Malwarebytes' Anti-Malware NO Inicia (Solucionado)

**again-ytal** · 25/09/11, 15:17:00

Hola de nuevo,

Desistalé el Mbam, lo renombré como me dijiste, instalé y ejecuté y sigue sin iniciar.

Luego descargué el DrWeb CureIt, lo ejecuté en el modo de protección mejorada y tan sólo ha detectado como troyano el WLMUninstaller.exe (herramienta para desistalar Windows Live Messenger), no ha detectado nada más.

Tras usar el DrWeb he probado a iniciar el Mbam de nuevo pero nada sigue sin funcionar.

Bueno ya dicho esto, te pongo los logs que me saca el Ccleaner:

-Inicio del sistema:

Si HKCU:Run msnmsgr "E:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
Si HKLM:Run egui "E:\Program Files\ESET\ESET Smart Security\egui.exe" /hide /waitservice

-Programas instalados:

Adobe AIR Adobe Systems Incorporated 27/03/2011 2.6.0.19120
Adobe Flash Player 10 ActiveX Adobe Systems Incorporated 29/07/2010 6,00 MB 10.1.53.64
Adobe Flash Player 10 Plugin Adobe Systems Incorporated 14/09/2011 6,00 MB 10.3.183.7
Adobe Reader X (10.1.1) - Español Adobe Systems Incorporated 14/09/2011 162,7 MB 10.1.1
Adobe Shockwave Player 11.6 Adobe Systems, Inc. 23/08/2011 11.6.1.629
Apple Application Support Apple Inc. 15/02/2011 52,7 MB 1.4.1
Apple Software Update Apple Inc. 08/07/2011 2,38 MB 2.1.3.127
Ares 2.1.7 Ares Development Group 11/05/2011 2.1.7-Build#3041
Argente Utilities 1.0.4.0 Argente Software 15/07/2011 12,7 MB 1.0.4.0
Audacity 1.3.13 (Unicode) Audacity Team 26/06/2011 40,2 MB
Ayudante para el inicio de sesión de Windows Live ID Microsoft Corporation 28/08/2010 5,52 MB 6.500.3165.0
BS.Player FREE Webteh, d.o.o. 31/07/2010 2.56.1043
CCleaner Piriform 03/09/2011 3.10
Compresor WinRAR 29/07/2010
ESET Smart Security 20/09/2011
FormatFactory 2.45 Free Time 07/08/2010 2.45
Google Earth Google 31/05/2011 84,6 MB 6.0.3.2197
Herramienta de carga de Windows Live Microsoft Corporation 05/08/2010 0,22 MB 14.0.8014.1029
Java(TM) 6 Update 26 Oracle 29/07/2010 94,9 MB 6.0.260
JDownloader 0.9 AppWork GmbH 06/05/2011 0.9
LAME v3.98.3 for Audacity 26/06/2011 1,17 MB
Messenger Plus! 5 Yuna Software 25/07/2011 5.02.0.712
Microsoft .NET Framework 4 Client Profile Microsoft Corporation 07/09/2010 38,8 MB 4.0.30319
Microsoft .NET Framework 4 Extended Microsoft Corporation 07/10/2010 52,0 MB 4.0.30319
Microsoft Office Enterprise 2007 Microsoft Corporation 05/08/2010 12.0.6425.1000
Microsoft Office File Validation Add-In Microsoft Corporation 14/09/2011 7,95 MB 14.0.5130.5003
Microsoft Office Live Add-in 1.5 Microsoft Corporation 05/08/2010 0,50 MB 2.0.4024.1
Microsoft Silverlight Microsoft Corporation 14/06/2011 182,5 MB 4.0.60531.0
Mozilla Firefox 4.0.1 (x86 es-ES) Mozilla 28/04/2011 32,0 MB 4.0.1
MSXML 4.0 SP2 (KB954430) Microsoft Corporation 26/04/2011 35,00 KB 4.20.9870.0
MSXML 4.0 SP2 (KB973688) Microsoft Corporation 26/04/2011 1,33 MB 4.20.9876.0
Nero 7 Essentials Nero AG 28/07/2010 476 MB 7.02.3907
Nokia Connectivity Cable Driver Nokia 20/08/2011 3,61 MB 7.1.45.0
Nokia Ovi Suite Nokia 20/08/2011 3.1.1.85
Nokia Ovi Suite Software Updater Nokia Corporation 20/08/2011 43,4 MB 02.07.004.45780
Nokia PC Suite Nokia 26/04/2011 7.1.60.0
Paquete de controladores de Windows - Nokia Modem (06/09/2010 7.01.0.8) Nokia 26/04/2011 06/09/2010 7.01.0.8
Paquete de controladores de Windows - Nokia Modem (10/07/2010 4.6) Nokia 26/04/2011 10/07/2010 4.6
Paquete de controladores de Windows - Nokia pccsmcfd (08/22/2008 7.0.0.0) Nokia 20/08/2011 08/22/2008 7.0.0.0
Paquete de idioma de Microsoft .NET Framework 4 Client Profile ESN Microsoft Corporation 07/09/2010 2,94 MB 4.0.30319
Paquete de idioma de Microsoft .NET Framework 4 Extended ESN Microsoft Corporation 07/10/2010 10,7 MB 4.0.30319
PC Connectivity Solution Nokia 20/08/2011 13,0 MB 11.4.19.0
Philips Intelligent Agent Philips 29/07/2010 2.1
Philips SPC230NC Webcam Philips 29/07/2010 1.0.0.0
QuickTime Apple Inc. 15/07/2011 73,7 MB 7.69.80.9
SpywareBlaster 4.4 Javacool Software LLC 07/09/2010 4.4.0
TwentySpy TwentySpy 17/06/2011 5.2.0.1
VLC media player 1.0.5 VideoLAN Team 28/07/2010 1.0.5
Webcam Video Viewer ArcSoft 02/08/2010
Windows Live Essentials Microsoft Corporation 29/07/2010 14.0.8117.0416
Windows Live OneCare safety scanner Microsoft Corporation 21/07/2011

Bueno pues seguiré esperando a ver si encontramos la solución, yo es que la verdad no sé que hacer, no se me ocurre nada.

Un saludo y gracias por tu tiempo

**Libraman** · 25/09/11, 15:36:22

No veo Mbam instalado

Lo desinstalaste cuando hiciste el log de Ccleaner?

Aparte, y como consejo, actualiza Java y Firefox

Tienes Mbam instalado ahora mismo?

**again-ytal** · 25/09/11, 15:39:48

Ahora mismo si tengo instalado el Mbam, justo hice el log al desistalarlo por eso no aparece en la lista, el firefox no lo he actualizado por que algunos complementos que uso no son compatibles y con el 4 no tengo problemas, lo del java iré a actualizarlo ahora mismo.

Adobe AIR Adobe Systems Incorporated 27/03/2011 2.6.0.19120
Adobe Flash Player 10 ActiveX Adobe Systems Incorporated 29/07/2010 6,00 MB 10.1.53.64
Adobe Flash Player 10 Plugin Adobe Systems Incorporated 14/09/2011 6,00 MB 10.3.183.7
Adobe Reader X (10.1.1) - Español Adobe Systems Incorporated 14/09/2011 162,7 MB 10.1.1
Adobe Shockwave Player 11.6 Adobe Systems, Inc. 23/08/2011 11.6.1.629
Apple Application Support Apple Inc. 15/02/2011 52,7 MB 1.4.1
Apple Software Update Apple Inc. 08/07/2011 2,38 MB 2.1.3.127
Ares 2.1.7 Ares Development Group 11/05/2011 2.1.7-Build#3041
Argente Utilities 1.0.4.0 Argente Software 15/07/2011 12,7 MB 1.0.4.0
Audacity 1.3.13 (Unicode) Audacity Team 26/06/2011 40,2 MB
Ayudante para el inicio de sesión de Windows Live ID Microsoft Corporation 28/08/2010 5,52 MB 6.500.3165.0
BS.Player FREE Webteh, d.o.o. 31/07/2010 2.56.1043
CCleaner Piriform 03/09/2011 3.10
Compresor WinRAR 29/07/2010
ESET Smart Security 20/09/2011
FormatFactory 2.45 Free Time 07/08/2010 2.45
Google Earth Google 31/05/2011 84,6 MB 6.0.3.2197
Herramienta de carga de Windows Live Microsoft Corporation 05/08/2010 0,22 MB 14.0.8014.1029
Java(TM) 6 Update 27 Oracle 29/07/2010 94,9 MB 6.0.270
JDownloader 0.9 AppWork GmbH 06/05/2011 0.9
LAME v3.98.3 for Audacity 26/06/2011 1,17 MB
Malwarebytes' Anti-Malware versión 1.51.2.1300 Malwarebytes Corporation 24/09/2011 13,8 MB 1.51.2.1300
Messenger Plus! 5 Yuna Software 25/07/2011 5.02.0.712
Microsoft .NET Framework 4 Client Profile Microsoft Corporation 07/09/2010 38,8 MB 4.0.30319
Microsoft .NET Framework 4 Extended Microsoft Corporation 07/10/2010 52,0 MB 4.0.30319
Microsoft Office Enterprise 2007 Microsoft Corporation 05/08/2010 12.0.6425.1000
Microsoft Office File Validation Add-In Microsoft Corporation 14/09/2011 7,95 MB 14.0.5130.5003
Microsoft Office Live Add-in 1.5 Microsoft Corporation 05/08/2010 0,50 MB 2.0.4024.1
Microsoft Silverlight Microsoft Corporation 14/06/2011 182,5 MB 4.0.60531.0
Mozilla Firefox 4.0.1 (x86 es-ES) Mozilla 28/04/2011 32,0 MB 4.0.1
MSXML 4.0 SP2 (KB954430) Microsoft Corporation 26/04/2011 35,00 KB 4.20.9870.0
MSXML 4.0 SP2 (KB973688) Microsoft Corporation 26/04/2011 1,33 MB 4.20.9876.0
Nero 7 Essentials Nero AG 28/07/2010 476 MB 7.02.3907
Nokia Connectivity Cable Driver Nokia 20/08/2011 3,61 MB 7.1.45.0
Nokia Ovi Suite Nokia 20/08/2011 3.1.1.85
Nokia Ovi Suite Software Updater Nokia Corporation 20/08/2011 43,4 MB 02.07.004.45780
Nokia PC Suite Nokia 26/04/2011 7.1.60.0
Paquete de controladores de Windows - Nokia Modem (06/09/2010 7.01.0.8) Nokia 26/04/2011 06/09/2010 7.01.0.8
Paquete de controladores de Windows - Nokia Modem (10/07/2010 4.6) Nokia 26/04/2011 10/07/2010 4.6
Paquete de controladores de Windows - Nokia pccsmcfd (08/22/2008 7.0.0.0) Nokia 20/08/2011 08/22/2008 7.0.0.0
Paquete de idioma de Microsoft .NET Framework 4 Client Profile ESN Microsoft Corporation 07/09/2010 2,94 MB 4.0.30319
Paquete de idioma de Microsoft .NET Framework 4 Extended ESN Microsoft Corporation 07/10/2010 10,7 MB 4.0.30319
PC Connectivity Solution Nokia 20/08/2011 13,0 MB 11.4.19.0
Philips Intelligent Agent Philips 29/07/2010 2.1
Philips SPC230NC Webcam Philips 29/07/2010 1.0.0.0
QuickTime Apple Inc. 15/07/2011 73,7 MB 7.69.80.9
SpywareBlaster 4.4 Javacool Software LLC 07/09/2010 4.4.0
TwentySpy TwentySpy 17/06/2011 5.2.0.1
VLC media player 1.0.5 VideoLAN Team 28/07/2010 1.0.5
Webcam Video Viewer ArcSoft 02/08/2010
Windows Live Essentials Microsoft Corporation 29/07/2010 14.0.8117.0416
Windows Live OneCare safety scanner Microsoft Corporation 21/07/2011

**Libraman** · 25/09/11, 15:59:46

Bien.

Descarga e instala RevoUninstaller -> Manual de Revo Uninstaller
Desinstala Mbam con este programa.
Reinicia.
Limpia registro con Glary Utilities.

Vuelve a descargar Mbam y lo instalas como viene.

Comenta resultados sin omitir ningún paso.

En caso de que no funcione ya iremos a otras herramientas

Slds.

**again-ytal** · 25/09/11, 16:22:28

Ya seguí los pasos exactamente como dijiste y nada, no se soluciona aun.

El Mbam lo desistalé en el modo avanzado eliminando también todas las entradas en el registo, carpetes y todo relacionado con el programa.
El Glary detectó y reparó 4 problemas en el registro.
Reinstalado de nuevo Mbam y persiste el problema.

Sigamos con otras herramientas entonces

**Libraman** · 25/09/11, 16:32:33

Ok.

Déjame consultar y te decimos como seguir ya que este tema es muy peculiar

Slds.

**again-ytal** · 25/09/11, 16:39:07

Okis, estaré atento a las respuestas

Probé a restaurar el sistema días antes del problema a ver si conseguía arreglarlo desde allí, reinstalé el Mbam pero tampoco logré solucionarlo, sigue sin funcionar.

Esperaré a ver si me comentas que otra cosa pueda hacer, a ver si lo solucionamos

**M@co** · 26/09/11, 00:47:13

Hola again-ytal.

Realice lo siguiente:

Descargar OTL en el escritorio.

Haga doble clic sobre el icono para ejecutarla.
- Asegúrese de que todas las ventanas estén cerradas y que no se interrumpa la ejecución.
Marque la opción Analizar todos
Pegue el siguiente script bajo la casilla Análisis Personalizados/Codigo de Reparación:
- NOTA: No copiar la palabra codigo.
Código:
```
msconfig
%SYSTEMDRIVE%\*.*
CREATERESTOREPOINT
```
Haga clic en el botón Análisis Rápido.
No modifique alguna otra configuración a menos que se le indique.
Sea paciente, el escaneo se puede llevar un tiempo.
- Cuando finalice la exploración, se abrirán dos ventanas con el block de notas: OTL.Txt y Extras.Txt, estos se guardan en el escritorio.
- Copie (Editar-> Seleccionar todo, Editar-> Copiar) el contenido del archivo OTL.txt y péguelo en la siguiente respuesta.
Cierre la herramienta al terminar el proceso.

Salu2!!.

**again-ytal** · 26/09/11, 07:26:09

Hola M@co

el escaneo apenas duró menos de 5 minutos, aquí te dejo el log de OTL. El log con nombre Extras me parece interesante varios errores que aparecen, si lo necesitas dime para ponerlo también.

OTL logfile created on: 26/09/2011 12:18:57 - Run 1
OTL by OldTimer - Version 3.2.29.1 Folder = E:\Users\Hector\Desktop
Enterprise Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000c0a | Country: España | Language: ESN | Date Format: dd/MM/yyyy

3,50 Gb Total Physical Memory | 2,67 Gb Available Physical Memory | 76,31% Memory free
7,00 Gb Paging File | 6,05 Gb Available in Paging File | 86,44% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = E: | %SystemRoot% = E:\Windows | %ProgramFiles% = E:\Program Files
Drive E: | 465,75 Gb Total Space | 375,51 Gb Free Space | 80,63% Space Free | Partition Type: NTFS

Computer Name: HECTOR-PC | User Name: Hector | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2011/09/26 12:14:21 | 000,582,656 | ---- | M] (OldTimer Tools) -- E:\Users\Hector\Desktop\OTL.exe
PRC - [2011/09/06 18:16:42 | 000,974,944 | ---- | M] (ESET) -- E:\Program Files\ESET\ESET Smart Security\ekrn.exe
PRC - [2011/09/06 18:16:16 | 003,076,144 | ---- | M] (ESET) -- E:\Program Files\ESET\ESET Smart Security\egui.exe
PRC - [2011/06/06 12:55:28 | 000,064,952 | ---- | M] (Adobe Systems Incorporated) -- E:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
PRC - [2011/02/25 06:30:54 | 002,616,320 | ---- | M] (Microsoft Corporation) -- E:\Windows\explorer.exe
PRC - [2010/11/20 13:17:47 | 000,049,152 | ---- | M] (Microsoft Corporation) -- E:\Windows\System32\taskhost.exe
PRC - [2009/08/18 02:36:36 | 000,348,160 | ---- | M] (AMD) -- E:\Windows\System32\atieclxx.exe
PRC - [2009/08/18 02:36:08 | 000,176,128 | ---- | M] (AMD) -- E:\Windows\System32\atiesrxx.exe

========== Modules (No Company Name) ==========

========== Win32 Services (SafeList) ==========

SRV - [2011/09/06 18:16:42 | 000,974,944 | ---- | M] (ESET) [Auto | Running] -- E:\Program Files\ESET\ESET Smart Security\ekrn.exe -- (ekrn)
SRV - [2011/06/08 13:02:00 | 000,633,856 | ---- | M] (Nokia) [On_Demand | Stopped] -- E:\Program Files\PC Connectivity Solution\ServiceLayer.exe -- (ServiceLayer)
SRV - [2011/06/06 12:55:28 | 000,064,952 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- E:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2010/07/29 12:22:25 | 001,343,400 | ---- | M] (Microsoft Corporation) [Unknown | Stopped] -- E:\Windows\System32\Wat\WatAdminSvc.exe -- (WatAdminSvc)
SRV - [2009/08/18 02:36:08 | 000,176,128 | ---- | M] (AMD) [Auto | Running] -- E:\Windows\System32\atiesrxx.exe -- (AMD External Events Utility)
SRV - [2009/07/14 02:16:13 | 000,025,088 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- E:\Windows\System32\sensrsvc.dll -- (SensrSvc)
SRV - [2009/07/14 02:15:41 | 000,680,960 | ---- | M] (Microsoft Corporation) [Auto | Running] -- E:\Program Files\Windows Defender\mpsvc.dll -- (WinDefend)

========== Driver Services (SafeList) ==========

DRV - [2011/08/09 13:57:10 | 000,163,424 | ---- | M] (ESET) [File_System | Auto | Running] -- E:\Windows\System32\drivers\eamonm.sys -- (eamonm)
DRV - [2011/08/04 09:20:38 | 000,147,480 | ---- | M] (ESET) [Kernel | Auto | Running] -- E:\Windows\System32\drivers\epfw.sys -- (epfw)
DRV - [2011/08/04 09:20:38 | 000,050,624 | ---- | M] (ESET) [Kernel | Boot | Running] -- E:\Windows\system32\DRIVERS\epfwwfp.sys -- (epfwwfp)
DRV - [2011/08/04 09:20:38 | 000,033,656 | ---- | M] (ESET) [Kernel | System | Running] -- E:\Windows\System32\drivers\EpfwLWF.sys -- (EpfwLWF)
DRV - [2011/08/04 09:20:36 | 000,118,104 | ---- | M] (ESET) [Kernel | System | Running] -- E:\Windows\System32\drivers\ehdrv.sys -- (ehdrv)
DRV - [2011/05/18 10:12:38 | 000,008,192 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- E:\Windows\System32\drivers\usbser_lowerfltj.sys -- (UsbserFilt)
DRV - [2011/05/18 10:12:36 | 000,008,192 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- E:\Windows\System32\drivers\usbser_lowerflt.sys -- (upperdev)
DRV - [2011/05/18 10:12:32 | 000,023,168 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- E:\Windows\System32\drivers\ccdcmbo.sys -- (nmwcdc)
DRV - [2011/05/18 10:12:28 | 000,018,176 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- E:\Windows\System32\drivers\ccdcmb.sys -- (nmwcd)
DRV - [2011/05/18 10:09:48 | 000,137,600 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- E:\Windows\System32\drivers\nmwcdnsu.sys -- (nmwcdnsu)
DRV - [2010/12/21 14:47:38 | 000,033,120 | ---- | M] (ESET) [Kernel | On_Demand | Stopped] -- E:\Windows\System32\drivers\epfwndis.sys -- (Epfwndis)
DRV - [2010/11/20 11:24:41 | 000,052,224 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- E:\Windows\System32\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV - [2010/11/20 10:59:44 | 000,035,968 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- E:\Windows\System32\drivers\winusb.sys -- (WinUsb)
DRV - [2009/08/18 03:48:06 | 004,994,560 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- E:\Windows\System32\drivers\atikmdag.sys -- (atikmdag)
DRV - [2009/07/14 00:45:33 | 000,083,456 | ---- | M] (Brother Industries Ltd.) [Kernel | System | Running] -- E:\Windows\System32\drivers\serial.sys -- (Serial)
DRV - [2009/07/13 23:02:47 | 000,047,104 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- E:\Windows\System32\drivers\L1E62x86.sys -- (L1E) Controlador de minipuerto NDIS para controladora PCI-E Ethernet Atheros AR8121/AR8113/AR8114 (NDIS6.20)
DRV - [2008/08/26 10:26:12 | 000,018,816 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- E:\Windows\System32\drivers\pccsmcfd.sys -- (pccsmcfd)
DRV - [2007/12/31 16:19:50 | 000,461,056 | ---- | M] (PixArt Imaging Inc.) [Kernel | On_Demand | Running] -- E:\Windows\System32\drivers\SPC230NC.SYS -- (SPC230NC)
DRV - [2007/09/26 14:28:46 | 000,008,576 | ---- | M] (PixArt Imaging Incorporation) [Kernel | On_Demand | Running] -- E:\Windows\System32\drivers\PAEAFLT.sys -- (PAEAFLT.sys)
DRV - [2004/08/13 09:56:20 | 000,005,810 | ---- | M] () [Kernel | On_Demand | Running] -- E:\Windows\System32\drivers\ASACPI.sys -- (MTsensor)
DRV - [2004/04/01 16:30:46 | 000,010,368 | ---- | M] (Padus, Inc.) [Kernel | On_Demand | Running] -- E:\Windows\System32\drivers\pfc.sys -- (pfc)

========== Standard Registry (SafeList) ==========

========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = about:blank

IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-21-164803696-779862289-2219835596-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.es/
IE - HKU\S-1-5-21-164803696-779862289-2219835596-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://es.msn.com/
IE - HKU\S-1-5-21-164803696-779862289-2219835596-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = es
IE - HKU\S-1-5-21-164803696-779862289-2219835596-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 8F B0 94 38 10 2F CB 01 [binary data]
IE - HKU\S-1-5-21-164803696-779862289-2219835596-1001\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - prefs.js..browser.search.defaultenginename: "Search"
FF - prefs.js..browser.search.selectedEngine: "Google"
FF - prefs.js..browser.startup.homepage: "www.google.es"
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}:6.0.21
FF - prefs.js..extensions.enabledItems: {a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7}:20110323
FF - prefs.js..extensions.enabledItems: {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}:1.3.6
FF - prefs.js..extensions.enabledItems: {e4a8a97b-f2ed-450b-b12d-ee082ba24781}:0.9.1
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}:6.0.22
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}:6.0.23
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}:6.0.24
FF - prefs.js..extensions.enabledItems: {9c51bd27-6ed8-4000-a2bf-36cb95c0c947}:11.0.1
FF - prefs.js..keyword.URL: "http://badoo.com/startpage/?source=bsb&q="

FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: E:\Windows\system32\Macromed\Flash\NPSWF32.dll ()
FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: E:\Windows\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
FF - HKLM\Software\MozillaPlugins\@Google.com/GoogleEarthPlugin: E:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: E:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: e:\Program Files\Microsoft Silverlight\4.0.60531.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeLive,version=1.5: E:\Program Files\Microsoft\Office Live\npOLW.dll (Microsoft Corp.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: E:\Program Files\Google\Update\1.3.21.65\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: E:\Program Files\Google\Update\1.3.21.65\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: E:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{A27F3FEF-1113-4cfb-A032-8E12D7D8EE70}: E:\Program Files\Nokia\Nokia Ovi Suite\Connectors\Bookmarks Connector\FirefoxExtension\ [2011/08/21 00:30:34 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 3.6.10\extensions\\Components: E:\Program Files\Mozilla Firefox\components [2011/07/16 11:38:50 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 3.6.10\extensions\\Plugins: E:\Program Files\Mozilla Firefox\plugins [2011/09/26 00:17:42 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 3.6.11\extensions\\Components: E:\Program Files\Mozilla Firefox\components [2011/07/16 11:38:50 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 3.6.11\extensions\\Plugins: E:\Program Files\Mozilla Firefox\plugins [2011/09/26 00:17:42 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 3.6.12\extensions\\Components: E:\Program Files\Mozilla Firefox\components [2011/07/16 11:38:50 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 3.6.12\extensions\\Plugins: E:\Program Files\Mozilla Firefox\plugins [2011/09/26 00:17:42 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 3.6.13\extensions\\Components: E:\Program Files\Mozilla Firefox\components [2011/07/16 11:38:50 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 3.6.13\extensions\\Plugins: E:\Program Files\Mozilla Firefox\plugins [2011/09/26 00:17:42 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 3.6.14\extensions\\Components: E:\Program Files\Mozilla Firefox\components [2011/07/16 11:38:50 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 3.6.14\extensions\\Plugins: E:\Program Files\Mozilla Firefox\plugins [2011/09/26 00:17:42 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 3.6.15\extensions\\Components: E:\Program Files\Mozilla Firefox\components [2011/07/16 11:38:50 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 3.6.15\extensions\\Plugins: E:\Program Files\Mozilla Firefox\plugins [2011/09/26 00:17:42 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 3.6.8\extensions\\Components: E:\Program Files\Mozilla Firefox\components [2011/07/16 11:38:50 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 3.6.8\extensions\\Plugins: E:\Program Files\Mozilla Firefox\plugins [2011/09/26 00:17:42 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 3.6.9\extensions\\Components: E:\Program Files\Mozilla Firefox\components [2011/07/16 11:38:50 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 3.6.9\extensions\\Plugins: E:\Program Files\Mozilla Firefox\plugins [2011/09/26 00:17:42 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 4.0\extensions\\Components: E:\Program Files\Mozilla Firefox\components [2011/07/16 11:38:50 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 4.0\extensions\\Plugins: E:\Program Files\Mozilla Firefox\plugins [2011/09/26 00:17:42 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 4.0.1\extensions\\Components: E:\Program Files\Mozilla Firefox\components [2011/07/16 11:38:50 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 4.0.1\extensions\\Plugins: E:\Program Files\Mozilla Firefox\plugins [2011/09/26 00:17:42 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Thunderbird\Extensions\\{CCB7D94B-CA92-4E3F-B79D-ADE0F07ADC74}: E:\Program Files\Nokia\Nokia Ovi Suite\Connectors\Thunderbird Connector\ThunderbirdExtension\ [2011/08/21 00:30:34 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Thunderbird\Extensions\\[email protected]: E:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird [2011/09/26 00:53:31 | 000,000,000 | ---D | M]

[2010/09/01 16:40:02 | 000,000,000 | ---D | M] (No name found) -- E:\Users\Hector\AppData\Roaming\mozilla\Extensions
[2011/08/22 19:49:06 | 000,000,000 | ---D | M] (No name found) -- E:\Users\Hector\AppData\Roaming\mozilla\Firefox\Profiles\lzdc145y.default\extensions
[2011/07/06 00:47:36 | 000,000,000 | ---D | M] (Google Toolbar for Firefox) -- E:\Users\Hector\AppData\Roaming\mozilla\Firefox\Profiles\lzdc145y.default\extensions\{3112ca9c-de6d-4884-a869-9855de68056c}
[2011/07/09 12:32:03 | 000,000,000 | ---D | M] (WOT) -- E:\Users\Hector\AppData\Roaming\mozilla\Firefox\Profiles\lzdc145y.default\extensions\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7}
[2011/05/17 13:12:44 | 000,002,333 | ---- | M] () -- E:\Users\Hector\AppData\Roaming\Mozilla\Firefox\Profiles\lzdc145y.default\searchplugins\askcom.xml
[2011/07/26 17:53:22 | 000,002,023 | ---- | M] () -- E:\Users\Hector\AppData\Roaming\Mozilla\Firefox\Profiles\lzdc145y.default\searchplugins\badoo.xml
[2011/09/26 00:30:52 | 000,000,000 | ---D | M] (No name found) -- E:\Program Files\mozilla firefox\extensions
[2010/10/16 15:27:43 | 000,000,000 | ---D | M] (Java Console) -- E:\Program Files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}
[2010/11/15 11:07:57 | 000,000,000 | ---D | M] (Java Console) -- E:\Program Files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}
[2010/12/20 11:06:36 | 000,000,000 | ---D | M] (Java Console) -- E:\Program Files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}
[2011/03/03 01:43:56 | 000,000,000 | ---D | M] (Java Console) -- E:\Program Files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}
[2011/06/13 20:05:49 | 000,000,000 | ---D | M] (Java Console) -- E:\Program Files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA}
[2011/09/26 00:30:52 | 000,000,000 | ---D | M] (Java Console) -- E:\Program Files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0027-ABCDEFFEDCBA}
[2011/08/21 00:30:34 | 000,000,000 | ---D | M] (Firefox Synchronisation Extension) -- E:\PROGRAM FILES\NOKIA\NOKIA OVI SUITE\CONNECTORS\BOOKMARKS CONNECTOR\FIREFOXEXTENSION
() (No name found) -- E:\USERS\HECTOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\LZDC145Y.DEFAULT\EXTENSIONS\{D10D0BF8-F5B5-C8B4-A8B2-2B9879E08C5D}.XPI
() (No name found) -- E:\USERS\HECTOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\LZDC145Y.DEFAULT\EXTENSIONS\[email protected]
[2011/04/29 01:05:24 | 000,142,296 | ---- | M] (Mozilla Foundation) -- E:\Program Files\mozilla firefox\components\browsercomps.dll
[2011/07/19 05:05:25 | 000,476,904 | ---- | M] (Sun Microsystems, Inc.) -- E:\Program Files\mozilla firefox\plugins\npdeployJava1.dll
[2009/08/03 15:07:42 | 000,373,104 | ---- | M] (Microsoft Corporation) -- E:\Program Files\mozilla firefox\plugins\npOGAPlugin.dll
[2010/01/01 09:00:00 | 000,002,252 | ---- | M] () -- E:\Program Files\mozilla firefox\searchplugins\bing.xml
[2010/01/01 09:00:00 | 000,003,996 | ---- | M] () -- E:\Program Files\mozilla firefox\searchplugins\drae.xml
[2010/01/01 09:00:00 | 000,001,143 | ---- | M] () -- E:\Program Files\mozilla firefox\searchplugins\eBay-es.xml
[2010/01/01 09:00:00 | 000,001,178 | ---- | M] () -- E:\Program Files\mozilla firefox\searchplugins\wikipedia-es.xml
[2010/01/01 09:00:00 | 000,001,102 | ---- | M] () -- E:\Program Files\mozilla firefox\searchplugins\yahoo-es.xml

O1 HOSTS File: ([2011/09/26 01:05:17 | 000,437,695 | R--- | M]) - E:\Windows\System32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 www.007guard.com
O1 - Hosts: 127.0.0.1 007guard.com
O1 - Hosts: 127.0.0.1 008i.com
O1 - Hosts: 127.0.0.1 www.008k.com
O1 - Hosts: 127.0.0.1 008k.com
O1 - Hosts: 127.0.0.1 www.00hq.com
O1 - Hosts: 127.0.0.1 00hq.com
O1 - Hosts: 127.0.0.1 010402.com
O1 - Hosts: 127.0.0.1 www.032439.com
O1 - Hosts: 127.0.0.1 032439.com
O1 - Hosts: 127.0.0.1 www.0scan.com
O1 - Hosts: 127.0.0.1 0scan.com
O1 - Hosts: 127.0.0.1 1000gratisproben.com
O1 - Hosts: 127.0.0.1 www.1000gratisproben.com
O1 - Hosts: 127.0.0.1 1001namen.com
O1 - Hosts: 127.0.0.1 www.1001namen.com
O1 - Hosts: 127.0.0.1 100888290cs.com
O1 - Hosts: 127.0.0.1 www.100888290cs.com
O1 - Hosts: 127.0.0.1 www.100sexlinks.com
O1 - Hosts: 127.0.0.1 100sexlinks.com
O1 - Hosts: 127.0.0.1 10sek.com
O1 - Hosts: 127.0.0.1 www.10sek.com
O1 - Hosts: 127.0.0.1 www.1-2005-search.com
O1 - Hosts: 127.0.0.1 1-2005-search.com
O1 - Hosts: 127.0.0.1 123fporn.info
O1 - Hosts: 15052 more lines...
O3 - HKU\S-1-5-21-164803696-779862289-2219835596-1001\..\Toolbar\WebBrowser: (no name) - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - No CLSID value found.
O3 - HKU\S-1-5-21-164803696-779862289-2219835596-1001\..\Toolbar\WebBrowser: (no name) - {71576546-354D-41C9-AAE8-31F2EC22BF0D} - No CLSID value found.
O4 - HKLM..\Run: [egui] E:\Program Files\ESET\ESET Smart Security\egui.exe (ESET)
O4 - HKU\S-1-5-19..\RunOnce: [mctadmin] E:\Windows\System32\mctadmin.exe (Microsoft Corporation)
O4 - HKU\S-1-5-20..\RunOnce: [mctadmin] E:\Windows\System32\mctadmin.exe (Microsoft Corporation)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 0
O8 - Extra context menu item: E&xportar a Microsoft Excel - res://E:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000 File not found
O9 - Extra Button: Enviar a OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - E:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : &Enviar a OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - E:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll (Microsoft Corporation)
O13 - gopher Prefix: missing
O16 - DPF: {05CA9FB0-3E3E-4B36-BF41-0E3A5CAA8CD8} http://download.microsoft.com/download/C/B/F/CBF23A2C-3E55-4664-BC5C-762780D79BA0/OGAControl.cab (Reg Error: Key error.)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_27-windows-i586.cab (Java Plug-in 1.6.0_27)
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab (MessengerStatsClient Class)
O16 - DPF: {CAFEEFAC-0016-0000-0027-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_27-windows-i586.cab (Java Plug-in 1.6.0_27)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_27-windows-i586.cab (Java Plug-in 1.6.0_27)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 80.58.61.250 80.58.61.254
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{3F8C9A97-FF6F-4969-9A79-0C54E2082505}: DhcpNameServer = 80.58.61.250 80.58.61.254
O18 - Protocol\Handler\livecall {828030A1-22C1-4009-854F-8E305202313F} - E:\PROGRA~1\WIC4A1~1\MESSEN~1\MSGRAP~1.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msnim {828030A1-22C1-4009-854F-8E305202313F} - E:\PROGRA~1\WIC4A1~1\MESSEN~1\MSGRAP~1.DLL (Microsoft Corporation)
O18 - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - E:\PROGRA~1\COMMON~1\MICROS~1\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (Explorer.exe) -E:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (E:\Windows\system32\userinit.exe) -E:\Windows\System32\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) -E:\Windows\System32\SystemPropertiesPerformance.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O20 - HKU\S-1-5-21-164803696-779862289-2219835596-1001 Winlogon: Shell - (Explorer.exe) -E:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKU\S-1-5-21-164803696-779862289-2219835596-1001 Winlogon: UserInit - (E:\Windows\system32\userinit.exe) -E:\Windows\System32\userinit.exe (Microsoft Corporation)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009/06/10 22:42:20 | 000,000,024 | ---- | M] () - E:\autoexec.bat -- [ NTFS ]
O32 - AutoRun File - [2011/09/26 01:13:51 | 000,000,000 | RHSD | M] - E:\Autorun.inf -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

MsConfig - State: "startup" - 2

CREATERESTOREPOINT
Restore point Set: OTL Restore Point

========== Files/Folders - Created Within 30 Days ==========

[2011/09/26 12:14:11 | 000,582,656 | ---- | C] (OldTimer Tools) -- E:\Users\Hector\Desktop\OTL.exe
[2011/09/26 01:13:51 | 000,000,000 | RHSD | C] -- E:\Autorun.inf
[2011/09/26 01:06:05 | 000,000,000 | ---D | C] -- E:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware
[2011/09/26 01:06:05 | 000,000,000 | ---D | C] -- E:\ProgramData\Malwarebytes
[2011/09/26 01:06:01 | 000,022,216 | ---- | C] (Malwarebytes Corporation) -- E:\Windows\System32\drivers\mbam.sys
[2011/09/26 01:06:01 | 000,000,000 | ---D | C] -- E:\Program Files\Malwarebytes' Anti-Malware
[2011/09/26 01:01:02 | 000,000,000 | ---D | C] -- E:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot - Search & Destroy
[2011/09/26 01:00:56 | 000,000,000 | ---D | C] -- E:\Program Files\Spybot - Search & Destroy
[2011/09/26 00:53:23 | 000,000,000 | ---D | C] -- E:\ProgramData\Microsoft\Windows\Start Menu\Programs\ESET
[2011/09/26 00:53:23 | 000,000,000 | ---D | C] -- E:\Program Files\ESET
[2011/09/26 00:33:22 | 000,000,000 | ---D | C] -- E:\ProgramData\Microsoft\Windows\Start Menu\Programs\Glary Utilities
[2011/09/26 00:33:21 | 000,000,000 | ---D | C] -- E:\Program Files\Glary Utilities
[2011/09/26 00:30:59 | 000,000,000 | ---D | C] -- E:\Program Files\Common Files\Java
[2011/09/26 00:30:50 | 000,157,472 | ---- | C] (Sun Microsystems, Inc.) -- E:\Windows\System32\javaws.exe
[2011/09/26 00:30:50 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- E:\Windows\System32\javaw.exe
[2011/09/26 00:30:50 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- E:\Windows\System32\java.exe
[2011/09/24 13:58:57 | 000,000,000 | ---D | C] -- E:\Users\Hector\AppData\Roaming\GlarySoft
[2011/09/20 00:48:46 | 000,000,000 | ---D | C] -- E:\Users\Hector\Desktop\libros clase

========== Files - Modified Within 30 Days ==========

[2011/09/26 12:16:02 | 000,122,551 | ---- | M] () -- E:\Users\Hector\Desktop\Sin título.jpg
[2011/09/26 12:14:21 | 000,582,656 | ---- | M] (OldTimer Tools) -- E:\Users\Hector\Desktop\OTL.exe
[2011/09/26 11:43:00 | 000,001,088 | ---- | M] () -- E:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2011/09/26 09:19:22 | 000,016,400 | -H-- | M] () -- E:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2011/09/26 09:19:22 | 000,016,400 | -H-- | M] () -- E:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2011/09/26 09:16:16 | 003,641,588 | ---- | M] () -- E:\Windows\System32\perfh00A.dat
[2011/09/26 09:16:16 | 001,506,914 | ---- | M] () -- E:\Windows\System32\perfh009.dat
[2011/09/26 09:16:16 | 001,110,640 | ---- | M] () -- E:\Windows\System32\perfc00A.dat
[2011/09/26 09:16:16 | 000,926,000 | ---- | M] () -- E:\Windows\System32\perfc009.dat
[2011/09/26 09:12:12 | 000,001,084 | ---- | M] () -- E:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2011/09/26 09:12:10 | 000,000,314 | ---- | M] () -- E:\Windows\tasks\GlaryInitialize.job
[2011/09/26 09:12:03 | 000,067,584 | --S- | M] () -- E:\Windows\bootstat.dat
[2011/09/26 01:06:05 | 000,001,067 | ---- | M] () -- E:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk
[2011/09/26 01:05:17 | 000,437,695 | R--- | M] () -- E:\Windows\System32\drivers\etc\hosts
[2011/09/26 01:01:02 | 000,001,216 | ---- | M] () -- E:\Users\Hector\Desktop\Spybot - Search & Destroy.lnk
[2011/09/26 00:59:52 | 000,001,997 | ---- | M] () -- E:\Users\Hector\Desktop\ESET Smart Security.lnk
[2011/09/23 15:43:51 | 000,064,682 | ---- | M] () -- E:\Users\Hector\Desktop\TicketCiudadano.pdf
[2011/08/31 17:00:50 | 000,022,216 | ---- | M] (Malwarebytes Corporation) -- E:\Windows\System32\drivers\mbam.sys

========== Files Created - No Company Name ==========

[2011/09/26 12:16:02 | 000,122,551 | ---- | C] () -- E:\Users\Hector\Desktop\Sin título.jpg
[2011/09/26 01:06:05 | 000,001,067 | ---- | C] () -- E:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk
[2011/09/26 01:01:02 | 000,001,216 | ---- | C] () -- E:\Users\Hector\Desktop\Spybot - Search & Destroy.lnk
[2011/09/26 00:59:52 | 000,001,997 | ---- | C] () -- E:\Users\Hector\Desktop\ESET Smart Security.lnk
[2011/09/26 00:33:23 | 000,000,314 | ---- | C] () -- E:\Windows\tasks\GlaryInitialize.job
[2011/09/23 15:43:50 | 000,064,682 | ---- | C] () -- E:\Users\Hector\Desktop\TicketCiudadano.pdf
[2010/09/05 21:12:59 | 000,007,605 | ---- | C] () -- E:\Users\Hector\AppData\Local\Resmon.ResmonCfg
[2010/08/06 21:04:14 | 000,000,008 | ---- | C] () -- E:\Users\Hector\AppData\Roaming\DofusAppId0_1
[2010/08/06 21:01:39 | 000,000,173 | ---- | C] () -- E:\Users\Hector\AppData\Roaming\D2Info0
[2010/08/06 21:01:39 | 000,000,008 | ---- | C] () -- E:\Users\Hector\AppData\Roaming\DofusAppId0_2
[2010/07/30 01:59:21 | 000,000,842 | ---- | C] () -- E:\Windows\System32\SPC230NC.INI
[2010/07/29 10:33:11 | 000,000,000 | ---- | C] () -- E:\Windows\ativpsrm.bin
[2009/08/03 15:07:42 | 000,230,768 | ---- | C] () -- E:\Windows\System32\OGAEXEC.exe
[2009/07/14 09:48:37 | 003,641,588 | ---- | C] () -- E:\Windows\System32\perfh00A.dat
[2009/07/14 09:48:37 | 001,110,640 | ---- | C] () -- E:\Windows\System32\perfc00A.dat
[2009/07/14 09:48:37 | 000,341,432 | ---- | C] () -- E:\Windows\System32\perfi00A.dat
[2009/07/14 09:48:37 | 000,041,390 | ---- | C] () -- E:\Windows\System32\perfd00A.dat
[2009/07/14 05:57:37 | 000,067,584 | --S- | C] () -- E:\Windows\bootstat.dat
[2009/07/14 05:33:53 | 000,410,648 | ---- | C] () -- E:\Windows\System32\FNTCACHE.DAT
[2009/07/14 03:05:48 | 001,506,914 | ---- | C] () -- E:\Windows\System32\perfh009.dat
[2009/07/14 03:05:48 | 000,926,000 | ---- | C] () -- E:\Windows\System32\perfc009.dat
[2009/07/14 03:05:48 | 000,291,294 | ---- | C] () -- E:\Windows\System32\perfi009.dat
[2009/07/14 03:05:48 | 000,031,548 | ---- | C] () -- E:\Windows\System32\perfd009.dat
[2009/07/14 03:05:05 | 000,000,741 | ---- | C] () -- E:\Windows\System32\NOISE.DAT
[2009/07/14 03:04:11 | 000,215,943 | ---- | C] () -- E:\Windows\System32\dssec.dat
[2009/07/14 00:55:01 | 000,043,131 | ---- | C] () -- E:\Windows\mib.bin
[2009/07/14 00:51:43 | 000,073,728 | ---- | C] () -- E:\Windows\System32\BthpanContextHandler.dll
[2009/07/14 00:42:10 | 000,064,000 | ---- | C] () -- E:\Windows\System32\BWContextHandler.dll
[2009/06/18 19:29:04 | 000,197,654 | ---- | C] () -- E:\Windows\System32\atiicdxx.dat
[2009/06/10 22:26:10 | 000,673,088 | ---- | C] () -- E:\Windows\System32\mlang.dat
[2009/02/18 17:55:22 | 000,294,912 | ---- | C] () -- E:\Windows\System32\ATIODE.exe
[2009/02/03 20:52:04 | 000,045,056 | ---- | C] () -- E:\Windows\System32\ATIODCLI.exe
[2004/08/13 09:56:20 | 000,005,810 | ---- | C] () -- E:\Windows\System32\drivers\ASACPI.sys

========== Custom Scans ==========

< %SYSTEMDRIVE%\*.* >
[2009/06/10 22:42:20 | 000,000,024 | ---- | M] () -- E:\autoexec.bat
[2009/10/09 18

53 | 000,000,210 | -H-- | M] () -- E:\Boot.BAK
[2010/07/29 11:29:24 | 000,000,354 | RHS- | M] () -- E:\Boot.ini.saved
[2004/08/13 15:24:24 | 000,004,952 | RHS- | M] () -- E:\Bootfont.bin
[2010/11/20 13:40:07 | 000,383,786 | RHS- | M] () -- E:\bootmgr
[2010/07/29 11:29:25 | 000,008,192 | RHS- | M] () -- E:\BOOTSECT.BAK
[2009/06/10 22:42:20 | 000,000,010 | ---- | M] () -- E:\config.sys
[2008/04/13 22:13:04 | 000,047,564 | RHS- | M] () -- E:\NTDETECT.COM
[2008/04/14 00:01:52 | 000,251,168 | RHS- | M] () -- E:\ntldr
[2011/09/26 09:12:01 | 3757,236,224 | -HS- | M] () -- E:\pagefile.sys
[2009/10/09 12:03:24 | 000,000,268 | -H-- | M] () -- E:\sqmdata00.sqm
[2009/10/09 12:05:07 | 000,000,268 | -H-- | M] () -- E:\sqmdata01.sqm
[2009/10/09 12:22:17 | 000,000,268 | -H-- | M] () -- E:\sqmdata02.sqm
[2009/10/09 16:31:35 | 000,000,268 | -H-- | M] () -- E:\sqmdata03.sqm
[2009/10/09 16:44:10 | 000,000,268 | -H-- | M] () -- E:\sqmdata04.sqm
[2009/10/23 17:31:30 | 000,000,280 | -H-- | M] () -- E:\sqmdata05.sqm
[2009/10/23 17:46:57 | 000,000,268 | -H-- | M] () -- E:\sqmdata06.sqm
[2009/10/23 17:53:35 | 000,000,268 | -H-- | M] () -- E:\sqmdata07.sqm
[2009/10/23 19

39 | 000,000,268 | -H-- | M] () -- E:\sqmdata08.sqm
[2009/10/23 19:16:19 | 000,000,268 | -H-- | M] () -- E:\sqmdata09.sqm
[2009/10/23 19:18:17 | 000,000,268 | -H-- | M] () -- E:\sqmdata10.sqm
[2009/10/23 19:34:21 | 000,000,268 | -H-- | M] () -- E:\sqmdata11.sqm
[2009/10/09 12:03:24 | 000,000,244 | -H-- | M] () -- E:\sqmnoopt00.sqm
[2009/10/09 12:05:07 | 000,000,244 | -H-- | M] () -- E:\sqmnoopt01.sqm
[2009/10/09 12:22:17 | 000,000,244 | -H-- | M] () -- E:\sqmnoopt02.sqm
[2009/10/09 16:31:35 | 000,000,244 | -H-- | M] () -- E:\sqmnoopt03.sqm
[2009/10/09 16:44:10 | 000,000,244 | -H-- | M] () -- E:\sqmnoopt04.sqm
[2009/10/23 17:31:30 | 000,000,244 | -H-- | M] () -- E:\sqmnoopt05.sqm
[2009/10/23 17:46:57 | 000,000,244 | -H-- | M] () -- E:\sqmnoopt06.sqm
[2009/10/23 17:53:35 | 000,000,244 | -H-- | M] () -- E:\sqmnoopt07.sqm
[2009/10/23 19

39 | 000,000,244 | -H-- | M] () -- E:\sqmnoopt08.sqm
[2009/10/23 19:16:19 | 000,000,244 | -H-- | M] () -- E:\sqmnoopt09.sqm
[2009/10/23 19:18:16 | 000,000,244 | -H-- | M] () -- E:\sqmnoopt10.sqm
[2009/10/23 19:34:21 | 000,000,244 | -H-- | M] () -- E:\sqmnoopt11.sqm
[2011/09/22 12:43:08 | 000,066,650 | ---- | M] () -- E:\TDSSKiller.2.5.23.0_22.09.2011_12.34.03_log.txt

========== Alternate Data Streams ==========

@Alternate Data Stream - 95 bytes -> E:\ProgramData\TEMP:5C321E34
@Alternate Data Stream - 145 bytes -> E:\ProgramData\TEMP:0B4227B4

< End of report >

**M@co** · 26/09/11, 09:27:28

Hola.

Los drivers de Malwarebytes no están ejecutándose; recuerda que para instalar este programa debes estar logueado como administrador.

En la próxima respuesta pega el log llamado Extras.txt.

_________________________

Realiza lo siguiente:

Ejecutar OTL.exe

Pegue el siguiente script bajo la casilla Análisis Personalizados/Codigo de Reparación:

NOTA: No copiar la palabra codigo.

Código:

:files
@E:\ProgramData\TEMP:5C321E34
@E:\ProgramData\TEMP:0B4227B4
E:\*.sqm

:commands
[emptyflash]
[emptytemp]
[purity]
[start explorer]
[createrestorepoint]
[Reboot]

Luego haga clic en el botón Reparar en la parte superior.
Deje que el programa se ejecute sin trabas, reinicie cuando lo pida hacer.
Al reiniciar se creará un reporte por defecto en C:\_OTL\MovedFiles, copie y pegue ese log en la próxima respuesta.

Nos comentas los resultados.

Salu2!.

Malwarebytes' Anti-Malware NO Inicia (Solucionado)

Herramientas

Re: Malwarebytes' Anti-Malware NO Inicia

Re: Malwarebytes' Anti-Malware NO Inicia

Re: Malwarebytes' Anti-Malware NO Inicia

Re: Malwarebytes' Anti-Malware NO Inicia

Re: Malwarebytes' Anti-Malware NO Inicia

Re: Malwarebytes' Anti-Malware NO Inicia

Re: Malwarebytes' Anti-Malware NO Inicia

Re: Malwarebytes' Anti-Malware NO Inicia

Re: Malwarebytes' Anti-Malware NO Inicia

Re: Malwarebytes' Anti-Malware NO Inicia