• Registrarse
  • Iniciar sesión


  • Página 3 de 3 PrimeroPrimero 123
    Resultados 21 al 22 de 22

    Se descargó automáticamente hbpix

    Hola, perdón por las semanas de ausencia, he estado bastante ocupado. Entre el tiempo en que hice el procedimiento (osea antes de instalar OTL) se me volvió a descargar hbpix, y lo eliminé. Días despues ...

    1. #21
      Usuario Avatar de UserconCriterio
      Registrado
      ago 2017
      Ubicación
      Venezuela
      Mensajes
      20

      Re: Se descargó automáticamente hbpix

      Hola, perdón por las semanas de ausencia, he estado bastante ocupado.

      Entre el tiempo en que hice el procedimiento (osea antes de instalar OTL) se me volvió a descargar hbpix, y lo eliminé. Días despues de eso ejecute OTL. He aquí los resultados:

      OTL logfile created on: 08/11/2017 05:59:24 p.m. - Run 1
      OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\VAIO_\Desktop
      64bit- Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
      Internet Explorer (Version = 9.11.9600.17843)
      Locale: 0000200A | Country: República Bolivariana de Venezuela | Language: ESV | Date Format: dd/MM/yyyy

      3,97 Gb Total Physical Memory | 2,18 Gb Available Physical Memory | 54,80% Memory free
      7,94 Gb Paging File | 5,41 Gb Available in Paging File | 68,11% Paging File free
      Paging file location(s): ?:\pagefile.sys [binary data]

      %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
      Drive C: | 448,34 Gb Total Space | 322,96 Gb Free Space | 72,03% Space Free | Partition Type: NTFS

      Computer Name: VAIO-VAIO | User Name: VAIO_ | Logged in as Administrator.
      Boot Mode: Normal | Scan Mode: All users
      Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: Off | File Age = 30 Days

      ========== Processes (SafeList) ==========

      PRC - C:\Users\VAIO_\Desktop\OTL.exe (OldTimer Tools)
      PRC - C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe (Valve Corporation)
      PRC - C:\Program Files (x86)\Steam\Steam.exe (Valve Corporation)
      PRC - C:\Program Files (x86)\Common Files\Steam\SteamService.exe (Valve Corporation)
      PRC - C:\Archivos de programa\Malwarebytes\Anti-Malware\mbamtray.exe (Malwarebytes)
      PRC - C:\Users\VAIO_\AppData\Local\Discord\app-0.0.298\Discord.exe (Discord Inc.)
      PRC - C:\Archivos de programa\Sony\VAIO Care\VCService.exe (Sony Corporation)
      PRC - C:\Archivos de programa\Sony\VAIO Care\Iolo\ioloTools.exe (iolo technologies, LLC)
      PRC - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (Adobe Systems Incorporated)
      PRC - C:\Program Files (x86)\No-IP\ducservice.exe ()
      PRC - C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe (Atheros)
      PRC - C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe (Intel Corporation)
      PRC - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe (Intel Corporation)
      PRC - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (Intel Corporation)
      PRC - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe ()
      PRC - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe (Intel Corporation)
      PRC - C:\Program Files (x86)\Sony\VAIO Control Center\VESMgrSub.exe (Sony Corporation)
      PRC - C:\Program Files (x86)\Sony\VAIO Control Center\VESMgr.exe (Sony Corporation)
      PRC - c:\Program Files (x86)\Sony\PlayMemories Home\PMBDeviceInfoProvider.exe (Sony Corporation)
      PRC - C:\Program Files (x86)\Sony\PlayMemories Home\PMBVolumeWatcher.exe (Sony Corporation)
      PRC - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe (Intel Corporation)
      PRC - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe (Intel Corporation)
      PRC - C:\Program Files (x86)\Sony\ISB Utility\ISBMgr.exe (Sony Corporation)
      PRC - C:\Program Files (x86)\ArcSoft\Magic-i Visual Effects 2\uCamMonitor.exe (ArcSoft, Inc.)


      ========== Modules (No Company Name) ==========

      MOD - \\?\C:\Users\VAIO_\AppData\Local\Temp\A7B3.tmp.node ()
      MOD - \\?\C:\Users\VAIO_\AppData\Roaming\discord\0.0.298\modules\discord_utils\discord_utils.node ()
      MOD - C:\Program Files (x86)\Steam\video.dll ()
      MOD - C:\Program Files (x86)\Steam\bin\chromehtml.DLL ()
      MOD - \\?\C:\Users\VAIO_\AppData\Roaming\discord\0.0.298\modules\discord_voice\discord_voice.node ()
      MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\IAStorUtil\38305cf6fa17b0e338d71c64fa401d07\IAStorUtil.ni.dll ()
      MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Web\7057023b1bb89e4623a922b311be4dba\System.Web.ni.dll ()
      MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Remo#\d4d707aec7d81ab0129b80cee05e3cf0\System.Runtime.Remoting.ni.dll ()
      MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\367e5b8a038ac76eba17528bb7b3688e\System.Windows.Forms.ni.dll ()
      MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\ce3c98f2bf220ef17b0cf4233cac6ceb\System.Drawing.ni.dll ()
      MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\77c1dc46ea139bf5e1eaa9b87ef03c7a\System.Xml.ni.dll ()
      MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\ad8dd536906e94c4bc9cb9b82285580b\System.Configuration.ni.dll ()
      MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\WindowsBase\fb963359e1261ca9fb22c7a02cbfc367\WindowsBase.ni.dll ()
      MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System\ad92dab7f418877d6a1e0358ce35658a\System.ni.dll ()
      MOD - C:\Program Files (x86)\Steam\SDL2.dll ()
      MOD - C:\Program Files (x86)\Steam\bin\cef\cef.win7\SDL2.dll ()
      MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\IAStorCommon\439f4df27ed07e50e3dac6eacce3a0f8\IAStorCommon.ni.dll ()
      MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\9f895c66454577eff9c77442d0c84f71\mscorlib.ni.dll ()
      MOD - C:\Program Files (x86)\Steam\bin\cef\cef.win7\libcef.dll ()
      MOD - \\?\C:\Users\VAIO_\AppData\Roaming\discord\0.0.298\modules\discord_contact_import\discord_contact_import.node ()
      MOD - \\?\C:\Users\VAIO_\AppData\Roaming\discord\0.0.298\modules\discord_rpc\discord_rpc.node ()
      MOD - C:\Users\VAIO_\AppData\Local\Discord\app-0.0.298\libglesv2.dll ()
      MOD - C:\Users\VAIO_\AppData\Local\Discord\app-0.0.298\ffmpeg.dll ()
      MOD - C:\Users\VAIO_\AppData\Local\Discord\app-0.0.298\libegl.dll ()
      MOD - C:\Program Files (x86)\Steam\v8.dll ()
      MOD - C:\Program Files (x86)\Steam\icui18n.dll ()
      MOD - C:\Program Files (x86)\Steam\icuuc.dll ()
      MOD - C:\Program Files (x86)\Steam\openvr_api.dll ()
      MOD - C:\Program Files (x86)\Steam\libavcodec-56.dll ()
      MOD - C:\Program Files (x86)\Steam\libavformat-56.dll ()
      MOD - C:\Program Files (x86)\Steam\libswscale-3.dll ()
      MOD - C:\Program Files (x86)\Steam\libavutil-54.dll ()
      MOD - C:\Program Files (x86)\Steam\libavresample-2.dll ()
      MOD - C:\Program Files (x86)\Steam\winh264.dll ()
      MOD - C:\Windows\assembly\GAC_MSIL\System.Runtime.Remoting.resources\2.0.0.0_es_b77a5c561934e089\System.Runtime.Remoting.resources.dll ()
      MOD - C:\Windows\assembly\GAC_MSIL\mscorlib.resources\2.0.0.0_es_b77a5c561934e089\mscorlib.resources.dll ()


      ========== Services (SafeList) ==========

      SRV - (AdobeFlashPlayerUpdateSvc) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe (Adobe Systems Incorporated)
      SRV - (Steam Client Service) -- C:\Program Files (x86)\Common Files\Steam\SteamService.exe (Valve Corporation)
      SRV - (MBAMService) -- C:\Archivos de programa\Malwarebytes\Anti-Malware\MBAMService.exe (Malwarebytes)
      SRV - (VCService) -- C:\Archivos de programa\Sony\VAIO Care\VCService.exe (Sony Corporation)
      SRV - (clr_optimization_v4.0.30319_32) -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe (Microsoft Corporation)
      SRV - (NisSrv) -- c:\Archivos de programa\Microsoft Security Client\NisSrv.exe (Microsoft Corporation)
      SRV - (MsMpSvc) -- c:\Archivos de programa\Microsoft Security Client\MsMpEng.exe (Microsoft Corporation)
      SRV - (VUAgent) -- C:\Archivos de programa\Sony\VAIO Update\VUAgent.exe (Sony Corporation)
      SRV - (AdobeARMservice) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (Adobe Systems Incorporated)
      SRV - (NoIPDUCService4) -- C:\Program Files (x86)\No-IP\ducservice.exe ()
      SRV - (SkypeUpdate) -- C:\Program Files (x86)\Skype\Updater\Updater.exe (Skype Technologies)
      SRV - (clr_optimization_v2.0.50727_32) -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe (Microsoft Corporation)
      SRV - (VSNService) -- C:\Archivos de programa\Sony\VAIO Smart Network\VSNService.exe (Sony Corporation)
      SRV - (ZAtheros Bt&Wlan Coex Agent) -- C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe (Atheros)
      SRV - (AtherosSvc) -- C:\Program Files (x86)\Bluetooth Suite\adminservice.exe (Atheros Commnucations)
      SRV - (DCDhcpService) -- C:\Archivos de programa\Sony\VAIO Smart Network\WFDA\DCDhcpService.exe (Atheros Communication Inc.)
      SRV - (UNS) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe (Intel Corporation)
      SRV - (LMS) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (Intel Corporation)
      SRV - (Intel(R) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe ()
      SRV - (jhi_service) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe (Intel Corporation)
      SRV - (VAIO Event Service) -- C:\Program Files (x86)\Sony\VAIO Control Center\VESMgr.exe (Sony Corporation)
      SRV - (PMBDeviceInfoProvider) -- c:\Program Files (x86)\Sony\PlayMemories Home\PMBDeviceInfoProvider.exe (Sony Corporation)
      SRV - (IconMan_R) -- C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe (Realsil Microelectronics Inc.)
      SRV - (Intel(R) -- c:\Archivos de programa\Intel\iCLS Client\HeciServer.exe (Intel(R) Corporation)
      SRV - (VAIO Power Management) -- C:\Archivos de programa\Sony\VAIO Power Management\SPMService.exe (Sony Corporation)
      SRV - (SOHDs) -- C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHDs.exe (Sony Corporation)
      SRV - (SOHCImp) -- C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHCImp.exe (Sony Corporation)
      SRV - (VCFw) -- C:\Program Files (x86)\Common Files\Sony Shared\VAIO Content Folder Watcher\VCFw.exe (Sony Corporation)
      SRV - (VcmINSMgr) -- C:\Archivos de programa\Sony\VCM Intelligent Network Service Manager\VcmINSMgr.exe (Sony Corporation)
      SRV - (VcmIAlzMgr) -- C:\Archivos de programa\Sony\VCM Intelligent Analyzing Manager\VcmIAlzMgr.exe (Sony Corporation)
      SRV - (SpfService) -- C:\Archivos de programa\Common Files\Sony Shared\VAIO Entertainment Platform\SPF\SpfService64.exe (Sony Corporation)
      SRV - (IAStorDataMgrSvc) -- C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe (Intel Corporation)
      SRV - (VcmXmlIfHelper) -- C:\Archivos de programa\Common Files\Sony Shared\VcmXml\VcmXmlIfHelper64.exe (Sony Corporation)
      SRV - (wlidsvc) -- C:\Archivos de programa\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE (Microsoft Corp.)
      SRV - (uCamMonitor) -- C:\Program Files (x86)\ArcSoft\Magic-i Visual Effects 2\uCamMonitor.exe (ArcSoft, Inc.)
      SRV - (wlcrasvc) -- C:\Archivos de programa\Windows Live\Mesh\wlcrasvc.exe (Microsoft Corporation)
      SRV - (ACDaemon) -- C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe (ArcSoft Inc.)


      ========== Driver Services (SafeList) ==========

      DRV - (MpKsla5d4d2eb) -- c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{E23148B6-96E2-403A-BCFB-2C616A0F0B8D}\MpKsla5d4d2eb.sys (Microsoft Corporation)
      DRV - (WIMMount) -- C:\Windows\SysWOW64\drivers\wimmount.sys (Microsoft Corporation)


      ========== Standard Registry (SafeList) ==========


      ========== Internet Explorer ==========

      IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
      IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
      IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&form=SNYVDF&pc=MASA&src=IE-SearchBox


      IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

      IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0



      IE - HKU\S-1-5-21-1685293888-2723032173-1560773260-1004\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = Preserve
      IE - HKU\S-1-5-21-1685293888-2723032173-1560773260-1004\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://www.msn.com/es-ve/?ocid=iehp
      IE - HKU\S-1-5-21-1685293888-2723032173-1560773260-1004\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = es-VE
      IE - HKU\S-1-5-21-1685293888-2723032173-1560773260-1004\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
      IE - HKU\S-1-5-21-1685293888-2723032173-1560773260-1004\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IESR02
      IE - HKU\S-1-5-21-1685293888-2723032173-1560773260-1004\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0


      ========== FireFox ==========

      FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_27_0_0_183.dll ()
      FF - HKLM\Software\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=2.0.59: C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
      FF - HKLM\Software\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI updater: C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
      FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files (x86)\Java\jre7\bin\new_plugin\npjp2.dll (Oracle Corporation)
      FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files (x86)\Microsoft Silverlight\5.1.50907.0\npctrl.dll ( Microsoft Corporation)
      FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
      FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3538.0513: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
      FF - HKLM\Software\MozillaPlugins\@playstation.com/PsndlCheck,version=1.00: C:\Program Files (x86)\Sony\PLAYSTATION Network Downloader\nppsndl.dll (Sony Computer Entertainment Inc.)
      FF - HKLM\Software\MozillaPlugins\@SonyCreativeSoftware.com/Media Go,version=1.0: C:\Program Files (x86)\Sony\Media Go\npmediago.dll (Sony Network Entertainment International LLC)
      FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll (Google Inc.)
      FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll (Google Inc.)
      FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)



      ========== Chrome ==========

      CHR - Extension: No name found = C:\Users\VAIO_\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek\0.10_0\
      CHR - Extension: No name found = C:\Users\VAIO_\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.10_0\
      CHR - Extension: No name found = C:\Users\VAIO_\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\14.1_0\
      CHR - Extension: No name found = C:\Users\VAIO_\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.8_0\
      CHR - Extension: No name found = C:\Users\VAIO_\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap\1.2_0\
      CHR - Extension: No name found = C:\Users\VAIO_\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.4_1\
      CHR - Extension: No name found = C:\Users\VAIO_\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.3_0\
      CHR - Extension: No name found = C:\Users\VAIO_\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\8.1_0\
      CHR - Extension: No name found = C:\Users\VAIO_\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\6117.717.0.4_0\

      O1 HOSTS File: ([2017/10/02 18:46:05 | 000,000,035 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
      O2 - BHO: (CIESpeechBHO Class) - {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll (Atheros Commnucations)
      O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
      O4 - HKLM..\Run: [APSDaemon] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc.)
      O4 - HKLM..\Run: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe (Intel Corporation)
      O4 - HKLM..\Run: [ISBMgr.exe] C:\Program Files (x86)\Sony\ISB Utility\ISBMgr.exe (Sony Corporation)
      O4 - HKLM..\Run: [PMBVolumeWatcher] c:\Program Files (x86)\Sony\PlayMemories Home\PMBVolumeWatcher.exe (Sony Corporation)
      O4 - HKLM..\Run: [USB3MON] C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe (Intel Corporation)
      O4 - HKU\S-1-5-19..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
      O4 - HKU\S-1-5-20..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
      O4 - HKU\S-1-5-21-1685293888-2723032173-1560773260-1004..\Run: [CCleaner Monitoring] C:\Program Files\CCleaner\CCleaner64.exe (Piriform Ltd)
      O4 - HKU\S-1-5-21-1685293888-2723032173-1560773260-1004..\Run: [Discord] C:\Users\VAIO_\AppData\Local\Discord\app-0.0.298\Discord.exe (Discord Inc.)
      O4 - HKU\S-1-5-21-1685293888-2723032173-1560773260-1004..\Run: [Steam] C:\Program Files (x86)\Steam\steam.exe (Valve Corporation)
      O4 - HKU\S-1-5-19..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe File not found
      O4 - HKU\S-1-5-20..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe File not found
      O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
      O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
      O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
      O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
      O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableSecureUIAPath = 1
      O9 - Extra Button: Enviar a OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll (Microsoft Corporation)
      O9 - Extra 'Tools' menuitem : &Enviar a OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll (Microsoft Corporation)
      O9 - Extra 'Tools' menuitem : Send by Bluetooth to - {7815BE26-237D-41A8-A98F-F7BD75F71086} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll (Atheros Commnucations)
      O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL (Microsoft Corporation)
      O9 - Extra Button: @C:\Program Files (x86)\Evernote\Evernote\Resource.dll,-101 - {A95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll (Evernote Corp., 333 W Evelyn Ave. Mountain View, CA 94041)
      O9 - Extra 'Tools' menuitem : @C:\Program Files (x86)\Evernote\Evernote\Resource.dll,-101 - {A95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll (Evernote Corp., 333 W Evelyn Ave. Mountain View, CA 94041)
      O10 - NameSpace_Catalog5\Catalog_Entries\000000000010 [] - C:\Program Files (x86)\Bonjour\mdnsNSP.dll (Apple Inc.)
      O13 - gopher Prefix: missing
      O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.7.0/jinstall-1_7_0_01-windows-i586.cab (Java Plug-in 10.1.0)
      O16 - DPF: {CAFEEFAC-0017-0000-0001-ABCDEFFEDCBA} http://java.sun.com/update/1.7.0/jinstall-1_7_0_01-windows-i586.cab (Java Plug-in 1.7.0_01)
      O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.7.0/jinstall-1_7_0_01-windows-i586.cab (Java Plug-in 1.7.0_01)
      O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 200.44.32.12 200.109.78.12
      O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{805334D8-A2B3-4D15-A271-51DD1F711B0E}: DhcpNameServer = 200.44.32.12 200.109.78.12
      O18 - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\PROGRA~2\COMMON~1\MICROS~1\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)
      O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
      O20 - HKLM Winlogon: UserInit - (userinit.exe) - C:\Windows\SysWow64\userinit.exe (Microsoft Corporation)
      O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
      O32 - HKLM CDRom: AutoRun - 1
      O34 - HKLM BootExecute: (autocheck autochk *)
      O35 - HKLM\..comfile [open] -- "%1" %*
      O35 - HKLM\..exefile [open] -- "%1" %*
      O37 - HKLM\...com [@ = comfile] -- "%1" %*
      O37 - HKLM\...exe [@ = exefile] -- "%1" %*
      O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
      O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
      O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)


      MsConfig:64bit - StartUpReg: Adobe ARM - hkey= - key= - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe (Adobe Systems Incorporated)
      MsConfig:64bit - StartUpReg: Adobe Reader Speed Launcher - hkey= - key= - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe (Adobe Systems Incorporated)
      MsConfig:64bit - State: "services" - Reg Error: Key error.

      CREATERESTOREPOINT
      Restore point Set: OTL Restore Point

      ========== Files/Folders - Created Within 30 Days ==========

      [2017/11/08 17:00:06 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Users\VAIO_\Desktop\OTL.exe
      [2017/11/08 16:56:19 | 000,000,000 | R--D | C] -- C:\Users\VAIO_\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BT Devices
      [2017/11/02 18:53:14 | 000,000,000 | ---D | C] -- C:\Users\VAIO_\Documents\Copia de camara nikon prestada
      [2017/10/17 20:07:36 | 000,000,000 | ---D | C] -- C:\Users\VAIO_\Documents\Copia de Micro Sd 4 GB
      [2017/10/16 03:08:23 | 000,000,000 | -HSD | C] -- C:\Config.Msi
      [1 C:\Users\VAIO_\Desktop\*.tmp files -> C:\Users\VAIO_\Desktop\*.tmp -> ]

      ========== Files - Modified Within 30 Days ==========

      [2017/11/08 18:00:48 | 003,407,872 | -HS- | M] () -- C:\Users\VAIO_\NTUSER.DAT
      [2017/11/08 17:00:56 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\VAIO_\Desktop\OTL.exe
      [2017/11/08 16:55:27 | 000,000,006 | -H-- | M] () -- C:\Windows\tasks\SA.DAT
      [2017/11/08 16:55:19 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
      [2017/11/08 16:55:12 | 3197,915,136 | -HS- | M] () -- C:\hiberfil.sys
      [2017/11/06 12:16:37 | 001,395,739 | -H-- | M] () -- C:\Users\VAIO_\AppData\Local\IconCache.db
      [2017/10/16 03:09:58 | 001,652,804 | ---- | M] () -- C:\Windows\SysWow64\PerfStringBackup.INI
      [1 C:\Users\VAIO_\Desktop\*.tmp files -> C:\Users\VAIO_\Desktop\*.tmp -> ]

      ========== Files Created - No Company Name ==========

      [2017/10/02 19:12:28 | 001,395,739 | -H-- | C] () -- C:\Users\VAIO_\AppData\Local\IconCache.db
      [2017/08/08 14:00:25 | 000,518,144 | ---- | C] () -- C:\Windows\SysWow64\msjetoledb40.dll
      [2016/11/25 09:19:06 | 000,118,960 | ---- | C] () -- C:\Users\VAIO_\AppData\Local\GDIPFONTCACHEV1.DAT
      [2016/11/25 09:18:14 | 000,524,288 | -HS- | C] () -- C:\Users\VAIO_\NTUSER.DAT{016888bd-6c6f-11de-8d1d-001e0bcde3ec}.TMContainer00000000000000000002.regtrans-ms
      [2016/11/25 09:18:14 | 000,524,288 | -HS- | C] () -- C:\Users\VAIO_\NTUSER.DAT{016888bd-6c6f-11de-8d1d-001e0bcde3ec}.TMContainer00000000000000000001.regtrans-ms
      [2016/11/25 09:18:14 | 000,065,536 | -HS- | C] () -- C:\Users\VAIO_\NTUSER.DAT{016888bd-6c6f-11de-8d1d-001e0bcde3ec}.TM.blf
      [2016/11/25 09:18:14 | 000,000,020 | -HS- | C] () -- C:\Users\VAIO_\ntuser.ini
      [2016/11/25 09:18:13 | 003,407,872 | -HS- | C] () -- C:\Users\VAIO_\NTUSER.DAT
      [2016/08/08 18:38:27 | 000,074,703 | ---- | C] () -- C:\Windows\SysWow64\mfc45.dat
      [2016/07/23 14:56:13 | 000,074,703 | ---- | C] () -- C:\Windows\SysWow64\mfc45.dll
      [2016/07/23 12:56:01 | 000,000,000 | ---- | C] () -- C:\Windows\ativpsrm.bin

      ========== ZeroAccess Check ==========

      [2009/07/14 00:55:00 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini

      [HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64

      [HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

      [HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64

      [HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

      [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
      "" = C:\Windows\SysNative\shell32.dll -- [2017/08/15 11:29:44 | 014,182,400 | ---- | M] (Microsoft Corporation)
      "ThreadingModel" = Apartment

      [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
      "" = %SystemRoot%\system32\shell32.dll -- [2017/08/15 1154 | 012,880,896 | ---- | M] (Microsoft Corporation)
      "ThreadingModel" = Apartment

      [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
      "" = C:\Windows\SysNative\wbem\fastprox.dll -- [2009/07/13 21:40:51 | 000,909,312 | ---- | M] (Microsoft Corporation)
      "ThreadingModel" = Free

      [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
      "" = %systemroot%\system32\wbem\fastprox.dll -- [2010/11/20 23:24:25 | 000,606,208 | ---- | M] (Microsoft Corporation)
      "ThreadingModel" = Free

      [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
      "" = C:\Windows\SysNative\wbem\wbemess.dll -- [2009/07/13 21:41:56 | 000,505,856 | ---- | M] (Microsoft Corporation)
      "ThreadingModel" = Both

      [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]

      ========== LOP Check ==========

      [2017/04/07 22:40:27 | 000,000,000 | ---D | M] -- C:\Users\VAIO_\AppData\Roaming\Battle.net
      [2017/01/22 18:27:25 | 000,000,000 | ---D | M] -- C:\Users\VAIO_\AppData\Roaming\BrawlhallaAir
      [2017/09/26 12:47:50 | 000,000,000 | ---D | M] -- C:\Users\VAIO_\AppData\Roaming\discord
      [2017/03/02 14:27:53 | 000,000,000 | ---D | M] -- C:\Users\VAIO_\AppData\Roaming\iolo
      [2017/01/24 21:30:07 | 000,000,000 | ---D | M] -- C:\Users\VAIO_\AppData\Roaming\NetMedia Providers
      [2017/04/30 21:06:00 | 000,000,000 | ---D | M] -- C:\Users\VAIO_\AppData\Roaming\Panda Security
      [2017/01/19 19:47:59 | 000,000,000 | ---D | M] -- C:\Users\VAIO_\AppData\Roaming\Publish Providers
      [2017/08/02 19:26:11 | 000,000,000 | ---D | M] -- C:\Users\VAIO_\AppData\Roaming\Riot Games
      [2017/02/08 10:15:28 | 000,000,000 | ---D | M] -- C:\Users\VAIO_\AppData\Roaming\Sony
      [2017/01/28 14:01:26 | 000,000,000 | ---D | M] -- C:\Users\VAIO_\AppData\Roaming\Sony Creative Software Inc
      [2016/11/25 09:51:27 | 000,000,000 | ---D | M] -- C:\Users\VAIO_\AppData\Roaming\TeamViewer

      ========== Purity Check ==========



      ========== Custom Scans ==========

      < %SYSTEMDRIVE%\*.* >
      [2017/10/13 18:21:03 | 000,000,831 | ---- | M] () -- C:\DelFix.txt
      [2017/11/08 16:55:12 | 3197,915,136 | -HS- | M] () -- C:\hiberfil.sys
      [2017/11/08 16:55:16 | 4263,886,848 | -HS- | M] () -- C:\pagefile.sys

      < End of report >

    2. #22
      Moderadora Gral.
      Avatar de @Daniela
      Registrado
      abr 2011
      Ubicación
      España
      Mensajes
      23.991

      Re: Se descargó automáticamente hbpix

      Hola

      Sigue estos pasos, MUY Importante ~ Realiza una copia de seguridad del registro :

      • Para hacerlo descarga >> DelFix en tu escritorio.
        • Doble clic para ejecutarlo.(Si usas Windows Vista/7 u 8 presiona clic derecho y selecciona "Ejecutar como Administrador.")
        • Marca unicamente la casilla "Create registry backup".
      • Pulsar en Run.

        Se abrirá el informe (DelFix.txt), guárdalo por si fuera necesario y cierra la herramienta.


      Después ejecuta de nuevo OTL.exe pero en Modo Seguro

      Si tu SO es Windows 8/8.1/10 usa el 2º MÉTODO: de esta Faq de Windows 8 (aplicable a Windows 10) >> ¿Cómo iniciar Windows 8/8.1 en Modo Seguro?, para trabajar desde ese modo de windows.

      Copia y Pega el código que está dentro del recuadro de abajo en la sección Análisis Personalizado / Código de Reparación.

      Código:
      :OTL
      CHR - Extension: No name found = C:\Users\VAIO_\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek\0.10_0\
      CHR - Extension: No name found = C:\Users\VAIO_\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.10_0\
      CHR - Extension: No name found = C:\Users\VAIO_\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.4_1\
      CHR - Extension: No name found = C:\Users\VAIO_\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\6117.717.0.4_0\
      O4 - HKU\S-1-5-19..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe File not found
      O4 - HKU\S-1-5-20..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe File not found
      O13 - gopher Prefix: missing
      O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
      MsConfig:64bit - State: "services" - Reg Error: Key error.
      [1 C:\Users\VAIO_\Desktop\*.tmp files -> C:\Users\VAIO_\Desktop\*.tmp -> ]
      
      :Files
      ipconfig /flushdns /c
      ipconfig /renew /c
      :Commands
      [PURITY]
      [EMPTYFLASH]
      [EMPTYTEMP]
      [RESETHOSTS]
      Presiona el Botón Reparar para lanzar la eliminación. Después presionas en OK.

      OTL va a Reiniciar el ordenador para completar la eliminación.

      Guardas el nuevo reporte generado, y lo copias y pegas en tu próxima respuesta.

      Comenta como sigue el problema.

      Un saludo
      ✿◕‿◕✿ La impaciencia no es buena compañía ✿◕‿◕✿

      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.

    Página 3 de 3 PrimeroPrimero 123