PDA

View Full Version : Infected with shortcut virus?


florenciam
2015-04-30, 23:30
Hi, a week ago my USB drive got infected with a virus that turned my files into shortcuts, and my brother accidentally clicked on one of them. I ran the Spybot scan on my computer and it found some threats but after "deleting" such threats they appear again in the following scans. I run Windows XP and I had already scanned my computer with ESET NOD 32 antivirus, which didn't find anything.

Here are the logs:

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 29-04-2015 01
Ran by cacha (administrator) on FLORNOTE on 30-04-2015 17:15:47
Running from C:\Documents and Settings\cacha\Escritorio
Loaded Profiles: cacha (Available profiles: cacha & Administrador & Invitado)
Platform: Microsoft Windows XP Professional Service Pack 3 (X86) OS Language: Español (alfabetización internacional)
Internet Explorer Version 8 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Broadcom Corporation.) C:\Archivos de programa\WIDCOMM\Bluetooth Software\bin\btwdins.exe
() C:\WINDOWS\system32\WLTRYSVC.EXE
(Dell Inc.) C:\WINDOWS\system32\BCMWLTRY.EXE
(IDT, Inc.) C:\Archivos de programa\IDT\XPV10_6147v005\WDM\stacsv.exe
(IDT, Inc.) C:\Archivos de programa\IDT\WDM\sttray.exe
(Andrea Electronics Corporation) C:\WINDOWS\system32\AESTFltr.exe
(Alps Electric Co., Ltd.) C:\Archivos de programa\DellTPad\Apoint.exe
(Creative Technology Ltd.) C:\WINDOWS\OEM13Mon.exe
(Dell Inc.) C:\WINDOWS\system32\WLTRAY.EXE
(ESET) C:\Archivos de programa\ESET\ESET NOD32 Antivirus\ekrn.exe
(Microsoft Corporation) C:\WINDOWS\system32\rundll32.exe
(Microsoft Corporation) C:\WINDOWS\system32\rundll32.exe
(Microsoft Corporation) C:\Archivos de programa\Microsoft Office\Office12\GrooveMonitor.exe
(Hewlett-Packard) C:\Archivos de programa\HP\HP Software Update\hpwuSchd2.exe
(Oracle Corporation) C:\Archivos de programa\Archivos comunes\Java\Java Update\jusched.exe
(ESET) C:\Archivos de programa\ESET\ESET NOD32 Antivirus\egui.exe
(Safer-Networking Ltd.) C:\Archivos de programa\Spybot - Search & Destroy 2\SDTray.exe
(Oracle Corporation) C:\Archivos de programa\Java\jre7\bin\jqs.exe
(Microsoft Corporation) C:\Archivos de programa\Windows Media Player\wmpnscfg.exe
(Spotify Ltd) C:\Documents and Settings\cacha\Datos de programa\Spotify\SpotifyWebHelper.exe
(Nalpeiron Ltd.) C:\WINDOWS\system32\NLSSRV32.EXE
(NVIDIA Corporation) C:\WINDOWS\system32\nvsvc32.exe
(Broadcom Corporation.) C:\Archivos de programa\WIDCOMM\Bluetooth Software\BTTray.exe
(Absolute Software Corp.) C:\WINDOWS\system32\rpcnet.exe
(Safer-Networking Ltd.) C:\Archivos de programa\Spybot - Search & Destroy 2\SDFSSvc.exe
(Alps Electric Co., Ltd.) C:\Archivos de programa\DellTPad\ApMsgFwd.exe
(Broadcom Corporation.) C:\Archivos de programa\WIDCOMM\Bluetooth Software\BTStackServer.exe
(Alps Electric Co., Ltd.) C:\Archivos de programa\DellTPad\hidfind.exe
(Alps Electric Co., Ltd.) C:\Archivos de programa\DellTPad\ApntEx.exe
(Safer-Networking Ltd.) C:\Archivos de programa\Spybot - Search & Destroy 2\SDUpdSvc.exe
(Microsoft Corporation) C:\Archivos de programa\Windows Media Player\wmpnetwk.exe
(Google Inc.) C:\Archivos de programa\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Archivos de programa\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Archivos de programa\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Archivos de programa\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Archivos de programa\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Archivos de programa\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Archivos de programa\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Archivos de programa\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Archivos de programa\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Archivos de programa\Microsoft Office\Office12\WINWORD.EXE
(Google Inc.) C:\Archivos de programa\Google\Chrome\Application\chrome.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [SysTrayApp] => C:\Archivos de programa\IDT\WDM\sttray.exe [483420 2009-02-20] (IDT, Inc.)
HKLM\...\Run: [AESTFltr] => C:\WINDOWS\system32\AESTFltr.exe [729088 2009-02-20] (Andrea Electronics Corporation)
HKLM\...\Run: [Apoint] => C:\Archivos de programa\DellTPad\Apoint.exe [217088 2009-03-13] (Alps Electric Co., Ltd.)
HKLM\...\Run: [OEM13Mon.exe] => C:\WINDOWS\OEM13Mon.exe [36864 2008-01-08] (Creative Technology Ltd.)
HKLM\...\Run: [Broadcom Wireless Manager UI] => C:\WINDOWS\system32\WLTRAY.exe [2220032 2008-10-24] (Dell Inc.)
HKLM\...\Run: [NvCplDaemon] => RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
HKLM\...\Run: [nwiz] => nwiz.exe /installquiet
HKLM\...\Run: [NVHotkey] => rundll32.exe nvHotkey.dll,Start
HKLM\...\Run: [NvMediaCenter] => RunDLL32.exe NvMCTray.dll,NvTaskbarInit
HKLM\...\Run: [DELL Webcam Manager] => C:\Archivos de programa\Dell\Dell Webcam Manager\DellWMgr.exe [118784 2007-07-27] (Creative Technology Ltd.)
HKLM\...\Run: [GrooveMonitor] => C:\Archivos de programa\Microsoft Office\Office12\GrooveMonitor.exe [30040 2009-02-26] (Microsoft Corporation)
HKLM\...\Run: [HP Software Update] => C:\Archivos de programa\HP\HP Software Update\HPWuSchd2.exe [49152 2007-10-14] (Hewlett-Packard)
HKLM\...\Run: [KernelFaultCheck] => %systemroot%\system32\dumprep 0 -k
HKLM\...\Run: [SunJavaUpdateSched] => C:\Archivos de programa\Archivos comunes\Java\Java Update\jusched.exe [271744 2014-09-26] (Oracle Corporation)
HKLM\...\Run: [egui] => C:\Archivos de programa\ESET\ESET NOD32 Antivirus\egui.exe [5046472 2014-09-30] (ESET)
HKLM\...\Run: [SDTray] => C:\Archivos de programa\Spybot - Search & Destroy 2\SDTray.exe [4101576 2014-06-24] (Safer-Networking Ltd.)
Winlogon\Notify\SDWinLogon: SDWinLogon.dll [X]
HKU\S-1-5-21-1844237615-1767777339-1417001333-1003\...\Run: [AdobeBridge] => [X]
HKU\S-1-5-21-1844237615-1767777339-1417001333-1003\...\Run: [WMPNSCFG] => C:\Archivos de programa\Windows Media Player\WMPNSCFG.exe [204800 2009-02-04] (Microsoft Corporation)
HKU\S-1-5-21-1844237615-1767777339-1417001333-1003\...\Run: [Spotify Web Helper] => C:\Documents and Settings\cacha\Datos de programa\Spotify\SpotifyWebHelper.exe [1959992 2015-03-11] (Spotify Ltd)
HKU\S-1-5-21-1844237615-1767777339-1417001333-1003\...\Run: [Hide.me] => [X]
HKU\S-1-5-18\...\Run: [GoogleChromeAutoLaunch_A2E3159C0817FADA26422CFDCE0E82F1] => C:\Archivos de programa\Google\Chrome\Application\chrome.exe [812872 2015-04-13] (Google Inc.)
Startup: C:\Documents and Settings\All Users\Menú Inicio\Programas\Inicio\BTTray.lnk [2012-03-07]
ShortcutTarget: BTTray.lnk -> C:\Archivos de programa\WIDCOMM\Bluetooth Software\BTTray.exe (Broadcom Corporation.)
ShellIconOverlayIdentifiers: ["DropboxExt1"] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Documents and Settings\cacha\Datos de programa\Dropbox\bin\DropboxExt.25.dll [2015-02-10] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt2"] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Documents and Settings\cacha\Datos de programa\Dropbox\bin\DropboxExt.25.dll [2015-02-10] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt3"] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Documents and Settings\cacha\Datos de programa\Dropbox\bin\DropboxExt.25.dll [2015-02-10] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt4"] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Documents and Settings\cacha\Datos de programa\Dropbox\bin\DropboxExt.25.dll [2015-02-10] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt5"] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Documents and Settings\cacha\Datos de programa\Dropbox\bin\DropboxExt.25.dll [2015-02-10] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt6"] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Documents and Settings\cacha\Datos de programa\Dropbox\bin\DropboxExt.25.dll [2015-02-10] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt7"] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Documents and Settings\cacha\Datos de programa\Dropbox\bin\DropboxExt.25.dll [2015-02-10] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt8"] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Documents and Settings\cacha\Datos de programa\Dropbox\bin\DropboxExt.25.dll [2015-02-10] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [GDriveBlacklistedOverlay] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Archivos de programa\Google\Drive\googledrivesync32.dll [2015-02-19] (Google)
ShellIconOverlayIdentifiers: [GDriveSharedEditOverlay] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44} => C:\Archivos de programa\Google\Drive\googledrivesync32.dll [2015-02-19] (Google)
ShellIconOverlayIdentifiers: [GDriveSharedViewOverlay] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D43} => C:\Archivos de programa\Google\Drive\googledrivesync32.dll [2015-02-19] (Google)
ShellIconOverlayIdentifiers: [GDriveSyncedOverlay] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Archivos de programa\Google\Drive\googledrivesync32.dll [2015-02-19] (Google)
ShellIconOverlayIdentifiers: [GDriveSyncingOverlay] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Archivos de programa\Google\Drive\googledrivesync32.dll [2015-02-19] (Google)
ShellIconOverlayIdentifiers: [Groove Explorer Icon Overlay 1 (GFS Unread Stub)] -> {99FD978C-D287-4F50-827F-B2C658EDA8E7} => C:\Archivos de programa\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [Groove Explorer Icon Overlay 2 (GFS Stub)] -> {AB5C5600-7E6E-4B06-9197-9ECEF74D31CC} => C:\Archivos de programa\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [Groove Explorer Icon Overlay 2.5 (GFS Unread Folder)] -> {920E6DB1-9907-4370-B3A0-BAFC03D81399} => C:\Archivos de programa\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [Groove Explorer Icon Overlay 3 (GFS Folder)] -> {16F3DD56-1AF5-4347-846D-7C10C4192619} => C:\Archivos de programa\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [Groove Explorer Icon Overlay 4 (GFS Unread Mark)] -> {2916C86E-86A6-43FE-8112-43ABE6BF8DCC} => C:\Archivos de programa\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26] (Microsoft Corporation)
BootExecute: autocheck autochk * sdnclean.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
ProxyServer: [S-1-5-21-1844237615-1767777339-1417001333-1003] => localhost:8080
HKU\S-1-5-21-1844237615-1767777339-1417001333-1003\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com.ar/
HKU\S-1-5-21-1844237615-1767777339-1417001333-1003\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://es.msn.com/?ocid=iehp
URLSearchHook: HKU\S-1-5-21-1844237615-1767777339-1417001333-1003 - BittorrentBar_ES Toolbar - {ad06fb5f-fef7-4a84-8c58-dca34f8e3d36} - No File
URLSearchHook: HKU\S-1-5-21-1844237615-1767777339-1417001333-1003 - BitTorrentBar Toolbar - {88c7f2aa-f93f-432c-8f0e-b7d85967a527} - No File
SearchScopes: HKU\S-1-5-21-1844237615-1767777339-1417001333-1003 -> {3E3A04E4-65A7-4BF0-BE56-A25D6C594ACF} URL = http://websearch.ask.com/redirect?client=ie&tb=ORJ&o=100000027&src=crm&q={searchTerms}&locale=es_ES&apn_ptnrs=^U3&apn_dtid=^OSJ000^YY^AR&apn_uid=29B3F03A-E8F4-4364-BB2F-056CD38F361A&apn_sauid=74974A9E-826B-490A-A51C-B8A407B7C46D
BHO: No Name -> {5C255C8A-E604-49b4-9D64-90988571CECB} -> No File
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Archivos de programa\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26] (Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Archivos de programa\Java\jre7\bin\ssv.dll [2014-11-04] (Oracle Corporation)
BHO: BitTorrentBar Toolbar -> {88c7f2aa-f93f-432c-8f0e-b7d85967a527} -> No File
BHO: Windows Live Aplicación auxiliar de inicio de sesión -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Archivos de programa\Archivos comunes\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-01-22] (Microsoft Corporation)
BHO: BittorrentBar_ES Toolbar -> {ad06fb5f-fef7-4a84-8c58-dca34f8e3d36} -> No File
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Archivos de programa\Java\jre7\bin\jp2ssv.dll [2014-11-04] (Oracle Corporation)
Toolbar: HKLM - BittorrentBar_ES Toolbar - {ad06fb5f-fef7-4a84-8c58-dca34f8e3d36} - No File
Toolbar: HKLM - BitTorrentBar Toolbar - {88c7f2aa-f93f-432c-8f0e-b7d85967a527} - No File
Toolbar: HKU\S-1-5-21-1844237615-1767777339-1417001333-1003 -> BitTorrentBar Toolbar - {88C7F2AA-F93F-432C-8F0E-B7D85967A527} - No File
Toolbar: HKU\S-1-5-21-1844237615-1767777339-1417001333-1003 -> BittorrentBar_ES Toolbar - {AD06FB5F-FEF7-4A84-8C58-DCA34F8E3D36} - No File
Toolbar: HKU\S-1-5-21-1844237615-1767777339-1417001333-1003 -> No Name - {D4027C7F-154A-4066-A1AD-4243D8127440} - No File
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.7.0/jinstall-1_7_0_06-windows-i586.cab
DPF: {CAFEEFAC-0014-0002-0008-ABCDEFFEDCBA} http://java.sun.com/update/1.4.2/jinstall-1_4_2_08-windows-i586.cab
DPF: {CAFEEFAC-0017-0000-0000-ABCDEFFEDCBA} http://java.sun.com/update/1.7.0/jinstall-1_7_0-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.7.0/jinstall-1_7_0_06-windows-i586.cab
Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Archivos de programa\Microsoft Office\Office12\GrooveSystemServices.dll [2009-02-26] (Microsoft Corporation)
Handler: http\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Archivos de programa\Archivos comunes\System\Ole DB\MSDAIPP.DLL [2009-02-26] (Microsoft Corporation)
Handler: http\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Archivos de programa\Archivos comunes\System\Ole DB\MSDAIPP.DLL [2009-02-26] (Microsoft Corporation)
Handler: https\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Archivos de programa\Archivos comunes\System\Ole DB\MSDAIPP.DLL [2009-02-26] (Microsoft Corporation)
Handler: https\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Archivos de programa\Archivos comunes\System\Ole DB\MSDAIPP.DLL [2009-02-26] (Microsoft Corporation)
Handler: ipp\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Archivos de programa\Archivos comunes\System\Ole DB\MSDAIPP.DLL [2009-02-26] (Microsoft Corporation)
Handler: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\Archivos de programa\Windows Live\Messenger\msgrapp.14.0.8117.0416.dll [2010-04-16] (Microsoft Corporation)
Handler: ms-help - {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Archivos de programa\Archivos comunes\Microsoft Shared\Help\hxds.dll [2013-09-25] (Microsoft Corporation)
Handler: msdaipp\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Archivos de programa\Archivos comunes\System\Ole DB\MSDAIPP.DLL [2009-02-26] (Microsoft Corporation)
Handler: msdaipp\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Archivos de programa\Archivos comunes\System\Ole DB\MSDAIPP.DLL [2009-02-26] (Microsoft Corporation)
Handler: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\Archivos de programa\Windows Live\Messenger\msgrapp.14.0.8117.0416.dll [2010-04-16] (Microsoft Corporation)
Filter: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\WINDOWS\system32\urlmon.dll [2014-03-06] (Microsoft Corporation)
Filter: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\WINDOWS\system32\urlmon.dll [2014-03-06] (Microsoft Corporation)
Hosts: Hosts file not detected in the default directory
Tcpip\Parameters: [DhcpNameServer] 108.168.162.137 8.8.4.4

FireFox:
========
FF ProfilePath: C:\Documents and Settings\cacha\Datos de programa\Mozilla\Firefox\Profiles\8webyrm2.default
FF Homepage: hxxp://www.google.com.ar/
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF32_17_0_0_169.dll [2015-04-15] ()
FF Plugin: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Archivos de programa\Tracker Software\PDF Viewer\npPDFXCviewNPPlugin.dll [2013-06-18] (Tracker Software Products (Canada) Ltd.)
FF Plugin: @java.com/DTPlugin,version=10.71.2 -> C:\Archivos de programa\Java\jre7\bin\dtplugin\npDeployJava1.dll [2014-11-04] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.71.2 -> C:\Archivos de programa\Java\jre7\bin\plugin2\npjp2.dll [2014-11-04] (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Archivos de programa\Microsoft Silverlight\5.1.30514.0\npctrl.dll [2014-05-13] ( Microsoft Corporation)
FF Plugin: @microsoft.com/WPF,version=3.5 -> c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll [2008-07-29] (Microsoft Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Archivos de programa\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-02-06] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Archivos de programa\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-02-06] (Google Inc.)
FF Plugin: @tracker-software.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Archivos de programa\Tracker Software\PDF Viewer\npPDFXCviewNPPlugin.dll [2013-06-18] (Tracker Software Products (Canada) Ltd.)
FF Plugin: @videolan.org/vlc,version=2.0.6 -> C:\Archivos de programa\VideoLAN\VLC\npvlc.dll [2014-07-22] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.1.2 -> C:\Archivos de programa\VideoLAN\VLC\npvlc.dll [2014-07-22] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.1.5 -> C:\Archivos de programa\VideoLAN\VLC\npvlc.dll [2014-07-22] (VideoLAN)
FF Plugin HKU\S-1-5-21-1844237615-1767777339-1417001333-1003: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Archivos de programa\Tracker Software\PDF Viewer\npPDFXCviewNPPlugin.dll [2013-06-18] (Tracker Software Products (Canada) Ltd.)
FF Plugin HKU\S-1-5-21-1844237615-1767777339-1417001333-1003: samsung.com/SamsungLinkPCPlugin -> C:\Archivos de programa\Samsung\Samsung Link\utils\npSamsungLinkPCPlugin.dll No File
FF Plugin ProgramFiles/Appdata: C:\Archivos de programa\mozilla firefox\plugins\np-mswmp.dll [2007-04-10] (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Archivos de programa\mozilla firefox\plugins\npPDFXCviewNPPlugin.dll [2013-06-18] (Tracker Software Products (Canada) Ltd.)
FF SearchPlugin: C:\Archivos de programa\mozilla firefox\browser\searchplugins\creativecommons.xml [2014-07-22]
FF SearchPlugin: C:\Archivos de programa\mozilla firefox\browser\searchplugins\mercadolibre-ar.xml [2014-07-22]
FF Extension: FlashGot - C:\Documents and Settings\cacha\Datos de programa\Mozilla\Firefox\Profiles\8webyrm2.default\Extensions\{19503e42-ca3c-4c27-b1e2-9cdb2170ee34}.xpi [2015-01-21]
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
FF Extension: Microsoft .NET Framework Assistant - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension [2012-03-17]
FF HKLM\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Archivos de programa\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird
FF Extension: ESET Smart Security Extension - C:\Archivos de programa\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird [2015-01-25]

Chrome:
=======
CHR HomePage: Default ->
CHR Profile: C:\Documents and Settings\cacha\Configuración local\Datos de programa\Google\Chrome\User Data\Default
CHR Extension: (Google Drive) - C:\Documents and Settings\cacha\Configuración local\Datos de programa\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-02-22]
CHR Extension: (Easy Clock) - C:\Documents and Settings\cacha\Configuración local\Datos de programa\Google\Chrome\User Data\Default\Extensions\dplbpgapoedppajbikieafefmcceaagn [2014-08-26]
CHR Extension: (BetaFish Adblocker) - C:\Documents and Settings\cacha\Configuración local\Datos de programa\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2014-05-17]
CHR Extension: (Hola Better Internet) - C:\Documents and Settings\cacha\Configuración local\Datos de programa\Google\Chrome\User Data\Default\Extensions\gkojfkhlekighikafcpjkiklfbnlmeio [2014-07-07]
CHR Extension: (Pin It Button) - C:\Documents and Settings\cacha\Configuración local\Datos de programa\Google\Chrome\User Data\Default\Extensions\gpdjojdkbbmdfjfahjcgigfpmkopogic [2014-08-26]
CHR Extension: (Eye Dropper) - C:\Documents and Settings\cacha\Configuración local\Datos de programa\Google\Chrome\User Data\Default\Extensions\hmdcmlfkchdmnmnmheododdhjedfccka [2014-11-11]
CHR Extension: (Kindle Cloud Reader) - C:\Documents and Settings\cacha\Configuración local\Datos de programa\Google\Chrome\User Data\Default\Extensions\icdipabjmbhpdkjaihfjoikhjjeneebd [2014-05-17]
CHR Extension: (StayFocusd) - C:\Documents and Settings\cacha\Configuración local\Datos de programa\Google\Chrome\User Data\Default\Extensions\laankejkbhbdhmipfmgcngdelahlfoji [2014-10-11]
CHR Extension: (Chrome Hotword Shared Module) - C:\Documents and Settings\cacha\Configuración local\Datos de programa\Google\Chrome\User Data\Default\Extensions\lccekmodgklaepjeofjdjpbminllajkg [2015-04-15]
CHR Extension: (Google Dictionary (by Google)) - C:\Documents and Settings\cacha\Configuración local\Datos de programa\Google\Chrome\User Data\Default\Extensions\mgijmajocgfcbeboacabfgobmjgjcoja [2014-08-26]
CHR Extension: (Pocket) - C:\Documents and Settings\cacha\Configuración local\Datos de programa\Google\Chrome\User Data\Default\Extensions\mjcnijlhddpbdemagnpefmlkjdagkogk [2015-02-25]
CHR Extension: (feedly) - C:\Documents and Settings\cacha\Configuración local\Datos de programa\Google\Chrome\User Data\Default\Extensions\ndhinffkekpekljifjkkkkkhopnjodja [2014-11-11]
CHR Extension: (Do It (Tomorrow)) - C:\Documents and Settings\cacha\Configuración local\Datos de programa\Google\Chrome\User Data\Default\Extensions\nfagjoblnoeagfhfhohcdklnddjaiglo [2014-10-29]
CHR Extension: (Google Wallet) - C:\Documents and Settings\cacha\Configuración local\Datos de programa\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-12-17]
CHR Extension: (Sidekick by HubSpot) - C:\Documents and Settings\cacha\Configuración local\Datos de programa\Google\Chrome\User Data\Default\Extensions\oiiaigjnkhngdbnoookogelabohpglmd [2014-07-05]
CHR Extension: (Evernote Web Clipper) - C:\Documents and Settings\cacha\Configuración local\Datos de programa\Google\Chrome\User Data\Default\Extensions\pioclpoplcdbaefihamjohnefbikjilc [2014-09-09]
CHR Extension: (Writer) - C:\Documents and Settings\cacha\Configuración local\Datos de programa\Google\Chrome\User Data\Default\Extensions\pnengefjfhgcceajaepbjhanoojifmog [2014-11-11]
CHR HKLM\...\Chrome\Extension: [lhpgolofjlpnkdafbgejgnclbjnpgfee] - C:\DOCUME~1\cacha\CONFIG~1\Temp\ccex.crx [Not Found]
CHR HKLM\...\Chrome\Extension: [mhfdcmehmjcclgopdodkjdicohagipid] - C:\Documents and Settings\cacha\Configuración local\Datos de programa\CRE\mhfdcmehmjcclgopdodkjdicohagipid.crx [2012-04-17]
CHR HKU\S-1-5-21-1844237615-1767777339-1417001333-1003\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [apdfllckaahabafndbhieahigkjlhalf] - C:\DOCUME~1\cacha\CONFIG~1\DATOSD~1\Google\Drive\user_default\apdfllckaahabafndbhieahigkjlhalf_live.crx [2015-02-21]
CHR HKU\S-1-5-21-1844237615-1767777339-1417001333-1003\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh] - https://clients2.google.com/service/update2/crx
CHR HKU\S-1-5-21-1844237615-1767777339-1417001333-1003\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [mhfdcmehmjcclgopdodkjdicohagipid] - C:\Documents and Settings\cacha\Configuración local\Datos de programa\CRE\mhfdcmehmjcclgopdodkjdicohagipid.crx [2012-04-17]

========================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 btwdins; C:\Archivos de programa\WIDCOMM\Bluetooth Software\bin\btwdins.exe [264800 2008-09-17] (Broadcom Corporation.)
R2 ekrn; C:\Archivos de programa\ESET\ESET NOD32 Antivirus\ekrn.exe [1343920 2014-09-30] (ESET)
S2 gupdate; C:\Archivos de programa\Google\Update\GoogleUpdate.exe [116648 2013-12-17] (Google Inc.)
S3 gupdatem; C:\Archivos de programa\Google\Update\GoogleUpdate.exe [116648 2013-12-17] (Google Inc.)
R3 hpqcxs08; C:\Archivos de programa\HP\Digital Imaging\bin\hpqcxs08.dll [217088 2007-11-06] (Hewlett-Packard Co.) [File not signed]
R2 hpqddsvc; C:\Archivos de programa\HP\Digital Imaging\bin\hpqddsvc.dll [139264 2007-11-06] (Hewlett-Packard Co.) [File not signed]
S3 IDriverT; C:\Archivos de programa\Archivos comunes\InstallShield\Driver\1050\Intel 32\IDriverT.exe [73728 2004-10-22] (Macrovision Corporation) [File not signed]
R2 JavaQuickStarterService; C:\Archivos de programa\Java\jre7\bin\jqs.exe [182696 2014-11-04] (Oracle Corporation)
S3 Microsoft Office Groove Audit Service; C:\Archivos de programa\Microsoft Office\Office12\GrooveAuditService.exe [64856 2009-02-26] (Microsoft Corporation)
S3 MozillaMaintenance; C:\Archivos de programa\Mozilla Maintenance Service\maintenanceservice.exe [148080 2015-04-24] (Mozilla Foundation)
R2 Net Driver HPZ12; C:\WINDOWS\system32\HPZinw12.dll [43520 2006-11-08] (Hewlett-Packard) [File not signed]
S3 odserv; C:\Archivos de programa\Archivos comunes\Microsoft Shared\OFFICE12\ODSERV.EXE [440696 2011-07-20] (Microsoft Corporation)
S3 ose; C:\Archivos de programa\Archivos comunes\Microsoft Shared\Source Engine\OSE.EXE [145184 2006-10-26] (Microsoft Corporation)
R2 Pml Driver HPZ12; C:\WINDOWS\system32\HPZipm12.dll [53248 2006-11-08] (Hewlett-Packard) [File not signed]
R2 rpcnet; C:\WINDOWS\system32\rpcnet.exe [78032 2015-04-26] (Absolute Software Corp.)
R2 SDScannerService; C:\Archivos de programa\Spybot - Search & Destroy 2\SDFSSvc.exe [1738168 2014-06-24] (Safer-Networking Ltd.)
R2 SDUpdateService; C:\Archivos de programa\Spybot - Search & Destroy 2\SDUpdSvc.exe [2088408 2014-06-27] (Safer-Networking Ltd.)
S2 SDWSCService; C:\Archivos de programa\Spybot - Search & Destroy 2\SDWSCSvc.exe [171928 2014-04-25] (Safer-Networking Ltd.)
R2 STacSV; c:\archivos de programa\idt\xpv10_6147v005\wdm\stacsv.exe [249938 2009-02-20] (IDT, Inc.)
R2 wltrysvc; C:\WINDOWS\System32\bcmwltry.exe [1961984 2008-10-24] (Dell Inc.) [File not signed]
R2 WMPNetworkSvc; C:\Archivos de programa\Windows Media Player\WMPNetwk.exe [916480 2009-02-04] (Microsoft Corporation)

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R3 AESTAud; C:\WINDOWS\System32\drivers\AESTAud.sys [112512 2009-02-20] (Andrea Electronics Corporation)
R3 BCM43XX; C:\WINDOWS\System32\DRIVERS\bcmwl5.sys [1287552 2008-10-24] (Broadcom Corporation)
R3 btaudio; C:\WINDOWS\System32\drivers\btaudio.sys [539640 2008-07-26] (Broadcom Corporation.)
R3 BTDriver; C:\WINDOWS\System32\DRIVERS\btport.sys [37424 2008-07-26] (Broadcom Corporation.)
R3 BTKRNL; C:\WINDOWS\System32\DRIVERS\btkrnl.sys [879832 2008-07-29] (Broadcom Corporation.)
R3 BTWDNDIS; C:\WINDOWS\System32\DRIVERS\btwdndis.sys [156816 2008-07-29] (Broadcom Corporation.)
R3 btwhid; C:\WINDOWS\System32\DRIVERS\btwhid.sys [55352 2008-07-26] (Broadcom Corporation.)
R3 btwmodem; C:\WINDOWS\System32\DRIVERS\btwmodem.sys [37280 2008-07-26] (Broadcom Corporation.)
R3 BTWUSB; C:\WINDOWS\System32\Drivers\btwusb.sys [74688 2008-07-26] (Broadcom Corporation.)
S3 CCDECODE; C:\WINDOWS\System32\DRIVERS\CCDECODE.sys [17024 2008-04-13] (Microsoft Corporation)
R1 eamon; C:\WINDOWS\System32\DRIVERS\eamon.sys [185688 2014-09-30] (ESET)
R1 ehdrv; C:\WINDOWS\System32\DRIVERS\ehdrv.sys [135296 2014-09-30] (ESET)
R1 epfwtdir; C:\WINDOWS\System32\DRIVERS\epfwtdir.sys [118768 2014-09-30] (ESET)
S3 HPZid412; C:\WINDOWS\System32\DRIVERS\HPZid412.sys [49920 2007-10-30] (HP)
S3 HPZipr12; C:\WINDOWS\System32\DRIVERS\HPZipr12.sys [16496 2007-10-30] (HP)
S3 HPZius12; C:\WINDOWS\System32\DRIVERS\HPZius12.sys [21568 2007-10-30] (HP)
S3 NdisIP; C:\WINDOWS\System32\DRIVERS\NdisIP.sys [10880 2008-04-13] (Microsoft Corporation)
R3 O2MDGRDR; C:\WINDOWS\System32\DRIVERS\o2mdg.sys [58144 2009-03-19] (O2Micro )
R3 O2SDGRDR; C:\WINDOWS\System32\DRIVERS\o2sdg.sys [41376 2009-02-24] (O2Micro )
R3 OEM13Afx; C:\WINDOWS\system32\Drivers\OEM13Afx.sys [141376 2007-06-08] (Creative Technology Ltd.)
R3 OEM13Vfx; C:\WINDOWS\System32\DRIVERS\OEM13Vfx.sys [7424 2007-03-05] (EyePower Games Pte. Ltd.)
R3 OEM13Vid; C:\WINDOWS\System32\DRIVERS\OEM13Vid.sys [235840 2008-05-29] (Creative Technology Ltd.)
R3 STHDA; C:\WINDOWS\System32\drivers\sthda.sys [1548339 2009-02-20] (IDT, Inc.)
S3 vulfnths; C:\WINDOWS\System32\Drivers\vulfnth.sys [6912 2003-08-04] (VIA Technologies, Inc.) [File not signed]
S3 vulfntrs; C:\WINDOWS\System32\Drivers\vulfntr.sys [11392 2003-08-04] (VIA Technologies, Inc.) [File not signed]
S0 cerc6; No ImagePath
S3 CrystalSysInfo; \??\C:\Archivos de programa\MediaCoder\SysInfo.sys [X]
S3 GenericMount; system32\DRIVERS\GenericMount.sys [X]
S4 IntelIde; No ImagePath
U2 V2iMount; No ImagePath
U1 WS2IFSL; No ImagePath

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-04-30 17:15 - 2015-04-30 17:16 - 00030070 _____ () C:\Documents and Settings\cacha\Escritorio\FRST.txt
2015-04-30 17:11 - 2015-04-30 17:15 - 00000000 ____D () C:\FRST
2015-04-30 17:09 - 2015-04-30 17:09 - 01140736 _____ (Farbar) C:\Documents and Settings\cacha\Escritorio\FRST.exe
2015-04-30 13:22 - 2015-04-30 13:22 - 00012285 _____ () C:\Documents and Settings\cacha\Escritorio\Scan Results.150430-1322.txt
2015-04-28 08:21 - 2015-04-28 08:21 - 00065536 _____ () C:\WINDOWS\Minidump\Mini042815-01.dmp
2015-04-24 19:11 - 2015-04-24 19:13 - 00000000 ____D () C:\Archivos de programa\Mozilla Firefox
2015-04-24 08:20 - 2015-04-24 08:20 - 00000000 ____D () C:\Documents and Settings\cacha\Mis documentos\ProcAlyzer Dumps
2015-04-23 19:59 - 2015-04-23 19:59 - 00000000 ___RD () C:\Documents and Settings\NetworkService\Mis documentos\Mi música
2015-04-23 19:59 - 2015-04-23 19:59 - 00000000 ____D () C:\Documents and Settings\NetworkService\Mis documentos
2015-04-20 15:41 - 2015-04-30 00:06 - 00013312 ____H () C:\Documents and Settings\cacha\Escritorio\photothumb.db
2015-04-18 16:17 - 2015-04-18 16:18 - 00000000 ____D () C:\Documents and Settings\cacha\Escritorio\Para leer
2015-04-18 16:15 - 2015-04-18 16:16 - 00000000 ____D () C:\Documents and Settings\cacha\Escritorio\Art in Translation texts
2015-04-17 22:09 - 2015-04-17 22:09 - 00000000 ____D () C:\Documents and Settings\LocalService\Menú Inicio\Programas
2015-04-17 22:09 - 2015-04-17 22:09 - 00000000 ____D () C:\Documents and Settings\LocalService\Menú Inicio
2015-04-17 22:08 - 2015-04-17 22:08 - 00000000 ____D () C:\Archivos de programa\Asoftech
2015-04-17 21:44 - 2015-04-30 17:00 - 00000658 _____ () C:\WINDOWS\Tasks\Check for updates (Spybot - Search & Destroy).job
2015-04-17 21:44 - 2015-04-17 21:44 - 00001905 _____ () C:\Documents and Settings\All Users\Menú Inicio\Programas\Spybot-S&D Start Center.lnk
2015-04-17 21:44 - 2015-04-17 21:44 - 00001899 _____ () C:\Documents and Settings\All Users\Escritorio\Spybot-S&D Start Center.lnk
2015-04-17 21:44 - 2015-04-17 21:44 - 00000630 _____ () C:\WINDOWS\Tasks\Refresh immunization (Spybot - Search & Destroy).job
2015-04-17 21:44 - 2015-04-17 21:44 - 00000460 _____ () C:\WINDOWS\Tasks\Scan the system (Spybot - Search & Destroy).job
2015-04-17 21:44 - 2015-04-17 21:44 - 00000000 ____D () C:\Documents and Settings\All Users\Menú Inicio\Programas\Spybot - Search & Destroy 2
2015-04-17 21:43 - 2015-04-17 22:10 - 00000000 ____D () C:\Archivos de programa\Spybot - Search & Destroy 2
2015-04-17 21:43 - 2013-09-20 10:49 - 00018968 _____ (Safer Networking Limited) C:\WINDOWS\system32\sdnclean.exe
2015-04-17 21:28 - 2012-07-27 06:45 - 00000102 _____ () C:\medicina.cmd
2015-04-16 19:23 - 2015-04-18 17:31 - 00000000 ____D () C:\Documents and Settings\cacha\Mis documentos\pinguino
2015-04-15 21:40 - 2015-04-15 21:40 - 00000132 _____ () C:\Documents and Settings\cacha\Datos de programa\Prefs. de formato PNG de Adobe CS6
2015-04-09 21:54 - 2015-04-10 16:08 - 00000000 ____D () C:\Documents and Settings\cacha\Mis documentos\Stock Photography
2015-04-07 17:54 - 2015-04-07 17:54 - 00065536 _____ () C:\WINDOWS\Minidump\Mini040715-01.dmp
2015-04-07 17:51 - 2015-04-28 08:21 - 205238272 _____ () C:\WINDOWS\MEMORY.DMP
2015-03-31 11:24 - 2015-03-31 11:24 - 00000737 _____ () C:\Documents and Settings\cacha\Escritorio\Acceso directo a Red - Logan, J..lnk

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-04-30 17:15 - 2012-03-10 14:50 - 00000000 ____D () C:\Documents and Settings\cacha\Escritorio
2015-04-30 17:14 - 2014-05-27 15:26 - 00000488 ____H () C:\WINDOWS\Tasks\User_Feed_Synchronization-{C604CD4C-5685-42BB-8F60-C2D813575826}.job
2015-04-30 17:00 - 2012-03-07 23:57 - 00077291 _____ () C:\WINDOWS\system32\nvModes.001
2015-04-30 17:00 - 2008-04-13 20:00 - 00002206 _____ () C:\WINDOWS\system32\wpa.dbl
2015-04-30 16:58 - 2014-03-08 10:15 - 00000222 _____ () C:\WINDOWS\Tasks\Notificación de inicio de sesión de fin de servicio de Microsoft Windows XP.job
2015-04-30 16:58 - 2013-12-17 14:43 - 00001098 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2015-04-30 16:58 - 2012-03-08 00:03 - 00078032 _____ (Absolute Software Corp.) C:\WINDOWS\system32\rpcnet.dll
2015-04-30 16:58 - 2012-03-07 23:55 - 00200942 _____ () C:\WINDOWS\system32\nvapps.xml
2015-04-30 16:58 - 2012-03-07 21:10 - 00000006 ____H () C:\WINDOWS\Tasks\SA.DAT
2015-04-30 16:58 - 2012-03-07 16:54 - 00000159 _____ () C:\WINDOWS\wiadebug.log
2015-04-30 16:58 - 2012-03-07 16:54 - 00000050 _____ () C:\WINDOWS\wiaservc.log
2015-04-30 16:58 - 2012-03-07 16:52 - 00017408 _____ () C:\WINDOWS\system32\rpcnetp.exe
2015-04-30 16:29 - 2012-03-10 14:50 - 00000192 ___SH () C:\Documents and Settings\cacha\ntuser.ini
2015-04-30 16:29 - 2012-03-07 21:10 - 00032404 _____ () C:\WINDOWS\SchedLgU.Txt
2015-04-30 16:29 - 2012-03-07 21:06 - 01513853 _____ () C:\WINDOWS\WindowsUpdate.log
2015-04-30 15:37 - 2013-12-17 14:43 - 00001102 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2015-04-30 15:32 - 2012-04-03 18:27 - 00000838 _____ () C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2015-04-30 13:09 - 2012-03-10 14:50 - 00000000 ____D () C:\Documents and Settings\cacha
2015-04-29 23:27 - 2013-09-24 14:22 - 00000000 ____D () C:\Documents and Settings\cacha\Datos de programa\Spotify
2015-04-29 16:21 - 2013-05-15 17:54 - 00000000 ___RD () C:\Documents and Settings\cacha\Mis documentos\Dropbox
2015-04-29 14:06 - 2012-03-10 14:50 - 00000000 ___HD () C:\Documents and Settings\cacha\Configuración local\Datos de programa
2015-04-29 14:06 - 2012-03-10 14:50 - 00000000 ____D () C:\Documents and Settings\cacha\Datos de programa
2015-04-29 14:06 - 2012-03-07 16:53 - 00000000 ____D () C:\Documents and Settings\All Users\Datos de programa
2015-04-29 14:06 - 2012-03-07 16:53 - 00000000 ____D () C:\Archivos de programa\Archivos comunes
2015-04-29 09:07 - 2013-05-15 17:54 - 00000995 _____ () C:\Documents and Settings\cacha\Escritorio\Dropbox.lnk
2015-04-29 09:07 - 2013-05-15 17:39 - 00000000 ____D () C:\Documents and Settings\cacha\Menú Inicio\Programas\Dropbox
2015-04-29 09:07 - 2013-05-15 17:38 - 00000000 ____D () C:\Documents and Settings\cacha\Datos de programa\Dropbox
2015-04-28 17:27 - 2012-03-10 18:19 - 00000000 ____D () C:\Documents and Settings\cacha\Datos de programa\BitTorrent
2015-04-28 09:26 - 2013-09-24 16:07 - 00000000 ____D () C:\Documents and Settings\cacha\Configuración local\Datos de programa\Spotify
2015-04-28 08:21 - 2013-12-22 09:15 - 00000000 ____D () C:\WINDOWS\Minidump
2015-04-27 18:10 - 2015-02-06 11:17 - 00000000 ____D () C:\Documents and Settings\cacha\Escritorio\The Translator's Tools
2015-04-27 13:39 - 2012-03-14 10:36 - 00000000 ____D () C:\Documents and Settings\cacha\Datos de programa\vlc
2015-04-26 12:35 - 2012-03-08 00:03 - 00078032 ____N (Absolute Software Corp.) C:\WINDOWS\system32\rpcnet.exe
2015-04-25 20:56 - 2012-04-04 23:33 - 00000000 ____D () C:\Documents and Settings\cacha\Mis documentos\My Shared Folder
2015-04-25 08:16 - 2014-02-28 23:20 - 00000000 ____D () C:\Archivos de programa\Mozilla Maintenance Service
2015-04-24 21:40 - 2012-03-07 16:53 - 00000000 ___RD () C:\Archivos de programa
2015-04-24 13:53 - 2012-03-12 22:52 - 00094720 _____ () C:\Documents and Settings\cacha\Configuración local\Datos de programa\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2015-04-24 08:20 - 2012-03-10 14:50 - 00000000 ____D () C:\Documents and Settings\cacha\Mis documentos
2015-04-24 08:20 - 2012-03-07 17:51 - 00000245 ___SH () C:\boot.ini
2015-04-23 19:59 - 2012-03-07 21:09 - 00000000 __SHD () C:\Documents and Settings\NetworkService
2015-04-23 19:58 - 2012-11-23 19:19 - 00000000 ____D () C:\Documents and Settings\cacha\Mis documentos\Mi Música
2015-04-23 08:00 - 2015-02-21 20:47 - 00000000 ___RD () C:\Documents and Settings\cacha\Mis documentos\Google Drive
2015-04-20 16:03 - 2014-04-16 23:59 - 00000000 ____D () C:\Documents and Settings\cacha\Mis documentos\Descargas
2015-04-18 16:20 - 2012-03-14 10:26 - 00000000 ____D () C:\Archivos de programa\Adobe
2015-04-18 16:19 - 2012-03-07 16:53 - 00000000 ____D () C:\Documents and Settings\All Users\Menú Inicio\Programas
2015-04-18 16:16 - 2012-03-07 16:53 - 00000000 ____D () C:\Documents and Settings\All Users\Escritorio
2015-04-18 10:39 - 2012-03-10 14:50 - 00000000 __SHD () C:\Documents and Settings\cacha\Configuración local\Archivos temporales de Internet
2015-04-18 08:23 - 2012-03-07 21:09 - 00000000 __SHD () C:\Documents and Settings\NetworkService\Configuración local\Archivos temporales de Internet
2015-04-17 23:16 - 2012-08-24 23:29 - 00000000 ____D () C:\Documents and Settings\All Users\Datos de programa\Skype
2015-04-17 23:15 - 2012-03-07 16:53 - 00000000 ____D () C:\Documents and Settings\All Users\Menú Inicio
2015-04-17 22:59 - 2014-05-12 13:24 - 00000000 ____D () C:\Documents and Settings\cacha\Menú Inicio\Programas\Amazon
2015-04-17 22:59 - 2014-05-12 13:23 - 00000000 ____D () C:\Archivos de programa\Amazon
2015-04-17 22:58 - 2012-03-10 14:50 - 00000000 ____D () C:\Documents and Settings\cacha\Menú Inicio\Programas
2015-04-17 22:29 - 2014-08-28 16:56 - 00000000 ____D () C:\Documents and Settings\cacha\Mis documentos\Dibujos low-res
2015-04-17 22:09 - 2012-03-07 21:10 - 00000000 __SHD () C:\Documents and Settings\LocalService
2015-04-17 22:08 - 2012-03-07 21:56 - 00000000 ____D () C:\Archivos de programa\InstallShield Installation Information
2015-04-17 21:44 - 2012-03-07 21:10 - 00000000 __SHD () C:\Documents and Settings\LocalService\Configuración local\Archivos temporales de Internet
2015-04-17 21:43 - 2013-08-17 12:32 - 00000000 ____D () C:\Documents and Settings\All Users\Datos de programa\Spybot - Search & Destroy
2015-04-17 21:27 - 2012-03-07 16:53 - 00000000 ____D () C:\Documents and Settings\Default User\Configuración local\Archivos temporales de Internet
2015-04-16 10:14 - 2015-01-20 15:02 - 00000000 ____D () C:\Documents and Settings\cacha\Configuración local\Datos de programa\Adobe
2015-04-15 18:12 - 2013-05-15 17:25 - 00000000 ____D () C:\Documents and Settings\cacha\Mis documentos\Mis imágenes
2015-04-15 16:11 - 2013-07-13 23:16 - 00000000 ____D () C:\WINDOWS\system32\MRT
2015-04-15 16:02 - 2012-03-10 00:53 - 125832184 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2015-04-15 16:01 - 2012-03-09 21:25 - 00000000 ____D () C:\Documents and Settings\All Users\Datos de programa\Microsoft Help
2015-04-15 13:39 - 2013-12-17 14:46 - 00001874 _____ () C:\Documents and Settings\All Users\Escritorio\Google Chrome.lnk
2015-04-15 11:33 - 2012-04-03 18:27 - 00778416 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerApp.exe
2015-04-15 11:33 - 2012-03-12 22:29 - 00142512 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerCPLApp.cpl
2015-04-13 11:50 - 2012-03-10 18:03 - 00000000 ____D () C:\Documents and Settings\cacha\Mis documentos\Mis escaneos
2015-04-10 14:48 - 2012-03-10 14:51 - 00000000 ____D () C:\Documents and Settings\cacha\Mis documentos\Directorio de intercambio Bluetooth
2015-04-08 15:00 - 2014-03-08 10:15 - 00000216 _____ () C:\WINDOWS\Tasks\Notificación mensual de fin de servicio de Microsoft Windows XP.job

==================== Files in the root of some directories =======

2015-04-15 21:40 - 2015-04-15 21:40 - 0000132 _____ () C:\Documents and Settings\cacha\Datos de programa\Prefs. de formato PNG de Adobe CS6
2012-03-12 22:52 - 2015-04-24 13:53 - 0094720 _____ () C:\Documents and Settings\cacha\Configuración local\Datos de programa\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2012-04-13 19:02 - 2012-04-13 19:02 - 0000134 _____ () C:\Documents and Settings\cacha\Configuración local\Datos de programa\fusioncache.dat

Some content of TEMP:
====================
C:\Documents and Settings\cacha\Configuración local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmp1nbvlu.dll
C:\Documents and Settings\cacha\Configuración local\Temp\swt-gdip-win32-3346.dll
C:\Documents and Settings\cacha\Configuración local\Temp\swt-win32-3346.dll


==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed

==================== End Of Log ============================

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 29-04-2015 01
Ran by cacha (administrator) on FLORNOTE on 30-04-2015 17:15:47
Running from C:\Documents and Settings\cacha\Escritorio
Loaded Profiles: cacha (Available profiles: cacha & Administrador & Invitado)
Platform: Microsoft Windows XP Professional Service Pack 3 (X86) OS Language: Español (alfabetización internacional)
Internet Explorer Version 8 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Broadcom Corporation.) C:\Archivos de programa\WIDCOMM\Bluetooth Software\bin\btwdins.exe
() C:\WINDOWS\system32\WLTRYSVC.EXE
(Dell Inc.) C:\WINDOWS\system32\BCMWLTRY.EXE
(IDT, Inc.) C:\Archivos de programa\IDT\XPV10_6147v005\WDM\stacsv.exe
(IDT, Inc.) C:\Archivos de programa\IDT\WDM\sttray.exe
(Andrea Electronics Corporation) C:\WINDOWS\system32\AESTFltr.exe
(Alps Electric Co., Ltd.) C:\Archivos de programa\DellTPad\Apoint.exe
(Creative Technology Ltd.) C:\WINDOWS\OEM13Mon.exe
(Dell Inc.) C:\WINDOWS\system32\WLTRAY.EXE
(ESET) C:\Archivos de programa\ESET\ESET NOD32 Antivirus\ekrn.exe
(Microsoft Corporation) C:\WINDOWS\system32\rundll32.exe
(Microsoft Corporation) C:\WINDOWS\system32\rundll32.exe
(Microsoft Corporation) C:\Archivos de programa\Microsoft Office\Office12\GrooveMonitor.exe
(Hewlett-Packard) C:\Archivos de programa\HP\HP Software Update\hpwuSchd2.exe
(Oracle Corporation) C:\Archivos de programa\Archivos comunes\Java\Java Update\jusched.exe
(ESET) C:\Archivos de programa\ESET\ESET NOD32 Antivirus\egui.exe
(Safer-Networking Ltd.) C:\Archivos de programa\Spybot - Search & Destroy 2\SDTray.exe
(Oracle Corporation) C:\Archivos de programa\Java\jre7\bin\jqs.exe
(Microsoft Corporation) C:\Archivos de programa\Windows Media Player\wmpnscfg.exe
(Spotify Ltd) C:\Documents and Settings\cacha\Datos de programa\Spotify\SpotifyWebHelper.exe
(Nalpeiron Ltd.) C:\WINDOWS\system32\NLSSRV32.EXE
(NVIDIA Corporation) C:\WINDOWS\system32\nvsvc32.exe
(Broadcom Corporation.) C:\Archivos de programa\WIDCOMM\Bluetooth Software\BTTray.exe
(Absolute Software Corp.) C:\WINDOWS\system32\rpcnet.exe
(Safer-Networking Ltd.) C:\Archivos de programa\Spybot - Search & Destroy 2\SDFSSvc.exe
(Alps Electric Co., Ltd.) C:\Archivos de programa\DellTPad\ApMsgFwd.exe
(Broadcom Corporation.) C:\Archivos de programa\WIDCOMM\Bluetooth Software\BTStackServer.exe
(Alps Electric Co., Ltd.) C:\Archivos de programa\DellTPad\hidfind.exe
(Alps Electric Co., Ltd.) C:\Archivos de programa\DellTPad\ApntEx.exe
(Safer-Networking Ltd.) C:\Archivos de programa\Spybot - Search & Destroy 2\SDUpdSvc.exe
(Microsoft Corporation) C:\Archivos de programa\Windows Media Player\wmpnetwk.exe
(Google Inc.) C:\Archivos de programa\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Archivos de programa\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Archivos de programa\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Archivos de programa\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Archivos de programa\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Archivos de programa\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Archivos de programa\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Archivos de programa\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Archivos de programa\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Archivos de programa\Microsoft Office\Office12\WINWORD.EXE
(Google Inc.) C:\Archivos de programa\Google\Chrome\Application\chrome.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [SysTrayApp] => C:\Archivos de programa\IDT\WDM\sttray.exe [483420 2009-02-20] (IDT, Inc.)
HKLM\...\Run: [AESTFltr] => C:\WINDOWS\system32\AESTFltr.exe [729088 2009-02-20] (Andrea Electronics Corporation)
HKLM\...\Run: [Apoint] => C:\Archivos de programa\DellTPad\Apoint.exe [217088 2009-03-13] (Alps Electric Co., Ltd.)
HKLM\...\Run: [OEM13Mon.exe] => C:\WINDOWS\OEM13Mon.exe [36864 2008-01-08] (Creative Technology Ltd.)
HKLM\...\Run: [Broadcom Wireless Manager UI] => C:\WINDOWS\system32\WLTRAY.exe [2220032 2008-10-24] (Dell Inc.)
HKLM\...\Run: [NvCplDaemon] => RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
HKLM\...\Run: [nwiz] => nwiz.exe /installquiet
HKLM\...\Run: [NVHotkey] => rundll32.exe nvHotkey.dll,Start
HKLM\...\Run: [NvMediaCenter] => RunDLL32.exe NvMCTray.dll,NvTaskbarInit
HKLM\...\Run: [DELL Webcam Manager] => C:\Archivos de programa\Dell\Dell Webcam Manager\DellWMgr.exe [118784 2007-07-27] (Creative Technology Ltd.)
HKLM\...\Run: [GrooveMonitor] => C:\Archivos de programa\Microsoft Office\Office12\GrooveMonitor.exe [30040 2009-02-26] (Microsoft Corporation)
HKLM\...\Run: [HP Software Update] => C:\Archivos de programa\HP\HP Software Update\HPWuSchd2.exe [49152 2007-10-14] (Hewlett-Packard)
HKLM\...\Run: [KernelFaultCheck] => %systemroot%\system32\dumprep 0 -k
HKLM\...\Run: [SunJavaUpdateSched] => C:\Archivos de programa\Archivos comunes\Java\Java Update\jusched.exe [271744 2014-09-26] (Oracle Corporation)
HKLM\...\Run: [egui] => C:\Archivos de programa\ESET\ESET NOD32 Antivirus\egui.exe [5046472 2014-09-30] (ESET)
HKLM\...\Run: [SDTray] => C:\Archivos de programa\Spybot - Search & Destroy 2\SDTray.exe [4101576 2014-06-24] (Safer-Networking Ltd.)
Winlogon\Notify\SDWinLogon: SDWinLogon.dll [X]
HKU\S-1-5-21-1844237615-1767777339-1417001333-1003\...\Run: [AdobeBridge] => [X]
HKU\S-1-5-21-1844237615-1767777339-1417001333-1003\...\Run: [WMPNSCFG] => C:\Archivos de programa\Windows Media Player\WMPNSCFG.exe [204800 2009-02-04] (Microsoft Corporation)
HKU\S-1-5-21-1844237615-1767777339-1417001333-1003\...\Run: [Spotify Web Helper] => C:\Documents and Settings\cacha\Datos de programa\Spotify\SpotifyWebHelper.exe [1959992 2015-03-11] (Spotify Ltd)
HKU\S-1-5-21-1844237615-1767777339-1417001333-1003\...\Run: [Hide.me] => [X]
HKU\S-1-5-18\...\Run: [GoogleChromeAutoLaunch_A2E3159C0817FADA26422CFDCE0E82F1] => C:\Archivos de programa\Google\Chrome\Application\chrome.exe [812872 2015-04-13] (Google Inc.)
Startup: C:\Documents and Settings\All Users\Menú Inicio\Programas\Inicio\BTTray.lnk [2012-03-07]
ShortcutTarget: BTTray.lnk -> C:\Archivos de programa\WIDCOMM\Bluetooth Software\BTTray.exe (Broadcom Corporation.)
ShellIconOverlayIdentifiers: ["DropboxExt1"] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Documents and Settings\cacha\Datos de programa\Dropbox\bin\DropboxExt.25.dll [2015-02-10] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt2"] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Documents and Settings\cacha\Datos de programa\Dropbox\bin\DropboxExt.25.dll [2015-02-10] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt3"] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Documents and Settings\cacha\Datos de programa\Dropbox\bin\DropboxExt.25.dll [2015-02-10] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt4"] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Documents and Settings\cacha\Datos de programa\Dropbox\bin\DropboxExt.25.dll [2015-02-10] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt5"] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Documents and Settings\cacha\Datos de programa\Dropbox\bin\DropboxExt.25.dll [2015-02-10] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt6"] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Documents and Settings\cacha\Datos de programa\Dropbox\bin\DropboxExt.25.dll [2015-02-10] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt7"] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Documents and Settings\cacha\Datos de programa\Dropbox\bin\DropboxExt.25.dll [2015-02-10] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt8"] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Documents and Settings\cacha\Datos de programa\Dropbox\bin\DropboxExt.25.dll [2015-02-10] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [GDriveBlacklistedOverlay] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Archivos de programa\Google\Drive\googledrivesync32.dll [2015-02-19] (Google)
ShellIconOverlayIdentifiers: [GDriveSharedEditOverlay] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44} => C:\Archivos de programa\Google\Drive\googledrivesync32.dll [2015-02-19] (Google)
ShellIconOverlayIdentifiers: [GDriveSharedViewOverlay] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D43} => C:\Archivos de programa\Google\Drive\googledrivesync32.dll [2015-02-19] (Google)
ShellIconOverlayIdentifiers: [GDriveSyncedOverlay] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Archivos de programa\Google\Drive\googledrivesync32.dll [2015-02-19] (Google)
ShellIconOverlayIdentifiers: [GDriveSyncingOverlay] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Archivos de programa\Google\Drive\googledrivesync32.dll [2015-02-19] (Google)
ShellIconOverlayIdentifiers: [Groove Explorer Icon Overlay 1 (GFS Unread Stub)] -> {99FD978C-D287-4F50-827F-B2C658EDA8E7} => C:\Archivos de programa\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [Groove Explorer Icon Overlay 2 (GFS Stub)] -> {AB5C5600-7E6E-4B06-9197-9ECEF74D31CC} => C:\Archivos de programa\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [Groove Explorer Icon Overlay 2.5 (GFS Unread Folder)] -> {920E6DB1-9907-4370-B3A0-BAFC03D81399} => C:\Archivos de programa\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [Groove Explorer Icon Overlay 3 (GFS Folder)] -> {16F3DD56-1AF5-4347-846D-7C10C4192619} => C:\Archivos de programa\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [Groove Explorer Icon Overlay 4 (GFS Unread Mark)] -> {2916C86E-86A6-43FE-8112-43ABE6BF8DCC} => C:\Archivos de programa\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26] (Microsoft Corporation)
BootExecute: autocheck autochk * sdnclean.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
ProxyServer: [S-1-5-21-1844237615-1767777339-1417001333-1003] => localhost:8080
HKU\S-1-5-21-1844237615-1767777339-1417001333-1003\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com.ar/
HKU\S-1-5-21-1844237615-1767777339-1417001333-1003\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://es.msn.com/?ocid=iehp
URLSearchHook: HKU\S-1-5-21-1844237615-1767777339-1417001333-1003 - BittorrentBar_ES Toolbar - {ad06fb5f-fef7-4a84-8c58-dca34f8e3d36} - No File
URLSearchHook: HKU\S-1-5-21-1844237615-1767777339-1417001333-1003 - BitTorrentBar Toolbar - {88c7f2aa-f93f-432c-8f0e-b7d85967a527} - No File
SearchScopes: HKU\S-1-5-21-1844237615-1767777339-1417001333-1003 -> {3E3A04E4-65A7-4BF0-BE56-A25D6C594ACF} URL = http://websearch.ask.com/redirect?client=ie&tb=ORJ&o=100000027&src=crm&q={searchTerms}&locale=es_ES&apn_ptnrs=^U3&apn_dtid=^OSJ000^YY^AR&apn_uid=29B3F03A-E8F4-4364-BB2F-056CD38F361A&apn_sauid=74974A9E-826B-490A-A51C-B8A407B7C46D
BHO: No Name -> {5C255C8A-E604-49b4-9D64-90988571CECB} -> No File
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Archivos de programa\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26] (Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Archivos de programa\Java\jre7\bin\ssv.dll [2014-11-04] (Oracle Corporation)
BHO: BitTorrentBar Toolbar -> {88c7f2aa-f93f-432c-8f0e-b7d85967a527} -> No File
BHO: Windows Live Aplicación auxiliar de inicio de sesión -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Archivos de programa\Archivos comunes\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-01-22] (Microsoft Corporation)
BHO: BittorrentBar_ES Toolbar -> {ad06fb5f-fef7-4a84-8c58-dca34f8e3d36} -> No File
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Archivos de programa\Java\jre7\bin\jp2ssv.dll [2014-11-04] (Oracle Corporation)
Toolbar: HKLM - BittorrentBar_ES Toolbar - {ad06fb5f-fef7-4a84-8c58-dca34f8e3d36} - No File
Toolbar: HKLM - BitTorrentBar Toolbar - {88c7f2aa-f93f-432c-8f0e-b7d85967a527} - No File
Toolbar: HKU\S-1-5-21-1844237615-1767777339-1417001333-1003 -> BitTorrentBar Toolbar - {88C7F2AA-F93F-432C-8F0E-B7D85967A527} - No File
Toolbar: HKU\S-1-5-21-1844237615-1767777339-1417001333-1003 -> BittorrentBar_ES Toolbar - {AD06FB5F-FEF7-4A84-8C58-DCA34F8E3D36} - No File
Toolbar: HKU\S-1-5-21-1844237615-1767777339-1417001333-1003 -> No Name - {D4027C7F-154A-4066-A1AD-4243D8127440} - No File
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.7.0/jinstall-1_7_0_06-windows-i586.cab
DPF: {CAFEEFAC-0014-0002-0008-ABCDEFFEDCBA} http://java.sun.com/update/1.4.2/jinstall-1_4_2_08-windows-i586.cab
DPF: {CAFEEFAC-0017-0000-0000-ABCDEFFEDCBA} http://java.sun.com/update/1.7.0/jinstall-1_7_0-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.7.0/jinstall-1_7_0_06-windows-i586.cab
Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Archivos de programa\Microsoft Office\Office12\GrooveSystemServices.dll [2009-02-26] (Microsoft Corporation)
Handler: http\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Archivos de programa\Archivos comunes\System\Ole DB\MSDAIPP.DLL [2009-02-26] (Microsoft Corporation)
Handler: http\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Archivos de programa\Archivos comunes\System\Ole DB\MSDAIPP.DLL [2009-02-26] (Microsoft Corporation)
Handler: https\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Archivos de programa\Archivos comunes\System\Ole DB\MSDAIPP.DLL [2009-02-26] (Microsoft Corporation)
Handler: https\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Archivos de programa\Archivos comunes\System\Ole DB\MSDAIPP.DLL [2009-02-26] (Microsoft Corporation)
Handler: ipp\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Archivos de programa\Archivos comunes\System\Ole DB\MSDAIPP.DLL [2009-02-26] (Microsoft Corporation)
Handler: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\Archivos de programa\Windows Live\Messenger\msgrapp.14.0.8117.0416.dll [2010-04-16] (Microsoft Corporation)
Handler: ms-help - {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Archivos de programa\Archivos comunes\Microsoft Shared\Help\hxds.dll [2013-09-25] (Microsoft Corporation)
Handler: msdaipp\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Archivos de programa\Archivos comunes\System\Ole DB\MSDAIPP.DLL [2009-02-26] (Microsoft Corporation)
Handler: msdaipp\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Archivos de programa\Archivos comunes\System\Ole DB\MSDAIPP.DLL [2009-02-26] (Microsoft Corporation)
Handler: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\Archivos de programa\Windows Live\Messenger\msgrapp.14.0.8117.0416.dll [2010-04-16] (Microsoft Corporation)
Filter: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\WINDOWS\system32\urlmon.dll [2014-03-06] (Microsoft Corporation)
Filter: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\WINDOWS\system32\urlmon.dll [2014-03-06] (Microsoft Corporation)
Hosts: Hosts file not detected in the default directory
Tcpip\Parameters: [DhcpNameServer] 108.168.162.137 8.8.4.4

FireFox:
========
FF ProfilePath: C:\Documents and Settings\cacha\Datos de programa\Mozilla\Firefox\Profiles\8webyrm2.default
FF Homepage: hxxp://www.google.com.ar/
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF32_17_0_0_169.dll [2015-04-15] ()
FF Plugin: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Archivos de programa\Tracker Software\PDF Viewer\npPDFXCviewNPPlugin.dll [2013-06-18] (Tracker Software Products (Canada) Ltd.)
FF Plugin: @java.com/DTPlugin,version=10.71.2 -> C:\Archivos de programa\Java\jre7\bin\dtplugin\npDeployJava1.dll [2014-11-04] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.71.2 -> C:\Archivos de programa\Java\jre7\bin\plugin2\npjp2.dll [2014-11-04] (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Archivos de programa\Microsoft Silverlight\5.1.30514.0\npctrl.dll [2014-05-13] ( Microsoft Corporation)
FF Plugin: @microsoft.com/WPF,version=3.5 -> c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll [2008-07-29] (Microsoft Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Archivos de programa\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-02-06] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Archivos de programa\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-02-06] (Google Inc.)
FF Plugin: @tracker-software.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Archivos de programa\Tracker Software\PDF Viewer\npPDFXCviewNPPlugin.dll [2013-06-18] (Tracker Software Products (Canada) Ltd.)
FF Plugin: @videolan.org/vlc,version=2.0.6 -> C:\Archivos de programa\VideoLAN\VLC\npvlc.dll [2014-07-22] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.1.2 -> C:\Archivos de programa\VideoLAN\VLC\npvlc.dll [2014-07-22] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.1.5 -> C:\Archivos de programa\VideoLAN\VLC\npvlc.dll [2014-07-22] (VideoLAN)
FF Plugin HKU\S-1-5-21-1844237615-1767777339-1417001333-1003: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Archivos de programa\Tracker Software\PDF Viewer\npPDFXCviewNPPlugin.dll [2013-06-18] (Tracker Software Products (Canada) Ltd.)
FF Plugin HKU\S-1-5-21-1844237615-1767777339-1417001333-1003: samsung.com/SamsungLinkPCPlugin -> C:\Archivos de programa\Samsung\Samsung Link\utils\npSamsungLinkPCPlugin.dll No File
FF Plugin ProgramFiles/Appdata: C:\Archivos de programa\mozilla firefox\plugins\np-mswmp.dll [2007-04-10] (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Archivos de programa\mozilla firefox\plugins\npPDFXCviewNPPlugin.dll [2013-06-18] (Tracker Software Products (Canada) Ltd.)
FF SearchPlugin: C:\Archivos de programa\mozilla firefox\browser\searchplugins\creativecommons.xml [2014-07-22]
FF SearchPlugin: C:\Archivos de programa\mozilla firefox\browser\searchplugins\mercadolibre-ar.xml [2014-07-22]
FF Extension: FlashGot - C:\Documents and Settings\cacha\Datos de programa\Mozilla\Firefox\Profiles\8webyrm2.default\Extensions\{19503e42-ca3c-4c27-b1e2-9cdb2170ee34}.xpi [2015-01-21]
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
FF Extension: Microsoft .NET Framework Assistant - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension [2012-03-17]
FF HKLM\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Archivos de programa\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird
FF Extension: ESET Smart Security Extension - C:\Archivos de programa\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird [2015-01-25]

Chrome:
=======
CHR HomePage: Default ->
CHR Profile: C:\Documents and Settings\cacha\Configuración local\Datos de programa\Google\Chrome\User Data\Default
CHR Extension: (Google Drive) - C:\Documents and Settings\cacha\Configuración local\Datos de programa\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-02-22]
CHR Extension: (Easy Clock) - C:\Documents and Settings\cacha\Configuración local\Datos de programa\Google\Chrome\User Data\Default\Extensions\dplbpgapoedppajbikieafefmcceaagn [2014-08-26]
CHR Extension: (BetaFish Adblocker) - C:\Documents and Settings\cacha\Configuración local\Datos de programa\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2014-05-17]
CHR Extension: (Hola Better Internet) - C:\Documents and Settings\cacha\Configuración local\Datos de programa\Google\Chrome\User Data\Default\Extensions\gkojfkhlekighikafcpjkiklfbnlmeio [2014-07-07]
CHR Extension: (Pin It Button) - C:\Documents and Settings\cacha\Configuración local\Datos de programa\Google\Chrome\User Data\Default\Extensions\gpdjojdkbbmdfjfahjcgigfpmkopogic [2014-08-26]
CHR Extension: (Eye Dropper) - C:\Documents and Settings\cacha\Configuración local\Datos de programa\Google\Chrome\User Data\Default\Extensions\hmdcmlfkchdmnmnmheododdhjedfccka [2014-11-11]
CHR Extension: (Kindle Cloud Reader) - C:\Documents and Settings\cacha\Configuración local\Datos de programa\Google\Chrome\User Data\Default\Extensions\icdipabjmbhpdkjaihfjoikhjjeneebd [2014-05-17]
CHR Extension: (StayFocusd) - C:\Documents and Settings\cacha\Configuración local\Datos de programa\Google\Chrome\User Data\Default\Extensions\laankejkbhbdhmipfmgcngdelahlfoji [2014-10-11]
CHR Extension: (Chrome Hotword Shared Module) - C:\Documents and Settings\cacha\Configuración local\Datos de programa\Google\Chrome\User Data\Default\Extensions\lccekmodgklaepjeofjdjpbminllajkg [2015-04-15]
CHR Extension: (Google Dictionary (by Google)) - C:\Documents and Settings\cacha\Configuración local\Datos de programa\Google\Chrome\User Data\Default\Extensions\mgijmajocgfcbeboacabfgobmjgjcoja [2014-08-26]
CHR Extension: (Pocket) - C:\Documents and Settings\cacha\Configuración local\Datos de programa\Google\Chrome\User Data\Default\Extensions\mjcnijlhddpbdemagnpefmlkjdagkogk [2015-02-25]
CHR Extension: (feedly) - C:\Documents and Settings\cacha\Configuración local\Datos de programa\Google\Chrome\User Data\Default\Extensions\ndhinffkekpekljifjkkkkkhopnjodja [2014-11-11]
CHR Extension: (Do It (Tomorrow)) - C:\Documents and Settings\cacha\Configuración local\Datos de programa\Google\Chrome\User Data\Default\Extensions\nfagjoblnoeagfhfhohcdklnddjaiglo [2014-10-29]
CHR Extension: (Google Wallet) - C:\Documents and Settings\cacha\Configuración local\Datos de programa\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-12-17]
CHR Extension: (Sidekick by HubSpot) - C:\Documents and Settings\cacha\Configuración local\Datos de programa\Google\Chrome\User Data\Default\Extensions\oiiaigjnkhngdbnoookogelabohpglmd [2014-07-05]
CHR Extension: (Evernote Web Clipper) - C:\Documents and Settings\cacha\Configuración local\Datos de programa\Google\Chrome\User Data\Default\Extensions\pioclpoplcdbaefihamjohnefbikjilc [2014-09-09]
CHR Extension: (Writer) - C:\Documents and Settings\cacha\Configuración local\Datos de programa\Google\Chrome\User Data\Default\Extensions\pnengefjfhgcceajaepbjhanoojifmog [2014-11-11]
CHR HKLM\...\Chrome\Extension: [lhpgolofjlpnkdafbgejgnclbjnpgfee] - C:\DOCUME~1\cacha\CONFIG~1\Temp\ccex.crx [Not Found]
CHR HKLM\...\Chrome\Extension: [mhfdcmehmjcclgopdodkjdicohagipid] - C:\Documents and Settings\cacha\Configuración local\Datos de programa\CRE\mhfdcmehmjcclgopdodkjdicohagipid.crx [2012-04-17]
CHR HKU\S-1-5-21-1844237615-1767777339-1417001333-1003\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [apdfllckaahabafndbhieahigkjlhalf] - C:\DOCUME~1\cacha\CONFIG~1\DATOSD~1\Google\Drive\user_default\apdfllckaahabafndbhieahigkjlhalf_live.crx [2015-02-21]
CHR HKU\S-1-5-21-1844237615-1767777339-1417001333-1003\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh] - https://clients2.google.com/service/update2/crx
CHR HKU\S-1-5-21-1844237615-1767777339-1417001333-1003\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [mhfdcmehmjcclgopdodkjdicohagipid] - C:\Documents and Settings\cacha\Configuración local\Datos de programa\CRE\mhfdcmehmjcclgopdodkjdicohagipid.crx [2012-04-17]

========================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 btwdins; C:\Archivos de programa\WIDCOMM\Bluetooth Software\bin\btwdins.exe [264800 2008-09-17] (Broadcom Corporation.)
R2 ekrn; C:\Archivos de programa\ESET\ESET NOD32 Antivirus\ekrn.exe [1343920 2014-09-30] (ESET)
S2 gupdate; C:\Archivos de programa\Google\Update\GoogleUpdate.exe [116648 2013-12-17] (Google Inc.)
S3 gupdatem; C:\Archivos de programa\Google\Update\GoogleUpdate.exe [116648 2013-12-17] (Google Inc.)
R3 hpqcxs08; C:\Archivos de programa\HP\Digital Imaging\bin\hpqcxs08.dll [217088 2007-11-06] (Hewlett-Packard Co.) [File not signed]
R2 hpqddsvc; C:\Archivos de programa\HP\Digital Imaging\bin\hpqddsvc.dll [139264 2007-11-06] (Hewlett-Packard Co.) [File not signed]
S3 IDriverT; C:\Archivos de programa\Archivos comunes\InstallShield\Driver\1050\Intel 32\IDriverT.exe [73728 2004-10-22] (Macrovision Corporation) [File not signed]
R2 JavaQuickStarterService; C:\Archivos de programa\Java\jre7\bin\jqs.exe [182696 2014-11-04] (Oracle Corporation)
S3 Microsoft Office Groove Audit Service; C:\Archivos de programa\Microsoft Office\Office12\GrooveAuditService.exe [64856 2009-02-26] (Microsoft Corporation)
S3 MozillaMaintenance; C:\Archivos de programa\Mozilla Maintenance Service\maintenanceservice.exe [148080 2015-04-24] (Mozilla Foundation)
R2 Net Driver HPZ12; C:\WINDOWS\system32\HPZinw12.dll [43520 2006-11-08] (Hewlett-Packard) [File not signed]
S3 odserv; C:\Archivos de programa\Archivos comunes\Microsoft Shared\OFFICE12\ODSERV.EXE [440696 2011-07-20] (Microsoft Corporation)
S3 ose; C:\Archivos de programa\Archivos comunes\Microsoft Shared\Source Engine\OSE.EXE [145184 2006-10-26] (Microsoft Corporation)
R2 Pml Driver HPZ12; C:\WINDOWS\system32\HPZipm12.dll [53248 2006-11-08] (Hewlett-Packard) [File not signed]
R2 rpcnet; C:\WINDOWS\system32\rpcnet.exe [78032 2015-04-26] (Absolute Software Corp.)
R2 SDScannerService; C:\Archivos de programa\Spybot - Search & Destroy 2\SDFSSvc.exe [1738168 2014-06-24] (Safer-Networking Ltd.)
R2 SDUpdateService; C:\Archivos de programa\Spybot - Search & Destroy 2\SDUpdSvc.exe [2088408 2014-06-27] (Safer-Networking Ltd.)
S2 SDWSCService; C:\Archivos de programa\Spybot - Search & Destroy 2\SDWSCSvc.exe [171928 2014-04-25] (Safer-Networking Ltd.)
R2 STacSV; c:\archivos de programa\idt\xpv10_6147v005\wdm\stacsv.exe [249938 2009-02-20] (IDT, Inc.)
R2 wltrysvc; C:\WINDOWS\System32\bcmwltry.exe [1961984 2008-10-24] (Dell Inc.) [File not signed]
R2 WMPNetworkSvc; C:\Archivos de programa\Windows Media Player\WMPNetwk.exe [916480 2009-02-04] (Microsoft Corporation)

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R3 AESTAud; C:\WINDOWS\System32\drivers\AESTAud.sys [112512 2009-02-20] (Andrea Electronics Corporation)
R3 BCM43XX; C:\WINDOWS\System32\DRIVERS\bcmwl5.sys [1287552 2008-10-24] (Broadcom Corporation)
R3 btaudio; C:\WINDOWS\System32\drivers\btaudio.sys [539640 2008-07-26] (Broadcom Corporation.)
R3 BTDriver; C:\WINDOWS\System32\DRIVERS\btport.sys [37424 2008-07-26] (Broadcom Corporation.)
R3 BTKRNL; C:\WINDOWS\System32\DRIVERS\btkrnl.sys [879832 2008-07-29] (Broadcom Corporation.)
R3 BTWDNDIS; C:\WINDOWS\System32\DRIVERS\btwdndis.sys [156816 2008-07-29] (Broadcom Corporation.)
R3 btwhid; C:\WINDOWS\System32\DRIVERS\btwhid.sys [55352 2008-07-26] (Broadcom Corporation.)
R3 btwmodem; C:\WINDOWS\System32\DRIVERS\btwmodem.sys [37280 2008-07-26] (Broadcom Corporation.)
R3 BTWUSB; C:\WINDOWS\System32\Drivers\btwusb.sys [74688 2008-07-26] (Broadcom Corporation.)
S3 CCDECODE; C:\WINDOWS\System32\DRIVERS\CCDECODE.sys [17024 2008-04-13] (Microsoft Corporation)
R1 eamon; C:\WINDOWS\System32\DRIVERS\eamon.sys [185688 2014-09-30] (ESET)
R1 ehdrv; C:\WINDOWS\System32\DRIVERS\ehdrv.sys [135296 2014-09-30] (ESET)
R1 epfwtdir; C:\WINDOWS\System32\DRIVERS\epfwtdir.sys [118768 2014-09-30] (ESET)
S3 HPZid412; C:\WINDOWS\System32\DRIVERS\HPZid412.sys [49920 2007-10-30] (HP)
S3 HPZipr12; C:\WINDOWS\System32\DRIVERS\HPZipr12.sys [16496 2007-10-30] (HP)
S3 HPZius12; C:\WINDOWS\System32\DRIVERS\HPZius12.sys [21568 2007-10-30] (HP)
S3 NdisIP; C:\WINDOWS\System32\DRIVERS\NdisIP.sys [10880 2008-04-13] (Microsoft Corporation)
R3 O2MDGRDR; C:\WINDOWS\System32\DRIVERS\o2mdg.sys [58144 2009-03-19] (O2Micro )
R3 O2SDGRDR; C:\WINDOWS\System32\DRIVERS\o2sdg.sys [41376 2009-02-24] (O2Micro )
R3 OEM13Afx; C:\WINDOWS\system32\Drivers\OEM13Afx.sys [141376 2007-06-08] (Creative Technology Ltd.)
R3 OEM13Vfx; C:\WINDOWS\System32\DRIVERS\OEM13Vfx.sys [7424 2007-03-05] (EyePower Games Pte. Ltd.)
R3 OEM13Vid; C:\WINDOWS\System32\DRIVERS\OEM13Vid.sys [235840 2008-05-29] (Creative Technology Ltd.)
R3 STHDA; C:\WINDOWS\System32\drivers\sthda.sys [1548339 2009-02-20] (IDT, Inc.)
S3 vulfnths; C:\WINDOWS\System32\Drivers\vulfnth.sys [6912 2003-08-04] (VIA Technologies, Inc.) [File not signed]
S3 vulfntrs; C:\WINDOWS\System32\Drivers\vulfntr.sys [11392 2003-08-04] (VIA Technologies, Inc.) [File not signed]
S0 cerc6; No ImagePath
S3 CrystalSysInfo; \??\C:\Archivos de programa\MediaCoder\SysInfo.sys [X]
S3 GenericMount; system32\DRIVERS\GenericMount.sys [X]
S4 IntelIde; No ImagePath
U2 V2iMount; No ImagePath
U1 WS2IFSL; No ImagePath

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-04-30 17:15 - 2015-04-30 17:16 - 00030070 _____ () C:\Documents and Settings\cacha\Escritorio\FRST.txt
2015-04-30 17:11 - 2015-04-30 17:15 - 00000000 ____D () C:\FRST
2015-04-30 17:09 - 2015-04-30 17:09 - 01140736 _____ (Farbar) C:\Documents and Settings\cacha\Escritorio\FRST.exe
2015-04-30 13:22 - 2015-04-30 13:22 - 00012285 _____ () C:\Documents and Settings\cacha\Escritorio\Scan Results.150430-1322.txt
2015-04-28 08:21 - 2015-04-28 08:21 - 00065536 _____ () C:\WINDOWS\Minidump\Mini042815-01.dmp
2015-04-24 19:11 - 2015-04-24 19:13 - 00000000 ____D () C:\Archivos de programa\Mozilla Firefox
2015-04-24 08:20 - 2015-04-24 08:20 - 00000000 ____D () C:\Documents and Settings\cacha\Mis documentos\ProcAlyzer Dumps
2015-04-23 19:59 - 2015-04-23 19:59 - 00000000 ___RD () C:\Documents and Settings\NetworkService\Mis documentos\Mi música
2015-04-23 19:59 - 2015-04-23 19:59 - 00000000 ____D () C:\Documents and Settings\NetworkService\Mis documentos
2015-04-20 15:41 - 2015-04-30 00:06 - 00013312 ____H () C:\Documents and Settings\cacha\Escritorio\photothumb.db
2015-04-18 16:17 - 2015-04-18 16:18 - 00000000 ____D () C:\Documents and Settings\cacha\Escritorio\Para leer
2015-04-18 16:15 - 2015-04-18 16:16 - 00000000 ____D () C:\Documents and Settings\cacha\Escritorio\Art in Translation texts
2015-04-17 22:09 - 2015-04-17 22:09 - 00000000 ____D () C:\Documents and Settings\LocalService\Menú Inicio\Programas
2015-04-17 22:09 - 2015-04-17 22:09 - 00000000 ____D () C:\Documents and Settings\LocalService\Menú Inicio
2015-04-17 22:08 - 2015-04-17 22:08 - 00000000 ____D () C:\Archivos de programa\Asoftech
2015-04-17 21:44 - 2015-04-30 17:00 - 00000658 _____ () C:\WINDOWS\Tasks\Check for updates (Spybot - Search & Destroy).job
2015-04-17 21:44 - 2015-04-17 21:44 - 00001905 _____ () C:\Documents and Settings\All Users\Menú Inicio\Programas\Spybot-S&D Start Center.lnk
2015-04-17 21:44 - 2015-04-17 21:44 - 00001899 _____ () C:\Documents and Settings\All Users\Escritorio\Spybot-S&D Start Center.lnk
2015-04-17 21:44 - 2015-04-17 21:44 - 00000630 _____ () C:\WINDOWS\Tasks\Refresh immunization (Spybot - Search & Destroy).job
2015-04-17 21:44 - 2015-04-17 21:44 - 00000460 _____ () C:\WINDOWS\Tasks\Scan the system (Spybot - Search & Destroy).job
2015-04-17 21:44 - 2015-04-17 21:44 - 00000000 ____D () C:\Documents and Settings\All Users\Menú Inicio\Programas\Spybot - Search & Destroy 2
2015-04-17 21:43 - 2015-04-17 22:10 - 00000000 ____D () C:\Archivos de programa\Spybot - Search & Destroy 2
2015-04-17 21:43 - 2013-09-20 10:49 - 00018968 _____ (Safer Networking Limited) C:\WINDOWS\system32\sdnclean.exe
2015-04-17 21:28 - 2012-07-27 06:45 - 00000102 _____ () C:\medicina.cmd
2015-04-16 19:23 - 2015-04-18 17:31 - 00000000 ____D () C:\Documents and Settings\cacha\Mis documentos\pinguino
2015-04-15 21:40 - 2015-04-15 21:40 - 00000132 _____ () C:\Documents and Settings\cacha\Datos de programa\Prefs. de formato PNG de Adobe CS6
2015-04-09 21:54 - 2015-04-10 16:08 - 00000000 ____D () C:\Documents and Settings\cacha\Mis documentos\Stock Photography
2015-04-07 17:54 - 2015-04-07 17:54 - 00065536 _____ () C:\WINDOWS\Minidump\Mini040715-01.dmp
2015-04-07 17:51 - 2015-04-28 08:21 - 205238272 _____ () C:\WINDOWS\MEMORY.DMP
2015-03-31 11:24 - 2015-03-31 11:24 - 00000737 _____ () C:\Documents and Settings\cacha\Escritorio\Acceso directo a Red - Logan, J..lnk

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-04-30 17:15 - 2012-03-10 14:50 - 00000000 ____D () C:\Documents and Settings\cacha\Escritorio
2015-04-30 17:14 - 2014-05-27 15:26 - 00000488 ____H () C:\WINDOWS\Tasks\User_Feed_Synchronization-{C604CD4C-5685-42BB-8F60-C2D813575826}.job
2015-04-30 17:00 - 2012-03-07 23:57 - 00077291 _____ () C:\WINDOWS\system32\nvModes.001
2015-04-30 17:00 - 2008-04-13 20:00 - 00002206 _____ () C:\WINDOWS\system32\wpa.dbl
2015-04-30 16:58 - 2014-03-08 10:15 - 00000222 _____ () C:\WINDOWS\Tasks\Notificación de inicio de sesión de fin de servicio de Microsoft Windows XP.job
2015-04-30 16:58 - 2013-12-17 14:43 - 00001098 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2015-04-30 16:58 - 2012-03-08 00:03 - 00078032 _____ (Absolute Software Corp.) C:\WINDOWS\system32\rpcnet.dll
2015-04-30 16:58 - 2012-03-07 23:55 - 00200942 _____ () C:\WINDOWS\system32\nvapps.xml
2015-04-30 16:58 - 2012-03-07 21:10 - 00000006 ____H () C:\WINDOWS\Tasks\SA.DAT
2015-04-30 16:58 - 2012-03-07 16:54 - 00000159 _____ () C:\WINDOWS\wiadebug.log
2015-04-30 16:58 - 2012-03-07 16:54 - 00000050 _____ () C:\WINDOWS\wiaservc.log
2015-04-30 16:58 - 2012-03-07 16:52 - 00017408 _____ () C:\WINDOWS\system32\rpcnetp.exe
2015-04-30 16:29 - 2012-03-10 14:50 - 00000192 ___SH () C:\Documents and Settings\cacha\ntuser.ini
2015-04-30 16:29 - 2012-03-07 21:10 - 00032404 _____ () C:\WINDOWS\SchedLgU.Txt
2015-04-30 16:29 - 2012-03-07 21:06 - 01513853 _____ () C:\WINDOWS\WindowsUpdate.log
2015-04-30 15:37 - 2013-12-17 14:43 - 00001102 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2015-04-30 15:32 - 2012-04-03 18:27 - 00000838 _____ () C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2015-04-30 13:09 - 2012-03-10 14:50 - 00000000 ____D () C:\Documents and Settings\cacha
2015-04-29 23:27 - 2013-09-24 14:22 - 00000000 ____D () C:\Documents and Settings\cacha\Datos de programa\Spotify
2015-04-29 16:21 - 2013-05-15 17:54 - 00000000 ___RD () C:\Documents and Settings\cacha\Mis documentos\Dropbox
2015-04-29 14:06 - 2012-03-10 14:50 - 00000000 ___HD () C:\Documents and Settings\cacha\Configuración local\Datos de programa
2015-04-29 14:06 - 2012-03-10 14:50 - 00000000 ____D () C:\Documents and Settings\cacha\Datos de programa
2015-04-29 14:06 - 2012-03-07 16:53 - 00000000 ____D () C:\Documents and Settings\All Users\Datos de programa
2015-04-29 14:06 - 2012-03-07 16:53 - 00000000 ____D () C:\Archivos de programa\Archivos comunes
2015-04-29 09:07 - 2013-05-15 17:54 - 00000995 _____ () C:\Documents and Settings\cacha\Escritorio\Dropbox.lnk
2015-04-29 09:07 - 2013-05-15 17:39 - 00000000 ____D () C:\Documents and Settings\cacha\Menú Inicio\Programas\Dropbox
2015-04-29 09:07 - 2013-05-15 17:38 - 00000000 ____D () C:\Documents and Settings\cacha\Datos de programa\Dropbox
2015-04-28 17:27 - 2012-03-10 18:19 - 00000000 ____D () C:\Documents and Settings\cacha\Datos de programa\BitTorrent
2015-04-28 09:26 - 2013-09-24 16:07 - 00000000 ____D () C:\Documents and Settings\cacha\Configuración local\Datos de programa\Spotify
2015-04-28 08:21 - 2013-12-22 09:15 - 00000000 ____D () C:\WINDOWS\Minidump
2015-04-27 18:10 - 2015-02-06 11:17 - 00000000 ____D () C:\Documents and Settings\cacha\Escritorio\The Translator's Tools
2015-04-27 13:39 - 2012-03-14 10:36 - 00000000 ____D () C:\Documents and Settings\cacha\Datos de programa\vlc
2015-04-26 12:35 - 2012-03-08 00:03 - 00078032 ____N (Absolute Software Corp.) C:\WINDOWS\system32\rpcnet.exe
2015-04-25 20:56 - 2012-04-04 23:33 - 00000000 ____D () C:\Documents and Settings\cacha\Mis documentos\My Shared Folder
2015-04-25 08:16 - 2014-02-28 23:20 - 00000000 ____D () C:\Archivos de programa\Mozilla Maintenance Service
2015-04-24 21:40 - 2012-03-07 16:53 - 00000000 ___RD () C:\Archivos de programa
2015-04-24 13:53 - 2012-03-12 22:52 - 00094720 _____ () C:\Documents and Settings\cacha\Configuración local\Datos de programa\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2015-04-24 08:20 - 2012-03-10 14:50 - 00000000 ____D () C:\Documents and Settings\cacha\Mis documentos
2015-04-24 08:20 - 2012-03-07 17:51 - 00000245 ___SH () C:\boot.ini
2015-04-23 19:59 - 2012-03-07 21:09 - 00000000 __SHD () C:\Documents and Settings\NetworkService
2015-04-23 19:58 - 2012-11-23 19:19 - 00000000 ____D () C:\Documents and Settings\cacha\Mis documentos\Mi Música
2015-04-23 08:00 - 2015-02-21 20:47 - 00000000 ___RD () C:\Documents and Settings\cacha\Mis documentos\Google Drive
2015-04-20 16:03 - 2014-04-16 23:59 - 00000000 ____D () C:\Documents and Settings\cacha\Mis documentos\Descargas
2015-04-18 16:20 - 2012-03-14 10:26 - 00000000 ____D () C:\Archivos de programa\Adobe
2015-04-18 16:19 - 2012-03-07 16:53 - 00000000 ____D () C:\Documents and Settings\All Users\Menú Inicio\Programas
2015-04-18 16:16 - 2012-03-07 16:53 - 00000000 ____D () C:\Documents and Settings\All Users\Escritorio
2015-04-18 10:39 - 2012-03-10 14:50 - 00000000 __SHD () C:\Documents and Settings\cacha\Configuración local\Archivos temporales de Internet
2015-04-18 08:23 - 2012-03-07 21:09 - 00000000 __SHD () C:\Documents and Settings\NetworkService\Configuración local\Archivos temporales de Internet
2015-04-17 23:16 - 2012-08-24 23:29 - 00000000 ____D () C:\Documents and Settings\All Users\Datos de programa\Skype
2015-04-17 23:15 - 2012-03-07 16:53 - 00000000 ____D () C:\Documents and Settings\All Users\Menú Inicio
2015-04-17 22:59 - 2014-05-12 13:24 - 00000000 ____D () C:\Documents and Settings\cacha\Menú Inicio\Programas\Amazon
2015-04-17 22:59 - 2014-05-12 13:23 - 00000000 ____D () C:\Archivos de programa\Amazon
2015-04-17 22:58 - 2012-03-10 14:50 - 00000000 ____D () C:\Documents and Settings\cacha\Menú Inicio\Programas
2015-04-17 22:29 - 2014-08-28 16:56 - 00000000 ____D () C:\Documents and Settings\cacha\Mis documentos\Dibujos low-res
2015-04-17 22:09 - 2012-03-07 21:10 - 00000000 __SHD () C:\Documents and Settings\LocalService
2015-04-17 22:08 - 2012-03-07 21:56 - 00000000 ____D () C:\Archivos de programa\InstallShield Installation Information
2015-04-17 21:44 - 2012-03-07 21:10 - 00000000 __SHD () C:\Documents and Settings\LocalService\Configuración local\Archivos temporales de Internet
2015-04-17 21:43 - 2013-08-17 12:32 - 00000000 ____D () C:\Documents and Settings\All Users\Datos de programa\Spybot - Search & Destroy
2015-04-17 21:27 - 2012-03-07 16:53 - 00000000 ____D () C:\Documents and Settings\Default User\Configuración local\Archivos temporales de Internet
2015-04-16 10:14 - 2015-01-20 15:02 - 00000000 ____D () C:\Documents and Settings\cacha\Configuración local\Datos de programa\Adobe
2015-04-15 18:12 - 2013-05-15 17:25 - 00000000 ____D () C:\Documents and Settings\cacha\Mis documentos\Mis imágenes
2015-04-15 16:11 - 2013-07-13 23:16 - 00000000 ____D () C:\WINDOWS\system32\MRT
2015-04-15 16:02 - 2012-03-10 00:53 - 125832184 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2015-04-15 16:01 - 2012-03-09 21:25 - 00000000 ____D () C:\Documents and Settings\All Users\Datos de programa\Microsoft Help
2015-04-15 13:39 - 2013-12-17 14:46 - 00001874 _____ () C:\Documents and Settings\All Users\Escritorio\Google Chrome.lnk
2015-04-15 11:33 - 2012-04-03 18:27 - 00778416 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerApp.exe
2015-04-15 11:33 - 2012-03-12 22:29 - 00142512 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerCPLApp.cpl
2015-04-13 11:50 - 2012-03-10 18:03 - 00000000 ____D () C:\Documents and Settings\cacha\Mis documentos\Mis escaneos
2015-04-10 14:48 - 2012-03-10 14:51 - 00000000 ____D () C:\Documents and Settings\cacha\Mis documentos\Directorio de intercambio Bluetooth
2015-04-08 15:00 - 2014-03-08 10:15 - 00000216 _____ () C:\WINDOWS\Tasks\Notificación mensual de fin de servicio de Microsoft Windows XP.job

==================== Files in the root of some directories =======

2015-04-15 21:40 - 2015-04-15 21:40 - 0000132 _____ () C:\Documents and Settings\cacha\Datos de programa\Prefs. de formato PNG de Adobe CS6
2012-03-12 22:52 - 2015-04-24 13:53 - 0094720 _____ () C:\Documents and Settings\cacha\Configuración local\Datos de programa\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2012-04-13 19:02 - 2012-04-13 19:02 - 0000134 _____ () C:\Documents and Settings\cacha\Configuración local\Datos de programa\fusioncache.dat

Some content of TEMP:
====================
C:\Documents and Settings\cacha\Configuración local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmp1nbvlu.dll
C:\Documents and Settings\cacha\Configuración local\Temp\swt-gdip-win32-3346.dll
C:\Documents and Settings\cacha\Configuración local\Temp\swt-win32-3346.dll


==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed

==================== End Of Log ============================

aswMBR version 1.0.1.2252 Copyright(c) 2014 AVAST Software
Run date: 2015-04-30 17:21:12
-----------------------------
17:21:12.890 OS Version: Windows 5.1.2600 Service Pack 3
17:21:12.890 Number of processors: 2 586 0x170A
17:21:12.906 ComputerName: FLORNOTE UserName: cacha
17:21:13.750 Initialize success
17:21:13.843 VM: initialized successfully
17:21:13.843 VM: Intel CPU BiosDisabled
17:22:12.687 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-1
17:22:12.687 Disk 0 Vendor: WDC_WD25 11.0 Size: 238475MB BusType: 3
17:22:12.859 Disk 0 MBR read successfully
17:22:12.875 Disk 0 MBR scan
17:22:12.875 Disk 0 Windows XP default MBR code
17:22:12.875 Disk 0 Partition 1 00 DE Dell Utility Dell 8.0 39 MB offset 63
17:22:12.875 Disk 0 Partition 2 80 (A) 07 HPFS/NTFS NTFS 238434 MB offset 81920
17:22:12.875 Disk 0 Boot: NTFS code=1
17:22:12.875 Disk 0 scanning sectors +488395120
17:22:12.953 Disk 0 scanning C:\WINDOWS\system32\drivers
17:22:17.718 Service scanning
17:22:22.687 Service ehdrv C:\WINDOWS\system32\DRIVERS\ehdrv.sys **LOCKED** 5
17:22:22.796 Service epfwtdir C:\WINDOWS\system32\DRIVERS\epfwtdir.sys **LOCKED** 5
17:22:30.312 Modules scanning
17:22:30.328 Disk 0 trace - called modules:
17:22:30.328
17:22:30.328 Disk 0 statistics 44898/0/0 @ 4,59 MB/s
17:22:30.328 Scan finished successfully
17:22:41.156 Disk 0 MBR has been saved successfully to "C:\Documents and Settings\cacha\Escritorio\MBR.dat"
17:22:41.171 The log file has been saved successfully to "C:\Documents and Settings\cacha\Escritorio\aswMBR.txt"
Juliet
2015-05-01, 02:20
The first time Farbar Recovery Scan Tool is run, it will also create an Addition.txt
Can you locate this and copy and paste the contents into this topic?
florenciam
2015-05-01, 02:55
Yes:

Additional scan result of Farbar Recovery Scan Tool (x86) Version: 29-04-2015 01
Ran by cacha at 2015-04-30 17:13:02
Running from C:\Documents and Settings\cacha\Mis documentos\Downloads
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrador (S-1-5-21-1844237615-1767777339-1417001333-500 - Administrator - Enabled) => %SystemDrive%\Documents and Settings\Administrador
Asistente de ayuda (S-1-5-21-1844237615-1767777339-1417001333-1000 - Limited - Disabled)
ASPNET (S-1-5-21-1844237615-1767777339-1417001333-1006 - Limited - Enabled)
cacha (S-1-5-21-1844237615-1767777339-1417001333-1003 - Administrator - Enabled) => %SystemDrive%\Documents and Settings\cacha
Invitado (S-1-5-21-1844237615-1767777339-1417001333-501 - Limited - Disabled) => %SystemDrive%\Documents and Settings\Invitado
SUPPORT_388945a0 (S-1-5-21-1844237615-1767777339-1417001333-1002 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: ESET NOD32 Antivirus 7.0 (Enabled - Up to date) {E5E70D32-0101-4F12-8FB0-D96ACA4F34C0}

==================== Installed Programs ======================

(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

32 Bit HP CIO Components Installer (Version: 1.0.0 - Hewlett-Packard) Hidden
Actualización de seguridad para el Reproductor de Windows Media (KB2378111) (HKLM\...\KB2378111_WM9) (Version: - Microsoft Corporation)
Actualización de seguridad para el Reproductor de Windows Media (KB2834904) (HKLM\...\KB2834904_WM11) (Version: - Microsoft Corporation)
Actualización de seguridad para el Reproductor de Windows Media (KB2834904-v2) (HKLM\...\KB2834904-v2_WM11) (Version: - Microsoft Corporation)
Actualización de seguridad para el Reproductor de Windows Media (KB952069) (HKLM\...\KB952069_WM9) (Version: - Microsoft Corporation)
Actualización de seguridad para el Reproductor de Windows Media (KB954155) (HKLM\...\KB954155_WM9) (Version: - Microsoft Corporation)
Actualización de seguridad para el Reproductor de Windows Media (KB973540) (HKLM\...\KB973540_WM9) (Version: - Microsoft Corporation)
Actualización de seguridad para el Reproductor de Windows Media (KB975558) (HKLM\...\KB975558_WM8) (Version: - Microsoft Corporation)
Actualización de seguridad para el Reproductor de Windows Media (KB978695) (HKLM\...\KB978695_WM9) (Version: - Microsoft Corporation)
Actualización de seguridad para Microsoft Windows (KB2564958) (HKLM\...\KB2564958) (Version: - Microsoft Corporation)
Actualización de seguridad para Windows Internet Explorer 8 (KB2510531) (HKLM\...\KB2510531-IE8) (Version: 1 - Microsoft Corporation)
Actualización de seguridad para Windows Internet Explorer 8 (KB2544521) (HKLM\...\KB2544521-IE8) (Version: 1 - Microsoft Corporation)
Actualización de seguridad para Windows Internet Explorer 8 (KB2618444) (HKLM\...\KB2618444-IE8) (Version: 1 - Microsoft Corporation)
Actualización de seguridad para Windows Internet Explorer 8 (KB2647516) (HKLM\...\KB2647516-IE8) (Version: 1 - Microsoft Corporation)
Actualización de seguridad para Windows Internet Explorer 8 (KB2699988) (HKLM\...\KB2699988-IE8) (Version: 1 - Microsoft Corporation)
Actualización de seguridad para Windows Internet Explorer 8 (KB2722913) (HKLM\...\KB2722913-IE8) (Version: 1 - Microsoft Corporation)
Actualización de seguridad para Windows Internet Explorer 8 (KB2744842) (HKLM\...\KB2744842-IE8) (Version: 1 - Microsoft Corporation)
Actualización de seguridad para Windows Internet Explorer 8 (KB2761465) (HKLM\...\KB2761465-IE8) (Version: 1 - Microsoft Corporation)
Actualización de seguridad para Windows Internet Explorer 8 (KB2792100) (HKLM\...\KB2792100-IE8) (Version: 1 - Microsoft Corporation)
Actualización de seguridad para Windows Internet Explorer 8 (KB2797052) (HKLM\...\KB2797052-IE8) (Version: 1 - Microsoft Corporation)
Actualización de seguridad para Windows Internet Explorer 8 (KB2799329) (HKLM\...\KB2799329-IE8) (Version: 1 - Microsoft Corporation)
Actualización de seguridad para Windows Internet Explorer 8 (KB2817183) (HKLM\...\KB2817183-IE8) (Version: 1 - Microsoft Corporation)
Actualización de seguridad para Windows Internet Explorer 8 (KB2829530) (HKLM\...\KB2829530-IE8) (Version: 1 - Microsoft Corporation)
Actualización de seguridad para Windows Internet Explorer 8 (KB2838727) (HKLM\...\KB2838727-IE8) (Version: 1 - Microsoft Corporation)
Actualización de seguridad para Windows Internet Explorer 8 (KB2846071) (HKLM\...\KB2846071-IE8) (Version: 1 - Microsoft Corporation)
Actualización de seguridad para Windows Internet Explorer 8 (KB2847204) (HKLM\...\KB2847204-IE8) (Version: 1 - Microsoft Corporation)
Actualización de seguridad para Windows Internet Explorer 8 (KB2862772) (HKLM\...\KB2862772-IE8) (Version: 1 - Microsoft Corporation)
Actualización de seguridad para Windows Internet Explorer 8 (KB2870699) (HKLM\...\KB2870699-IE8) (Version: 1 - Microsoft Corporation)
Actualización de seguridad para Windows Internet Explorer 8 (KB2879017) (HKLM\...\KB2879017-IE8) (Version: 1 - Microsoft Corporation)
Actualización de seguridad para Windows Internet Explorer 8 (KB2888505) (HKLM\...\KB2888505-IE8) (Version: 1 - Microsoft Corporation)
Actualización de seguridad para Windows Internet Explorer 8 (KB2898785) (HKLM\...\KB2898785-IE8) (Version: 1 - Microsoft Corporation)
Actualización de seguridad para Windows Internet Explorer 8 (KB2909210) (HKLM\...\KB2909210-IE8) (Version: 1 - Microsoft Corporation)
Actualización de seguridad para Windows Internet Explorer 8 (KB2909921) (HKLM\...\KB2909921-IE8) (Version: 1 - Microsoft Corporation)
Actualización de seguridad para Windows Internet Explorer 8 (KB2925418) (HKLM\...\KB2925418-IE8) (Version: 1 - Microsoft Corporation)
Actualización de seguridad para Windows Internet Explorer 8 (KB2936068) (HKLM\...\KB2936068-IE8) (Version: 1 - Microsoft Corporation)
Actualización de seguridad para Windows Internet Explorer 8 (KB2964358) (HKLM\...\KB2964358-IE8) (Version: 1 - Microsoft Corporation)
Actualización de seguridad para Windows Internet Explorer 8 (KB982381) (HKLM\...\KB982381-IE8) (Version: 1 - Microsoft Corporation)
Actualización de seguridad para Windows XP (KB2079403) (HKLM\...\KB2079403) (Version: 1 - Microsoft Corporation)
Actualización de seguridad para Windows XP (KB2115168) (HKLM\...\KB2115168) (Version: 1 - Microsoft Corporation)
Actualización de seguridad para Windows XP (KB2229593) (HKLM\...\KB2229593) (Version: 1 - Microsoft Corporation)
Actualización de seguridad para Windows XP (KB2296011) (HKLM\...\KB2296011) (Version: 1 - Microsoft Corporation)
Actualización de seguridad para Windows XP (KB2347290) (HKLM\...\KB2347290) (Version: 1 - Microsoft Corporation)
Actualización de seguridad para Windows XP (KB2360937) (HKLM\...\KB2360937) (Version: 1 - Microsoft Corporation)
Actualización de seguridad para Windows XP (KB2387149) (HKLM\...\KB2387149) (Version: 1 - Microsoft Corporation)
Actualización de seguridad para Windows XP (KB2393802) (HKLM\...\KB2393802) (Version: 1 - Microsoft Corporation)
Actualización de seguridad para Windows XP (KB2412687) (HKLM\...\KB2412687) (Version: 1 - Microsoft Corporation)
Actualización de seguridad para Windows XP (KB2419632) (HKLM\...\KB2419632) (Version: 1 - Microsoft Corporation)
Actualización de seguridad para Windows XP (KB2423089) (HKLM\...\KB2423089) (Version: 1 - Microsoft Corporation)
Actualización de seguridad para Windows XP (KB2440591) (HKLM\...\KB2440591) (Version: 1 - Microsoft Corporation)
Actualización de seguridad para Windows XP (KB2443105) (HKLM\...\KB2443105) (Version: 1 - Microsoft Corporation)
Actualización de seguridad para Windows XP (KB2476490) (HKLM\...\KB2476490) (Version: 1 - Microsoft Corporation)
Actualización de seguridad para Windows XP (KB2478960) (HKLM\...\KB2478960) (Version: 1 - Microsoft Corporation)
Actualización de seguridad para Windows XP (KB2478971) (HKLM\...\KB2478971) (Version: 1 - Microsoft Corporation)
Actualización de seguridad para Windows XP (KB2479943) (HKLM\...\KB2479943) (Version: 1 - Microsoft Corporation)
Actualización de seguridad para Windows XP (KB2481109) (HKLM\...\KB2481109) (Version: 1 - Microsoft Corporation)
Actualización de seguridad para Windows XP (KB2483185) (HKLM\...\KB2483185) (Version: 1 - Microsoft Corporation)
Actualización de seguridad para Windows XP (KB2485663) (HKLM\...\KB2485663) (Version: 1 - Microsoft Corporation)
Actualización de seguridad para Windows XP (KB2506212) (HKLM\...\KB2506212) (Version: 1 - Microsoft Corporation)
Actualización de seguridad para Windows XP (KB2507618) (HKLM\...\KB2507618) (Version: 1 - Microsoft Corporation)
Actualización de seguridad para Windows XP (KB2507938) (HKLM\...\KB2507938) (Version: 1 - Microsoft Corporation)
Actualización de seguridad para Windows XP (KB2508429) (HKLM\...\KB2508429) (Version: 1 - Microsoft Corporation)
Actualización de seguridad para Windows XP (KB2509553) (HKLM\...\KB2509553) (Version: 1 - Microsoft Corporation)
Actualización de seguridad para Windows XP (KB2535512) (HKLM\...\KB2535512) (Version: 1 - Microsoft Corporation)
Actualización de seguridad para Windows XP (KB2536276-v2) (HKLM\...\KB2536276-v2) (Version: 2 - Microsoft Corporation)
Actualización de seguridad para Windows XP (KB2544893-v2) (HKLM\...\KB2544893-v2) (Version: 2 - Microsoft Corporation)
Actualización de seguridad para Windows XP (KB2566454) (HKLM\...\KB2566454) (Version: 1 - Microsoft Corporation)
Actualización de seguridad para Windows XP (KB2570947) (HKLM\...\KB2570947) (Version: 1 - Microsoft Corporation)
Actualización de seguridad para Windows XP (KB2584146) (HKLM\...\KB2584146) (Version: 1 - Microsoft Corporation)
Actualización de seguridad para Windows XP (KB2585542) (HKLM\...\KB2585542) (Version: 1 - Microsoft Corporation)
Actualización de seguridad para Windows XP (KB2592799) (HKLM\...\KB2592799) (Version: 1 - Microsoft Corporation)
Actualización de seguridad para Windows XP (KB2598479) (HKLM\...\KB2598479) (Version: 1 - Microsoft Corporation)
Actualización de seguridad para Windows XP (KB2603381) (HKLM\...\KB2603381) (Version: 1 - Microsoft Corporation)
Actualización de seguridad para Windows XP (KB2618451) (HKLM\...\KB2618451) (Version: 1 - Microsoft Corporation)
Actualización de seguridad para Windows XP (KB2619339) (HKLM\...\KB2619339) (Version: 1 - Microsoft Corporation)
Actualización de seguridad para Windows XP (KB2620712) (HKLM\...\KB2620712) (Version: 1 - Microsoft Corporation)
Actualización de seguridad para Windows XP (KB2621440) (HKLM\...\KB2621440) (Version: 1 - Microsoft Corporation)
Actualización de seguridad para Windows XP (KB2624667) (HKLM\...\KB2624667) (Version: 1 - Microsoft Corporation)
Actualización de seguridad para Windows XP (KB2631813) (HKLM\...\KB2631813) (Version: 1 - Microsoft Corporation)
Actualización de seguridad para Windows XP (KB2633171) (HKLM\...\KB2633171) (Version: 1 - Microsoft Corporation)
Actualización de seguridad para Windows XP (KB2641653) (HKLM\...\KB2641653) (Version: 1 - Microsoft Corporation)
Actualización de seguridad para Windows XP (KB2646524) (HKLM\...\KB2646524) (Version: 1 - Microsoft Corporation)
Actualización de seguridad para Windows XP (KB2647518) (HKLM\...\KB2647518) (Version: 1 - Microsoft Corporation)
Actualización de seguridad para Windows XP (KB2653956) (HKLM\...\KB2653956) (Version: 1 - Microsoft Corporation)
Actualización de seguridad para Windows XP (KB2655992) (HKLM\...\KB2655992) (Version: 1 - Microsoft Corporation)
Actualización de seguridad para Windows XP (KB2659262) (HKLM\...\KB2659262) (Version: 1 - Microsoft Corporation)
Actualización de seguridad para Windows XP (KB2661637) (HKLM\...\KB2661637) (Version: 1 - Microsoft Corporation)
Actualización de seguridad para Windows XP (KB2685939) (HKLM\...\KB2685939) (Version: 1 - Microsoft Corporation)
Actualización de seguridad para Windows XP (KB2686509) (HKLM\...\KB2686509) (Version: 1 - Microsoft Corporation)
Actualización de seguridad para Windows XP (KB2691442) (HKLM\...\KB2691442) (Version: 1 - Microsoft Corporation)
Actualización de seguridad para Windows XP (KB2695962) (HKLM\...\KB2695962) (Version: 1 - Microsoft Corporation)
Actualización de seguridad para Windows XP (KB2698365) (HKLM\...\KB2698365) (Version: 1 - Microsoft Corporation)
Actualización de seguridad para Windows XP (KB2705219) (HKLM\...\KB2705219) (Version: 1 - Microsoft Corporation)
Actualización de seguridad para Windows XP (KB2707511) (HKLM\...\KB2707511) (Version: 1 - Microsoft Corporation)
Actualización de seguridad para Windows XP (KB2709162) (HKLM\...\KB2709162) (Version: 1 - Microsoft Corporation)
Actualización de seguridad para Windows XP (KB2712808) (HKLM\...\KB2712808) (Version: 1 - Microsoft Corporation)
Actualización de seguridad para Windows XP (KB2718523) (HKLM\...\KB2718523) (Version: 1 - Microsoft Corporation)
Actualización de seguridad para Windows XP (KB2719985) (HKLM\...\KB2719985) (Version: 1 - Microsoft Corporation)
Actualización de seguridad para Windows XP (KB2723135) (HKLM\...\KB2723135) (Version: 1 - Microsoft Corporation)
Actualización de seguridad para Windows XP (KB2724197) (HKLM\...\KB2724197) (Version: 1 - Microsoft Corporation)
Actualización de seguridad para Windows XP (KB2727528) (HKLM\...\KB2727528) (Version: 1 - Microsoft Corporation)
Actualización de seguridad para Windows XP (KB2731847) (HKLM\...\KB2731847) (Version: 1 - Microsoft Corporation)
Actualización de seguridad para Windows XP (KB2753842) (HKLM\...\KB2753842) (Version: 1 - Microsoft Corporation)
Actualización de seguridad para Windows XP (KB2753842-v2) (HKLM\...\KB2753842-v2) (Version: 2 - Microsoft Corporation)
Actualización de seguridad para Windows XP (KB2757638) (HKLM\...\KB2757638) (Version: 1 - Microsoft Corporation)
Actualización de seguridad para Windows XP (KB2758857) (HKLM\...\KB2758857) (Version: 1 - Microsoft Corporation)
Actualización de seguridad para Windows XP (KB2770660) (HKLM\...\KB2770660) (Version: 1 - Microsoft Corporation)
Actualización de seguridad para Windows XP (KB2778344) (HKLM\...\KB2778344) (Version: 1 - Microsoft Corporation)
Actualización de seguridad para Windows XP (KB2779030) (HKLM\...\KB2779030) (Version: 1 - Microsoft Corporation)
Actualización de seguridad para Windows XP (KB2780091) (HKLM\...\KB2780091) (Version: 1 - Microsoft Corporation)
Actualización de seguridad para Windows XP (KB2799494) (HKLM\...\KB2799494) (Version: 1 - Microsoft Corporation)
Actualización de seguridad para Windows XP (KB2802968) (HKLM\...\KB2802968) (Version: 1 - Microsoft Corporation)
Actualización de seguridad para Windows XP (KB2807986) (HKLM\...\KB2807986) (Version: 1 - Microsoft Corporation)
Actualización de seguridad para Windows XP (KB2808735) (HKLM\...\KB2808735) (Version: 1 - Microsoft Corporation)
Actualización de seguridad para Windows XP (KB2813170) (HKLM\...\KB2813170) (Version: 1 - Microsoft Corporation)
Actualización de seguridad para Windows XP (KB2813345) (HKLM\...\KB2813345) (Version: 1 - Microsoft Corporation)
Actualización de seguridad para Windows XP (KB2820197) (HKLM\...\KB2820197) (Version: 1 - Microsoft Corporation)
Actualización de seguridad para Windows XP (KB2820917) (HKLM\...\KB2820917) (Version: 1 - Microsoft Corporation)
Actualización de seguridad para Windows XP (KB2829361) (HKLM\...\KB2829361) (Version: 1 - Microsoft Corporation)
Actualización de seguridad para Windows XP (KB2834886) (HKLM\...\KB2834886) (Version: 1 - Microsoft Corporation)
Actualización de seguridad para Windows XP (KB2839229) (HKLM\...\KB2839229) (Version: 1 - Microsoft Corporation)
Actualización de seguridad para Windows XP (KB2845187) (HKLM\...\KB2845187) (Version: 1 - Microsoft Corporation)
Actualización de seguridad para Windows XP (KB2847311) (HKLM\...\KB2847311) (Version: 1 - Microsoft Corporation)
Actualización de seguridad para Windows XP (KB2849470) (HKLM\...\KB2849470) (Version: 1 - Microsoft Corporation)
Actualización de seguridad para Windows XP (KB2850851) (HKLM\...\KB2850851) (Version: 1 - Microsoft Corporation)
Actualización de seguridad para Windows XP (KB2850869) (HKLM\...\KB2850869) (Version: 1 - Microsoft Corporation)
Actualización de seguridad para Windows XP (KB2859537) (HKLM\...\KB2859537) (Version: 1 - Microsoft Corporation)
Actualización de seguridad para Windows XP (KB2862152) (HKLM\...\KB2862152) (Version: 1 - Microsoft Corporation)
Actualización de seguridad para Windows XP (KB2862330) (HKLM\...\KB2862330) (Version: 1 - Microsoft Corporation)
Actualización de seguridad para Windows XP (KB2862335) (HKLM\...\KB2862335) (Version: 1 - Microsoft Corporation)
Actualización de seguridad para Windows XP (KB2864063) (HKLM\...\KB2864063) (Version: 1 - Microsoft Corporation)
Actualización de seguridad para Windows XP (KB2868038) (HKLM\...\KB2868038) (Version: 1 - Microsoft Corporation)
Actualización de seguridad para Windows XP (KB2868626) (HKLM\...\KB2868626) (Version: 1 - Microsoft Corporation)
Actualización de seguridad para Windows XP (KB2876217) (HKLM\...\KB2876217) (Version: 1 - Microsoft Corporation)
Actualización de seguridad para Windows XP (KB2876315) (HKLM\...\KB2876315) (Version: 1 - Microsoft Corporation)
Actualización de seguridad para Windows XP (KB2876331) (HKLM\...\KB2876331) (Version: 1 - Microsoft Corporation)
Actualización de seguridad para Windows XP (KB2883150) (HKLM\...\KB2883150) (Version: 1 - Microsoft Corporation)
Actualización de seguridad para Windows XP (KB2892075) (HKLM\...\KB2892075) (Version: 1 - Microsoft Corporation)
Actualización de seguridad para Windows XP (KB2893294) (HKLM\...\KB2893294) (Version: 1 - Microsoft Corporation)
Actualización de seguridad para Windows XP (KB2893984) (HKLM\...\KB2893984) (Version: 1 - Microsoft Corporation)
Actualización de seguridad para Windows XP (KB2898715) (HKLM\...\KB2898715) (Version: 1 - Microsoft Corporation)
Actualización de seguridad para Windows XP (KB2900986) (HKLM\...\KB2900986) (Version: 1 - Microsoft Corporation)
Actualización de seguridad para Windows XP (KB2914368) (HKLM\...\KB2914368) (Version: 1 - Microsoft Corporation)
Actualización de seguridad para Windows XP (KB2916036) (HKLM\...\KB2916036) (Version: 1 - Microsoft Corporation)
Actualización de seguridad para Windows XP (KB2922229) (HKLM\...\KB2922229) (Version: 1 - Microsoft Corporation)
Actualización de seguridad para Windows XP (KB2929961) (HKLM\...\KB2929961) (Version: 1 - Microsoft Corporation)
Actualización de seguridad para Windows XP (KB2930275) (HKLM\...\KB2930275) (Version: 1 - Microsoft Corporation)
Actualización de seguridad para Windows XP (KB923561) (HKLM\...\KB923561) (Version: 1 - Microsoft Corporation)
Actualización de seguridad para Windows XP (KB923789) (HKLM\...\KB923789) (Version: - Microsoft Corporation)
Actualización de seguridad para Windows XP (KB946648) (HKLM\...\KB946648) (Version: 1 - Microsoft Corporation)
Actualización de seguridad para Windows XP (KB950762) (HKLM\...\KB950762) (Version: 1 - Microsoft Corporation)
Actualización de seguridad para Windows XP (KB950974) (HKLM\...\KB950974) (Version: 1 - Microsoft Corporation)
Actualización de seguridad para Windows XP (KB951376-v2) (HKLM\...\KB951376-v2) (Version: 2 - Microsoft Corporation)
Actualización de seguridad para Windows XP (KB952004) (HKLM\...\KB952004) (Version: 1 - Microsoft Corporation)
Actualización de seguridad para Windows XP (KB952954) (HKLM\...\KB952954) (Version: 1 - Microsoft Corporation)
Actualización de seguridad para Windows XP (KB954459) (HKLM\...\KB954459) (Version: 1 - Microsoft Corporation)
Actualización de seguridad para Windows XP (KB956572) (HKLM\...\KB956572) (Version: 1 - Microsoft Corporation)
Actualización de seguridad para Windows XP (KB956744) (HKLM\...\KB956744) (Version: 1 - Microsoft Corporation)
Actualización de seguridad para Windows XP (KB956802) (HKLM\...\KB956802) (Version: 1 - Microsoft Corporation)
Actualización de seguridad para Windows XP (KB956844) (HKLM\...\KB956844) (Version: 1 - Microsoft Corporation)
Actualización de seguridad para Windows XP (KB958644) (HKLM\...\KB958644) (Version: 1 - Microsoft Corporation)
Actualización de seguridad para Windows XP (KB959426) (HKLM\...\KB959426) (Version: 1 - Microsoft Corporation)
Actualización de seguridad para Windows XP (KB960803) (HKLM\...\KB960803) (Version: 1 - Microsoft Corporation)
Actualización de seguridad para Windows XP (KB960859) (HKLM\...\KB960859) (Version: 1 - Microsoft Corporation)
Actualización de seguridad para Windows XP (KB961501) (HKLM\...\KB961501) (Version: 1 - Microsoft Corporation)
Actualización de seguridad para Windows XP (KB969059) (HKLM\...\KB969059) (Version: 1 - Microsoft Corporation)
Actualización de seguridad para Windows XP (KB970430) (HKLM\...\KB970430) (Version: 1 - Microsoft Corporation)
Actualización de seguridad para Windows XP (KB971657) (HKLM\...\KB971657) (Version: 1 - Microsoft Corporation)
Actualización de seguridad para Windows XP (KB972270) (HKLM\...\KB972270) (Version: 1 - Microsoft Corporation)
Actualización de seguridad para Windows XP (KB973507) (HKLM\...\KB973507) (Version: 1 - Microsoft Corporation)
Actualización de seguridad para Windows XP (KB973869) (HKLM\...\KB973869) (Version: 1 - Microsoft Corporation)
Actualización de seguridad para Windows XP (KB973904) (HKLM\...\KB973904) (Version: 1 - Microsoft Corporation)
Actualización de seguridad para Windows XP (KB974112) (HKLM\...\KB974112) (Version: 1 - Microsoft Corporation)
Actualización de seguridad para Windows XP (KB974318) (HKLM\...\KB974318) (Version: 1 - Microsoft Corporation)
Actualización de seguridad para Windows XP (KB974392) (HKLM\...\KB974392) (Version: 1 - Microsoft Corporation)
Actualización de seguridad para Windows XP (KB974571) (HKLM\...\KB974571) (Version: 1 - Microsoft Corporation)
Actualización de seguridad para Windows XP (KB975025) (HKLM\...\KB975025) (Version: 1 - Microsoft Corporation)
Actualización de seguridad para Windows XP (KB975467) (HKLM\...\KB975467) (Version: 1 - Microsoft Corporation)
Actualización de seguridad para Windows XP (KB975560) (HKLM\...\KB975560) (Version: 1 - Microsoft Corporation)
Actualización de seguridad para Windows XP (KB975713) (HKLM\...\KB975713) (Version: 1 - Microsoft Corporation)
Actualización de seguridad para Windows XP (KB977816) (HKLM\...\KB977816) (Version: 1 - Microsoft Corporation)
Actualización de seguridad para Windows XP (KB977914) (HKLM\...\KB977914) (Version: 1 - Microsoft Corporation)
Actualización de seguridad para Windows XP (KB978338) (HKLM\...\KB978338) (Version: 1 - Microsoft Corporation)
Actualización de seguridad para Windows XP (KB978542) (HKLM\...\KB978542) (Version: 1 - Microsoft Corporation)
Actualización de seguridad para Windows XP (KB978601) (HKLM\...\KB978601) (Version: 1 - Microsoft Corporation)
Actualización de seguridad para Windows XP (KB978706) (HKLM\...\KB978706) (Version: 1 - Microsoft Corporation)
Actualización de seguridad para Windows XP (KB979309) (HKLM\...\KB979309) (Version: 1 - Microsoft Corporation)
Actualización de seguridad para Windows XP (KB979482) (HKLM\...\KB979482) (Version: 1 - Microsoft Corporation)
Actualización de seguridad para Windows XP (KB979687) (HKLM\...\KB979687) (Version: 1 - Microsoft Corporation)
Actualización de seguridad para Windows XP (KB981322) (HKLM\...\KB981322) (Version: 1 - Microsoft Corporation)
Actualización de seguridad para Windows XP (KB981997) (HKLM\...\KB981997) (Version: 1 - Microsoft Corporation)
Actualización de seguridad para Windows XP (KB982132) (HKLM\...\KB982132) (Version: 1 - Microsoft Corporation)
Actualización de seguridad para Windows XP (KB982665) (HKLM\...\KB982665) (Version: 1 - Microsoft Corporation)
Actualización para Windows Internet Explorer 8 (KB2598845) (HKLM\...\KB2598845-IE8) (Version: 1 - Microsoft Corporation)
Actualización para Windows XP (KB2345886) (HKLM\...\KB2345886) (Version: 1 - Microsoft Corporation)
Actualización para Windows XP (KB2467659) (HKLM\...\KB2467659) (Version: 1 - Microsoft Corporation)
Actualización para Windows XP (KB2641690) (HKLM\...\KB2641690) (Version: 1 - Microsoft Corporation)
Actualización para Windows XP (KB2661254-v2) (HKLM\...\KB2661254-v2) (Version: 2 - Microsoft Corporation)
Actualización para Windows XP (KB2718704) (HKLM\...\KB2718704) (Version: 1 - Microsoft Corporation)
Actualización para Windows XP (KB2736233) (HKLM\...\KB2736233) (Version: 1 - Microsoft Corporation)
Actualización para Windows XP (KB2749655) (HKLM\...\KB2749655) (Version: 1 - Microsoft Corporation)
Actualización para Windows XP (KB2863058) (HKLM\...\KB2863058) (Version: 1 - Microsoft Corporation)
Actualización para Windows XP (KB2904266) (HKLM\...\KB2904266) (Version: 1 - Microsoft Corporation)
Actualización para Windows XP (KB2934207) (HKLM\...\KB2934207) (Version: 1 - Microsoft Corporation)
Actualización para Windows XP (KB898461) (HKLM\...\KB898461) (Version: 1 - Microsoft Corporation)
Actualización para Windows XP (KB951978) (HKLM\...\KB951978) (Version: 1 - Microsoft Corporation)
Actualización para Windows XP (KB955759) (HKLM\...\KB955759) (Version: 1 - Microsoft Corporation)
Actualización para Windows XP (KB961503) (HKLM\...\KB961503) (Version: 1 - Microsoft Corporation)
Actualización para Windows XP (KB968389) (HKLM\...\KB968389) (Version: 1 - Microsoft Corporation)
Actualización para Windows XP (KB971029) (HKLM\...\KB971029) (Version: 1 - Microsoft Corporation)
Actualización para Windows XP (KB973687) (HKLM\...\KB973687) (Version: 1 - Microsoft Corporation)
Actualización para Windows XP (KB973815) (HKLM\...\KB973815) (Version: 1 - Microsoft Corporation)
Adobe AIR (HKLM\...\Adobe AIR) (Version: 13.0.0.83 - Adobe Systems Incorporated)
Adobe CS6 Spanish Speech Analysis Models (HKLM\...\{34851302-21CD-4404-89BD-D120A07F7350}) (Version: 3.0 - Adobe Systems Incorporated)
Adobe Digital Editions 3.0 (HKLM\...\Adobe Digital Editions 3.0) (Version: 3.0.1 - Adobe Systems Incorporated)
Adobe Flash Player 17 NPAPI (HKLM\...\Adobe Flash Player NPAPI) (Version: 17.0.0.169 - Adobe Systems Incorporated)
Advanced Audio FX Engine (HKLM\...\Advanced Audio FX Engine) (Version: - )
Advanced Video FX Engine (HKLM\...\Advanced Video FX Engine) (Version: - )
Ares 2.1.7 (HKLM\...\Ares) (Version: 2.1.7-Build#3041 - Ares Development Group)
BitTorrent (HKU\S-1-5-21-1844237615-1767777339-1417001333-1003\...\BitTorrent) (Version: 7.9.2.32128 - BitTorrent Inc.)
BufferChm (Version: 100.0.170.000 - Hewlett-Packard) Hidden
Cambridge Grammar of English (HKLM\...\cge) (Version: - )
CCleaner (HKLM\...\CCleaner) (Version: 4.03 - Piriform)
Copy (Version: 100.0.170.000 - Hewlett-Packard) Hidden
Defraggler (HKLM\...\Defraggler) (Version: 2.15 - Piriform)
Dell Resource CD (HKLM\...\{42929F0F-CE14-47AF-9FC7-FF297A603021}) (Version: 1.00.0000 - Nombre de su organización)
Dell Touchpad (HKLM\...\{9F72EF8B-AEC9-4CA5-B483-143980AFD6FD}) (Version: 7.4.102.102 - ALPS ELECTRIC CO., LTD.)
Dell Webcam Center (HKLM\...\Dell Webcam Center) (Version: - )
Dell Webcam Manager (HKLM\...\Dell Webcam Manager) (Version: - )
Destination Component (Version: 100.0.0.0 - Hewlett-Packard) Hidden
DeviceDiscovery (Version: 100.0.190.000 - Hewlett-Packard) Hidden
DeviceManagementQFolder (Version: 1.00.0000 - Hewlett-Packard) Hidden
DJ_AIO_03_F4200_ProductContext (Version: 100.0.215.000 - Hewlett-Packard) Hidden
DJ_AIO_03_F4200_Software (Version: 100.0.206.000 - Hewlett-Packard) Hidden
DJ_AIO_03_F4200_Software_Min (Version: 100.0.213.000 - Hewlett-Packard) Hidden
Dropbox (HKU\S-1-5-21-1844237615-1767777339-1417001333-1003\...\Dropbox) (Version: 3.4.4 - Dropbox, Inc.)
ESET NOD32 Antivirus (HKLM\...\{9B5D8430-FF1F-4B1A-B5D6-4267D8EFAB49}) (Version: 7.0.325.1 - ESET, spol s r. o.)
eSupportQFolder (Version: 1.00.0000 - Hewlett-Packard) Hidden
F4200 (Version: 100.0.206.000 - Nombre de su organización) Hidden
F4200_Help (Version: 100.0.206.000 - Hewlett-Packard) Hidden
Google Chrome (HKLM\...\Google Chrome) (Version: 42.0.2311.90 - Google Inc.)
Google Drive (HKLM\...\{6C36881B-0E51-4231-9D02-BF2149664D34}) (Version: 1.20.8672.3137 - Google, Inc.)
Google Update Helper (Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (Version: 1.3.26.9 - Google Inc.) Hidden
GPBaseService (Version: 100.0.187.000 - Hewlett-Packard) Hidden
Herramienta de la tarjeta de red inalámbrica WLAN de Dell (HKLM\...\Broadcom 802.11b Network Adapter) (Version: 4.170.77.18 - Dell Inc.)
hide.me VPN version 1.0.6 (HKLM\...\{0E00BDA5-7998-4889-BE4B-39A4BBD2EDFB}_is1) (Version: 1.0.6 - eVenture Limited)
HP Deskjet F4200 All-In-One Driver Software 10.0 Rel .3 (HKLM\...\{AE9A67F9-ADF1-4a44-BAB5-C1DB302B37A2}) (Version: 10.0 - HP)
HP Imaging Device Functions 10.0 (HKLM\...\HP Imaging Device Functions) (Version: 10.0 - HP)
HP Solution Center 10.0 (HKLM\...\HP Solution Center & Imaging Support Tools) (Version: 10.0 - HP)
HPProductAssistant (Version: 100.0.170.000 - Hewlett-Packard) Hidden
IDT Audio (HKLM\...\{E3A5A8AB-58F6-45FF-AFCB-C9AE18C05001}) (Version: 1.0.6147.0 - IDT)
Java 2 Runtime Environment, SE v1.4.2_08 (HKLM\...\{7148F0A8-6813-11D6-A77B-00B0D0142080}) (Version: 1.4.2_08 - Sun Microsystems, Inc.)
Java 7 Update 71 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F03217071FF}) (Version: 7.0.710 - Oracle)
Java(TM) 7 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83217000F0}) (Version: 7.0.0 - Oracle)
K-Lite Codec Pack 8.4.0 (Basic) (HKLM\...\KLiteCodecPack_is1) (Version: 8.4.0 - )
Laptop Integrated Webcam Driver (1.01.01.0529) (HKLM\...\Creative OEM013) (Version: - )
Live! Cam Avatar (HKLM\...\{1D5E29AD-39A9-4D0A-A8B6-46A6FCD8C995}) (Version: 1.0 - Creative Technology Ltd.)
Live! Cam Avatar Creator (HKLM\...\{65D0C510-D7B6-4438-9FC8-E6B91115AB0D}) (Version: 4.6.0817.1 - Creative Technology Ltd.)
MARÍA MOLINER (HKLM\...\MARÍA MOLINER 3.0) (Version: 3.0 - Name of your company)
Microsoft .NET Framework 1.1 (HKLM\...\Microsoft .NET Framework 1.1 (1033)) (Version: - )
Microsoft .NET Framework 1.1 Security Update (KB2698023) (HKLM\...\M2698023) (Version: - )
Microsoft .NET Framework 1.1 Security Update (KB2833941) (HKLM\...\M2833941) (Version: - )
Microsoft .NET Framework 2.0 Service Pack 2 (HKLM\...\{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}) (Version: 2.2.30729 - Microsoft Corporation)
Microsoft .NET Framework 3.0 Service Pack 2 (HKLM\...\{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}) (Version: 3.2.30729 - Microsoft Corporation)
Microsoft .NET Framework 3.5 SP1 (HKLM\...\Microsoft .NET Framework 3.5 SP1) (Version: - Microsoft Corporation)
Microsoft .NET Framework 4 Client Profile (HKLM\...\Microsoft .NET Framework 4 Client Profile) (Version: 4.0.30320 - Microsoft Corporation)
Microsoft .NET Framework 4 Extended (HKLM\...\Microsoft .NET Framework 4 Extended) (Version: 4.0.30320 - Microsoft Corporation)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft)
Microsoft Office Enterprise 2007 (HKLM\...\ENTERPRISE) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office File Validation Add-In (HKLM\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation)
Microsoft User-Mode Driver Framework Feature Pack 1.0 (HKLM\...\Wudf01000) (Version: - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Mozilla Firefox 37.0.2 (x86 es-AR) (HKLM\...\Mozilla Firefox 37.0.2 (x86 es-AR)) (Version: 37.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 29.0 - Mozilla)
MSXML 4.0 SP2 (KB954430) (HKLM\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
MSXML 6.0 Parser (HKLM\...\{A43BF6A5-D5F0-4AAA-BF41-65995063EC44}) (Version: 6.10.1129.0 - Microsoft Corporation)
NVIDIA Drivers (HKLM\...\NVIDIA Drivers) (Version: - )
O2Micro Flash Memory Card Windows Driver (HKLM\...\InstallShield_{BF4860E9-E34D-42C4-8CD8-69AAF8FC78F1}) (Version: 2.0.07 - O2Micro International LTD.)
O2Micro Flash Memory Card Windows Driver (Version: 2.0.07 - O2Micro International LTD.) Hidden
Oxford Collocations Dictionary (HKLM\...\NSIS_ocoll2e) (Version: - )
Paquete de idioma de Microsoft .NET Framework 4 Client Profile ESN (HKLM\...\Microsoft .NET Framework 4 Client Profile ESN Language Pack) (Version: 4.0.30320 - Microsoft Corporation)
Paquete de idioma de Microsoft .NET Framework 4 Extended ESN (HKLM\...\Microsoft .NET Framework 4 Extended ESN Language Pack) (Version: 4.0.30320 - Microsoft Corporation)
PDF-Viewer (HKLM\...\{A278382D-4F1B-4D47-9885-8523F7261E8D}_is1) (Version: 2.5.211.0 - Tracker Software Products Ltd)
PhotoScape (HKLM\...\PhotoScape) (Version: - )
REALTEK GbE & FE Ethernet PCI-E NIC Driver (HKLM\...\{C9BED750-1211-4480-B1A5-718A3BE15525}) (Version: 1.24.0000 - Realtek)
Reproductor de Windows Media 11 (HKLM\...\Windows Media Player) (Version: - )
Revisión para Windows XP (KB2633952) (HKLM\...\KB2633952) (Version: 1 - Microsoft Corporation)
Revisión para Windows XP (KB2779562) (HKLM\...\KB2779562) (Version: 1 - Microsoft Corporation)
Revisión para Windows XP (KB945436) (HKLM\...\KB945436) (Version: 1 - Microsoft Corporation)
Revisión para Windows XP (KB949764) (HKLM\...\KB949764) (Version: 1 - Microsoft Corporation)
Revisión para Windows XP (KB952287) (HKLM\...\KB952287) (Version: 1 - Microsoft Corporation)
Revisión para Windows XP (KB953955) (HKLM\...\KB953955) (Version: 1 - Microsoft Corporation)
Revisión para Windows XP (KB959252) (HKLM\...\KB959252) (Version: 1 - Microsoft Corporation)
Revisión para Windows XP (KB961118) (HKLM\...\KB961118) (Version: 1 - Microsoft Corporation)
Scan (Version: 10.0.0.0 - Hewlett-Packard) Hidden
SDL MultiTerm 7 Desktop (HKLM\...\{8302F817-9F82-40F2-8149-8BB50B0250F7}) (Version: 7.10.361 - SDL International)
SDL Trados 2006 Freelance (HKLM\...\{010E52FC-DF6A-4E1A-84F4-9AB41DC9653B}) (Version: 7.50.757 - SDL International)
SDLX (HKLM\...\{CE98383B-7BB4-457C-AEAB-D89E9537628F}) (Version: 8.0.6010 - )
SDLX (Version: 8.0.6010 - SDL International) Hidden
Segoe UI (Version: 14.0.4327.805 - Microsoft Corp) Hidden
SolutionCenter (Version: 100.0.175.000 - Hewlett-Packard) Hidden
Spotify (HKU\S-1-5-21-1844237615-1767777339-1417001333-1003\...\Spotify) (Version: 1.0.1.1060.gc75ebdfd - Spotify AB)
Spybot - Search & Destroy (HKLM\...\{B4092C6D-E886-4CB2-BA68-FE5A99D31DE7}_is1) (Version: 2.4.40 - Safer-Networking Ltd.)
Status (Version: 100.0.175.000 - Hewlett-Packard) Hidden
Toolbox (Version: 100.0.170.000 - Hewlett-Packard) Hidden
Tracker (HKLM\...\com.elance.tracker) (Version: 2.3.3 - Elance Inc)
Tracker (Version: 2.3.3 - Elance Inc) Hidden
TrayApp (Version: 100.0.170.000 - Hewlett-Packard) Hidden
UnloadSupport (Version: 10.0.0 - Hewlett-Packard) Hidden
Update for 2007 Microsoft Office System (KB967642) (HKLM\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft)
VLC media player (HKLM\...\VLC media player) (Version: 2.1.5 - VideoLAN)
WebFldrs XP (Version: 9.50.7523 - Microsoft Corporation) Hidden
WebReg (Version: 100.0.170.000 - Hewlett-Packard) Hidden
WIDCOMM Bluetooth Software (HKLM\...\{84814E6B-2581-46EC-926A-823BD1C670F6}) (Version: 5.1.0.6100 - WIDCOMM, Inc.)
Windows Feature Pack for Storage (32-bit) - IMAPI update for Blu-Ray (HKLM\...\KB952011) (Version: 1.0 - Microsoft Corporation)
Windows Genuine Advantage Notifications (KB905474) (HKLM\...\WgaNotify) (Version: 1.9.0040.0 - Microsoft Corporation)
Windows Internet Explorer 8 (HKLM\...\ie8) (Version: 20090308.140743 - Microsoft Corporation)
Windows Live Asistente para el inicio de sesión (HKLM\...\{7593234B-2AEB-4FC9-B02D-C9B30D86084C}) (Version: 5.000.818.5 - Microsoft Corporation)
Windows Live Essentials (HKLM\...\WinLiveSuite_Wave3) (Version: 14.0.8117.0416 - Microsoft Corporation)
Windows Live Upload Tool (HKLM\...\{205C6BDD-7B73-42DE-8505-9A093F35A238}) (Version: 14.0.8014.1029 - Microsoft Corporation)
Windows Media Format 11 runtime (HKLM\...\Windows Media Format Runtime) (Version: - )
Windows Media Player Firefox Plugin (HKLM\...\{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}) (Version: 1.0.0.8 - Microsoft Corp)
Windows PowerShell(TM) 1.0 (HKLM\...\KB926139-v2) (Version: 2 - Microsoft Corporation)
WinRAR archiver (HKLM\...\WinRAR archiver) (Version: - )

==================== Custom CLSID (selected items): ==========================

(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)

CustomCLSID: HKU\S-1-5-21-1844237615-1767777339-1417001333-1003_Classes\CLSID\{005A3A96-BAC4-4B0A-94EA-C0CE100EA736}\localserver32 -> C:\Documents and Settings\cacha\Datos de programa\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1844237615-1767777339-1417001333-1003_Classes\CLSID\{E69341A3-E6D2-4175-B60C-C9D3D6FA40F6}\localserver32 -> C:\Documents and Settings\cacha\Datos de programa\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1844237615-1767777339-1417001333-1003_Classes\CLSID\{ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C}\InprocServer32 -> C:\Documents and Settings\cacha\Datos de programa\Dropbox\bin\DropboxExt.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1844237615-1767777339-1417001333-1003_Classes\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Documents and Settings\cacha\Datos de programa\Dropbox\bin\DropboxExt.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1844237615-1767777339-1417001333-1003_Classes\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Documents and Settings\cacha\Datos de programa\Dropbox\bin\DropboxExt.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1844237615-1767777339-1417001333-1003_Classes\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Documents and Settings\cacha\Datos de programa\Dropbox\bin\DropboxExt.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1844237615-1767777339-1417001333-1003_Classes\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Documents and Settings\cacha\Datos de programa\Dropbox\bin\DropboxExt.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1844237615-1767777339-1417001333-1003_Classes\CLSID\{FB314EDD-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Documents and Settings\cacha\Datos de programa\Dropbox\bin\DropboxExt.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1844237615-1767777339-1417001333-1003_Classes\CLSID\{FB314EDE-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Documents and Settings\cacha\Datos de programa\Dropbox\bin\DropboxExt.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1844237615-1767777339-1417001333-1003_Classes\CLSID\{FB314EDF-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Documents and Settings\cacha\Datos de programa\Dropbox\bin\DropboxExt.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1844237615-1767777339-1417001333-1003_Classes\CLSID\{FB314EE0-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Documents and Settings\cacha\Datos de programa\Dropbox\bin\DropboxExt.25.dll (Dropbox, Inc.)

==================== Restore Points =========================

31-01-2015 17:14:48 Punto de control del sistema
02-02-2015 15:01:26 Punto de control del sistema
05-02-2015 18:38:38 Punto de control del sistema
06-02-2015 19:52:43 Punto de control del sistema
08-02-2015 11:53:28 Punto de control del sistema
09-02-2015 14:44:00 Punto de control del sistema
10-02-2015 20:00:16 Punto de control del sistema
11-02-2015 16:00:31 Software Distribution Service 3.0
13-02-2015 10:51:24 Punto de control del sistema
14-02-2015 12:30:36 Punto de control del sistema
16-02-2015 10:05:56 Punto de control del sistema
17-02-2015 13:14:18 Punto de control del sistema
18-02-2015 14:59:51 Punto de control del sistema
19-02-2015 18:51:43 Punto de control del sistema
21-02-2015 09:37:58 Punto de control del sistema
24-02-2015 09:58:05 Punto de control del sistema
26-02-2015 18:50:32 Punto de control del sistema
27-02-2015 19:05:17 Punto de control del sistema
28-02-2015 20:41:54 Punto de control del sistema
03-03-2015 12:12:35 Punto de control del sistema
04-03-2015 19:24:52 Punto de control del sistema
06-03-2015 16:19:42 Punto de control del sistema
08-03-2015 09:33:07 Punto de control del sistema
09-03-2015 09:45:25 Punto de control del sistema
10-03-2015 18:55:10 Punto de control del sistema
11-03-2015 23:02:16 Software Distribution Service 3.0
13-03-2015 08:27:45 Punto de control del sistema
15-03-2015 12:50:26 Punto de control del sistema
19-03-2015 16:14:05 Punto de control del sistema
22-03-2015 12:47:15 Punto de control del sistema
24-03-2015 17:29:23 Punto de control del sistema
26-03-2015 13:09:42 Punto de control del sistema
27-03-2015 13:47:19 Punto de control del sistema
29-03-2015 10:43:02 Punto de control del sistema
31-03-2015 17:57:00 Punto de control del sistema
01-04-2015 23:04:23 Punto de control del sistema
04-04-2015 14:16:09 Punto de control del sistema
06-04-2015 14:56:05 Punto de control del sistema
07-04-2015 18:58:35 Punto de control del sistema
09-04-2015 21:09:26 Punto de control del sistema
11-04-2015 13:45:42 Punto de control del sistema
12-04-2015 18:42:18 Punto de control del sistema
15-04-2015 16:00:37 Software Distribution Service 3.0
16-04-2015 19:02:03 Punto de control del sistema
17-04-2015 21:01:03 Punto de control del sistema
17-04-2015 22:08:21 Installed Asoftech Data Recovery
17-04-2015 23:16:33 Skype™ 6.11 eliminado
18-04-2015 16:19:12 Removed Asoftech Data Recovery
19-04-2015 20:33:22 Punto de control del sistema
21-04-2015 08:31:50 Punto de control del sistema
22-04-2015 09:03:56 Punto de control del sistema
23-04-2015 09:59:26 Punto de control del sistema
24-04-2015 18:24:50 Punto de control del sistema
25-04-2015 18:46:34 Punto de control del sistema
27-04-2015 11:48:48 Punto de control del sistema
28-04-2015 17:00:07 Punto de control del sistema
29-04-2015 18:10:24 Punto de control del sistema

==================== Scheduled Tasks (whitelisted) =============

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\Check for updates (Spybot - Search & Destroy).job => C:\Archivos de programa\Spybot - Search & Destroy 2\SDUpdate.exe
Task: C:\WINDOWS\Tasks\Driver Robot.job => C:\Archivos de programa\Driver Robot\Driver Robot.lnk
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Archivos de programa\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Archivos de programa\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\Notificación de inicio de sesión de fin de servicio de Microsoft Windows XP.job => C:\WINDOWS\system32\xp_eos.exe
Task: C:\WINDOWS\Tasks\Notificación mensual de fin de servicio de Microsoft Windows XP.job => C:\WINDOWS\system32\xp_eos.exe
Task: C:\WINDOWS\Tasks\Refresh immunization (Spybot - Search & Destroy).job => C:\Archivos de programa\Spybot - Search & Destroy 2\SDImmunize.exe
Task: C:\WINDOWS\Tasks\Scan the system (Spybot - Search & Destroy).job => C:\Archivos de programa\Spybot - Search & Destroy 2\SDScan.exe
Task: C:\WINDOWS\Tasks\User_Feed_Synchronization-{C604CD4C-5685-42BB-8F60-C2D813575826}.job => C:\WINDOWS\system32\msfeedssync.exe

==================== Loaded Modules (whitelisted) ==============

2012-03-07 23:28 - 2008-10-24 13:00 - 00024064 _____ () C:\WINDOWS\System32\WLTRYSVC.EXE
2012-03-07 23:28 - 2008-10-24 13:00 - 00753664 _____ () C:\WINDOWS\System32\bcm1xsup.dll
2012-03-07 23:28 - 2008-10-24 13:00 - 00143360 _____ () C:\WINDOWS\system32\preflib.dll
2015-04-17 21:43 - 2014-05-13 12:04 - 00109400 _____ () C:\Archivos de programa\Spybot - Search & Destroy 2\snlThirdParty150.bpl
2015-04-17 21:43 - 2014-05-13 12:04 - 00416600 _____ () C:\Archivos de programa\Spybot - Search & Destroy 2\DEC150.bpl
2015-04-17 21:43 - 2014-05-13 12:04 - 00167768 _____ () C:\Archivos de programa\Spybot - Search & Destroy 2\snlFileFormats150.bpl
2008-09-17 14:20 - 2008-09-17 14:20 - 02842624 _____ () C:\WINDOWS\system32\btwicons.dll
2015-04-17 21:43 - 2012-08-23 10:38 - 00574840 _____ () C:\Archivos de programa\Spybot - Search & Destroy 2\sqlite3.dll
2015-04-17 21:43 - 2012-04-03 17:06 - 00565640 _____ () C:\Archivos de programa\Spybot - Search & Destroy 2\av\BDSmartDB.dll
2008-04-13 20:00 - 2008-04-13 20:00 - 00014336 _____ () C:\WINDOWS\system32\msdmo.dll
2013-07-10 18:07 - 2013-07-10 18:07 - 00756888 _____ () C:\Archivos de programa\Archivos comunes\Microsoft Shared\OFFICE12\MSPTLS.DLL

==================== Alternate Data Streams (whitelisted) =========

(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)

AlternateDataStreams: C:\WINDOWS:nlsPreferences
AlternateDataStreams: C:\Documents and Settings\cacha\Escritorio\Adobe InDesign CS6.exe:SummaryInformation
AlternateDataStreams: C:\Documents and Settings\cacha\Escritorio\Adobe InDesign CS6.exe:Updt_SummaryInformation
AlternateDataStreams: C:\Documents and Settings\cacha\Escritorio\Adobe InDesign CS6.exe:{4c8cc155-6c1e-11d1-8e41-00c04fb9386d}
AlternateDataStreams: C:\Documents and Settings\cacha\Mis documentos\Fahce.rar:com.dropbox.attributes

==================== Safe Mode (whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Wdf01000.sys => ""="Driver"

==================== EXE Association (whitelisted) ===============

(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, the associated entry will be removed from the registry.)

IE restricted site: HKU\.DEFAULT\...\007guard.com -> install.007guard.com
IE restricted site: HKU\.DEFAULT\...\008i.com -> 008i.com
IE restricted site: HKU\.DEFAULT\...\008k.com -> www.008k.com
IE restricted site: HKU\.DEFAULT\...\00hq.com -> www.00hq.com
IE restricted site: HKU\.DEFAULT\...\010402.com -> 010402.com
IE restricted site: HKU\.DEFAULT\...\032439.com -> 80gw6ry3i3x3qbrkwhxhw.032439.com
IE restricted site: HKU\.DEFAULT\...\0scan.com -> www.0scan.com
IE restricted site: HKU\.DEFAULT\...\1-2005-search.com -> www.1-2005-search.com
IE restricted site: HKU\.DEFAULT\...\1-domains-registrations.com -> www.1-domains-registrations.com
IE restricted site: HKU\.DEFAULT\...\1000gratisproben.com -> www.1000gratisproben.com
IE restricted site: HKU\.DEFAULT\...\1001namen.com -> www.1001namen.com
IE restricted site: HKU\.DEFAULT\...\100888290cs.com -> mir.100888290cs.com
IE restricted site: HKU\.DEFAULT\...\100sexlinks.com -> www.100sexlinks.com
IE restricted site: HKU\.DEFAULT\...\10sek.com -> www.10sek.com
IE restricted site: HKU\.DEFAULT\...\12-26.net -> user1.12-26.net
IE restricted site: HKU\.DEFAULT\...\12-27.net -> user1.12-27.net
IE restricted site: HKU\.DEFAULT\...\123fporn.info -> www.123fporn.info
IE restricted site: HKU\.DEFAULT\...\123haustiereundmehr.com -> www.123haustiereundmehr.com
IE restricted site: HKU\.DEFAULT\...\123moviedownload.com -> www.123moviedownload.com
IE restricted site: HKU\.DEFAULT\...\123simsen.com -> www.123simsen.com

There are 7868 more restricted sites.

==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-1844237615-1767777339-1417001333-1003\Control Panel\Desktop\\Wallpaper -> C:\Documents and Settings\cacha\Configuración local\Datos de programa\Microsoft\Wallpaper1.bmp
DNS Servers: 108.168.162.137 - 8.8.4.4

==================== MSCONFIG/TASK MANAGER disabled items ==

(Currently there is no automatic fix for this section.)

MSCONFIG\startupfolder: C:^Documents and Settings^All Users^Menú Inicio^Programas^Inicio^HP Digital Imaging Monitor.lnk => C:\WINDOWS\pss\HP Digital Imaging Monitor.lnkCommon Startup
MSCONFIG\startupreg: ares => "C:\Archivos de programa\Ares\Ares.exe" -h

==================== FirewallRules (whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)

DomainProfile\AuthorizedApplications: [C:\Archivos de programa\Windows Live\Messenger\wlcsdk.exe] => Enabled:Windows Live Call
DomainProfile\AuthorizedApplications: [C:\Archivos de programa\Windows Live\Messenger\msnmsgr.exe] => Enabled:Windows Live Messenger
StandardProfile\AuthorizedApplications: [C:\Archivos de programa\Ares\Ares.exe] => Enabled:Ares p2p for windows
StandardProfile\AuthorizedApplications: [C:\Archivos de programa\Microsoft Office\Office12\OUTLOOK.EXE] => Enabled:Microsoft Office Outlook
StandardProfile\AuthorizedApplications: [C:\Archivos de programa\Microsoft Office\Office12\GROOVE.EXE] => Enabled:Microsoft Office Groove
StandardProfile\AuthorizedApplications: [C:\Archivos de programa\Microsoft Office\Office12\ONENOTE.EXE] => Enabled:Microsoft Office OneNote
StandardProfile\AuthorizedApplications: [C:\Archivos de programa\Windows Live\Messenger\wlcsdk.exe] => Enabled:Windows Live Call
StandardProfile\AuthorizedApplications: [C:\Archivos de programa\Windows Live\Messenger\msnmsgr.exe] => Enabled:Windows Live Messenger
StandardProfile\AuthorizedApplications: [C:\Archivos de programa\HP\Digital Imaging\bin\hpqtra08.exe] => Enabled:hpqtra08.exe
StandardProfile\AuthorizedApplications: [C:\Archivos de programa\HP\Digital Imaging\bin\hpqste08.exe] => Enabled:hpqste08.exe
StandardProfile\AuthorizedApplications: [C:\Archivos de programa\HP\Digital Imaging\bin\hposid01.exe] => Enabled:hposid01.exe
StandardProfile\AuthorizedApplications: [C:\Archivos de programa\HP\Digital Imaging\bin\hpiscnapp.exe] => Enabled:hpiscnapp.exe
StandardProfile\AuthorizedApplications: [C:\Archivos de programa\HP\Digital Imaging\bin\hpqkygrp.exe] => Enabled:hpqkygrp.exe
StandardProfile\AuthorizedApplications: [C:\Archivos de programa\Java\jre7\bin\javaw.exe] => Enabled:Java(TM) Platform SE binary
StandardProfile\AuthorizedApplications: [C:\WINDOWS\system32\dpvsetup.exe] => Enabled:Microsoft DirectPlay Voice Test
StandardProfile\AuthorizedApplications: [C:\WINDOWS\system32\rundll32.exe] => Enabled:Ejecutar un archivo DLL como una aplicación
StandardProfile\AuthorizedApplications: [C:\WINDOWS\system32\muzapp.exe] => Enabled:MUZ AOD APP player
StandardProfile\AuthorizedApplications: [C:\Documents and Settings\cacha\Datos de programa\Dropbox\bin\Dropbox.exe] => Enabled:Dropbox
StandardProfile\AuthorizedApplications: [C:\Documents and Settings\cacha\Datos de programa\Spotify\spotify.exe] => Enabled:Spotify
StandardProfile\AuthorizedApplications: [C:\Archivos de programa\DUE-3.0\java\bin\javaw.exe] => Enabled:Java(TM) 2 Platform Standard Edition binary
StandardProfile\AuthorizedApplications: [C:\Documents and Settings\cacha\Escritorio\BitTorrent.exe] => Enabled:BitTorrent2
StandardProfile\AuthorizedApplications: [C:\Documents and Settings\cacha\Datos de programa\BitTorrent\BitTorrent.exe] => Enabled:BitTorrent
StandardProfile\AuthorizedApplications: [C:\Archivos de programa\Google\Chrome\Application\chrome.exe] => Enabled:Google Chrome
StandardProfile\AuthorizedApplications: [C:\Archivos de programa\Spybot - Search & Destroy 2\SDTray.exe] => Enabled:Spybot - Search & Destroy tray access
StandardProfile\AuthorizedApplications: [C:\Archivos de programa\Spybot - Search & Destroy 2\SDFSSvc.exe] => Enabled:Spybot-S&D 2 Scanner Service
StandardProfile\AuthorizedApplications: [C:\Archivos de programa\Spybot - Search & Destroy 2\SDUpdate.exe] => Enabled:Spybot-S&D 2 Updater
StandardProfile\AuthorizedApplications: [C:\Archivos de programa\Spybot - Search & Destroy 2\SDUpdSvc.exe] => Enabled:Spybot-S&D 2 Background update service
StandardProfile\AuthorizedApplications: [C:\Archivos de programa\Mozilla Firefox\firefox.exe] => Enabled:Firefox (C:\Archivos de programa\Mozilla Firefox)
DomainProfile\GloballyOpenPorts: [1900:UDP] => :LocalSubNet:Enabled:@xpsp2res.dll,-22007
DomainProfile\GloballyOpenPorts: [2869:TCP] => :LocalSubNet:Enabled:@xpsp2res.dll,-22008
DomainProfile\GloballyOpenPorts: [10243:TCP] => :LocalSubNet:Enabled:Servicio de uso compartido de red del Reproductor de Windows Media
DomainProfile\GloballyOpenPorts: [10280:UDP] => :LocalSubNet:Enabled:Servicio de uso compartido de red del Reproductor de Windows Media
DomainProfile\GloballyOpenPorts: [10281:UDP] => :LocalSubNet:Enabled:Servicio de uso compartido de red del Reproductor de Windows Media
DomainProfile\GloballyOpenPorts: [10282:UDP] => :LocalSubNet:Enabled:Servicio de uso compartido de red del Reproductor de Windows Media
DomainProfile\GloballyOpenPorts: [10283:UDP] => :LocalSubNet:Enabled:Servicio de uso compartido de red del Reproductor de Windows Media
DomainProfile\GloballyOpenPorts: [10284:UDP] => :LocalSubNet:Enabled:Servicio de uso compartido de red del Reproductor de Windows Media
StandardProfile\GloballyOpenPorts: [1900:UDP] => :LocalSubNet:Enabled:@xpsp2res.dll,-22007
StandardProfile\GloballyOpenPorts: [2869:TCP] => :LocalSubNet:Enabled:@xpsp2res.dll,-22008
StandardProfile\GloballyOpenPorts: [139:TCP] => :LocalSubNet:Disabled:@xpsp2res.dll,-22004
StandardProfile\GloballyOpenPorts: [445:TCP] => :LocalSubNet:Disabled:@xpsp2res.dll,-22005
StandardProfile\GloballyOpenPorts: [137:UDP] => :LocalSubNet:Disabled:@xpsp2res.dll,-22001
StandardProfile\GloballyOpenPorts: [138:UDP] => :LocalSubNet:Disabled:@xpsp2res.dll,-22002
StandardProfile\GloballyOpenPorts: [8743:TCP] => Enabled:AllShareFrameWorkDMS Action TCP Port
StandardProfile\GloballyOpenPorts: [8643:TCP] => Enabled:AllShareFrameWorkDMS Event TCP Port
StandardProfile\GloballyOpenPorts: [7676:TCP] => Enabled:AllShareFrameWorkDMS Service TCP Port1
StandardProfile\GloballyOpenPorts: [7679:TCP] => Enabled:AllShareFrameWorkDMS Service TCP Port2
StandardProfile\GloballyOpenPorts: [24234:TCP] => Enabled:AllShareFramework DMS service UDP Port1
StandardProfile\GloballyOpenPorts: [7900:TCP] => Enabled:AllShareFramework DMS service UDP Port2
StandardProfile\GloballyOpenPorts: [1900:TCP] => Enabled:UPnP Multicast Port
StandardProfile\GloballyOpenPorts: [10243:TCP] => :LocalSubNet:Enabled:Servicio de uso compartido de red del Reproductor de Windows Media
StandardProfile\GloballyOpenPorts: [10280:UDP] => :LocalSubNet:Enabled:Servicio de uso compartido de red del Reproductor de Windows Media
StandardProfile\GloballyOpenPorts: [10281:UDP] => :LocalSubNet:Enabled:Servicio de uso compartido de red del Reproductor de Windows Media
StandardProfile\GloballyOpenPorts: [10282:UDP] => :LocalSubNet:Enabled:Servicio de uso compartido de red del Reproductor de Windows Media
StandardProfile\GloballyOpenPorts: [10283:UDP] => :LocalSubNet:Enabled:Servicio de uso compartido de red del Reproductor de Windows Media
StandardProfile\GloballyOpenPorts: [10284:UDP] => :LocalSubNet:Enabled:Servicio de uso compartido de red del Reproductor de Windows Media

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (04/13/2015 04:26:19 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Aplicación con errores: photoshop.exe, versión: 13.0.0.0, módulo con error: nvoglnt.dll, versión 6.14.11.7917, dirección de error 0x00121e2d.
Procesando suceso específico de medio para [photoshop.exe!ws!]

Error: (03/30/2015 03:35:19 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Aplicación con errores: photoshop.exe, versión: 13.0.0.0, módulo con error: nvoglnt.dll, versión 6.14.11.7917, dirección de error 0x00121e2d.
Procesando suceso específico de medio para [photoshop.exe!ws!]

Error: (03/27/2015 06:00:44 PM) (Source: MsiInstaller) (EventID: 10005) (User: FLORNOTE)
Description: Product: Adobe Photoshop Lightroom 5.6 -- Adobe Photoshop Lightroom 5.6 requires that your computer is running Windows 7 or later

Error: (03/22/2015 10:13:17 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Aplicación con errores: drwtsn32.exe, versión: 5.1.2600.0, módulo con error: dbghelp.dll, versión 5.1.2600.5512, dirección de error 0x0001295d.
Procesando suceso específico de medio para [drwtsn32.exe!ws!]

Error: (03/22/2015 10:13:12 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Aplicación con errores: explorer.exe, versión: 6.0.2900.5512, módulo con error: avcodec-lav-54.dll, versión 0.0.0.0, dirección de error 0x002b4272.
Procesando suceso específico de medio para [explorer.exe!ws!]

Error: (03/20/2015 01:58:59 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Aplicación con errores: dropbox.exe, versión: 3.2.9.0, módulo con error: qt5core.dll, versión 5.3.2.0, dirección de error 0x0001bac6.
Procesando suceso específico de medio para [dropbox.exe!ws!]

Error: (03/19/2015 07:35:17 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Aplicación con errores: dropbox.exe, versión: 3.2.9.0, módulo con error: qt5core.dll, versión 5.3.2.0, dirección de error 0x0001bac6.
Procesando suceso específico de medio para [dropbox.exe!ws!]

Error: (03/18/2015 03:05:28 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Aplicación con errores: dropbox.exe, versión: 3.2.9.0, módulo con error: qt5core.dll, versión 5.3.2.0, dirección de error 0x0001bac6.
Procesando suceso específico de medio para [dropbox.exe!ws!]

Error: (03/17/2015 00:46:11 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Aplicación con errores: dropbox.exe, versión: 3.2.9.0, módulo con error: qt5core.dll, versión 5.3.2.0, dirección de error 0x0001bac6.
Procesando suceso específico de medio para [dropbox.exe!ws!]

Error: (03/16/2015 07:33:04 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Aplicación con errores: dropbox.exe, versión: 3.2.9.0, módulo con error: qt5core.dll, versión 5.3.2.0, dirección de error 0x0001bac6.
Procesando suceso específico de medio para [dropbox.exe!ws!]


System errors:
=============
Error: (04/30/2015 05:00:54 PM) (Source: Dhcp) (EventID: 1002) (User: )
Description: La concesión de la dirección IP 192.168.1.4 para la tarjeta de red con la dirección de red 0C607605E4CD ha sido
denegada por el servidor DHCP 192.168.1.1 (el servidor DHCP envió un mensaje DHCPNACK).

Error: (04/30/2015 05:00:22 PM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: El servicio Servicio HP CUE DeviceDiscovery permanece en inicio.

Error: (04/30/2015 05:00:22 PM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: El servicio ESET Service permanece en inicio.

Error: (04/30/2015 04:59:02 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: El servicio Spybot-S&D 2 Security Center Service no pudo iniciarse debido al siguiente error:
%%1053

Error: (04/30/2015 04:59:02 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Intervalo de espera (30000 ms.) para la conexión con el servicio Spybot-S&D 2 Security Center Service.

Error: (04/30/2015 04:58:56 PM) (Source: 0) (EventID: 1) (User: )
Description: \Device\ACPIEC

Error: (04/30/2015 08:53:21 AM) (Source: Dhcp) (EventID: 1002) (User: )
Description: La concesión de la dirección IP 192.168.1.4 para la tarjeta de red con la dirección de red 0C607605E4CD ha sido
denegada por el servidor DHCP 192.168.1.1 (el servidor DHCP envió un mensaje DHCPNACK).

Error: (04/30/2015 08:52:46 AM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: El servicio Servicio HP CUE DeviceDiscovery permanece en inicio.

Error: (04/30/2015 08:52:46 AM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: El servicio ESET Service permanece en inicio.

Error: (04/30/2015 08:51:26 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: El servicio Spybot-S&D 2 Security Center Service no pudo iniciarse debido al siguiente error:
%%1053


Microsoft Office Sessions:
=========================

==================== Memory info ===========================

Processor: Intel(R) Core(TM)2 Duo CPU T6670 @ 2.20GHz
Percentage of memory in use: 45%
Total physical RAM: 3066.82 MB
Available physical RAM: 1663.35 MB
Total Pagefile: 4951.94 MB
Available Pagefile: 3512.59 MB
Total Virtual: 2047.88 MB
Available Virtual: 1934.47 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:232.85 GB) (Free:91.87 GB) NTFS ==>[Drive with boot components (Windows XP)]

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 232.9 GB) (Disk ID: 4DC5FDDF)
Partition 1: (Not Active) - (Size=39 MB) - (Type=DE)
Partition 2: (Active) - (Size=232.8 GB) - (Type=07 NTFS)

==================== End Of Log ============================
Juliet
2015-05-01, 13:37
http://i.imgur.com/goGMWSt.gifP2P Warning

------------------------------
I see you have peer-to-peer (P2P) file sharing software installed on your computer (Ares 2.1.7 and BitTorrent). I advise you avoid P2P file sharing programmes; they are a security risk which can make your computer susceptible to malware. File sharing networks are thoroughly infected and infested with malware - worms (http://en.wikipedia.org/wiki/Computer_worm), backdoor Trojans (http://www.symantec.com/security_response/writeup.jsp?docid=2001-062614-1754-99), IRCBots (http://en.wikipedia.org/wiki/IRC_bot), and rootkits (http://en.wikipedia.org/wiki/Rootkit) propagate via P2P file sharing networks, gaming, and underground sites. Users visiting such pages may see innocuous-looking banner ads containing code which can trigger pop-up ads and malicious Flash ads that install viruses, Trojans, and spyware. The best way to reduce the risk of infection is to avoid these types of web sites and not use P2P applications. Please read the following articles for more information.

Risks of File-Sharing Technology (http://www.us-cert.gov/cas/tips/ST05-007.html)
P2P Software User Advisories (http://aresgalaxy.sourceforge.net/p2prisks.htm)
More malware is traveling on P2P networks these days (http://www.computerworld.com/s/article/9240067/More_malware_is_traveling_on_P2P_networks_these_days)

Your P2P software can be removed by following the instructions below.

Press the Windows Key http://i.imgur.com/pdKOQKY.png + r on your keyboard at the same time. Type appwiz.cpl and click OK.
Search for the aforementioned programme(s), right-click and click Uninstall.

If you choose not to, please refrain from using the programme(s) during this process.

~~~~~~~~~~~~~~~~~

Running from C:\Documents and Settings\cacha\Escritorio
It's best we move Farbar's to desktop.

Please go to your Escritorio folder
locate Farbar Recovery Scan Tool, right click and select CUT
Go to an open spot on your desktop, right click and select PASTE
You should now have Farbar Recovery Scan Tool on your desktop.


Please open Notepad *Do Not Use Wordpad!* or use any other text editor than Notepad or the script will fail. (Start -> Run -> type notepad in the Open field -> OK) and copy and paste the text present inside the quote box below:
To do this highlight the contents of the box and right click on it and select copy.
Paste this into the open notepad. save it to the Desktop as fixlist.txt
NOTE. It's important that both files, FRST/FRST64 and fixlist.txt are in the same location or the fix will not work.
It needs to be saved Next to the "Farbar Recovery Scan Tool" (If asked to overwrite existing one please allow)


https://dl.dropboxusercontent.com/u/73555776/FRSTfix.JPG




start
CreateRestorePoint:
CloseProcesses:
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
ProxyServer: [S-1-5-21-1844237615-1767777339-1417001333-1003] => localhost:8080
URLSearchHook: HKU\S-1-5-21-1844237615-1767777339-1417001333-1003 - BittorrentBar_ES Toolbar - {ad06fb5f-fef7-4a84-8c58-dca34f8e3d36} - No File
URLSearchHook: HKU\S-1-5-21-1844237615-1767777339-1417001333-1003 - BitTorrentBar Toolbar - {88c7f2aa-f93f-432c-8f0e-b7d85967a527} - No File
SearchScopes: HKU\S-1-5-21-1844237615-1767777339-1417001333-1003 -> {3E3A04E4-65A7-4BF0-BE56-A25D6C594ACF} URL = http://websearch.ask.com/redirect?client=ie&tb=ORJ&o=100000027&src=crm&q={searchTerms}&locale=es_ES&apn_ptnrs=^U3&apn_dtid=^OSJ000^YY^AR&apn_uid=29B3F03A-E8F4-4364-BB2F-056CD38F361A&apn_sauid=74974A9E-826B-490A-A51C-B8A407B7C46D
BHO: No Name -> {5C255C8A-E604-49b4-9D64-90988571CECB} -> No File
BHO: BitTorrentBar Toolbar -> {88c7f2aa-f93f-432c-8f0e-b7d85967a527} -> No File
BHO: BittorrentBar_ES Toolbar -> {ad06fb5f-fef7-4a84-8c58-dca34f8e3d36} -> No File
Toolbar: HKLM - BittorrentBar_ES Toolbar - {ad06fb5f-fef7-4a84-8c58-dca34f8e3d36} - No File
Toolbar: HKLM - BitTorrentBar Toolbar - {88c7f2aa-f93f-432c-8f0e-b7d85967a527} - No File
Toolbar: HKU\S-1-5-21-1844237615-1767777339-1417001333-1003 -> BitTorrentBar Toolbar - {88C7F2AA-F93F-432C-8F0E-B7D85967A527} - No File
Toolbar: HKU\S-1-5-21-1844237615-1767777339-1417001333-1003 -> BittorrentBar_ES Toolbar - {AD06FB5F-FEF7-4A84-8C58-DCA34F8E3D36} - No File
Toolbar: HKU\S-1-5-21-1844237615-1767777339-1417001333-1003 -> No Name - {D4027C7F-154A-4066-A1AD-4243D8127440} - No File
CHR HKLM\...\Chrome\Extension: [lhpgolofjlpnkdafbgejgnclbjnpgfee] - C:\DOCUME~1\cacha\CONFIG~1\Temp\ccex.crx [Not Found]
CHR HKLM\...\Chrome\Extension: [mhfdcmehmjcclgopdodkjdicohagipid] - C:\Documents and Settings\cacha\Configuración local\Datos de programa\CRE\mhfdcmehmjcclgopdodkjdicohagipid.crx [2012-04-17]
CHR HKU\S-1-5-21-1844237615-1767777339-1417001333-1003\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [apdfllckaahabafndbhieahigkjlhalf] - C:\DOCUME~1\cacha\CONFIG~1\DATOSD~1\Google\Drive\user_default\apdfllckaahabafndbhieahigkjlhalf_live.crx [2015-02-21]
CHR HKU\S-1-5-21-1844237615-1767777339-1417001333-1003\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [mhfdcmehmjcclgopdodkjdicohagipid] - C:\Documents and Settings\cacha\Configuración local\Datos de programa\CRE\mhfdcmehmjcclgopdodkjdicohagipid.crx [2012-04-17]
C:\Documents and Settings\cacha\Configuración local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmp1nbvlu.dll
C:\Documents and Settings\cacha\Configuración local\Temp\swt-gdip-win32-3346.dll
C:\Documents and Settings\cacha\Configuración local\Temp\swt-win32-3346.dll
AlternateDataStreams: C:\WINDOWS:nlsPreferences
EmptyTemp:
End


Open FRST/FRST64 and press the Fix button just once and wait.
If for some reason the tool needs a restart, please make sure you let the system restart normally. After that let the tool complete its run.
When finished FRST will generate a log on the Desktop (Fixlog.txt). Please post it to your reply.

~~~~~~~~~~~~~~~~~~~~``

http://i.imgur.com/BY4dvz9.png AdwCleaner

Please download AdwCleaner (http://www.bleepingcomputer.com/download/adwcleaner/) and save the file to your Desktop.
Right-Click AdwCleaner.exe and select http://i.imgur.com/AVOiBNU.jpg Run as administrator to run the programme.
Follow the prompts.
Click Scan.
Upon completion, click Report. A log (AdwCleaner[R0].txt) will open. Briefly check the log for anything you know to be legitimate.
Ensure anything you know to be legitimate does not have a checkmark, and click Clean.
Follow the prompts and allow your computer to reboot.
After rebooting, a log (AdwCleaner[S0].txt) will open. Copy the contents of the log and paste in your next reply.

-- File and registry key backups are made for anything removed using this tool. Should a legitimate entry be removed (otherwise known as a 'false-positive'), simple steps can be taken to restore the entry. Please do not overly concern yourself with the contents of AdwCleaner[R0].txt.

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~


http://imageshack.us/a/img841/7292/thisisujrt.gif
Please download Junkware Removal Tool (http://www.bleepingcomputer.com/download/junkware-removal-tool/) to your desktop.

Shut down your protection software now to avoid potential conflicts.
Run the tool by double-clicking it. If you are using Windows Vista, 7, or 8; instead of double-clicking, right-mouse click JRT.exe and select "Run as Administrator".
The tool will open and start scanning your system.
Please be patient as this can take a while to complete depending on your system's specifications.
On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
Post the contents of JRT.txt into your next message.


*******
please post
Fixlog.txt
C:\AdwCleaner.txt
JRT.txt
Juliet
2015-05-01, 13:47
Also, your version of Java is severely outdated
Go to the web site below to test which version is running and which version you should have on your machine to patch security exploits.

http://javatester.org/version.html
Juliet
2015-05-05, 23:37
Still need help?
florenciam
2015-05-06, 00:11
Yes, sorry for the delay.

I'm pretty embarrassed because I couldn't move Farbar to desktop, I tried doing what you said but a message appears, it says that I cannnot move the element to the same place it was before.

Besides, I found out that I don't have Notepad installed on my computer (I've looked for it everywhere) so I downloaded Notepad++, copied and pasted the text you attached and pressed the "Fix" button.

I attach the Fixlog:

Fix result of Farbar Recovery Tool (FRST written by Farbar) (x86) Version: 29-04-2015 01
Ran by cacha at 2015-05-01 19:25:05 Run:1
Running from C:\Documents and Settings\cacha\Escritorio
Loaded Profiles: cacha (Available profiles: cacha & Administrador & Invitado)
Boot Mode: Normal

==============================================

Content of fixlist:
*****************
start
CreateRestorePoint:
CloseProcesses:
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
ProxyServer: [S-1-5-21-1844237615-1767777339-1417001333-1003] => localhost:8080
URLSearchHook: HKU\S-1-5-21-1844237615-1767777339-1417001333-1003 - BittorrentBar_ES Toolbar - {ad06fb5f-fef7-4a84-8c58-dca34f8e3d36} - No File
URLSearchHook: HKU\S-1-5-21-1844237615-1767777339-1417001333-1003 - BitTorrentBar Toolbar - {88c7f2aa-f93f-432c-8f0e-b7d85967a527} - No File
SearchScopes: HKU\S-1-5-21-1844237615-1767777339-1417001333-1003 -> {3E3A04E4-65A7-4BF0-BE56-A25D6C594ACF} URL = http://websearch.ask.com/redirect?client=ie&tb=ORJ&o=100000027&src=crm&q={searchTerms}&locale=es_ES&apn_ptnrs=^U3&apn_dtid=^OSJ000^YY^AR&apn_uid=29B3F03A-E8F4-4364-BB2F-056CD38F361A&apn_sauid=74974A9E-826B-490A-A51C-B8A407B7C46D
BHO: No Name -> {5C255C8A-E604-49b4-9D64-90988571CECB} -> No File
BHO: BitTorrentBar Toolbar -> {88c7f2aa-f93f-432c-8f0e-b7d85967a527} -> No File
BHO: BittorrentBar_ES Toolbar -> {ad06fb5f-fef7-4a84-8c58-dca34f8e3d36} -> No File
Toolbar: HKLM - BittorrentBar_ES Toolbar - {ad06fb5f-fef7-4a84-8c58-dca34f8e3d36} - No File
Toolbar: HKLM - BitTorrentBar Toolbar - {88c7f2aa-f93f-432c-8f0e-b7d85967a527} - No File
Toolbar: HKU\S-1-5-21-1844237615-1767777339-1417001333-1003 -> BitTorrentBar Toolbar - {88C7F2AA-F93F-432C-8F0E-B7D85967A527} - No File
Toolbar: HKU\S-1-5-21-1844237615-1767777339-1417001333-1003 -> BittorrentBar_ES Toolbar - {AD06FB5F-FEF7-4A84-8C58-DCA34F8E3D36} - No File
Toolbar: HKU\S-1-5-21-1844237615-1767777339-1417001333-1003 -> No Name - {D4027C7F-154A-4066-A1AD-4243D8127440} - No File
CHR HKLM\...\Chrome\Extension: [lhpgolofjlpnkdafbgejgnclbjnpgfee] - C:\DOCUME~1\cacha\CONFIG~1\Temp\ccex.crx [Not Found]
CHR HKLM\...\Chrome\Extension: [mhfdcmehmjcclgopdodkjdicohagipid] - C:\Documents and Settings\cacha\Configuración local\Datos de programa\CRE\mhfdcmehmjcclgopdodkjdicohagipid.crx [2012-04-17]
CHR HKU\S-1-5-21-1844237615-1767777339-1417001333-1003\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [apdfllckaahabafndbhieahigkjlhalf] - C:\DOCUME~1\cacha\CONFIG~1\DATOSD~1\Google\Drive\user_default\apdfllckaahabafndbhieahigkjlhalf_live.crx [2015-02-21]
CHR HKU\S-1-5-21-1844237615-1767777339-1417001333-1003\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [mhfdcmehmjcclgopdodkjdicohagipid] - C:\Documents and Settings\cacha\Configuración local\Datos de programa\CRE\mhfdcmehmjcclgopdodkjdicohagipid.crx [2012-04-17]
C:\Documents and Settings\cacha\Configuración local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmp1nbvlu.dll
C:\Documents and Settings\cacha\Configuración local\Temp\swt-gdip-win32-3346.dll
C:\Documents and Settings\cacha\Configuración local\Temp\swt-win32-3346.dll
AlternateDataStreams: C:\WINDOWS:nlsPreferences
EmptyTemp:
End
*****************

Restore point was successfully created.
Processes closed successfully.
"HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer" => Key deleted successfully.
HKU\S-1-5-21-1844237615-1767777339-1417001333-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings\\ProxyServer => value deleted successfully.
HKU\S-1-5-21-1844237615-1767777339-1417001333-1003\Software\Microsoft\Internet Explorer\URLSearchHooks\\{ad06fb5f-fef7-4a84-8c58-dca34f8e3d36} => value deleted successfully.
"HKCR\CLSID\{ad06fb5f-fef7-4a84-8c58-dca34f8e3d36}" => Key deleted successfully.
HKU\S-1-5-21-1844237615-1767777339-1417001333-1003\Software\Microsoft\Internet Explorer\URLSearchHooks\\{88c7f2aa-f93f-432c-8f0e-b7d85967a527} => value deleted successfully.
"HKCR\CLSID\{88c7f2aa-f93f-432c-8f0e-b7d85967a527}" => Key deleted successfully.
"HKU\S-1-5-21-1844237615-1767777339-1417001333-1003\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{3E3A04E4-65A7-4BF0-BE56-A25D6C594ACF}" => Key deleted successfully.
HKCR\CLSID\{3E3A04E4-65A7-4BF0-BE56-A25D6C594ACF} => Key not found.
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5C255C8A-E604-49b4-9D64-90988571CECB}" => Key deleted successfully.
HKCR\CLSID\{5C255C8A-E604-49b4-9D64-90988571CECB} => Key not found.
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{88c7f2aa-f93f-432c-8f0e-b7d85967a527}" => Key deleted successfully.
HKCR\CLSID\{88c7f2aa-f93f-432c-8f0e-b7d85967a527} => Key not found.
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{ad06fb5f-fef7-4a84-8c58-dca34f8e3d36}" => Key deleted successfully.
HKCR\CLSID\{ad06fb5f-fef7-4a84-8c58-dca34f8e3d36} => Key not found.
HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar\\{ad06fb5f-fef7-4a84-8c58-dca34f8e3d36} => value deleted successfully.
HKCR\CLSID\{ad06fb5f-fef7-4a84-8c58-dca34f8e3d36} => Key not found.
HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar\\{88c7f2aa-f93f-432c-8f0e-b7d85967a527} => value deleted successfully.
HKCR\CLSID\{88c7f2aa-f93f-432c-8f0e-b7d85967a527} => Key not found.
HKU\S-1-5-21-1844237615-1767777339-1417001333-1003\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{88C7F2AA-F93F-432C-8F0E-B7D85967A527} => value deleted successfully.
HKCR\CLSID\{88C7F2AA-F93F-432C-8F0E-B7D85967A527} => Key not found.
HKU\S-1-5-21-1844237615-1767777339-1417001333-1003\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{AD06FB5F-FEF7-4A84-8C58-DCA34F8E3D36} => value deleted successfully.
HKCR\CLSID\{AD06FB5F-FEF7-4A84-8C58-DCA34F8E3D36} => Key not found.
HKU\S-1-5-21-1844237615-1767777339-1417001333-1003\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{D4027C7F-154A-4066-A1AD-4243D8127440} => value deleted successfully.
HKCR\CLSID\{D4027C7F-154A-4066-A1AD-4243D8127440} => Key not found.
"HKLM\SOFTWARE\Google\Chrome\Extensions\lhpgolofjlpnkdafbgejgnclbjnpgfee" => Key deleted successfully.
"HKLM\SOFTWARE\Google\Chrome\Extensions\mhfdcmehmjcclgopdodkjdicohagipid" => Key deleted successfully.
C:\Documents and Settings\cacha\Configuración local\Datos de programa\CRE\mhfdcmehmjcclgopdodkjdicohagipid.crx => Moved successfully.
"HKU\S-1-5-21-1844237615-1767777339-1417001333-1003\SOFTWARE\Google\Chrome\Extensions\apdfllckaahabafndbhieahigkjlhalf" => Key deleted successfully.
C:\DOCUME~1\cacha\CONFIG~1\DATOSD~1\Google\Drive\user_default\apdfllckaahabafndbhieahigkjlhalf_live.crx => Moved successfully.
"HKU\S-1-5-21-1844237615-1767777339-1417001333-1003\SOFTWARE\Google\Chrome\Extensions\mhfdcmehmjcclgopdodkjdicohagipid" => Key deleted successfully.
"C:\Documents and Settings\cacha\Configuración local\Datos de programa\CRE\mhfdcmehmjcclgopdodkjdicohagipid.crx" => File/Directory not found.
"C:\Documents and Settings\cacha\Configuración local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmp1nbvlu.dll" => File/Directory not found.
C:\Documents and Settings\cacha\Configuración local\Temp\swt-gdip-win32-3346.dll => Moved successfully.
C:\Documents and Settings\cacha\Configuración local\Temp\swt-win32-3346.dll => Moved successfully.
C:\WINDOWS => ":nlsPreferences" ADS removed successfully.
florenciam
2015-05-06, 00:14
Should I go on and download AdwCleaner?
Juliet
2015-05-06, 12:58
Don't be embarrassed because I was at fault here, it's apparent now it was located there in the beginning and the script worked.

Yes, please continue with C:\AdwCleaner.txt and JRT.txt
florenciam
2015-05-06, 15:50
Is it ok if I don't click on "run as administrator"? I don't know the password
Juliet
2015-05-06, 16:56
Is it ok if I don't click on "run as administrator"? I don't know the password

If it will allow it. Just clicking on run as administrator shouldn't bring up a password box.
florenciam
2015-05-06, 18:31
This is the log:

# AdwCleaner v4.203 - Logfile created 06/05/2015 at 11:57:13
# Updated 30/04/2015 by Xplode
# Database : 2015-05-05.1 [Server]
# Operating system : Microsoft Windows XP Service Pack 3 (x86)
# Username : cacha - FLORNOTE
# Running from : C:\Documents and Settings\cacha\Escritorio\adwcleaner_4.203.exe
# Option : Cleaning

***** [ Services ] *****


***** [ Files / Folders ] *****

Folder Deleted : C:\BywifiSave
Folder Deleted : C:\BywifiShare
Folder Deleted : C:\Documents and Settings\All Users\Datos de programa\Ask
Folder Deleted : C:\Archivos de programa\Conduit
Folder Deleted : C:\Archivos de programa\SimilarSites
[!] Folder Deleted : C:\WINDOWS\hosts
Folder Deleted : C:\Documents and Settings\cacha\Configuración local\Datos de programa\BitTorrentBar
Folder Deleted : C:\Documents and Settings\cacha\Configuración local\Datos de programa\BittorrentBar_ES
Folder Deleted : C:\Documents and Settings\cacha\Datos de programa\SimilarSites
Folder Deleted : C:\Documents and Settings\cacha\Datos de programa\Systweak
Folder Deleted : C:\Documents and Settings\Invitado\Configuración local\Datos de programa\AskToolbar
File Deleted : C:\Documents and Settings\cacha\Configuración local\Datos de programa\Google\Chrome\User Data\Default\Local Storage\chrome-extension_olakgnkoldmagdblaalodobkmeokmgjj_0.localstorage
File Deleted : C:\Documents and Settings\cacha\Configuración local\Datos de programa\Google\Chrome\User Data\Default\Local Storage\hxxp_en.softonic.com_0.localstorage
File Deleted : C:\Documents and Settings\cacha\Configuración local\Datos de programa\Google\Chrome\User Data\Default\Local Storage\hxxp_en.softonic.com_0.localstorage-journal
File Deleted : C:\Documents and Settings\cacha\Configuración local\Datos de programa\Google\Chrome\User Data\Default\Local Storage\hxxp_foros.softonic.com_0.localstorage
File Deleted : C:\Documents and Settings\cacha\Configuración local\Datos de programa\Google\Chrome\User Data\Default\Local Storage\hxxp_foros.softonic.com_0.localstorage-journal
File Deleted : C:\Documents and Settings\cacha\Configuración local\Datos de programa\Google\Chrome\User Data\Default\Local Storage\hxxp_st.chatango.com_0.localstorage
File Deleted : C:\Documents and Settings\cacha\Configuración local\Datos de programa\Google\Chrome\User Data\Default\Local Storage\hxxp_st.chatango.com_0.localstorage-journal

***** [ Scheduled tasks ] *****


***** [ Shortcuts ] *****


***** [ Registry ] *****

Key Deleted : HKCU\Toolbar
Key Deleted : HKLM\SOFTWARE\Classes\Prod.cap
Key Deleted : HKLM\SOFTWARE\Classes\Toolbar.CT2790392
Key Deleted : HKLM\SOFTWARE\Classes\Toolbar.CT2849812
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{3C471948-F874-49F5-B338-4F214A2EE0B1}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{32804100-B238-45F4-B15E-C5A2F2F7400B}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{93A4C731-690C-40D4-90F4-0177B9D335D2}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D4027C7F-154A-4066-A1AD-4243D8127440}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{88C7F2AA-F93F-432C-8F0E-B7D85967A527}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{32804100-B238-45F4-B15E-C5A2F2F7400B}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{AD06FB5F-FEF7-4A84-8C58-DCA34F8E3D36}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{93A4C731-690C-40D4-90F4-0177B9D335D2}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{D4027C7F-154A-4066-A1AD-4243D8127440}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{88C7F2AA-F93F-432C-8F0E-B7D85967A527}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{AD06FB5F-FEF7-4A84-8C58-DCA34F8E3D36}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{32804100-B238-45F4-B15E-C5A2F2F7400B}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{93A4C731-690C-40D4-90F4-0177B9D335D2}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F4608DD0-671E-4A2C-A2E7-46697547976C}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{4EE443F5-6534-4592-876C-0F9DF4AE2C50}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{0D01C3D7-99CB-4F8C-A9F3-A0D8F4A6482A}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{95CE150B-867E-4F07-A66D-C93AA2F6DC33}
Key Deleted : HKCU\Software\Conduit
Key Deleted : HKCU\Software\InstallCore
Key Deleted : HKCU\Software\BitTorrentBar
Key Deleted : HKCU\Software\BittorrentBar_ES
Key Deleted : HKLM\SOFTWARE\Conduit
Key Deleted : HKLM\SOFTWARE\BitTorrentBar
Key Deleted : HKLM\SOFTWARE\BittorrentBar_ES
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{79A765E1-C399-405B-85AF-466F52E918B0}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\BitTorrentBar Toolbar
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\BittorrentBar_ES Toolbar
Data Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings [ProxyOverride] - <local>

***** [ Web browsers ] *****

-\\ Internet Explorer v8.0.6001.18702


-\\ Mozilla Firefox v37.0.2 (x86 es-AR)

[3xaf9uin.default\prefs.js] - Line Deleted : user_pref("browser.search.defaultengine", "Ask.com");
[3xaf9uin.default\prefs.js] - Line Deleted : user_pref("browser.search.defaultenginename", "Ask.com");
[3xaf9uin.default\prefs.js] - Line Deleted : user_pref("browser.search.order.1", "Ask.com");
[3xaf9uin.default\prefs.js] - Line Deleted : user_pref("extensions.asktb.ff-original-keyword-url", "");
[3xaf9uin.default\prefs.js] - Line Deleted : user_pref("keyword.URL", "hxxp://websearch.ask.com/redirect?client=ff&src=kw&tb=ORJ&o=&locale=&apn_uid=29B3F03A-E8F4-4364-BB2F-056CD38F361A&apn_ptnrs=&apn_sauid=74974A9E-826B-490A-A51C-B8A407B7C46D&ap[...]

-\\ Google Chrome v42.0.2311.135


*************************

AdwCleaner[R0].txt - [6196 bytes] - [06/05/2015 11:53:54]
AdwCleaner[S0].txt - [6180 bytes] - [06/05/2015 11:57:13]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [6239 bytes] ##########

I had a problem running JRT, after the scan no log opened, it appeared some kind of "couldn't open..." and then the window closed. I wait for the log to appear but nothing happened (I remembered to shut down any protection software)
Juliet
2015-05-06, 21:04
What we can do now is run an online scan with Eset, for the time being it is our most trusted scanner.
Most reliable and thorough.
The settings I suggest will show us items located in quarantine folders so don't be alarmed with this, also, in case of a false positive I ask that you not allow it to delete what it does find.
This scanner can take quite a bit of time to run, depending of course how full your computer is.


http://i.imgur.com/GzlsbnV.png ESET Online Scan
Note: This scan may take a long time to complete. Please do not browse the Internet whilst your Anti-Virus is disabled.


Please run a free online scan with the ESET Online Scanner

US Link: http://www.eset.com/us/online-scanner/
EU Link: http://www.eset.eu/online-scanner/

Windows Vista/Windows 7/Windows 8 users will need to right click on their Internet Explorer shortcut, and select Run as Administrator
Note: For browsers other than Internet Explorer, you will be prompted to download and install esetsmartinstaller_enu.exe. Click on the link and save the file to a convenient location. Double click on it to install and a new window will open. Follow the prompts.

Turn off the real time scanner of any existing antivirus program while performing the online scan.
Click the blue Run ESET Online Scanner button
Tick the box next to YES, I accept the Terms of Use.
Click Start
When asked, allow the program to install the "OnlineScanner.cab" activex control by clicking the Install button
Once the activex control is installed, on the next screen click on Enable detection of potentially unwanted applications
Click on Advanced Settings
Make sure that the option Remove found threats is unticked.
Ensure these options are ticked

Scan archives
Scan for potentially unsafe applications
Enable Anti-Stealth technology


Under "Current Scan Targets" > click "change" and ensure all your drives are selected
Click Start
Wait for the scan to finish
When the scan is done, if it shows a screen that says "Threats found!", then click "List of found threats", and then click "Export to text file..."
Save that text file on your desktop. Attach the log as a reply to your next reply..
Close the ESET online scan, and let me know how things are now.
florenciam
2015-05-08, 19:22
this was the log:

C:\Archivos de programa\Adobe\Adobe Photoshop CS6\adobe.photoshop.cs6-patch.exe a variant of Win32/HackTool.Patcher.AD potentially unsafe application
Juliet
2015-05-09, 04:46
Please open Notepad *Do Not Use Wordpad!* or use any other text editor than Notepad or the script will fail. (Start -> Run -> type notepad in the Open field -> OK) and copy and paste the text present inside the quote box below:
To do this highlight the contents of the box and right click on it and select copy.
Paste this into the open notepad. save it to the Desktop as fixlist.txt
NOTE. It's important that both files, FRST/FRST64 and fixlist.txt are in the same location or the fix will not work.
It needs to be saved Next to the "Farbar Recovery Scan Tool" (If asked to overwrite existing one please allow)




start
CloseProcesses:
C:\Archivos de programa\Adobe\Adobe Photoshop CS6\adobe.photoshop.cs6-patch.exe
EmptyTemp:
End


Open FRST/FRST64 and press the Fix button just once and wait.
If for some reason the tool needs a restart, please make sure you let the system restart normally. After that let the tool complete its run.
When finished FRST will generate a log on the Desktop (Fixlog.txt). Please post it to your reply.

~~~~~~~
How's your computer now?
florenciam
2015-05-12, 02:31
It's much better now, thank you very much!!!
Juliet
2015-05-12, 12:42
http://i.imgur.com/AFZxnZc.jpg DelFix

Please download DelFix (http://general-changelog-team.fr/en/downloads/finish/20-outils-de-xplode/9-delfix)
or from here http://www.bleepingcomputer.com/download/delfix/ and save the file to your Desktop.
Double-click DelFix.exe to run the programme.
Place a checkmark next to the following items:

Activate UAC
Remove disinfection tools


Click the Run button.

-- This will remove the specialised tools we used to disinfect your system. Any leftover logs, files, folders or tools remaining on your Desktop which were not removed can be deleted manually (right-click the file + delete).

~~~~~~~~~~~~~~~~~~~~~~~~`


Answers to common security questions - Best Practices (http://www.bleepingcomputer.com/forums/t/407147/answers-to-common-security-questions-best-practices/) by quietman7, MVP
How Malware Spreads - How did I get infected? (http://www.bleepingcomputer.com/forums/t/287710/how-malware-spreads-how-did-i-get-infected/) by quietman7, MVP
Simple and easy ways to keep your computer safe and secure on the Internet (http://www.bleepingcomputer.com/tutorials/keep-your-computer-safe-online/) by Lawrence Abrams, MVP
How to Prevent Malware (http://users.telenet.be/bluepatchy/miekiemoes/prevention.html) by miekiemoes, MVP
How to backup and restore your data using Cobian Backup (http://www.bleepingcomputer.com/tutorials/backup-and-restore-data-with-cobian-backup/) by YourHighness
Slow Computer/browser? It May Not Be Malware (http://www.bleepingcomputer.com/forums/t/87058/slow-computerbrowser-check-here-first;-it-may-not-be-malware/) by quietman7, MVP


The following programmes come highly recommended in the security community.

http://3-ps.googleusercontent.com/x/forums.whatthetech.com/i.imgur.com/xKsUqI5A.png.pagespeed.ic.vn1Hlvqi8h.jpgAdBlock (https://adblockplus.org/en/firefox) is a browser add-on that blocks annoying banners, pop-ups and video ads.
http://i.imgur.com/E8I37RF.pngCryptoPrevent (https://www.foolishit.com/) places policy restrictions on loading points for ransomware (eg.CryptoPrevent), preventing your files from being encrypted.
http://i.imgur.com/EG85Vjt.png Malwarebytes Anti-Exploit (https://www.malwarebytes.org/antiexploit/) (MBAE) is designed to prevent zero-day malware from exploiting vulnerable software.
http://3-ps.googleusercontent.com/x/forums.whatthetech.com/i.imgur.com/x6YRrgUC.png.pagespeed.ic.HjgFxjvw2Z.jpgMalwarebytes Anti-Malware Premium (https://www.malwarebytes.org/) (MBAM) works in real-time along side your Anti-Virus to prevent malware execution.
http://1-ps.googleusercontent.com/x/forums.whatthetech.com/i.imgur.com/xjv4nhMJ.png.pagespeed.ic.A5YbWn1eDO.png NoScript (http://noscript.net/) is a Firefox add-on that blocks the actions of malicious scripts by using whitelisting and other technology.
http://i.imgur.com/3O8r9Uq.png (http://www.sandboxie.com/) Sandboxie (http://www.sandboxie.com/) isolates programmes of your choice, preventing files from being written to your HDD unless approved by you.
http://1-ps.googleusercontent.com/x/forums.whatthetech.com/i.imgur.com/DgW1XL2.png.pagespeed.ce.v1OlJl_ZAS.png Secuina PSI (http://secunia.com/vulnerability_scanning/personal/) will scan your computer for vulnerable software that is outdated, and automatically find the latest update for you.
http://3-ps.googleusercontent.com/x/forums.whatthetech.com/i.imgur.com/xj1OLIec.png.pagespeed.ic.k6hhwopU0q.jpg SpywareBlaster (https://www.brightfort.com/spywareblaster.html) is a form of passive protection, designed to block the actions of malicious websites and tracking cookies.
http://3-ps.googleusercontent.com/x/forums.whatthetech.com/i.imgur.com/xJEP5iWI.png.pagespeed.ic.4tmM1lM7DQ.pngWeb of Trust (https://www.mywot.com/) (WOT) is a browser add-on designed to alert you before interacting with a potentially malicious website.


Want to help others? Join the ClassRoom (http://forums.whatthetech.com/What_the_Tech_Classroom_t80368.html) and learn how.
Juliet
2015-05-15, 12:26
Glad we could help. :)http://i204.photobucket.com/albums/bb106/Juliet702/sparkle.gif

Since this issue appears resolved ... this Topic is closed.