Creo tengo spyware o adware, no se cómo quitarlos

Responder
jisaav
Asiduo al foro
Asiduo al foro
Mensajes: 53
Registrado: 24 Sep 2007, 01:41

Creo tengo spyware o adware, no se cómo quitarlos

Mensaje por jisaav » 11 Sep 2014, 17:46

Saludos a los moderadores!



una vez ustedes me ayudaron con un porblema de estos, eso fue en 2007. Tenía mucho tiempo sin revisar estos foros, y recurro a Uds porque a pesar de que trato de ser cuidadoso con las páginas y porgramas que instalo, pues hace unas semanas me aparecen avisos de propagandas, seguimiento, o no se qué.. había intentado quitarlos con la utilidad EliStarA, y no aparecía nada que se debiera eliminar. bueno, ayer quise revisar con más detalle el foro, y he seguido tal cual los pasos que se muestra en este post: [url]https://foros.zonavirus.com/viewtopic.php?f=6&t=4795
[/url]


a continuación, copio los logs, primero el de EliStarA, luego el de EliPUPs;



luego instalé el Ad-Aware, pero lo eliminé cuando ví que podía traer conflicto al instalarle el Spyware Search&Destroy

Les coloco de todas maneras el log de Ad-Aware



Luego de desintalar el Ad-Aware, instalé el Spyware Search and Destroy, en su versión 1.6.xxx y hacía muchas actualizaciones. Luego me apareció un aviso de que podía instalar su versión 2.x.xxx (las equis es porque no recuerdo los números), lo corrí y eliminé varias cosas, pero no sé cómo buscar los logs de ese programa,



y lo peor de todo es que aun me aparece una página no deseada que se abre sola, o sea que cre que tengo aun algún spyware o adware..



Saludos, gracias por su ayuda







(10-9-2014 23:01:46 (GMT))

EliStartPage v30.57 (c)2014 S.G.H. / Satinfo S.L. (Actualizado el 10 de Septiembre del 2014)

--------------------------------------------------

Sistema Operativo: Windows 7 Home Premium (6.1.0) (64 bits)

Usuario: Jesús Saavedra

ID de Usuario: S-1-5-21-921242894-1989990284-1724683343-1000

Cadenas Víricas: 22092



Lista de Acciones (por Acción Directa):

Eliminado Servicio, "GbpSv"

Eliminada Carpeta "C:\ProgramData\GbPlugin"

Eliminada Carpeta "C:\Program Files (x86)\Gbplugin"

Eliminadas las Paginas de Inicio y de Busqueda del IE

Eliminados Ficheros Temporales del IE



(10-9-2014 23:01:49 (GMT))

EliStartPage v30.57 (c)2014 S.G.H. / Satinfo S.L. (Actualizado el 10 de Septiembre del 2014)

--------------------------------------------------

Sistema Operativo: Windows 7 Home Premium (6.1.0) (64 bits)

Usuario: Temporal Europa

ID de Usuario: S-1-5-21-921242894-1989990284-1724683343-1003

Cadenas Víricas: 22092



Lista de Acciones (por Acción Directa):

Eliminadas las Paginas de Inicio y de Busqueda del IE

Eliminados Ficheros Temporales del IE



(10-9-2014 23:43:50 (GMT))

EliStartPage v30.57 (c)2014 S.G.H. / Satinfo S.L. (Actualizado el 10 de Septiembre del 2014)

--------------------------------------------------

Sistema Operativo: Windows 7 Home Premium (6.1.0) (64 bits)

Usuario: Temporal Europa

ID de Usuario: S-1-5-21-921242894-1989990284-1724683343-1003

Cadenas Víricas: 22092



Lista de Acciones (por Exploración):

Explorando "C:\"



Nº Total de Directorios: 49323

Nº Total de Ficheros: 464778

Nº de Ficheros Analizados: 190508

Nº de Ficheros Infectados: 0

Nº de Ficheros Limpiados: 0

















(11-9-2014 00:00:28 (GMT))

EliPUPs v1.42 (c)2014 S.G.H. / Satinfo S.L. (Modificado el 10 de Septiembre del 2014)

-------------------------------------------

Sistema Operativo: Windows 7 Home Premium (6.1.NULL2) NULL2 (64 bits)



Lista de Todos los Programas Instalados.

Descripción -> Cadena de Desinstalación.

----------------------------------------



AutoCAD 2013 - Español (Spanish) -> C:\Program Files\Autodesk\AutoCAD 2013\Setup\es-es\Setup\Setup.exe /P {5783F2D7-B001-0000-0102-0060B0CE6BBA} /M ACAD /language es-ES

CCleaner -> "C:\Program Files\CCleaner\uninst.exe"

Conexant HD Audio -> C:\Program Files\CONEXANT\CNXT_AUDIO_HDA\UIU64a.exe -U -G -ITE7Pebwa.inf

Defraggler -> "C:\Program Files\Defraggler\uninst.exe"

HP Imaging Device Functions 13.0 -> C:\Program Files (x86)\HP\Digital Imaging\DeviceManagement\hpzscr01.exe -datfile hpqbud01.dat

HP Smart Web Printing 4.51 -> C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpzscr01.exe -datfile hpqbud15.dat

HP Solution Center 13.0 -> C:\Program Files (x86)\HP\Digital Imaging\eSupport\hpzscr01.exe -datfile hpqbud05.dat -forcereboot

OCR Software by I.R.I.S. 13.0 -> C:\Program Files (x86)\HP\Digital Imaging\OCR\hpzscr01.exe -datfile hpqbud11.dat

Microsoft Security Essentials -> "C:\Program Files\Microsoft Security Client\Setup.exe" /x

Recuva -> "C:\Program Files\Recuva\uninst.exe"

Speccy -> "C:\Program Files\Speccy\uninst.exe"

Synaptics Pointing Device Driver -> rundll32.exe "%ProgramFiles%\Synaptics\SynTP\SynISDLL.dll",standAloneUninstall

VLC media player 2.1.3 -> C:\Program Files\VideoLAN\VLC\uninstall.exe

WinRAR 5.10 beta 3 (64-bit) -> C:\Program Files\WinRAR\uninstall.exe

Microsoft Visual C++ 2005 Redistributable (x64) -> MsiExec.exe /X{071c9b48-7c32-4621-a0ac-3f809523288f}

Windows Live Language Selector -> MsiExec.exe /I{180C8888-50F1-426B-A9DC-AB83A1989C65}

Windows Live ID Sign-in Assistant -> MsiExec.exe /I{1ACC8FFB-9D84-4C05-A4DE-D28A9BC91698}

TOSHIBA Bulletin Board -> MsiExec.exe /X{1C8C049A-145F-4A6E-8290-B5C245EBE39D}

Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 -> MsiExec.exe /X{1D8E6291-B0D5-35EC-8441-6616F567A0F7}

Visual Studio 2010 x64 Redistributables -> MsiExec.exe /I{21B133D6-5979-47F0-BE1C-F6A6B304693F}

Microsoft Security Client -> MsiExec.exe /X{23F2C78C-E131-4CA0-8F84-3473FB7728BA}

TOSHIBA ReelTime -> MsiExec.exe /X{24811C12-F4A9-4D0F-8494-A7B8FE46123C}

Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 -> MsiExec.exe /X{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}

AutoCAD 2013 - Español (Spanish) -> C:\Program Files\Autodesk\AutoCAD 2013\Setup\es-es\Setup\Setup.exe /P {5783F2D7-B001-0000-0102-0060B0CE6BBA} /M ACAD /language es-ES

TOSHIBA Disc Creator -> MsiExec.exe /X{5DA0E02F-970B-424B-BF41-513A5018E4C0}

Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 -> MsiExec.exe /X{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}

Image Resizer for Windows (64 bit) -> MsiExec.exe /I{617CA6E9-D5FB-4017-8130-82E68C56C34D}

Windows Live Remote Service Resources -> MsiExec.exe /I{656DEEDE-F6AC-47CA-A568-A1B4E34B5760}

Apple Mobile Device Support -> MsiExec.exe /I{6AF2AC2A-3532-43FD-9F4D-BDC9C0D724C7}

Bonjour -> MsiExec.exe /X{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}

iTunes -> MsiExec.exe /I{77DE5105-D05E-448C-96CB-7FA381903753}

Microsoft .NET Framework 4.5.1 -> MsiExec.exe /X{7DEBE4EB-6B40-3766-BB35-5CBBC385DA37}

Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 -> MsiExec.exe /X{8220EEFE-38CD-377E-8595-13398D740ACE}

Windows Live Remote Client Resources -> MsiExec.exe /I{847B0532-55E3-4AAF-8D7B-E3A1A7CD17E5}

Microsoft Silverlight -> MsiExec.exe /X{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}

Microsoft Office Office 64-bit Components 2007 -> MsiExec.exe /X{90120000-002A-0000-1000-0000000FF1CE}

Microsoft Office Shared 64-bit MUI (English) 2007 -> MsiExec.exe /X{90120000-002A-0409-1000-0000000FF1CE}

Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2007 -> MsiExec.exe /X{90120000-0116-0409-1000-0000000FF1CE}

Microsoft .NET Framework 4.5.1 -> C:\windows\Microsoft.NET\Framework64\v4.0.30319\SetupCache\v4.5.50938\\Setup.exe /repair /x86 /x64

TOSHIBA PC Health Monitor -> MsiExec.exe /X{9DECD0F9-D3E8-48B0-A390-1CF09F54E3A4}

HP Deskjet F4200 All-In-One Driver Software 13.0 Rel. 3 -> C:\Program Files (x86)\HP\Digital Imaging\{A00C9114-40E6-4C70-A619-7DF264B23485}\setup\hpzscr40.exe -datfile hposcr28.dat -onestop -forcereboot

Microsoft Visual C++ 2005 Redistributable (x64) -> MsiExec.exe /X{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}

Nokia Connectivity Cable Driver -> RUNDLL32.EXE ccdcmbwux64.dll,WuUninstall

PlayReady PC Runtime amd64 -> MsiExec.exe /X{BCA9334F-B6C9-4F65-9A73-AC5A329A4D04}

TOSHIBA eco Utility -> MsiExec.exe /X{C2F94B5E-201A-4754-8F2F-4395E1D90DA3}

TOSHIBA HDD/SSD Alert -> MsiExec.exe /X{D4322448-B6AF-4316-B859-D8A0E84DCB38}

Windows Live MIME IFilter -> MsiExec.exe /I{DA54F80E-261C-41A2-A855-549A144F2F59}

Windows Live Remote Client -> MsiExec.exe /I{DF6D988A-EEA0-4277-AAB8-158E086E439B}

Windows Live Remote Service -> MsiExec.exe /I{E02A6548-6FDE-40E2-8ED9-119D7D7E641F}

Autodesk Sync -> MsiExec.exe /X{EE5F74BC-5CD5-4EF2-86BA-81E6CF46A18F}

Folder Size for Windows (64-bit) -> MsiExec.exe /I{F24FF688-7138-4CCF-A83F-71E9FB01170E}

TOSHIBA Face Recognition -> MsiExec.exe /X{F67FA545-D8E5-4209-86B1-AEE045D1003F}

64 Bit HP CIO Components Installer -> MsiExec.exe /I{FF21C3E6-97FD-474F-9518-8DCBE94C2854}

JDownloader 0.9 -> C:\Program Files (x86)\JDownloader\JDUninstall.exe

Adobe AIR -> c:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Resources\Adobe AIR Updater.exe -arp:uninstall

Adobe Digital Editions 2.0 -> "C:\Program Files (x86)\Adobe\Adobe Digital Editions 2.0\uninstall.exe"

Adobe Flash Player 11 ActiveX -> C:\windows\SysWOW64\Macromed\Flash\FlashUtil32_11_5_502_135_ActiveX.exe -maintain activex

Adobe Flash Player 14 Plugin -> C:\windows\SysWOW64\Macromed\Flash\FlashUtil32_14_0_0_125_Plugin.exe -maintain plugin

Adobe Shockwave Player 12.1 -> "C:\windows\SysWOW64\Adobe\Shockwave 12\uninstaller.exe"

Any Video Converter Professional 3.5.8 -> "C:\Program Files (x86)\AnvSoft\Any Video Converter Professional\unins000.exe"

Ares 2.1.8 -> "C:\Program Files (x86)\Ares\uninstall.exe"

Autodesk Content Service -> C:\Program Files (x86)\Autodesk\Content Service\Setup\Setup.exe /P {62F029AB-85F2-0000-866A-9FC0DD99DDBC} /M ContentService /LANG en-US

BlackBerry Desktop Software 7.1 -> C:\Program Files (x86)\Research In Motion\BlackBerry Desktop\InstallerUtils\InstallerUtils.exe /UninstallDesktop

Escritorio movistar Latam -> "C:\Program Files (x86)\Movistar\Escritorio movistar Latam\Uninstall.exe"

FileZilla Client 3.8.0 -> C:\Program Files (x86)\FileZilla FTP Client\uninstall.exe

Google Chrome -> "C:\Program Files (x86)\Google\Chrome\Application\37.0.2062.120\Installer\setup.exe" --uninstall --multi-install --chrome --system-level

Huawei Conexion -> C:\Program Files (x86)\Huawei Conexion\uninst.exe

HUAWEI DataCard Driver 2.96 -> C:\Program Files (x86)\HUAWEI Modem Driver\uninst.exe

TOSHIBA Value Added Package -> C:\Program Files\TOSHIBA\TVAP\Setup.exe

TOSHIBA Bulletin Board -> "C:\Program Files (x86)\InstallShield Installation Information\{1C8C049A-145F-4A6E-8290-B5C245EBE39D}\setup.exe" -runfromtemp -l0x0409 -removeonly

TOSHIBA ReelTime -> "C:\Program Files (x86)\InstallShield Installation Information\{24811C12-F4A9-4D0F-8494-A7B8FE46123C}\setup.exe" -runfromtemp -l0x0409 -removeonly

TOSHIBA Web Camera Application -> "C:\Program Files (x86)\InstallShield Installation Information\{6F3C8901-EBD3-470D-87F8-AC210F6E5E02}\setup.exe" -runfromtemp -l0x0409 -removeonly

TOSHIBA Hardware Setup -> C:\PROGRA~2\COMMON~1\INSTAL~1\Driver\11\INTEL3~1\IDriver.exe /M{C4FFA951-9678-4D51-84B4-AFD15D3C45AD} /l1033

TOSHIBA Supervisor Password -> C:\PROGRA~2\COMMON~1\INSTAL~1\Driver\11\INTEL3~1\IDriver.exe /M{CBD6B23D-41D5-4A46-8019-6208516C9712} /l1033

TOSHIBA Face Recognition -> "C:\Program Files (x86)\InstallShield Installation Information\{F67FA545-D8E5-4209-86B1-AEE045D1003F}\setup.exe" -runfromtemp -l0x0409 -removeonly

Intkey -> C:\windows\IsUninst.exe -fc:\delta\Uninst.isu

JAP -> C:\Program Files (x86)\JAP\uninstall.exe

McGraw-Hill Dictionary of Engineering (remove only) -> C:\Program Files (x86)\McGraw-Hill Dictionary of Engineering\uninstall.exe

Mozilla Firefox 31.0 (x86 es-ES) -> "C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe"

Mozilla Maintenance Service -> "C:\Program Files (x86)\Mozilla Maintenance Service\uninstall.exe"

Toshiba Laptop Checkup -> C:\Program Files (x86)\NortonInstaller\{170fa89a-6886-4c9e-b17b-12bccdd80788}\NortonPCCheckup\LicenseType\2.0.13.11\InstStub.exe /X

Trusteer Seguridad Terminal -> msiexec /x{1DD81E7D-0D28-4ceb-87B2-C041A4FCB215} /lvx+ "C:\ProgramData\Trusteer\Rapport\logs\uninstall.log"

RealPlayer -> c:\program files (x86)\real\realplayer\Update\r1puninst.exe RealNetworks|RealPlayer|16.0

Ultra Defragmenter -> C:\Program Files\UltraDefrag\uninstall.exe

WildTangent Games -> "C:\Program Files (x86)\TOSHIBA Games\Uninstall.exe"

Windows Live Essentials -> C:\Program Files (x86)\Windows Live\Installer\wlarp.exe

Polar Bowler -> "C:\Program Files (x86)\TOSHIBA Games\Polar Bowler\uninstall\uninstaller.exe"

Penguins! -> "C:\Program Files (x86)\TOSHIBA Games\Penguins!\uninstall\uninstaller.exe"

FATE - The Traitor Soul -> "C:\Program Files (x86)\TOSHIBA Games\FATE - The Traitor Soul\uninstall\uninstaller.exe"

Tom Clancy's Splinter Cell -> "C:\Program Files (x86)\TOSHIBA Games\Tom Clancys Splinter Cell\uninstall\uninstaller.exe"

Chuzzle Deluxe -> "C:\Program Files (x86)\TOSHIBA Games\Chuzzle Deluxe\uninstall\uninstaller.exe"

Bejeweled 3 -> "C:\Program Files (x86)\TOSHIBA Games\Bejeweled 3\uninstall\uninstaller.exe"

Plants vs. Zombies - Game of the Year -> "C:\Program Files (x86)\TOSHIBA Games\Plants vs Zombies - Game of the Year\uninstall\uninstaller.exe"

Virtual Villagers 5 - New Believers -> "C:\Program Files (x86)\TOSHIBA Games\Virtual Villagers 5 - New Believers\uninstall\uninstaller.exe"

Zuma's Revenge -> "C:\Program Files (x86)\TOSHIBA Games\Zumas Revenge\uninstall\uninstaller.exe"

Fishdom (TM) 2 -> "C:\Program Files (x86)\TOSHIBA Games\Fishdom (TM) 2\uninstall\uninstaller.exe"

Windows Live Installer -> MsiExec.exe /I{0B0F231F-CE6A-483D-AA23-77B364F75917}

Label@Once 1.0 -> MsiExec.exe /I{0D795777-9D60-4692-8386-F2B3F2B5E5BF}

QuickTime 7 -> MsiExec.exe /I{111EE7DF-FC45-40C7-98A7-753AC46B12FB}

Autodesk Material Library 2013 -> MsiExec.exe /I{117EBEEB-5DB0-43C8-9FD6-DD583DB152DD}

Windows Live Movie Maker -> MsiExec.exe /X{19BA08F7-C728-469C-8A35-BFBD3633BE08}

Rapport -> MsiExec.exe /X{1DD81E7D-0D28-4CEB-87B2-C041A4FCB215}

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 -> MsiExec.exe /X{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}

Junk Mail filter update -> MsiExec.exe /I{1F6AB0E7-8CDD-4B93-8A23-AA9EB2FEFCE4}

Windows Live SOXE Definitions -> MsiExec.exe /I{200FEC62-3C34-4D60-9CE8-EC372E01C08F}

Java 7 Update 67 -> MsiExec.exe /X{26A24AE4-039D-4CA4-87B4-2F03217067FF}

Java(TM) 6 Update 25 -> MsiExec.exe /X{26A24AE4-039D-4CA4-87B4-2F83216025FF}

SE-Explorer 1.31.1.610 -> "C:\Program Files (x86)\SE-SOFT.COM\SE-Explorer\unins000.exe"

RealUpgrade 1.1 -> MsiExec.exe /I{28C2DED6-325B-4CC7-983A-1777C8F7FBAB}

Windows Live Mesh ActiveX Control for Remote Connections -> MsiExec.exe /I{2902F983-B4C1-44BA-B85D-5C6D52E2C441}

Windows Live Messenger -> MsiExec.exe /X{2A3FC24C-6EC0-4519-A52B-FDA4EA9B2D24}

Update Installer for WildTangent Games App -> "C:\Program Files (x86)\WildTangent Games\App\Uninstall.exe"

PIPESIM 2008.1 -> MsiExec.exe /I{303A394E-7FD4-4D1A-BBC5-0F62FDBE0E6C}

Atheros Communications Inc.(R) AR81Family Gigabit/Fast Ethernet Driver -> "C:\Program Files (x86)\InstallShield Installation Information\{3108C217-BE83-42E4-AE9E-A56A2A92E549}\setup.exe" -runfromtemp -l0x0009 -removeonly

Windows Live Photo Gallery -> MsiExec.exe /X{3336F667-9049-4D46-98B6-4C743EEBC5B1}

HP Support Solutions Framework -> MsiExec.exe /I{348A1F5B-07B3-4436-9A47-FFE44EFE856E}

Windows Live Photo Gallery -> MsiExec.exe /X{34F4D9A4-42C2-4348-BEF4-E553C84549E7}

McAfee SiteAdvisor -> C:\Program Files (x86)\McAfee\SiteAdvisor\Uninstall.exe

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 -> MsiExec.exe /X{3C3D696B-0DB7-3C6D-A356-3DB8CE541918}

Intel(R) Rapid Storage Technology -> C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\Uninstall\setup.exe -uninstall

Eclipse Software 2009.1 -> "C:\Program Files (x86)\InstallShield Installation Information\{49FC4FCD-3752-44DF-90FD-BAFF38A234E3}\setup.exe" -runfromtemp -l0x0009 -removeonly

Google Earth -> MsiExec.exe /X{4D2A6330-2F8B-11E3-9C40-B8AC6F97B88E}

AVG PC Tuneup 2011 -> "C:\Program Files (x86)\AVG\AVG PC Tuneup 2011\unins001.exe"

Computer Modelling Group Software 2007-10-19 -> "C:\Program Files (x86)\InstallShield Installation Information\{51A28850-77D0-4D65-BF5F-4701DD513478}\setup.exe" -runfromtemp -l0x0009 -removeonly

Cisco LEAP Module -> MsiExec.exe /I{51C7AD07-C3F6-4635-8E8A-231306D810FE}

neroxml -> MsiExec.exe /I{56C049BE-79E9-4502-BEA7-9754A3E60F9B}

Windows Live UX Platform Language Pack -> MsiExec.exe /I{579684A4-DDD5-4CA3-9EA8-7BE7D9593DB4}

TOSHIBARegistration -> RunDll32 C:\PROGRA~2\COMMON~1\INSTAL~1\PROFES~1\RunTime\10\00\Intel32\Ctor.dll,LaunchSetup "C:\Program Files (x86)\InstallShield Installation Information\{5AF550B4-BB67-4E7E-82F1-2C4300279050}\setup.exe" -l0x9 -removeonly

TOSHIBA Wireless LAN Indicator -> MsiExec.exe /X{5B01BCB7-A5D3-476F-AF11-E515BA206591}

Autodesk Material Library Base Resolution Image Library 2013 -> MsiExec.exe /I{606E12B9-641F-4644-A22A-FF38AE980AFD}

swMSM -> MsiExec.exe /I{612C34C7-5E90-47D8-9B5C-0F717DD82726}

Realtek USB 2.0 Reader Driver -> "C:\Program Files (x86)\InstallShield Installation Information\{62BBB2F0-E220-4821-A564-730807D2C34D}\setup.exe" -runfromtemp -removeonly

Autodesk Content Service Language Pack -> MsiExec.exe /X{62F029AB-85F2-0001-866A-9FC0DD99DDBC}

Cisco EAP-FAST Module -> MsiExec.exe /I{64BF0187-F3D2-498B-99EA-163AF9AE6EC9}

Intel(R) Management Engine Components -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\Uninstall\setup.exe -uninstall

TOSHIBA Sleep Utility -> C:\Program Files (x86)\InstallShield Installation Information\{654F7484-88C5-46DC-AB32-C66BCB0E2102}\Setup.exe -runfromtemp -removeonly

Windows Live SOXE -> MsiExec.exe /I{682B3E4F-696A-42DE-A41C-4C07EA1678B4}

Image Resizer for Windows -> "C:\ProgramData\Package Cache\{69d72156-6582-4556-8637-06f40aa7f85b}\ImageResizerSetup.exe" /uninstall

TOSHIBA Resolution+ Plug-in for Windows Media Player -> "C:\Program Files (x86)\InstallShield Installation Information\{6CB76C9D-80C2-4CB3-A4CD-D96B239E3F94}\setup.exe" -runfromtemp -l0x0409 -removeonly

TOSHIBA Web Camera Application -> MsiExec.exe /I{6F3C8901-EBD3-470D-87F8-AC210F6E5E02}

WildTangent Games App (Toshiba Games) -> "C:\Program Files (x86)\WildTangent Games\Touchpoints\toshiba\Uninstall.exe"

Microsoft Visual C++ 2005 Redistributable -> MsiExec.exe /X{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}

Microsoft Visual C++ 2005 Redistributable -> MsiExec.exe /X{7299052b-02a4-4627-81f2-1818da5d550d}

Netwaiting -> MsiExec.exe /I{74B8998B-2B1B-4414-AD5D-17E7E9B5FF0A}

RealNetworks - Microsoft Visual C++ 2008 Runtime -> MsiExec.exe /X{7770E71B-2D43-4800-9CB3-5B6CAAEBEBEA}

Compatibilidad con Aplicaciones de Apple -> MsiExec.exe /I{78002155-F025-4070-85B3-7C0453561701}

Apple Software Update -> MsiExec.exe /I{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}

Skype™ 6.14 -> MsiExec.exe /X{7A3C7E05-EE37-47D6-99E1-2EB05A3DA3F7}

Facebook Messenger 2.1.4590.0 -> MsiExec.exe /X{7BB5E925-A3DD-48C2-9A82-017AF5982FFE}

Facebook Video Calling 1.2.0.159 -> MsiExec.exe /X{7CAC6A44-C3DE-4153-ACA6-7524602C789E}

Nero 8 Essentials -> MsiExec.exe /X{7FD7FB8C-2C75-4A8E-A236-EB23C5C13322}

Windows Live PIMT Platform -> MsiExec.exe /I{83C292B7-38A5-440B-A731-07070E81A64F}

TweetDeck -> MsiExec.exe /X{85D70219-700E-4728-A80D-C394DEF6247E}

MSXML 4.0 SP2 (KB954430) -> MsiExec.exe /I{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}

Mesh Runtime -> MsiExec.exe /I{8C6D6116-B724-4810-8F2D-D047E6B7D68E}

MSVCRT -> MsiExec.exe /I{8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}

Microsoft Office Access MUI (English) 2007 -> MsiExec.exe /X{90120000-0015-0409-0000-0000000FF1CE}

Update for Microsoft Office Access 2007 Help (KB963663) -> msiexec /package {90120000-0015-0409-0000-0000000FF1CE} /uninstall {6B76A18A-AA1E-42AB-A7AD-6C84BBB43987}

Microsoft Office 2007 Service Pack 3 (SP3) -> msiexec /package {90120000-0015-0409-0000-0000000FF1CE} /uninstall {AAA19365-932B-49BD-8138-BE28CEE9C4B4}

Microsoft Office Excel MUI (English) 2007 -> MsiExec.exe /X{90120000-0016-0409-0000-0000000FF1CE}

Update for Microsoft Office Excel 2007 Help (KB963678) -> msiexec /package {90120000-0016-0409-0000-0000000FF1CE} /uninstall {199DF7B6-169C-448C-B511-1054101BE9C9}

Microsoft Office 2007 Service Pack 3 (SP3) -> msiexec /package {90120000-0016-0409-0000-0000000FF1CE} /uninstall {AAA19365-932B-49BD-8138-BE28CEE9C4B4}

Microsoft Office PowerPoint MUI (English) 2007 -> MsiExec.exe /X{90120000-0018-0409-0000-0000000FF1CE}

Update for Microsoft Office Powerpoint 2007 Help (KB963669) -> msiexec /package {90120000-0018-0409-0000-0000000FF1CE} /uninstall {397B1D4F-ED7B-4ACA-A637-43B670843876}

Microsoft Office 2007 Service Pack 3 (SP3) -> msiexec /package {90120000-0018-0409-0000-0000000FF1CE} /uninstall {AAA19365-932B-49BD-8138-BE28CEE9C4B4}

Microsoft Office Publisher MUI (English) 2007 -> MsiExec.exe /X{90120000-0019-0409-0000-0000000FF1CE}

Update for Microsoft Office Publisher 2007 Help (KB963667) -> msiexec /package {90120000-0019-0409-0000-0000000FF1CE} /uninstall {2E40DE55-B289-4C8B-8901-5D369B16814F}

Microsoft Office 2007 Service Pack 3 (SP3) -> msiexec /package {90120000-0019-0409-0000-0000000FF1CE} /uninstall {AAA19365-932B-49BD-8138-BE28CEE9C4B4}

Microsoft Office Outlook MUI (English) 2007 -> MsiExec.exe /X{90120000-001A-0409-0000-0000000FF1CE}

Update for Microsoft Office Outlook 2007 Help (KB963677) -> msiexec /package {90120000-001A-0409-0000-0000000FF1CE} /uninstall {0451F231-E3E3-4943-AB9F-58EB96171784}

Microsoft Office 2007 Service Pack 3 (SP3) -> msiexec /package {90120000-001A-0409-0000-0000000FF1CE} /uninstall {AAA19365-932B-49BD-8138-BE28CEE9C4B4}

Update for Microsoft Office Outlook 2007 (KB2687404) 32-Bit Edition -> msiexec /package {90120000-001A-0409-0000-0000000FF1CE} /uninstall {ED38F8A3-4F61-494E-8BCA-E3AC7760C924}

Microsoft Office Word MUI (English) 2007 -> MsiExec.exe /X{90120000-001B-0409-0000-0000000FF1CE}

Update for Microsoft Office Word 2007 Help (KB963665) -> msiexec /package {90120000-001B-0409-0000-0000000FF1CE} /uninstall {80E762AA-C921-4839-9D7D-DB62A72C0726}

Microsoft Office 2007 Service Pack 3 (SP3) -> msiexec /package {90120000-001B-0409-0000-0000000FF1CE} /uninstall {AAA19365-932B-49BD-8138-BE28CEE9C4B4}

Microsoft Office Proof (English) 2007 -> MsiExec.exe /X{90120000-001F-0409-0000-0000000FF1CE}

Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) -> msiexec /package {90120000-001F-0409-0000-0000000FF1CE} /uninstall {1FF96026-A04A-4C3E-B50A-BB7022654D0F}

Microsoft Office Proof (French) 2007 -> MsiExec.exe /X{90120000-001F-040C-0000-0000000FF1CE}

Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) -> msiexec /package {90120000-001F-040C-0000-0000000FF1CE} /uninstall {71F055E8-E2C6-4214-BB3D-BFE03561B89E}

Microsoft Office Proof (Spanish) 2007 -> MsiExec.exe /X{90120000-001F-0C0A-0000-0000000FF1CE}

Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) -> msiexec /package {90120000-001F-0C0A-0000-0000000FF1CE} /uninstall {2314F9A1-126F-45CC-8A5E-DFAF866F3FBC}

Microsoft Office 2007 Service Pack 3 (SP3) -> msiexec /package {90120000-002A-0000-1000-0000000FF1CE} /uninstall {664655D8-B9BB-455D-8A58-7EAF7B0B2862}

Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition -> msiexec /package {90120000-002A-0000-1000-0000000FF1CE} /uninstall {CB68A5B0-3508-4193-AEB9-AF636DAECE0F}

Microsoft Office 2007 Service Pack 3 (SP3) -> msiexec /package {90120000-002A-0409-1000-0000000FF1CE} /uninstall {98333358-268C-4164-B6D4-C96DF5153727}

Microsoft Office Proofing (English) 2007 -> MsiExec.exe /X{90120000-002C-0409-0000-0000000FF1CE}

Microsoft Office Enterprise 2007 -> MsiExec.exe /X{90120000-0030-0000-0000-0000000FF1CE}

Security Update for Microsoft Office PowerPoint 2007 (KB2596912) 32-Bit Edition -> msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {0EF0D4FB-BB23-4515-AAEA-1240AC2DA525}

Security Update for Microsoft Office Word 2007 (KB2880515) 32-Bit Edition -> msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {25E99E7A-DEA7-4077-856B-9DBA15BEE045}

Security Update for Microsoft Office 2007 suites (KB2596871) 32-Bit Edition -> msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {293FB6BE-D3EB-4162-B522-F9108040B9FE}

Security Update for Microsoft Office 2007 suites (KB2597969) 32-Bit Edition -> msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {2B3C041A-A7F2-4A24-968D-4BEB6A123D15}

Security Update for Microsoft Office 2007 suites (KB2760591) 32-Bit Edition -> msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {319FC809-3841-4739-A25F-FDBADF073697}

Security Update for Microsoft Office 2007 suites (KB2817330) 32-Bit Edition -> msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {32DA925D-8B7D-4298-B893-6291D28CE809}

Security Update for Microsoft Office 2007 suites (KB2687439) 32-Bit Edition -> msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {3579CE34-B225-4B19-A3AF-DE5F562A212F}

Security Update for Microsoft Office 2007 suites (KB2880507) 32-Bit Edition -> msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {36842896-D83B-4C92-8261-6312B7DEB562}

Security Update for Microsoft Office 2007 suites (KB2880508) 32-Bit Edition -> msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {4C1BE82B-9AC0-4AB9-B76D-5467131955E1}

Security Update for Microsoft Office 2007 suites (KB2827326) 32-Bit Edition -> msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {4CCE0378-386F-4DC2-9CC1-A3710C77057D}

Update for Microsoft Office Outlook 2007 (KB2863811) 32-Bit Edition -> msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {53DEC068-4690-4F6B-9946-7D21EF02236B}

Security Update for Microsoft Office Excel 2007 (KB2827324) 32-Bit Edition -> msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {686630EC-8033-4031-85C5-D8E5CD62A958}

Security Update for Microsoft Office 2007 suites (KB2850022) 32-Bit Edition -> msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {6B4A3804-666A-4DD8-84A7-B97701416784}

Microsoft Office 2007 Service Pack 3 (SP3) -> msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {6E107EB7-8B55-48BF-ACCB-199F86A2CD93}

Security Update for Microsoft Office 2007 suites (KB2760411) 32-Bit Edition -> msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {79850906-6D2B-4061-8EAF-EAC84173DEC5}

Security Update for Microsoft Office 2007 suites (KB2760585) 32-Bit Edition -> msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {8907F32C-DF89-4C2F-AEDE-0DB4B65451C0}

Security Update for Microsoft Office InfoPath 2007 (KB2687440) 32-Bit Edition -> msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {8F311D6C-D8DD-4C32-9457-1A129CABD1A5}

Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition -> msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {A024FC7B-77DE-45DE-A058-1C049A17BFB3}

Security Update for Microsoft Office 2007 suites (KB2880513) 32-Bit Edition -> msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {A514D470-B2E9-43BC-865B-5ECEE29AD33F}

Security Update for Microsoft Office PowerPoint 2007 (KB2596764) 32-Bit Edition -> msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {AEA16A27-0B97-4670-818F-A98D06EC0A6F}

Security Update for Microsoft Office 2007 suites (KB2596754) 32-Bit Edition -> msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {B145DBBB-7778-4A5D-9D2B-DA6569F02391}

Update for Microsoft Office Outlook 2007 Junk Email Filter (KB2883097) 32-Bit Edition -> msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {B2260BC9-D561-46EE-B33D-739CF760A2A9}

Security Update for Microsoft Office 2007 suites (KB2596825) 32-Bit Edition -> msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {B7727B4D-5EA3-4C11-9D30-15E47616DCAF}

Security Update for Microsoft Office OneNote 2007 (KB2596857) 32-Bit Edition -> msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {C069DBBB-0547-4405-B9C8-38123FCD9CE0}

Update for 2007 Microsoft Office System (KB967642) -> msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {C444285D-5E4F-48A4-91DD-47AAAA68E92D}

Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition -> msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {CB68A5B0-3508-4193-AEB9-AF636DAECE0F}

Security Update for Microsoft Office 2007 suites (KB2596744) 32-Bit Edition -> msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {D33B9EF5-3801-496A-A2D6-B7F4BE972D75}

Security Update for Microsoft Office 2007 suites (KB2596792) 32-Bit Edition -> msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {E34960DB-2A93-45DB-A208-02650F7AB09C}

Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition -> msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {E9A82945-BA29-4EE8-8F2A-2F49545E9CF2}

Security Update for Microsoft Office 2007 suites (KB2597973) 32-Bit Edition -> msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {EA575F57-C5D1-4B5A-B9F9-F16EEBC6B58C}

Security Update for Microsoft Office 2007 suites (KB2878233) 32-Bit Edition -> msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {F7DFD2B8-0CD1-4A51-AC71-A0582FE796C2}

Security Update for Microsoft Office Publisher 2007 (KB2817565) 32-Bit Edition -> msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {F88656FB-92A1-484E-911E-D259B15CF420}

Security Update for Microsoft Office 2007 suites (KB2881069) 32-Bit Edition -> msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {FC572B0C-6356-46CC-A01E-CCCEC4340BF5}

Microsoft Office InfoPath MUI (English) 2007 -> MsiExec.exe /X{90120000-0044-0409-0000-0000000FF1CE}

Update for Microsoft Office Infopath 2007 Help (KB963662) -> msiexec /package {90120000-0044-0409-0000-0000000FF1CE} /uninstall {716B81B8-B13C-41DF-8EAC-7A2F656CAB63}

Microsoft Office 2007 Service Pack 3 (SP3) -> msiexec /package {90120000-0044-0409-0000-0000000FF1CE} /uninstall {AAA19365-932B-49BD-8138-BE28CEE9C4B4}

Microsoft Office Shared MUI (English) 2007 -> MsiExec.exe /X{90120000-006E-0409-0000-0000000FF1CE}

Security Update for Microsoft Office 2007 suites (KB2760415) 32-Bit Edition -> msiexec /package {90120000-006E-0409-0000-0000000FF1CE} /uninstall {318439CB-4E76-48A5-AED6-E0D781DD50D8}

Microsoft Office 2007 Service Pack 3 (SP3) -> msiexec /package {90120000-006E-0409-0000-0000000FF1CE} /uninstall {98333358-268C-4164-B6D4-C96DF5153727}

Update for Microsoft Office 2007 Help for Common Features (KB963673) -> msiexec /package {90120000-006E-0409-0000-0000000FF1CE} /uninstall {AB365889-0395-4FAD-B702-CA5985D53D42}

Update for Microsoft Office Script Editor Help (KB963671) -> msiexec /package {90120000-006E-0409-0000-0000000FF1CE} /uninstall {CD11C6A2-FFC6-4271-8EAB-79C3582F505C}

Microsoft Office OneNote MUI (English) 2007 -> MsiExec.exe /X{90120000-00A1-0409-0000-0000000FF1CE}

Update for Microsoft Office OneNote 2007 Help (KB963670) -> msiexec /package {90120000-00A1-0409-0000-0000000FF1CE} /uninstall {2744EF05-38E1-4D5D-B333-E021EDAEA245}

Microsoft Office 2007 Service Pack 3 (SP3) -> msiexec /package {90120000-00A1-0409-0000-0000000FF1CE} /uninstall {AAA19365-932B-49BD-8138-BE28CEE9C4B4}

Microsoft Office Groove MUI (English) 2007 -> MsiExec.exe /X{90120000-00BA-0409-0000-0000000FF1CE}

Microsoft Office 2007 Service Pack 3 (SP3) -> msiexec /package {90120000-00BA-0409-0000-0000000FF1CE} /uninstall {AAA19365-932B-49BD-8138-BE28CEE9C4B4}

Microsoft Office Groove Setup Metadata MUI (English) 2007 -> MsiExec.exe /X{90120000-0114-0409-0000-0000000FF1CE}

Microsoft Office 2007 Service Pack 3 (SP3) -> msiexec /package {90120000-0114-0409-0000-0000000FF1CE} /uninstall {AAA19365-932B-49BD-8138-BE28CEE9C4B4}

Microsoft Office Shared Setup Metadata MUI (English) 2007 -> MsiExec.exe /X{90120000-0115-0409-0000-0000000FF1CE}

Microsoft Office 2007 Service Pack 3 (SP3) -> msiexec /package {90120000-0115-0409-0000-0000000FF1CE} /uninstall {98333358-268C-4164-B6D4-C96DF5153727}

Microsoft Office 2007 Service Pack 3 (SP3) -> msiexec /package {90120000-0116-0409-1000-0000000FF1CE} /uninstall {98333358-268C-4164-B6D4-C96DF5153727}

Microsoft Office Access Setup Metadata MUI (English) 2007 -> MsiExec.exe /X{90120000-0117-0409-0000-0000000FF1CE}

Microsoft Office 2007 Service Pack 3 (SP3) -> msiexec /package {90120000-0117-0409-0000-0000000FF1CE} /uninstall {AAA19365-932B-49BD-8138-BE28CEE9C4B4}

Microsoft Office File Validation Add-In -> MsiExec.exe /I{90140000-2005-0000-0000-0000000FF1CE}

HP Update -> MsiExec.exe /X{912D30CF-F39E-4B31-AD9A-123C6B794EE2}

Windows Live Movie Maker -> MsiExec.exe /X{92EA4134-10D1-418A-91E1-5A0453131A38}

Security Update for Microsoft .NET Framework 4.5.1 (KB2894854v2) -> C:\windows\Microsoft.NET\Framework64\v4.0.30319\SetupCache\v4.5.50938\setup.exe /uninstallpatch {F7CBA1C7-E5B5-39E9-9631-459E1FE08C45}

Security Update for Microsoft .NET Framework 4.5.1 (KB2898869) -> C:\windows\Microsoft.NET\Framework64\v4.0.30319\SetupCache\v4.5.50938\setup.exe /uninstallpatch {BD0F9F7E-62B2-3971-9E2E-B87B832CE89D}

Security Update for Microsoft .NET Framework 4.5.1 (KB2901126) -> C:\windows\Microsoft.NET\Framework64\v4.0.30319\SetupCache\v4.5.50938\setup.exe /uninstallpatch {513BC47F-0560-33C2-A029-C5387642233A}

Security Update for Microsoft .NET Framework 4.5.1 (KB2931368) -> C:\windows\Microsoft.NET\Framework64\v4.0.30319\SetupCache\v4.5.50938\setup.exe /uninstallpatch {599EC629-2679-30CE-B28B-7432EF5FC126}

Security Update for Microsoft .NET Framework 4.5.1 (KB2972216) -> C:\windows\Microsoft.NET\Framework64\v4.0.30319\SetupCache\v4.5.50938\setup.exe /uninstallpatch {47FA5DCB-D13C-331E-BC32-65E53BDD949C}

FARO LS 1.1.406.58 -> MsiExec.exe /I{951B0F30-9F1A-4BF6-B3DA-99EB0E917B1C}

TOSHIBA Application Installer -> RunDll32 C:\PROGRA~2\COMMON~1\INSTAL~1\PROFES~1\RunTime\10\00\Intel32\Ctor.dll,LaunchSetup "C:\Program Files (x86)\InstallShield Installation Information\{970472D0-F5F9-4158-A6E3-1AE49EFEF2D3}\setup.exe" -l0x9 -removeonly

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 -> MsiExec.exe /X{9A25302D-30C0-39D9-BD6F-21E6EC160475}

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 -> MsiExec.exe /X{9BE518E6-ECC6-35A9-88E4-87755C07200F}

Realtek WLAN Driver -> C:\Program Files (x86)\InstallShield Installation Information\{9D3D8C60-A55F-4fed-B2B9-173001290E16}\Install.exe -uninst -l0x9

Windows Live Mail -> MsiExec.exe /I{9D56775A-93F3-44A3-8092-840E3826DE30}

Cl@veDefensa del Banco de Venezuela -> "C:\Users\Jesús Saavedra\AppData\Roaming\unins000.exe"

Windows Live Mesh -> MsiExec.exe /I{A0C91188-C88F-4E86-93E6-CD7C9A266649}

Toshiba Book Place -> MsiExec.exe /X{A14962A7-2B7D-456E-BFCD-F54E3A88D41F}

Windows Live Writer -> MsiExec.exe /X{A726AE06-AAA3-43D1-87E3-70F510314F04}

Windows Live Photo Common -> MsiExec.exe /X{A9BDCA6B-3653-467B-AC83-94367DA3BFE3}

Windows Live Writer -> MsiExec.exe /X{AAAFC670-569B-4A2F-82B4-42945E0DE3EF}

RealNetworks - Microsoft Visual C++ 2010 Runtime -> MsiExec.exe /X{AAECF7BA-E83B-4A10-87EA-DE0B333F8734}

Windows Live Writer -> MsiExec.exe /X{AAF454FC-82CA-4F29-AB31-6A109485E76E}

TOSHIBA Service Station -> C:\Program Files (x86)\InstallShield Installation Information\{AC6569FA-6919-442A-8552-073BE69E247A}\setup.exe -runfromtemp -l0x0009 -removeonly

Adobe Reader X (10.1.11) MUI -> MsiExec.exe /I{AC76BA86-7AD7-FFFF-7B44-AA0000000001}

Adobe AIR -> MsiExec.exe /I{AFF7E080-1974-45BF-9310-10DE1A1F5ED0}

Wondershare Dr.Fone(Build 2.0.1.3) -> "C:\Program Files (x86)\Wondershare\Dr.Fone\unins000.exe"

TOSHIBA Recovery Media Creator -> C:\Program Files (x86)\InstallShield Installation Information\{B65BBB06-1F8E-48F5-8A54-B024A9E15FDF}\Setup.exe -runfromtemp -removeonly

Skype Click to Call -> MsiExec.exe /I{B6CF2967-C81E-40C0-9815-C05774FEF120}

BlackBerry Desktop Software 7.1 -> MsiExec.exe /I{BE5B0450-DCCB-4FE9-93E2-3B38D88A745B}

Google Talk Plugin -> MsiExec.exe /I{C1E3DFE7-4EAD-3E9E-A826-E06055BA5921}

TOSHIBA Assist -> C:\Program Files (x86)\InstallShield Installation Information\{C2A276E3-154E-44DC-AAF1-FFDD7FD30E35}\setup.exe -runfromtemp -removeonly

Toshiba Online Backup -> MsiExec.exe /X{C57BCDE1-7CB9-467D-B3BA-7E119916CDC1}

Google Drive -> MsiExec.exe /X{C6640705-7479-4EE5-BC86-879F05F65E74}

Windows Live Mail -> MsiExec.exe /I{C66824E4-CBB3-4851-BB3F-E8CFD6350923}

TOSHIBA Media Controller -> C:\Program Files (x86)\InstallShield Installation Information\{C7A4F26F-F9B0-41B2-8659-99181108CDE3}\setup.exe -runfromtemp -removeonly

RealDownloader -> MsiExec.exe /X{C8E8D2E3-EF6A-4B1D-A09E-7B27EBE2F3CE}

BlackBerry Device Software v5.0.0 para el smartphone BlackBerry 8530 -> MsiExec.exe /X{C981C4A5-E0B9-41DE-97F3-75E914F9ADAC}

PlayReady PC Runtime x86 -> MsiExec.exe /X{CCA5EAAD-92F4-4B7A-B5EE-14294C66AB61}

Oracle Crystal Ball -> MsiExec.exe /I{CE7B3AA1-DE36-42BA-B6E2-7513CDD4D0E6}

Windows Live UX Platform -> MsiExec.exe /I{CE95A79E-E4FC-4FFF-8A75-29F04B942FF2}

MSVCRT_amd64 -> MsiExec.exe /I{D0B44725-3666-492D-BEF6-587A14BD9BD9}

Windows Live Photo Common -> MsiExec.exe /X{D436F577-1695-4D2F-8B44-AC76C99E0002}

Windows Live Communications Platform -> MsiExec.exe /I{D45240D3-B6B3-4FF9-B243-54ECE3E10066}

Skype Launcher -> C:\Program Files (x86)\InstallShield Installation Information\{DA84ECBF-4B79-47F2-B34C-95C38484C058}\setup.exe -runfromtemp -l0x0009 -removeonly

Windows Live Writer Resources -> MsiExec.exe /X{DDC8BDEE-DCAC-404D-8257-3E8D4B782467}

Windows Live Mesh -> MsiExec.exe /I{DECDCB7C-58CC-4865-91AF-627F9798FE48}

D3DX10 -> MsiExec.exe /X{E09C4DB7-630C-4F06-A631-8EA7239923AF}

Windows Live Messenger -> MsiExec.exe /X{E5B21F11-6933-4E0B-A25C-7963E3C07D11}

TOSHIBA Quality Application -> RunDll32 C:\PROGRA~2\COMMON~1\INSTAL~1\PROFES~1\RunTime\10\00\Intel32\Ctor.dll,LaunchSetup "C:\Program Files (x86)\InstallShield Installation Information\{E69992ED-A7F6-406C-9280-1C156417BC49}\setup.exe" -l0x9 -removeonly

Petrel 2009.1 -> MsiExec.exe /I{E74EFDC6-2423-4CBB-A107-7A6D1538D990}

BB Boss version 2.2 -> "C:\Program Files (x86)\BB Boss\unins000.exe"

Toshiba App Place -> MsiExec.exe /I{ED3CBA78-488F-4E8C-B33F-8E3BF4DDB4D2}

Cisco PEAP Module -> MsiExec.exe /I{ED5776D5-59B4-46B7-AF81-5F2D94D7C640}

Microsoft SQL Server 2005 Compact Edition [ENU] -> MsiExec.exe /I{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}

Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 -> MsiExec.exe /X{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}

Intel(R) Processor Graphics -> C:\Program Files (x86)\Intel\Intel(R) Processor Graphics\Uninstall\setup.exe -uninstall

TOSHIBA Media Controller Plug-in -> MsiExec.exe /X{F26FDF57-483E-42C8-A9C9-EEE1EDB256E0}

Visual C++ 2008 x86 Runtime - (v9.0.30729) -> MsiExec.exe /X{F333A33D-125C-32A2-8DCE-5C5D14231E27}

Visual C++ 2008 x86 Runtime - v9.0.30729.01 -> C:\windows\SysWOW64\msiexec.exe /x {F333A33D-125C-32A2-8DCE-5C5D14231E27} /qb+ REBOOTPROMPT=""

MSXML 4.0 SP2 (KB973688) -> MsiExec.exe /I{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}

Visual Studio 2008 x64 Redistributables -> MsiExec.exe /I{FCDBEA60-79F0-4FAE-BBA8-55A26C609A49}

Windows Live Essentials -> MsiExec.exe /I{FE044230-9CA5-43F7-9B58-5AC5A28A1F33}

Advanced Archive Password Recovery -> C:\Program Files (x86)\ElcomSoft\Advanced Archive Password Recovery\uninstall.exe

Microsoft OneDrive -> C:\Users\Jesús Saavedra\AppData\Local\Microsoft\SkyDrive\17.3.1171.0714\OneDriveSetup.exe /uninstall

µTorrent -> "C:\Users\Jesús Saavedra\AppData\Roaming\uTorrent\uTorrent.exe" /UNINSTALL



Lista de PUPs conocidos.

Descripción -> Cadena de Desinstalación.

----------------------------------------



AVG PC Tuneup 2011 -> "C:\Program Files (x86)\AVG\AVG PC Tuneup 2011\unins001.exe"















Logfile created: 10/09/2014 22:43:36

Ad-Aware version: 9.0.7

Extended engine: 3

Extended engine version: 3.1.2770

User performing scan: Jesús Saavedra



*********************** Definitions database information ***********************

Lavasoft definition file: 151.637

Genotype definition file version: 2012/02/13 12:34:34

Extended engine definition file: 32762.0



******************************** Scan results: *********************************

Scan profile name: Análisis completo (ID: full)

Objects scanned: 470724

Objects detected: 17





Type Detected

==========================

Processes.......: 0

Registry entries: 0

Hostfile entries: 0

Files...........: 17

Folders.........: 0

LSPs............: 0

Cookies.........: 0

Browser hijacks.: 0

MRU objects.....: 0







Quarantined items:

Description: c:\users\jesús saavedra\desktop\elistara.exe Family Name: Virtumonde.a (fs) Engine: 3 Clean status: Success Item ID: 1 Family ID: 0 MD5: c8e321cab966853687dfc34ff4c20346

Description: c:\$recycle.bin\s-1-5-21-921242894-1989990284-1724683343-1000\$rqodc54.exe Family Name: Virtumonde.a (fs) Engine: 3 Clean status: Success Item ID: 1 Family ID: 0 MD5: c8e321cab966853687dfc34ff4c20346

Description: c:\users\jesús saavedra\documents\libros profesionales\softwares\eclipse 2010\schlumberger eclipse 2010.1\patch\eclipse2010.1 patch.exe Family Name: Trojan.Win32.Generic!BT Engine: 3 Clean status: Success Item ID: 2 Family ID: 0 MD5: 0195674f032a8f5edec078801811abd0

Description: c:\users\jesús saavedra\documents\libros profesionales\softwares\eclipse 2010\schlumberger eclipse 2010.1\patch\patch\eclipse2010.1 patch.exe Family Name: Trojan.Win32.Generic!BT Engine: 3 Clean status: Success Item ID: 2 Family ID: 0 MD5: 0195674f032a8f5edec078801811abd0

Description: c:\users\jesús saavedra\documents\udo pregrado\discos a reubicar\disco pedro guzmán\bromas\huevitos cartoons\beach.exe Family Name: Trojan.Win32.Generic!BT Engine: 3 Clean status: Success Item ID: 2 Family ID: 0 MD5: 5cad73ceb0e90b48a28fa5249c320d69

Description: c:\users\jesús saavedra\documents\udo pregrado\discos a reubicar\disco pedro guzmán\bromas\huevitos cartoons\hc_brandyhuevototote.exe Family Name: Trojan.Win32.Generic!BT Engine: 3 Clean status: Success Item ID: 2 Family ID: 0 MD5: f77157dd02e6c90d6be461ac6db62bdc

Description: c:\users\jesús saavedra\documents\udo pregrado\discos a reubicar\disco pedro guzmán\bromas\huevitos cartoons\huevo cartoon - a trabajar.exe Family Name: Trojan.Win32.Generic!BT Engine: 3 Clean status: Success Item ID: 2 Family ID: 0 MD5: 9883b03e8987c73c175fd25a2570e63f

Description: c:\users\jesús saavedra\documents\udo pregrado\discos a reubicar\disco pedro guzmán\bromas\huevitos cartoons\huevo cartoon - amigas de huevos.exe Family Name: Trojan.Win32.Generic!BT Engine: 3 Clean status: Success Item ID: 2 Family ID: 0 MD5: b7d4e7cc3fe7072ac19e2846feca421d

Description: c:\users\jesús saavedra\downloads\autocad 2013 64-bit\licence\xf-adsk2013_x64.exe Family Name: Trojan.Win32.Generic!BT Engine: 3 Clean status: Success Item ID: 2 Family ID: 0 MD5: ec87d0983cbc0e656ea04343b7d78e13

Description: c:\users\jesús saavedra\downloads\billardgl.exe Family Name: Trojan.Win32.Generic!BT Engine: 3 Clean status: Success Item ID: 2 Family ID: 0 MD5: 7c3165fc4eefd579e211843e6ccb0e31

Description: c:\users\jesús saavedra\downloads\player_setup.exe Family Name: Trojan.Win32.Generic!BT Engine: 3 Clean status: Success Item ID: 2 Family ID: 0 MD5: dd4d2032eeae979924d4ea403b1bb62a

Description: c:\users\jesús saavedra\documents\libros profesionales\softwares\eclipse 2010\schlumberger eclipse 2010.1\patch\eclipse2010.1 patch.rar::eclipse2010.1 patch.exe Family Name: Trojan.Win32.Generic!BT Engine: 3 Clean status: Success Item ID: 2 Family ID: 0 MD5:

Description: c:\users\jesús saavedra\documents\libros profesionales\softwares\eclipse 2010\schlumberger eclipse 2010.1\patch\patch.rar::patch\eclipse2010.1 patch.exe Family Name: Trojan.Win32.Generic!BT Engine: 3 Clean status: Success Item ID: 2 Family ID: 0 MD5:

Description: c:\users\jesús saavedra\documents\udo pregrado\discos a reubicar\disco pedro guzmán\bromas\huevitos cartoons\hastalamuerte.exe Family Name: Win32.Trojan.Agent Engine: 1 Clean status: Success Item ID: 0 Family ID: 936 MD5: 320e9a8c02920cefef907209832a3f2f

Description: c:\users\jesús saavedra\downloads\keygen\keygen.exe Family Name: Win32.Trojan.Agent Engine: 1 Clean status: Success Item ID: 0 Family ID: 936 MD5: 80e2f5e35d9f2fe01e48582d106c91d8

Description: c:\users\jesús saavedra\appdata\roaming\mozilla\firefox\profiles\b7y3900m.default\extensions\caseyvelez@aol.com\chrome\content\dialog.js Family Name: Win32.Trojan.Agent Engine: 1 Clean status: Success Item ID: 0 Family ID: 936 MD5: deab4dc957c13108352c4f014b242353

Description: c:\users\jesús saavedra\downloads\uploadingdesktop.exe Family Name: Conduit (fs) Engine: 3 Clean status: Success Item ID: 4 Family ID: 0 MD5: fa24ba7aaa192ec0c1a6f3b820940ff0



Scan and cleaning complete: Finished correctly after 16113 seconds



*********************************** Settings ***********************************



Scan profile:

ID: full, enabled:1, value: Análisis completo

ID: folderstoscan, enabled:1, value: C:\

ID: useantivirus, enabled:1, value: true

ID: sections, enabled:1

ID: scancriticalareas, enabled:1, value: true

ID: scanrunningapps, enabled:1, value: true

ID: scanregistry, enabled:1, value: true

ID: scanlsp, enabled:1, value: true

ID: scanads, enabled:1, value: true

ID: scanhostsfile, enabled:1, value: true

ID: scanmru, enabled:1, value: true

ID: scanbrowserhijacks, enabled:1, value: true

ID: scantrackingcookies, enabled:1, value: true

ID: closebrowsers, enabled:1, value: false

ID: filescanningoptions, enabled:1

ID: archives, enabled:1, value: true

ID: onlyexecutables, enabled:1, value: false

ID: skiplargerthan, enabled:1, value: 20480

ID: scanrootkits, enabled:1, value: true

ID: rootkitlevel, enabled:1, value: mild, domain: medium,mild,strict

ID: usespywareheuristics, enabled:1, value: true



Scan global:

ID: global, enabled:1

ID: addtocontextmenu, enabled:1, value: true

ID: playsoundoninfection, enabled:1, value: false

ID: soundfile, enabled:0, value: N/A



Scheduled scan settings:

<Empty>



Update settings:

ID: updates, enabled:1

ID: launchthreatworksafterscan, enabled:1, value: off, domain: normal,off,silently

ID: deffiles, enabled:1, value: downloadandinstall, domain: dontcheck,downloadandinstall

ID: licenseandinfo, enabled:1, value: downloadandinstall, domain: dontcheck,downloadandinstall

ID: schedules, enabled:1, value: true

ID: updatedaily1, enabled:1, value: Daily 1

ID: time, enabled:1, value: Wed Sep 10 21:12:00 2014

ID: frequency, enabled:1, value: daily, domain: daily,monthly,once,systemstart,weekly

ID: weekdays, enabled:1

ID: monday, enabled:1, value: false

ID: tuesday, enabled:1, value: false

ID: wednesday, enabled:1, value: false

ID: thursday, enabled:1, value: false

ID: friday, enabled:1, value: false

ID: saturday, enabled:1, value: false

ID: sunday, enabled:1, value: false

ID: monthly, enabled:1, value: 1, minvalue: 1, maxvalue: 31

ID: scanprofile, enabled:1, value:

ID: auto_deal_with_infections, enabled:1, value: false

ID: updatedaily2, enabled:1, value: Daily 2

ID: time, enabled:1, value: Wed Sep 10 03:12:00 2014

ID: frequency, enabled:1, value: daily, domain: daily,monthly,once,systemstart,weekly

ID: weekdays, enabled:1

ID: monday, enabled:1, value: false

ID: tuesday, enabled:1, value: false

ID: wednesday, enabled:1, value: false

ID: thursday, enabled:1, value: false

ID: friday, enabled:1, value: false

ID: saturday, enabled:1, value: false

ID: sunday, enabled:1, value: false

ID: monthly, enabled:1, value: 1, minvalue: 1, maxvalue: 31

ID: scanprofile, enabled:1, value:

ID: auto_deal_with_infections, enabled:1, value: false

ID: updatedaily3, enabled:1, value: Daily 3

ID: time, enabled:1, value: Wed Sep 10 09:12:00 2014

ID: frequency, enabled:1, value: daily, domain: daily,monthly,once,systemstart,weekly

ID: weekdays, enabled:1

ID: monday, enabled:1, value: false

ID: tuesday, enabled:1, value: false

ID: wednesday, enabled:1, value: false

ID: thursday, enabled:1, value: false

ID: friday, enabled:1, value: false

ID: saturday, enabled:1, value: false

ID: sunday, enabled:1, value: false

ID: monthly, enabled:1, value: 1, minvalue: 1, maxvalue: 31

ID: scanprofile, enabled:1, value:

ID: auto_deal_with_infections, enabled:1, value: false

ID: updatedaily4, enabled:1, value: Daily 4

ID: time, enabled:1, value: Wed Sep 10 15:12:00 2014

ID: frequency, enabled:1, value: daily, domain: daily,monthly,once,systemstart,weekly

ID: weekdays, enabled:1

ID: monday, enabled:1, value: false

ID: tuesday, enabled:1, value: false

ID: wednesday, enabled:1, value: false

ID: thursday, enabled:1, value: false

ID: friday, enabled:1, value: false

ID: saturday, enabled:1, value: false

ID: sunday, enabled:1, value: false

ID: monthly, enabled:1, value: 1, minvalue: 1, maxvalue: 31

ID: scanprofile, enabled:1, value:

ID: auto_deal_with_infections, enabled:1, value: false

ID: updateweekly1, enabled:1, value: Weekly

ID: time, enabled:1, value: Wed Sep 10 21:12:00 2014

ID: frequency, enabled:1, value: weekly, domain: daily,monthly,once,systemstart,weekly

ID: weekdays, enabled:1

ID: monday, enabled:1, value: false

ID: tuesday, enabled:1, value: false

ID: wednesday, enabled:1, value: true

ID: thursday, enabled:1, value: false

ID: friday, enabled:1, value: false

ID: saturday, enabled:1, value: true

ID: sunday, enabled:1, value: false

ID: monthly, enabled:1, value: 1, minvalue: 1, maxvalue: 31

ID: scanprofile, enabled:1, value:

ID: auto_deal_with_infections, enabled:1, value: false



Appearance settings:

ID: appearance, enabled:1

ID: skin, enabled:1, value: default.egl, reglocation: HKEY_LOCAL_MACHINE\SOFTWARE\Lavasoft\Ad-Aware\Resource

ID: showtrayicon, enabled:1, value: true

ID: autoentertainmentmode, enabled:1, value: true

ID: guimode, enabled:1, value: mode_simple, domain: mode_advanced,mode_simple

ID: language, enabled:1, value: es, reglocation: HKEY_LOCAL_MACHINE\SOFTWARE\Lavasoft\Ad-Aware\Language



Realtime protection settings:

ID: realtime, enabled:1

ID: layers, enabled:1

ID: useantivirus, enabled:1, value: true

ID: usespywareheuristics, enabled:1, value: true

ID: maintainbackup, enabled:1, value: true

ID: infomessages, enabled:1, value: onlyimportant, domain: display,dontnotify,onlyimportant

ID: modules, enabled:1

ID: processprotection, enabled:0, value: true

ID: onaccessprotection, enabled:0, value: false

ID: registryprotection, enabled:0, value: true

ID: networkprotection, enabled:0, value: true





****************************** System information ******************************

Computer name: JESUSSAAVEDRAPC

Processor name: Intel(R) Core(TM) i3-2330M CPU @ 2.20GHz

Processor identifier: Intel64 Family 6 Model 42 Stepping 7

Processor speed: ~2195MHZ

Raw info: processorarchitecture 9, processortype 8664, processorlevel 6, processor revision 10759, number of processors 4, processor features: [MMX,SSE,SSE2,SSE3]

Physical memory available: 3255513088 bytes

Physical memory total: 4240293888 bytes

Virtual memory available: 1619009536 bytes

Virtual memory total: 2147352576 bytes

Memory load: 23%

Microsoft Service Pack 1 (build 7601)

Windows startup mode:



Running processes:

PID: 320 name: C:\Windows\System32\smss.exe owner: SYSTEM domain: NT AUTHORITY

PID: 400 name: C:\Windows\System32\csrss.exe owner: SYSTEM domain: NT AUTHORITY

PID: 436 name: C:\Windows\System32\csrss.exe owner: SYSTEM domain: NT AUTHORITY

PID: 444 name: C:\Windows\System32\wininit.exe owner: SYSTEM domain: NT AUTHORITY

PID: 472 name: C:\Windows\System32\winlogon.exe owner: SYSTEM domain: NT AUTHORITY

PID: 532 name: C:\Windows\System32\services.exe owner: SYSTEM domain: NT AUTHORITY

PID: 540 name: C:\Windows\System32\lsass.exe owner: SYSTEM domain: NT AUTHORITY

PID: 552 name: C:\Windows\System32\lsm.exe owner: SYSTEM domain: NT AUTHORITY

PID: 652 name: C:\Windows\System32\svchost.exe owner: SYSTEM domain: NT AUTHORITY

PID: 728 name: C:\Windows\System32\svchost.exe owner: NETWORK SERVICE domain: NT AUTHORITY

PID: 816 name: C:\Program Files\Microsoft Security Client\MsMpEng.exe owner: SYSTEM domain: NT AUTHORITY

PID: 888 name: C:\Windows\System32\svchost.exe owner: LOCAL SERVICE domain: NT AUTHORITY

PID: 924 name: C:\Windows\System32\svchost.exe owner: SYSTEM domain: NT AUTHORITY

PID: 976 name: C:\Windows\System32\svchost.exe owner: LOCAL SERVICE domain: NT AUTHORITY

PID: 1004 name: C:\Windows\System32\svchost.exe owner: NETWORK SERVICE domain: NT AUTHORITY

PID: 520 name: C:\Windows\System32\svchost.exe owner: SYSTEM domain: NT AUTHORITY

PID: 1052 name: C:\Program Files (x86)\Lavasoft\Ad-Aware\AAWService.exe owner: SYSTEM domain: NT AUTHORITY

PID: 1108 name: C:\Windows\System32\svchost.exe owner: LOCAL SERVICE domain: NT AUTHORITY

PID: 1448 name: C:\Windows\System32\svchost.exe owner: NETWORK SERVICE domain: NT AUTHORITY

PID: 1504 name: C:\Windows\System32\wbem\unsecapp.exe owner: SYSTEM domain: NT AUTHORITY

PID: 1560 name: C:\Windows\explorer.exe owner: Jesús Saavedra domain: JESUSSAAVEDRAPC

PID: 1652 name: C:\Windows\System32\wbem\WmiPrvSE.exe owner: SYSTEM domain: NT AUTHORITY

PID: 1744 name: C:\Windows\System32\ctfmon.exe owner: Jesús Saavedra domain: JESUSSAAVEDRAPC

PID: 1856 name: C:\Program Files (x86)\Lavasoft\Ad-Aware\AAWTray.exe owner: Jesús Saavedra domain: JESUSSAAVEDRAPC

PID: 1584 name: C:\Windows\System32\dllhost.exe owner: Jesús Saavedra domain: JESUSSAAVEDRAPC

PID: 2396 name: C:\Program Files (x86)\Lavasoft\Ad-Aware\Ad-Aware.exe owner: Jesús Saavedra domain: JESUSSAAVEDRAPC



Startup items:

Name: WebCheck

imagepath: {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

Name: TSleepSrv

imagepath: %ProgramFiles(x86)%\TOSHIBA\TOSHIBA Sleep Utility\TSleepSrv.exe

Name: GrooveMonitor

imagepath: "C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe"

Name: RIMBBLaunchAgent.exe

imagepath: C:\Program Files (x86)\Common Files\Research In Motion\USB Drivers\RIMBBLaunchAgent.exe

Name: TkBellExe

imagepath: "C:\Program Files (x86)\Real\RealPlayer\update\realsched.exe" -osboot

Name: Adobe ARM

imagepath: "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"

Name: QuickTime Task

imagepath: "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime

Name: SunJavaUpdateSched

imagepath: "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"

Name: iTunesHelper

imagepath: "C:\Program Files (x86)\iTunes\iTunesHelper.exe"

Name: HP Software Update

imagepath: C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe

Name:

Name:

imagepath: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Inicio\desktop.ini

Name:

imagepath: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\desktop.ini

Name:

imagepath: C:\Windows\System32\config\systemprofile\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\desktop.ini



Bootexecute items:

Name:

imagepath: autocheck autochk *



Running services:

Name: BFE

displayname: Base Filtering Engine

Name: CryptSvc

displayname: Cryptographic Services

Name: DcomLaunch

displayname: DCOM Server Process Launcher

Name: Dhcp

displayname: DHCP Client

Name: Dnscache

displayname: DNS Client

Name: EapHost

displayname: Extensible Authentication Protocol

Name: EFS

displayname: Encrypting File System (EFS)

Name: eventlog

displayname: Windows Event Log

Name: IKEEXT

displayname: IKE and AuthIP IPsec Keying Modules

Name: KeyIso

displayname: CNG Key Isolation

Name: LanmanWorkstation

displayname: Workstation

Name: Lavasoft Ad-Aware Service

displayname: Lavasoft Ad-Aware Service

Name: lmhosts

displayname: TCP/IP NetBIOS Helper

Name: MpsSvc

displayname: Windows Firewall

Name: MsMpSvc

displayname: Microsoft Antimalware Service

Name: Netman

displayname: Network Connections

Name: netprofm

displayname: Network List Service

Name: NlaSvc

displayname: Network Location Awareness

Name: nsi

displayname: Network Store Interface Service

Name: PlugPlay

displayname: Plug and Play

Name: PolicyAgent

displayname: IPsec Policy Agent

Name: Power

displayname: Power

Name: ProfSvc

displayname: User Profile Service

Name: RpcEptMapper

displayname: RPC Endpoint Mapper

Name: RpcSs

displayname: Remote Procedure Call (RPC)

Name: Winmgmt

displayname: Windows Management Instrumentation

Name: Wlansvc

displayname: WLAN AutoConfig
Todos los días puedo aprender algo nuevo, y estoy dispuesto a aprovechar esa oportunidad. JISAAV

Avatar de Usuario
msc hotline sat
Administrador
Administrador
Mensajes: 89227
Registrado: 09 Mar 2004, 20:39
Ubicación: BARCELONA (ESPAÑA)
Contactar:

Re: Creo tengo spyware o adware, no se cómo quitarlos

Mensaje por msc hotline sat » 11 Sep 2014, 18:44

Pues puedes empezar por volver a pasar el ELIPUPS y aceptar desinstalar este PUP que se te indica al final:



Lista de PUPs conocidos.

Descripción -> Cadena de Desinstalación.

----------------------------------------



AVG PC Tuneup 2011 -> "C:\Program Files (x86)\AVG\AVG PC Tuneup 2011\unins001.exe"





Tambien puedes hacerlo desde Panel de Control -> Agregar o Quitar programas y desinstalar dicha aplicacion.





Por otra parte, no nos posteas el log del SPROCES, que te aparecerá en C:\SPROECLOG.TXT tras lanzar dicha utilidad y pulsar en SALIR:


[quote="para DESCARGAR el SPROCES, msc"]



http://www.zonavirus.com/descargas/sproces.asp


[/quote]




Posiblemente en dicho log veamos algo mas...



saludos



ms, 11-9-2014

jisaav
Asiduo al foro
Asiduo al foro
Mensajes: 53
Registrado: 24 Sep 2007, 01:41

Re: Creo tengo spyware o adware, no se cómo quitarlos

Mensaje por jisaav » 11 Sep 2014, 21:21

gracias por su pronta respuesta [b]msc hotline sat[/b],



eliminado el programa que cita el EliPUPs



luego de eso, he corrido el SPROCES en modo seguro, y copio el log a continuación:



(11-9-2014 19:00:47 GMT)

SProces v7.7 (c)2014 S.G.H. / Satinfo S.L.

-------------------------------------------

Sistema Operativo: Windows 7 Home Premium (v6.1) (64 bits)

Internet Explorer: (v9.11.9600.17280) 0

Equipo: Nombre de Usuario PC

Usuario: Nombre de Usuario

Sesión de Usuario: Nombre de Usuario



22 Procesos Activos:

C:\WINDOWS\SYSTEM32\SMSS.EXE

C:\WINDOWS\SYSTEM32\CSRSS.EXE

C:\WINDOWS\SYSTEM32\WININIT.EXE

C:\WINDOWS\SYSTEM32\CSRSS.EXE

C:\WINDOWS\SYSTEM32\SERVICES.EXE

C:\WINDOWS\SYSTEM32\LSASS.EXE

C:\WINDOWS\SYSTEM32\LSM.EXE

C:\WINDOWS\SYSTEM32\WINLOGON.EXE

C:\WINDOWS\SYSTEM32\SVCHOST.EXE

C:\WINDOWS\SYSTEM32\SVCHOST.EXE

C:\WINDOWS\SYSTEM32\MSMPENG.EXE

C:\WINDOWS\SYSTEM32\SVCHOST.EXE

C:\WINDOWS\SYSTEM32\SVCHOST.EXE

C:\WINDOWS\SYSTEM32\SVCHOST.EXE

C:\WINDOWS\SYSTEM32\SVCHOST.EXE

C:\WINDOWS\SYSTEM32\SVCHOST.EXE

C:\WINDOWS\SYSTEM32\SVCHOST.EXE

C:\WINDOWS\SYSTEM32\EXPLORER.EXE

C:\WINDOWS\SYSTEM32\CTFMON.EXE

C:\WINDOWS\SYSTEM32\SVCHOST.EXE

C:\WINDOWS\SYSTEM32\DLLHOST.EXE

C:\USERS\JESúS SAAVEDRA\DESKTOP\SPROCES.EXE



R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = www.google.co.ve

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch

R0 - HKUS\S-1-5-21-921242894-1989990284-1724683343-1003\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank (User 'Temporal Europa')

R0 - HKUS\S-1-5-21-921242894-1989990284-1724683343-1003\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch (User 'Temporal Europa')

R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = <local>;*.local (0)

R1 - HKUS\S-1-5-21-921242894-1989990284-1724683343-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = <local> (0) (User 'Temporal Europa')

R3 - URLSearchHook: McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\PROGRA~2\mcafee\SITEAD~1\x64\mcieplg.dll

F2 - REG:system.ini: UserInit=C:\windows\system32\userinit.exe (HKLM x86)

O1 - Hosts: 127.0.0.1 www.007guard.com

O1 - Hosts: 127.0.0.1 007guard.com

O1 - Hosts: 127.0.0.1 008i.com

O1 - Hosts: 127.0.0.1 www.008k.com

O1 - Hosts: 127.0.0.1 008k.com

O1 - Hosts: 127.0.0.1 www.00hq.com

O1 - Hosts: 127.0.0.1 00hq.com

O1 - Hosts: 127.0.0.1 010402.com

O1 - Hosts: 127.0.0.1 www.032439.com

O1 - Hosts: 127.0.0.1 032439.com

O1 - Hosts: 127.0.0.1 www.0scan.com

O1 - Hosts: 127.0.0.1 0scan.com

O1 - Hosts: 127.0.0.1 1000gratisproben.com

O1 - Hosts: 127.0.0.1 www.1000gratisproben.com

O1 - Hosts: 127.0.0.1 1001namen.com

O1 - Hosts: 127.0.0.1 www.1001namen.com

O1 - Hosts: 127.0.0.1 100888290cs.com

O1 - Hosts: 127.0.0.1 www.100888290cs.com

O1 - Hosts: 127.0.0.1 www.100sexlinks.com

O1 - Hosts: 127.0.0.1 100sexlinks.com

...

O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll

O2 - BHO: McAfee SiteAdvisor BHO - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - c:\PROGRA~2\mcafee\SITEAD~1\x64\mcieplg.dll

O2 - BHO: TOSHIBA Media Controller Plug-in - {F3C88694-EFFA-4d78-B409-54B7B2535B14} - C:\Program Files (x86)\TOSHIBA\TOSHIBA Media Controller Plug-in\x64\TOSHIBAMediaControllerIE.dll

O2 - BHO (x86): HP Print Enhancer - {0347C33E-8762-4905-BF09-768834316C61} - (no file)

O2 - BHO (x86): (no name) - {3049C3E9-B461-4BC5-8870-4C09146192CA} - (no file)

O2 - BHO (x86): (no name) - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - (no file)

O2 - BHO (x86): (no name) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - (no file)

O2 - BHO (x86): Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

O2 - BHO (x86): SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll

O2 - BHO (x86): McAfee SiteAdvisor BHO - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - c:\PROGRA~2\mcafee\SITEAD~1\x64\mcieplg.dll

O2 - BHO (x86): G-Buster Browser Defense Banco de Venezuela - {C41A1C0E-EA6C-11D4-B1B8-444553540026} - (no file)

O2 - BHO (x86): (no name) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - (no file)

O2 - BHO (x86): TOSHIBA Media Controller Plug-in - {F3C88694-EFFA-4d78-B409-54B7B2535B14} - C:\Program Files (x86)\TOSHIBA\TOSHIBA Media Controller Plug-in\x64\TOSHIBAMediaControllerIE.dll

O2 - BHO (x86): HP Smart BHO Class - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - (no file)

O3 - Toolbar: McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\PROGRA~2\mcafee\SITEAD~1\x64\mcieplg.dll

O3 - Toolbar (x86): McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\PROGRA~2\mcafee\SITEAD~1\x64\mcieplg.dll

O4 - HKCU\..\Run: [Google Update] "C:\Users\Nombre de Usuario\AppData\Local\Google\Update\GoogleUpdate.exe" /c

O4 - HKCU\..\Run: [ares] "C:\Program Files (x86)\Ares\Ares.exe" -h

O4 - HKCU\..\RunOnce: [Uninstall C:\Users\Jesús Saavedra\AppData\Local\Microsoft\SkyDrive\17.0.2011.0627\amd64] C:\windows\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Nombre de Usuario\AppData\Local\Microsoft\SkyDrive\17.0.2011.0627\amd64"

O4 - HKCU\..\RunOnce: [Uninstall C:\Users\Nombre de Usuario\AppData\Local\Microsoft\SkyDrive\17.0.2011.0627] C:\windows\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Nombre de Usuario\AppData\Local\Microsoft\SkyDrive\17.0.2011.0627"

O4 - HKCU\..\RunOnce: [Uninstall C:\Users\Nombre de Usuario\AppData\Local\Microsoft\SkyDrive\17.3.1165.0612\amd64] C:\windows\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Nombre de Usuario\AppData\Local\Microsoft\SkyDrive\17.3.1165.0612\amd64"

O4 - HKCU\..\RunOnce: [Uninstall C:\Users\Nombre de Usuario\AppData\Local\Microsoft\SkyDrive\17.3.1165.0612] C:\windows\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Nombre de Usuario\AppData\Local\Microsoft\SkyDrive\17.3.1165.0612"

O4 - HKUS\S-1-5-21-921242894-1989990284-1724683343-1003\..\Run: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime (User 'Temporal Europa')

O4 - HKLM\..\Run: [IgfxTray] C:\windows\system32\igfxtray.exe

O4 - HKLM\..\Run: [HotKeysCmds] C:\windows\system32\hkcmd.exe

O4 - HKLM\..\Run: [Persistence] C:\windows\system32\igfxpers.exe

O4 - HKLM\..\Run: [TPwrMain] %ProgramFiles%\TOSHIBA\Power Saver\TPwrMain.EXE

O4 - HKLM\..\Run: [TCrdMain] %ProgramFiles%\TOSHIBA\FlashCards\TCrdMain.exe

O4 - HKLM\..\Run: [SmartAudio] C:\Program Files\CONEXANT\SAII\SAIICpl.exe /t

O4 - HKLM\..\Run: [cAudioFilterAgent] C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent64.exe

O4 - HKLM\..\Run: [SynTPEnh] %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe

O4 - HKLM\..\Run: [Teco] "%ProgramFiles%\TOSHIBA\TECO\Teco.exe" /r

O4 - HKLM\..\Run: [TosVolRegulator] C:\Program Files\TOSHIBA\TosVolRegulator\TosVolRegulator.exe

O4 - HKLM\..\Run: [TosSENotify] C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosWaitSrv.exe

O4 - HKLM\..\Run: [TosNC] %ProgramFiles%\Toshiba\BulletinBoard\TosNcCore.exe

O4 - HKLM\..\Run: [TosReelTimeMonitor] %ProgramFiles%\TOSHIBA\ReelTime\TosReelTimeMonitor.exe

O4 - HKLM\..\Run: [MSC] "c:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey

O4 - HKLM\..\WOW6432node\..\Run: [TSleepSrv] %ProgramFiles(x86)%\TOSHIBA\TOSHIBA Sleep Utility\TSleepSrv.exe

O4 - HKLM\..\WOW6432node\..\Run: [GrooveMonitor] "C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe"

O4 - HKLM\..\WOW6432node\..\Run: [RIMBBLaunchAgent.exe] C:\Program Files (x86)\Common Files\Research In Motion\USB Drivers\RIMBBLaunchAgent.exe

O4 - HKLM\..\WOW6432node\..\Run: [TkBellExe] "C:\Program Files (x86)\Real\RealPlayer\update\realsched.exe" -osboot

O4 - HKLM\..\WOW6432node\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"

O4 - HKLM\..\WOW6432node\..\Run: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime

O4 - HKLM\..\WOW6432node\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"

O4 - HKLM\..\WOW6432node\..\Run: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe"

O4 - HKLM\..\WOW6432node\..\Run: [HP Software Update] C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe

O4 - HKLM\..\WOW6432node\..\Run: [SDTray] "C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe"

O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'Servicio Local')

O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'Servicio Local')

O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'Servicio de red')

O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'Servicio de red')

O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~2\MICROS~3\Office12\EXCEL.EXE/3000

O8 - Extra context menu item: Se&nd to OneNote - res://C:\PROGRA~2\MICROS~3\Office14\ONBttnIE.dll/105

O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~2\MICROS~3\Office12\EXCEL.EXE/3000 (User 'Temporal Europa')

O9 - Extra button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (HKLM)

O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - (no file) (HKLM x86)

O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - (no file) (HKLM x86)

O9 - Extra button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (HKLM x86)

O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - (no file) (HKLM x86)

O9 - Extra button: Mostrar u ocultar HP Smart Web Printing - {DDE87865-83C5-48c4-8357-2F5B1AA84522} - (no file) (HKLM x86)

O10 - Unknown file in Winsock LSP: C:\PROGRAM FILES (X86)\COMMON FILES\MICROSOFT SHARED\WINDOWS LIVE\WLIDNSP.DLL

O10 - Unknown file in Winsock LSP: C:\PROGRAM FILES (X86)\COMMON FILES\MICROSOFT SHARED\WINDOWS LIVE\WLIDNSP.DLL

O10 - Unknown file in Winsock LSP: C:\PROGRAM FILES (X86)\BONJOUR\MDNSNSP.DLL

O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics

O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics (x86)

O16 - DPF (x86): {8AD9C840-044E-11D1-B3E9-00805F499D93} - http://java.sun.com/update/1.6.0/jinstall-1_6_0_25-windows-i586.cab

O16 - DPF (x86): {CAFEEFAC-0016-0000-0025-ABCDEFFEDCBA} - http://java.sun.com/update/1.6.0/jinstall-1_6_0_25-windows-i586.cab

O16 - DPF (x86): {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - http://java.sun.com/update/1.6.0/jinstall-1_6_0_25-windows-i586.cab

O17 - HKLM\System\CCS\Services\Tcpip\..\{501222EA-FFCF-49AF-AB0C-08574D71E5A2}: NameServer = 8.8.8.8,8.8.4.4

O17 - HKLM\System\CCS\Services\Tcpip\..\{6F38BFF7-C689-4976-9260-97E715312D68}: NameServer = 8.8.8.8,8.8.4.4

O18 - Protocol: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\PROGRA~2\mcafee\SITEAD~1\x64\mcieplg.dll

O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - (no file)

O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - (no file)

O18 - Protocol: ms-help - {314111C7-A502-11D2-BBCA-00C04F8EC294} - (no file)

O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - (no file)

O18 - Protocol: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\PROGRA~2\mcafee\SITEAD~1\x64\mcieplg.dll

O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll

O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - (no file)

O18 - Protocol: wlmailhtml - {03C514A3-1EFB-4856-9F99-10D7BE1653C0} - (no file)

O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - (no file)

O20 - Winlogon Notify: IGFXCUI - IGFXDEV.DLL

O20 - Winlogon Notify (x86): GBPLUGINBDV - C:\PROGRAM FILES (X86)\GBPLUGIN\GBIEHBDV.DLL (file missing)

O20 - Winlogon Notify (x86): SDWINLOGON - SDWINLOGON.DLL (file missing)

O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - (no file)

O21 - SSODL (x86): WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - (no file)

O22 - ShellExecuteHooks (x86): Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - (no file)

O22 - ShellExecuteHooks (x86): GbPlugin ShlObj - {E37CB5F0-51F5-4395-A808-5FA49E399026} - (no file)



Información Adicional:

----------------------

Acceso Rapido ('Nombre de Usuario'): Adobe Digital Editions 2.0.lnk = C:\Program Files (x86)\Adobe\Adobe Digital Editions 2.0\DigitalEditions.exe

Acceso Rapido ('Nombre de Usuario'): JDownloader.lnk = C:\Program Files (x86)\JDownloader\JDownloaderPortable.exe

Acceso Rapido ('Nombre de Usuario'): Launch Internet Explorer Browser.lnk = C:\Program Files (x86)\Internet Explorer\iexplore.exe

Acceso Rapido ('Nombre de Usuario'): Microsoft Office Outlook.lnk = C:\Program Files (x86)\Microsoft Office\Office12\OUTLOOK.EXE /recycle

Acceso Rapido ('Nombre de Usuario'): Nero StartSmart Essentials.lnk = C:\Program Files (x86)\Nero\Nero8\Nero StartSmart\NeroStartSmart.exe -ScParameter=65

Acceso Rapido ('Nombre de Usuario'): PIPESIM.lnk = C:\Program Files (x86)\Schlumberger\PIPESIM\Programs\Psim2000.exe

Acceso Rapido ('Nombre de Usuario'): Shows Desktop.lnk =

Acceso Rapido ('Nombre de Usuario'): UltraDefrag.lnk = C:\Program Files\UltraDefrag\ultradefrag.exe

Acceso Rapido ('Nombre de Usuario'): Window Switcher.lnk =

Acceso Rapido ('Nombre de Usuario'): µTorrent.lnk = C:\Users\Jesús Saavedra\AppData\Roaming\uTorrent\uTorrent.exe

Acceso Rapido ('Temporal Europa'): Launch Internet Explorer Browser.lnk = C:\Program Files (x86)\Internet Explorer\iexplore.exe

Acceso Rapido ('Temporal Europa'): Shows Desktop.lnk =

Acceso Rapido ('Temporal Europa'): Window Switcher.lnk =

.scr (HKCR): AutoCADScriptFile -> C:\windows\system32\notepad.exe "%1"

Ext.Google Chrome. ('Nombre de Usuario') Id: bepbmhgboaologfdajaanbcjmnhjmhfn

Ext.Google Chrome. ('Nombre de Usuario') Id: bjgfdlplhmndoonmofmflcbiohgbkifn

Ext.Google Chrome. ('Nombre de Usuario') Id: fheoggkfdfchfphceeifdbepaooicahoC:\Program Files (x86)\McAfee\SiteAdvisor\McChPlg.crx

Ext.Google Chrome. ('Nombre de Usuario') Id: hihakjfhbmlmjdnnhegiciffjplmdhin

Ext.Google Chrome. ('Nombre de Usuario') Id: ikpbmdkdomofnnkcaoepabekgkedfhom

Ext.Google Chrome. ('Nombre de Usuario') Id: lifbcibllhkdhoafpjfnlhfpfgnpldfl

Ext.Google Chrome. ('Nombre de Usuario') Id: mdanidgdpmkimeiiojknlnekblgmpdll

Ext.Google Chrome. ('Nombre de Usuario') Id: ndnaehgpjlnokgebbaldlmgkapkpjkkb

Ext.Google Chrome. ('Nombre de Usuario') Id: nmmhkkegccagdldgiimedpiccmgmieda

Ext.Google Chrome. ('Temporal Europa') Id: aohghmighlieiainnegkcijnfilokake

Ext.Google Chrome. ('Temporal Europa') Id: apdfllckaahabafndbhieahigkjlhalf

Ext.Google Chrome. ('Temporal Europa') Id: bepbmhgboaologfdajaanbcjmnhjmhfn

Ext.Google Chrome. ('Temporal Europa') Id: blpcfgokakmgnkcojhhkbfbldkacnbeo

Ext.Google Chrome. ('Temporal Europa') Id: coobgpohoikkiipiblmjeljniedjpjpf

Ext.Google Chrome. ('Temporal Europa') Id: idhngdhcfkoamngbedgpaokgjbnpdiji

Ext.Google Chrome. ('Temporal Europa') Id: lifbcibllhkdhoafpjfnlhfpfgnpldfl

Ext.Google Chrome. ('Temporal Europa') Id: nmmhkkegccagdldgiimedpiccmgmieda

Ext.Google Chrome. ('Temporal Europa') Id: pjkljhegncpnkpknbcohdijeoejaedia



Listado de Servicios (Carga Automatica):

----------------------------------------

O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe

O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe

O23 - Service: Autodesk Content Service - Autodesk, Inc. - C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe

O23 - Service: Servicio Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe

O23 - Service: DCService.exe - Unknown owner - C:\ProgramData\DatacardService\DCService.exe

O23 - Service: Team MFP Comm Driver (DgiVecp) - Samsung Electronics Co., Ltd. - C:\WINDOWS\SYSTEM32\Drivers\DgiVecp.sys

O23 - Service: DIGITEL. OUC (DIGITEL. RunOuc) - Unknown owner - C:\Program Files\DIGITEL 3G\UpdateDog\ouc.exe (file missing)

O23 - Service: Folder Size (FolderSize) - Brio - C:\Program Files\FolderSize\FolderSizeSvc.exe

O23 - Service: globalUpdate Update Service (globalUpdate) (globalUpdate) - globalUpdate - C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe

O23 - Service: Google Update Service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

O23 - Service: HP CUE DeviceDiscovery Service (hpqddsvc) - Hewlett-Packard Co. - %SystemRoot%\system32\svchost.exe -k hpdevmgmt - C:\Program Files (x86)\HP\Digital Imaging\bin\hpqddsvc.dll

O23 - Service: HP Support Solutions Framework Service (HPSupportSolutionsFrameworkService) - Hewlett-Packard Company - C:\Program Files (x86)\Hp\Common\HPSupportSolutionsFrameworkService.exe

O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe

O23 - Service: McAfee SiteAdvisor Service - McAfee, Inc. - c:\PROGRA~2\mcafee\SITEAD~1\mcsacore.exe

O23 - Service: Nero BackItUp Scheduler 3 - Nero AG - C:\Program Files (x86)\Nero\Nero8\Nero BackItUp\NBService.exe

O23 - Service: Net Driver HPZ12 - Hewlett-Packard - %SystemRoot%\System32\svchost.exe -k HPZ12 - C:\Windows\system32\HPZinw12.dll

O23 - Service: Common Client Job Manager Service (PCCUJobMgr) - Unknown owner - C:\Program Files (x86)\Norton PC Checkup\Engine\2.0.13.11\ccSvcHst.exe" /s "PCCUJobMgr" /m "C:\Program Files (x86)\Norton PC Checkup\Engine\2.0.13.11\diMaster.dll (file missing)

O23 - Service: PLFlash DeviceIoControl Service - Prolific Technology Inc. - C:\windows\SysWOW64\IoctlSvc.exe

O23 - Service: Pml Driver HPZ12 - Hewlett-Packard - %SystemRoot%\System32\svchost.exe -k HPZ12 - C:\Windows\system32\HPZipm12.dll

O23 - Service: Rapport Management Service (RapportMgmtService) - IBM Corp. - C:\Program Files (x86)\Trusteer\Rapport\bin\RapportMgmtService.exe

O23 - Service: RealNetworks Downloader Resolver Service - Unknown owner - C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe

O23 - Service: Spybot-S&D 2 Scanner Service (SDScannerService) - Safer-Networking Ltd. - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe

O23 - Service: Spybot-S&D 2 Updating Service (SDUpdateService) - Safer-Networking Ltd. - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe

O23 - Service: Spybot-S&D 2 Security Center Service (SDWSCService) - Safer-Networking Ltd. - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe

O23 - Service: Skype C2C Service - Skype Technologies S.A. - C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe

O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe

O23 - Service: SSPORT - Samsung Electronics - C:\windows\system32\Drivers\SSPORT.sys

O23 - Service: TOSHIBA Optical Disc Drive Service (TODDSrv) - TOSHIBA Corporation - C:\Windows\system32\TODDSrv.exe

O23 - Service: TOSHIBA Power Saver (TosCoSrv) - TOSHIBA Corporation - C:\Program Files\Toshiba\Power Saver\TosCoSrv.exe

O23 - Service: TOSHIBA eco Utility Service - TOSHIBA Corporation - C:\Program Files\TOSHIBA\TECO\TecoService.exe

O23 - Service: TOSHIBA ACPI-Based Value Added Logical and General Purpose Device Filter Driver (TVALZFL) - TOSHIBA Corporation - C:\WINDOWS\SYSTEM32\DRIVERS\TVALZFL.sys

O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe



Listado de Servicios (Carga Manual):

------------------------------------

O23 - Service: adp94xx - Adaptec, Inc. - C:\WINDOWS\system32\drivers\adp94xx.sys

O23 - Service: adpahci - Adaptec, Inc. - C:\WINDOWS\system32\drivers\adpahci.sys

O23 - Service: adpu320 - Adaptec, Inc. - C:\WINDOWS\system32\drivers\adpu320.sys

O23 - Service: aliide - Acer Laboratories Inc. - C:\WINDOWS\system32\drivers\aliide.sys

O23 - Service: amdsata - Advanced Micro Devices - C:\WINDOWS\system32\drivers\amdsata.sys

O23 - Service: amdsbs - AMD Technologies Inc. - C:\WINDOWS\system32\drivers\amdsbs.sys

O23 - Service: arc - Adaptec, Inc. - C:\WINDOWS\system32\drivers\arc.sys

O23 - Service: arcsas - Adaptec, Inc. - C:\WINDOWS\system32\drivers\arcsas.sys

O23 - Service: Broadcom NetXtreme II VBD (b06bdrv) - Broadcom Corporation - C:\WINDOWS\system32\drivers\bxvbda.sys

O23 - Service: Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0 (b57nd60a) - Broadcom Corporation - C:\WINDOWS\SYSTEM32\DRIVERS\b57nd60a.sys

O23 - Service: BlackBerry Device Manager (Blackberry Device Manager) - Research In Motion Limited - C:\Program Files (x86)\Common Files\Research In Motion\USB Drivers\BbDevMgr.exe

O23 - Service: Brother USB Mass-Storage Lower Filter Driver (BrFiltLo) - Brother Industries, Ltd. - C:\WINDOWS\system32\drivers\BrFiltLo.sys

O23 - Service: Brother USB Mass-Storage Upper Filter Driver (BrFiltUp) - Brother Industries, Ltd. - C:\WINDOWS\system32\drivers\BrFiltUp.sys

O23 - Service: Brother MFC Serial Port Interface Driver (WDM) (Brserid) - Brother Industries Ltd. - C:\WINDOWS\System32\Drivers\Brserid.sys

O23 - Service: Brother WDM Serial driver (BrSerWdm) - Brother Industries Ltd. - C:\WINDOWS\System32\Drivers\BrSerWdm.sys

O23 - Service: Brother MFC USB Fax Only Modem (BrUsbMdm) - Brother Industries Ltd. - C:\WINDOWS\System32\Drivers\BrUsbMdm.sys

O23 - Service: Brother MFC USB Serial WDM Driver (BrUsbSer) - Brother Industries Ltd. - C:\WINDOWS\System32\Drivers\BrUsbSer.sys

O23 - Service: cmdide - CMD Technology, Inc. - C:\WINDOWS\system32\drivers\cmdide.sys

O23 - Service: Conexant UAA Function Driver for High Definition Audio Service (CnxtHdAudService) - Conexant Systems Inc. - C:\WINDOWS\SYSTEM32\drivers\CHDRT64.sys

O23 - Service: Broadcom NetXtreme II 10 GigE VBD (ebdrv) - Broadcom Corporation - C:\WINDOWS\system32\drivers\evbda.sys

O23 - Service: elxstor - Emulex - C:\WINDOWS\system32\drivers\elxstor.sys

O23 - Service: EraserUtilDrv11210 - Unknown owner - C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilDrv11210.sys (file missing)

O23 - Service: HUAWEI USB-WWAN miniport (ewusbmbb) - Unknown owner - C:\WINDOWS\SYSTEM32\DRIVERS\ewusbwwan.sys (file missing)

O23 - Service: HUAWEI USB-NDIS miniport (ewusbnet) - Huawei Technologies Co., Ltd. - C:\WINDOWS\SYSTEM32\DRIVERS\ewusbnet.sys

O23 - Service: Huawei MobileBroadband USB PNP Device (ew_hwusbdev) - Huawei Technologies Co., Ltd. - C:\WINDOWS\SYSTEM32\DRIVERS\ew_hwusbdev.sys

O23 - Service: FLEXnet Licensing Service 64 - Flexera Software, Inc. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe

O23 - Service: GamesAppService - WildTangent, Inc. - C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe

O23 - Service: GEAR ASPI Filter Driver (GEARAspiWDM) - GEAR Software Inc. - C:\WINDOWS\SYSTEM32\DRIVERS\GEARAspiWDM.sys

O23 - Service: globalUpdate Update Service (globalUpdatem) (globalUpdatem) - globalUpdate - C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe

O23 - Service: Google Update Service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

O23 - Service: Hauppauge Consumer Infrared Receiver (hcw85cir) - Hauppauge Computer Works, Inc. - C:\WINDOWS\system32\drivers\hcw85cir.sys

O23 - Service: hpqcxs08 - Hewlett-Packard Co. - %SystemRoot%\system32\svchost.exe -k hpdevmgmt - C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcxs08.dll

O23 - Service: HpSAMD - Hewlett-Packard Company - C:\WINDOWS\system32\drivers\HpSAMD.sys

O23 - Service: HUAWEI Mobile Connect - USB Smart Card Reader (Huawei) - Huawei Tech. Co., Ltd. - C:\WINDOWS\SYSTEM32\DRIVERS\ewdcsc.sys

O23 - Service: huawei_enumerator - Huawei Technologies Co., Ltd. - C:\WINDOWS\SYSTEM32\DRIVERS\ew_jubusenum.sys

O23 - Service: Huawei DataCard USB Modem and USB Serial (hwdatacard) - Huawei Technologies Co., Ltd. - C:\WINDOWS\SYSTEM32\DRIVERS\ewusbmdm.sys

O23 - Service: Huawei DataCard USB PNP Device (hwusbdev) - Unknown owner - C:\WINDOWS\SYSTEM32\DRIVERS\ewusbdev.sys (file missing)

O23 - Service: iaStorV - Intel Corporation - C:\WINDOWS\system32\drivers\iaStorV.sys

O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe

O23 - Service: igfx - Intel Corporation - C:\WINDOWS\SYSTEM32\DRIVERS\igdkmd64.sys

O23 - Service: iirsp - Intel Corp./ICP vortex GmbH - C:\WINDOWS\system32\drivers\iirsp.sys

O23 - Service: Intel(R) Display Audio (IntcDAud) - Intel(R) Corporation - C:\WINDOWS\SYSTEM32\DRIVERS\IntcDAud.sys

O23 - Service: Servicio del iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe

O23 - Service: NDIS Miniport Driver for Atheros AR813x/AR815x PCI-E Ethernet Controller (L1C) - Atheros Communications, Inc. - C:\WINDOWS\SYSTEM32\DRIVERS\L1C62x64.sys

O23 - Service: LSI_FC - LSI Corporation - C:\WINDOWS\system32\drivers\lsi_fc.sys

O23 - Service: LSI_SAS - LSI Corporation - C:\WINDOWS\system32\drivers\lsi_sas.sys

O23 - Service: LSI_SAS2 - LSI Corporation - C:\WINDOWS\system32\drivers\lsi_sas2.sys

O23 - Service: LSI_SCSI - LSI Corporation - C:\WINDOWS\system32\drivers\lsi_scsi.sys

O23 - Service: megasas - LSI Corporation - C:\WINDOWS\system32\drivers\megasas.sys

O23 - Service: MegaSR - LSI Corporation, Inc. - C:\WINDOWS\system32\drivers\MegaSR.sys

O23 - Service: Intel(R) Management Engine Interface (MEIx64) - Intel Corporation - C:\WINDOWS\SYSTEM32\DRIVERS\HECIx64.sys

O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe

O23 - Service: Apple Mobile Device Ethernet Service (Netaapl) - Apple Inc. - C:\WINDOWS\SYSTEM32\DRIVERS\netaapl64.sys

O23 - Service: RT73 USB Extensible Wireless LAN Card Driver (netr7364) - Ralink Technology, Corp. - C:\WINDOWS\SYSTEM32\DRIVERS\netr7364.sys

O23 - Service: nfrd960 - IBM Corporation - C:\WINDOWS\system32\drivers\nfrd960.sys

O23 - Service: Nokia USB Phone Parent Driver (nmwcd) - Nokia - C:\WINDOWS\SYSTEM32\drivers\ccdcmbx64.sys

O23 - Service: nvraid - NVIDIA Corporation - C:\WINDOWS\system32\drivers\nvraid.sys

O23 - Service: nvstor - NVIDIA Corporation - C:\WINDOWS\system32\drivers\nvstor.sys

O23 - Service: Pangu effect driver (PGEffect) - TOSHIBA Corporation - C:\WINDOWS\SYSTEM32\DRIVERS\pgeffect.sys

O23 - Service: Generic IO & Memory Access (QIOMem) - TOSHIBA - C:\WINDOWS\SYSTEM32\DRIVERS\QIOMem.sys

O23 - Service: ql2300 - QLogic Corporation - C:\WINDOWS\system32\drivers\ql2300.sys

O23 - Service: ql40xx - QLogic Corporation - C:\WINDOWS\system32\drivers\ql40xx.sys

O23 - Service: BlackBerry Smartphone (RimUsb) - Research In Motion Limited - C:\WINDOWS\SYSTEM32\Drivers\RimUsb_AMD64.sys

O23 - Service: RIM Virtual Serial Port v2 (RimVSerPort) - Research in Motion Ltd - C:\WINDOWS\SYSTEM32\DRIVERS\RimSerial_AMD64.sys

O23 - Service: RtsUStor.Sys Realtek USB Card Reader (RSUSBSTOR) - Realtek Semiconductor Corp. - C:\WINDOWS\SYSTEM32\Drivers\RtsUStor.sys

O23 - Service: RTSUVSTOR.Sys Realtek USB Card Reader (RSUSBVSTOR) - Realtek Semiconductor Corp. - C:\WINDOWS\SYSTEM32\Drivers\RTSUVSTOR.sys

O23 - Service: Realtek Wireless LAN 802.11n PCI-E NIC Driver (RTL8192Ce) - Realtek Semiconductor Corporation - C:\WINDOWS\SYSTEM32\DRIVERS\rtl8192Ce.sys

O23 - Service: Realtek Wireless LAN 802.11n PCI-E Network Adapter (RTWlanE) - Realtek Semiconductor Corporation - C:\WINDOWS\SYSTEM32\DRIVERS\rtwlane.sys

O23 - Service: SiSRaid2 - Silicon Integrated Systems Corp. - C:\WINDOWS\system32\drivers\SiSRaid2.sys

O23 - Service: SiSRaid4 - Silicon Integrated Systems - C:\WINDOWS\system32\drivers\sisraid4.sys

O23 - Service: SrvHsfHDA - Conexant Systems, Inc. - C:\WINDOWS\SYSTEM32\DRIVERS\VSTAZL6.SYS

O23 - Service: SrvHsfV92 - Conexant Systems, Inc. - C:\WINDOWS\SYSTEM32\DRIVERS\VSTDPV6.SYS

O23 - Service: SrvHsfWinac - Conexant Systems, Inc. - C:\WINDOWS\SYSTEM32\DRIVERS\VSTCNXT6.SYS

O23 - Service: stexstor - Promise Technology - C:\WINDOWS\system32\drivers\stexstor.sys

O23 - Service: Synaptics TouchPad Driver (SynTP) - Synaptics Incorporated - C:\WINDOWS\SYSTEM32\DRIVERS\SynTP.sys

O23 - Service: TOSHIBA Writing Engine Filter Driver (tdcmdpst) - TOSHIBA Corporation. - C:\WINDOWS\SYSTEM32\DRIVERS\tdcmdpst.sys

O23 - Service: TMachInfo - TOSHIBA Corporation - C:\Program Files (x86)\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe

O23 - Service: TOSHIBA HDD SSD Alert Service - TOSHIBA Corporation - C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSmartSrv.exe

O23 - Service: TPCH Service (TPCHSrv) - TOSHIBA Corporation - C:\Program Files\TOSHIBA\TPHM\TPCHSrv.exe

O23 - Service: Apple Mobile USB Driver (USBAAPL64) - Apple, Inc. - C:\WINDOWS\SYSTEM32\Drivers\usbaapl64.sys

O23 - Service: viaide - VIA Technologies, Inc. - C:\WINDOWS\system32\drivers\viaide.sys

O23 - Service: vsmraid - VIA Technologies Inc.,Ltd - C:\WINDOWS\system32\drivers\vsmraid.sys

O23 - Service: WD SCSI Pass Thru driver (WDC_SAM) - Western Digital Technologies - C:\WINDOWS\SYSTEM32\DRIVERS\wdcsam64.sys



Listado de Servicios (Deshabilitados):

--------------------------------------



115 Servicios.

32 de Carga Automatica.

83 de Carga Manual.

0 Deshabilitados.
Todos los días puedo aprender algo nuevo, y estoy dispuesto a aprovechar esa oportunidad. JISAAV

Avatar de Usuario
msc hotline sat
Administrador
Administrador
Mensajes: 89227
Registrado: 09 Mar 2004, 20:39
Ubicación: BARCELONA (ESPAÑA)
Contactar:

Re: Creo tengo spyware o adware, no se cómo quitarlos

Mensaje por msc hotline sat » 13 Sep 2014, 12:08

Pues diganos si tras eliminar los PUPS y reiniciar, persisten las anomalias, y si es el caso, revise las extensiones del Chrome, ya que vemos algunas desconocidas ...



Por ejemplo: nmmhkkegccagdldgiimedpiccmgmieda



De la que ver hay esta informacion:

Http://greatis.com/blog/win32-pup-gen/nmmhkkegccagdldgiimedpiccmgmieda.htm



Y asi las demas, entrarlas en Google, y obrar en consecuencia.



saludos



ms, 14-9-2014

Responder

Volver a “Foro Spyware”

¿Quién está conectado?

Usuarios navegando por este Foro: No hay usuarios registrados visitando el Foro y 2 invitados