• Registrarse
  • Iniciar sesión


  • Página 1 de 6 12345 ... ÚltimoÚltimo
    Resultados 1 al 10 de 56

    No conecto con GOOGLE. (Reabierto)

    Hola desde hace varios dias no puedo conectarme a Google. Ni desde IE ni Firefox. Cualquier otra pagina si se abre con normalidad. Curiosamente la vuestra, http://www.forospyware.com/foro-oficial-de-hijackthis-en-espanol/ tarda más de lo normal, aparece el encabezamiento ...

    1. #1
      Usuario Avatar de JLSaura
      Registrado
      abr 2009
      Ubicación
      Madrid
      Mensajes
      104

      Triste No conecto con GOOGLE. (Reabierto)

      Hola desde hace varios dias no puedo conectarme a Google. Ni desde IE ni Firefox.
      Cualquier otra pagina si se abre con normalidad.
      Curiosamente la vuestra, http://www.forospyware.com/foro-oficial-de-hijackthis-en-espanol/ tarda más de lo normal, aparece el encabezamiento y al cabo de unos 10-15 segundos el resto.....????.

      No sé si tendrá relación pero McAfee me detectó un archivo infectado "desktop.ini" (C:\windows\assebly\gac), como troyano el 19 de agosto. Desde ese dia los iconos del escritorio se descolocan cada vez que los ordeno.

      Uso "CCleaner" y "Glary Utilities" a diario. Y una vez por semana "Malwarebytes Anti-Malware"en modo Analisis Rápido.

      Adjunto los logos de "HiJackThis", el de "Malwarebytes Anti-Malware", y el de "A/T-Destroyer". Tambien el de "TDSSKiller" pues he visto que mi problema era similar al del asunto "Me atacó a los buscadores" que lleva "Javierhf".

      Al ejecutar "HiJackThis" me apareció esta ventana:



      No borré ni añadí nada. Aqui esta mi archivo "Hosts":



      Malwarebytes Anti-Malware 1.62.0.1300
      www.malwarebytes.org

      Versión de la Base de Datos: v2012.09.08.07

      Windows XP Service Pack 3 x86 NTFS
      Internet Explorer 8.0.6001.18702
      Administrator :: JL-CDE7321A9EC4 [administrador]

      08/09/2012 21:46:00
      mbam-log-2012-09-08 (21-46-00).txt

      Tipos de Análisis: Análisis Completo (C:\|)
      Opciones de análisis activado: Memoria | Inicio | Registro | Sistema de archivos | Heurística/Extra | Heurística/Shuriken | PUP | PUM | P2P
      Opciones de análisis desactivados:
      Objetos examinados: 363128
      Tiempo transcurrido: 5 hora(s), 27 minuto(s), 36 segundo(s)

      Procesos en Memoria Detectados: 0
      (No se han detectado elementos maliciosos)

      Módulos de Memoria Detectados: 0
      (No se han detectado elementos maliciosos)

      Claves del Registro Detectados: 0
      (No se han detectado elementos maliciosos)

      Valores del Registro Detectados: 0
      (No se han detectado elementos maliciosos)

      Elementos de Datos del Registro Detectados: 0
      (No se han detectado elementos maliciosos)

      Carpetas Detectadas: 0
      (No se han detectado elementos maliciosos)

      Archivos Detectados: 24
      C:\Program Files\Descargas\FLVPlayer\FLVPlayer30Upgrade.exe (PUP.BundleOffers.IIQ) -> No se tomaron medidas.
      c:\documents and settings\administrator\local settings\application data\sun\java\deployment\cache\6.0\5\4ad7e6c5-7e62e025 (Trojan.FakeAlert.FSA18) -> En

      cuarentena y eliminado con éxito.
      c:\documents and settings\administrator\local settings\application data\{31ae1b8d-abf7-232f-defc-1568c0f4d1e9}\n (Trojan.Agent) -> En cuarentena y eliminado

      con éxito.
      c:\program files\adobe\adobe photoshop lightroom 3\descarga e instrucciones\keygen.exe (Malware.Packer.Gen) -> En cuarentena y eliminado con éxito.
      c:\program files\topaz labs\topaz\ta402\topaz.adjust.v4.0.2.incl.keymaker-core\keygen\keygen.exe (Trojan.Downloader) -> En cuarentena y eliminado con éxito.
      c:\program files\topaz labs\topaz\td203\topaz.detail.v2.0.3.incl.keymaker-core\keygen\keygen.exe (Trojan.Downloader) -> En cuarentena y eliminado con éxito.
      c:\program files\topaz labs\topaz\tdjpeg400\topaz.dejpeg.v4.0.0.incl.keymaker-core\keygen\keygen.exe (Trojan.Downloader) -> En cuarentena y eliminado con

      éxito.
      c:\program files\topaz labs\topaz\tr2010\reset activation 2010.exe (Trojan.Bumat) -> En cuarentena y eliminado con éxito.
      c:\program files\topaz labs\topaz\trm203\topaz.remask.v2.0.3.incl.keymaker-core\keygen\keygen.exe (Trojan.Downloader) -> En cuarentena y eliminado con éxito.
      c:\program files\topaz labs\topaz\ts300\topaz.simplify.v3.0.0.incl.keymaker-core\keygen\keygen.exe (Trojan.Downloader) -> En cuarentena y eliminado con

      éxito.
      c:\system volume information\_restore{3a2a136d-3cdb-4312-a436-5b4e24fd959a}\rp267\a0068393.exe (Trojan.Downloader) -> En cuarentena y eliminado con éxito.
      c:\system volume information\_restore{3a2a136d-3cdb-4312-a436-5b4e24fd959a}\rp267\a0068394.exe (Trojan.Bumat) -> En cuarentena y eliminado con éxito.
      c:\system volume information\_restore{3a2a136d-3cdb-4312-a436-5b4e24fd959a}\rp267\a0068398.exe (Trojan.Downloader) -> En cuarentena y eliminado con éxito.
      c:\system volume information\_restore{3a2a136d-3cdb-4312-a436-5b4e24fd959a}\rp267\a0068402.exe (Trojan.Downloader) -> En cuarentena y eliminado con éxito.
      c:\system volume information\_restore{3a2a136d-3cdb-4312-a436-5b4e24fd959a}\rp267\a0068406.exe (Trojan.Downloader) -> En cuarentena y eliminado con éxito.
      c:\system volume information\_restore{3a2a136d-3cdb-4312-a436-5b4e24fd959a}\rp267\a0068472.ini (Trojan.0access) -> En cuarentena y eliminado con éxito.
      c:\system volume information\_restore{3a2a136d-3cdb-4312-a436-5b4e24fd959a}\rp267\a0068491.ini (Trojan.0access) -> En cuarentena y eliminado con éxito.
      c:\system volume information\_restore{3a2a136d-3cdb-4312-a436-5b4e24fd959a}\rp269\a0072347.exe (Malware.Packer.Gen) -> En cuarentena y eliminado con éxito.
      c:\system volume information\_restore{3a2a136d-3cdb-4312-a436-5b4e24fd959a}\rp269\a0072348.exe (Trojan.Downloader) -> En cuarentena y eliminado con éxito.
      c:\system volume information\_restore{3a2a136d-3cdb-4312-a436-5b4e24fd959a}\rp269\a0072349.exe (Trojan.Downloader) -> En cuarentena y eliminado con éxito.
      c:\system volume information\_restore{3a2a136d-3cdb-4312-a436-5b4e24fd959a}\rp269\a0072350.exe (Trojan.Downloader) -> En cuarentena y eliminado con éxito.
      c:\system volume information\_restore{3a2a136d-3cdb-4312-a436-5b4e24fd959a}\rp269\a0072351.exe (Trojan.Bumat) -> En cuarentena y eliminado con éxito.
      c:\system volume information\_restore{3a2a136d-3cdb-4312-a436-5b4e24fd959a}\rp269\a0072352.exe (Trojan.Downloader) -> En cuarentena y eliminado con éxito.
      c:\system volume information\_restore{3a2a136d-3cdb-4312-a436-5b4e24fd959a}\rp269\a0072353.exe (Trojan.Downloader) -> En cuarentena y eliminado con éxito.

      fin)



      Logfile of Trend Micro HijackThis v2.0.4
      Scan saved at 18:56:29, on 09/09/2012
      Platform: Windows XP SP3 (WinNT 5.01.2600)
      MSIE: Internet Explorer v8.00 (8.00.6001.18702)
      Boot mode: Normal

      Running processes:
      C:\WINDOWS\System32\smss.exe
      C:\WINDOWS\system32\winlogon.exe
      C:\WINDOWS\system32\services.exe
      C:\WINDOWS\system32\lsass.exe
      C:\WINDOWS\system32\svchost.exe
      C:\WINDOWS\System32\svchost.exe
      C:\WINDOWS\system32\svchost.exe
      C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
      C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
      C:\Program Files\Intel\Wireless\Bin\WLKeeper.exe
      C:\WINDOWS\Explorer.EXE
      C:\WINDOWS\system32\spoolsv.exe
      C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
      C:\WINDOWS\system32\astsrv.exe
      C:\Program Files\Bonjour\mDNSResponder.exe
      C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
      C:\WINDOWS\eHome\ehRecvr.exe
      C:\WINDOWS\eHome\ehSched.exe
      C:\Program Files\Common Files\Mcafee\McSvcHost\McSvHost.exe
      C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
      C:\WINDOWS\system32\mfevtps.exe
      C:\Program Files\Dell\QuickSet\NICCONFIGSVC.exe
      C:\WINDOWS\system32\nvsvc32.exe
      C:\Program Files\Sony\PMB\PMBDeviceInfoProvider.exe
      C:\WINDOWS\system32\HPZipm12.exe
      C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
      C:\WINDOWS\system32\svchost.exe
      C:\WINDOWS\system32\Pen_Tablet.exe
      C:\WINDOWS\system32\MsPMSPSv.exe
      C:\Program Files\Common Files\McAfee\SystemCore\mcshield.exe
      C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe
      C:\WINDOWS\system32\WTablet\Pen_TabletUser.exe
      C:\WINDOWS\system32\Pen_Tablet.exe
      C:\Program Files\Intel\Wireless\bin\ZCfgSvc.exe
      C:\Program Files\Intel\Wireless\Bin\ifrmewrk.exe
      C:\WINDOWS\System32\DLA\DLACTRLW.EXE
      C:\Program Files\McAfee.com\Agent\mcagent.exe
      C:\WINDOWS\system32\rundll32.exe
      C:\Program Files\Adobe\Acrobat 10.0\Acrobat\Acrotray.exe
      C:\Program Files\Descargas\iPod\iTunesHelper.exe
      C:\Program Files\Common Files\Research In Motion\USB Drivers\RIMBBLaunchAgent.exe
      C:\Program Files\SigmaTel\C-Major Audio\WDM\stsystra.exe
      C:\Program Files\Descargas\HJT\Advanced System Care\Advanced SystemCare 3\Sup_SmartRAM.exe
      C:\WINDOWS\system32\ctfmon.exe
      C:\Program Files\Canon\CAL\CALMAIN.exe
      C:\Program Files\Descargas\Daemon\DAEMON Tools Lite\DTLite.exe
      C:\WINDOWS\system32\dllhost.exe
      C:\WINDOWS\system32\rundll32.exe
      C:\PROGRA~1\Intel\Wireless\Bin\Dot1XCfg.exe
      C:\Program Files\Descargas\iPod\bin\iPodService.exe
      C:\Program Files\Descargas\HJT\HijackThis\Trend Micro\HiJackThis\HiJackThis.exe
      C:\Program Files\TechSmith\SnagIt 8\SnagIt32.exe
      C:\Program Files\TechSmith\SnagIt 8\TSCHelp.exe
      C:\Program Files\TechSmith\SnagIt 8\SnagPriv.exe
      C:\WINDOWS\system32\NOTEPAD.EXE

      R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.es/
      R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
      R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
      R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
      R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
      R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://es.search.yahoo.com/search?fr=mcafee&p=%s%s
      R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
      R3 - URLSearchHook: McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll
      O1 - Hosts: ::1 localhost
      O2 - BHO: SnagIt Toolbar Loader - {00C6482D-C502-44C8-8409-FCE54AD9C208} - C:\Program Files\TechSmith\SnagIt 8\SnagItBHO.dll
      O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
      O2 - BHO: scriptproxy - {7DB2D5A0-7241-4E79-B68D-6309F01C5231} - C:\Program Files\Common Files\McAfee\SystemCore\ScriptSn.20120628113508.dll
      O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
      O2 - BHO: Adobe PDF Conversion Toolbar Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files\Common

      Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
      O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.2.4204.1700\swg.dll
      O2 - BHO: McAfee SiteAdvisor BHO - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll
      O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - (no file)
      O2 - BHO: SmartSelect - {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
      O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
      O3 - Toolbar: SnagIt - {8FF5E183-ABDE-46EB-B09E-D2AAB95CABE3} - C:\Program Files\TechSmith\SnagIt 8\SnagItIEAddin.dll
      O3 - Toolbar: McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll
      O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
      O4 - HKLM\..\Run: [IntelZeroConfig] "C:\Program Files\Intel\Wireless\bin\ZCfgSvc.exe"
      O4 - HKLM\..\Run: [IntelWireless] "C:\Program Files\Intel\Wireless\Bin\ifrmewrk.exe" /tf Intel PROSet/Wireless
      O4 - HKLM\..\Run: [DLA] C:\WINDOWS\System32\DLA\DLACTRLW.EXE
      O4 - HKLM\..\Run: [mcui_exe] "C:\Program Files\McAfee.com\Agent\mcagent.exe" /runkey
      O4 - HKLM\..\Run: [BluetoothAuthenticationAgent] rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent
      O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
      O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
      O4 - HKLM\..\Run: [Adobe Acrobat Speed Launcher] "C:\Program Files\Adobe\Acrobat 10.0\Acrobat\Acrobat_sl.exe"
      O4 - HKLM\..\Run: [Acrobat Assistant 8.0] "C:\Program Files\Adobe\Acrobat 10.0\Acrobat\Acrotray.exe"
      O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe"
      O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
      O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\Descargas\iPod\iTunesHelper.exe"
      O4 - HKLM\..\Run: [UserFaultCheck] %systemroot%\system32\dumprep 0 -u
      O4 - HKLM\..\Run: [RIMBBLaunchAgent.exe] C:\Program Files\Common Files\Research In Motion\USB Drivers\RIMBBLaunchAgent.exe
      O4 - HKLM\..\Run: [SigmatelSysTrayApp] %ProgramFiles%\SigmaTel\C-Major Audio\WDM\stsystra.exe
      O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre7\bin\jusched.exe"
      O4 - HKCU\..\Run: [SmartRAM] "C:\Program Files\Descargas\HJT\Advanced System Care\Advanced SystemCare 3\Sup_SmartRAM.exe" /m
      O4 - HKCU\..\Run: [McAfee Update] C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\mcupdate_1319986845.exe /insfin

      C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\mcupdate_1319986845.ini /syncfin
      O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
      O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\Descargas\Daemon\DAEMON Tools Lite\DTLite.exe" -autorun
      O4 - HKUS\S-1-5-21-861567501-1614895754-839522115-500\..\Run: [SmartRAM] "C:\Program Files\Descargas\HJT\Advanced System Care\Advanced SystemCare

      3\Sup_SmartRAM.exe" /m (User '?')
      O4 - HKUS\S-1-5-21-861567501-1614895754-839522115-500\..\Run: [McAfee Update] C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\mcupdate_1319986845.exe /insfin

      C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\mcupdate_1319986845.ini /syncfin (User '?')
      O4 - HKUS\S-1-5-21-861567501-1614895754-839522115-500\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe (User '?')
      O4 - HKUS\S-1-5-21-861567501-1614895754-839522115-500\..\Run: [DAEMON Tools Lite] "C:\Program Files\Descargas\Daemon\DAEMON Tools Lite\DTLite.exe" -autorun

      (User '?')
      O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User '?')
      O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
      O9 - Extra button: Referencia - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
      O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
      O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
      O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
      O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
      O10 - Unknown file in Winsock LSP: c:\windows\system32\nwprovau.dll
      O15 - Trusted Zone: http://*.mcafee.com
      O16 - DPF: {362C56AA-6E4F-40C7-A0B5-85501DBDAD77} (Scanner.SysScanner) - http://i.dell.com/images/global/js/scanner/SysProExe.cab
      O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) -

      http://update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1177435993047
      O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) -

      http://update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1177436918704
      O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} - http://download.eset.com/special/eos/OnlineScanner.cab
      O16 - DPF: {C1F8FC10-E5DB-4112-9DBF-6C3FF728D4E3} (DellSystemLite.Scanner) - http://support.dell.com/systemprofiler/DellSystemLite.CAB
      O16 - DPF: {EF791A6B-FC12-4C68-99EF-FB9E207A39E6} (McFreeScan Class) - http://download.mcafee.com/molbin/iss-loc/mcfscan/2,2,0,5572/mcfscan.cab
      O17 - HKLM\System\CCS\Services\Tcpip\..\{2144D9CE-BB8F-4FA5-848B-4B99F3AF5CB4}: NameServer = 8.8.8.8,80.58.61.250,80.58.61.254
      O17 - HKLM\System\CS38\Services\Tcpip\..\{2144D9CE-BB8F-4FA5-848B-4B99F3AF5CB4}: NameServer = 8.8.8.8,80.58.61.250,80.58.61.254
      O17 - HKLM\System\CS39\Services\Tcpip\..\{2144D9CE-BB8F-4FA5-848B-4B99F3AF5CB4}: NameServer = 8.8.8.8,80.58.61.250,80.58.61.254
      O18 - Protocol: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll
      O18 - Protocol: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll
      O18 - Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\progra~1\mcafee\msc\mcsniepl.dll
      O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
      O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
      O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
      O23 - Service: AST Service (astcc) - Nalpeiron Ltd. - C:\WINDOWS\system32\astsrv.exe
      O23 - Service: Servicio Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
      O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
      O23 - Service: Canon Camera Access Library 8 (CCALib8) - Canon Inc. - C:\Program Files\Canon\CAL\CALMAIN.exe
      O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
      O23 - Service: FLEXnet Licensing Service - Acresso Software Inc. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
      O23 - Service: Servicio Google Update (gupdate) (gupdate) - Unknown owner - C:\Program Files\Google\Update\GoogleUpdate.exe
      O23 - Service: Servicio de Google Update (gupdatem) (gupdatem) - Unknown owner - C:\Program Files\Google\Update\GoogleUpdate.exe
      O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
      O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1050\Intel

      32\IDriverT.exe
      O23 - Service: Servicio del iPod (iPod Service) - Apple Inc. - C:\Program Files\Descargas\iPod\bin\iPodService.exe
      O23 - Service: McAfee SiteAdvisor Service - McAfee, Inc. - C:\Program Files\Common Files\Mcafee\McSvcHost\McSvHost.exe
      O23 - Service: McAfee Personal Firewall Service (McMPFSvc) - McAfee, Inc. - C:\Program Files\Common Files\Mcafee\McSvcHost\McSvHost.exe
      O23 - Service: McAfee Services (mcmscsvc) - McAfee, Inc. - C:\Program Files\Common Files\Mcafee\McSvcHost\McSvHost.exe
      O23 - Service: McAfee VirusScan Announcer (McNaiAnn) - McAfee, Inc. - C:\Program Files\Common Files\Mcafee\McSvcHost\McSvHost.exe
      O23 - Service: McAfee Network Agent (McNASvc) - McAfee, Inc. - C:\Program Files\Common Files\Mcafee\McSvcHost\McSvHost.exe
      O23 - Service: McAfee Scanner (McODS) - McAfee, Inc. - C:\Program Files\McAfee\VirusScan\mcods.exe
      O23 - Service: McAfee Proxy Service (McProxy) - McAfee, Inc. - C:\Program Files\Common Files\Mcafee\McSvcHost\McSvHost.exe
      O23 - Service: McAfee McShield (McShield) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\SystemCore\\mcshield.exe
      O23 - Service: McAfee Firewall Core Service (mfefire) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe
      O23 - Service: McAfee Validation Trust Protection Service (mfevtp) - McAfee, Inc. - C:\WINDOWS\system32\mfevtps.exe
      O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
      O23 - Service: NICCONFIGSVC - Dell Inc. - C:\Program Files\Dell\QuickSet\NICCONFIGSVC.exe
      O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
      O23 - Service: PMBDeviceInfoProvider - Sony Corporation - C:\Program Files\Sony\PMB\PMBDeviceInfoProvider.exe
      O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
      O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
      O23 - Service: Intel(R) PROSet/Wireless Service (S24EventMonitor) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
      O23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
      O23 - Service: TabletServicePen - Wacom Technology, Corp. - C:\WINDOWS\system32\Pen_Tablet.exe
      O23 - Service: Intel(R) PROSet/Wireless SSO Service (WLANKEEPER) - Intel(R) Corporation - C:\Program Files\Intel\Wireless\Bin\WLKeeper.exe

      --
      End of file - 14716 bytes

      #################################################### A/T-Destroyer by InfoSpyware ############

      A/T-Destroyer 1.0.7 By Infospyware
      www.infospyware.com
      Fecha iniciada en el analisis 09/09/2012
      Hora iniciada en el analisis 20:40:41,31
      Usuario Actual : [C:\Documents and Settings\Administrator]
      Sistema Operativo: Windows XP
      Service pack: 3
      Arquitectura: Sistema operativo de 32 bits
      Versión Internet Explorer: 8.0.6001.18702
      Modo Actual: Modo Normal.
      Privilegios: [Administrator-Administrador]
      Versión Google Chrome:
      Versión Mozilla Firefox: 15.0.1

      ====== Servicios Eliminados By A/T-Destroyer ======




      ====== Claves Eliminadas By A/T-Destroyer ======


      HKEY_LOCAL_MACHINE\SOFTWARE\OfferBox
      HKEY_LOCAL_MACHINE\SOFTWARE\OfferBox
      HKEY_CURRENT_USER\Software\OfferBox
      HKEY_CURRENT_USER\Software\OfferBox
      HKEY_LOCAL_MACHINE\SOFTWARE\Conduit
      HKEY_LOCAL_MACHINE\SOFTWARE\Conduit\AppPaths
      HKEY_LOCAL_MACHINE\SOFTWARE\Conduit\AppPaths\Applian FLV and Media Player
      HKEY_LOCAL_MACHINE\SOFTWARE\Conduit


      ====== Archivos/Carpetas Eliminados By A/T-Destroyer ======


      C:\Documents and Settings\Administrator\Application Data\OfferBox\config.xml
      C:\Documents and Settings\Administrator\Application Data\OfferBox\run.log
      C:\Documents and Settings\Administrator\Application Data\OfferBox\sdch
      "C:\Documents and Settings\Administrator\Application Data\OfferBox"
      C:\WINDOWS\System32\d3d9caps.dat


      ====== Información Extra ======


      -_-_-_-_-_-_-_-_ Configuraciones de internet Explorer -_-_-_-_-_-_-_-_
      "HKCU\Software\Microsoft\Internet Explorer\Main"
      -
      Start Page == http://www.google.com
      -
      Search Page == http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
      -
      Local Page == C:\WINDOWS\system32\blank.htm
      -
      -

      "HKLM\Software\Microsoft\Internet Explorer\Main"
      -
      Start Page == http://www.google.com
      -
      Search Page == http://go.microsoft.com/fwlink/?LinkId=54896
      -
      Local Page == C:\WINDOWS\system32\blank.htm
      -
      Default_Search_URL == http://go.microsoft.com/fwlink/?LinkId=54896
      -
      Default_Page_URL == http://go.microsoft.com/fwlink/?LinkId=69157


      "HKEY_USERS\S-1-5-21-861567501-1614895754-839522115-500\Software\Microsoft\Internet Explorer\Main"
      -
      Start Page == http://www.google.com
      -
      Search Page == http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
      -
      Local Page == C:\WINDOWS\system32\blank.htm
      -
      -




      -_-_-_-_-_-_-_-_ Configuraciones de mozilla Firefox -_-_-_-_-_-_-_-_
      user_pref("pref.browser.homepage.disable_button.bookmark_page", false);
      user_pref("pref.browser.homepage.disable_button.current_page", false);
      user_pref("pref.browser.homepage.disable_button.restore_default", false);
      user_pref("browser.startup.homepage", "http://google.com");




      ======= EOF =======

      He borrado parte del log de TDDS pues no me permitia el sistema tantos caracteres en un mensaje., Si lo quereis ver tengo el reporte.

      21:11:43.0399 1744 TDSS rootkit removing tool 2.8.8.0 Aug 24 2012 13:27:48
      21:11:43.0446 1744 ============================================================
      21:11:43.0446 1744 Current date / time: 2012/09/09 21:11:43.0446
      21:11:43.0446 1744 SystemInfo:
      21:11:43.0446 1744
      21:11:43.0446 1744 OS Version: 5.1.2600 ServicePack: 3.0
      21:11:43.0446 1744 Product type: Workstation
      21:11:43.0446 1744 ComputerName: JL-CDE7321A9EC4
      21:11:43.0446 1744 UserName: Administrator
      21:11:43.0446 1744 Windows directory: C:\WINDOWS
      21:11:43.0446 1744 System windows directory: C:\WINDOWS
      21:11:43.0446 1744 Processor architecture: Intel x86
      21:11:43.0446 1744 Number of processors: 2
      21:11:43.0446 1744 Page size: 0x1000
      21:11:43.0446 1744 Boot type: Normal boot
      21:11:43.0446 1744 ============================================================

      21:12:36.0008 4080 Detected object count: 1
      21:12:36.0008 4080 Actual detected object count: 1
      21:13:18.0883 4080 C:\WINDOWS\system32\DRIVERS\ACPI.sys - copied to quarantine
      21:13:23.0008 4080 Backup copy found, using it..
      21:13:23.0039 4080 C:\WINDOWS\system32\DRIVERS\ACPI.sys - will be cured on reboot
      21:13:23.0039 4080 ACPI ( Virus.Win32.Rloader.a ) - User select action: Cure
      21:15:58.0946 3116 Deinitialize success

      Despues del "TDSSKiller" se ha resuelto el problema de Google , pero el del escritorio que se desordena continua....
      Última edición por JLSaura fecha: 09/09/12 a las 16:04:53

    2. #2
      Moderador Gral.
      Avatar de @Javier_HF
      Registrado
      jun 2006
      Ubicación
      Spain.
      Mensajes
      21.696

      Re: No conecto con GOOGLE

      Buenas JLSaura.

      Realiza estos pasos :

      Descarga OTL By OldTimer

      >>> Para Ejecutar OTL

      • Cerrar todos programas que tengas abiertos y hacer doble click en el ícono de OTL para ejecutarlo.
      • Dejarlo correr y esperar a que aparezca el menú de OTL..
      • Cuando salga el menú de OTL, debes cambiar debajo de: "Tipo de Análisis" poniendo Resultado Mínimo.
      • Marcar la casilla Analizar Todos.
      • Marcar las opciones: Buscar LOP y Buscar Purity.
      • Marcar las Opciones >> Omitir Archivos De Microsoft y Usar Listado de Compañías Reconocidas.
      • Copiar y Pegar las lineas del siguiente script bajo la casilla Análisis Personalizados/Código de Reparación:

        NOTA: No copiar la palabra Cita.
        netsvcs
        msconfig
        %SYSTEMDRIVE%\*.*
        CREATERESTOREPOINT
      • Por favor No cambies el resto de la configuración a menos que te lo solicitemos.

      • Presionar el botón >> .
      • Una vez que termine, se abrirán dos (2) archivos, OTL.Txt y Extras.Txt. Éstos archivos estarán grabados en el mismo lugar donde OTL.exe fue descargado.
      • Copiar y pegar el contenido del archivo OTL.txt en tu próxima respuesta.



      Saludos, Javier.
      Quien no lo intenta no lo consigue | ;-)

      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.

    3. #3
      Usuario Avatar de JLSaura
      Registrado
      abr 2009
      Ubicación
      Madrid
      Mensajes
      104

      Re: No conecto con GOOGLE

      Hola Javier,

      Muchas gracias por responder.
      Creia que el problema de los iconos del escritorio se había arreglado, porque antes cuando abria el explorer se descolocaban y ahora ya no.. Pero despues de reiniciar el sistema se han vuelto a descolocar.

      Por si te sirve de algo, el valor del registro HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer para el valor NoSaveSettings está en 0.


      Aqui dejo el log de OTL:

      OTL logfile created on: 10/09/2012 1:16:41 - Run 1
      OTL by OldTimer - Version 3.2.61.3 Folder = C:\Documents and Settings\Administrator\Desktop
      Windows XP Media Center Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
      Internet Explorer (Version = 8.0.6001.18702)
      Locale: 00000C0A | Country: Spain | Language: ESN | Date Format: dd/MM/yyyy

      2,00 Gb Total Physical Memory | 1,45 Gb Available Physical Memory | 72,50% Memory free
      4,84 Gb Paging File | 3,98 Gb Available in Paging File | 82,07% Paging File free
      Paging file location(s): D:\pagefile.sys 3069 3069J:\pagefile.sys 0 0 [binary data]

      %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
      Drive C: | 58,59 Gb Total Space | 11,12 Gb Free Space | 18,99% Space Free | Partition Type: NTFS
      Drive D: | 33,15 Gb Total Space | 8,23 Gb Free Space | 24,83% Space Free | Partition Type: NTFS

      Computer Name: JL-CDE7321A9EC4 | User Name: Administrator | Logged in as Administrator.
      Boot Mode: Normal | Scan Mode: All users
      Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

      ========== Processes (SafeList) ==========

      PRC - C:\Documents and Settings\Administrator\desktop\OTL.exe (OldTimer Tools)
      PRC - C:\Program Files\FireFox\firefox.exe (Mozilla Corporation)
      PRC - C:\Program Files\FireFox\plugin-container.exe (Mozilla Corporation)
      PRC - C:\Program Files\Adobe\Acrobat 10.0\Acrobat\acrotray.exe (Adobe Systems Inc.)
      PRC - C:\Program Files\McAfee.com\Agent\mcagent.exe (McAfee, Inc.)
      PRC - C:\WINDOWS\system32\mfevtps.exe (McAfee, Inc.)
      PRC - C:\Program Files\Common Files\Mcafee\SystemCore\mfefire.exe (McAfee, Inc.)
      PRC - C:\Program Files\Common Files\Mcafee\SystemCore\mcshield.exe (McAfee, Inc.)
      PRC - C:\Program Files\Descargas\Daemon\DAEMON Tools Lite\DTLite.exe (DT Soft Ltd)
      PRC - C:\Program Files\Descargas\iPod\iTunesHelper.exe (Apple Inc.)
      PRC - C:\Program Files\Common Files\Research In Motion\USB Drivers\RIMBBLaunchAgent.exe (Research In Motion Limited)
      PRC - C:\Program Files\Common Files\Mcafee\McSvcHost\McSvHost.exe (McAfee, Inc.)
      PRC - C:\Program Files\Sony\PMB\PMBDeviceInfoProvider.exe (Sony Corporation)
      PRC - C:\WINDOWS\system32\ASTSRV.EXE (Nalpeiron Ltd.)
      PRC - C:\Program Files\Canon\CAL\CALMAIN.exe (Canon Inc.)
      PRC - C:\Program Files\Descargas\HJT\Advanced System Care\Advanced SystemCare 3\Sup_SmartRAM.exe (IObit)
      PRC - C:\WINDOWS\explorer.exe (Microsoft Corporation)
      PRC - C:\WINDOWS\system32\WTablet\Pen_TabletUser.exe (Wacom Technology, Corp.)
      PRC - C:\WINDOWS\system32\Pen_Tablet.exe (Wacom Technology, Corp.)
      PRC - C:\WINDOWS\system32\HPZipm12.exe (HP)
      PRC - C:\Program Files\SigmaTel\C-Major Audio\WDM\stsystra.exe (SigmaTel, Inc.)
      PRC - C:\WINDOWS\system32\DLA\DLACTRLW.EXE (Sonic Solutions)
      PRC - C:\Program Files\Dell\QuickSet\NicConfigSvc.exe (Dell Inc.)
      PRC - C:\Program Files\Intel\Wireless\Bin\WLKEEPER.exe (Intel(R) Corporation)
      PRC - C:\Program Files\Intel\Wireless\Bin\iFrmewrk.exe (Intel Corporation)
      PRC - C:\Program Files\Intel\Wireless\Bin\ZCfgSvc.exe (Intel Corporation)
      PRC - C:\Program Files\Intel\Wireless\Bin\Dot1XCfg.exe (Intel Corporation)


      ========== Modules (No Company Name) ==========

      MOD - C:\Program Files\FireFox\mozjs.dll ()
      MOD - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\pdfshell.ESP ()
      MOD - C:\Program Files\Adobe\Acrobat 10.0\Acrobat\Locale\es_ES\AcroTray.ESP ()
      MOD - C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll ()
      MOD - C:\WINDOWS\system32\quartz.dll ()
      MOD - C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll ()
      MOD - C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll ()
      MOD - C:\WINDOWS\system32\sbe.dll ()
      MOD - C:\WINDOWS\system32\msdmo.dll ()
      MOD - C:\WINDOWS\system32\devenum.dll ()
      MOD - C:\Program Files\Descargas\HJT\Advanced System Care\Advanced SystemCare 3\CoolTrayIcon_D6plus.bpl ()
      MOD - C:\WINDOWS\system32\nvshell.dll ()
      MOD - C:\Program Files\Intel\Wireless\Bin\Libeay32.dll ()
      MOD - C:\Program Files\Intel\Wireless\Bin\iWMSProv.dll ()
      MOD - C:\Program Files\Intel\Wireless\Bin\IntStngs.dll ()
      MOD - C:\Program Files\Intel\Wireless\Bin\acAuth.dll ()
      MOD - C:\Program Files\Roxio\Easy Media Creator 7\Creator Classic\TargetFinder.dll ()


      ========== Services (SafeList) ==========

      SRV - (MozillaMaintenance) -- C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe (Mozilla Foundation)
      SRV - (McODS) -- C:\Program Files\McAfee\VirusScan\mcods.exe (McAfee, Inc.)
      SRV - (mfevtp) -- C:\WINDOWS\system32\mfevtps.exe (McAfee, Inc.)
      SRV - (mfefire) -- C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe ()
      SRV - (McShield) -- C:\Program Files\Common Files\McAfee\SystemCore\\mcshield.exe ()
      SRV - (McProxy) -- C:\Program Files\Common Files\Mcafee\McSvcHost\McSvHost.exe (McAfee, Inc.)
      SRV - (McNASvc) -- C:\Program Files\Common Files\Mcafee\McSvcHost\McSvHost.exe (McAfee, Inc.)
      SRV - (McNaiAnn) -- C:\Program Files\Common Files\Mcafee\McSvcHost\McSvHost.exe (McAfee, Inc.)
      SRV - (mcmscsvc) -- C:\Program Files\Common Files\Mcafee\McSvcHost\McSvHost.exe (McAfee, Inc.)
      SRV - (McMPFSvc) -- C:\Program Files\Common Files\Mcafee\McSvcHost\McSvHost.exe (McAfee, Inc.)
      SRV - (McAfee SiteAdvisor Service) -- C:\Program Files\Common Files\Mcafee\McSvcHost\McSvHost.exe (McAfee, Inc.)
      SRV - (PMBDeviceInfoProvider) -- C:\Program Files\Sony\PMB\PMBDeviceInfoProvider.exe (Sony Corporation)
      SRV - (SwitchBoard) -- C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe (Adobe Systems Incorporated)
      SRV - (astcc) -- C:\WINDOWS\system32\ASTSRV.EXE (Nalpeiron Ltd.)
      SRV - (CCALib8) -- C:\Program Files\Canon\CAL\CALMAIN.exe (Canon Inc.)
      SRV - (FLEXnet Licensing Service) -- C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe (Acresso Software Inc.)
      SRV - (TabletServicePen) -- C:\WINDOWS\system32\Pen_Tablet.exe (Wacom Technology, Corp.)
      SRV - (Pml Driver HPZ12) -- C:\WINDOWS\system32\HPZipm12.exe (HP)
      SRV - (NICCONFIGSVC) -- C:\Program Files\Dell\QuickSet\NicConfigSvc.exe (Dell Inc.)
      SRV - (WLANKEEPER) -- C:\Program Files\Intel\Wireless\Bin\WLKEEPER.exe (Intel(R) Corporation)


      ========== Driver Services (SafeList) ==========

      DRV - (WDICA) -- File not found
      DRV - (Point32) -- system32\DRIVERS\point32.sys File not found
      DRV - (PDRFRAME) -- File not found
      DRV - (PDRELI) -- File not found
      DRV - (PDFRAME) -- File not found
      DRV - (PDCOMP) -- File not found
      DRV - (PCIDump) -- File not found
      DRV - (NetBT) -- system32\drivers\tsk6.tmp File not found
      DRV - (mfeavfk01) -- File not found
      DRV - (lbrtfdc) -- File not found
      DRV - (i2omgmt) -- File not found
      DRV - (Changer) -- File not found
      DRV - (ae4wp5zf) -- File not found
      DRV - (Ad-Watch Real-Time Scanner) -- C:\WINDOWS\system32\drivers\AWRTPD.sys File not found
      DRV - (Ad-Watch Connect Filter) -- C:\WINDOWS\system32\drivers\NSDriver.sys File not found
      DRV - (adfs) -- File not found
      DRV - (sptd) -- C:\WINDOWS\system32\drivers\sptd.sys (Duplex Secure Ltd.)
      DRV - (mfehidk) -- C:\WINDOWS\system32\drivers\mfehidk.sys (McAfee, Inc.)
      DRV - (mfefirek) -- C:\WINDOWS\system32\drivers\mfefirek.sys (McAfee, Inc.)
      DRV - (mfeavfk) -- C:\WINDOWS\system32\drivers\mfeavfk.sys (McAfee, Inc.)
      DRV - (mfeapfk) -- C:\WINDOWS\system32\drivers\mfeapfk.sys (McAfee, Inc.)
      DRV - (mfetdi2k) -- C:\WINDOWS\system32\drivers\mfetdi2k.sys (McAfee, Inc.)
      DRV - (mferkdet) -- C:\WINDOWS\system32\drivers\mferkdet.sys (McAfee, Inc.)
      DRV - (mfendiskmp) -- C:\WINDOWS\system32\drivers\mfendisk.sys (McAfee, Inc.)
      DRV - (mfendisk) -- C:\WINDOWS\system32\drivers\mfendisk.sys (McAfee, Inc.)
      DRV - (mfebopk) -- C:\WINDOWS\system32\drivers\mfebopk.sys (McAfee, Inc.)
      DRV - (cfwids) -- C:\WINDOWS\system32\drivers\cfwids.sys (McAfee, Inc.)
      DRV - (mfesmfk) -- C:\WINDOWS\system32\drivers\mfesmfk.sys (McAfee, Inc.)
      DRV - (mferkdk) -- C:\WINDOWS\system32\drivers\mferkdk.sys (McAfee, Inc.)
      DRV - (tbhsd) -- C:\WINDOWS\system32\drivers\tbhsd.sys (RapidSolution Software AG)
      DRV - (MPE) -- C:\WINDOWS\system32\drivers\mpe.sys (Microsoft Corporation)
      DRV - (IrBus) -- C:\WINDOWS\system32\drivers\irbus.sys (Microsoft Corporation)
      DRV - (scsiscan) -- C:\WINDOWS\system32\drivers\scsiscan.sys (Microsoft Corporation)
      DRV - (Cdralw2k) -- C:\WINDOWS\System32\drivers\cdralw2k.sys (Sonic Solutions)
      DRV - (Cdr4_xp) -- C:\WINDOWS\System32\drivers\cdr4_xp.sys (Sonic Solutions)
      DRV - (STHDA) -- C:\WINDOWS\system32\drivers\sthda.sys (SigmaTel, Inc.)
      DRV - (wacommousefilter) -- C:\WINDOWS\system32\drivers\wacommousefilter.sys (Wacom Technology)
      DRV - (wacomvhid) -- C:\WINDOWS\system32\drivers\wacomvhid.sys (Wacom Technology)
      DRV - (WacomVKHid) -- C:\WINDOWS\system32\drivers\WacomVKHid.sys (Wacom Technology)
      DRV - (DLAUDFAM) -- C:\WINDOWS\system32\DLA\DLAUDFAM.SYS (Sonic Solutions)
      DRV - (DLAUDF_M) -- C:\WINDOWS\system32\DLA\DLAUDF_M.SYS (Sonic Solutions)
      DRV - (DLAIFS_M) -- C:\WINDOWS\system32\DLA\DLAIFS_M.SYS (Sonic Solutions)
      DRV - (DLABOIOM) -- C:\WINDOWS\system32\DLA\DLABOIOM.SYS (Sonic Solutions)
      DRV - (DLAOPIOM) -- C:\WINDOWS\system32\DLA\DLAOPIOM.SYS (Sonic Solutions)
      DRV - (DLAPoolM) -- C:\WINDOWS\system32\DLA\DLAPoolM.SYS (Sonic Solutions)
      DRV - (DLADResN) -- C:\WINDOWS\system32\DLA\DLADResN.SYS (Sonic Solutions)
      DRV - (btaudio) -- C:\WINDOWS\system32\drivers\btaudio.sys (Broadcom Corporation.)
      DRV - (BTSERIAL) -- C:\WINDOWS\system32\drivers\btserial.sys (Broadcom Corporation.)
      DRV - (BTKRNL) -- C:\WINDOWS\system32\drivers\btkrnl.sys (Broadcom Corporation.)
      DRV - (BTDriver) -- C:\WINDOWS\system32\drivers\btport.sys (Broadcom Corporation.)
      DRV - (btwmodem) -- C:\WINDOWS\system32\drivers\btwmodem.sys (Broadcom Corporation.)
      DRV - (BTWUSB) -- C:\WINDOWS\system32\drivers\btwusb.sys (Broadcom Corporation.)
      DRV - (BTWDNDIS) -- C:\WINDOWS\system32\drivers\btwdndis.sys (Broadcom Corporation.)
      DRV - (btwhid) -- C:\WINDOWS\system32\drivers\btwhid.sys (Broadcom Corporation.)
      DRV - (DLACDBHM) -- C:\WINDOWS\system32\drivers\DLACDBHM.SYS (Sonic Solutions)
      DRV - (DLARTL_N) -- C:\WINDOWS\system32\drivers\DLARTL_N.SYS (Sonic Solutions)
      DRV - (s24trans) -- C:\WINDOWS\system32\drivers\s24trans.sys (Intel Corporation)
      DRV - (w39n51) -- C:\WINDOWS\system32\drivers\w39n51.sys (Intel® Corporation)
      DRV - (PDIHWCTL) -- C:\WINDOWS\system32\drivers\pdihwctl.sys (Portrait Displays, Inc.)
      DRV - (avera800) -- C:\WINDOWS\system32\drivers\avera800.sys (AVerMedia Technologies, Inc.)
      DRV - (APPDRV) -- C:\WINDOWS\system32\drivers\APPDRV.SYS (Dell Inc)
      DRV - (bcm4sbxp) -- C:\WINDOWS\system32\drivers\bcm4sbxp.sys (Broadcom Corporation)
      DRV - (rimmptsk) -- C:\WINDOWS\system32\drivers\rimmptsk.sys (REDC)
      DRV - (rismxdp) -- C:\WINDOWS\system32\drivers\rixdptsk.sys (REDC)
      DRV - (rimsptsk) -- C:\WINDOWS\system32\drivers\rimsptsk.sys (REDC)
      DRV - (i1display) -- C:\WINDOWS\system32\drivers\i1display.sys ()
      DRV - (cdudf_xp) -- C:\WINDOWS\System32\drivers\Cdudf_xp.sys (Roxio)
      DRV - (dvd_2K) -- C:\WINDOWS\System32\drivers\dvd_2k.sys (Roxio)
      DRV - (DVDVRRdr_xp) -- C:\WINDOWS\System32\drivers\DVDVRRdr_xp.sys (Windows (R) 2000 DDK provider)
      DRV - (UDFReadr) -- C:\WINDOWS\System32\drivers\Udfreadr.sys (Roxio)
      DRV - (mmc_2K) -- C:\WINDOWS\System32\drivers\mmc_2k.sys (Roxio)
      DRV - (pwd_2k) -- C:\WINDOWS\System32\drivers\Pwd_2k.sys (Roxio)
      DRV - (eyeonedp) -- C:\WINDOWS\system32\drivers\EyeOneDp.sys ()
      DRV - (Bulksusb) -- C:\WINDOWS\system32\drivers\BULKSUSB.sys (bulk, Inc.)
      DRV - (OMCI) -- C:\WINDOWS\system32\drivers\omci.sys (Dell Computer Corporation)
      DRV - (PortRST) -- C:\WINDOWS\system32\drivers\PortRST.sys (Barom Technologies Co., Ltd.)


      ========== Standard Registry (SafeList) ==========


      ========== Internet Explorer ==========

      IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com
      IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
      IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.live.com/results.aspx?q={searchTerms}&src={referrer:source?}
      IE - HKLM\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7
      IE - HKLM\..\SearchScopes\{CF739809-1C6C-47C0-85B9-569DBB141420}: "URL" = http://toolbar.ask.com/toolbarv/askRedirect?o=10635&gct=&gc=1&q={searchTerms}&crm=1
      IE - HKLM\..\SearchScopes\{CFEB54CE-DA65-4275-816A-31F9F2C4C300}: "URL" = http://gratis.vagos.es/es/index.php?rvs=google


      IE - HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank
      IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
      IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local

      IE - HKU\S-1-5-18\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank
      IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
      IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local



      IE - HKU\S-1-5-21-861567501-1614895754-839522115-500\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com
      IE - HKU\S-1-5-21-861567501-1614895754-839522115-500\..\URLSearchHook: {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\Program Files\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)
      IE - HKU\S-1-5-21-861567501-1614895754-839522115-500\..\SearchScopes,DefaultScope = {DE49B7AF-8DD2-46D5-811A-858AB13F7FD5}
      IE - HKU\S-1-5-21-861567501-1614895754-839522115-500\..\SearchScopes\{CF739809-1C6C-47C0-85B9-569DBB141420}: "URL" = http://toolbar.ask.com/toolbarv/askRedirect?o=10635&gct=&gc=1&q={searchTerms}&crm=1
      IE - HKU\S-1-5-21-861567501-1614895754-839522115-500\..\SearchScopes\{DE49B7AF-8DD2-46D5-811A-858AB13F7FD5}: "URL" = http://www.google.es/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage}&rlz=
      IE - HKU\S-1-5-21-861567501-1614895754-839522115-500\..\SearchScopes\{DECA3892-BA8F-44b8-A993-A466AD694AE4}: "URL" = http://es.search.yahoo.com/search?fr=mcafee&p={SearchTerms}
      IE - HKU\S-1-5-21-861567501-1614895754-839522115-500\..\SearchScopes\Yahoo!: "URL" = http://us.search.yahoo.com/search?p={searchTerms}&ei=utf-8&fr=iobit-trans
      IE - HKU\S-1-5-21-861567501-1614895754-839522115-500\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
      IE - HKU\S-1-5-21-861567501-1614895754-839522115-500\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local

      ========== FireFox ==========

      FF - prefs.js..browser.search.defaultenginename: "Google"
      FF - prefs.js..browser.startup.homepage: "http://google.es"
      FF - prefs.js..extensions.enabledAddons: [email protected]:1.9
      FF - prefs.js..extensions.enabledAddons: {4176DFF4-4698-11DE-BEEB-45DA55D89593}:0.8.35
      FF - prefs.js..extensions.enabledAddons: {b9db16a4-6edc-47ec-a1f4-b86292ed211d}:4.9.9
      FF - prefs.js..extensions.enabledAddons: {68B4CD70-E9FD-11E1-8270-B8AC6F996F26}:2.0.14
      FF - prefs.js..extensions.enabledAddons: {4ED1F68A-5463-4931-9384-8FFF5ED91D92}:3.5.0
      FF - prefs.js..extensions.enabledAddons: {D19CA586-DD6C-4a0a-96F8-14644F340D60}:14.4.1
      FF - prefs.js..keyword.URL: "http://es.search.yahoo.com/search?fr=mcafee&p="


      FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll ()
      FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\WINDOWS\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
      FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found
      FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files\Descargas\iPod\Mozilla Plugins\npitunes.dll ()
      FF - HKLM\Software\MozillaPlugins\@canon.com/MycameraPlugin: C:\Program Files\Canon\ZoomBrowser EX\Program\NPCIG.dll (CANON INC.)
      FF - HKLM\Software\MozillaPlugins\@divx.com/DivX Content Upload Plugin,version=1.0.0: C:\Program Files\Descargas\DivX\DivX Content Uploader\npUpload.dll File not found
      FF - HKLM\Software\MozillaPlugins\@divx.com/DivX Player Plugin,version=1.0.0: File not found
      FF - HKLM\Software\MozillaPlugins\@divx.com/DivX VOD Helper,version=1.0.0: C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
      FF - HKLM\Software\MozillaPlugins\@Google.com/GoogleEarthPlugin: C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
      FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.4.1: C:\WINDOWS\system32\npDeployJava1.dll (Oracle Corporation)
      FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.4.1: C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\plugin2\npjp2.dll (Oracle Corporation)
      FF - HKLM\Software\MozillaPlugins\@mcafee.com/MSC,version=10: c:\progra~1\mcafee\msc\npmcsn~1.dll ()
      FF - HKLM\Software\MozillaPlugins\@mcafee.com/MVT: C:\Program Files\McAfee\Supportability\MVT\npmvtplugin.dll (McAfee, Inc.)
      FF - HKLM\Software\MozillaPlugins\@mcafee.com/SAFFPlugin: C:\Program Files\McAfee\SiteAdvisor\npmcffplg32.dll (McAfee, Inc.)
      FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
      FF - HKLM\Software\MozillaPlugins\@pack.google.com/Google Updater;version=14: C:\Program Files\Google\Google Updater\2.4.2432.1652\npCIDetect14.dll (Google)
      FF - HKLM\Software\MozillaPlugins\@real.com/nppl3260;version=6.0.11.3088: C:\Program Files\Real\RealPlayer\Netscape6\nppl3260.dll (RealNetworks, Inc.)
      FF - HKLM\Software\MozillaPlugins\@real.com/nprjplug;version=1.0.2.3146: C:\Program Files\Real\RealPlayer\Netscape6\nprjplug.dll (RealNetworks, Inc.)
      FF - HKLM\Software\MozillaPlugins\@real.com/nprpjplug;version=6.0.11.3006: C:\Program Files\Real\RealPlayer\Netscape6\nprpjplug.dll (RealNetworks, Inc.)
      FF - HKLM\Software\MozillaPlugins\@real.com/nsJSRealPlayerPlugin;version=: File not found
      FF - HKLM\Software\MozillaPlugins\@RIM.com/WebSLLauncher,version=1.0: C:\Program Files\Common Files\Research In Motion\BBWebSLLauncher\NPWebSLLauncher.dll ()
      FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.115\npGoogleUpdate3.dll (Google Inc.)
      FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.115\npGoogleUpdate3.dll (Google Inc.)
      FF - HKLM\Software\MozillaPlugins\@xmlauthor.com/downloads: C:\WINDOWS\system32\npmirage.dll (XMLAuthor Inc.)
      FF - HKLM\Software\MozillaPlugins\Adobe Acrobat: C:\Program Files\Adobe\Acrobat 10.0\Acrobat\Air\nppdf32.dll (Adobe Systems Inc.)

      FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\[email protected]: C:\Program Files\Descargas\Java pluging\lib\deploy\jqs\ff
      FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{4ED1F68A-5463-4931-9384-8FFF5ED91D92}: C:\Program Files\McAfee\SiteAdvisor [2012/08/24 11:22:49 | 000,000,000 | ---D | M]
      FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\[email protected]: C:\Program Files\Adobe\Acrobat 10.0\Acrobat\Browser\WCFirefoxExtn [2012/08/16 21:50:44 | 000,000,000 | ---D | M]
      FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{D19CA586-DD6C-4a0a-96F8-14644F340D60}: C:\Program Files\Common Files\McAfee\SystemCore [2012/09/09 21:33:21 | 000,000,000 | ---D | M]
      FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 15.0.1\extensions\\Components: C:\Program Files\FireFox\components [2012/09/08 01:01:01 | 000,000,000 | ---D | M]
      FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 15.0.1\extensions\\Plugins: C:\Program Files\FireFox\plugins [2012/08/16 21:50:45 | 000,000,000 | ---D | M]
      FF - HKEY_CURRENT_USER\software\mozilla\Firefox\Extensions\\{68B4CD70-E9FD-11E1-8270-B8AC6F996F26}: C:\Documents and Settings\Administrator\Local Settings\Application Data\{68B4CD70-E9FD-11E1-8270-B8AC6F996F26}\ [2012/08/19 14:57:23 | 000,000,000 | ---D | M]

      [2009/04/16 09:31:35 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Administrator\Application Data\mozilla\Extensions
      [2012/06/19 10:00:15 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Administrator\Application Data\mozilla\Firefox\Profiles\axhszvs3.default\extensions
      [2010/05/03 17:53:40 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Documents and Settings\Administrator\Application Data\mozilla\Firefox\Profiles\axhszvs3.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}
      [2011/03/25 14:26:45 | 000,000,000 | ---D | M] (Google Toolbar for Firefox) -- C:\Documents and Settings\Administrator\Application Data\mozilla\Firefox\Profiles\axhszvs3.default\extensions\{3112ca9c-de6d-4884-a869-9855de68056c}
      [2012/03/31 11:44:18 | 000,000,000 | ---D | M] (DownloadHelper) -- C:\Documents and Settings\Administrator\Application Data\mozilla\Firefox\Profiles\axhszvs3.default\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}
      [2010/09/17 00:02:24 | 000,000,000 | ---D | M] (Adobe DLM (powered by getPlus(R))) -- C:\Documents and Settings\Administrator\Application Data\mozilla\Firefox\Profiles\axhszvs3.default\extensions\{E2883E8F-472F-4fb0-9522-AC9BF37916A7}(2)
      [2012/02/09 10:19:51 | 000,000,000 | ---D | M] (Cooliris) -- C:\Documents and Settings\Administrator\Application Data\mozilla\Firefox\Profiles\axhszvs3.default\extensions\[email protected]
      [2012/06/19 10:00:15 | 000,053,072 | ---- | M] () (No name found) -- C:\Documents and Settings\Administrator\Application Data\mozilla\firefox\profiles\axhszvs3.default\extensions\[email protected]
      [2012/05/27 14:35:50 | 000,222,562 | ---- | M] () (No name found) -- C:\Documents and Settings\Administrator\Application Data\mozilla\firefox\profiles\axhszvs3.default\extensions\{4176DFF4-4698-11DE-BEEB-45DA55D89593}.xpi
      [2011/09/18 16:59:33 | 000,254,273 | ---- | M] () (No name found) -- C:\Documents and Settings\Administrator\Application Data\mozilla\firefox\profiles\axhszvs3.default\extensions\{CE6E6E3B-84DD-4cac-9F63-8D2AE4F30A4B}.xpi
      [2012/08/19 14:57:23 | 000,000,000 | ---D | M] (Mozilla Safe Browsing) -- C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\APPLICATION DATA\{68B4CD70-E9FD-11E1-8270-B8AC6F996F26}
      [2012/09/09 21:33:21 | 000,000,000 | ---D | M] (McAfee ScriptScan for Firefox) -- C:\PROGRAM FILES\COMMON FILES\MCAFEE\SYSTEMCORE
      [2012/08/24 11:22:49 | 000,000,000 | ---D | M] (McAfee SiteAdvisor) -- C:\PROGRAM FILES\MCAFEE\SITEADVISOR

      O1 HOSTS File: ([2012/08/10 17:53:25 | 000,000,761 | RHS- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
      O1 - Hosts: 127.0.0.1 localhost
      O1 - Hosts: ::1 localhost
      O2 - BHO: (SnagIt Toolbar Loader) - {00C6482D-C502-44C8-8409-FCE54AD9C208} - C:\Program Files\TechSmith\SnagIt 8\SnagItBHO.dll (TechSmith Corporation)
      O2 - BHO: (scriptproxy) - {7DB2D5A0-7241-4E79-B68D-6309F01C5231} - C:\Program Files\Common Files\Mcafee\SystemCore\ScriptSn.20120628113508.dll (McAfee, Inc.)
      O2 - BHO: (Google Toolbar Helper) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\Program Files\Google\GoogleToolbar1.dll (Google Inc.)
      O2 - BHO: (Adobe PDF Conversion Toolbar Helper) - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
      O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.2.4204.1700\swg.dll (Google Inc.)
      O2 - BHO: (McAfee SiteAdvisor BHO) - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - c:\Program Files\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)
      O2 - BHO: (no name) - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - No CLSID value found.
      O2 - BHO: (SmartSelect Class) - {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
      O3 - HKLM\..\Toolbar: (McAfee SiteAdvisor Toolbar) - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\Program Files\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)
      O3 - HKLM\..\Toolbar: (&Google) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\Program Files\Google\GoogleToolbar1.dll (Google Inc.)
      O3 - HKLM\..\Toolbar: (Adobe PDF) - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
      O3 - HKLM\..\Toolbar: (SnagIt) - {8FF5E183-ABDE-46EB-B09E-D2AAB95CABE3} - C:\Program Files\TechSmith\SnagIt 8\SnagItIEAddin.dll (TechSmith Corporation)
      O3 - HKU\S-1-5-21-861567501-1614895754-839522115-500\..\Toolbar\WebBrowser: (&Google) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - c:\Program Files\Google\GoogleToolbar1.dll (Google Inc.)
      O4 - HKLM..\Run: [Acrobat Assistant 8.0] C:\Program Files\Adobe\Acrobat 10.0\Acrobat\Acrotray.exe (Adobe Systems Inc.)
      O4 - HKLM..\Run: [Adobe Acrobat Speed Launcher] C:\Program Files\Adobe\Acrobat 10.0\Acrobat\Acrobat_sl.exe (Adobe Systems Incorporated)
      O4 - HKLM..\Run: [APSDaemon] C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc.)
      O4 - HKLM..\Run: [BluetoothAuthenticationAgent] C:\WINDOWS\System32\bthprops.cpl (Microsoft Corporation)
      O4 - HKLM..\Run: [DLA] C:\WINDOWS\system32\DLA\DLACTRLW.EXE (Sonic Solutions)
      O4 - HKLM..\Run: [IntelWireless] C:\Program Files\Intel\Wireless\Bin\ifrmewrk.exe (Intel Corporation)
      O4 - HKLM..\Run: [IntelZeroConfig] C:\Program Files\Intel\Wireless\bin\ZCfgSvc.exe (Intel Corporation)
      O4 - HKLM..\Run: [iTunesHelper] C:\Program Files\Descargas\iPod\iTunesHelper.exe (Apple Inc.)
      O4 - HKLM..\Run: [mcui_exe] C:\Program Files\McAfee.com\Agent\mcagent.exe (McAfee, Inc.)
      O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.dll (NVIDIA Corporation)
      O4 - HKLM..\Run: [RIMBBLaunchAgent.exe] C:\Program Files\Common Files\Research In Motion\USB Drivers\RIMBBLaunchAgent.exe (Research In Motion Limited)
      O4 - HKLM..\Run: [SigmatelSysTrayApp] C:\Program Files\SigmaTel\C-Major Audio\WDM\stsystra.exe (SigmaTel, Inc.)
      O4 - HKLM..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre7\bin\jusched.exe" File not found
      O4 - HKLM..\Run: [UserFaultCheck] %systemroot%\system32\dumprep 0 -u File not found
      O4 - HKU\S-1-5-21-861567501-1614895754-839522115-500..\Run: [DAEMON Tools Lite] C:\Program Files\Descargas\Daemon\DAEMON Tools Lite\DTLite.exe (DT Soft Ltd)
      O4 - HKU\S-1-5-21-861567501-1614895754-839522115-500..\Run: [McAfee Update] C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\mcupdate_1319986845.exe /insfin C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\mcupdate_1319986845.ini /syncfin File not found
      O4 - HKU\S-1-5-21-861567501-1614895754-839522115-500..\Run: [SmartRAM] C:\Program Files\Descargas\HJT\Advanced System Care\Advanced SystemCare 3\Sup_SmartRAM.exe (IObit)
      O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Infodelivery present
      O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Low Rights present
      O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
      O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
      O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
      O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
      O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: LinkResolveIgnoreLinkInfo = 0
      O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveSearch = 1
      O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoCDBurning = 0
      O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoControlPanel = 0
      O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: InstallVisualStyle = C:\WINDOWS\Resources\Themes\Royale\Royale.msstyles (Microsoft)
      O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: InstallTheme = C:\WINDOWS\Resources\Themes\Royale.theme ()
      O7 - HKU\.DEFAULT\Software\Policies\Microsoft\Internet Explorer\Control Panel present
      O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
      O7 - HKU\S-1-5-18\Software\Policies\Microsoft\Internet Explorer\Control Panel present
      O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
      O7 - HKU\S-1-5-19\Software\Policies\Microsoft\Internet Explorer\Control Panel present
      O7 - HKU\S-1-5-20\Software\Policies\Microsoft\Internet Explorer\Control Panel present
      O7 - HKU\S-1-5-21-861567501-1614895754-839522115-500\Software\Policies\Microsoft\Internet Explorer\Control Panel present
      O7 - HKU\S-1-5-21-861567501-1614895754-839522115-500\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
      O7 - HKU\S-1-5-21-861567501-1614895754-839522115-500\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: LinkResolveIgnoreLinkInfo = 0
      O7 - HKU\S-1-5-21-861567501-1614895754-839522115-500\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
      O7 - HKU\S-1-5-21-861567501-1614895754-839522115-500\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSaveSettings = 0
      O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\WINDOWS\system32\nwprovau.dll (Microsoft Corporation)
      O10 - NameSpace_Catalog5\Catalog_Entries\000000000005 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
      O10 - Protocol_Catalog9\Catalog_Entries\000000000001 - C:\Program Files\Bonjour\mdnsNSP.dll File not found
      O10 - Protocol_Catalog9\Catalog_Entries\000000000002 - C:\Program Files\Bonjour\mdnsNSP.dll File not found
      O10 - Protocol_Catalog9\Catalog_Entries\000000000003 - C:\Program Files\Bonjour\mdnsNSP.dll File not found
      O10 - Protocol_Catalog9\Catalog_Entries\000000000004 - C:\Program Files\Bonjour\mdnsNSP.dll File not found
      O10 - Protocol_Catalog9\Catalog_Entries\000000000005 - C:\Program Files\Bonjour\mdnsNSP.dll File not found
      O10 - Protocol_Catalog9\Catalog_Entries\000000000006 - C:\Program Files\Bonjour\mdnsNSP.dll File not found
      O10 - Protocol_Catalog9\Catalog_Entries\000000000007 - C:\Program Files\Bonjour\mdnsNSP.dll File not found
      O10 - Protocol_Catalog9\Catalog_Entries\000000000008 - C:\Program Files\Bonjour\mdnsNSP.dll File not found
      O10 - Protocol_Catalog9\Catalog_Entries\000000000009 - C:\Program Files\Bonjour\mdnsNSP.dll File not found
      O10 - Protocol_Catalog9\Catalog_Entries\000000000010 - C:\Program Files\Bonjour\mdnsNSP.dll File not found
      O10 - Protocol_Catalog9\Catalog_Entries\000000000011 - C:\Program Files\Bonjour\mdnsNSP.dll File not found
      O10 - Protocol_Catalog9\Catalog_Entries\000000000012 - C:\Program Files\Bonjour\mdnsNSP.dll File not found
      O10 - Protocol_Catalog9\Catalog_Entries\000000000013 - C:\Program Files\Bonjour\mdnsNSP.dll File not found
      O10 - Protocol_Catalog9\Catalog_Entries\000000000014 - C:\Program Files\Bonjour\mdnsNSP.dll File not found
      O10 - Protocol_Catalog9\Catalog_Entries\000000000015 - C:\Program Files\Bonjour\mdnsNSP.dll File not found
      O10 - Protocol_Catalog9\Catalog_Entries\000000000016 - C:\Program Files\Bonjour\mdnsNSP.dll File not found
      O10 - Protocol_Catalog9\Catalog_Entries\000000000017 - C:\Program Files\Bonjour\mdnsNSP.dll File not found
      O10 - Protocol_Catalog9\Catalog_Entries\000000000018 - C:\Program Files\Bonjour\mdnsNSP.dll File not found
      O10 - Protocol_Catalog9\Catalog_Entries\000000000019 - C:\Program Files\Bonjour\mdnsNSP.dll File not found
      O10 - Protocol_Catalog9\Catalog_Entries\000000000020 - C:\Program Files\Bonjour\mdnsNSP.dll File not found
      O10 - Protocol_Catalog9\Catalog_Entries\000000000021 - C:\Program Files\Bonjour\mdnsNSP.dll File not found
      O10 - Protocol_Catalog9\Catalog_Entries\000000000022 - C:\Program Files\Bonjour\mdnsNSP.dll File not found
      O10 - Protocol_Catalog9\Catalog_Entries\000000000023 - C:\Program Files\Bonjour\mdnsNSP.dll File not found
      O15 - HKU\S-1-5-21-861567501-1614895754-839522115-500\..Trusted Domains: internet ([]about in Trusted sites)
      O15 - HKU\S-1-5-21-861567501-1614895754-839522115-500\..Trusted Domains: mcafee.com ([]http in Trusted sites)
      O15 - HKU\S-1-5-21-861567501-1614895754-839522115-500\..Trusted Domains: mcafee.com ([]https in Trusted sites)
      O16 - DPF: {05CA9FB0-3E3E-4B36-BF41-0E3A5CAA8CD8} http://download.microsoft.com/download/e/7/3/e7345c16-80aa-4488-ae10-9ac6be844f99/OGAControl.cab (Office Genuine Advantage Validation Tool)
      O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} http://download.microsoft.com/download/8/b/d/8bd77752-5704-4d68-a152-f7252adaa4f2/LegitCheckControl.cab (Windows Genuine Advantage Validation Tool)
      O16 - DPF: {362C56AA-6E4F-40C7-A0B5-85501DBDAD77} http://i.dell.com/images/global/js/scanner/SysProExe.cab (Scanner.SysScanner)
      O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} http://update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1177435993047 (WUWebControl Class)
      O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} http://update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1177436918704 (MUWebControl Class)
      O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} http://download.eset.com/special/eos/OnlineScanner.cab (Reg Error: Key error.)
      O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.7.0/jinstall-1_7_0_04-windows-i586.cab (Java Plug-in 1.7.0_04)
      O16 - DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} http://fpdownload.macromedia.com/get/flashplayer/current/polarbear/ultrashim.cab (Reg Error: Value error.)
      O16 - DPF: {C1F8FC10-E5DB-4112-9DBF-6C3FF728D4E3} http://support.dell.com/systemprofiler/DellSystemLite.CAB (DellSystemLite.Scanner)
      O16 - DPF: {CAFEEFAC-0017-0000-0004-ABCDEFFEDCBA} http://java.sun.com/update/1.7.0/jinstall-1_7_0_04-windows-i586.cab (Java Plug-in 1.7.0_04)
      O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.7.0/jinstall-1_7_0_04-windows-i586.cab (Java Plug-in 1.7.0_04)
      O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload.macromedia.com/get/shockwave/cabs/flash/swflash.cab (Shockwave Flash Object)
      O16 - DPF: {EF791A6B-FC12-4C68-99EF-FB9E207A39E6} http://download.mcafee.com/molbin/iss-loc/mcfscan/2,2,0,5572/mcfscan.cab (McFreeScan Class)
      O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{2144D9CE-BB8F-4FA5-848B-4B99F3AF5CB4}: NameServer = 8.8.8.8,80.58.61.250,80.58.61.254
      O18 - Protocol\Handler\dssrequest {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)
      O18 - Protocol\Handler\sacore {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)
      O18 - Protocol\Filter\application/x-mfe-ipt {3EF5086B-5478-4598-A054-786C45D75692} - c:\Program Files\McAfee\MSC\McSnIePl.dll (McAfee, Inc.)
      O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
      O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) - C:\WINDOWS\system32\userinit.exe (Microsoft Corporation)
      O32 - HKLM CDRom: AutoRun - 1
      O32 - AutoRun File - [2007/04/24 15:30:44 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
      O34 - HKLM BootExecute: (autocheck autochk *)
      O35 - HKLM\..comfile [open] -- "%1" %*
      O35 - HKLM\..exefile [open] -- "%1" %*
      O37 - HKLM\...com [@ = comfile] -- "%1" %*
      O37 - HKLM\...exe [@ = exefile] -- "%1" %*
      O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
      O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)

      NetSvcs: 6to4 - File not found
      NetSvcs: Ias - File not found
      NetSvcs: Iprip - File not found
      NetSvcs: NWCWorkstation - File not found
      NetSvcs: Nwsapagent - File not found
      NetSvcs: Sharedaccess - File not found
      NetSvcs: WmdmPmSp - File not found
      NetSvcs: BITS - File not found

      MsConfig - StartUpFolder: C:^Documents and Settings^Administrator^Start Menu^Programs^Startup^Adobe Gamma.lnk - C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe - (Adobe Systems, Inc.)
      MsConfig - StartUpFolder: C:^Documents and Settings^Administrator^Start Menu^Programs^Startup^Kremlin Sentry.lnk - Reg Error: Value error. - File not found
      MsConfig - StartUpFolder: C:^Documents and Settings^All Users^Start Menu^Programs^Startup^Acelerador de inicio de AutoCAD.lnk - Reg Error: Value error. - File not found
      MsConfig - StartUpFolder: C:^Documents and Settings^All Users^Start Menu^Programs^Startup^Adobe Gamma Loader.lnk - C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe - (Adobe Systems, Inc.)
      MsConfig - StartUpFolder: C:^Documents and Settings^All Users^Start Menu^Programs^Startup^BTTray.lnk - C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe - (Broadcom Corporation.)
      MsConfig - StartUpFolder: C:^Documents and Settings^All Users^Start Menu^Programs^Startup^CineFormActiveMetadataStatusViewer.exe - Reg Error: Value error. - File not found
      MsConfig - StartUpFolder: C:^Documents and Settings^All Users^Start Menu^Programs^Startup^Logo Calibration Loader.lnk - C:\Program Files\GretagMacbeth\i1\Eye-One Match 3\CalibrationLoader\CalibrationLoader.exe - (LOGO Kommunikations- und Drucktechnik GmbH & Co. KG)
      MsConfig - StartUpFolder: C:^Documents and Settings^All Users^Start Menu^Programs^Startup^ProfileReminder.lnk - C:\Program Files\GretagMacbeth\i1\Eye-One Match 3\ProfileReminder.exe - (LOGO Kommunikations- und Drucktechnik GmbH & Co. KG)
      MsConfig - StartUpFolder: C:^Documents and Settings^All Users^Start Menu^Programs^Startup^QuickTV6.lnk - C:\Program Files\AVerTV 6.0\AVerQT.exe - (AVerMedia Technologies, Inc.)
      MsConfig - StartUpReg: Acrobat Assistant 8.0 - hkey= - key= - Reg Error: Value error. File not found
      MsConfig - StartUpReg: Acrotray - hkey= - key= - Reg Error: Value error. File not found
      MsConfig - StartUpReg: Adobe Photo Downloader - hkey= - key= - Reg Error: Value error. File not found
      MsConfig - StartUpReg: Adobe Reader Speed Launcher - hkey= - key= - C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe (Adobe Systems Incorporated)
      MsConfig - StartUpReg: AdobeAAMUpdater-1.0 - hkey= - key= - C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe (Adobe Systems Incorporated)
      MsConfig - StartUpReg: AdobeCS5ServiceManager - hkey= - key= - C:\Program Files\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe (Adobe Systems Incorporated)
      MsConfig - StartUpReg: apdproxy - hkey= - key= - Reg Error: Value error. File not found
      MsConfig - StartUpReg: AppleSyncNotifier - hkey= - key= - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleSyncNotifier.exe (Apple Inc.)
      MsConfig - StartUpReg: ctfmon.exe - hkey= - key= - File not found
      MsConfig - StartUpReg: DataLayer - hkey= - key= - C:\Program Files\Common Files\PCSuite\DataLayer\DataLayer.exe (Nokia Mobile Phones Ltd.)
      MsConfig - StartUpReg: DivXUpdate - hkey= - key= - C:\Program Files\DivX\DivX Update\DivXUpdate.exe ()
      MsConfig - StartUpReg: DrgToDsc - hkey= - key= - C:\Program Files\Roxio\Easy Media Creator 7\Drag to Disc\DrgToDsc.exe (Roxio)
      MsConfig - StartUpReg: ehTray - hkey= - key= - C:\WINDOWS\ehome\ehtray.exe (Microsoft Corporation)
      MsConfig - StartUpReg: iTunesHelper - hkey= - key= - C:\Program Files\Descargas\iPod\iTunesHelper.exe (Apple Inc.)
      MsConfig - StartUpReg: LaunchApplication - hkey= - key= - C:\Program Files\Descargas\Nokia\Nokia PC Suite 6\LaunchApplication.exe (Nokia)
      MsConfig - StartUpReg: MSMSGS - hkey= - key= - C:\Program Files\Messenger\msmsgs.exe (Microsoft Corporation)
      MsConfig - StartUpReg: NvCplDaemon - hkey= - key= - File not found
      MsConfig - StartUpReg: NVHotkey - hkey= - key= - File not found
      MsConfig - StartUpReg: NvMediaCenter - hkey= - key= - File not found
      MsConfig - StartUpReg: nwiz - hkey= - key= - File not found
      MsConfig - StartUpReg: PCSuiteTrayApplication - hkey= - key= - C:\Program Files\Descargas\Nokia\Nokia PC Suite 6\LaunchApplication.exe (Nokia)
      MsConfig - StartUpReg: PcSync - hkey= - key= - C:\Program Files\Descargas\Nokia\Nokia PC Suite 6\PcSync2.exe (Time Information Services Ltd.)
      MsConfig - StartUpReg: PcSync2 - hkey= - key= - C:\Program Files\Descargas\Nokia\Nokia PC Suite 6\PcSync2.exe (Time Information Services Ltd.)
      MsConfig - StartUpReg: PDVDServ - hkey= - key= - C:\Program Files\Roxio\Roxio DVDMax Player\PDVDServ.exe (Cyberlink Corp.)
      MsConfig - StartUpReg: PMBVolumeWatcher - hkey= - key= - C:\Program Files\Sony\PMB\PMBVolumeWatcher.exe (Sony Corporation)
      MsConfig - StartUpReg: QTTask - hkey= - key= - C:\Program Files\QuickTime\QTTask.exe (Apple Inc.)
      MsConfig - StartUpReg: QuickTime Task - hkey= - key= - C:\Program Files\QuickTime\QTTask.exe (Apple Inc.)
      MsConfig - StartUpReg: Reader_sl - hkey= - key= - C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe (Adobe Systems Incorporated)
      MsConfig - StartUpReg: realsched - hkey= - key= - C:\Program Files\Common Files\Real\Update_OB\realsched.exe (RealNetworks, Inc.)
      MsConfig - StartUpReg: RemoteControl - hkey= - key= - C:\Program Files\Roxio\Roxio DVDMax Player\PDVDServ.exe (Cyberlink Corp.)
      MsConfig - StartUpReg: RoxioDragToDisc - hkey= - key= - C:\Program Files\Roxio\Easy Media Creator 7\Drag to Disc\DrgToDsc.exe (Roxio)
      MsConfig - StartUpReg: SwitchBoard - hkey= - key= - C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe (Adobe Systems Incorporated)
      MsConfig - StartUpReg: TkBellExe - hkey= - key= - C:\Program Files\Common Files\Real\Update_OB\realsched.exe (RealNetworks, Inc.)
      MsConfig - State: "system.ini" - 0
      MsConfig - State: "win.ini" - 0
      MsConfig - State: "bootini" - 2
      MsConfig - State: "services" - 0
      MsConfig - State: "startup" - 2

      CREATERESTOREPOINT
      System Restore Service not available.

      ========== Files/Folders - Created Within 30 Days ==========

      [2012/09/10 01:14:11 | 000,600,064 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Administrator\Desktop\OTL.exe
      [2012/09/09 23:21:27 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Administrator\Recent
      [2012/09/09 23:06:22 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\McAfee
      [2012/09/09 21:13:18 | 000,000,000 | ---D | C] -- C:\TDSSKiller_Quarantine
      [2012/09/09 2136 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Desktop\tdsskiller
      [2012/09/09 20:40:15 | 000,036,864 | ---- | C] (NirSoft) -- C:\WINDOWS\nircmd.exe
      [2012/09/09 19:55:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Desktop\hosts
      [2012/09/09 19:02:48 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Desktop\problema
      [2012/09/09 19:01:59 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Desktop\REVISAR
      [2012/08/21 11:35:15 | 000,000,000 | ---D | C] -- C:\Program Files\DVDVideoSoft
      [2012/08/21 11:32:57 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Application Data\DVDVideoSoft
      [2012/08/19 14:57:23 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Local Settings\Application Data\{68B4CD70-E9FD-11E1-8270-B8AC6F996F26}
      [2012/08/17 22:47:02 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\boost_interprocess
      [2012/08/17 22:32:40 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Topaz Labs
      [2012/08/17 22:32:37 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Topaz Labs
      [2012/08/17 22:32:36 | 000,000,000 | ---D | C] -- C:\Program Files\Topaz Labs

      ========== Files - Modified Within 30 Days ==========

      [2012/09/10 01:24:00 | 000,001,088 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
      [2012/09/10 01:14:13 | 000,600,064 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Administrator\Desktop\OTL.exe
      [2012/09/09 21:32:37 | 000,113,252 | ---- | M] () -- C:\WINDOWS\System32\nvModes.001
      [2012/09/09 21:29:24 | 000,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
      [2012/09/09 21:29:18 | 000,050,868 | ---- | M] () -- C:\WINDOWS\System32\nvapps.xml
      [2012/09/09 21:29:07 | 000,000,388 | ---- | M] () -- C:\WINDOWS\tasks\GlaryInitialize.job
      [2012/09/09 21:28:58 | 000,001,084 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
      [2012/09/09 21:28:55 | 000,000,264 | ---- | M] () -- C:\WINDOWS\tasks\OfferBoxUpdate.job
      [2012/09/09 21:28:48 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
      [2012/09/09 21:16:16 | 000,000,012 | ---- | M] () -- C:\WINDOWS\bthservsdp.dat
      [2012/09/09 18:48:21 | 000,002,745 | ---- | M] () -- C:\Documents and Settings\Administrator\Desktop\HiJackThis.lnk
      [2012/09/07 11:40:03 | 000,000,284 | ---- | M] () -- C:\WINDOWS\tasks\AppleSoftwareUpdate.job
      [2012/09/07 10:46:01 | 000,000,998 | ---- | M] () -- C:\WINDOWS\tasks\Google Software Updater.job
      [2012/09/06 23:38:50 | 000,222,720 | ---- | M] () -- C:\Documents and Settings\Administrator\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
      [2012/08/30 10:40:50 | 000,004,199 | ---- | M] () -- C:\WINDOWS\vwdof.ini
      [2012/08/21 11:37:09 | 000,001,955 | ---- | M] () -- C:\Documents and Settings\Administrator\Desktop\Free Video to iPod Converter.lnk
      [2012/08/16 16:26:48 | 000,000,792 | ---- | M] () -- C:\Documents and Settings\Administrator\Application Data\Microsoft\Internet Explorer\Quick Launch\Iniciar Microsoft Office Outlook.lnk
      [2012/08/16 00:57:24 | 004,024,344 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
      [2012/08/15 04:43:33 | 000,000,900 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Malwarebytes Anti-Malware.lnk
      [2012/08/13 20:22:38 | 000,000,900 | ---- | M] () -- C:\Documents and Settings\Administrator\Desktop\Boilsoft Video Joiner.lnk
      [2012/08/11 23:46:18 | 000,113,252 | ---- | M] () -- C:\WINDOWS\System32\nvModes.dat

      ========== Files Created - No Company Name ==========

      [2012/09/09 20:40:23 | 000,022,528 | ---- | C] () -- C:\WINDOWS\AT-Uninstall.exe
      [2012/09/09 20:40:17 | 000,011,776 | ---- | C] () -- C:\WINDOWS\Colous.exe
      [2012/09/09 20:40:16 | 000,069,660 | ---- | C] () -- C:\WINDOWS\Fart.exe
      [2012/08/30 10:12:57 | 000,004,199 | ---- | C] () -- C:\WINDOWS\vwdof.ini
      [2012/08/21 11:37:09 | 000,001,955 | ---- | C] () -- C:\Documents and Settings\Administrator\Desktop\Free Video to iPod Converter.lnk
      [2012/08/19 16:43:01 | 000,000,804 | ---- | C] () -- C:\Documents and Settings\Administrator\Local Settings\Application Data\{31ae1b8d-abf7-232f-defc-1568c0f4d1e9}\L\00000004.@
      [2012/08/13 20:22:38 | 000,000,900 | ---- | C] () -- C:\Documents and Settings\Administrator\Desktop\Boilsoft Video Joiner.lnk
      [2012/07/29 13:12:40 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\Administrator\viaje
      [2012/05/20 21:44:08 | 000,243,240 | ---- | C] () -- C:\Documents and Settings\LocalService\Local Settings\Application Data\FontCache3.0.0.0.dat
      [2012/02/16 04:05:36 | 000,003,072 | ---- | C] () -- C:\WINDOWS\System32\iacenc.dll
      [2011/11/23 15:34:54 | 000,428,434 | ---- | C] () -- C:\Documents and Settings\LocalService\Local Settings\Application Data\WPFFontCache_v0400-System.dat
      [2011/11/17 14:02:38 | 000,000,081 | ---- | C] () -- C:\WINDOWS\winDecrypt.INI
      [2010/11/22 12:42:09 | 000,000,012 | ---- | C] () -- C:\WINDOWS\bthservsdp.dat
      [2010/11/12 14:24:16 | 000,000,132 | ---- | C] () -- C:\Documents and Settings\Administrator\Application Data\Adobe BMP Format CS5 Prefs
      [2010/10/29 11:00:45 | 000,000,132 | ---- | C] () -- C:\Documents and Settings\Administrator\Application Data\Adobe PNG Format CS5 Prefs
      [2010/10/21 09:59:31 | 000,001,456 | ---- | C] () -- C:\Documents and Settings\Administrator\Local Settings\Application Data\Adobe Guardar para Web 12.0 Prefs
      [2009/07/30 01:39:47 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\Administrator\Local Settings\Application Data\imageCache7.db
      [2008/11/20 11:48:33 | 000,000,563 | ---- | C] () -- C:\Documents and Settings\Administrator\Application Data\VideoReDo.Vprj
      [2008/02/12 19:47:10 | 004,445,330 | ---- | C] () -- C:\Documents and Settings\Administrator\Local Settings\Application Data\imageCache.db
      [2007/04/25 00:20:38 | 000,222,720 | ---- | C] () -- C:\Documents and Settings\Administrator\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
      [2007/04/24 20:44:51 | 000,000,136 | ---- | C] () -- C:\Documents and Settings\Administrator\Local Settings\Application Data\fusioncache.dat
      [2007/04/24 17:00:01 | 000,000,004 | -H-- | C] () -- C:\Documents and Settings\All Users\Application Data\QSLLPSVCShare
      [2004/08/10 13:00:00 | 000,002,048 | -HS- | C] () -- C:\WINDOWS\Installer\{31ae1b8d-abf7-232f-defc-1568c0f4d1e9}\@
      [2004/08/10 13:00:00 | 000,002,048 | -HS- | C] () -- C:\Documents and Settings\Administrator\Local Settings\Application Data\{31ae1b8d-abf7-232f-defc-1568c0f4d1e9}\@

      ========== LOP Check ==========

      [2012/08/13 20:19:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Applian FLV and Media Player
      [2009/11/19 18:47:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Astroburn Lite
      [2012/05/24 16:29:34 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Audacity
      [2007/04/26 01:48:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Autodesk
      [2008/11/13 11:01:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Bamboo Scribe
      [2012/05/03 12:53:34 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Blackberry Desktop
      [2007/04/26 02:39:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Canon
      [2010/10/21 12:08:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1
      [2012/03/26 08:27:34 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\DAEMON Tools Lite
      [2007/10/05 21:01:37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\DataLayer
      [2012/08/21 11:37:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\DVDVideoSoft
      [2010/10/20 20:32:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Egyc
      [2012/01/16 14:33:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\ElevatedDiagnostics
      [2009/12/18 21:15:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Flexrise.9F3FBFC56E7DF11606748B3513468A7A7FB809D1.1
      [2008/12/11 02:03:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\FLV Extract
      [2008/12/28 21:42:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\GlarySoft
      [2009/05/23 21:11:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\GretagMacbeth
      [2010/11/30 14:20:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Ifxyu
      [2008/09/19 21:54:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Image Zone Express
      [2009/06/10 10:15:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\IObit
      [2012/04/02 14:47:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\LaunchPad
      [2009/12/23 14:07:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Mask Pro 4.0
      [2009/04/29 09:32:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Movies Extractor Scout
      [2010/09/09 18:41:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Mp3tag
      [2009/10/27 20:21:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\MPEG Streamclip
      [2009/01/29 16:36:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Music Editor Free
      [2012/06/02 22:20:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Nik Software
      [2007/08/04 23:25:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Nokia
      [2007/09/30 14:26:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Nokia Multimedia Player
      [2009/06/10 09:53:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\OfficeUpdate12
      [2011/08/09 17:35:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Ogro
      [2009/04/14 11:37:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\onOne Software
      [2012/05/31 09:58:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Oracle
      [2007/08/04 21:44:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\PC Suite
      [2008/09/19 21:54:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Printer Info Cache
      [2007/12/02 22:12:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Publish Providers
      [2011/11/27 05:11:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\QuickScan
      [2012/04/21 15:28:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Research In Motion
      [2008/12/12 16:53:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Softplicity
      [2011/05/05 12:55:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Sony
      [2009/09/19 11:15:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Sony Creative Software
      [2008/12/19 21:52:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Sony Setup
      [2010/10/18 22:33:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\StageManager.BD092818F67280F4B42B04877600987F0111B594.1
      [2008/04/24 12:05:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\TechSmith
      [2011/11/17 14:12:37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Thinstall
      [2009/11/19 18:52:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Astroburn Lite
      [2008/11/14 20:34:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Autodesk
      [2012/08/22 16:02:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\boost_interprocess
      [2009/11/18 17:14:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\DAEMON Tools Lite
      [2009/11/08 15:02:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Juicer3
      [2010/04/05 16:59:37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\MSScanAppDataDir
      [2010/01/24 16:32:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\onOne Software
      [2009/06/14 12:34:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\PC-Doctor
      [2009/06/14 12:34:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\PCDr
      [2011/11/23 13:23:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Phase One
      [2008/12/12 16:58:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\RapidSolution
      [2011/11/18 16:18:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\regid.1986-12.com.adobe
      [2012/04/21 14:28:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Research In Motion
      [2011/09/26 1052 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\soft Xpansion
      [2009/02/12 13:49:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Sony
      [2010/07/22 23:29:39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\SQLite Expert
      [2008/04/18 08:46:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\TechSmith
      [2012/08/21 11:57:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\TEMP
      [2009/03/16 12:48:37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\{00D89592-F643-4D8D-8F0F-AFAE0F14D4C3}
      [2010/05/10 11:44:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\{429CAD59-35B1-4DBC-BB6D-1DB246563521}
      [2009/12/14 12:28:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\{755AC846-7372-4AC8-8550-C52491DAA8BD}
      [2009/04/20 12:17:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\{8CD7F5AF-ECFA-4793-BF40-D8F42DBFF906}
      [2009/04/16 11:28:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Application Data\SACore
      [2012/09/09 21:29:07 | 000,000,388 | ---- | M] () -- C:\WINDOWS\Tasks\GlaryInitialize.job
      [2012/09/09 21:28:55 | 000,000,264 | ---- | M] () -- C:\WINDOWS\Tasks\OfferBoxUpdate.job

      ========== Purity Check ==========



      ========== Custom Scans ==========

      < %SYSTEMDRIVE%\*.* >
      [2012/09/09 20:44:05 | 000,002,945 | ---- | M] () -- C:\AT-Destroyer.txt
      [2007/04/24 15:30:44 | 000,000,000 | ---- | M] () -- C:\AUTOEXEC.BAT
      [2010/11/23 21:27:33 | 000,000,209 | ---- | M] () -- C:\Boot.bak
      [2011/09/26 09:55:06 | 000,000,325 | RHS- | M] () -- C:\boot.ini
      [2004/08/04 00:00:00 | 000,260,272 | RHS- | M] () -- C:\cmldr
      [2007/04/26 01:56:36 | 000,000,011 | ---- | M] () -- C:\CONFIG.SYS
      [2007/04/24 15:30:44 | 000,000,000 | RHS- | M] () -- C:\IO.SYS
      [2007/04/24 15:30:44 | 000,000,000 | RHS- | M] () -- C:\MSDOS.SYS
      [2004/08/10 13:00:00 | 000,047,564 | RHS- | M] () -- C:\NTDETECT.COM
      [2008/09/23 00:37:53 | 000,250,048 | RHS- | M] () -- C:\ntldr
      [2010/02/23 12:01:10 | 000,000,244 | ---- | M] () -- C:\pmt.dat
      [2012/09/09 20:40:41 | 000,000,000 | ---- | M] () -- C:\prueba.txt
      [2012/05/31 21:35:17 | 000,000,454 | ---- | M] () -- C:\rkill.log
      [2010/11/25 16:20:35 | 000,003,856 | ---- | M] () -- C:\statistics.xml
      [2012/09/09 21:15:58 | 000,116,934 | ---- | M] () -- C:\TDSSKiller.2.8.8.0_09.09.2012_21.11.43_log.txt
      [2012/09/09 21:34:05 | 000,225,044 | ---- | M] () -- C:\TDSSKiller.2.8.8.0_09.09.2012_21.28.58_log.txt
      [2009/07/03 20:38:47 | 000,000,015 | --S- | M] () -- C:\testlog.log
      [2011/08/31 21:56:13 | 000,003,584 | -HS- | M] () -- C:\Thumbs.db
      [2009/06/21 19:17:30 | 000,000,007 | ---- | M] () -- C:\tw0001.dat

      ========== Hard Links - Junction Points - Mount Points - Symbolic Links ==========
      [C:\WINDOWS\$NtUninstallKB11041$] -> Error: Cannot create file handle -> Unknown point type

      ========== Alternate Data Streams ==========

      @Alternate Data Stream - 95 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:5C321E34
      @Alternate Data Stream - 193 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:4BF2F6B5
      @Alternate Data Stream - 118 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:BEB71B81
      @Alternate Data Stream - 113 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:C39E55C5
      @Alternate Data Stream - 110 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:888AFB86

      < End of report >
      Última edición por JLSaura fecha: 09/09/12 a las 20:26:39

    4. #4
      Moderador Gral.
      Avatar de @Javier_HF
      Registrado
      jun 2006
      Ubicación
      Spain.
      Mensajes
      21.696

      Re: No conecto con GOOGLE

      Ejecuta de nuevo OTL.exe

      Copia y Pega el código que está dentro del recuadro de abajo en la sección Análisis Personalizado / Código de Reparación.

      Código:
      :OTL
      DRV - (WDICA) -- File not found
      DRV - (Point32) -- system32\DRIVERS\point32.sys File not found
      DRV - (PDRFRAME) -- File not found
      DRV - (PDRELI) -- File not found
      DRV - (PDFRAME) -- File not found
      DRV - (PDCOMP) -- File not found
      DRV - (PCIDump) -- File not found
      DRV - (NetBT) -- system32\drivers\tsk6.tmp File not found
      DRV - (mfeavfk01) -- File not found
      DRV - (lbrtfdc) -- File not found
      DRV - (i2omgmt) -- File not found
      DRV - (Changer) -- File not found
      DRV - (ae4wp5zf) -- File not found
      DRV - (Ad-Watch Real-Time Scanner) -- C:\WINDOWS\system32\drivers\AWRTPD.sys File not found
      DRV - (Ad-Watch Connect Filter) -- C:\WINDOWS\system32\drivers\NSDriver.sys File not found
      DRV - (adfs) -- File not found
      IE - HKLM\..\SearchScopes\{CF739809-1C6C-47C0-85B9-569DBB141420}: "URL" = http://toolbar.ask.com/toolbarv/askRedirect?o=10635&gct=&gc=1&q={searchTerms}&crm= 1
      IE - HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank
      IE - HKU\S-1-5-18\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank
      IE - HKU\S-1-5-21-861567501-1614895754-839522115-500\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com
      IE - HKU\S-1-5-21-861567501-1614895754-839522115-500\..\SearchScopes\{CF739809-1C6C-47C0-85B9-569DBB141420}: "URL" = http://toolbar.ask.com/toolbarv/askRedirect?o=10635&gct=&gc=1&q={searchTerms}&crm= 1
      IE - HKU\S-1-5-21-861567501-1614895754-839522115-500\..\SearchScopes\{DECA3892-BA8F-44b8-A993-A466AD694AE4}: "URL" = http://es.search.yahoo.com/search?fr=mcafee&p={SearchTerms}
      IE - HKU\S-1-5-21-861567501-1614895754-839522115-500\..\SearchScopes\Yahoo!: "URL" = http://us.search.yahoo.com/search?p={searchTerms}&ei=utf-8&fr=iobit-trans
      FF - prefs.js..keyword.URL: "http://es.search.yahoo.com/search?fr=mcafee&p="
      FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found
      FF - HKLM\Software\MozillaPlugins\@divx.com/DivX Content Upload Plugin,version=1.0.0: C:\Program Files\Descargas\DivX\DivX Content Uploader\npUpload.dll File not found
      FF - HKLM\Software\MozillaPlugins\@divx.com/DivX Player Plugin,version=1.0.0: File not found
      FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.4.1: C:\WINDOWS\system32\npDeployJava1.dll (Oracle Corporation)
      FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.4.1: C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\plugin2\npjp2.dll (Oracle Corporation)
      FF - HKLM\Software\MozillaPlugins\@real.com/nsJSRealPlayerPlugin;version=: File not found
      O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.2.4204.1700\swg.dll (Google Inc.)
      O2 - BHO: (no name) - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - No CLSID value found.
      O4 - HKLM..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre7\bin\jusched.exe" File not found
      O4 - HKLM..\Run: [UserFaultCheck] %systemroot%\system32\dumprep 0 -u File not found
      O4 - HKU\S-1-5-21-861567501-1614895754-839522115-500..\Run: [McAfee Update] C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\mcupdate_131998 6845.exe /insfin C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\mcupdate_131998 6845.ini /syncfin File not found
      O4 - HKU\S-1-5-21-861567501-1614895754-839522115-500..\Run: [SmartRAM] C:\Program Files\Descargas\HJT\Advanced System Care\Advanced SystemCare 3\Sup_SmartRAM.exe (IObit)
      O10 - Protocol_Catalog9\Catalog_Entries\000000000001 - C:\Program Files\Bonjour\mdnsNSP.dll File not found
      O10 - Protocol_Catalog9\Catalog_Entries\000000000002 - C:\Program Files\Bonjour\mdnsNSP.dll File not found
      O10 - Protocol_Catalog9\Catalog_Entries\000000000003 - C:\Program Files\Bonjour\mdnsNSP.dll File not found
      O10 - Protocol_Catalog9\Catalog_Entries\000000000004 - C:\Program Files\Bonjour\mdnsNSP.dll File not found
      O10 - Protocol_Catalog9\Catalog_Entries\000000000005 - C:\Program Files\Bonjour\mdnsNSP.dll File not found
      O10 - Protocol_Catalog9\Catalog_Entries\000000000006 - C:\Program Files\Bonjour\mdnsNSP.dll File not found
      O10 - Protocol_Catalog9\Catalog_Entries\000000000007 - C:\Program Files\Bonjour\mdnsNSP.dll File not found
      O10 - Protocol_Catalog9\Catalog_Entries\000000000008 - C:\Program Files\Bonjour\mdnsNSP.dll File not found
      O10 - Protocol_Catalog9\Catalog_Entries\000000000009 - C:\Program Files\Bonjour\mdnsNSP.dll File not found
      O10 - Protocol_Catalog9\Catalog_Entries\000000000010 - C:\Program Files\Bonjour\mdnsNSP.dll File not found
      O10 - Protocol_Catalog9\Catalog_Entries\000000000011 - C:\Program Files\Bonjour\mdnsNSP.dll File not found
      O10 - Protocol_Catalog9\Catalog_Entries\000000000012 - C:\Program Files\Bonjour\mdnsNSP.dll File not found
      O10 - Protocol_Catalog9\Catalog_Entries\000000000013 - C:\Program Files\Bonjour\mdnsNSP.dll File not found
      O10 - Protocol_Catalog9\Catalog_Entries\000000000014 - C:\Program Files\Bonjour\mdnsNSP.dll File not found
      O10 - Protocol_Catalog9\Catalog_Entries\000000000015 - C:\Program Files\Bonjour\mdnsNSP.dll File not found
      O10 - Protocol_Catalog9\Catalog_Entries\000000000016 - C:\Program Files\Bonjour\mdnsNSP.dll File not found
      O10 - Protocol_Catalog9\Catalog_Entries\000000000017 - C:\Program Files\Bonjour\mdnsNSP.dll File not found
      O10 - Protocol_Catalog9\Catalog_Entries\000000000018 - C:\Program Files\Bonjour\mdnsNSP.dll File not found
      O10 - Protocol_Catalog9\Catalog_Entries\000000000019 - C:\Program Files\Bonjour\mdnsNSP.dll File not found
      O10 - Protocol_Catalog9\Catalog_Entries\000000000020 - C:\Program Files\Bonjour\mdnsNSP.dll File not found
      O10 - Protocol_Catalog9\Catalog_Entries\000000000021 - C:\Program Files\Bonjour\mdnsNSP.dll File not found
      O10 - Protocol_Catalog9\Catalog_Entries\000000000022 - C:\Program Files\Bonjour\mdnsNSP.dll File not found
      O10 - Protocol_Catalog9\Catalog_Entries\000000000023 - C:\Program Files\Bonjour\mdnsNSP.dll File not found
      O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} http://download.eset.com/special/eos/OnlineScanner.cab (Reg Error: Key error.)
      O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.7.0/jinstall-1_7_0_04-windows-i586.cab (Java Plug-in 1.7.0_04)
      O16 - DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} http://fpdownload.macromedia.com/get/flashplayer/current/polarbear/ultrashim.cab (Reg Error: Value error.)
      O16 - DPF: {CAFEEFAC-0017-0000-0004-ABCDEFFEDCBA} http://java.sun.com/update/1.7.0/jinstall-1_7_0_04-windows-i586.cab (Java Plug-in 1.7.0_04)
      O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.7.0/jinstall-1_7_0_04-windows-i586.cab (Java Plug-in 1.7.0_04)
      MsConfig - StartUpFolder: C:^Documents and Settings^Administrator^Start Menu^Programs^Startup^Kremlin Sentry.lnk - Reg Error: Value error. - File not found
      MsConfig - StartUpFolder: C:^Documents and Settings^All Users^Start Menu^Programs^Startup^Acelerador de inicio de AutoCAD.lnk - Reg Error: Value error. - File not found
      MsConfig - StartUpFolder: C:^Documents and Settings^All Users^Start Menu^Programs^Startup^CineFormActiveMetadataStatus Viewer.exe - Reg Error: Value error. - File not found
      MsConfig - StartUpReg: Acrobat Assistant 8.0 - hkey= - key= - Reg Error: Value error. File not found
      MsConfig - StartUpReg: Acrotray - hkey= - key= - Reg Error: Value error. File not found
      MsConfig - StartUpReg: Adobe Photo Downloader - hkey= - key= - Reg Error: Value error. File not found
      MsConfig - StartUpReg: apdproxy - hkey= - key= - Reg Error: Value error. File not found
      MsConfig - StartUpReg: ctfmon.exe - hkey= - key= - File not found
      MsConfig - StartUpReg: NvCplDaemon - hkey= - key= - File not found
      MsConfig - StartUpReg: NVHotkey - hkey= - key= - File not found
      MsConfig - StartUpReg: NvMediaCenter - hkey= - key= - File not found
      MsConfig - StartUpReg: nwiz - hkey= - key= - File not found
      [2012/09/09 21:29:07 | 000,000,388 | ---- | M] () -- C:\WINDOWS\tasks\GlaryInitialize.job
      [C:\WINDOWS\$NtUninstallKB11041$] -> Error: Cannot create file handle -> Unknown point type
      @Alternate Data Stream - 95 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:5C321E34
      @Alternate Data Stream - 193 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:4BF2F6B5
      @Alternate Data Stream - 118 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:BEB71B81
      @Alternate Data Stream - 113 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:C39E55C5
      @Alternate Data Stream - 110 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:888AFB86
      
      :Files
      ipconfig /flushdns /c
      ipconfig /renew /c
      
      :Commands
      [PURITY]
      [EMPTYFLASH]
      [EMPTYTEMP]
      [RESETHOSTS]
      Presiona el Botón Reparar para lanzar la eliminación. Después presionas en OK.

      OTL va a Reiniciar el ordenador para completar la eliminación.

      Guardas el nuevo reporte generado, y lo copias y pegas en tu próxima respuesta.

      Antes de contestarnos revisa/actualiza tu versión de Java(Muy Importante) >> Descarga gratuita del software de Java

      Y cuando nos contestes dinos que versión de Java se ha quedado instalada >> ¿Cómo puedo comprobar si Java funciona en mi equipo?

      Recuerda ponernos el log de OTL, y dinos también que versión de Java tienes ahora y como sigue el ordenador, en relación al problema planteado.

      Saludos.
      Quien no lo intenta no lo consigue | ;-)

      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.

    5. #5
      Usuario Avatar de JLSaura
      Registrado
      abr 2009
      Ubicación
      Madrid
      Mensajes
      104

      Re: No conecto con GOOGLE

      Al reiniciarse me ha aparecido el log de OTL, pero me he quedado sin conexión a internet.

      Al final del proceso de OTL ha aparecido una ventana del antivirus diciendo que mi conexión habia cambiado y que si queria asignarle la caracteristica DOMESTICA, PUBLICA o TRABAJO, y le he marcado DOMESTICA.
      Los datos que incluia el mensaje eran estos:
      Puerta de enlace 192.168.1.1
      Mascara:255.255.255.0

      Ahora estoy desde otro equipo asi que no puedo actualizar JAVA. En Panel de Control/Agregar-Quitar programas he visto que tengo dos programas:
      Java (TM) 7 Update 4
      Java FX 2.1.0

      Este es el log de OTL:

      All processes killed
      ========== OTL ==========
      Service WDICA stopped successfully!
      Service WDICA deleted successfully!
      File File not found not found.
      Service Point32 stopped successfully!
      Service Point32 deleted successfully!
      File system32\DRIVERS\point32.sys File not found not found.
      Service PDRFRAME stopped successfully!
      Service PDRFRAME deleted successfully!
      File File not found not found.
      Service PDRELI stopped successfully!
      Service PDRELI deleted successfully!
      File File not found not found.
      Service PDFRAME stopped successfully!
      Service PDFRAME deleted successfully!
      File File not found not found.
      Service PDCOMP stopped successfully!
      Service PDCOMP deleted successfully!
      File File not found not found.
      Service PCIDump stopped successfully!
      Service PCIDump deleted successfully!
      File File not found not found.
      Service NetBT stopped successfully!
      Service NetBT deleted successfully!
      File system32\drivers\tsk6.tmp File not found not found.
      Error: No service named mfeavfk01 was found to stop!
      Registry key HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\mfeavfk01 deleted successfully.
      File File not found not found.
      Service lbrtfdc stopped successfully!
      Service lbrtfdc deleted successfully!
      File File not found not found.
      Service i2omgmt stopped successfully!
      Service i2omgmt deleted successfully!
      File File not found not found.
      Service Changer stopped successfully!
      Service Changer deleted successfully!
      File File not found not found.
      Error: No service named ae4wp5zf was found to stop!
      Service\Driver key ae4wp5zf not found.
      File File not found not found.
      Service Ad-Watch Real-Time Scanner stopped successfully!
      Service Ad-Watch Real-Time Scanner deleted successfully!
      File C:\WINDOWS\system32\drivers\AWRTPD.sys File not found not found.
      Service Ad-Watch Connect Filter stopped successfully!
      Service Ad-Watch Connect Filter deleted successfully!
      File C:\WINDOWS\system32\drivers\NSDriver.sys File not found not found.
      Service adfs stopped successfully!
      Service adfs deleted successfully!
      File File not found not found.
      Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{CF739809-1C6C-47C0-85B9-569DBB141420}\ deleted successfully.
      Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CF739809-1C6C-47C0-85B9-569DBB141420}\ not found.
      HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\Main\\Start Page| /E : value set successfully!
      HKU\S-1-5-18\SOFTWARE\Microsoft\Internet Explorer\Main\\Start Page| /E : value set successfully!
      HKU\S-1-5-21-861567501-1614895754-839522115-500\SOFTWARE\Microsoft\Internet Explorer\Main\\Start Page| /E : value set successfully!
      Registry key HKEY_USERS\S-1-5-21-861567501-1614895754-839522115-500\Software\Microsoft\Internet Explorer\SearchScopes\{CF739809-1C6C-47C0-85B9-569DBB141420}\ deleted successfully.
      Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CF739809-1C6C-47C0-85B9-569DBB141420}\ not found.
      Registry key HKEY_USERS\S-1-5-21-861567501-1614895754-839522115-500\Software\Microsoft\Internet Explorer\SearchScopes\{DECA3892-BA8F-44b8-A993-A466AD694AE4}\ deleted successfully.
      Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{DECA3892-BA8F-44b8-A993-A466AD694AE4}\ not found.
      Registry key HKEY_USERS\S-1-5-21-861567501-1614895754-839522115-500\Software\Microsoft\Internet Explorer\SearchScopes\{searchTerms}\ not found.
      Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{searchTerms}\ not found.
      Prefs.js: "http://es.search.yahoo.com/search?fr=mcafee&p=" removed from keyword.URL
      Registry key HKEY_LOCAL_MACHINE\Software\MozillaPlugins\@Apple.com/iTunes,version=\ deleted successfully.
      Registry key HKEY_LOCAL_MACHINE\Software\MozillaPlugins\@divx.com/DivX Content Upload Plugin,version=1.0.0\ deleted successfully.
      Registry key HKEY_LOCAL_MACHINE\Software\MozillaPlugins\@divx.com/DivX Player Plugin,version=1.0.0\ deleted successfully.
      Registry key HKEY_LOCAL_MACHINE\Software\MozillaPlugins\@java.com/DTPlugin,version=10.4.1\ deleted successfully.
      C:\WINDOWS\system32\npDeployJava1.dll moved successfully.
      Registry key HKEY_LOCAL_MACHINE\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.4.1\ deleted successfully.
      C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\plugin2\npjp2.dll moved successfully.
      Registry key HKEY_LOCAL_MACHINE\Software\MozillaPlugins\@real.com/nsJSRealPlayerPlugin;version=\ deleted successfully.
      Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}\ deleted successfully.
      Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}\ deleted successfully.
      C:\Program Files\Google\GoogleToolbarNotifier\5.2.4204.1700\swg.dll moved successfully.
      Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}\ deleted successfully.
      Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}\ not found.
      Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\SunJavaUpdateSched deleted successfully.
      Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\UserFaultCheck deleted successfully.
      Registry value HKEY_USERS\S-1-5-21-861567501-1614895754-839522115-500\Software\Microsoft\Windows\CurrentVersion\Run\\McAfee Update deleted successfully.
      Registry value HKEY_USERS\S-1-5-21-861567501-1614895754-839522115-500\Software\Microsoft\Windows\CurrentVersion\Run\\SmartRAM deleted successfully.
      C:\Program Files\Descargas\HJT\Advanced System Care\Advanced SystemCare 3\Sup_SmartRAM.exe moved successfully.
      Registry key HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000001\ deleted successfully.
      Registry key HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000002\ deleted successfully.
      Registry key HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000003\ deleted successfully.
      Registry key HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000004\ deleted successfully.
      Registry key HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000005\ deleted successfully.
      Registry key HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000006\ deleted successfully.
      Registry key HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000007\ deleted successfully.
      Registry key HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000008\ deleted successfully.
      Registry key HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000009\ deleted successfully.
      Registry key HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000010\ deleted successfully.
      Registry key HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000011\ deleted successfully.
      Registry key HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000012\ deleted successfully.
      Registry key HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000013\ deleted successfully.
      Registry key HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000014\ deleted successfully.
      Registry key HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000015\ deleted successfully.
      Registry key HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000016\ deleted successfully.
      Registry key HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000017\ deleted successfully.
      Registry key HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000018\ deleted successfully.
      Registry key HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000019\ deleted successfully.
      Registry key HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000020\ deleted successfully.
      Registry key HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000021\ deleted successfully.
      Registry key HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000022\ deleted successfully.
      Registry key HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000023\ deleted successfully.
      Starting removal of ActiveX control {7530BFB8-7293-4D34-9923-61A11451AFC5}
      C:\WINDOWS\Downloaded Program Files\OnlineScanner.inf moved successfully.
      Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{7530BFB8-7293-4D34-9923-61A11451AFC5}\ deleted successfully.
      Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{7530BFB8-7293-4D34-9923-61A11451AFC5}\ not found.
      Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{7530BFB8-7293-4D34-9923-61A11451AFC5}\ not found.
      Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{7530BFB8-7293-4D34-9923-61A11451AFC5}\ not found.
      Starting removal of ActiveX control {8AD9C840-044E-11D1-B3E9-00805F499D93}
      Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{8AD9C840-044E-11D1-B3E9-00805F499D93}\ deleted successfully.
      Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{8AD9C840-044E-11D1-B3E9-00805F499D93}\ deleted successfully.
      Registry key HKEY_CURRENT_USER\SOFTWARE\Classes\CLSID\{8AD9C840-044E-11D1-B3E9-00805F499D93}\ deleted successfully.
      Registry key HKEY_USERS\.DEFAULT\SOFTWARE\Classes\CLSID\{8AD9C840-044E-11D1-B3E9-00805F499D93}\ deleted successfully.
      Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{8AD9C840-044E-11D1-B3E9-00805F499D93}\ not found.
      Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{8AD9C840-044E-11D1-B3E9-00805F499D93}\ not found.
      Starting removal of ActiveX control {8FFBE65D-2C9C-4669-84BD-5829DC0B603C}
      C:\WINDOWS\Downloaded Program Files\erma.inf moved successfully.
      Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{8FFBE65D-2C9C-4669-84BD-5829DC0B603C}\ deleted successfully.
      Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{8FFBE65D-2C9C-4669-84BD-5829DC0B603C}\ deleted successfully.
      Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{8FFBE65D-2C9C-4669-84BD-5829DC0B603C}\ not found.
      Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{8FFBE65D-2C9C-4669-84BD-5829DC0B603C}\ not found.
      Starting removal of ActiveX control {CAFEEFAC-0017-0000-0004-ABCDEFFEDCBA}
      Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{CAFEEFAC-0017-0000-0004-ABCDEFFEDCBA}\ deleted successfully.
      Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0004-ABCDEFFEDCBA}\ deleted successfully.
      Registry key HKEY_CURRENT_USER\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0004-ABCDEFFEDCBA}\ deleted successfully.
      Registry key HKEY_USERS\.DEFAULT\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0004-ABCDEFFEDCBA}\ deleted successfully.
      Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{CAFEEFAC-0017-0000-0004-ABCDEFFEDCBA}\ not found.
      Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0004-ABCDEFFEDCBA}\ not found.
      Starting removal of ActiveX control {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}
      Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}\ deleted successfully.
      Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}\ deleted successfully.
      Registry key HKEY_CURRENT_USER\SOFTWARE\Classes\CLSID\{CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}\ deleted successfully.
      Registry key HKEY_USERS\.DEFAULT\SOFTWARE\Classes\CLSID\{CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}\ deleted successfully.
      Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}\ not found.
      Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}\ not found.
      Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\StartUpFolder\C:^Documents and Settings^Administrator^Start Menu^Programs^Startup^Kremlin Sentry.lnk\ deleted successfully.
      File Reg Error: Value error. not found.
      Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\StartUpFolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^Acelerador de inicio de AutoCAD.lnk\ deleted successfully.
      File Reg Error: Value error. not found.
      Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\StartUpReg\Acrobat Assistant 8.0\ deleted successfully.
      Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\StartUpReg\Acrotray\ deleted successfully.
      Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\StartUpReg\Adobe Photo Downloader\ deleted successfully.
      Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\StartUpReg\apdproxy\ deleted successfully.
      Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\StartUpReg\ctfmon.exe\ deleted successfully.
      Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\StartUpReg\NvCplDaemon\ deleted successfully.
      Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\StartUpReg\NVHotkey\ deleted successfully.
      Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\StartUpReg\NvMediaCenter\ deleted successfully.
      Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\StartUpReg\nwiz\ deleted successfully.
      C:\WINDOWS\tasks\GlaryInitialize.job moved successfully.
      Unable to remove Unknown point type C:\WINDOWS\$NtUninstallKB11041$
      ADS C:\Documents and Settings\All Users\Application Data\TEMP:5C321E34 deleted successfully.
      ADS C:\Documents and Settings\All Users\Application Data\TEMP:4BF2F6B5 deleted successfully.
      ADS C:\Documents and Settings\All Users\Application Data\TEMP:BEB71B81 deleted successfully.
      ADS C:\Documents and Settings\All Users\Application Data\TEMP:C39E55C5 deleted successfully.
      ADS C:\Documents and Settings\All Users\Application Data\TEMP:888AFB86 deleted successfully.
      ========== FILES ==========
      < ipconfig /flushdns /c >
      Configuración IP de Windows
      Se vació con éxito la caché de resolución de DNS.
      C:\Documents and Settings\Administrator\Desktop\cmd.bat deleted successfully.
      C:\Documents and Settings\Administrator\Desktop\cmd.txt deleted successfully.
      < ipconfig /renew /c >
      Configuración IP de Windows
      No se puede realizar ninguna operación en Local Area Connection mientras los medios estén desconectados.
      C:\Documents and Settings\Administrator\Desktop\cmd.bat deleted successfully.
      C:\Documents and Settings\Administrator\Desktop\cmd.txt deleted successfully.
      ========== COMMANDS ==========

      [EMPTYFLASH]

      User: Administrator
      ->Flash cache emptied: 456 bytes

      User: All Users

      User: Default User
      ->Flash cache emptied: 0 bytes

      User: JOSE LUIS

      User: LocalService
      ->Flash cache emptied: 0 bytes

      User: NetworkService
      ->Flash cache emptied: 0 bytes

      Total Flash Files Cleaned = 0,00 mb


      [EMPTYTEMP]

      User: Administrator
      ->Temp folder emptied: 227230 bytes
      ->Temporary Internet Files folder emptied: 33170 bytes
      ->Java cache emptied: 0 bytes
      ->FireFox cache emptied: 10675828 bytes
      ->Flash cache emptied: 0 bytes

      User: All Users

      User: Default User
      ->Temp folder emptied: 0 bytes
      ->Temporary Internet Files folder emptied: 33170 bytes
      ->Flash cache emptied: 0 bytes

      User: JOSE LUIS

      User: LocalService
      ->Temp folder emptied: 66016 bytes
      ->Temporary Internet Files folder emptied: 33170 bytes
      ->FireFox cache emptied: 0 bytes
      ->Flash cache emptied: 0 bytes

      User: NetworkService
      ->Temp folder emptied: 0 bytes
      ->Temporary Internet Files folder emptied: 45630607 bytes
      ->Java cache emptied: 0 bytes
      ->Flash cache emptied: 0 bytes

      %systemdrive% .tmp files removed: 0 bytes
      %systemroot% .tmp files removed: 0 bytes
      %systemroot%\System32 .tmp files removed: 0 bytes
      %systemroot%\System32\dllcache .tmp files removed: 0 bytes
      %systemroot%\System32\drivers .tmp files removed: 0 bytes
      Windows Temp folder emptied: 48966 bytes
      %systemroot%\system32\config\systemprofile\Local Settings\Temp folder emptied: 136027841 bytes
      %systemroot%\system32\config\systemprofile\Local Settings\Temporary Internet Files folder emptied: 33170 bytes
      RecycleBin emptied: 0 bytes

      Total Files Cleaned = 184,00 mb

      C:\WINDOWS\System32\drivers\etc\Hosts moved successfully.
      HOSTS file reset successfully

      OTL by OldTimer - Version 3.2.61.3 log created on 09102012_022920

      Files\Folders moved on Reboot...

      PendingFileRenameOperations files...

      Registry entries deleted on Reboot...
      Última edición por JLSaura fecha: 10/09/12 a las 04:46:26

    6. #6
      Moderador Gral.
      Avatar de @Javier_HF
      Registrado
      jun 2006
      Ubicación
      Spain.
      Mensajes
      21.696

      Re: No conecto con GOOGLE

      Realiza el siguiente proceso para restaurar la conexión a Internet >> Manual de WinSockFix

      Usa unicamente la que corresponde con tu sistema operativo windows xp.

      Y luego nos cuentas como funciona todo, recuerda realizar los pasos para actualizar Java.

      Saludos.
      Quien no lo intenta no lo consigue | ;-)

      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.

    7. #7
      Usuario Avatar de JLSaura
      Registrado
      abr 2009
      Ubicación
      Madrid
      Mensajes
      104

      Re: No conecto con GOOGLE

      Arreglada la conexión a internet. y Google se conecta

      Instalada la última versión de Java y operativa.

      El problema de los iconos del escritorio continua, sabes que puedo hacer para que no se desordenen??

      Con OTL, TDSKiller que hago??
      Última edición por JLSaura fecha: 10/09/12 a las 07:50:16

    8. #8
      Moderador Gral.
      Avatar de @Javier_HF
      Registrado
      jun 2006
      Ubicación
      Spain.
      Mensajes
      21.696

      Re: No conecto con GOOGLE

      Realiza el siguiente procedimiento :

      - Descarga la herramienta ComboFix y guárdala en el escritorio. <--- Importante.

      Nota: Antes de ejecutar ComboFix asegurarse de :

      Cerrar todos los programas y ventanas abiertas.

      Desactivar temporalmente el Antivirus Cómo deshabilitar temporalmente su Antivirus

      Si está utilizando Windows Vista o Windows 7. Haga click derecho sobre el archivo ComboFix.exe y seleccionar Ejecutar como Administrador.

      PASO 1:

      • Ejecutar el archivo ComboFix.exe
      • Aceptar los términos de licencia.
      • Si ComboFix avisa que hay una versión nueva del programa deberás descargala.
      • Si ComboFix pide instalar la Consola de Recuperación (Recovery Console) hay que instalarla.

      PASO 2:

      • Copiar y pegar el reporte que ComboFix generó. Si no aparece lo encontraras en C:\ComboFix.txt.


      • Comentar cómo sigue su sistema, en relación al problema planteado.


      Importante :

      • Mientras esté trabajando ComboFix no ejecutar ningún software hasta que termine.
      • No reiniciar su PC, ComboFix lo hará de ser necesario.
      • Mientras ComboFix esté trabajando, no mover el mouse ya que pararía su proceso.

      Atención!! No use ComboFix a menos que se le haya indicado específicamente en su mensaje por un integrante de nuestro Staff. Es una herramienta de gran alcance destinada por su creador a ser usada bajo la orientación y supervisión de un experto, no para uso privado. El uso de ComboFix incorrectamente podría generar problemas en su sistema. Por favor, lea las "Negaciones de la Garantía" de ComboFix.
      NOTAS IMPORTANTES:

      ° Una vez Terminado el Trabajo de ComboFix, puedes activar Tu antivirus.

      ° No Pongas los Reportes Dentro de Etiquetas Code ni HTML.

      ° No vuelvas a ejecutar ningún otro programa antivirus hasta que vuelva con una respuesta.
      Saludos, Javier.

      Quien no lo intenta no lo consigue | ;-)

      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.

    9. #9
      Usuario Avatar de JLSaura
      Registrado
      abr 2009
      Ubicación
      Madrid
      Mensajes
      104

      Re: No conecto con GOOGLE

      Durante la ejecución me apareció una ventana:

      "You are infected with Rootkit.ZeroAccess. It has inserted itself into the tcp/ip stak. This is a particulary dificult infection. If for any reason yuo are unable to connect to the internet after running ComboFix, reboot once and see if that fix it.
      If its not fixed, run ComboFix one more time."

      Se reinicío el solo y volvio a ejecutarse.

      Finalmente Google se conecta. Aqui esta el log:

      ComboFix 12-09-09.02 - Administrator 10/09/2012 14:15:35.13.2 - x86
      Microsoft Windows XP Professional 5.1.2600.3.1252.34.1033.18.2046.1536 [GMT 2:00]
      Running from: c:\documents and settings\Administrator\Desktop\ComboFix.exe
      * Created a new restore point
      .
      .
      ((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
      .
      .
      c:\documents and settings\Administrator\Application Data\Adobe\plugs
      c:\documents and settings\Administrator\Application Data\Adobe\plugs\KB17091750
      c:\documents and settings\Administrator\Application Data\Adobe\plugs\KB17091796
      c:\documents and settings\Administrator\Application Data\Adobe\shed
      c:\documents and settings\All Users\Application Data\DragToDiscUserNameE.txt
      c:\documents and settings\All Users\Application Data\DragToDiscUserNameF.txt
      c:\documents and settings\All Users\Application Data\DragToDiscUserNameG.txt
      c:\documents and settings\All Users\Application Data\DragToDiscUserNameM.txt
      c:\documents and settings\All Users\Application Data\TEMP
      C:\Thumbs.db
      c:\windows\$NtUninstallKB11041$
      c:\windows\$NtUninstallKB11041$\1422630833
      c:\windows\$NtUninstallKB11041$\2470819940\@
      c:\windows\$NtUninstallKB11041$\2470819940\cfg.ini
      c:\windows\$NtUninstallKB11041$\2470819940\Desktop.ini
      c:\windows\$NtUninstallKB11041$\2470819940\L\ffjwmuoi
      c:\windows\$NtUninstallKB11041$\2470819940\U\00000001.@
      c:\windows\$NtUninstallKB11041$\2470819940\U\00000002.@
      c:\windows\$NtUninstallKB11041$\2470819940\U\00000004.@
      c:\windows\$NtUninstallKB11041$\2470819940\U\80000000.@
      c:\windows\$NtUninstallKB11041$\2470819940\U\80000004.@
      c:\windows\$NtUninstallKB11041$\2470819940\U\80000032.@
      c:\windows\NDP1.1sp1-KB2656353-X86.exe
      c:\windows\system32\drivers\etc\hosts.ics
      c:\windows\system32\drivers\etc\hosts.txt
      c:\windows\system32\MUI\0C0A\tourstart.exe
      c:\windows\system32\Thumbs.db
      c:\windows\system32\URTTemp
      c:\windows\system32\URTTemp\fusion.dll
      c:\windows\system32\URTTemp\mscoree.dll
      c:\windows\system32\URTTemp\mscoree.dll.local
      c:\windows\system32\URTTemp\mscorsn.dll
      c:\windows\system32\URTTemp\mscorwks.dll
      c:\windows\system32\URTTemp\msvcr71.dll
      c:\windows\system32\URTTemp\regtlib.exe
      c:\windows\WindowsXP-KB2598479-x86-ENU.exe
      c:\windows\WindowsXP-KB2598479-x86-ESN.exe
      c:\windows\WindowsXP-KB2646524-x86-ENU.exe
      c:\windows\WindowsXP-KB2646524-x86-ESN.exe
      c:\windows\WindowsXPMediaCenter2005-KB2619340-ENU.exe
      c:\windows\WindowsXPMediaCenter2005-KB2628259-ENU.exe
      .
      .
      ((((((((((((((((((((((((((((((((((((((( Drivers/Services )))))))))))))))))))))))))))))))))))))))))))))))))
      .
      .
      -------\Legacy_AMSERVICE
      .
      .
      ((((((((((((((((((((((((( Files Created from 2012-08-10 to 2012-09-10 )))))))))))))))))))))))))))))))
      .
      .
      2012-09-10 11:40 . 2012-09-10 11:40 -------- d-----w- c:\program files\Common Files\Java
      2012-09-10 11:40 . 2012-09-10 11:39 143872 ----a-w- c:\windows\system32\javacpl.cpl
      2012-09-10 11:40 . 2012-09-10 11:39 93672 ----a-w- c:\windows\system32\WindowsAccessBridge.dll
      2012-09-10 11:39 . 2012-09-10 11:39 -------- d-----w- c:\program files\Java
      2012-09-10 11:38 . 2012-09-10 11:39 821736 ----a-w- c:\windows\system32\npDeployJava1.dll
      2012-09-10 00:29 . 2012-09-10 00:29 -------- d-----w- C:\_OTL
      2012-09-09 19:13 . 2012-09-09 19:13 -------- d-----w- C:\TDSSKiller_Quarantine
      2012-09-09 18:40 . 2012-06-29 11:55 22528 ----a-w- c:\windows\AT-Uninstall.exe
      2012-09-09 18:40 . 2012-03-12 21:27 11776 ----a-w- c:\windows\Colous.exe
      2012-09-09 18:40 . 2008-03-25 08:39 69660 ----a-w- c:\windows\Fart.exe
      2012-08-21 09:35 . 2012-08-21 09:35 -------- d-----w- c:\program files\DVDVideoSoft
      2012-08-21 09:32 . 2012-08-21 09:37 -------- d-----w- c:\documents and settings\Administrator\Application Data\DVDVideoSoft
      2012-08-19 12:57 . 2012-08-19 12:57 -------- d-----w- c:\documents and settings\Administrator\Local Settings\Application Data\{68B4CD70-E9FD-11E1-8270-B8AC6F996F26}
      2012-08-17 20:47 . 2012-08-22 14:02 -------- d-----w- c:\documents and settings\All Users\Application Data\boost_interprocess
      2012-08-17 20:32 . 2012-08-17 20:53 -------- d-----w- c:\program files\Common Files\Topaz Labs
      2012-08-17 20:32 . 2012-08-17 20:56 -------- d-----w- c:\program files\Topaz Labs
      .
      .
      .
      (((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
      .
      2012-09-10 11:39 . 2012-05-31 07:41 746984 ----a-w- c:\windows\system32\deployJava1.dll
      2012-09-09 19:16 . 2004-08-10 11:00 187776 ----a-w- c:\windows\system32\drivers\acpi.sys
      2012-07-06 13:58 . 2004-08-10 11:00 78336 ----a-w- c:\windows\system32\browser.dll
      2012-07-04 14:05 . 2007-04-24 13:22 139784 ----a-w- c:\windows\system32\drivers\rdpwd.sys
      2012-07-03 13:40 . 2004-08-10 11:00 1866112 ----a-w- c:\windows\system32\win32k.sys
      2012-07-03 11:46 . 2011-11-03 23:04 22344 ----a-w- c:\windows\system32\drivers\mbam.sys
      2012-07-02 17:49 . 2006-03-04 03:33 916992 ----a-w- c:\windows\system32\wininet.dll
      2012-07-02 17:49 . 2004-08-10 11:00 43520 ------w- c:\windows\system32\licmgr10.dll
      2012-07-02 17:49 . 2004-08-10 11:00 1469440 ------w- c:\windows\system32\inetcpl.cpl
      2012-07-02 12:05 . 2004-08-10 11:00 385024 ------w- c:\windows\system32\html.iec
      2012-06-25 14:04 . 2012-06-25 14:04 1394248 ----a-w- c:\windows\system32\msxml4.dll
      .
      .
      ((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
      .
      .
      *Note* empty entries & legit default entries are not shown
      REGEDIT4
      .
      [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
      "DAEMON Tools Lite"="c:\program files\Descargas\Daemon\DAEMON Tools Lite\DTLite.exe" [2012-02-13 3481408]
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
      "IntelZeroConfig"="c:\program files\Intel\Wireless\bin\ZCfgSvc.exe" [2005-12-28 667718]
      "IntelWireless"="c:\program files\Intel\Wireless\Bin\ifrmewrk.exe" [2005-12-28 602182]
      "DLA"="c:\windows\System32\DLA\DLACTRLW.EXE" [2006-06-13 127036]
      "mcui_exe"="c:\program files\McAfee.com\Agent\mcagent.exe" [2012-03-21 1318816]
      "BluetoothAuthenticationAgent"="bthprops.cpl" [2008-04-14 110592]
      "NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2006-03-21 7557120]
      "Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2012-07-27 919008]
      "Adobe Acrobat Speed Launcher"="c:\program files\Adobe\Acrobat 10.0\Acrobat\Acrobat_sl.exe" [2012-07-27 36800]
      "Acrobat Assistant 8.0"="c:\program files\Adobe\Acrobat 10.0\Acrobat\Acrotray.exe" [2012-07-27 823224]
      "APSDaemon"="c:\program files\Common Files\Apple\Apple Application Support\APSDaemon.exe" [2011-11-01 59240]
      "QuickTime Task"="c:\program files\QuickTime\QTTask.exe" [2011-10-24 421888]
      "iTunesHelper"="c:\program files\Descargas\iPod\iTunesHelper.exe" [2012-01-16 421736]
      "RIMBBLaunchAgent.exe"="c:\program files\Common Files\Research In Motion\USB Drivers\RIMBBLaunchAgent.exe" [2011-09-01 90448]
      "SigmatelSysTrayApp"="c:\program files\SigmaTel\C-Major Audio\WDM\stsystra.exe" [2007-05-10 405504]
      "SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2012-07-03 252848]
      .
      [HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
      "CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]
      .
      [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcmscsvc]
      @=""
      .
      [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]
      @=""
      .
      [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
      @="Driver"
      .
      [HKLM\~\startupfolder\C:^Documents and Settings^Administrator^Start Menu^Programs^Startup^Adobe Gamma.lnk]
      .
      [HKLM\~\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^Adobe Gamma Loader.lnk]
      .
      [HKLM\~\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^BTTray.lnk]
      .
      [HKLM\~\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^CineFormActiveMetadataStatusViewer.exe]
      backup=c:\windows\pss\CineFormActiveMetadataStatusViewer.exeCommon Startup
      .
      [HKLM\~\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^Logo Calibration Loader.lnk]
      backup=c:\windows\pss\Logo Calibration Loader.lnkCommon Startup
      .
      [HKLM\~\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^ProfileReminder.lnk]
      backup=c:\windows\pss\ProfileReminder.lnkCommon Startup
      .
      [HKLM\~\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^QuickTV6.lnk]
      .
      [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
      2008-01-11 21:16 39792 ----a-w- c:\program files\Adobe\Reader 8.0\Reader\reader_sl.exe
      .
      [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdobeAAMUpdater-1.0]
      2010-09-16 13:04 497648 ----a-w- c:\program files\Common Files\Adobe\OOBE\PDApp\UWA\updaterstartuputility.exe
      .
      [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdobeCS5ServiceManager]
      2010-02-22 02:57 406992 ----a-w- c:\program files\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe
      .
      [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AppleSyncNotifier]
      2008-09-03 18:12 111936 ----a-w- c:\program files\Common Files\Apple\Mobile Device Support\bin\AppleSyncNotifier.exe
      .
      [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DataLayer]
      2005-03-31 08:30 1106944 ----a-w- c:\program files\Common Files\PCSuite\DataLayer\DataLayer.exe
      .
      [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DivXUpdate]
      2011-03-21 21:10 1230704 ----a-w- c:\program files\DivX\DivX Update\DivXUpdate.exe
      .
      [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DrgToDsc]
      2004-08-04 19:36 1691648 ----a-w- c:\program files\Roxio\Easy Media Creator 7\Drag to Disc\DrgToDsc.exe
      .
      [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ehTray]
      2005-08-05 13:56 64512 ----a-w- c:\windows\ehome\ehtray.exe
      .
      [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper]
      2012-01-16 16:22 421736 ----a-w- c:\program files\Descargas\iPod\iTunesHelper.exe
      .
      [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LaunchApplication]
      2005-03-22 08:39 167936 ----a-w- c:\program files\Descargas\Nokia\Nokia PC Suite 6\LaunchApplication.exe
      .
      [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MSMSGS]
      2008-04-14 00:12 1695232 ----a-w- c:\program files\Messenger\msmsgs.exe
      .
      [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PCSuiteTrayApplication]
      2005-03-22 08:39 167936 ----a-w- c:\program files\Descargas\Nokia\Nokia PC Suite 6\LaunchApplication.exe
      .
      [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PcSync]
      2005-04-20 08:57 847872 ----a-w- c:\program files\Descargas\Nokia\Nokia PC Suite 6\PcSync2.exe
      .
      [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PcSync2]
      2005-04-20 08:57 847872 ----a-w- c:\program files\Descargas\Nokia\Nokia PC Suite 6\PcSync2.exe
      .
      [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PDVDServ]
      2003-10-27 01:04 32768 ----a-w- c:\program files\Roxio\Roxio DVDMax Player\PDVDServ.exe
      .
      [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PMBVolumeWatcher]
      2010-11-26 23:55 648032 ----a-w- c:\program files\Sony\PMB\PMBVolumeWatcher.exe
      .
      [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QTTask]
      2011-10-24 13:28 421888 ----a-w- c:\program files\QuickTime\QTTask.exe
      .
      [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
      2011-10-24 13:28 421888 ----a-w- c:\program files\QuickTime\QTTask.exe
      .
      [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Reader_sl]
      2008-01-11 21:16 39792 ----a-w- c:\program files\Adobe\Reader 8.0\Reader\reader_sl.exe
      .
      [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\realsched]
      2008-02-15 02:56 185896 ----a-w- c:\program files\Common Files\Real\Update_OB\realsched.exe
      .
      [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RemoteControl]
      2003-10-27 01:04 32768 ----a-w- c:\program files\Roxio\Roxio DVDMax Player\PDVDServ.exe
      .
      [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RoxioDragToDisc]
      2004-08-04 19:36 1691648 ----a-w- c:\program files\Roxio\Easy Media Creator 7\Drag to Disc\DrgToDsc.exe
      .
      [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SwitchBoard]
      2010-02-19 11:37 517096 ----a-w- c:\program files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
      .
      [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TkBellExe]
      2008-02-15 02:56 185896 ----a-w- c:\program files\Common Files\Real\Update_OB\realsched.exe
      .
      [HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\McAfeeAntiVirus]
      "DisableMonitoring"=dword:00000001
      .
      [HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\McAfeeFirewall]
      "DisableMonitoring"=dword:00000001
      .
      [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
      "%windir%\\system32\\sessmgr.exe"=
      .
      [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
      "1723:TCP"= 1723:TCP:@xpsp2res.dll,-22015
      "1701:UDP"= 1701:UDP:@xpsp2res.dll,-22016
      "500:UDP"= 500:UDP:@xpsp2res.dll,-22017
      .
      R0 sptd;sptd;\SystemRoot\\SystemRoot\System32\Drivers\sptd.sys --> \SystemRoot\\SystemRoot\System32\Drivers\sptd.sys [?]
      R1 mfetdi2k;McAfee Inc. mfetdi2k;c:\windows\system32\drivers\mfetdi2k.sys [31/10/2011 22:56 89792]
      R2 McAfee SiteAdvisor Service;McAfee SiteAdvisor Service;"c:\program files\Common Files\Mcafee\McSvcHost\McSvHost.exe" /McCoreSvc [31/10/2011 22:56 214904]
      R2 McMPFSvc;McAfee Personal Firewall Service;"c:\program files\Common Files\Mcafee\McSvcHost\McSvHost.exe" /McCoreSvc [31/10/2011 22:56 214904]
      R2 McNaiAnn;McAfee VirusScan Announcer;"c:\program files\Common Files\Mcafee\McSvcHost\McSvHost.exe" /McCoreSvc [31/10/2011 22:56 214904]
      R2 mfefire;McAfee Firewall Core Service;c:\program files\Common Files\Mcafee\SystemCore\mfefire.exe [31/10/2011 22:56 161632]
      R2 mfevtp;McAfee Validation Trust Protection Service;c:\windows\system32\mfevtps.exe [31/10/2011 22:47 151880]
      R2 PDIHWCTL;PDIHWCTL;c:\windows\system32\drivers\pdihwctl.sys [30/10/2005 6:19 14416]
      R2 PMBDeviceInfoProvider;PMBDeviceInfoProvider;c:\program files\Sony\PMB\PMBDeviceInfoProvider.exe [27/11/2010 1:55 398176]
      R2 TabletServicePen;TabletServicePen;c:\windows\system32\Pen_Tablet.exe [10/11/2008 0:33 1373480]
      R3 cfwids;McAfee Inc. cfwids;c:\windows\system32\drivers\cfwids.sys [31/10/2011 22:56 57600]
      R3 mfefirek;McAfee Inc. mfefirek;c:\windows\system32\drivers\mfefirek.sys [31/10/2011 22:56 340920]
      R3 mfendiskmp;mfendiskmp;c:\windows\system32\drivers\mfendisk.sys [31/10/2011 22:56 83856]
      S2 gupdate;Servicio Google Update (gupdate);c:\program files\Google\Update\GoogleUpdate.exe [07/01/2010 2:55 135664]
      S3 avera800;AVerMedia DVB-T BDA Video Capture(A800);c:\windows\system32\drivers\avera800.sys [13/05/2007 2:15 41600]
      S3 Bulksusb;SvcDesc=Bulks USB FlashMemoryControllService;c:\windows\system32\drivers\BULKSUSB.sys [10/10/2008 12:52 10354]
      S3 eyeonedp;eye-one display;c:\windows\system32\drivers\EyeOneDp.sys [01/11/2005 5:17 44344]
      S3 gupdatem;Servicio de Google Update (gupdatem);c:\program files\Google\Update\GoogleUpdate.exe [07/01/2010 2:55 135664]
      S3 i1display;i1 Display;c:\windows\system32\drivers\i1display.sys [30/04/2010 20:36 44344]
      S3 mfendisk;McAfee Core NDIS Intermediate Filter;c:\windows\system32\drivers\mfendisk.sys [31/10/2011 22:56 83856]
      S3 mferkdet;McAfee Inc. mferkdet;c:\windows\system32\drivers\mferkdet.sys [31/10/2011 22:56 87656]
      S3 MozillaMaintenance;Mozilla Maintenance Service;c:\program files\Mozilla Maintenance Service\maintenanceservice.exe [03/05/2012 11:31 114144]
      S3 PortRST;BaromTec HMS30C6001 Reset Driver;c:\windows\system32\drivers\PortRST.sys [10/10/2008 12:52 12721]
      S3 scsiscan;SCSI Scanner Driver;c:\windows\system32\drivers\scsiscan.sys [15/09/2008 9:38 11520]
      S3 SwitchBoard;SwitchBoard;c:\program files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [19/02/2010 13:37 517096]
      .
      --- Other Services/Drivers In Memory ---
      .
      *NewlyCreated* - NETBT
      *Deregistered* - mfeavfk01
      .
      Contents of the 'Scheduled Tasks' folder
      .
      2012-09-07 c:\windows\Tasks\AppleSoftwareUpdate.job
      - c:\program files\Apple Software Update\SoftwareUpdate.exe [2009-10-22 15:57]
      .
      2012-09-10 c:\windows\Tasks\Google Software Updater.job
      - c:\program files\Google\Common\Google Updater\GoogleUpdaterService.exe [2007-05-22 20:14]
      .
      2012-09-10 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
      - c:\program files\Google\Update\GoogleUpdate.exe [2010-01-07 00:55]
      .
      2012-09-10 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
      - c:\program files\Google\Update\GoogleUpdate.exe [2010-01-07 00:55]
      .
      .
      ------- Supplementary Scan -------
      .
      uStart Page =
      mStart Page = hxxp://www.google.com
      uInternet Settings,ProxyOverride = *.local
      uSearchURL,(Default) = hxxp://es.search.yahoo.com/search?fr=mcafee&p=%s%s
      Trusted Zone: internet
      Trusted Zone: mcafee.com
      TCP: DhcpNameServer = 80.58.61.250 80.58.61.254
      TCP: Interfaces\{2144D9CE-BB8F-4FA5-848B-4B99F3AF5CB4}: NameServer = 80.58.61.250,80.58.61.254
      .
      - - - - ORPHANS REMOVED - - - -
      .
      SafeBoot-57575557.sys
      .
      .
      .
      **************************************************************************
      .
      catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
      Rootkit scan 2012-09-10 14:38
      Windows 5.1.2600 Service Pack 3 NTFS
      .
      scanning hidden processes ...
      .
      scanning hidden autostart entries ...
      .
      scanning hidden files ...
      .
      scan completed successfully
      hidden files: 0
      .
      **************************************************************************
      .
      --------------------- LOCKED REGISTRY KEYS ---------------------
      .
      [HKEY_USERS\S-1-5-21-861567501-1614895754-839522115-500\Software\Microsoft\Internet Explorer\User Preferences]
      @Denied: (2) (Administrator)
      "88D7D0879DAB32E14DE5B3A805A34F98AFF34F5977"=hex:01,00,00,00,d0,8c,9d,df,01,15,
      d1,11,8c,7a,00,c0,4f,c2,97,eb,01,00,00,00,46,51,70,52,39,60,09,44,9f,55,fa,\
      "2D53CFFC5C1A3DD2E97B7979AC2A92BD59BC839E81"=hex:01,00,00,00,d0,8c,9d,df,01,15,
      d1,11,8c,7a,00,c0,4f,c2,97,eb,01,00,00,00,c2,51,d5,c5,e9,fd,7f,41,be,b1,46,\
      "6256FFB019F8FDFBD36745B06F4540E9AEAF222A25"=hex:01,00,00,00,d0,8c,9d,df,01,15,
      d1,11,8c,7a,00,c0,4f,c2,97,eb,01,00,00,00,56,2d,75,73,f9,80,1a,48,94,79,c7,\
      .
      [HKEY_LOCAL_MACHINE\software\Microsoft\Windows\CurrentVersion\Installer\UserData\LocalSystem\Components\Ø•€|ÿÿÿÿ•€|ù•A~*]
      "A0C0710900063D11C8EF10054038389C"="C?\\WINDOWS\\system32\\FM20ENU.DLL"
      "A0C0211900063D11C8EF10054038389C"="C?\\WINDOWS\\system32\\FM20ENU.DLL"
      .
      --------------------- DLLs Loaded Under Running Processes ---------------------
      .
      - - - - - - - > 'explorer.exe'(5500)
      c:\windows\system32\WININET.dll
      c:\progra~1\mcafee\SITEAD~1\saHook.dll
      c:\windows\system32\msi.dll
      c:\windows\system32\ieframe.dll
      c:\windows\system32\webcheck.dll
      c:\windows\system32\WPDShServiceObj.dll
      c:\windows\system32\btncopy.dll
      c:\program files\Descargas\Nokia\Nokia PC Suite 6\PhoneBrowser.dll
      c:\program files\Descargas\Nokia\Nokia PC Suite 6\PCSCM.dll
      c:\program files\Roxio\Easy Media Creator 7\Drag to Disc\Shellex.dll
      c:\program files\Roxio\Easy Media Creator 7\Drag to Disc\Shellex.LOC
      c:\windows\system32\PortableDeviceTypes.dll
      c:\windows\system32\PortableDeviceApi.dll
      .
      ------------------------ Other Running Processes ------------------------
      .
      c:\program files\Intel\Wireless\Bin\EvtEng.exe
      c:\program files\Intel\Wireless\Bin\S24EvMon.exe
      c:\program files\Intel\Wireless\Bin\WLKeeper.exe
      c:\program files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
      c:\windows\system32\astsrv.exe
      c:\program files\Bonjour\mDNSResponder.exe
      c:\program files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
      c:\windows\eHome\ehRecvr.exe
      c:\windows\eHome\ehSched.exe
      c:\program files\Java\jre7\bin\jqs.exe
      c:\program files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
      c:\program files\Dell\QuickSet\NICCONFIGSVC.exe
      c:\windows\system32\nvsvc32.exe
      c:\windows\system32\HPZipm12.exe
      c:\program files\Intel\Wireless\Bin\RegSrvc.exe
      c:\windows\system32\MsPMSPSv.exe
      c:\windows\ehome\mcrdsvc.exe
      c:\program files\Common Files\McAfee\SystemCore\mcshield.exe
      c:\windows\system32\WTablet\Pen_TabletUser.exe
      c:\program files\Canon\CAL\CALMAIN.exe
      c:\windows\system32\rundll32.exe
      c:\progra~1\Intel\Wireless\Bin\Dot1XCfg.exe
      c:\windows\system32\dllhost.exe
      c:\windows\system32\rundll32.exe
      c:\windows\system32\wscntfy.exe
      c:\program files\Descargas\iPod\bin\iPodService.exe
      .
      **************************************************************************
      .
      Completion time: 2012-09-10 14:47:03 - machine was rebooted
      ComboFix-quarantined-files.txt 2012-09-10 12:46
      .
      Pre-Run: 11.696.709.632 bytes free
      Post-Run: 11.581.399.040 bytes libres
      .
      - - End Of File - - CA64C8EDA701F688BCE8D5E82F240E4E
      Última edición por JLSaura fecha: 10/09/12 a las 08:55:42

    10. #10
      Moderador Gral.
      Avatar de @Javier_HF
      Registrado
      jun 2006
      Ubicación
      Spain.
      Mensajes
      21.696

      Re: No conecto con GOOGLE

      Perfecto, lo que comentas de Google ya era anterior a la ejecución de ComboFix.

      Lo que no indicas es como siguen tus iconos después de haber reiniciado la maquina. ??

      Saludos.
      Quien no lo intenta no lo consigue | ;-)

      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.

    Página 1 de 6 12345 ... ÚltimoÚltimo