O28 - HKLM ShellExecuteHooks: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL (Microsoft Corporation)
      O32 - HKLM CDRom: AutoRun - 1
      O33 - MountPoints2\{415aca4e-7f6b-11e6-a452-bc5ff482bef4}\Shell - "" = AutoRun
      O33 - MountPoints2\{415aca4e-7f6b-11e6-a452-bc5ff482bef4}\Shell\AutoRun\command - "" = G:\setup.exe -a
      O34 - HKLM BootExecute: (autocheck autochk *)
      O35:64bit: - HKLM\..comfile [open] -- "%1" %*
      O35:64bit: - HKLM\..exefile [open] -- "%1" %*
      O35 - HKLM\..comfile [open] -- "%1" %*
      O35 - HKLM\..exefile [open] -- "%1" %*
      O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
      O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
      O37 - HKLM\...com [@ = comfile] -- "%1" %*
      O37 - HKLM\...exe [@ = exefile] -- "%1" %*
      O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
      O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
      O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)

      NetSvcs:64bit: AppMgmt - C:\Windows\SysNative\appmgmts.dll (Microsoft Corporation)

      MsConfig:64bit - State: "bootini" - Reg Error: Key error.
      MsConfig:64bit - State: "services" - Reg Error: Key error.
      MsConfig:64bit - State: "startup" - Reg Error: Key error.

      CREATERESTOREPOINT
      Restore point Set: OTL Restore Point

      ========== Files/Folders - Created Within 360 Days ==========

      [2017/04/27 14:26:39 | 000,186,304 | ---- | C] (Malwarebytes) -- C:\Windows\SysNative\drivers\MBAMChameleon.sys
      [2017/04/27 14:26:39 | 000,111,544 | ---- | C] (Malwarebytes) -- C:\Windows\SysNative\drivers\farflt.sys
      [2017/04/27 14:26:38 | 000,082,720 | ---- | C] (Malwarebytes) -- C:\Windows\SysNative\drivers\mwac.sys
      [2017/04/27 14:26:35 | 000,043,968 | ---- | C] (Malwarebytes) -- C:\Windows\SysNative\drivers\mbam.sys
      [2017/04/27 14:26:30 | 000,251,832 | ---- | C] (Malwarebytes) -- C:\Windows\SysNative\drivers\MBAMSwissArmy.sys
      [2017/04/27 14:26:24 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
      [2017/04/27 14:26:18 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
      [2017/04/27 14:26:18 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes
      [2017/04/27 14:07:44 | 000,000,000 | ---D | C] -- C:\AdwCleaner
      [2017/04/24 11:50:58 | 000,000,000 | ---D | C] -- C:\Users\Administrador\Documents\Margarita 2017 ADRIANA
      [2017/03/21 15:46:45 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Mozilla Firefox
      [2017/02/21 15:33:38 | 000,000,000 | ---D | C] -- C:\Users\Administrador\Documents\ACCNT
      [2017/02/11 12:30:14 | 000,000,000 | ---D | C] -- C:\Users\Administrador\Documents\Cumple 40 morochos
      [2016/12/27 13:28:57 | 000,000,000 | ---D | C] -- C:\Users\Administrador\AppData\Roaming\PowerISO
      [2016/12/26 09:47:54 | 000,000,000 | ---D | C] -- C:\Users\Administrador\AppData\Local\ESET
      [2016/12/26 09:43:29 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ESET
      [2016/12/26 09:43:29 | 000,000,000 | ---D | C] -- C:\ProgramData\ESET
      [2016/12/26 09:43:29 | 000,000,000 | ---D | C] -- C:\Program Files\ESET
      [2016/12/13 17:11:08 | 000,106,768 | ---- | C] (ESET) -- C:\Windows\SysNative\drivers\edevmon.sys
      [2016/12/13 17:11:08 | 000,096,856 | ---- | C] (ESET) -- C:\Windows\SysNative\drivers\epfwwfp.sys
      [2016/12/13 17:11:08 | 000,077,616 | ---- | C] (ESET) -- C:\Windows\SysNative\drivers\epfw.sys
      [2016/12/13 17:11:08 | 000,060,536 | ---- | C] (ESET) -- C:\Windows\SysNative\drivers\EpfwLWF.sys
      [2016/12/13 17:11:08 | 000,049,672 | ---- | C] (ESET) -- C:\Windows\SysNative\drivers\ekbdflt.sys
      [2016/11/21 13:32:09 | 000,000,000 | ---D | C] -- C:\Users\Administrador\AppData\Roaming\vlc
      [2016/11/21 13:25:44 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
      [2016/11/21 13:25:22 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\VideoLAN
      [2016/11/01 12:26:35 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Activision
      [2016/11/01 12:08:49 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Activision
      [2016/11/01 12:06:19 | 000,000,000 | ---D | C] -- C:\Users\Administrador\AppData\Roaming\Macromedia
      [2016/11/01 12:06:18 | 000,000,000 | -HSD | C] -- C:\Windows\ftpcache
      [2016/11/01 11:58:43 | 000,000,000 | ---D | C] -- C:\Users\Administrador\Documents\NFS Most Wanted
      [2016/10/19 14:11:45 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\%LOCALAPPDATA%
      [2016/09/28 16:32:35 | 000,000,000 | ---D | C] -- C:\Users\Administrador\AppData\Local\Ubisoft Game Launcher
      [2016/09/28 16:32:31 | 000,000,000 | ---D | C] -- C:\ProgramData\Ubisoft
      [2016/09/28 16:32:31 | 000,000,000 | ---D | C] -- C:\Users\Administrador\Documents\Assassin's Creed Revelations
      [2016/09/28 16:32:10 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Ubisoft
      [2016/09/28 16:25:10 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\directx
      [2016/09/28 16:17:48 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\VictorVal
      [2016/09/22 14:21:49 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\DESIGNER
      [2016/09/20 22:43:07 | 000,000,000 | ---D | C] -- C:\Windows\es
      [2016/09/20 22:42:56 | 000,000,000 | ---D | C] -- C:\Windows\en
      [2016/09/20 22:22:26 | 000,077,824 | ---- | C] (Fox Magic Software) -- C:\Windows\SysWow64\fmcodec.DLL
      [2016/09/20 21:41:53 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SharePoint
      [2016/09/20 21:41:53 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
      [2016/09/20 21:41:08 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Synchronization Services
      [2016/09/20 21:40:51 | 000,000,000 | ---D | C] -- C:\Windows\PCHEALTH
      [2016/09/20 21:40:51 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Sync Framework
      [2016/09/20 21:40:51 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft SQL Server Compact Edition
      [2016/09/20 21:39:24 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Visual Studio 8
      [2016/09/20 21:38:48 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Office
      [2016/09/20 21:38:20 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Analysis Services
      [2016/09/20 21:37:31 | 000,000,000 | RH-D | C] -- C:\MSOCache
      [2016/09/20 21:29:52 | 000,000,000 | ---D | C] -- C:\Users\Administrador\Documents\Office 2010 Final
      [2016/09/20 20:13:26 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\aTube Catcher
      [2016/09/20 20:13:24 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\DsNET Corp
      [2016/09/20 19:21:21 | 000,000,000 | ---D | C] -- C:\Users\Administrador\AppData\Roaming\Xilisoft
      [2016/09/20 19:17:07 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\MSECache
      [2016/09/20 19:16:32 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Xilisoft
      [2016/09/20 18:43:25 | 000,000,000 | ---D | C] -- C:\Users\Administrador\AppData\Roaming\MOVAVI
      [2016/09/20 17:08:55 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Motorola
      [2016/09/20 17:08:13 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Motorola Shared
      [2016/09/20 17:08:13 | 000,000,000 | ---D | C] -- C:\Program Files\Motorola Inc
      [2016/09/20 17:08:13 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Motorola Driver Installer
      [2016/09/15 12:37:00 | 000,000,000 | ---D | C] -- C:\Users\Administrador\AppData\Local\Microsoft Help
      [2016/09/15 01:13:12 | 000,000,000 | ---D | C] -- C:\Users\Administrador\Documents\Ronald
      [2016/09/14 20:14:07 | 000,000,000 | ---D | C] -- C:\Users\Administrador\Documents\aniversario birmania
      [2016/09/14 20:06:24 | 000,000,000 | ---D | C] -- C:\Users\Administrador\Documents\Nueva carpeta
      [2016/09/13 22:21:22 | 000,000,000 | ---D | C] -- C:\Users\Administrador\AppData\Local\CrashDumps
      [2016/09/02 21:06:59 | 000,000,000 | ---D | C] -- C:\Users\Administrador\Documents\MVP Baseball 2005
      [2016/09/02 21:06:55 | 000,000,000 | ---D | C] -- C:\Users\Administrador\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
      [2016/08/24 16:51:50 | 000,000,000 | ---D | C] -- C:\Users\Administrador\AppData\Roaming\Mozilla
      [2016/08/24 16:51:50 | 000,000,000 | ---D | C] -- C:\Users\Administrador\AppData\Local\Mozilla
      [2016/08/24 08:43:13 | 000,000,000 | R--D | C] -- C:\Users\Administrador\Documents\Scanned Documents
      [2016/08/24 08:43:12 | 000,000,000 | ---D | C] -- C:\Users\Administrador\Documents\Fax
      [2016/08/19 14:52:21 | 000,000,000 | ---D | C] -- C:\Users\Administrador\AppData\Roaming\WinRAR
      [2016/08/14 14:29:19 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerISO
      [2016/08/14 14:29:18 | 000,127,760 | ---- | C] (Power Software Ltd) -- C:\Windows\SysNative\drivers\scdemu.sys
      [2016/08/14 14:29:18 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\PowerISO
      [2016/08/13 22:54:02 | 000,000,000 | ---D | C] -- C:\ProgramData\DAEMON Tools Lite
      [2016/08/13 22:40:40 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\Macromed
      [2016/08/13 18:37:24 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MVP Baseball 2005
      [2016/08/13 18:37:13 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\MVP Baseball 2005 by Luis41
      [2016/08/12 10:03:44 | 000,000,000 | ---D | C] -- C:\Users\Administrador\AppData\Local\ElevatedDiagnostics
      [2016/08/08 23:32:26 | 000,000,000 | ---D | C] -- C:\Games
      [2016/08/08 18:59:06 | 000,000,000 | ---D | C] -- C:\Users\Administrador\Tracing
      [2016/08/08 18:58:50 | 000,000,000 | ---D | C] -- C:\Users\Administrador\AppData\Roaming\Skype
      [2016/07/15 2044 | 000,151,184 | ---- | C] (MBB) -- C:\Windows\SysNative\drivers\usb2ser.sys
      [2016/07/15 12:02:01 | 000,000,000 | ---D | C] -- C:\searchplugins
      [2016/07/15 11:55:58 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
      [2016/07/15 11:55:57 | 000,000,000 | R--D | C] -- C:\Program Files (x86)\Skype
      [2016/07/15 11:55:57 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Skype
      [2016/07/15 11:55:50 | 000,000,000 | ---D | C] -- C:\ProgramData\Skype
      [2016/07/06 09:20:54 | 000,000,000 | ---D | C] -- C:\Windows\Minidump
      [2016/05/30 16:15:53 | 000,000,000 | ---D | C] -- C:\$WINDOWS.~BT
      [2016/05/30 16:15:50 | 000,000,000 | -H-D | C] -- C:\$Windows.~WS
      [1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]

      ========== Files - Modified Within 360 Days ==========

      [2017/04/27 15:51:25 | 000,036,560 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
      [2017/04/27 15:51:25 | 000,036,560 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
      [2017/04/27 15:48:04 | 000,001,491 | ---- | M] () -- C:\Users\Administrador\Desktop\OTL - Acceso directo.lnk
      [2017/04/27 15:46:59 | 000,002,894 | ---- | M] () -- C:\Users\Administrador\Documents\registro ccleanercc_20170427_154641.reg
      [2017/04/27 15:41:20 | 000,082,720 | ---- | M] (Malwarebytes) -- C:\Windows\SysNative\drivers\mwac.sys
      [2017/04/27 15:41:10 | 000,111,544 | ---- | M] (Malwarebytes) -- C:\Windows\SysNative\drivers\farflt.sys
      [2017/04/27 15:41:10 | 000,043,968 | ---- | M] (Malwarebytes) -- C:\Windows\SysNative\drivers\mbam.sys
      [2017/04/27 15:41:09 | 000,251,832 | ---- | M] (Malwarebytes) -- C:\Windows\SysNative\drivers\MBAMSwissArmy.sys
      [2017/04/27 15:40:40 | 000,067,584 | --S- | M] () -- C:\Windows\BootStat.dat
      [2017/04/27 15:40:35 | 2982,555,648 | -HS- | M] () -- C:\hiberfil.sys
      [2017/04/27 14:26:39 | 000,186,304 | ---- | M] (Malwarebytes) -- C:\Windows\SysNative\drivers\MBAMChameleon.sys
      [2017/04/27 14:26:24 | 000,001,867 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes.lnk
      [2017/04/27 14:26:02 | 000,001,785 | ---- | M] () -- C:\Users\Administrador\Desktop\mb3-setup-consumer-3.0.6.1469-10103 - Acceso directo.lnk
      [2017/04/27 14:21:48 | 000,001,491 | ---- | M] () -- C:\Users\Administrador\Desktop\JRT - Acceso directo.lnk
      [2017/04/27 14:07:44 | 000,001,560 | ---- | M] () -- C:\Users\Administrador\Desktop\AdwCleaner - Acceso directo.lnk
      [2017/04/26 19:44:24 | 000,002,181 | ---- | M] () -- C:\Users\Public\Desktop\Google Chrome.lnk
      [2017/04/24 21:35:41 | 001,685,960 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
      [2017/04/24 21:35:41 | 000,751,032 | ---- | M] () -- C:\Windows\SysNative\perfh00A.dat
      [2017/04/24 21:35:41 | 000,656,872 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
      [2017/04/24 21:35:41 | 000,160,074 | ---- | M] () -- C:\Windows\SysNative\perfc00A.dat
      [2017/04/24 21:35:41 | 000,122,684 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
      [2017/04/12 19:30:34 | 000,420,520 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT
      [2017/04/12 19:03:06 | 001,659,610 | ---- | M] () -- C:\Windows\SysWow64\PerfStringBackup.INI
      [2017/03/26 15:15:17 | 000,000,572 | ---- | M] () -- C:\Users\Administrador\Desktop\morrocoy cayo y sus playa - Buscar con Google.url
      [2017/03/23 12:38:19 | 005,872,201 | ---- | M] () -- C:\Users\Administrador\Desktop\IMG_20170323_123817.jpg
      [2017/03/22 11:02:44 | 000,077,440 | ---- | M] () -- C:\Windows\SysNative\drivers\mbae64.sys
      [2017/02/23 16:02:44 | 000,115,162 | ---- | M] () -- C:\Users\Administrador\Documents\solicitud de tdc adriana.pdf
      [2017/02/17 13:57:09 | 001,324,481 | ---- | M] () -- C:\Users\Administrador\Documents\IMG_20170217_135708.jpg
      [2017/02/17 13:56:23 | 001,214,657 | ---- | M] () -- C:\Users\Administrador\Documents\IMG_20170217_135623.jpg
      [2017/02/17 13:55:36 | 001,411,521 | ---- | M] () -- C:\Users\Administrador\Documents\IMG_20170217_135536.jpg
      [2017/02/17 13:47:22 | 001,672,257 | ---- | M] () -- C:\Users\Administrador\Documents\IMG_20170217_134721.jpg
      [2017/02/17 13:41:46 | 001,657,793 | ---- | M] () -- C:\Users\Administrador\Documents\IMG_20170217_134145.jpg
      [2017/02/17 13:36:30 | 001,590,721 | ---- | M] () -- C:\Users\Administrador\Documents\IMG_20170217_133630.jpg
      [2017/02/17 13:34:23 | 001,697,857 | ---- | M] () -- C:\Users\Administrador\Documents\IMG_20170217_133422.jpg
      [2017/02/15 18:44:56 | 000,020,994 | ---- | M] () -- C:\Users\Administrador\Documents\imagen 2.jpg
      [2017/02/15 18:42:50 | 000,090,557 | ---- | M] () -- C:\Users\Administrador\Documents\imagen.jpg
      [2017/01/02 11:33:45 | 000,001,007 | ---- | M] () -- C:\Users\Administrador\Desktop\PowerISO.lnk
      [2016/12/29 15:26:26 | 006,470,528 | ---- | M] () -- C:\Users\Administrador\Documents\Descargar MP3.mp3
      [2016/12/27 2218 | 000,004,758 | ---- | M] () -- C:\Users\Administrador\Desktop\descarga.jpg
      [2016/12/26 09:43:31 | 000,002,048 | ---- | M] () -- C:\Users\Public\Desktop\Protección de banca y pagos en linea.lnk
      [2016/12/26 05:43:28 | 000,045,778 | ---- | M] () -- C:\Users\Administrador\Documents\cc_20161226_054316.reg
      [2016/12/13 17:11:08 | 000,180,544 | ---- | M] (ESET) -- C:\Windows\SysNative\drivers\ehdrv.sys
      [2016/12/13 17:11:08 | 000,132,272 | ---- | M] (ESET) -- C:\Windows\SysNative\drivers\eamonm.sys
      [2016/12/13 17:11:08 | 000,106,768 | ---- | M] (ESET) -- C:\Windows\SysNative\drivers\edevmon.sys
      [2016/12/13 17:11:08 | 000,096,856 | ---- | M] (ESET) -- C:\Windows\SysNative\drivers\epfwwfp.sys
      [2016/12/13 17:11:08 | 000,077,616 | ---- | M] (ESET) -- C:\Windows\SysNative\drivers\epfw.sys
      [2016/12/13 17:11:08 | 000,060,536 | ---- | M] (ESET) -- C:\Windows\SysNative\drivers\EpfwLWF.sys
      [2016/12/13 17:11:08 | 000,049,672 | ---- | M] (ESET) -- C:\Windows\SysNative\drivers\ekbdflt.sys
      [2016/12/05 09:15:02 | 007,198,728 | ---- | M] () -- C:\Users\Administrador\Documents\matematica I Modulo II(175-176-177).pdf
      [2016/11/11 16:42:04 | 000,000,866 | ---- | M] () -- C:\Users\Public\Desktop\CCleaner.lnk
      [2016/11/01 12:26:35 | 000,000,331 | ---- | M] () -- C:\Windows\game.ini
      [2016/10/26 20:20:49 | 000,022,842 | ---- | M] () -- C:\Users\Administrador\Desktop\parachoque-delantero-fortaleza-mexicana-original-nuevo-D_NQ_NP_742521-MLV20781237742_062016-O.jpg
      [2016/10/12 21:28:19 | 000,005,465 | ---- | M] () -- C:\Users\Administrador\Documents\Mi película.wlmp
      [2016/09/20 18:43:24 | 000,004,128 | ---- | M] () -- C:\ProgramData\bqeojehc.wbx
      [2016/09/20 18:29:11 | 078,674,406 | ---- | M] () -- C:\Users\Administrador\Documents\presentacion birma.ppsx
      [2016/09/20 17:12:12 | 000,000,000 | -H-- | M] () -- C:\Windows\SysNative\drivers\Msft_Kernel_motmodem_01007.Wdf
      [2016/09/20 17:12:10 | 000,000,000 | -H-- | M] () -- C:\Windows\SysNative\drivers\Msft_Kernel_Motousbnet_01007.Wdf
      [2016/09/20 17:12:10 | 000,000,000 | -H-- | M] () -- C:\Windows\SysNative\drivers\Msft_Kernel_motfilt_01007.Wdf
      [2016/09/20 17:11:01 | 000,000,000 | -H-- | M] () -- C:\Windows\SysNative\drivers\Msft_Kernel_motccgpfl_01007.Wdf
      [2016/09/20 17:11:01 | 000,000,000 | -H-- | M] () -- C:\Windows\SysNative\drivers\Msft_Kernel_motccgp_01007.Wdf
      [2016/09/20 1738 | 000,000,000 | -H-- | M] () -- C:\Windows\SysNative\drivers\Msft_Kernel_motusbdevice_01007.Wdf
      [2016/09/16 15:27:25 | 000,033,828 | -HS- | M] () -- C:\Users\Administrador\Documents\Folder.jpg
      [2016/09/16 15:27:25 | 000,007,734 | -HS- | M] () -- C:\Users\Administrador\Documents\AlbumArtSmall.jpg
      [2016/09/15 20:42:04 | 000,034,784 | -HS- | M] () -- C:\Users\Administrador\Documents\AlbumArt_{BB9D8CDB-FF88-4F89-9D7A-A77BEB3B743A}_Large.jpg
      [2016/09/15 20:42:04 | 000,007,514 | -HS- | M] () -- C:\Users\Administrador\Documents\AlbumArt_{BB9D8CDB-FF88-4F89-9D7A-A77BEB3B743A}_Small.jpg
      [2016/09/15 19:24:03 | 000,004,608 | ---- | M] () -- C:\Users\Administrador\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
      [2016/09/15 12:23:40 | 009,250,168 | ---- | M] () -- C:\Users\Administrador\Documents\Descargar MP3 (1).mp3
      [2016/07/21 10:26:57 | 000,002,697 | ---- | M] () -- C:\Users\Public\Desktop\Skype.lnk
      [2016/07/15 2044 | 000,151,184 | ---- | M] (MBB) -- C:\Windows\SysNative\drivers\usb2ser.sys
      [2016/05/30 16:18:43 | 000,007,664 | ---- | M] () -- C:\Windows\diagwrn.xml
      [2016/05/30 16:18:43 | 000,002,519 | ---- | M] () -- C:\Windows\diagerr.xml
      [1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]

      ========== Files Created - No Company Name ==========

      [2017/04/27 15:46:56 | 000,002,894 | ---- | C] () -- C:\Users\Administrador\Documents\registro ccleanercc_20170427_154641.reg
      [2017/04/27 14:26:24 | 000,001,867 | ---- | C] () -- C:\Users\Public\Desktop\Malwarebytes.lnk
      [2017/04/27 14:26:23 | 000,077,440 | ---- | C] () -- C:\Windows\SysNative\drivers\mbae64.sys
      [2017/04/27 14:03:11 | 000,001,785 | ---- | C] () -- C:\Users\Administrador\Desktop\mb3-setup-consumer-3.0.6.1469-10103 - Acceso directo.lnk
      [2017/04/27 14:01:48 | 000,001,491 | ---- | C] () -- C:\Users\Administrador\Desktop\OTL - Acceso directo.lnk
      [2017/04/27 13:59:54 | 000,001,491 | ---- | C] () -- C:\Users\Administrador\Desktop\JRT - Acceso directo.lnk
      [2017/04/27 13:57:23 | 000,001,560 | ---- | C] () -- C:\Users\Administrador\Desktop\AdwCleaner - Acceso directo.lnk
      [2017/03/26 15:15:17 | 000,000,572 | ---- | C] () -- C:\Users\Administrador\Desktop\morrocoy cayo y sus playa - Buscar con Google.url
      [2017/03/24 09:03:50 | 005,872,201 | ---- | C] () -- C:\Users\Administrador\Desktop\IMG_20170323_123817.jpg
      [2017/02/23 16:02:44 | 000,115,162 | ---- | C] () -- C:\Users\Administrador\Documents\solicitud de tdc adriana.pdf
      [2017/02/17 14:12:30 | 001,697,857 | ---- | C] () -- C:\Users\Administrador\Documents\IMG_20170217_133422.jpg
      [2017/02/17 14:12:30 | 001,672,257 | ---- | C] () -- C:\Users\Administrador\Documents\IMG_20170217_134721.jpg
      [2017/02/17 14:12:30 | 001,657,793 | ---- | C] () -- C:\Users\Administrador\Documents\IMG_20170217_134145.jpg
      [2017/02/17 14:12:30 | 001,411,521 | ---- | C] () -- C:\Users\Administrador\Documents\IMG_20170217_135536.jpg
      [2017/02/17 14:12:30 | 001,324,481 | ---- | C] () -- C:\Users\Administrador\Documents\IMG_20170217_135708.jpg
      [2017/02/17 14:12:30 | 001,214,657 | ---- | C] () -- C:\Users\Administrador\Documents\IMG_20170217_135623.jpg
      [2017/02/17 14:11:31 | 001,590,721 | ---- | C] () -- C:\Users\Administrador\Documents\IMG_20170217_133630.jpg
      [2017/02/15 18:44:56 | 000,020,994 | ---- | C] () -- C:\Users\Administrador\Documents\imagen 2.jpg
      [2017/02/15 18:42:44 | 000,090,557 | ---- | C] () -- C:\Users\Administrador\Documents\imagen.jpg
      [2017/01/02 11:33:45 | 000,001,007 | ---- | C] () -- C:\Users\Administrador\Desktop\PowerISO.lnk
      [2016/12/27 2216 | 000,004,758 | ---- | C] () -- C:\Users\Administrador\Desktop\descarga.jpg
      [2016/12/26 09:43:31 | 000,002,048 | ---- | C] () -- C:\Users\Public\Desktop\Protección de banca y pagos en linea.lnk
      [2016/12/26 05:43:20 | 000,045,778 | ---- | C] () -- C:\Users\Administrador\Documents\cc_20161226_054316.reg
      [2016/12/05 09:15:40 | 007,198,728 | ---- | C] () -- C:\Users\Administrador\Documents\matematica I Modulo II(175-176-177).pdf
      [2016/11/01 12:26:35 | 000,000,331 | ---- | C] () -- C:\Windows\game.ini
      [2016/10/26 20:20:48 | 000,022,842 | ---- | C] () -- C:\Users\Administrador\Desktop\parachoque-delantero-fortaleza-mexicana-original-nuevo-D_NQ_NP_742521-MLV20781237742_062016-O.jpg
      [2016/09/21 00:22:20 | 000,005,465 | ---- | C] () -- C:\Users\Administrador\Documents\Mi película.wlmp
      [2016/09/20 22:42:48 | 000,001,305 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Movie Maker.lnk
      [2016/09/20 22:42:29 | 000,001,374 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Photo Gallery.lnk
      [2016/09/20 18:43:24 | 000,004,128 | ---- | C] () -- C:\ProgramData\bqeojehc.wbx
      [2016/09/20 18:29:10 | 078,674,406 | ---- | C] () -- C:\Users\Administrador\Documents\presentacion birma.ppsx
      [2016/09/20 17:12:12 | 000,000,000 | -H-- | C] () -- C:\Windows\SysNative\drivers\Msft_Kernel_motmodem_01007.Wdf
      [2016/09/20 17:12:10 | 000,000,000 | -H-- | C] () -- C:\Windows\SysNative\drivers\Msft_Kernel_Motousbnet_01007.Wdf
      [2016/09/20 17:12:10 | 000,000,000 | -H-- | C] () -- C:\Windows\SysNative\drivers\Msft_Kernel_motfilt_01007.Wdf
      [2016/09/20 17:11:01 | 000,000,000 | -H-- | C] () -- C:\Windows\SysNative\drivers\Msft_Kernel_motccgpfl_01007.Wdf
      [2016/09/20 17:11:01 | 000,000,000 | -H-- | C] () -- C:\Windows\SysNative\drivers\Msft_Kernel_motccgp_01007.Wdf
      [2016/09/20 1738 | 000,000,000 | -H-- | C] () -- C:\Windows\SysNative\drivers\Msft_Kernel_motusbdevice_01007.Wdf
      [2016/09/15 20:42:04 | 000,034,784 | -HS- | C] () -- C:\Users\Administrador\Documents\AlbumArt_{BB9D8CDB-FF88-4F89-9D7A-A77BEB3B743A}_Large.jpg
      [2016/09/15 20:42:04 | 000,033,828 | -HS- | C] () -- C:\Users\Administrador\Documents\Folder.jpg
      [2016/09/15 20:42:04 | 000,007,734 | -HS- | C] () -- C:\Users\Administrador\Documents\AlbumArtSmall.jpg
      [2016/09/15 20:42:04 | 000,007,514 | -HS- | C] () -- C:\Users\Administrador\Documents\AlbumArt_{BB9D8CDB-FF88-4F89-9D7A-A77BEB3B743A}_Small.jpg
      [2016/09/15 12:26:05 | 000,004,608 | ---- | C] () -- C:\Users\Administrador\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
      [2016/09/15 12:23:21 | 009,250,168 | ---- | C] () -- C:\Users\Administrador\Documents\Descargar MP3 (1).mp3
      [2016/09/15 12:21:31 | 006,470,528 | ---- | C] () -- C:\Users\Administrador\Documents\Descargar MP3.mp3
      [2016/08/08 13:11:45 | 000,067,584 | --S- | C] () -- C:\Windows\BootStat.dat
      [2016/07/15 11:55:58 | 000,002,697 | ---- | C] () -- C:\Users\Public\Desktop\Skype.lnk
      [2016/05/30 16:18:34 | 000,007,664 | ---- | C] () -- C:\Windows\diagwrn.xml
      [2016/05/30 16:18:34 | 000,002,519 | ---- | C] () -- C:\Windows\diagerr.xml

      ========== ZeroAccess Check ==========

      [2009/07/14 00:55:00 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini

      [HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64

      [HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

      [HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64

      [HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

      [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
      "" = C:\Windows\SysNative\shell32.dll -- [2016/08/29 11:31:19 | 014,183,424 | ---- | M] (Microsoft Corporation)
      "ThreadingModel" = Apartment

      [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
      "" = %SystemRoot%\system32\shell32.dll -- [2016/08/29 11:12:50 | 012,880,384 | ---- | M] (Microsoft Corporation)
      "ThreadingModel" = Apartment

      [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
      "" = C:\Windows\SysNative\wbem\fastprox.dll -- [2009/07/13 21:40:51 | 000,909,312 | ---- | M] (Microsoft Corporation)
      "ThreadingModel" = Free

      [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
      "" = %systemroot%\system32\wbem\fastprox.dll -- [2010/11/20 23:24:25 | 000,606,208 | ---- | M] (Microsoft Corporation)
      "ThreadingModel" = Free

      [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
      "" = C:\Windows\SysNative\wbem\wbemess.dll -- [2009/07/13 21:41:56 | 000,505,856 | ---- | M] (Microsoft Corporation)
      "ThreadingModel" = Both

      [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]

      ========== LOP Check ==========

      [2016/09/20 19:02:33 | 000,000,000 | ---D | M] -- C:\Users\Administrador\AppData\Roaming\MOVAVI
      [2016/12/27 13:28:57 | 000,000,000 | ---D | M] -- C:\Users\Administrador\AppData\Roaming\PowerISO
      [2014/10/11 12:11:53 | 000,000,000 | ---D | M] -- C:\Users\Administrador\AppData\Roaming\Xerox
      [2016/09/20 19:38:03 | 000,000,000 | ---D | M] -- C:\Users\Administrador\AppData\Roaming\Xilisoft

      ========== Purity Check ==========



      ========== Custom Scans ==========

      < %SYSTEMDRIVE%/*,* >
      Invalid Switch: *,*

      < End of report >

    4. #4
      Usuario Avatar de jona1381
      Registrado
      dic 2015
      Ubicación
      venezuela
      Mensajes
      4

      Re: no puedo eliminar eset internet security

      OTL logfile created on: 27/04/2017 15:50:36 - Run 1
      OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Administrador\Downloads
      64bit- Professional Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
      Internet Explorer (Version = 9.11.9600.18638)
      Locale: 00000c0a | Country: España | Language: ESN | Date Format: dd/MM/yyyy

      3,70 Gb Total Physical Memory | 2,26 Gb Available Physical Memory | 61,15% Memory free
      7,41 Gb Paging File | 6,07 Gb Available in Paging File | 81,93% Paging File free
      Paging file location(s): ?:\pagefile.sys [binary data]

      %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
      Drive C: | 465,66 Gb Total Space | 378,55 Gb Free Space | 81,29% Space Free | Partition Type: NTFS

      Computer Name: ORIENTADOR8 | User Name: Administrador | Logged in as Administrator.
      Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans
      Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 360 Days

      ========== Processes (SafeList) ==========

      PRC - C:\Users\Administrador\Downloads\OTL.exe (OldTimer Tools)
      PRC - C:\Archivos de programa\Malwarebytes\Anti-Malware\mbamtray.exe (Malwarebytes)
      PRC - C:\Program Files (x86)\Motorola\MotoConnectService\MotoConnectService.exe ()
      PRC - C:\Program Files (x86)\Motorola\MotoConnectService\MotoConnect.exe (Motorola)


      ========== Modules (No Company Name) ==========


      ========== Services (SafeList) ==========

      SRV:64bit: - (IEEtwCollectorService) -- C:\Windows\SysNative\IEEtwCollector.exe (Microsoft Corporation)
      SRV:64bit: - (DiagTrack) -- C:\Windows\SysNative\diagtrack.dll (Microsoft Corporation)
      SRV:64bit: - (HFGService) -- C:\Windows\SysNative\HFGService.dll (CSR, plc)
      SRV:64bit: - (AppMgmt) -- C:\Windows\SysNative\appmgmts.dll (Microsoft Corporation)
      SRV - (MozillaMaintenance) -- C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe (Mozilla Foundation)
      SRV - (clr_optimization_v4.0.30319_32) -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe (Microsoft Corporation)
      SRV - (MBAMService) -- C:\Archivos de programa\Malwarebytes\Anti-Malware\MBAMService.exe (Malwarebytes)
      SRV - (ekrn) -- C:\Archivos de programa\ESET\ESET Internet Security\ekrn.exe (ESET)
      SRV - (SkypeUpdate) -- C:\Program Files (x86)\Skype\Updater\Updater.exe (Skype Technologies)
      SRV - (clr_optimization_v2.0.50727_32) -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe (Microsoft Corporation)
      SRV - (cphs) -- C:\Windows\SysWOW64\IntelCpHeciSvc.exe (Intel Corporation)
      SRV - (EPSON_Port_Communication_Service) -- C:\Archivos de programa\EPSON\portcommunicationservice\PCSVC.exe (SEIKO EPSON CORPORATION)
      SRV - (EPSON_Device_Control_Log_Service) -- C:\Archivos de programa\EPSON\portcommunicationservice\DeviceControlLog.exe (SEIKO EPSON CORPORATION)
      SRV - (wlidsvc) -- C:\Archivos de programa\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE (Microsoft Corp.)
      SRV - (MSCamSvc) -- C:\Archivos de programa\Microsoft LifeCam\MSCamS64.exe (Microsoft Corporation)
      SRV - (MotoConnect Service) -- C:\Program Files (x86)\Motorola\MotoConnectService\MotoConnectService.exe ()
      SRV - (osppsvc) -- C:\Archivos de programa\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE (Microsoft Corporation)


      ========== Driver Services (SafeList) ==========

      DRV:64bit: - (MBAMWebProtection) -- C:\Windows\SysNative\drivers\mwac.sys (Malwarebytes)
      DRV:64bit: - (MBAMFarflt) -- C:\Windows\SysNative\drivers\farflt.sys (Malwarebytes)
      DRV:64bit: - (MBAMProtection) -- C:\Windows\SysNative\drivers\mbam.sys (Malwarebytes)
      DRV:64bit: - (MBAMSwissArmy) -- C:\Windows\SysNative\drivers\MBAMSwissArmy.sys (Malwarebytes)
      DRV:64bit: - (MBAMChameleon) -- C:\Windows\SysNative\drivers\MBAMChameleon.sys (Malwarebytes)
      DRV:64bit: - (ESProtectionDriver) -- C:\Windows\SysNative\drivers\mbae64.sys ()
      DRV:64bit: - (ehdrv) -- C:\Windows\SysNative\drivers\ehdrv.sys (ESET)
      DRV:64bit: - (eamonm) -- C:\Windows\SysNative\drivers\eamonm.sys (ESET)
      DRV:64bit: - (edevmon) -- C:\Windows\SysNative\drivers\edevmon.sys (ESET)
      DRV:64bit: - (epfwwfp) -- C:\Windows\SysNative\drivers\epfwwfp.sys (ESET)
      DRV:64bit: - (epfw) -- C:\Windows\SysNative\drivers\epfw.sys (ESET)
      DRV:64bit: - (EpfwLWF) -- C:\Windows\SysNative\drivers\EpfwLWF.sys (ESET)
      DRV:64bit: - (ekbdflt) -- C:\Windows\SysNative\drivers\ekbdflt.sys (ESET)
      DRV:64bit: - (wdm_usb) -- C:\Windows\SysNative\drivers\usb2ser.sys (MBB)
      DRV:64bit: - (SCDEmu) -- C:\Windows\SysNative\drivers\scdemu.sys (Power Software Ltd)
      DRV:64bit: - (RTL8167) -- C:\Windows\SysNative\drivers\Rt64win7.sys (Realtek )
      DRV:64bit: - (Ser2pl) -- C:\Windows\SysNative\drivers\ser2pl64.sys (Prolific Technology Inc.)
      DRV:64bit: - (igfx) -- C:\Windows\SysNative\drivers\igdkmd64.sys (Intel Corporation)
      DRV:64bit: - (TsUsbFlt) -- C:\Windows\SysNative\drivers\TsUsbFlt.sys (Microsoft Corporation)
      DRV:64bit: - (RimVSerPort) -- C:\Windows\SysNative\drivers\RimSerial_AMD64.sys (Research in Motion Ltd)
      DRV:64bit: - (EPSON_PCS_Parallel_Port_Driver) -- C:\Windows\SysNative\drivers\pcslpt.sys (SEIKO EPSON CORPORATION)
      DRV:64bit: - (RdpVideoMiniport) -- C:\Windows\SysNative\drivers\rdpvideominiport.sys (Microsoft Corporation)
      DRV:64bit: - (TsUsbGD) -- C:\Windows\SysNative\drivers\TsUsbGD.sys (Microsoft Corporation)
      DRV:64bit: - (Fs_Rec) -- C:\Windows\SysNative\drivers\fs_rec.sys (Microsoft Corporation)
      DRV:64bit: - (ssadserd) -- C:\Windows\SysNative\drivers\ssadserd.sys (MCCI Corporation)
      DRV:64bit: - (ssadbus) -- C:\Windows\SysNative\drivers\ssadbus.sys (MCCI Corporation)
      DRV:64bit: - (amdsata) -- C:\Windows\SysNative\drivers\amdsata.sys (Advanced Micro Devices)
      DRV:64bit: - (amdxata) -- C:\Windows\SysNative\drivers\amdxata.sys (Advanced Micro Devices)
      DRV:64bit: - (dmvsc) -- C:\Windows\SysNative\drivers\dmvsc.sys (Microsoft Corporation)
      DRV:64bit: - (HpSAMD) -- C:\Windows\SysNative\drivers\HpSAMD.sys (Hewlett-Packard Company)
      DRV:64bit: - (MEIx64) -- C:\Windows\SysNative\drivers\HECIx64.sys (Intel Corporation)
      DRV:64bit: - (Motousbnet) -- C:\Windows\SysNative\drivers\Motousbnet.sys (Motorola)
      DRV:64bit: - (motusbdevice) -- C:\Windows\SysNative\drivers\motusbdevice.sys (Motorola Inc)
      DRV:64bit: - (BthAudioHF) -- C:\Windows\SysNative\drivers\BthAudioHF.sys (CSR, plc)
      DRV:64bit: - (motmodem) -- C:\Windows\SysNative\drivers\motmodem.sys (Motorola)
      DRV:64bit: - (GenericMount) -- C:\Windows\SysNative\drivers\GenericMount.sys (Symantec Corporation)
      DRV:64bit: - (amdsbs) -- C:\Windows\SysNative\drivers\amdsbs.sys (AMD Technologies Inc.)
      DRV:64bit: - (LSI_SAS2) -- C:\Windows\SysNative\drivers\lsi_sas2.sys (LSI Corporation)
      DRV:64bit: - (stexstor) -- C:\Windows\SysNative\drivers\stexstor.sys (Promise Technology)
      DRV:64bit: - (ROOTMODEM) -- C:\Windows\SysNative\drivers\rootmdm.sys (Microsoft Corporation)
      DRV:64bit: - (motccgp) -- C:\Windows\SysNative\drivers\motccgp.sys (Motorola)
      DRV:64bit: - (ebdrv) -- C:\Windows\SysNative\drivers\evbda.sys (Broadcom Corporation)
      DRV:64bit: - (b06bdrv) -- C:\Windows\SysNative\drivers\bxvbda.sys (Broadcom Corporation)
      DRV:64bit: - (b57nd60a) -- C:\Windows\SysNative\drivers\b57nd60a.sys (Broadcom Corporation)
      DRV:64bit: - (hcw85cir) -- C:\Windows\SysNative\drivers\hcw85cir.sys (Hauppauge Computer Works, Inc.)
      DRV:64bit: - (motccgpfl) -- C:\Windows\SysNative\drivers\motccgpfl.sys (Motorola)
      DRV:64bit: - (BTCFilterService) -- C:\Windows\SysNative\drivers\motfilt.sys (Motorola Inc)
      DRV:64bit: - (MotoSwitchService) -- C:\Windows\SysNative\drivers\motswch.sys (Motorola)
      DRV - (WIMMount) -- C:\Windows\SysWOW64\drivers\wimmount.sys (Microsoft Corporation)


      ========== Standard Registry (SafeList) ==========


      ========== Internet Explorer ==========

      IE:64bit: - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
      IE:64bit: - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
      IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
      IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
      IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC

      IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = Entra a Hotmail, Outlook, últimas noticias, juegos, videos, en MSN
      IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = es-ES
      IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 71 DF 81 16 3F B9 D2 01 [binary data]
      IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page_TIMESTAMP = 90 D6 A9 CC C9 F1 D1 01 [binary data]
      IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,SyncHomePage Protected - It is a violation of Windows Policy to modify. See aka.ms/browserpolicy = Reg Error: Value error.
      IE - HKCU\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
      IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IESR02
      IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

      ========== FireFox ==========

      FF - prefs.js..browser.search.countryCode: "VE"
      FF - prefs.js..browser.search.region: "VE"
      FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:52.0.2
      FF - user.js - File not found

      FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
      FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
      FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.17.2: C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
      FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.17.2: C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
      FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
      FF - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
      FF - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
      FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=16.4.3528.0331: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
      FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.33.3\npGoogleUpdate3.dll (Google Inc.)
      FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.33.3\npGoogleUpdate3.dll (Google Inc.)
      FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.2.4: C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)

      FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 52.0.2\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components
      FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 52.0.2\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins
      FF - HKEY_LOCAL_MACHINE\software\mozilla\Thunderbird\Extensions\\eplgTb@eset.com: C:\Program Files\ESET\ESET Endpoint Antivirus\Mozilla Thunderbird

      [2016/08/24 16:51:56 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Administrador\AppData\Roaming\mozilla\Extensions
      [2017/03/13 16:19:28 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Administrador\AppData\Roaming\mozilla\Firefox\Profiles\ph9xf85t.default\extensions
      [2017/04/22 18:43:00 | 000,005,328 | ---- | M] () (No name found) -- C:\Users\Administrador\AppData\Roaming\mozilla\firefox\profiles\ph9xf85t.default\features\{20da0d97-5613-4806-8476-5bc4c952f5b6}\disable-cert-transparency@mozilla.org.xpi
      [2017/04/22 18:43:00 | 000,005,297 | ---- | M] () (No name found) -- C:\Users\Administrador\AppData\Roaming\mozilla\firefox\profiles\ph9xf85t.default\features\{20da0d97-5613-4806-8476-5bc4c952f5b6}\disable-prefetch@mozilla.org.xpi
      [2017/04/22 18:43:00 | 000,007,195 | ---- | M] () (No name found) -- C:\Users\Administrador\AppData\Roaming\mozilla\firefox\profiles\ph9xf85t.default\features\{20da0d97-5613-4806-8476-5bc4c952f5b6}\e10srollout@mozilla.org.xpi
      [2017/04/01 18:23:55 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\mozilla firefox\browser\extensions

      ========== Chrome ==========

      CHR - default_search_provider: ()
      CHR - default_search_provider: search_url =
      CHR - default_search_provider: suggest_url =
      CHR - plugin: Error reading preferences file
      CHR - Extension: No name found = C:\Users\Administrador\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek\0.9_0\
      CHR - Extension: No name found = C:\Users\Administrador\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.9_0\
      CHR - Extension: No name found = C:\Users\Administrador\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\14.1_0\
      CHR - Extension: No name found = C:\Users\Administrador\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.8_0\
      CHR - Extension: No name found = C:\Users\Administrador\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\
      CHR - Extension: No name found = C:\Users\Administrador\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap\1.1_0\
      CHR - Extension: No name found = C:\Users\Administrador\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.4_0\
      CHR - Extension: No name found = C:\Users\Administrador\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.1_0\
      CHR - Extension: No name found = C:\Users\Administrador\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\8.1_0\
      CHR - Extension: No name found = C:\Users\Administrador\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\5616.1121.0.3_0\

      O1 HOSTS File: ([2009/06/10 17:00:26 | 000,000,824 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
      O2:64bit: - BHO: (Groove GFS Browser Helper) - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Archivos de programa\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
      O2:64bit: - BHO: (Windows Live ID Sign-in Helper) - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Archivos de programa\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
      O2:64bit: - BHO: (Office Document Cache Handler) - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Archivos de programa\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
      O2 - BHO: (Groove GFS Browser Helper) - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL (Microsoft Corporation)
      O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
      O2 - BHO: (Office Document Cache Handler) - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL (Microsoft Corporation)
      O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
      O4:64bit: - HKLM..\Run: [Malwarebytes TrayApp] C:\Archivos de programa\Malwarebytes\Anti-Malware\mbamtray.exe (Malwarebytes)
      O4 - HKCU..\Run: [CCleaner Monitoring] C:\Program Files\CCleaner\CCleaner64.exe (Piriform Ltd)
      O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
      O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
      O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
      O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
      O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
      O8:64bit: - Extra context menu item: &Enviar a OneNote - res://C:\PROGRA~2\MICROS~1\Office14\ONBttnIE.dll/105 File not found
      O8:64bit: - Extra context menu item: E&xportar a Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office14\EXCEL.EXE/3000 File not found
      O8 - Extra context menu item: &Enviar a OneNote - res://C:\PROGRA~2\MICROS~1\Office14\ONBttnIE.dll/105 File not found
      O8 - Extra context menu item: E&xportar a Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office14\EXCEL.EXE/3000 File not found
      O9:64bit: - Extra Button: Enviar a OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Archivos de programa\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation)
      O9:64bit: - Extra 'Tools' menuitem : &Enviar a OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Archivos de programa\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation)
      O9:64bit: - Extra Button: Notas &vinculadas de OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Archivos de programa\Microsoft Office\Office14\ONBttnIELinkedNotes.dll (Microsoft Corporation)
      O9:64bit: - Extra 'Tools' menuitem : Notas &vinculadas de OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Archivos de programa\Microsoft Office\Office14\ONBttnIELinkedNotes.dll (Microsoft Corporation)
      O9 - Extra 'Tools' menuitem : Consola de Sun Java - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files (x86)\Java\jre7\bin\jp2iexp.dll ()
      O10:64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000008 [] - C:\Archivos de programa\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL (Microsoft Corp.)
      O10:64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000009 [] - C:\Archivos de programa\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL (Microsoft Corp.)
      O1364bit: - gopher Prefix: missing
      O13 - gopher Prefix: missing
      O15:64bit: - ..Trusted Domains: eset.com ([help] http in Trusted sites)
      O15 - HKLM\..Trusted Domains: eset.com ([help] http in Trusted sites)
      O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jin...ndows-i586.cab (Reg Error: Value error.)
      O16 - DPF: {CAFEEFAC-0016-0000-0004-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jin...ndows-i586.cab (Java Plug-in 1.6.0_04)
      O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jin...ndows-i586.cab (Java Plug-in 10.17.2)
      O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 200.109.78.12 200.44.32.12
      O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{74C3BF7A-2DC2-40E3-BE89-7C503FB2834F}: DhcpNameServer = 200.109.78.12 200.44.32.12
      O18:64bit: - Protocol\Handler\livecall - No CLSID value found
      O18:64bit: - Protocol\Handler\ms-help - No CLSID value found
      O18:64bit: - Protocol\Handler\msnim - No CLSID value found
      O18:64bit: - Protocol\Handler\wlpg - No CLSID value found
      O18:64bit: - Protocol\Filter\text/xml {807573E5-5146-11D5-A672-00B0D022E945} - C:\Archivos de programa\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL (Microsoft Corporation)
      O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
      O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
      O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
      O20 - HKLM Winlogon: UserInit - (userinit.exe) - C:\Windows\SysWow64\userinit.exe (Microsoft Corporation)
      O20:64bit: - Winlogon\Notify\igfxcui: DllName - (igfxdev.dll) - C:\Windows\SysNative\igfxdev.dll (Intel Corporation)
      O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
      O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
      O28:64bit: - HKLM ShellExecuteHooks: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Archivos de programa\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
      O28 - HKLM ShellExecuteHooks: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL (Microsoft Corporation)
      O32 - HKLM CDRom: AutoRun - 1
      O33 - MountPoints2\{415aca4e-7f6b-11e6-a452-bc5ff482bef4}\Shell - "" = AutoRun
      O33 - MountPoints2\{415aca4e-7f6b-11e6-a452-bc5ff482bef4}\Shell\AutoRun\command - "" = G:\setup.exe -a
      O34 - HKLM BootExecute: (autocheck autochk *)
      O35:64bit: - HKLM\..comfile [open] -- "%1" %*
      O35:64bit: - HKLM\..exefile [open] -- "%1" %*
      O35 - HKLM\..comfile [open] -- "%1" %*
      O35 - HKLM\..exefile [open] -- "%1" %*
      O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
      O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
      O37 - HKLM\...com [@ = comfile] -- "%1" %*
      O37 - HKLM\...exe [@ = exefile] -- "%1" %*
      O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
      O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
      O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)

      NetSvcs:64bit: AppMgmt - C:\Windows\SysNative\appmgmts.dll (Microsoft Corporation)

      MsConfig:64bit - State: "bootini" - Reg Error: Key error.
      MsConfig:64bit - State: "services" - Reg Error: Key error.
      MsConfig:64bit - State: "startup" - Reg Error: Key error.

      CREATERESTOREPOINT
      Restore point Set: OTL Restore Point

      ========== Files/Folders - Created Within 360 Days ==========

      [2017/04/27 14:26:39 | 000,186,304 | ---- | C] (Malwarebytes) -- C:\Windows\SysNative\drivers\MBAMChameleon.sys
      [2017/04/27 14:26:39 | 000,111,544 | ---- | C] (Malwarebytes) -- C:\Windows\SysNative\drivers\farflt.sys
      [2017/04/27 14:26:38 | 000,082,720 | ---- | C] (Malwarebytes) -- C:\Windows\SysNative\drivers\mwac.sys
      [2017/04/27 14:26:35 | 000,043,968 | ---- | C] (Malwarebytes) -- C:\Windows\SysNative\drivers\mbam.sys
      [2017/04/27 14:26:30 | 000,251,832 | ---- | C] (Malwarebytes) -- C:\Windows\SysNative\drivers\MBAMSwissArmy.sys
      [2017/04/27 14:26:24 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
      [2017/04/27 14:26:18 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
      [2017/04/27 14:26:18 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes
      [2017/04/27 14:07:44 | 000,000,000 | ---D | C] -- C:\AdwCleaner
      [2017/04/24 11:50:58 | 000,000,000 | ---D | C] -- C:\Users\Administrador\Documents\Margarita 2017 ADRIANA
      [2017/03/21 15:46:45 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Mozilla Firefox
      [2017/02/21 15:33:38 | 000,000,000 | ---D | C] -- C:\Users\Administrador\Documents\ACCNT
      [2017/02/11 12:30:14 | 000,000,000 | ---D | C] -- C:\Users\Administrador\Documents\Cumple 40 morochos
      [2016/12/27 13:28:57 | 000,000,000 | ---D | C] -- C:\Users\Administrador\AppData\Roaming\PowerISO
      [2016/12/26 09:47:54 | 000,000,000 | ---D | C] -- C:\Users\Administrador\AppData\Local\ESET
      [2016/12/26 09:43:29 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ESET
      [2016/12/26 09:43:29 | 000,000,000 | ---D | C] -- C:\ProgramData\ESET
      [2016/12/26 09:43:29 | 000,000,000 | ---D | C] -- C:\Program Files\ESET
      [2016/12/13 17:11:08 | 000,106,768 | ---- | C] (ESET) -- C:\Windows\SysNative\drivers\edevmon.sys
      [2016/12/13 17:11:08 | 000,096,856 | ---- | C] (ESET) -- C:\Windows\SysNative\drivers\epfwwfp.sys
      [2016/12/13 17:11:08 | 000,077,616 | ---- | C] (ESET) -- C:\Windows\SysNative\drivers\epfw.sys
      [2016/12/13 17:11:08 | 000,060,536 | ---- | C] (ESET) -- C:\Windows\SysNative\drivers\EpfwLWF.sys
      [2016/12/13 17:11:08 | 000,049,672 | ---- | C] (ESET) -- C:\Windows\SysNative\drivers\ekbdflt.sys
      [2016/11/21 13:32:09 | 000,000,000 | ---D | C] -- C:\Users\Administrador\AppData\Roaming\vlc
      [2016/11/21 13:25:44 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
      [2016/11/21 13:25:22 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\VideoLAN
      [2016/11/01 12:26:35 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Activision
      [2016/11/01 12:08:49 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Activision
      [2016/11/01 12:06:19 | 000,000,000 | ---D | C] -- C:\Users\Administrador\AppData\Roaming\Macromedia
      [2016/11/01 12:06:18 | 000,000,000 | -HSD | C] -- C:\Windows\ftpcache
      [2016/11/01 11:58:43 | 000,000,000 | ---D | C] -- C:\Users\Administrador\Documents\NFS Most Wanted
      [2016/10/19 14:11:45 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\%LOCALAPPDATA%
      [2016/09/28 16:32:35 | 000,000,000 | ---D | C] -- C:\Users\Administrador\AppData\Local\Ubisoft Game Launcher
      [2016/09/28 16:32:31 | 000,000,000 | ---D | C] -- C:\ProgramData\Ubisoft
      [2016/09/28 16:32:31 | 000,000,000 | ---D | C] -- C:\Users\Administrador\Documents\Assassin's Creed Revelations
      [2016/09/28 16:32:10 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Ubisoft
      [2016/09/28 16:25:10 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\directx
      [2016/09/28 16:17:48 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\VictorVal
      [2016/09/22 14:21:49 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\DESIGNER
      [2016/09/20 22:43:07 | 000,000,000 | ---D | C] -- C:\Windows\es
      [2016/09/20 22:42:56 | 000,000,000 | ---D | C] -- C:\Windows\en
      [2016/09/20 22:22:26 | 000,077,824 | ---- | C] (Fox Magic Software) -- C:\Windows\SysWow64\fmcodec.DLL
      [2016/09/20 21:41:53 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SharePoint
      [2016/09/20 21:41:53 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
      [2016/09/20 21:41:08 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Synchronization Services
      [2016/09/20 21:40:51 | 000,000,000 | ---D | C] -- C:\Windows\PCHEALTH
      [2016/09/20 21:40:51 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Sync Framework
      [2016/09/20 21:40:51 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft SQL Server Compact Edition
      [2016/09/20 21:39:24 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Visual Studio 8
      [2016/09/20 21:38:48 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Office
      [2016/09/20 21:38:20 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Analysis Services
      [2016/09/20 21:37:31 | 000,000,000 | RH-D | C] -- C:\MSOCache
      [2016/09/20 21:29:52 | 000,000,000 | ---D | C] -- C:\Users\Administrador\Documents\Office 2010 Final
      [2016/09/20 20:13:26 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\aTube Catcher
      [2016/09/20 20:13:24 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\DsNET Corp
      [2016/09/20 19:21:21 | 000,000,000 | ---D | C] -- C:\Users\Administrador\AppData\Roaming\Xilisoft
      [2016/09/20 19:17:07 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\MSECache
      [2016/09/20 19:16:32 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Xilisoft
      [2016/09/20 18:43:25 | 000,000,000 | ---D | C] -- C:\Users\Administrador\AppData\Roaming\MOVAVI
      [2016/09/20 17:08:55 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Motorola
      [2016/09/20 17:08:13 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Motorola Shared
      [2016/09/20 17:08:13 | 000,000,000 | ---D | C] -- C:\Program Files\Motorola Inc
      [2016/09/20 17:08:13 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Motorola Driver Installer
      [2016/09/15 12:37:00 | 000,000,000 | ---D | C] -- C:\Users\Administrador\AppData\Local\Microsoft Help
      [2016/09/15 01:13:12 | 000,000,000 | ---D | C] -- C:\Users\Administrador\Documents\Ronald
      [2016/09/14 20:14:07 | 000,000,000 | ---D | C] -- C:\Users\Administrador\Documents\aniversario birmania
      [2016/09/14 20:06:24 | 000,000,000 | ---D | C] -- C:\Users\Administrador\Documents\Nueva carpeta
      [2016/09/13 22:21:22 | 000,000,000 | ---D | C] -- C:\Users\Administrador\AppData\Local\CrashDumps
      [2016/09/02 21:06:59 | 000,000,000 | ---D | C] -- C:\Users\Administrador\Documents\MVP Baseball 2005
      [2016/09/02 21:06:55 | 000,000,000 | ---D | C] -- C:\Users\Administrador\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
      [2016/08/24 16:51:50 | 000,000,000 | ---D | C] -- C:\Users\Administrador\AppData\Roaming\Mozilla
      [2016/08/24 16:51:50 | 000,000,000 | ---D | C] -- C:\Users\Administrador\AppData\Local\Mozilla
      [2016/08/24 08:43:13 | 000,000,000 | R--D | C] -- C:\Users\Administrador\Documents\Scanned Documents
      [2016/08/24 08:43:12 | 000,000,000 | ---D | C] -- C:\Users\Administrador\Documents\Fax
      [2016/08/19 14:52:21 | 000,000,000 | ---D | C] -- C:\Users\Administrador\AppData\Roaming\WinRAR
      [2016/08/14 14:29:19 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerISO
      [2016/08/14 14:29:18 | 000,127,760 | ---- | C] (Power Software Ltd) -- C:\Windows\SysNative\drivers\scdemu.sys
      [2016/08/14 14:29:18 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\PowerISO
      [2016/08/13 22:54:02 | 000,000,000 | ---D | C] -- C:\ProgramData\DAEMON Tools Lite
      [2016/08/13 22:40:40 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\Macromed
      [2016/08/13 18:37:24 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MVP Baseball 2005
      [2016/08/13 18:37:13 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\MVP Baseball 2005 by Luis41
      [2016/08/12 10:03:44 | 000,000,000 | ---D | C] -- C:\Users\Administrador\AppData\Local\ElevatedDiagnostics
      [2016/08/08 23:32:26 | 000,000,000 | ---D | C] -- C:\Games
      [2016/08/08 18:59:06 | 000,000,000 | ---D | C] -- C:\Users\Administrador\Tracing
      [2016/08/08 18:58:50 | 000,000,000 | ---D | C] -- C:\Users\Administrador\AppData\Roaming\Skype
      [2016/07/15 2044 | 000,151,184 | ---- | C] (MBB) -- C:\Windows\SysNative\drivers\usb2ser.sys
      [2016/07/15 12:02:01 | 000,000,000 | ---D | C] -- C:\searchplugins
      [2016/07/15 11:55:58 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
      [2016/07/15 11:55:57 | 000,000,000 | R--D | C] -- C:\Program Files (x86)\Skype
      [2016/07/15 11:55:57 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Skype
      [2016/07/15 11:55:50 | 000,000,000 | ---D | C] -- C:\ProgramData\Skype
      [2016/07/06 09:20:54 | 000,000,000 | ---D | C] -- C:\Windows\Minidump
      [2016/05/30 16:15:53 | 000,000,000 | ---D | C] -- C:\$WINDOWS.~BT
      [2016/05/30 16:15:50 | 000,000,000 | -H-D | C] -- C:\$Windows.~WS
      [1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]

      ========== Files - Modified Within 360 Days ==========

      [2017/04/27 15:51:25 | 000,036,560 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
      [2017/04/27 15:51:25 | 000,036,560 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
      [2017/04/27 15:48:04 | 000,001,491 | ---- | M] () -- C:\Users\Administrador\Desktop\OTL - Acceso directo.lnk
      [2017/04/27 15:46:59 | 000,002,894 | ---- | M] () -- C:\Users\Administrador\Documents\registro ccleanercc_20170427_154641.reg
      [2017/04/27 15:41:20 | 000,082,720 | ---- | M] (Malwarebytes) -- C:\Windows\SysNative\drivers\mwac.sys
      [2017/04/27 15:41:10 | 000,111,544 | ---- | M] (Malwarebytes) -- C:\Windows\SysNative\drivers\farflt.sys
      [2017/04/27 15:41:10 | 000,043,968 | ---- | M] (Malwarebytes) -- C:\Windows\SysNative\drivers\mbam.sys
      [2017/04/27 15:41:09 | 000,251,832 | ---- | M] (Malwarebytes) -- C:\Windows\SysNative\drivers\MBAMSwissArmy.sys
      [2017/04/27 15:40:40 | 000,067,584 | --S- | M] () -- C:\Windows\BootStat.dat
      [2017/04/27 15:40:35 | 2982,555,648 | -HS- | M] () -- C:\hiberfil.sys
      [2017/04/27 14:26:39 | 000,186,304 | ---- | M] (Malwarebytes) -- C:\Windows\SysNative\drivers\MBAMChameleon.sys
      [2017/04/27 14:26:24 | 000,001,867 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes.lnk
      [2017/04/27 14:26:02 | 000,001,785 | ---- | M] () -- C:\Users\Administrador\Desktop\mb3-setup-consumer-3.0.6.1469-10103 - Acceso directo.lnk
      [2017/04/27 14:21:48 | 000,001,491 | ---- | M] () -- C:\Users\Administrador\Desktop\JRT - Acceso directo.lnk
      [2017/04/27 14:07:44 | 000,001,560 | ---- | M] () -- C:\Users\Administrador\Desktop\AdwCleaner - Acceso directo.lnk
      [2017/04/26 19:44:24 | 000,002,181 | ---- | M] () -- C:\Users\Public\Desktop\Google Chrome.lnk
      [2017/04/24 21:35:41 | 001,685,960 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
      [2017/04/24 21:35:41 | 000,751,032 | ---- | M] () -- C:\Windows\SysNative\perfh00A.dat
      [2017/04/24 21:35:41 | 000,656,872 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
      [2017/04/24 21:35:41 | 000,160,074 | ---- | M] () -- C:\Windows\SysNative\perfc00A.dat
      [2017/04/24 21:35:41 | 000,122,684 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
      [2017/04/12 19:30:34 | 000,420,520 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT
      [2017/04/12 19:03:06 | 001,659,610 | ---- | M] () -- C:\Windows\SysWow64\PerfStringBackup.INI
      [2017/03/26 15:15:17 | 000,000,572 | ---- | M] () -- C:\Users\Administrador\Desktop\morrocoy cayo y sus playa - Buscar con Google.url
      [2017/03/23 12:38:19 | 005,872,201 | ---- | M] () -- C:\Users\Administrador\Desktop\IMG_20170323_123817.jpg
      [2017/03/22 11:02:44 | 000,077,440 | ---- | M] () -- C:\Windows\SysNative\drivers\mbae64.sys
      [2017/02/23 16:02:44 | 000,115,162 | ---- | M] () -- C:\Users\Administrador\Documents\solicitud de tdc adriana.pdf
      [2017/02/17 13:57:09 | 001,324,481 | ---- | M] () -- C:\Users\Administrador\Documents\IMG_20170217_135708.jpg
      [2017/02/17 13:56:23 | 001,214,657 | ---- | M] () -- C:\Users\Administrador\Documents\IMG_20170217_135623.jpg
      [2017/02/17 13:55:36 | 001,411,521 | ---- | M] () -- C:\Users\Administrador\Documents\IMG_20170217_135536.jpg
      [2017/02/17 13:47:22 | 001,672,257 | ---- | M] () -- C:\Users\Administrador\Documents\IMG_20170217_134721.jpg
      [2017/02/17 13:41:46 | 001,657,793 | ---- | M] () -- C:\Users\Administrador\Documents\IMG_20170217_134145.jpg
      [2017/02/17 13:36:30 | 001,590,721 | ---- | M] () -- C:\Users\Administrador\Documents\IMG_20170217_133630.jpg
      [2017/02/17 13:34:23 | 001,697,857 | ---- | M] () -- C:\Users\Administrador\Documents\IMG_20170217_133422.jpg
      [2017/02/15 18:44:56 | 000,020,994 | ---- | M] () -- C:\Users\Administrador\Documents\imagen 2.jpg
      [2017/02/15 18:42:50 | 000,090,557 | ---- | M] () -- C:\Users\Administrador\Documents\imagen.jpg
      [2017/01/02 11:33:45 | 000,001,007 | ---- | M] () -- C:\Users\Administrador\Desktop\PowerISO.lnk
      [2016/12/29 15:26:26 | 006,470,528 | ---- | M] () -- C:\Users\Administrador\Documents\Descargar MP3.mp3
      [2016/12/27 2218 | 000,004,758 | ---- | M] () -- C:\Users\Administrador\Desktop\descarga.jpg
      [2016/12/26 09:43:31 | 000,002,048 | ---- | M] () -- C:\Users\Public\Desktop\Protección de banca y pagos en linea.lnk
      [2016/12/26 05:43:28 | 000,045,778 | ---- | M] () -- C:\Users\Administrador\Documents\cc_20161226_054316.reg
      [2016/12/13 17:11:08 | 000,180,544 | ---- | M] (ESET) -- C:\Windows\SysNative\drivers\ehdrv.sys
      [2016/12/13 17:11:08 | 000,132,272 | ---- | M] (ESET) -- C:\Windows\SysNative\drivers\eamonm.sys
      [2016/12/13 17:11:08 | 000,106,768 | ---- | M] (ESET) -- C:\Windows\SysNative\drivers\edevmon.sys
      [2016/12/13 17:11:08 | 000,096,856 | ---- | M] (ESET) -- C:\Windows\SysNative\drivers\epfwwfp.sys
      [2016/12/13 17:11:08 | 000,077,616 | ---- | M] (ESET) -- C:\Windows\SysNative\drivers\epfw.sys
      [2016/12/13 17:11:08 | 000,060,536 | ---- | M] (ESET) -- C:\Windows\SysNative\drivers\EpfwLWF.sys
      [2016/12/13 17:11:08 | 000,049,672 | ---- | M] (ESET) -- C:\Windows\SysNative\drivers\ekbdflt.sys
      [2016/12/05 09:15:02 | 007,198,728 | ---- | M] () -- C:\Users\Administrador\Documents\matematica I Modulo II(175-176-177).pdf
      [2016/11/11 16:42:04 | 000,000,866 | ---- | M] () -- C:\Users\Public\Desktop\CCleaner.lnk
      [2016/11/01 12:26:35 | 000,000,331 | ---- | M] () -- C:\Windows\game.ini
      [2016/10/26 20:20:49 | 000,022,842 | ---- | M] () -- C:\Users\Administrador\Desktop\parachoque-delantero-fortaleza-mexicana-original-nuevo-D_NQ_NP_742521-MLV20781237742_062016-O.jpg
      [2016/10/12 21:28:19 | 000,005,465 | ---- | M] () -- C:\Users\Administrador\Documents\Mi película.wlmp
      [2016/09/20 18:43:24 | 000,004,128 | ---- | M] () -- C:\ProgramData\bqeojehc.wbx
      [2016/09/20 18:29:11 | 078,674,406 | ---- | M] () -- C:\Users\Administrador\Documents\presentacion birma.ppsx
      [2016/09/20 17:12:12 | 000,000,000 | -H-- | M] () -- C:\Windows\SysNative\drivers\Msft_Kernel_motmodem_01007.Wdf
      [2016/09/20 17:12:10 | 000,000,000 | -H-- | M] () -- C:\Windows\SysNative\drivers\Msft_Kernel_Motousbnet_01007.Wdf
      [2016/09/20 17:12:10 | 000,000,000 | -H-- | M] () -- C:\Windows\SysNative\drivers\Msft_Kernel_motfilt_01007.Wdf
      [2016/09/20 17:11:01 | 000,000,000 | -H-- | M] () -- C:\Windows\SysNative\drivers\Msft_Kernel_motccgpfl_01007.Wdf
      [2016/09/20 17:11:01 | 000,000,000 | -H-- | M] () -- C:\Windows\SysNative\drivers\Msft_Kernel_motccgp_01007.Wdf
      [2016/09/20 1738 | 000,000,000 | -H-- | M] () -- C:\Windows\SysNative\drivers\Msft_Kernel_motusbdevice_01007.Wdf
      [2016/09/16 15:27:25 | 000,033,828 | -HS- | M] () -- C:\Users\Administrador\Documents\Folder.jpg
      [2016/09/16 15:27:25 | 000,007,734 | -HS- | M] () -- C:\Users\Administrador\Documents\AlbumArtSmall.jpg
      [2016/09/15 20:42:04 | 000,034,784 | -HS- | M] () -- C:\Users\Administrador\Documents\AlbumArt_{BB9D8CDB-FF88-4F89-9D7A-A77BEB3B743A}_Large.jpg
      [2016/09/15 20:42:04 | 000,007,514 | -HS- | M] () -- C:\Users\Administrador\Documents\AlbumArt_{BB9D8CDB-FF88-4F89-9D7A-A77BEB3B743A}_Small.jpg
      [2016/09/15 19:24:03 | 000,004,608 | ---- | M] () -- C:\Users\Administrador\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
      [2016/09/15 12:23:40 | 009,250,168 | ---- | M] () -- C:\Users\Administrador\Documents\Descargar MP3 (1).mp3
      [2016/07/21 10:26:57 | 000,002,697 | ---- | M] () -- C:\Users\Public\Desktop\Skype.lnk
      [2016/07/15 2044 | 000,151,184 | ---- | M] (MBB) -- C:\Windows\SysNative\drivers\usb2ser.sys
      [2016/05/30 16:18:43 | 000,007,664 | ---- | M] () -- C:\Windows\diagwrn.xml
      [2016/05/30 16:18:43 | 000,002,519 | ---- | M] () -- C:\Windows\diagerr.xml
      [1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]

      ========== Files Created - No Company Name ==========

      [2017/04/27 15:46:56 | 000,002,894 | ---- | C] () -- C:\Users\Administrador\Documents\registro ccleanercc_20170427_154641.reg
      [2017/04/27 14:26:24 | 000,001,867 | ---- | C] () -- C:\Users\Public\Desktop\Malwarebytes.lnk
      [2017/04/27 14:26:23 | 000,077,440 | ---- | C] () -- C:\Windows\SysNative\drivers\mbae64.sys
      [2017/04/27 14:03:11 | 000,001,785 | ---- | C] () -- C:\Users\Administrador\Desktop\mb3-setup-consumer-3.0.6.1469-10103 - Acceso directo.lnk
      [2017/04/27 14:01:48 | 000,001,491 | ---- | C] () -- C:\Users\Administrador\Desktop\OTL - Acceso directo.lnk
      [2017/04/27 13:59:54 | 000,001,491 | ---- | C] () -- C:\Users\Administrador\Desktop\JRT - Acceso directo.lnk
      [2017/04/27 13:57:23 | 000,001,560 | ---- | C] () -- C:\Users\Administrador\Desktop\AdwCleaner - Acceso directo.lnk
      [2017/03/26 15:15:17 | 000,000,572 | ---- | C] () -- C:\Users\Administrador\Desktop\morrocoy cayo y sus playa - Buscar con Google.url
      [2017/03/24 09:03:50 | 005,872,201 | ---- | C] () -- C:\Users\Administrador\Desktop\IMG_20170323_123817.jpg
      [2017/02/23 16:02:44 | 000,115,162 | ---- | C] () -- C:\Users\Administrador\Documents\solicitud de tdc adriana.pdf
      [2017/02/17 14:12:30 | 001,697,857 | ---- | C] () -- C:\Users\Administrador\Documents\IMG_20170217_133422.jpg
      [2017/02/17 14:12:30 | 001,672,257 | ---- | C] () -- C:\Users\Administrador\Documents\IMG_20170217_134721.jpg
      [2017/02/17 14:12:30 | 001,657,793 | ---- | C] () -- C:\Users\Administrador\Documents\IMG_20170217_134145.jpg
      [2017/02/17 14:12:30 | 001,411,521 | ---- | C] () -- C:\Users\Administrador\Documents\IMG_20170217_135536.jpg
      [2017/02/17 14:12:30 | 001,324,481 | ---- | C] () -- C:\Users\Administrador\Documents\IMG_20170217_135708.jpg
      [2017/02/17 14:12:30 | 001,214,657 | ---- | C] () -- C:\Users\Administrador\Documents\IMG_20170217_135623.jpg
      [2017/02/17 14:11:31 | 001,590,721 | ---- | C] () -- C:\Users\Administrador\Documents\IMG_20170217_133630.jpg
      [2017/02/15 18:44:56 | 000,020,994 | ---- | C] () -- C:\Users\Administrador\Documents\imagen 2.jpg
      [2017/02/15 18:42:44 | 000,090,557 | ---- | C] () -- C:\Users\Administrador\Documents\imagen.jpg
      [2017/01/02 11:33:45 | 000,001,007 | ---- | C] () -- C:\Users\Administrador\Desktop\PowerISO.lnk
      [2016/12/27 2216 | 000,004,758 | ---- | C] () -- C:\Users\Administrador\Desktop\descarga.jpg
      [2016/12/26 09:43:31 | 000,002,048 | ---- | C] () -- C:\Users\Public\Desktop\Protección de banca y pagos en linea.lnk
      [2016/12/26 05:43:20 | 000,045,778 | ---- | C] () -- C:\Users\Administrador\Documents\cc_20161226_054316.reg
      [2016/12/05 09:15:40 | 007,198,728 | ---- | C] () -- C:\Users\Administrador\Documents\matematica I Modulo II(175-176-177).pdf
      [2016/11/01 12:26:35 | 000,000,331 | ---- | C] () -- C:\Windows\game.ini
      [2016/10/26 20:20:48 | 000,022,842 | ---- | C] () -- C:\Users\Administrador\Desktop\parachoque-delantero-fortaleza-mexicana-original-nuevo-D_NQ_NP_742521-MLV20781237742_062016-O.jpg
      [2016/09/21 00:22:20 | 000,005,465 | ---- | C] () -- C:\Users\Administrador\Documents\Mi película.wlmp
      [2016/09/20 22:42:48 | 000,001,305 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Movie Maker.lnk
      [2016/09/20 22:42:29 | 000,001,374 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Photo Gallery.lnk
      [2016/09/20 18:43:24 | 000,004,128 | ---- | C] () -- C:\ProgramData\bqeojehc.wbx
      [2016/09/20 18:29:10 | 078,674,406 | ---- | C] () -- C:\Users\Administrador\Documents\presentacion birma.ppsx
      [2016/09/20 17:12:12 | 000,000,000 | -H-- | C] () -- C:\Windows\SysNative\drivers\Msft_Kernel_motmodem_01007.Wdf
      [2016/09/20 17:12:10 | 000,000,000 | -H-- | C] () -- C:\Windows\SysNative\drivers\Msft_Kernel_Motousbnet_01007.Wdf
      [2016/09/20 17:12:10 | 000,000,000 | -H-- | C] () -- C:\Windows\SysNative\drivers\Msft_Kernel_motfilt_01007.Wdf
      [2016/09/20 17:11:01 | 000,000,000 | -H-- | C] () -- C:\Windows\SysNative\drivers\Msft_Kernel_motccgpfl_01007.Wdf
      [2016/09/20 17:11:01 | 000,000,000 | -H-- | C] () -- C:\Windows\SysNative\drivers\Msft_Kernel_motccgp_01007.Wdf
      [2016/09/20 1738 | 000,000,000 | -H-- | C] () -- C:\Windows\SysNative\drivers\Msft_Kernel_motusbdevice_01007.Wdf
      [2016/09/15 20:42:04 | 000,034,784 | -HS- | C] () -- C:\Users\Administrador\Documents\AlbumArt_{BB9D8CDB-FF88-4F89-9D7A-A77BEB3B743A}_Large.jpg
      [2016/09/15 20:42:04 | 000,033,828 | -HS- | C] () -- C:\Users\Administrador\Documents\Folder.jpg
      [2016/09/15 20:42:04 | 000,007,734 | -HS- | C] () -- C:\Users\Administrador\Documents\AlbumArtSmall.jpg
      [2016/09/15 20:42:04 | 000,007,514 | -HS- | C] () -- C:\Users\Administrador\Documents\AlbumArt_{BB9D8CDB-FF88-4F89-9D7A-A77BEB3B743A}_Small.jpg
      [2016/09/15 12:26:05 | 000,004,608 | ---- | C] () -- C:\Users\Administrador\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
      [2016/09/15 12:23:21 | 009,250,168 | ---- | C] () -- C:\Users\Administrador\Documents\Descargar MP3 (1).mp3
      [2016/09/15 12:21:31 | 006,470,528 | ---- | C] () -- C:\Users\Administrador\Documents\Descargar MP3.mp3
      [2016/08/08 13:11:45 | 000,067,584 | --S- | C] () -- C:\Windows\BootStat.dat
      [2016/07/15 11:55:58 | 000,002,697 | ---- | C] () -- C:\Users\Public\Desktop\Skype.lnk
      [2016/05/30 16:18:34 | 000,007,664 | ---- | C] () -- C:\Windows\diagwrn.xml
      [2016/05/30 16:18:34 | 000,002,519 | ---- | C] () -- C:\Windows\diagerr.xml

      ========== ZeroAccess Check ==========

      [2009/07/14 00:55:00 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini

      [HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64

      [HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

      [HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64

      [HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

      [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
      "" = C:\Windows\SysNative\shell32.dll -- [2016/08/29 11:31:19 | 014,183,424 | ---- | M] (Microsoft Corporation)
      "ThreadingModel" = Apartment

      [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
      "" = %SystemRoot%\system32\shell32.dll -- [2016/08/29 11:12:50 | 012,880,384 | ---- | M] (Microsoft Corporation)
      "ThreadingModel" = Apartment

      [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
      "" = C:\Windows\SysNative\wbem\fastprox.dll -- [2009/07/13 21:40:51 | 000,909,312 | ---- | M] (Microsoft Corporation)
      "ThreadingModel" = Free

      [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
      "" = %systemroot%\system32\wbem\fastprox.dll -- [2010/11/20 23:24:25 | 000,606,208 | ---- | M] (Microsoft Corporation)
      "ThreadingModel" = Free

      [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
      "" = C:\Windows\SysNative\wbem\wbemess.dll -- [2009/07/13 21:41:56 | 000,505,856 | ---- | M] (Microsoft Corporation)
      "ThreadingModel" = Both

      [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]

      ========== LOP Check ==========

      [2016/09/20 19:02:33 | 000,000,000 | ---D | M] -- C:\Users\Administrador\AppData\Roaming\MOVAVI
      [2016/12/27 13:28:57 | 000,000,000 | ---D | M] -- C:\Users\Administrador\AppData\Roaming\PowerISO
      [2014/10/11 12:11:53 | 000,000,000 | ---D | M] -- C:\Users\Administrador\AppData\Roaming\Xerox
      [2016/09/20 19:38:03 | 000,000,000 | ---D | M] -- C:\Users\Administrador\AppData\Roaming\Xilisoft

      ========== Purity Check ==========



      ========== Custom Scans ==========

      < %SYSTEMDRIVE%/*,* >
      Invalid Switch: *,*

      < End of report >

    5. #5
      Moderadora Gral.
      Avatar de @Daniela
      Registrado
      abr 2011
      Ubicación
      España
      Mensajes
      22.952

      Re: no puedo eliminar eset internet security

      Hola jona1381

      Has utilizado su herramienta de desinstalación? Herramientas de desinstalación de Antivirus, AntiSpyware y Firewall.

      Nos comentas si lo has podido desinstalar con su hta.

      Un saludo
      ✿◕‿◕✿ La impaciencia no es buena compañía ✿◕‿◕✿

      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.