Eliminar Mystart. (Solucionado)

**KumaL** · 12/07/12, 02:18:30

Buenas, he usado el buscador y encontre varios temas similares. Pero note que toman cada uno como caso individual, asi que abro mi tema.

En efecto, mi hno instalo un par de cosas, y sin querer instalo el horrible y persistente Mystar. Esta en los 3 navegadores (chrome, firefox, IE)

Ya puse la pagina de inicio y buscadores que tengo por defecto, pero quiero eliminarlo por completo. ¿Cuales son los pasos a seguir?

Gracias por su ayuda.

**Superlucas** · 12/07/12, 17:11:58

Hola:

Realiza lo siguiente:
Descarga AT-Destroyer(Adwares/Toolbars-Destroyer) By Infospyware. que adjunte al final del post
Ejecuta la herramienta como administrador.
La herramienta desconectará el escritorio moméntaneamente.
En caso de estar infectado,la herramienta lo indicará con lineas rojas donde se haya encontrado la infección,sino,serán lineas verdes.
Una vez terminado el escaneo,podrás volver a ver el escritorio y se te abrirá un reporte,que deberás copiar en tu próxima respuesta comentando cómo funciona el sistema.

**KumaL** · 12/07/12, 22:05:18

Gracias, ya lo hice. Adjunto el reporte:

#################################################### A/T-Destroyer by InfoSpyware ############

A/T-Destroyer 1.0.5 By Infospyware
www.infospyware.com
Fecha iniciada en el analisis 12/07/2012
Hora iniciada en el analisis 23:07:59,06
Usuario Actual : [C:\Documents and Settings\Administrador]
Sistema Operativo: Windows XP
Service pack: 3
Arquitectura: Sistema operativo de 32 bits
Versión Internet Explorer: 8.0.6001.18702
Modo Actual: Modo Normal.
Privilegios: [Administrador-Administrador]
Versión Google Chrome: 20.0.1132.57
Versión Mozilla Firefox: 13.0.1

====== Servicios Eliminados By A/T-Destroyer ======

====== Claves Eliminadas By A/T-Destroyer ======

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar | ( {98889811-442D-49dd-99D7-DC866BE87DBC} )
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar | ( {F9639E4A-801B-4843-AEE3-03D9DA199E77} )
HKEY_CLASSES_ROOT\AppID\escort.DLL
HKEY_CLASSES_ROOT\AppID\escort.DLL
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2EECD738-5844-4a99-B4B6-146BF802613B}
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2EECD738-5844-4a99-B4B6-146BF802613B}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{EF7FEC6D-451B-4452-9D26-7E10C6B5DB6E}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{EF7FEC6D-451B-4452-9D26-7E10C6B5DB6E}\InprocServer32
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{EF7FEC6D-451B-4452-9D26-7E10C6B5DB6E}\ProgID
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{EF7FEC6D-451B-4452-9D26-7E10C6B5DB6E}\Programmable
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{EF7FEC6D-451B-4452-9D26-7E10C6B5DB6E}\TypeLib
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{EF7FEC6D-451B-4452-9D26-7E10C6B5DB6E}\VersionIndependentProgID
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{EF7FEC6D-451B-4452-9D26-7E10C6B5DB6E}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{ED0E67AD-926C-4008-87E5-03CF72AA2A7E}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{ED0E67AD-926C-4008-87E5-03CF72AA2A7E}\InprocServer32
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{ED0E67AD-926C-4008-87E5-03CF72AA2A7E}\ProgID
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{ED0E67AD-926C-4008-87E5-03CF72AA2A7E}\Programmable
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{ED0E67AD-926C-4008-87E5-03CF72AA2A7E}\VersionIndependentProgID
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{ED0E67AD-926C-4008-87E5-03CF72AA2A7E}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{C1545464-C77C-4130-A572-1C619E2895FE}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{C1545464-C77C-4130-A572-1C619E2895FE}\InprocServer32
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{C1545464-C77C-4130-A572-1C619E2895FE}\ProgID
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{C1545464-C77C-4130-A572-1C619E2895FE}\Programmable
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{C1545464-C77C-4130-A572-1C619E2895FE}\VersionIndependentProgID
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{C1545464-C77C-4130-A572-1C619E2895FE}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{C01315C7-B4E2-4864-B43D-5FAFC414D179}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{C01315C7-B4E2-4864-B43D-5FAFC414D179}\LocalServer32
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{C01315C7-B4E2-4864-B43D-5FAFC414D179}\ProgID
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{C01315C7-B4E2-4864-B43D-5FAFC414D179}\Programmable
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{C01315C7-B4E2-4864-B43D-5FAFC414D179}\TypeLib
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{C01315C7-B4E2-4864-B43D-5FAFC414D179}\VersionIndependentProgID
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{C01315C7-B4E2-4864-B43D-5FAFC414D179}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{6E13DDE1-2B6E-46CE-8B66-DC8BF36F6B99}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{6E13DDE1-2B6E-46CE-8B66-DC8BF36F6B99}\InprocServer32
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{6E13DDE1-2B6E-46CE-8B66-DC8BF36F6B99}\ProgID
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{6E13DDE1-2B6E-46CE-8B66-DC8BF36F6B99}\Programmable
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{6E13DDE1-2B6E-46CE-8B66-DC8BF36F6B99}\VersionIndependentProgID
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{6E13DDE1-2B6E-46CE-8B66-DC8BF36F6B99}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\AppID\{608D3067-77E8-463D-9084-908966806826}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\AppID\{608D3067-77E8-463D-9084-908966806826}\instl
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\AppID\{608D3067-77E8-463D-9084-908966806826}\instl\data
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\AppID\{608D3067-77E8-463D-9084-908966806826}\instl\dfltLng
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\AppID\{608D3067-77E8-463D-9084-908966806826}
HKEY_CURRENT_USER\Software\ImInstaller
HKEY_CURRENT_USER\Software\ImInstaller\IncrediMail
HKEY_CURRENT_USER\Software\ImInstaller
HKEY_CURRENT_USER\Software\Conduit
HKEY_CURRENT_USER\Software\Conduit\AppPaths
HKEY_CURRENT_USER\Software\Conduit\AppPaths\bsplayer.exe
HKEY_CURRENT_USER\Software\Conduit
HKEY_LOCAL_MACHINE\SOFTWARE\Conduit
HKEY_LOCAL_MACHINE\SOFTWARE\Conduit\AppPaths
HKEY_LOCAL_MACHINE\SOFTWARE\Conduit
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{336D0C35-8A85-403a-B9D2-65C292C39087}
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{336D0C35-8A85-403a-B9D2-65C292C39087}

====== Archivos/Carpetas Eliminados By A/T-Destroyer ======

C:\Archivos de programa\babylontoolbar\BabylonToolbar
C:\Archivos de programa\babylontoolbar\BabylonToolbar\1.5.3.17
C:\Archivos de programa\babylontoolbar\BabylonToolbar\1.5.3.17\BabylonToolbarApp.dll
C:\Archivos de programa\babylontoolbar\BabylonToolbar\1.5.3.17\BabylonToolbarEng.dll
C:\Archivos de programa\babylontoolbar\BabylonToolbar\1.5.3.17\BabylonToolbarsrv.exe
C:\Archivos de programa\babylontoolbar\BabylonToolbar\1.5.3.17\BabylonToolbarTlbr.dll
C:\Archivos de programa\babylontoolbar\BabylonToolbar\1.5.3.17\bh
C:\Archivos de programa\babylontoolbar\BabylonToolbar\1.5.3.17\uninstall.exe
C:\Archivos de programa\babylontoolbar\BabylonToolbar\1.5.3.17\bh\BabylonToolbar.dll
"C:\Archivos de programa\babylontoolbar"
C:\Documents and Settings\Administrador\Datos de programa\Babylon\log_file.txt
"C:\Documents and Settings\Administrador\Datos de programa\Babylon"
C:\Archivos de programa\Incredibar.com\incredibar
C:\Archivos de programa\Incredibar.com\incredibar\1.5.11.14
C:\Archivos de programa\Incredibar.com\incredibar\1.5.11.14\bh
C:\Archivos de programa\Incredibar.com\incredibar\1.5.11.14\incredibarApp.dll
C:\Archivos de programa\Incredibar.com\incredibar\1.5.11.14\incredibarEng.dll
C:\Archivos de programa\Incredibar.com\incredibar\1.5.11.14\incredibarsrv.exe
C:\Archivos de programa\Incredibar.com\incredibar\1.5.11.14\incredibarTlbr.dll
C:\Archivos de programa\Incredibar.com\incredibar\1.5.11.14\uninstall.exe
C:\Archivos de programa\Incredibar.com\incredibar\1.5.11.14\bh\incredibar.dll
"C:\Archivos de programa\Incredibar.com"
C:\Documents and Settings\Administrador\Datos de programa\Incredibar.com\incredibar
"C:\Documents and Settings\Administrador\Datos de programa\Incredibar.com"
C:\Documents and Settings\Administrador\WINDOWS\system
"C:\Documents and Settings\Administrador\WINDOWS"
C:\Archivos de programa\Web Assistant\Extension32.dll
C:\Archivos de programa\Web Assistant\ExtensionUpdaterService.exe
C:\Archivos de programa\Web Assistant\Firefox
C:\Archivos de programa\Web Assistant\InstallerHelper.dll
C:\Archivos de programa\Web Assistant\libraries
C:\Archivos de programa\Web Assistant\resources
C:\Archivos de programa\Web Assistant\source.crx
C:\Archivos de programa\Web Assistant\unins000.dat
C:\Archivos de programa\Web Assistant\unins000.exe
C:\Archivos de programa\Web Assistant\Firefox\chrome
C:\Archivos de programa\Web Assistant\Firefox\chrome.manifest
C:\Archivos de programa\Web Assistant\Firefox\defaults
C:\Archivos de programa\Web Assistant\Firefox\install.rdf
C:\Archivos de programa\Web Assistant\Firefox\chrome\content
C:\Archivos de programa\Web Assistant\Firefox\chrome\locale
C:\Archivos de programa\Web Assistant\Firefox\chrome\skin
C:\Archivos de programa\Web Assistant\Firefox\chrome\content\libraries
C:\Archivos de programa\Web Assistant\Firefox\chrome\content\main.js
C:\Archivos de programa\Web Assistant\Firefox\chrome\content\main.xul
C:\Archivos de programa\Web Assistant\Firefox\chrome\content\resources
C:\Archivos de programa\Web Assistant\Firefox\chrome\content\libraries\DataExchangeScript.js
C:\Archivos de programa\Web Assistant\Firefox\chrome\content\resources\localscript.js
C:\Archivos de programa\Web Assistant\Firefox\chrome\locale\en-US
C:\Archivos de programa\Web Assistant\Firefox\chrome\locale\en-US\overlay.dtd
C:\Archivos de programa\Web Assistant\Firefox\chrome\skin\overlay.css
C:\Archivos de programa\Web Assistant\Firefox\defaults\preferences
C:\Archivos de programa\Web Assistant\Firefox\defaults\preferences\defaults.js
C:\Archivos de programa\Web Assistant\libraries\DataExchangeScript.js
C:\Archivos de programa\Web Assistant\resources\localscript.js
"C:\Archivos de programa\Web Assistant"
C:\Archivos de programa\Mozilla Firefox\extensions\[email protected]
C:\WINDOWS\System32\ezsidmv.dat
C:\user.js

====== Información Extra ======

-_-_-_-_-_-_-_-_ Configuraciones de internet Explorer -_-_-_-_-_-_-_-_
"HKCU\Software\Microsoft\Internet Explorer\Main"
-
Start Page == http://www.google.com
-
Search Page == http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
-
Local Page == C:\WINDOWS\system32\blank.htm
-
-

"HKLM\Software\Microsoft\Internet Explorer\Main"
-
Start Page == http://www.google.com
-
Search Page == http://go.microsoft.com/fwlink/?LinkId=54896
-
Local Page == C:\WINDOWS\system32\blank.htm
-
Default_Search_URL == http://go.microsoft.com/fwlink/?LinkId=54896
-
Default_Page_URL == http://go.microsoft.com/fwlink/?LinkId=69157

"HKEY_USERS\S-1-5-21-1390067357-1364589140-682003330-500\Software\Microsoft\Internet Explorer\Main"
-
Start Page == http://www.google.com
-
Search Page == http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
-
Local Page == C:\WINDOWS\system32\blank.htm
-
-

-_-_-_-_-_-_-_-_ Configuraciones de Google Chrome-_-_-_-_-_-_-_-_
"homepage": "",
"homepage_is_newtabpage": true,

-_-_-_-_-_-_-_-_ Configuraciones de mozilla Firefox -_-_-_-_-_-_-_-_
user_pref("browser.startup.homepage", "http://google.com");
user_pref("browser.startup.homepage", "http://google.com");
user_pref("browser.startup.homepage", "http://google.com");

======= EOF =======

**SanMar** · 12/07/12, 22:30:37

Hola KumaL:

Para asegurarnos que no quede nada realizas lo siguiente:

Descarga OTL By OldTimer

>>> Para Ejecutar OTL

Cerrar todos programas que tengas abiertos y hacer doble clic en el ícono de OTL para ejecutarlo.
Dejarlo correr y esperar a que aparezca el menú de OTL..
Cuando salga el menú de OTL, solo debes cambiar debajo de: "Tipo de Análisis" poniendo Resultado Mínimo.
Marcar las opciones: Buscar LOP y Buscar Purity.
Marcar las Opciones >> Omitir Archivos De Microsoft y Usar Listado de Compañías Reconocidas.
Copiar y Pegar el siguiente script bajo la casilla Análisis Personalizados/Código de Reparación:

NOTA: No copiar la palabra Cita.

netsvcs
msconfig
%SYSTEMDRIVE%\*.*
CREATERESTOREPOINT
Por favor No cambies el resto de la configuración a menos que te lo solicitemos.

Presionar el botón >>
Una vez que termine, se abrirán dos (2) archivos, OTL.Txt y Extras.Txt. Éstos archivos estarán grabados en el mismo lugar donde OTL.exe fue descargado.
Copiar y pegar el contenido del archivo OTL.txt en tu próxima respuesta.

Salu2

**KumaL** · 12/07/12, 23:15:02

Hecho. Aca esta:

OTL logfile created on: 13/07/2012 0:14:09 - Run 1
OTL by OldTimer - Version 3.2.54.0 Folder = D:\Downloads
Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000C0A | Country: España | Language: ESN | Date Format: dd/MM/yyyy

1023,23 Mb Total Physical Memory | 423,91 Mb Available Physical Memory | 41,43% Memory free
2,40 Gb Paging File | 1,52 Gb Available in Paging File | 63,13% Paging File free
Paging file location(s): C:\pagefile.sys 1536 3072 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Archivos de programa
Drive C: | 97,65 Gb Total Space | 57,63 Gb Free Space | 59,02% Space Free | Partition Type: NTFS
Drive D: | 368,10 Gb Total Space | 100,24 Gb Free Space | 27,23% Space Free | Partition Type: NTFS

Computer Name: VERONATRIX | User Name: Administrador | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - D:\Downloads\OTL.exe (OldTimer Tools)
PRC - C:\Archivos de programa\Mozilla Firefox\firefox.exe (Mozilla Corporation)
PRC - C:\Archivos de programa\uTorrent\uTorrent.exe (BitTorrent, Inc.)
PRC - C:\Archivos de programa\Archivos comunes\Java\Java Update\jusched.exe (Sun Microsystems, Inc.)
PRC - C:\Archivos de programa\SUPERAntiSpyware\SASCORE.EXE (SUPERAntiSpyware.com)
PRC - C:\WINDOWS\system32\TUProgSt.exe (TuneUp Software)
PRC - C:\Archivos de programa\Internet Download Manager\IEMonitor.exe (Tonec Inc.)
PRC - C:\WINDOWS\explorer.exe (Microsoft Corporation)
PRC - C:\Archivos de programa\RocketDock\RocketDock.exe ()
PRC - C:\Archivos de programa\VIA\VIAudioi\SBADeck\ADeck.exe (VIA Technologies, Inc.)
PRC - c:\Archivos de programa\Archivos comunes\Protexis\License Service\PsiService_2.exe (Protexis Inc.)
PRC - C:\WINDOWS\system32\bgsvcgen.exe (B.H.A Corporation)
PRC - C:\Archivos de programa\Kaspersky Lab\Kaspersky Anti-Virus 6.0\avp.exe (Kaspersky Lab)
PRC - C:\Archivos de programa\TaskSwitchXP\TaskSwitchXP.exe (Alexander Avdonin)

========== Modules (No Company Name) ==========

MOD - C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_3_300_265.dll ()
MOD - C:\Archivos de programa\Mozilla Firefox\mozjs.dll ()
MOD - C:\Archivos de programa\Archivos comunes\Adobe\Acrobat\ActiveX\PDFShell.ESP ()
MOD - C:\Archivos de programa\Unlocker\UnlockerCOM.dll ()
MOD - C:\WINDOWS\system32\msdmo.dll ()
MOD - C:\Archivos de programa\RocketDock\RocketDock.exe ()
MOD - C:\Archivos de programa\RocketDock\RocketDock.dll ()
MOD - C:\Archivos de programa\WinRAR\RarExt.dll ()
MOD - C:\Archivos de programa\HP\Digital Imaging\bin\crm\xmltok.dll ()
MOD - C:\Archivos de programa\HP\Digital Imaging\bin\crm\xmlparse.dll ()

========== Win32 Services (SafeList) ==========

SRV - (Web Assistant Updater) -- C:\Archivos de programa\Web Assistant\ExtensionUpdaterService.exe File not found
SRV - (AdobeFlashPlayerUpdateSvc) -- C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe (Adobe Systems Incorporated)
SRV - (MozillaMaintenance) -- C:\Archivos de programa\Mozilla Maintenance Service\maintenanceservice.exe (Mozilla Foundation)
SRV - (Sony PC Companion) -- C:\Archivos de programa\Sony\Sony PC Companion\PCCService.exe (Avanquest Software)
SRV - (!SASCORE) -- C:\Archivos de programa\SUPERAntiSpyware\SASCORE.EXE (SUPERAntiSpyware.com)
SRV - (Steam Client Service) -- C:\Archivos de programa\Archivos comunes\Steam\SteamService.exe (Valve Corporation)
SRV - (FirebirdServerDefaultInstance) -- C:\Archivos de programa\Firebird\Firebird_2_5\bin\fbserver.exe (Firebird Project)
SRV - (TuneUp.ProgramStatisticsSvc) -- C:\WINDOWS\system32\TUProgSt.exe (TuneUp Software)
SRV - (TuneUp.Defrag) -- C:\WINDOWS\system32\TuneUpDefragService.exe (TuneUp Software)
SRV - (UxTuneUp) -- C:\WINDOWS\system32\uxtuneup.dll (TuneUp Software)
SRV - (Pml Driver HPZ12) -- C:\WINDOWS\system32\HPZipm12.exe (HP)
SRV - (PSI_SVC_2) -- c:\Archivos de programa\Archivos comunes\Protexis\License Service\PsiService_2.exe (Protexis Inc.)
SRV - (bgsvcgen) -- C:\WINDOWS\system32\bgsvcgen.exe (B.H.A Corporation)
SRV - (AVP) -- C:\Archivos de programa\Kaspersky Lab\Kaspersky Anti-Virus 6.0\avp.exe (Kaspersky Lab)
SRV - (ServiceLayer) -- C:\Archivos de programa\Archivos comunes\PCSuite\Services\ServiceLayer.exe (Nokia.)
SRV - (ose) -- C:\Archivos de programa\Archivos comunes\Microsoft Shared\Source Engine\OSE.EXE (Microsoft Corporation)

========== Driver Services (SafeList) ==========

DRV - (XDva387) -- C:\WINDOWS\system32\XDva387.sys File not found
DRV - (XDva380) -- C:\WINDOWS\system32\XDva380.sys File not found
DRV - (XDva375) -- C:\WINDOWS\system32\XDva375.sys File not found
DRV - (XDva358) -- C:\WINDOWS\system32\XDva358.sys File not found
DRV - (WDICA) -- File not found
DRV - (PDRFRAME) -- File not found
DRV - (PDRELI) -- File not found
DRV - (PDFRAME) -- File not found
DRV - (PDCOMP) -- File not found
DRV - (PCIDump) -- File not found
DRV - (npkycryp) -- C:\Archivos de programa\Lineage II\system\npkycryp.sys File not found
DRV - (npkcrypt) -- C:\Archivos de programa\Lineage II\system\npkcrypt.sys File not found
DRV - (lbrtfdc) -- File not found
DRV - (i2omgmt) -- File not found
DRV - (GGSAFERDriver) -- C:\Archivos de programa\Garena\safedrv.sys File not found
DRV - (EagleNT) -- C:\WINDOWS\system32\drivers\EagleNT.sys File not found
DRV - (Changer) -- File not found
DRV - (a6f2g5dw) -- File not found
DRV - (a10spzwn) -- File not found
DRV - (ggsemc) -- C:\WINDOWS\system32\drivers\ggsemc.sys (Sony Ericsson Mobile Communications)
DRV - (ggflt) -- C:\WINDOWS\system32\drivers\ggflt.sys (Sony Ericsson Mobile Communications)
DRV - (pwdrvio) -- C:\WINDOWS\system32\pwdrvio.sys ()
DRV - (pwdspio) -- C:\WINDOWS\system32\pwdspio.sys ()
DRV - (SASKUTIL) -- C:\Archivos de programa\SUPERAntiSpyware\SASKUTIL.SYS (SUPERAdBlocker.com and SUPERAntiSpyware.com)
DRV - (SASDIFSV) -- C:\Archivos de programa\SUPERAntiSpyware\SASDIFSV.SYS (SUPERAdBlocker.com and SUPERAntiSpyware.com)
DRV - (IDMTDI) -- C:\WINDOWS\system32\drivers\idmtdi.sys (Tonec Inc.)
DRV - (sptd) -- C:\WINDOWS\system32\drivers\sptd.sys ()
DRV - (SASENUM) -- C:\Archivos de programa\SUPERAntiSpyware\SASENUM.SYS ( SUPERAdBlocker.com and SUPERAntiSpyware.com)
DRV - (UnlockerDriver5) -- C:\Archivos de programa\Unlocker\UnlockerDriver5.sys ()
DRV - (videX32) -- C:\WINDOWS\system32\drivers\videX32.sys (VIA Technologies, Inc.)
DRV - (hamachi) -- C:\WINDOWS\system32\drivers\hamachi.sys (LogMeIn, Inc.)
DRV - (VIAudio) Vinyl AC'97 Audio Controller (WDM) -- C:\WINDOWS\system32\drivers\vinyl97.sys (VIA Technologies, Inc.)
DRV - (ss_mdm) -- C:\WINDOWS\system32\drivers\ss_mdm.sys (MCCI Corporation)
DRV - (ss_mdfl) -- C:\WINDOWS\system32\drivers\ss_mdfl.sys (MCCI Corporation)
DRV - (ss_bus) SAMSUNG Mobile USB Device 1.0 driver (WDM) -- C:\WINDOWS\system32\drivers\ss_bus.sys (MCCI Corporation)
DRV - (kl1) -- C:\WINDOWS\system32\drivers\kl1.sys (Kaspersky Lab)
DRV - (klif) -- C:\WINDOWS\system32\drivers\klif.sys (Kaspersky Lab)
DRV - (WinUSB) -- C:\WINDOWS\system32\drivers\winusb.sys (Microsoft Corporation)
DRV - (StarOpen) -- C:\WINDOWS\System32\drivers\StarOpen.sys ()
DRV - (Nokia USB Phone Parent) -- C:\WINDOWS\system32\drivers\nmwcd.sys (Nokia)
DRV - (Nokia USB Port) -- C:\WINDOWS\system32\drivers\nmwcdcj.sys (Nokia)
DRV - (Nokia USB Modem) -- C:\WINDOWS\system32\drivers\nmwcdcm.sys (Nokia)
DRV - (Nokia USB Generic) -- C:\WINDOWS\system32\drivers\nmwcdc.sys (Nokia)
DRV - (cdrbsdrv) -- C:\WINDOWS\System32\drivers\cdrbsdrv.sys (B.H.A Corporation)
DRV - (ALCXWDM) Service for Realtek AC97 Audio (WDM) -- C:\WINDOWS\system32\drivers\ALCXWDM.SYS (Realtek Semiconductor Corp.)
DRV - (MTsensor) -- C:\WINDOWS\system32\drivers\ASACPI.sys ()

========== Standard Registry (SafeList) ==========

========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com
IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.live.com/results.aspx?q={searchTerms}&src={referrer:source?}

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com
IE - HKCU\Software\Microsoft\Internet Explorer\SearchURL\g, = http://www.google.com/search?q=%s
IE - HKCU\..\SearchScopes,DefaultScope = {C438BA7F-79CD-4E1A-AD7C-4AC119955293}
IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.live.com/results.aspx?q={searchTerms}&src=IE-SearchBox&Form=IE8SRC
IE - HKCU\..\SearchScopes\{C438BA7F-79CD-4E1A-AD7C-4AC119955293}: "URL" = http://www.google.com/search?hl=es&q={searchTerms}&lr=
IE - HKCU\..\SearchScopes\{CFF4DB9B-135F-47c0-9269-B4C6572FD61A}: "URL" = http://mystart.incredibar.com/mb139/?search={searchTerms}&loc=IB_DS&a=6OyHsMO8Ep&i=26
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = 127.0.0.1:9421;<local>

========== FireFox ==========

FF - prefs.js..browser.search.defaultenginename: "MyStart Search"
FF - prefs.js..browser.search.selectedEngine: "Google"
FF - prefs.js..browser.startup.homepage: "http://google.com"
FF - prefs.js..extensions.enabledItems: [email protected]:6.3
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}:6.0.21
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}:6.0.22
FF - prefs.js..extensions.enabledItems: {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}:1.3.3
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}:6.0.23
FF - prefs.js..extensions.enabledItems: [email protected]:5.0.31.0
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}:6.0.24
FF - prefs.js..extensions.enabledItems: [email protected]:1.0
FF - prefs.js..extensions.enabledItems: {FBF6D7FB-F305-4445-BB3D-FEF66579A033}:5.0
FF - prefs.js..keyword.URL: "http://google.com"
FF - prefs.js..network.proxy.type: 4

FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_3_300_265.dll ()
FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\WINDOWS\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
FF - HKLM\Software\MozillaPlugins\@Google.com/GoogleEarthPlugin: C:\Archivos de programa\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=1.6.0_33: C:\WINDOWS\system32\npdeployJava1.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Archivos de programa\Java\jre6\bin\plugin2\npjp2.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Archivos de programa\Google\Update\1.3.21.115\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Archivos de programa\Google\Update\1.3.21.115\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Archivos de programa\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKCU\Software\MozillaPlugins\@Skype Limited.com/Facebook Video Calling Plugin: C:\Documents and Settings\Administrador\Configuración local\Datos de programa\Facebook\Video\Skype\npFacebookVideoCalling.dll (Skype Limited)
FF - HKCU\Software\MozillaPlugins\@talk.google.com/GoogleTalkPlugin: C:\Documents and Settings\Administrador\Datos de programa\Mozilla\plugins\npgoogletalk.dll (Google)
FF - HKCU\Software\MozillaPlugins\@talk.google.com/O3DPlugin: C:\Documents and Settings\Administrador\Datos de programa\Mozilla\plugins\npgtpo3dautoplugin.dll ()
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Documents and Settings\Administrador\Configuración local\Datos de programa\Google\Update\1.3.21.115\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Documents and Settings\Administrador\Configuración local\Datos de programa\Google\Update\1.3.21.115\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\@unity3d.com/UnityPlayer,version=1.0: C:\Documents and Settings\Administrador\Configuración local\Datos de programa\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\extensions\\[email protected]: C:\Archivos de programa\AVAST Software\Avast\WebRep\FF
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\extensions\\{336D0C35-8A85-403a-B9D2-65C292C39087}: C:\Archivos de programa\Web Assistant\Firefox
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 13.0.1\extensions\\Components: C:\Archivos de programa\Mozilla Firefox\components [2012/06/17 18:59:48 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 13.0.1\extensions\\Plugins: C:\Archivos de programa\Mozilla Firefox\plugins [2012/07/09 15:02:38 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\Firefox\Extensions\\[email protected]: C:\Documents and Settings\Administrador\Datos de programa\IDM\idmmzcc3 [2011/04/20 12:30:45 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\SeaMonkey\Extensions\\[email protected]: C:\Documents and Settings\Administrador\Datos de programa\IDM\idmmzcc3 [2011/04/20 12:30:45 | 000,000,000 | ---D | M]

[2011/09/22 21:24:17 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Administrador\Datos de programa\Mozilla\Extensions
[2012/07/09 21:40:44 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Administrador\Datos de programa\Mozilla\Firefox\Profiles\5sav8h0m.default\extensions
[2012/06/08 01:15:35 | 000,000,000 | ---D | M] (Evernote Web Clipper) -- C:\Documents and Settings\Administrador\Datos de programa\Mozilla\Firefox\Profiles\5sav8h0m.default\extensions\{E0B8C461-F8FB-49b4-8373-FE32E9252800}
[2012/07/09 21:18:20 | 000,000,000 | ---D | M] (DownloadnSave) -- C:\Documents and Settings\Administrador\Datos de programa\Mozilla\Firefox\Profiles\5sav8h0m.default\extensions\[email protected]
[2012/06/08 01:14:41 | 000,000,000 | ---D | M] (IDM CC) -- C:\Documents and Settings\Administrador\Datos de programa\Mozilla\Firefox\Profiles\5sav8h0m.default\extensions\[email protected]
[2010/06/27 04:17:51 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Administrador\Datos de programa\Mozilla\Firefox\Profiles\rzoumpha.default\extensions
[2012/07/09 15:02:41 | 000,000,000 | ---D | M] (No name found) -- C:\Archivos de programa\Mozilla Firefox\extensions
[2012/07/09 15:02:41 | 000,000,000 | ---D | M] (Java Console) -- C:\Archivos de programa\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0033-ABCDEFFEDCBA}
[2012/04/19 22:11:28 | 000,000,000 | ---D | M] (No name found) -- C:\Archivos de programa\Mozilla Firefox\extensions\[email protected]
[2012/07/09 15:02:23 | 000,000,000 | ---D | M] (Java Quick Starter) -- C:\ARCHIVOS DE PROGRAMA\JAVA\JRE6\LIB\DEPLOY\JQS\FF
[2012/03/09 08:48:21 | 000,089,075 | ---- | M] () (No name found) -- C:\DOCUMENTS AND SETTINGS\ADMINISTRADOR\DATOS DE PROGRAMA\MOZILLA\FIREFOX\PROFILES\5SAV8H0M.DEFAULT\EXTENSIONS\{02450914-CDD9-410F-B1DA-DB004E18C671}.XPI
[2012/06/21 15:15:56 | 000,193,959 | ---- | M] () (No name found) -- C:\DOCUMENTS AND SETTINGS\ADMINISTRADOR\DATOS DE PROGRAMA\MOZILLA\FIREFOX\PROFILES\5SAV8H0M.DEFAULT\EXTENSIONS\{37FA1426-B82D-11DB-8314-0800200C9A66}.XPI
[2012/04/30 02:11:28 | 000,042,336 | ---- | M] () (No name found) -- C:\DOCUMENTS AND SETTINGS\ADMINISTRADOR\DATOS DE PROGRAMA\MOZILLA\FIREFOX\PROFILES\5SAV8H0M.DEFAULT\EXTENSIONS\{E968FC70-8F95-4AB9-9E79-304DE2A71EE1}.XPI
[2010/06/28 14:32:52 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\WINDOWS\MICROSOFT.NET\FRAMEWORK\V3.5\WINDOWS PRESENTATION FOUNDATION\DOTNETASSISTANTEXTENSION
[2012/06/17 18:59:46 | 000,085,472 | ---- | M] (Mozilla Foundation) -- C:\Archivos de programa\mozilla firefox\components\browsercomps.dll
[2012/03/08 11:13:07 | 000,004,080 | ---- | M] () -- C:\Archivos de programa\mozilla firefox\searchplugins\drae.xml
[2012/03/08 11:13:07 | 000,002,470 | ---- | M] () -- C:\Archivos de programa\mozilla firefox\searchplugins\mercadolibre-ar.xml
[2012/03/08 11:13:07 | 000,001,178 | ---- | M] () -- C:\Archivos de programa\mozilla firefox\searchplugins\wikipedia-es.xml
[2012/05/03 12:24:08 | 000,000,824 | ---- | M] () -- C:\Archivos de programa\mozilla firefox\searchplugins\yahoo-ar.xml

========== Chrome ==========

CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}{google:searchFieldtrialParameter}{google:instantFieldTrialGroupParameter}sourceid=chrome&ie={inputEncoding}&q={searchTerms}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}{google:instantFieldTrialGroupParameter}client=chrome&hl={language}&q={searchTerms}
CHR - homepage: http://www.google.com/
CHR - Extension: No name found = C:\Documents and Settings\Administrador\Configuración local\Datos de programa\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.2_0\

O1 HOSTS File: ([2011/02/08 02:41:56 | 000,000,978 | -HS- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: 65.54.239.80 dp.msnmessenger.akadns.net
O2 - BHO: (IDMIEHlprObj Class) - {0055C089-8582-441B-A0BF-17B458C2A3A8} - C:\Archivos de programa\Internet Download Manager\IDMIECC.dll (Internet Download Manager, Tonec Inc.)
O2 - BHO: (Adobe PDF Link Helper) - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Archivos de programa\Archivos comunes\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
O2 - BHO: (no name) - {6E13DDE1-2B6E-46CE-8B66-DC8BF36F6B99} - No CLSID value found.
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Archivos de programa\Java\jre6\bin\ssv.dll (Sun Microsystems, Inc.)
O2 - BHO: (Windows Live Aplicación auxiliar de inicio de sesión) - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Archivos de programa\Archivos comunes\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
O3 - HKLM\..\Toolbar: (no name) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {D4027C7F-154A-4066-A1AD-4243D8127440} - No CLSID value found.
O4 - HKLM..\Run: [AudioDeck] C:\Archivos de programa\VIA\VIAudioi\SBADeck\ADeck.exe (VIA Technologies, Inc.)
O4 - HKLM..\Run: [AVP] C:\Archivos de programa\Kaspersky Lab\Kaspersky Anti-Virus 6.0\avp.exe (Kaspersky Lab)
O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [NvMediaCenter] C:\WINDOWS\System32\NvMcTray.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [nwiz] C:\WINDOWS\System32\nwiz.exe ()
O4 - HKLM..\Run: [SunJavaUpdateSched] C:\Archivos de programa\Archivos comunes\Java\Java Update\jusched.exe (Sun Microsystems, Inc.)
O4 - HKCU..\Run: [Facebook Update] C:\Documents and Settings\Administrador\Configuración local\Datos de programa\Facebook\Update\FacebookUpdate.exe (Facebook Inc.)
O4 - HKCU..\Run: [RocketDock] C:\Archivos de programa\RocketDock\RocketDock.exe ()
O4 - HKCU..\Run: [TaskSwitchXP] C:\Archivos de programa\TaskSwitchXP\TaskSwitchXP.exe (Alexander Avdonin)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDesktopCleanupWizard = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoRemoteRecursiveEvents = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DisableStatusMessages = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: VerboseStatus = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMConfigurePrograms = 1
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoLowDiskSpaceChecks = 1
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DisableLockWorkstation = 1
O8 - Extra context menu item: Add to Evernote 4.0 - C:\Archivos de programa\Evernote\Evernote\EvernoteIE.dll (Evernote Corp., 333 W Evelyn Ave. Mountain View, CA 94041)
O8 - Extra context menu item: Descargar con IDM - C:\Archivos de programa\Internet Download Manager\IEExt.htm ()
O8 - Extra context menu item: Descargar con IDM el contenido de video FLV - C:\Archivos de programa\Internet Download Manager\IEGetVL.htm ()
O8 - Extra context menu item: Descargar con IDM todos los enlaces - C:\Archivos de programa\Internet Download Manager\IEGetAll.htm ()
O9 - Extra Button: Estadísticas del componente Web Anti-Virus - {1F460357-8A94-4D71-9CA3-AA4ACF32ED8E} - C:\Archivos de programa\Kaspersky Lab\Kaspersky Anti-Virus 6.0\scieplugin.dll (Kaspersky Lab)
O9 - Extra Button: @C:\Archivos de programa\Evernote\Evernote\Resource.dll,-101 - {A95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\Archivos de programa\Evernote\Evernote\EvernoteIE.dll (Evernote Corp., 333 W Evelyn Ave. Mountain View, CA 94041)
O9 - Extra 'Tools' menuitem : @C:\Archivos de programa\Evernote\Evernote\Resource.dll,-101 - {A95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\Archivos de programa\Evernote\Evernote\EvernoteIE.dll (Evernote Corp., 333 W Evelyn Ave. Mountain View, CA 94041)
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} http://update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1277624141515 (WUWebControl Class)
O16 - DPF: {784797A8-342D-4072-9486-03C8D0F2F0A1} https://www.battlefieldheroes.com/static/updater/BFHUpdater_5.0.31.0.cab (Battlefield Heroes Updater)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_33-windows-i586.cab (Java Plug-in 1.6.0_33)
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab (MessengerStatsClient Class)
O16 - DPF: {CAFEEFAC-0016-0000-0033-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_33-windows-i586.cab (Java Plug-in 1.6.0_33)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_33-windows-i586.cab (Java Plug-in 1.6.0_33)
O16 - DPF: {E6F480FC-BD44-4CBA-B74A-89AF7842937D} http://content.systemrequirementslab.com.s3.amazonaws.com/global/bin/srldetect_cyri_4.5.1.0.cab (SysInfo Class)
O16 - DPF: {E77F23EB-E7AB-4502-8F37-247DBAF1A147} http://gfx1.hotmail.com/mail/w4/m3/photouploadcontrol/MSNPUpld.cab (Windows Live Hotmail Photo Upload Tool)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 143.248.247.160 169.230.26.143
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{F19AE811-FE5A-494C-8CCB-C9186B24FC33}: DhcpNameServer = 143.248.247.160 169.230.26.143
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{F19AE811-FE5A-494C-8CCB-C9186B24FC33}: NameServer = 8.8.8.8,200.45.191.35
O18 - Protocol\Handler\ipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Archivos de programa\Archivos comunes\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Archivos de programa\Archivos comunes\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Archivos de programa\Archivos comunes\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\ms-itss {0A9007C0-4076-11D3-8789-0000F8105754} - C:\Archivos de programa\Archivos comunes\Microsoft Shared\Information Retrieval\MSITSS.DLL (Microsoft Corporation)
O18 - Protocol\Handler\mso-offdap {3D9F03FA-7A94-11D3-BE81-0050048385D1} - C:\Archivos de programa\Archivos comunes\Microsoft Shared\Web Components\10\OWC10.DLL (Microsoft Corporation)
O18 - Protocol\Filter\text/xml {807553E5-5146-11D5-A672-00B0D022E945} - C:\Archivos de programa\Archivos comunes\Microsoft Shared\OFFICE11\MSOXMLMF.DLL (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) - C:\WINDOWS\system32\userinit.exe (Microsoft Corporation)
O20 - Winlogon\Notify\!SASWinLogon: DllName - (C:\Archivos de programa\SUPERAntiSpyware\SASWINLO.DLL) - C:\Archivos de programa\SUPERAntiSpyware\SASWINLO.DLL (SUPERAntiSpyware.com)
O20 - Winlogon\Notify\klogon: DllName - (C:\WINDOWS\system32\klogon.dll) - C:\WINDOWS\system32\klogon.dll (Kaspersky Lab)
O24 - Desktop Components:0 (Mi página de inicio actual) - About:Home
O24 - Desktop WallPaper: C:\Documents and Settings\Administrador\Configuración local\Datos de programa\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\Administrador\Configuración local\Datos de programa\Microsoft\Wallpaper1.bmp
O28 - HKLM ShellExecuteHooks: {5AE067D3-9AFB-48E0-853A-EBB7F4A000DA} - C:\Archivos de programa\SUPERAntiSpyware\SASSEH.DLL (SuperAdBlocker.com)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2010/06/27 03:00:34 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O33 - MountPoints2\{de0d5090-c874-11e1-ae8c-001731338071}\Shell - "" = AutoRun
O33 - MountPoints2\{de0d5090-c874-11e1-ae8c-001731338071}\Shell\AutoRun\command - "" = I:\Startme.exe
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)

NetSvcs: 6to4 - File not found
NetSvcs: Ias - File not found
NetSvcs: Iprip - File not found
NetSvcs: Irmon - File not found
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: UxTuneUp - C:\WINDOWS\system32\uxtuneup.dll (TuneUp Software)
NetSvcs: WmdmPmSp - File not found

CREATERESTOREPOINT
Restore point Set: OTL Restore Point

========== Files/Folders - Created Within 30 Days ==========

[2012/07/12 23:07:43 | 000,036,864 | ---- | C] (NirSoft) -- C:\WINDOWS\nircmd.exe
[2012/07/12 04:00:19 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Administrador\Recent
[2012/07/09 22:35:37 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menú Inicio\Programas\PopCap Games
[2012/07/09 22:35:34 | 000,000,000 | ---D | C] -- C:\Archivos de programa\PopCap Games
[2012/07/09 21:18:11 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Datos de programa\Premium
[2012/07/09 21:09:01 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrador\Datos de programa\SendSpace
[2012/07/09 20:59:10 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Datos de programa\DownloadnSave
[2012/07/09 20:57:59 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Datos de programa\InstallMate
[2012/07/09 00:13:31 | 000,025,200 | ---- | C] (Sony Ericsson Mobile Communications) -- C:\WINDOWS\System32\drivers\ggsemc.sys
[2012/07/09 00:13:30 | 000,012,400 | ---- | C] (Sony Ericsson Mobile Communications) -- C:\WINDOWS\System32\drivers\ggflt.sys
[2012/07/09 00:13:10 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Datos de programa\Sony Ericsson
[2012/07/09 00:13:03 | 000,000,000 | ---D | C] -- C:\Archivos de programa\Sony Ericsson
[2012/07/07 20:55:56 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menú Inicio\Programas\Sony
[2012/07/07 20:54:21 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Datos de programa\Sony
[2012/07/07 20:54:21 | 000,000,000 | ---D | C] -- C:\Archivos de programa\Sony
[2012/06/27 11:39:23 | 000,026,176 | -H-- | C] (LogMeIn, Inc.) -- C:\WINDOWS\System32\hamachi.sys
[2012/06/16 15:16:26 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrador\Datos de programa\Mount&Blade
[2012/06/16 15:08:38 | 000,000,000 | ---D | C] -- C:\Archivos de programa\Mount&Blade
[2010/08/04 02:48:05 | 000,047,360 | ---- | C] (VSO Software) -- C:\Documents and Settings\Administrador\Datos de programa\pcouffin.sys
[4 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[3 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2012/07/13 00:16:51 | 032,084,000 | -HS- | M] () -- C:\WINDOWS\System32\drivers\fidbox.dat
[2012/07/13 00:16:47 | 000,346,400 | -HS- | M] () -- C:\WINDOWS\System32\drivers\fidbox2.dat
[2012/07/13 00:00:00 | 000,000,548 | ---- | M] () -- C:\WINDOWS\tasks\Mantenimiento con 1 clic.job
[2012/07/12 23:59:00 | 000,000,838 | ---- | M] () -- C:\WINDOWS\tasks\Adobe Flash Player Updater.job
[2012/07/12 23:45:00 | 000,001,052 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
[2012/07/12 23:33:00 | 000,001,224 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-1390067357-1364589140-682003330-500UA.job
[2012/07/12 21:30:05 | 000,001,042 | ---- | M] () -- C:\WINDOWS\tasks\FacebookUpdateTaskUserS-1-5-21-1390067357-1364589140-682003330-500UA.job
[2012/07/12 21:30:02 | 000,001,020 | ---- | M] () -- C:\WINDOWS\tasks\FacebookUpdateTaskUserS-1-5-21-1390067357-1364589140-682003330-500Core.job
[2012/07/12 21:09:15 | 000,723,141 | ---- | M] () -- C:\Documents and Settings\Administrador\Escritorio\the_legend_of_korra_by_yuumei-d4uvhpe.jpg
[2012/07/12 20:55:19 | 000,000,025 | ---- | M] () -- C:\WINDOWS\popcinfot.dat
[2012/07/12 15:33:01 | 000,001,172 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-1390067357-1364589140-682003330-500Core.job
[2012/07/12 07:56:04 | 000,001,048 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[2012/07/12 07:56:02 | 000,043,573 | ---- | M] () -- C:\WINDOWS\System32\nvapps.xml
[2012/07/12 07:55:57 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2012/07/12 07:54:43 | 000,430,868 | -HS- | M] () -- C:\WINDOWS\System32\drivers\fidbox.idx
[2012/07/12 07:54:43 | 000,036,272 | -HS- | M] () -- C:\WINDOWS\System32\drivers\fidbox2.idx
[2012/07/11 15:36:45 | 000,070,656 | ---- | M] () -- C:\Documents and Settings\Administrador\Configuración local\Datos de programa\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2012/07/11 01:35:57 | 000,235,960 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2012/07/09 20:31:22 | 000,000,211 | -HS- | M] () -- C:\boot.ini
[2012/07/09 00:23:33 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\System32\drivers\Msft_Kernel_ggsemc_01009.Wdf
[2012/07/09 00:23:33 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\System32\drivers\Msft_Kernel_ggflt_01009.Wdf
[2012/07/09 00:23:31 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\System32\drivers\MsftWdf_Kernel_01009_Coinstaller_Critical.Wdf
[2012/07/09 00:13:29 | 000,025,200 | ---- | M] (Sony Ericsson Mobile Communications) -- C:\WINDOWS\System32\drivers\ggsemc.sys
[2012/07/09 00:13:29 | 000,012,400 | ---- | M] (Sony Ericsson Mobile Communications) -- C:\WINDOWS\System32\drivers\ggflt.sys
[2012/07/08 18:32:56 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\System32\drivers\Msft_Kernel_WinUSB_01007.Wdf
[2012/07/08 18:32:09 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\System32\drivers\MsftWdf_Kernel_01007_Coinstaller_Critical.Wdf
[2012/07/07 19:19:52 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\System32\drivers\UMDF\Msft_User_WpdMtpDr_01_00_00.Wdf
[2012/07/07 18:47:01 | 000,000,298 | ---- | M] () -- C:\WINDOWS\tasks\AppleSoftwareUpdate.job
[2012/07/06 03:48:01 | 000,000,116 | ---- | M] () -- C:\WINDOWS\NeroDigital.ini
[2012/07/03 19:43:02 | 001,373,607 | ---- | M] () -- D:\Adenda Prosap 27-07-2011.jpg
[2012/07/03 19:41:23 | 001,288,655 | ---- | M] () -- D:\Adenda Prosap 20-06-2011.jpg
[2012/07/03 19:39:25 | 001,368,761 | ---- | M] () -- D:\Adenda Prosap 04-12-2009.jpg
[2012/06/29 13:55:58 | 000,022,528 | ---- | M] () -- C:\WINDOWS\AT-Uninstall.exe
[2012/06/18 13:34:40 | 002,872,512 | ---- | M] () -- C:\WINDOWS\System32\pwNative.exe
[2012/06/18 13:34:38 | 000,015,576 | ---- | M] () -- C:\WINDOWS\System32\pwdrvio.sys
[2012/06/18 13:34:38 | 000,010,200 | ---- | M] () -- C:\WINDOWS\System32\pwdspio.sys
[2012/06/13 03:27:03 | 000,485,730 | ---- | M] () -- C:\WINDOWS\System32\perfh00A.dat
[2012/06/13 03:27:03 | 000,423,500 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2012/06/13 03:27:03 | 000,083,320 | ---- | M] () -- C:\WINDOWS\System32\perfc00A.dat
[2012/06/13 03:27:03 | 000,065,628 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[4 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[3 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

========== Files Created - No Company Name ==========

[2012/07/12 23:07:44 | 000,022,528 | ---- | C] () -- C:\WINDOWS\AT-Uninstall.exe
[2012/07/12 23:07:43 | 000,069,660 | ---- | C] () -- C:\WINDOWS\Fart.exe
[2012/07/12 23:07:43 | 000,011,776 | ---- | C] () -- C:\WINDOWS\Colous.exe
[2012/07/12 21:09:08 | 000,723,141 | ---- | C] () -- C:\Documents and Settings\Administrador\Escritorio\the_legend_of_korra_by_yuumei-d4uvhpe.jpg
[2012/07/09 23:21:26 | 000,000,025 | ---- | C] () -- C:\WINDOWS\popcinfot.dat
[2012/07/09 00:23:33 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\System32\drivers\Msft_Kernel_ggsemc_01009.Wdf
[2012/07/09 00:23:33 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\System32\drivers\Msft_Kernel_ggflt_01009.Wdf
[2012/07/09 00:23:31 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\System32\drivers\MsftWdf_Kernel_01009_Coinstaller_Critical.Wdf
[2012/07/08 21:52:54 | 002,872,512 | ---- | C] () -- C:\WINDOWS\System32\pwNative.exe
[2012/07/08 21:52:52 | 000,015,576 | ---- | C] () -- C:\WINDOWS\System32\pwdrvio.sys
[2012/07/08 21:52:51 | 000,010,200 | ---- | C] () -- C:\WINDOWS\System32\pwdspio.sys
[2012/07/08 18:32:56 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\System32\drivers\Msft_Kernel_WinUSB_01007.Wdf
[2012/07/08 18:32:09 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\System32\drivers\MsftWdf_Kernel_01007_Coinstaller_Critical.Wdf
[2012/07/04 08:37:52 | 001,373,607 | ---- | C] () -- D:\Adenda Prosap 27-07-2011.jpg
[2012/07/04 08:37:49 | 001,288,655 | ---- | C] () -- D:\Adenda Prosap 20-06-2011.jpg
[2012/07/04 08:37:46 | 001,368,761 | ---- | C] () -- D:\Adenda Prosap 04-12-2009.jpg
[2012/06/07 19:24:43 | 000,075,932 | ---- | C] () -- C:\WINDOWS\System32\drivers\klick.dat
[2012/06/07 19:24:43 | 000,074,396 | ---- | C] () -- C:\WINDOWS\System32\drivers\klin.dat
[2012/06/07 19:24:29 | 032,084,000 | -HS- | C] () -- C:\WINDOWS\System32\drivers\fidbox.dat
[2012/06/07 19:24:29 | 000,346,400 | -HS- | C] () -- C:\WINDOWS\System32\drivers\fidbox2.dat
[2012/04/19 23:00:40 | 000,650,752 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll
[2012/04/19 23:00:40 | 000,243,200 | ---- | C] () -- C:\WINDOWS\System32\xvidvfw.dll
[2012/04/19 23:00:35 | 000,079,360 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll
[2012/02/16 01:04:55 | 000,003,072 | ---- | C] () -- C:\WINDOWS\System32\iacenc.dll
[2012/02/13 14:29:06 | 000,000,344 | ---- | C] () -- C:\WINDOWS\ULead32.ini
[2012/02/09 16:14:43 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\All Users\Datos de programa\LauncherAccess.dt
[2012/02/09 16

02 | 000,005,632 | ---- | C] () -- C:\WINDOWS\System32\drivers\StarOpen.sys
[2011/12/23 03:55:03 | 000,043,520 | ---- | C] () -- C:\WINDOWS\System32\CmdLineExt03.dll
[2011/12/12 22:37:00 | 000,292,131 | ---- | C] () -- C:\WINDOWS\To the Moon Uninstaller.exe
[2011/11/18 04:03:14 | 000,005,642 | -HS- | C] () -- C:\Documents and Settings\All Users\Datos de programa\KGyGaAvL.sys
[2011/11/18 04:03:14 | 000,000,088 | RHS- | C] () -- C:\Documents and Settings\All Users\Datos de programa\503C702866.sys
[2011/06/25 21:17:36 | 000,051,186 | ---- | C] () -- C:\Documents and Settings\Administrador\Datos de programa\room_v3.dat
[2011/06/18 05:06:22 | 000,000,056 | ---- | C] () -- C:\WINDOWS\kgt2k.INI
[2011/06/13 03:23:04 | 000,000,169 | ---- | C] () -- C:\WINDOWS\RtlRack.ini
[2011/04/12 20:56:52 | 000,000,531 | ---- | C] () -- C:\WINDOWS\eReg.dat
[2011/03/11 20:26:57 | 000,000,018 | ---- | C] () -- C:\WINDOWS\Datoscp.dll
[2011/01/18 07:07:24 | 000,139,080 | ---- | C] () -- C:\WINDOWS\System32\drivers\PnkBstrK.sys
[2011/01/18 07:07:22 | 000,138,056 | ---- | C] () -- C:\Documents and Settings\Administrador\Datos de programa\PnkBstrK.sys
[2011/01/18 07:07:01 | 000,270,240 | ---- | C] () -- C:\WINDOWS\System32\PnkBstrB.exe
[2011/01/18 07:06:55 | 000,075,136 | ---- | C] () -- C:\WINDOWS\System32\PnkBstrA.exe
[2011/01/12 06:47:39 | 000,000,832 | ---- | C] () -- C:\Documents and Settings\Administrador\Datos de programa\Launch Internet Explorer Browser.lnk
[2010/12/17 07:36:47 | 000,000,167 | ---- | C] () -- C:\WINDOWS\game.ini
[2010/11/21 06:26:59 | 000,000,245 | ---- | C] () -- C:\WINDOWS\kaillera.ini
[2010/10/19 03:17:13 | 000,000,122 | ---- | C] () -- C:\WINDOWS\WA.INI
[2010/08/14 01:33:34 | 000,087,608 | ---- | C] () -- C:\Documents and Settings\Administrador\Datos de programa\inst.exe
[2010/08/04 02:48:05 | 000,081,920 | ---- | C] () -- C:\Documents and Settings\Administrador\Datos de programa\ezpinst.exe
[2010/08/04 02:48:05 | 000,007,176 | ---- | C] () -- C:\Documents and Settings\Administrador\Datos de programa\pcouffin.cat
[2010/08/04 02:48:05 | 000,001,144 | ---- | C] () -- C:\Documents and Settings\Administrador\Datos de programa\pcouffin.inf
[2010/06/28 01:54:18 | 001,091,338 | ---- | C] () -- C:\Documents and Settings\Administrador\Datos de programa\NMM-MetaData.db
[2010/06/27 20:35:00 | 000,000,142 | ---- | C] () -- C:\Documents and Settings\Administrador\Configuración local\Datos de programa\fusioncache.dat
[2010/06/27 03:21:27 | 000,070,656 | ---- | C] () -- C:\Documents and Settings\Administrador\Configuración local\Datos de programa\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini

========== LOP Check ==========

[2012/06/16 03:11:34 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrador\Datos de programa\.minecraft
[2010/06/27 05:16:34 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrador\Datos de programa\ACD Systems
[2012/06/02 06:02:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrador\Datos de programa\Audacity
[2012/04/19 23:01:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrador\Datos de programa\BabylonToolbar
[2012/02/13 20:06:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrador\Datos de programa\Bitsoft
[2011/11/03 02:31:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrador\Datos de programa\BSplayer PRO
[2012/02/13 20:06:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrador\Datos de programa\cidialog32
[2010/07/01 20:18:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrador\Datos de programa\DAEMON Tools
[2012/07/07 19:32:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrador\Datos de programa\DAEMON Tools Lite
[2010/07/01 20:18:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrador\Datos de programa\DAEMON Tools Pro
[2011/06/23 16:23:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrador\Datos de programa\DataLayer
[2012/07/13 00:11:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrador\Datos de programa\DMCache
[2012/02/25 18:03:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrador\Datos de programa\Downloaded Installations
[2012/06/23 18:35:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrador\Datos de programa\Dropbox
[2011/02/23 02:14:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrador\Datos de programa\DVDFab
[2011/01/12 07:04:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrador\Datos de programa\ElevatedDiagnostics
[2011/05/19 02:17:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrador\Datos de programa\FOG Downloader
[2011/05/05 19:03:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrador\Datos de programa\FreeVideoConverter
[2012/06/07 18:48:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrador\Datos de programa\IDM
[2012/07/03 19:43:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrador\Datos de programa\Image Zone Express
[2012/05/12 22:23:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrador\Datos de programa\Kermit 95
[2011/03/17 21:28:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrador\Datos de programa\Minecraft Actualizable
[2012/06/05 17:12:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrador\Datos de programa\Mipony
[2012/06/16 15:54:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrador\Datos de programa\Mount&Blade
[2011/05/21 06:28:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrador\Datos de programa\Mount&Blade Warband
[2011/06/18 07:18:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrador\Datos de programa\Mumble
[2010/06/28 01:42:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrador\Datos de programa\Nokia
[2010/12/23 18:16:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrador\Datos de programa\Nokia Multimedia Player
[2011/11/03 14:52:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrador\Datos de programa\Panasonic
[2010/06/28 01:40:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrador\Datos de programa\PC Suite
[2011/01/20 19:13:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrador\Datos de programa\Rovio
[2012/02/09 17:22:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrador\Datos de programa\Samsung
[2012/07/09 21:09:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrador\Datos de programa\SendSpace
[2010/07/01 20:24:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrador\Datos de programa\Sports Interactive
[2011/10/06 06:29:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrador\Datos de programa\stickies
[2011/12/02 17:28:34 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrador\Datos de programa\Thinstall
[2011/12/12 23:44:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrador\Datos de programa\To the Moon - Freebird Games
[2012/03/17 05:24:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrador\Datos de programa\Trillian
[2010/09/19 05:18:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrador\Datos de programa\TS3Client
[2010/06/27 05:17:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrador\Datos de programa\TuneUp Software
[2011/11/18 04:06:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrador\Datos de programa\Ulead Systems
[2012/07/13 00:19:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrador\Datos de programa\uTorrent
[2011/05/05 17:56:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrador\Datos de programa\Vso
[2011/05/08 00:07:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrador\Datos de programa\Winsplit Revolution
[2010/06/27 05:15:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Datos de programa\ACD Systems
[2012/06/07 19:01:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Datos de programa\AVAST Software
[2012/04/19 22:08:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Datos de programa\Babylon
[2011/09/28 16:39:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Datos de programa\ClubSanDisk
[2010/07/01 20:17:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Datos de programa\DAEMON Tools Lite
[2010/06/28 01:30:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Datos de programa\Downloaded Installations
[2012/07/11 05:32:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Datos de programa\DownloadnSave
[2012/05/18 15:44:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Datos de programa\firebird
[2012/07/09 20:57:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Datos de programa\InstallMate
[2011/11/17 17

18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Datos de programa\InterVideo
[2012/02/26 18:06:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Datos de programa\Messenger Plus!
[2011/11/03 14:52:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Datos de programa\Panasonic
[2010/06/28 01:40:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Datos de programa\PC Suite
[2011/06/13 15:54:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Datos de programa\PopCap Games
[2012/07/09 21:18:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Datos de programa\Premium
[2012/02/13 13:56:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Datos de programa\ScreenCapture
[2011/11/17 17:16:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Datos de programa\SmartSound Software Inc
[2012/07/07 20:54:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Datos de programa\Sony
[2010/07/02 02:58:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Datos de programa\Sports Interactive
[2012/05/16 05:49:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Datos de programa\TechSmith
[2010/06/27 05:17:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Datos de programa\TuneUp Software
[2011/11/17 17:08:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Datos de programa\Ulead Systems
[2011/02/23 02:15:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Datos de programa\vsosdk
[2010/06/27 05:17:02 | 000,000,000 | -HSD | M] -- C:\Documents and Settings\All Users\Datos de programa\{55A29068-F2CE-456C-9148-C869879E2357}
[2012/07/12 21:30:02 | 000,001,020 | ---- | M] () -- C:\WINDOWS\Tasks\FacebookUpdateTaskUserS-1-5-21-1390067357-1364589140-682003330-500Core.job
[2012/07/12 21:30:05 | 000,001,042 | ---- | M] () -- C:\WINDOWS\Tasks\FacebookUpdateTaskUserS-1-5-21-1390067357-1364589140-682003330-500UA.job
[2012/07/13 00:00:00 | 000,000,548 | ---- | M] () -- C:\WINDOWS\Tasks\Mantenimiento con 1 clic.job

========== Purity Check ==========

========== Custom Scans ==========

< %SYSTEMDRIVE%\*.* >
[2012/05/23 21:15:57 | 000,000,000 | ---- | M] () -- C:\AILog.txt
[2012/07/12 23:09:46 | 000,010,831 | ---- | M] () -- C:\AT-Destroyer.txt
[2010/06/27 03:00:34 | 000,000,000 | ---- | M] () -- C:\AUTOEXEC.BAT
[2012/07/09 20:31:22 | 000,000,211 | -HS- | M] () -- C:\boot.ini
[2001/08/24 08:00:00 | 000,004,952 | RHS- | M] () -- C:\Bootfont.bin
[2012/02/09 17:20:36 | 000,000,074 | ---- | M] () -- C:\CMLoader.log
[2010/06/27 03:00:34 | 000,000,000 | ---- | M] () -- C:\CONFIG.SYS
[2010/06/27 03:00:34 | 000,000,000 | RHS- | M] () -- C:\IO.SYS
[2006/10/18 19:00:42 | 001,470,464 | -HS- | M] () -- C:\libmySQL50.dll
[2010/06/27 03:00:34 | 000,000,000 | RHS- | M] () -- C:\MSDOS.SYS
[2004/08/03 17:38:34 | 000,047,564 | RHS- | M] () -- C:\NTDETECT.COM
[2010/06/27 16:29:13 | 000,251,168 | RHS- | M] () -- C:\ntldr
[2012/07/12 07:55:55 | 1610,612,736 | -HS- | M] () -- C:\pagefile.sys
[2012/03/15 12:12:44 | 000,000,510 | ---- | M] () -- C:\settings.ini

< End of report >

**SanMar** · 13/07/12, 00:38:29

Hola:

Realiza lo siguiente:

1.-Ejecutar OTL.exe

Pegue el siguiente script bajo la casilla Análisis Personalizados/Codigo de Reparación:

NOTA: No copiar la palabra codigo.

Código:

:OTL
SRV - (Web Assistant Updater) -- C:\Archivos de programa\Web Assistant\ExtensionUpdaterService.exe File not found
DRV - (XDva387) -- C:\WINDOWS\system32\XDva387.sys File not found
DRV - (XDva380) -- C:\WINDOWS\system32\XDva380.sys File not found
DRV - (XDva375) -- C:\WINDOWS\system32\XDva375.sys File not found
DRV - (XDva358) -- C:\WINDOWS\system32\XDva358.sys File not found
IE - HKCU\..\SearchScopes\{CFF4DB9B-135F-47c0-9269-B4C6572FD61A}: "URL" = http://mystart.incredibar.com/mb139/?search={searchTerms}&loc=IB_DS&a=6OyHsMO8Ep&i=26
FF - prefs.js..browser.search.defaultenginename: "MyStart Search"
O2 - BHO: (no name) - {6E13DDE1-2B6E-46CE-8B66-DC8BF36F6B99} - No CLSID value found.
O3 - HKLM\..\Toolbar: (no name) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {D4027C7F-154A-4066-A1AD-4243D8127440} - No CLSID value found.
O4 - HKCU..\Run: [Facebook Update] C:\Documents and Settings\Administrador\Configuración local\Datos de programa\Facebook\Update\FacebookUpdate.exe (Facebook Inc.)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_33-windows-i586.cab (Java Plug-in 1.6.0_33)
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab (MessengerStatsClient Class)
O16 - DPF: {CAFEEFAC-0016-0000-0033-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_33-windows-i586.cab (Java Plug-in 1.6.0_33)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_33-windows-i586.cab (Java Plug-in 1.6.0_33)
O33 - MountPoints2\{de0d5090-c874-11e1-ae8c-001731338071}\Shell - "" = AutoRun
O33 - MountPoints2\{de0d5090-c874-11e1-ae8c-001731338071}\Shell\AutoRun\command - "" = I:\Startme.exe
[4 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[3 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
[2012/07/12 21:30:05 | 000,001,042 | ---- | M] () -- C:\WINDOWS\tasks\FacebookUpdateTaskUserS-1-5-21-1390067357-1364589140-682003330-500UA.job
[2012/07/12 21:30:02 | 000,001,020 | ---- | M] () -- C:\WINDOWS\tasks\FacebookUpdateTaskUserS-1-5-21-1390067357-1364589140-682003330-500Core.job
[4 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[3 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
[2012/04/19 23:01:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrador\Datos de programa\BabylonToolbar
[2012/04/19 22:08:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Datos de programa\Babylon
[2012/07/12 21:30:02 | 000,001,020 | ---- | M] () -- C:\WINDOWS\Tasks\FacebookUpdateTaskUserS-1-5-21-1390067357-1364589140-682003330-500Core.job
 [2012/07/12 21:30:05 | 000,001,042 | ---- | M] () -- C:\WINDOWS\Tasks\FacebookUpdateTaskUserS-1-5-21-1390067357-1364589140-682003330-500UA.job




:files
ipconfig /flushdns /c
ipconfig /renew /c

:commands
[resethosts]
[emptyflash]
[emptytemp]
[emptyjava]
[createrestorepoint]
[Reboot]

Luego haga clic en el botón Reparar en la parte superior.
Deje que el programa se ejecute sin trabas, reinicie cuando lo pida hacer.
Al reiniciar se creará un reporte por defecto en C:\_OTL\MovedFiles, copie y pegue ese log en la próxima respuesta.

Nos comentas los resultados.

Salu2.

**KumaL** · 13/07/12, 09:11:09

Listo, aca esta el reporte:

All processes killed
========== OTL ==========
Service Web Assistant Updater stopped successfully!
Service Web Assistant Updater deleted successfully!
File C:\Archivos de programa\Web Assistant\ExtensionUpdaterService.exe File not found not found.
Service XDva387 stopped successfully!
Service XDva387 deleted successfully!
File C:\WINDOWS\system32\XDva387.sys File not found not found.
Service XDva380 stopped successfully!
Service XDva380 deleted successfully!
File C:\WINDOWS\system32\XDva380.sys File not found not found.
Service XDva375 stopped successfully!
Service XDva375 deleted successfully!
File C:\WINDOWS\system32\XDva375.sys File not found not found.
Service XDva358 stopped successfully!
Service XDva358 deleted successfully!
File C:\WINDOWS\system32\XDva358.sys File not found not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{CFF4DB9B-135F-47c0-9269-B4C6572FD61A}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CFF4DB9B-135F-47c0-9269-B4C6572FD61A}\ not found.
Prefs.js: "MyStart Search" removed from browser.search.defaultenginename
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6E13DDE1-2B6E-46CE-8B66-DC8BF36F6B99}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{6E13DDE1-2B6E-46CE-8B66-DC8BF36F6B99}\ not found.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}\ not found.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{D4027C7F-154A-4066-A1AD-4243D8127440} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{D4027C7F-154A-4066-A1AD-4243D8127440}\ not found.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\Facebook Update deleted successfully.
C:\Documents and Settings\Administrador\Configuración local\Datos de programa\Facebook\Update\FacebookUpdate.exe moved successfully.
Starting removal of ActiveX control {8AD9C840-044E-11D1-B3E9-00805F499D93}
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{8AD9C840-044E-11D1-B3E9-00805F499D93}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{8AD9C840-044E-11D1-B3E9-00805F499D93}\ deleted successfully.
Registry key HKEY_CURRENT_USER\SOFTWARE\Classes\CLSID\{8AD9C840-044E-11D1-B3E9-00805F499D93}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{8AD9C840-044E-11D1-B3E9-00805F499D93}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{8AD9C840-044E-11D1-B3E9-00805F499D93}\ not found.
Starting removal of ActiveX control {C3F79A2B-B9B4-4A66-B012-3EE46475B072}
Registry error reading value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{C3F79A2B-B9B4-4A66-B012-3EE46475B072}\DownloadInformation\\INF .
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{C3F79A2B-B9B4-4A66-B012-3EE46475B072}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{C3F79A2B-B9B4-4A66-B012-3EE46475B072}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{C3F79A2B-B9B4-4A66-B012-3EE46475B072}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{C3F79A2B-B9B4-4A66-B012-3EE46475B072}\ not found.
Starting removal of ActiveX control {CAFEEFAC-0016-0000-0033-ABCDEFFEDCBA}
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{CAFEEFAC-0016-0000-0033-ABCDEFFEDCBA}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0033-ABCDEFFEDCBA}\ deleted successfully.
Registry key HKEY_CURRENT_USER\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0033-ABCDEFFEDCBA}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{CAFEEFAC-0016-0000-0033-ABCDEFFEDCBA}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0033-ABCDEFFEDCBA}\ not found.
Starting removal of ActiveX control {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{de0d5090-c874-11e1-ae8c-001731338071}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{de0d5090-c874-11e1-ae8c-001731338071}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{de0d5090-c874-11e1-ae8c-001731338071}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{de0d5090-c874-11e1-ae8c-001731338071}\ not found.
File I:\Startme.exe not found.
C:\WINDOWS\002482_.tmp deleted successfully.
C:\WINDOWS\msdownld.tmp folder deleted successfully.
C:\WINDOWS\SET3.tmp deleted successfully.
C:\WINDOWS\SET4.tmp deleted successfully.
C:\WINDOWS\System32\CONFIG.TMP deleted successfully.
C:\WINDOWS\System32\SET284.tmp deleted successfully.
C:\WINDOWS\System32\SET290.tmp deleted successfully.
C:\WINDOWS\tasks\FacebookUpdateTaskUserS-1-5-21-1390067357-1364589140-682003330-500UA.job moved successfully.
C:\WINDOWS\tasks\FacebookUpdateTaskUserS-1-5-21-1390067357-1364589140-682003330-500Core.job moved successfully.
C:\Documents and Settings\Administrador\Datos de programa\BabylonToolbar\BabylonToolbar folder moved successfully.
C:\Documents and Settings\All Users\Datos de programa\Babylon folder moved successfully.
File C:\WINDOWS\Tasks\FacebookUpdateTaskUserS-1-5-21-1390067357-1364589140-682003330-500Core.job not found.
File C:\WINDOWS\Tasks\FacebookUpdateTaskUserS-1-5-21-1390067357-1364589140-682003330-500UA.job not found.
========== FILES ==========
< ipconfig /flushdns /c >
Configuración IP de Windows
Se vació con éxito la caché de resolución de DNS.
D:\Downloads\cmd.bat deleted successfully.
D:\Downloads\cmd.txt deleted successfully.
< ipconfig /renew /c >
Configuración IP de Windows
Adaptador Ethernet Conexión de área local :
Sufijo de conexión específica DNS :
Dirección IP. . . . . . . . . . . : 192.168.1.2
Máscara de subred . . . . . . . . : 255.255.255.0
Puerta de enlace predeterminada : 192.168.1.1
D:\Downloads\cmd.bat deleted successfully.
D:\Downloads\cmd.txt deleted successfully.
========== COMMANDS ==========
C:\WINDOWS\System32\drivers\etc\Hosts moved successfully.
HOSTS file reset successfully

[EMPTYFLASH]

User: Administrador
->Flash cache emptied: 2610725 bytes

User: All Users

User: Default User

User: LocalService

User: NetworkService

Total Flash Files Cleaned = 2,00 mb

[EMPTYTEMP]

User: Administrador
->Temp folder emptied: 226093 bytes
->Temporary Internet Files folder emptied: 120212200 bytes
->Java cache emptied: 5782166 bytes
->FireFox cache emptied: 231010193 bytes
->Google Chrome cache emptied: 32613546 bytes
->Flash cache emptied: 0 bytes

User: All Users

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes

User: LocalService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 535336 bytes

User: NetworkService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 98851994 bytes

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32\dllcache .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 49152 bytes
RecycleBin emptied: 0 bytes

Total Files Cleaned = 467,00 mb

[EMPTYJAVA]

User: Administrador
->Java cache emptied: 0 bytes

User: All Users

User: Default User

User: LocalService

User: NetworkService

Total Java Files Cleaned = 0,00 mb

Restore point Set: OTL Restore Point

OTL by OldTimer - Version 3.2.54.0 log created on 07132012_100318

Files\Folders moved on Reboot...

PendingFileRenameOperations files...

Registry entries deleted on Reboot...

**SanMar** · 13/07/12, 12:54:31

Hola:

Has probado los navegadores ? No has comentado como sigue el problema.

Salu2.

**KumaL** · 13/07/12, 14:15:54

Disculpa, pense que lo habia hecho >_<

Todo ok, ningun problema. Anteriormente, configurando cada navegador, lo habia sacado de la página de inicio, pero aparecia de vez en cuando como el buscador predeterminado, en vez de Google (que habia puesto). Con esto, parece que dejo de suceder.

Creo que ya esta solucionado. Muchisimas gracias.

**SanMar** · 13/07/12, 15:42:14

Hola KumaL

Para terminar:

1.-Ejecute OTL.exe:

Haga click en el botón Limpiar.
Se desintalarán las herramientas usadas durante el proceso de desinfección.
Sea paciente mientras se realiza la desinstalación.
Al terminar reinicie el sistema

-------------------------------

Que bueno que hayas podido resolver tu problema..!!

Si por alguna razón necesitas reabrir este mensaje, le das clik a esta imagen

, arriba a la derecha del post, comentando los motivos por los que necesitas reabrir el tema.

Como Reportar Mensajes?.

***Tema Solucionado***

Como recomendación final, te invitamos a seguirnos en nuestros canales de difusión:

Blog,

Twitter,

Facebook,

vía E-Mail, para estar al tanto de los nuevos malwares y como prevenirlos.

Salu2.

Eliminar Mystart. (Solucionado)

Herramientas

Eliminar Mystart. (Solucionado)

Re: Eliminar Mystart

Re: Eliminar Mystart

Re: Eliminar Mystart

Re: Eliminar Mystart

Re: Eliminar Mystart

Re: Eliminar Mystart

Re: Eliminar Mystart

Re: Eliminar Mystart

Re: Eliminar Mystart