• Registrarse
  • Iniciar sesión


  • Resultados 1 al 6 de 6

    Avast detecta: trkjmp.com URL:Mal

    A mi me detecta lo mismo, lo he desactivado de momento a la espera de una nueva actualización ya que supongo que sera un fallo de Avast ya que no puede ser que me detecte ...

    1. #1
      Usuario Avatar de Camus83
      Registrado
      sep 2012
      Ubicación
      Valencia
      Mensajes
      4

      Malware Avast detecta: trkjmp.com URL:Mal

      A mi me detecta lo mismo, lo he desactivado de momento a la espera de una nueva actualización ya que supongo que sera un fallo de Avast ya que no puede ser que me detecte todas las páginas como maliciosas.

      Mujer mucha casualidad me parece a mi que yo también tenga problema con el i.trkjmp.com. ese y a mi si que me pasa con todas las páginas web que visito con el Mozilla Firefox y con el Explorer, también he pasado el Malware y el Spybot junto con el CCleaner y no me detecta nada de nada.

    2. #2
      Ex-Colaboradora Avatar de @SanMar
      Registrado
      jun 2008
      Ubicación
      Argentina
      Mensajes
      22.290

      Re: Avast detecta: trkjmp.com URL:Mal

      Hola Camus83:


      Moví tu comentarios a un temas para ti, pues mirando por los foros de Avast hay muchos casos y parce no ser un Falso Positivo al menos hasta ahora:

      http://forum.avast.com/index.php?topic=105794.0


      It is not a false positive, a new Chrome/Firefox malware add on has just started doing the rounds..
      No es un falso positivo, un nuevo malware de Chrome/Firefox add en acaba de empezar haciendo las rondas...

      Realiza lo siguiente:


      Realiza lo siguiente:


      Paso 1.-




      Paso 2.- Descarga instala y/o actualiza pero no ejecutes aún:




      Paso 3.- Ejecutas en Modo Normal :

      AT-Destroyer
      • La ejecuta como Administrador.
        Nota: Si usa Windows Vista o 7 Presiona clic derecho y selecciona "Ejecutar como Administrador."
      • Aparecerá el Disclaimer de la herramienta. Presione Sí.
      • Presione la opción 1 (Buscar y Destruir)
      • AT-Destroyer desconectará el escritorio momentáneamente.
      • En caso de estar infectado, AT-Destroyer lo indicará con lineas rojas donde se haya detectado la infección, sino, serán lineas verdes.
      • Una vez terminado el escaneo, podrá volver a ver el escritorio y se le abrirá un reporte, que deberá copiar en su próxima respuesta comentando cómo funciona el sistema.
      • Si algún programa no inicia, reiniciar la PC.


      Malwarebytes' Anti-Malware;

      • Realizas un Scan Completo.
      • Marcar la opción "Quitar lo Seleccionado".
      • Su Reporte se encuentra en la Pestaña Registro.


      Paso 3.- Ejecutas Ccleaner.

      • Usando primero su opción de "Limpiador" para borrar cookies, temporales de Internet y todos los archivos que este te muestre como obsoletos.
      • Despues usa su opción de "Registro" para limpiar todo el registro de Windows (haciendo copia de seguridad).



      Paso 4.-:


      Descarga OTL By OldTimer


      >>> Para Ejecutar OTL

      • Cerrar todos programas que tenga abiertos y hacer doble clic en el ícono de OTL.
      • Dejarlo correr y esperar a que aparezca el menú de OTL..
      • Cuando aparezca el menú, solo debe cambiar debajo de: "Tipo de Análisis" seleccionando Resultado Mínimo.
      • Marcar las opciones: Buscar LOP y Buscar Purity.
      • Marcar las Opciones >> Omitir Archivos De Microsoft y Usar Listado de Compañías Reconocidas.
      • Copiar y Pegar el siguiente script bajo la casilla Análisis Personalizados/Código de Reparación:

        NOTA: No copiar la palabra Cita.
        netsvcs
        msconfig
        %SYSTEMDRIVE%\*.*
        CREATERESTOREPOINT
      • Por favor No cambiar el resto de la configuración a menos que se lo solicitemos.




      • Presionar el botón >>
      • Una vez que termine, se abrirán dos (2) archivos, OTL.Txt y Extras.Txt. Éstos archivos estarán grabados en el mismo lugar donde OTL.exe fue descargado.
      • Copiar y pegar el contenido del archivo OTL.txt en su próxima respuesta.









      En tu próximo post pegas los reportes.

      Nos olvides comentar como sigue el equipo.


      Salu2.

      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.

    3. #3
      Usuario Avatar de Camus83
      Registrado
      sep 2012
      Ubicación
      Valencia
      Mensajes
      4

      Re: Avast detecta: trkjmp.com URL:Mal

      Aquí te dejo los reportes, el escudo de avast me aparace exclusivamente con el navegador mozilla, además ahora me pasa algo más raro aun, no me deja abrir en concreto las páginas de este foro, que raro, me salta como si se perdiera la conexión al entrar en ellas.

      Malware:

      A/T-Destroyer 1.0.7 By Infospyware
      www.infospyware.com
      Fecha iniciada en el analisis 18/09/2012
      Hora iniciada en el analisis 1:33:05,37
      Usuario Actual : [C:\Users\raul]
      Sistema Operativo: Windows 7 Home Basic
      Arquitectura: Sistema operativo de 64 bits
      Versión Internet Explorer: 9.0.8112.16421
      Modo Actual: Modo Normal.
      Privilegios: [raul-Administrador]
      Versión Google Chrome:
      Versión Mozilla Firefox: 15.0.1

      ====== Servicios Eliminados By A/T-Destroyer ======




      ====== Claves Eliminadas By A/T-Destroyer ======


      HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar | ( {99079a25-328f-4bd4-be04-00955acaa0a7} )
      HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar | ( {0974848a-b5bc-49f2-9778-307742b4a55d} )
      HKEY_CURRENT_USER\Software\DataMngr
      HKEY_CURRENT_USER\Software\DataMngr
      HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{99079a25-328f-4bd4-be04-00955acaa0a7}
      HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{99079a25-328f-4bd4-be04-00955acaa0a7}
      HKEY_LOCAL_MACHINE\SOFTWARE\Conduit\Community Alerts
      HKEY_LOCAL_MACHINE\SOFTWARE\Conduit\Toolbars
      HKEY_LOCAL_MACHINE\SOFTWARE\Conduit


      ====== Archivos/Carpetas Eliminados By A/T-Destroyer ======


      C:\Users\raul\Appdata\Local\Ilivid Player\script.qscript
      "C:\Users\raul\Appdata\Local\Ilivid Player"
      C:\ProgramData\InstallMate\{B01A9061-55EF-4AEF-9983-6BD5B2D76491}
      C:\ProgramData\InstallMate\{B01A9061-55EF-4AEF-9983-6BD5B2D76491}\0.ini
      C:\ProgramData\InstallMate\{B01A9061-55EF-4AEF-9983-6BD5B2D76491}\20120329034728.log
      C:\ProgramData\InstallMate\{B01A9061-55EF-4AEF-9983-6BD5B2D76491}\CE9A416A93EA53DA
      "C:\ProgramData\InstallMate"
      C:\ProgramData\Premium\Setup
      "C:\ProgramData\Premium"
      C:\codec-info\codec_info.html
      "C:\codec-info"
      C:\ProgramData\CodecC\background.html
      C:\ProgramData\CodecC\bccldkoinakjmmgebambiaggjobhikfg.crx
      C:\ProgramData\CodecC\content.js
      C:\ProgramData\CodecC\settings.ini
      "C:\ProgramData\CodecC"
      C:\Program Files (x86)\Conduit\Community Alerts
      C:\Program Files (x86)\Conduit\Community Alerts\Alert.dll
      "C:\Program Files (x86)\Conduit"
      C:\Program Files (x86)\mozilla firefox\searchplugins\babylon.xml
      C:\Users\raul\Appdata\Local\GDIPFONTCACHEV1.DAT


      OTL:


      ========== Processes (SafeList) ==========

      PRC - C:\Users\raul\Downloads\OTL.exe (OldTimer Tools)
      PRC - C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation)
      PRC - C:\Program Files\Alwil Software\Avast5\AvastUI.exe (AVAST Software)
      PRC - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe (AVAST Software)
      PRC - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_3_300_271.exe (Adobe Systems, Inc.)
      PRC - C:\Program Files (x86)\PostgreSQL\8.4\bin\pg_ctl.exe (PostgreSQL Global Development Group)
      PRC - C:\Program Files (x86)\PostgreSQL\8.4\bin\postgres.exe (PostgreSQL Global Development Group)
      PRC - C:\Program Files (x86)\ASUS\ATKOSD2\ATKOSD2.exe (ASUS)
      PRC - C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe ()
      PRC - C:\Program Files (x86)\ASUS\ControlDeck\ControlDeckStartUp.exe ()
      PRC - C:\Program Files (x86)\ASUS\ATK Hotkey\HControl.exe (ASUS)
      PRC - C:\Program Files (x86)\ASUS\ATK Hotkey\HControlUser.exe (ASUS)
      PRC - C:\Program Files (x86)\ASUS\ATK Hotkey\ATKOSD.exe (ASUS)
      PRC - C:\Program Files (x86)\ASUS\ATK Hotkey\ASLDRSrv.exe (ASUS)
      PRC - C:\Program Files (x86)\ASUS\SmartLogon\sensorsrv.exe (ASUS)
      PRC - C:\Program Files (x86)\Spybot - Search & Destroy\TeaTimer.exe (Safer-Networking Ltd.)
      PRC - C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe (Safer Networking Ltd.)
      PRC - C:\Program Files (x86)\ASUS\ATK Hotkey\WDC.exe (ASUS)
      PRC - C:\Program Files (x86)\ASUS\ATK Hotkey\KBFiltr.exe (ASUS)
      PRC - C:\Program Files (x86)\ASUS\ATK Hotkey\Atouch64.exe ()
      PRC - C:\Program Files (x86)\Cyberlink\Power2Go\CLMLSvc.exe (CyberLink)
      PRC - C:\Program Files (x86)\ASUS\ASUS Live Update\ALU.exe ()
      PRC - C:\Program Files\ATKGFNEX\GFNEXSrv.exe ()


      ========== Modules (No Company Name) ==========

      MOD - C:\Program Files (x86)\Mozilla Firefox\mozjs.dll ()
      MOD - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_3_300_271.dll ()
      MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\e717a230496832656b05b515eb9f3bc5\PresentationFramework.ni.dll ()
      MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationCore\14a87218ea49639f38097e278b98a3da\PresentationCore.ni.dll ()
      MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\8e56489276063ededde74e597a121df3\PresentationFramework.Aero.ni.dll ()
      MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\WindowsBase\46fce56db7685a586d3eeb7c373e3c1c\WindowsBase.ni.dll ()
      MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System\ce9ff6baf9053ed2ed673d948179195c\System.ni.dll ()
      MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\acfc1391e45fedd2a359778ea57d914c\mscorlib.ni.dll ()
      MOD - C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe ()
      MOD - C:\Program Files (x86)\ASUS\ControlDeck\ControlDeckStartUp.exe ()
      MOD - C:\Program Files (x86)\Cyberlink\Power2Go\CLMediaLibrary.dll ()
      MOD - C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvcPS.dll ()
      MOD - C:\Program Files (x86)\ASUS\ASUS Live Update\ALU.exe ()


      ========== Services (SafeList) ==========

      SRV:64bit: - (avast! Firewall) -- C:\Program Files\Alwil Software\Avast5\afwServ.exe File not found
      SRV:64bit: - (avast! Antivirus) -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe (AVAST Software)
      SRV:64bit: - (AFBAgent) -- C:\Windows\SysNative\FBAgent.exe (ASUSTeK Computer Inc.)
      SRV:64bit: - (WinDefend) -- C:\Program Files\Windows Defender\mpsvc.dll (Microsoft Corporation)
      SRV:64bit: - (SRS_VolSync_Service) -- C:\Program Files\SRS Labs\SRS Premium Sound\SRS_VolSync.exe (SRS Labs, Inc.)
      SRV:64bit: - (AMD External Events Utility) -- C:\Windows\SysNative\atiesrxx.exe (AMD)
      SRV:64bit: - (ATKGFNEXSrv) -- C:\Program Files\ATKGFNEX\GFNEXSrv.exe ()
      SRV - (Steam Client Service) -- C:\Program Files (x86)\Common Files\Steam\SteamService.exe (Valve Corporation)
      SRV - (AdobeFlashPlayerUpdateSvc) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe (Adobe Systems Incorporated)
      SRV - (SkypeUpdate) -- C:\Program Files (x86)\Skype\Updater\Updater.exe (Skype Technologies)
      SRV - (postgresql-8.4) -- C:\Program Files (x86)\PostgreSQL\8.4\bin\pg_ctl.exe (PostgreSQL Global Development Group)
      SRV - (clr_optimization_v4.0.30319_32) -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe (Microsoft Corporation)
      SRV - (ASLDRService) -- C:\Program Files (x86)\ASUS\ATK Hotkey\ASLDRSrv.exe (ASUS)
      SRV - (clr_optimization_v2.0.50727_32) -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe (Microsoft Corporation)


      ========== Driver Services (SafeList) ==========

      DRV:64bit: - (aswSnx) -- C:\Windows\SysNative\drivers\aswSnx.sys (AVAST Software)
      DRV:64bit: - (aswSP) -- C:\Windows\SysNative\drivers\aswSP.sys (AVAST Software)
      DRV:64bit: - (aswTdi) -- C:\Windows\SysNative\drivers\aswTdi.sys (AVAST Software)
      DRV:64bit: - (aswMonFlt) -- C:\Windows\SysNative\drivers\aswMonFlt.sys (AVAST Software)
      DRV:64bit: - (aswRdr) -- C:\Windows\SysNative\drivers\aswRdr2.sys (AVAST Software)
      DRV:64bit: - (aswFsBlk) -- C:\Windows\SysNative\drivers\aswFsBlk.sys (AVAST Software)
      DRV:64bit: - (aswKbd) -- C:\Windows\SysNative\drivers\aswKbd.sys (AVAST Software)
      DRV:64bit: - (Fs_Rec) -- C:\Windows\SysNative\drivers\fs_rec.sys (Microsoft Corporation)
      DRV:64bit: - (sptd) -- C:\Windows\SysNative\drivers\sptd.sys ()
      DRV:64bit: - (athr) -- C:\Windows\SysNative\drivers\athrx.sys (Atheros Communications, Inc.)
      DRV:64bit: - (HpSAMD) -- C:\Windows\SysNative\drivers\HpSAMD.sys (Hewlett-Packard Company)
      DRV:64bit: - (TsUsbFlt) -- C:\Windows\SysNative\drivers\TsUsbFlt.sys (Microsoft Corporation)
      DRV:64bit: - (kbfiltr) -- C:\Windows\SysNative\drivers\kbfiltr.sys ( )
      DRV:64bit: - (amdsata) -- C:\Windows\SysNative\drivers\amdsata.sys (Advanced Micro Devices)
      DRV:64bit: - (amdxata) -- C:\Windows\SysNative\drivers\amdxata.sys (Advanced Micro Devices)
      DRV:64bit: - (amdsbs) -- C:\Windows\SysNative\drivers\amdsbs.sys (AMD Technologies Inc.)
      DRV:64bit: - (LSI_SAS2) -- C:\Windows\SysNative\drivers\lsi_sas2.sys (LSI Corporation)
      DRV:64bit: - (stexstor) -- C:\Windows\SysNative\drivers\stexstor.sys (Promise Technology)
      DRV:64bit: - (VIAHdAudAddService) -- C:\Windows\SysNative\drivers\viahduaa.sys (VIA Technologies, Inc.)
      DRV:64bit: - (atikmdag) -- C:\Windows\SysNative\drivers\atikmdag.sys (ATI Technologies Inc.)
      DRV:64bit: - (lullaby) -- C:\Windows\SysNative\drivers\lullaby.sys (Windows (R) Win 7 DDK provider)
      DRV:64bit: - (ETD) -- C:\Windows\SysNative\drivers\ETD.sys (ELAN Microelectronic Corp.)
      DRV:64bit: - (SiSGbeLH) -- C:\Windows\SysNative\drivers\SiSG664.sys (Silicon Integrated Systems Corp.)
      DRV:64bit: - (ebdrv) -- C:\Windows\SysNative\drivers\evbda.sys (Broadcom Corporation)
      DRV:64bit: - (b06bdrv) -- C:\Windows\SysNative\drivers\bxvbda.sys (Broadcom Corporation)
      DRV:64bit: - (b57nd60a) -- C:\Windows\SysNative\drivers\b57nd60a.sys (Broadcom Corporation)
      DRV:64bit: - (hcw85cir) -- C:\Windows\SysNative\drivers\hcw85cir.sys (Hauppauge Computer Works, Inc.)
      DRV:64bit: - (usbfilter) -- C:\Windows\SysNative\drivers\usbfilter.sys (Advanced Micro Devices)
      DRV:64bit: - (SNP2UVC) -- C:\Windows\SysNative\drivers\snp2uvc.sys ()
      DRV:64bit: - (RTL8167) -- C:\Windows\SysNative\drivers\Rt64win7.sys (Realtek )
      DRV:64bit: - (SRS_PremiumSound_Service) -- C:\Windows\SysNative\drivers\SRS_PremiumSound_amd64.sys ()
      DRV:64bit: - (MTsensor) -- C:\Windows\SysNative\drivers\ATK64AMD.sys (ASUS)
      DRV:64bit: - (AtiPcie) -- C:\Windows\SysNative\drivers\AtiPcie.sys (Advanced Micro Devices Inc.)
      DRV:64bit: - (fssfltr) -- C:\Windows\SysNative\drivers\fssfltr.sys (Microsoft Corporation)
      DRV:64bit: - (WimFltr) -- C:\Windows\SysNative\drivers\WimFltr.sys (Microsoft Corporation)
      DRV:64bit: - (ASMMAP64) -- C:\Program Files\ATKGFNEX\ASMMAP64.sys ()
      DRV - (WIMMount) -- C:\Windows\SysWOW64\drivers\wimmount.sys (Microsoft Corporation)


      ========== Standard Registry (SafeList) ==========


      ========== Internet Explorer ==========

      IE:64bit: - HKLM\..\SearchScopes,DefaultScope = {9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}
      IE:64bit: - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
      IE:64bit: - HKLM\..\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}: "URL" = http://dts.search-results.com/sr?src=ieb&appid=361&systemid=406&sr=0&q={searchTerms}
      IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
      IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com
      IE - HKLM\..\URLSearchHook: {0974848a-b5bc-49f2-9778-307742b4a55d} - C:\Program Files (x86)\softonic.com4\tbsoft.dll (Conduit Ltd.)
      IE - HKLM\..\SearchScopes,DefaultScope = {BB74DE59-BC4C-4172-9AC4-73315F71CFFE}
      IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
      IE - HKLM\..\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}: "URL" = http://dts.search-results.com/sr?src=ieb&appid=361&systemid=406&sr=0&q={searchTerms}
      IE - HKLM\..\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}: "URL" = http://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT2431232
      IE - HKLM\..\SearchScopes\{BB74DE59-BC4C-4172-9AC4-73315F71CFFE}: "URL" = http://search.searchonme.com/?l=1&q={searchTerms}
      IE - HKLM\..\SearchScopes\{BE28C22E-F666-424d-B5FD-125C4AFEE34E}: "URL" = http://search.myheritage.com?orig=ds&q={searchTerms}

      IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://asus.msn.com
      IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com
      IE - HKCU\..\URLSearchHook: {0974848a-b5bc-49f2-9778-307742b4a55d} - C:\Program Files (x86)\softonic.com4\tbsoft.dll (Conduit Ltd.)
      IE - HKCU\..\SearchScopes,DefaultScope = {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}
      IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC
      IE - HKCU\..\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}: "URL" = http://search.babylon.com/?q={searchTerms}&affID=110819&babsrc=SP_ss&mntrId=7253370000000000000090e6ba90fd75
      IE - HKCU\..\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}: "URL" = http://dts.search-results.com/sr?src=ieb&appid=361&systemid=406&sr=0&q={searchTerms}
      IE - HKCU\..\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}: "URL" = http://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT2431232
      IE - HKCU\..\SearchScopes\{BB74DE59-BC4C-4172-9AC4-73315F71CFFE}: "URL" = http://search.searchonme.com/?l=1&q={searchTerms}
      IE - HKCU\..\SearchScopes\{BE28C22E-F666-424d-B5FD-125C4AFEE34E}: "URL" = http://search.myheritage.com?orig=ds&q={searchTerms}
      IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

      ========== FireFox ==========

      FF - prefs.js..browser.search.defaultenginename: "Search Results"
      FF - prefs.js..browser.search.defaultthis.engineName: "softonic.com4 Customized Web Search"
      FF - prefs.js..browser.search.defaulturl: "http://search.conduit.com/ResultsExt.aspx?ctid=CT2431232&SearchSource=3&q={searchTerms}"
      FF - prefs.js..browser.search.order.1: "Search Results"
      FF - prefs.js..browser.search.selectedEngine: "Google"
      FF - prefs.js..browser.startup.homepage: "http://google.com"
      FF - prefs.js..extensions.enabledAddons: [email protected]:1.0
      FF - prefs.js..extensions.enabledAddons: [email protected]:7.0.1466
      FF - prefs.js..extensions.enabledItems: {0974848a-b5bc-49f2-9778-307742b4a55d}:3.2.5.2
      FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}:6.0.20
      FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}:6.0.21
      FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}:6.0.22
      FF - prefs.js..extensions.enabledItems: [email protected]:3.2.5.2
      FF - prefs.js..extensions.enabledItems: [email protected]:20110101
      FF - prefs.js..extensions.enabledItems: {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}:1.3.6
      FF - prefs.js..keyword.URL: "http://google.com"


      FF:64bit: - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF64_11_3_300_271.dll File not found
      FF:64bit: - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files\Microsoft Silverlight\5.1.10411.0\npctrl.dll ( Microsoft Corporation)
      FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_3_300_271.dll ()
      FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\Windows\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
      FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files (x86)\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
      FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files (x86)\Microsoft Silverlight\5.1.10411.0\npctrl.dll ( Microsoft Corporation)
      FF - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeLive,version=1.5: C:\Program Files (x86)\Microsoft\Office Live\npOLW.dll (Microsoft Corp.)
      FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=14.0.8051.1204: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
      FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.21.123\npGoogleUpdate3.dll (Google Inc.)
      FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.21.123\npGoogleUpdate3.dll (Google Inc.)
      FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)

      FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\[email protected]: C:\Program Files\Alwil Software\Avast5\WebRep\FF [2012/09/06 13:53:05 | 000,000,000 | ---D | M]
      FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 15.0.1\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2012/09/08 12:24:38 | 000,000,000 | ---D | M]
      FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 15.0.1\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins [2012/07/11 14:07:11 | 000,000,000 | ---D | M]

      [2012/03/29 14:12:13 | 000,000,000 | ---D | M] (No name found) -- C:\Users\raul\AppData\Roaming\mozilla\Extensions
      [2012/08/22 01:44:46 | 000,000,000 | ---D | M] (No name found) -- C:\Users\raul\AppData\Roaming\mozilla\Firefox\Profiles\ulikg9zn.default\extensions
      [2012/08/22 01:44:46 | 000,000,000 | ---D | M] (ST.com4 Community Toolbar) -- C:\Users\raul\AppData\Roaming\mozilla\Firefox\Profiles\ulikg9zn.default\extensions\{0974848a-b5bc-49f2-9778-307742b4a55d}
      [2012/03/29 03:48:47 | 000,000,000 | ---D | M] (CodecC) -- C:\Users\raul\AppData\Roaming\mozilla\Firefox\Profiles\ulikg9zn.default\extensions\[email protected]
      [2012/07/25 06:07:01 | 000,741,958 | ---- | M] () (No name found) -- C:\Users\raul\AppData\Roaming\mozilla\firefox\profiles\ulikg9zn.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
      [2012/03/29 14:12:13 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\mozilla firefox\extensions
      [2010/03/05 18:14:04 | 000,000,000 | ---D | M] (Skype extension for Firefox) -- C:\Program Files (x86)\mozilla firefox\extensions\{AB2CE124-6272-4b12-94A9-7303C7397BD1}
      [2012/09/06 13:53:05 | 000,000,000 | ---D | M] (avast! WebRep) -- C:\PROGRAM FILES\ALWIL SOFTWARE\AVAST5\WEBREP\FF
      [2012/09/08 12:24:38 | 000,266,720 | ---- | M] (Mozilla Foundation) -- C:\Program Files (x86)\mozilla firefox\components\browsercomps.dll
      [2011/11/10 06:54:13 | 000,476,904 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files (x86)\mozilla firefox\plugins\npdeployJava1.dll
      [2012/09/08 12:24:33 | 000,002,465 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\bing.xml
      [2012/07/20 09:46:00 | 000,003,882 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\drae.xml
      [2012/06/17 19:51:13 | 000,001,143 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\eBay-es.xml
      [2010/08/27 07:36:31 | 000,003,803 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\MyHeritage.xml
      [2012/03/29 03:43:05 | 000,002,519 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\Search_Results.xml
      [2012/09/08 12:24:33 | 000,002,253 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\twitter.xml
      [2012/06/17 19:51:13 | 000,001,178 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\wikipedia-es.xml
      [2012/06/17 19:51:13 | 000,001,102 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\yahoo-es.xml

      ========== Chrome ==========

      CHR - homepage: http://www.google.com/
      CHR - default_search_provider: SearchOnMe (Enabled)
      CHR - default_search_provider: search_url = http://search.searchonme.com/?l=1&q={searchTerms}
      CHR - default_search_provider: suggest_url = http://suggestqueries.google.com/complete/search?output=firefox&client=firefox&qu={searchTerms}
      CHR - homepage: http://www.google.com/
      CHR - plugin: Shockwave Flash (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\21.0.1180.89\PepperFlash\pepflashplayer.dll
      CHR - plugin: Shockwave Flash (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\21.0.1180.89\gcswf32.dll
      CHR - plugin: Shockwave Flash (Enabled) = C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_3_300_271.dll
      CHR - plugin: Remoting Viewer (Enabled) = internal-remoting-viewer
      CHR - plugin: Native Client (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\21.0.1180.89\ppGoogleNaClPluginChrome.dll
      CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\21.0.1180.89\pdf.dll
      CHR - plugin: Adobe Acrobat (Enabled) = C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Browser\nppdf32.dll
      CHR - plugin: Java Deployment Toolkit 6.0.300.12 (Enabled) = C:\Program Files (x86)\Java\jre6\bin\new_plugin\npdeployJava1.dll
      CHR - plugin: Java(TM) Platform SE 6 U30 (Enabled) = C:\Program Files (x86)\Java\jre6\bin\new_plugin\npjp2.dll
      CHR - plugin: Microsoft\u00AE Windows Media Player Firefox Plugin (Enabled) = C:\Program Files (x86)\Mozilla Firefox\plugins\np-mswmp.dll
      CHR - plugin: Google Update (Enabled) = C:\Program Files (x86)\Google\Update\1.3.21.123\npGoogleUpdate3.dll
      CHR - plugin: Silverlight Plug-In (Enabled) = C:\Program Files (x86)\Microsoft Silverlight\5.1.10411.0\npctrl.dll
      CHR - plugin: Microsoft Office Live Plug-in for Firefox (Enabled) = C:\Program Files (x86)\Microsoft\Office Live\npOLW.dll
      CHR - plugin: Windows Live\u00AE Photo Gallery (Enabled) = C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
      CHR - plugin: Shockwave for Director (Enabled) = C:\Windows\system32\Adobe\Director\np32dsw.dll
      CHR - Extension: avast! WebRep = C:\Users\raul\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\7.0.1466_0\

      O1 HOSTS File: ([2009/06/10 23:00:26 | 000,000,824 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
      O2:64bit: - BHO: (avast! WebRep) - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\Alwil Software\Avast5\aswWebRepIE64.dll (AVAST Software)
      O2:64bit: - BHO: (Windows Live Family Safety Browser Helper Class) - {4f3ed5cd-0726-42a9-87f5-d13f3d2976ac} - C:\Program Files\Windows Live\Family Safety\fssbho.dll (Microsoft Corporation)
      O2:64bit: - BHO: (Google Toolbar Helper) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
      O2 - BHO: (softonic.com4 Toolbar) - {0974848a-b5bc-49f2-9778-307742b4a55d} - C:\Program Files (x86)\softonic.com4\tbsoft.dll (Conduit Ltd.)
      O2 - BHO: (no name) - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - No CLSID value found.
      O2 - BHO: (Spybot-S&D IE Protection) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files (x86)\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited)
      O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - No CLSID value found.
      O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre6\bin\ssv.dll (Sun Microsystems, Inc.)
      O2 - BHO: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll (AVAST Software)
      O3:64bit: - HKLM\..\Toolbar: (Google Toolbar) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
      O3:64bit: - HKLM\..\Toolbar: (avast! WebRep) - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\Alwil Software\Avast5\aswWebRepIE64.dll (AVAST Software)
      O3:64bit: - HKLM\..\Toolbar: (no name) - 10 - No CLSID value found.
      O3:64bit: - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
      O3 - HKLM\..\Toolbar: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll (AVAST Software)
      O3 - HKLM\..\Toolbar: (no name) - 10 - No CLSID value found.
      O3 - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
      O3 - HKCU\..\Toolbar\WebBrowser: (softonic.com4 Toolbar) - {0974848A-B5BC-49F2-9778-307742B4A55D} - C:\Program Files (x86)\softonic.com4\tbsoft.dll (Conduit Ltd.)
      O4:64bit: - HKLM..\Run: [ETDWare] C:\Program Files\Elantech\ETDCtrl.exe (ELAN Microelectronic Corp.)
      O4:64bit: - HKLM..\Run: [Microsoft Pinyin IME Migration] C:\PROGRA~1\COMMON~1\MICROS~1\IME12\IMESC\IMSCMIG.EXE /INSTALL File not found
      O4 - HKLM..\Run: [ATKOSD2] C:\Program Files (x86)\ASUS\ATKOSD2\ATKOSD2.exe (ASUS)
      O4 - HKLM..\Run: [avast] C:\Program Files\Alwil Software\Avast5\avastUI.exe (AVAST Software)
      O4 - HKLM..\Run: [HControlUser] C:\Program Files (x86)\ASUS\ATK Hotkey\HControlUser.exe (ASUS)
      O4 - HKLM..\Run: [HDAudDeck] C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe (VIA)
      O4 - HKLM..\Run: [Microsoft Pinyin IME Migration] C:\PROGRA~2\COMMON~1\MICROS~1\IME12\IMESC\IMSCMIG.EXE /INSTALL File not found
      O4 - HKLM..\Run: [StartCCC] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.)
      O4 - HKCU..\Run: [SpybotSD TeaTimer] C:\Program Files (x86)\Spybot - Search & Destroy\TeaTimer.exe (Safer-Networking Ltd.)
      O4 - HKCU..\Run: [SRS Premium Sound] C:\Program Files\SRS Labs\SRS Premium Sound\SRSPremiumSoundBig_Small.exe (SRS Labs, Inc.)
      O4 - HKCU..\Run: [Steam] c:\program files (x86)\steam\steam.exe (Valve Corporation)
      O4 - HKLM..\RunOnce: [Malwarebytes Anti-Malware (cleanup)] C:\ProgramData\Malwarebytes\Malwarebytes' Anti-Malware\cleanup.dll (Malwarebytes Corporation)
      O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
      O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
      O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
      O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
      O8:64bit: - Extra context menu item: Buscar en la web - C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\resources\menuext.html File not found
      O8:64bit: - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000 File not found
      O8 - Extra context menu item: Buscar en la web - C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\resources\menuext.html File not found
      O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000 File not found
      O9 - Extra Button: PokerStars - {3AD14F0C-ED16-4e43-B6D8-661B03F6A1EF} - C:\Program Files (x86)\PokerStars\PokerStarsUpdate.exe (PokerStars)
      O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL (Microsoft Corporation)
      O9 - Extra 'Tools' menuitem : Spybot - Search && Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files (x86)\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited)
      O1364bit: - gopher Prefix: missing
      O13 - gopher Prefix: missing
      O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_30-windows-i586.cab (Java Plug-in 1.6.0_30)
      O16 - DPF: {CAFEEFAC-0016-0000-0030-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_30-windows-i586.cab (Java Plug-in 1.6.0_30)
      O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_30-windows-i586.cab (Java Plug-in 1.6.0_30)
      O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
      O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{E23E0A70-44C8-415A-A04F-DD7C3D57BC04}: DhcpNameServer = 192.168.1.1
      O18:64bit: - Protocol\Handler\livecall - No CLSID value found
      O18:64bit: - Protocol\Handler\ms-help - No CLSID value found
      O18:64bit: - Protocol\Handler\msnim - No CLSID value found
      O18:64bit: - Protocol\Handler\skype4com - No CLSID value found
      O18:64bit: - Protocol\Handler\wlmailhtml - No CLSID value found
      O18 - Protocol\Handler\livecall {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~2\WIC4A1~1\MESSEN~1\MSGRAP~1.DLL (Microsoft Corporation)
      O18 - Protocol\Handler\msnim {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~2\WIC4A1~1\MESSEN~1\MSGRAP~1.DLL (Microsoft Corporation)
      O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL (Skype Technologies)
      O18:64bit: - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\PROGRA~1\COMMON~1\MICROS~1\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)
      O18 - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\PROGRA~2\COMMON~1\MICROS~1\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)
      O20:64bit: - AppInit_DLLs: (C:\PROGRA~2\SEARCH~1\Datamngr\x64\datamngr.dll) - File not found
      O20:64bit: - AppInit_DLLs: (C:\PROGRA~2\SEARCH~1\Datamngr\x64\IEBHO.dll) - File not found
      O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
      O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
      O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
      O20 - HKLM Winlogon: UserInit - (userinit.exe) - C:\Windows\SysWow64\userinit.exe (Microsoft Corporation)
      O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
      O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
      O32 - HKLM CDRom: AutoRun - 1
      O33 - MountPoints2\{abb20cd7-dc17-11e1-be95-90e6ba90fd75}\Shell - "" = AutoRun
      O33 - MountPoints2\{abb20cd7-dc17-11e1-be95-90e6ba90fd75}\Shell\AutoRun\command - "" = F:\LaunchU3.exe
      O33 - MountPoints2\F\Shell - "" = AutoRun
      O33 - MountPoints2\F\Shell\AutoRun\command - "" = F:\LaunchU3.exe
      O34 - HKLM BootExecute: (autocheck autochk *)
      O35:64bit: - HKLM\..comfile [open] -- "%1" %*
      O35:64bit: - HKLM\..exefile [open] -- "%1" %*
      O35 - HKLM\..comfile [open] -- "%1" %*
      O35 - HKLM\..exefile [open] -- "%1" %*
      O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
      O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
      O37 - HKLM\...com [@ = comfile] -- "%1" %*
      O37 - HKLM\...exe [@ = exefile] -- "%1" %*
      O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
      O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
      O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)


      MsConfig:64bit - StartUpFolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^FancyStart daemon.lnk - C:\Windows\Installer\{F0DF4513-3C4C-4EB8-8012-2C5F70AF3988}\_A1DDD39913A1970387B7B3.exe - ()
      MsConfig:64bit - StartUpFolder: C:^Users^raul^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^arg48570.exe.lnk - C:\Windows\SysNative\rundll32.exe - (Microsoft Corporation)
      MsConfig:64bit - StartUpReg: Adobe Reader Speed Launcher - hkey= - key= - C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe (Adobe Systems Incorporated)
      MsConfig:64bit - StartUpReg: ADSMTray - hkey= - key= - File not found
      MsConfig:64bit - StartUpReg: ATKMEDIA - hkey= - key= - C:\Program Files (x86)\ASUS\ATK Media\DMedia.exe (ASUS)
      MsConfig:64bit - StartUpReg: CLMLServer - hkey= - key= - C:\Program Files (x86)\Cyberlink\Power2Go\CLMLSvc.exe (CyberLink)
      MsConfig:64bit - StartUpReg: ETDWare - hkey= - key= - C:\Program Files\Elantech\ETDCtrl.exe (ELAN Microelectronic Corp.)
      MsConfig:64bit - StartUpReg: Microsoft Pinyin IME Migration - hkey= - key= - File not found
      MsConfig:64bit - StartUpReg: PDVD8LanguageShortcut - hkey= - key= - C:\Program Files (x86)\ASUSTek\ASUSDVD 8\Language\Language.exe (CyberLink Corp.)
      MsConfig:64bit - StartUpReg: RemoteControl8 - hkey= - key= - C:\Program Files (x86)\ASUSTek\ASUSDVD 8\PDVD8Serv.exe (CyberLink Corp.)
      MsConfig:64bit - StartUpReg: Setwallpaper - hkey= - key= - File not found
      MsConfig:64bit - StartUpReg: UpdateLBPShortCut - hkey= - key= - C:\Program Files (x86)\CyberLink\LabelPrint\MUITransfer\MUIStartMenu.exe (CyberLink Corp.)
      MsConfig:64bit - StartUpReg: UpdateP2GoShortCut - hkey= - key= - C:\Program Files (x86)\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe (CyberLink Corp.)
      MsConfig:64bit - State: "startup" - Reg Error: Key error.

      CREATERESTOREPOINT
      Restore point Set: OTL Restore Point

      ========== Files/Folders - Created Within 30 Days ==========

      [2012/09/18 01:32:50 | 000,036,864 | ---- | C] (NirSoft) -- C:\Windows\nircmd.exe
      [2012/09/14 06:07:38 | 000,000,000 | ---D | C] -- C:\Users\raul\AppData\Roaming\Mozilla-Cache
      [2012/09/14 06:06:59 | 000,000,000 | ---D | C] -- C:\Users\raul\AppData\Roaming\PartyEspana
      [2012/09/14 06:05:50 | 000,000,000 | ---D | C] -- C:\Programs
      [2012/09/09 05:12:23 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
      [2012/09/09 05:12:22 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Skype
      [2012/09/08 02:01:13 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Holdem Manager 2
      [2008/08/12 06:45:20 | 000,155,648 | ---- | C] (ASUS) -- C:\Program Files (x86)\Common Files\MSIactionall.dll

      ========== Files - Modified Within 30 Days ==========

      [2012/09/18 03:18:04 | 000,001,096 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
      [2012/09/18 03:16:47 | 000,000,838 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
      [2012/09/17 22:18:22 | 000,045,056 | ---- | M] () -- C:\Windows\SysNative\acovcnt.exe
      [2012/09/17 22:18:16 | 000,001,092 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
      [2012/09/17 22:18:10 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
      [2012/09/17 22:04:29 | 000,010,016 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
      [2012/09/17 22:04:29 | 000,010,016 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
      [2012/09/17 21:55:48 | 3220,529,152 | -HS- | M] () -- C:\hiberfil.sys
      [2012/09/17 21:52:23 | 000,000,000 | ---- | M] () -- C:\Windows\SysWow64\config.nt
      [2012/09/17 21:37:31 | 000,001,115 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
      [2012/09/14 04:13:55 | 001,671,442 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
      [2012/09/14 04:13:55 | 000,746,040 | ---- | M] () -- C:\Windows\SysNative\perfh00A.dat
      [2012/09/14 04:13:55 | 000,652,684 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
      [2012/09/14 04:13:55 | 000,158,524 | ---- | M] () -- C:\Windows\SysNative\perfc00A.dat
      [2012/09/14 04:13:55 | 000,121,616 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
      [2012/09/12 15:31:31 | 000,001,615 | ---- | M] () -- C:\Windows\SysNative\ServiceFilter.ini
      [2012/09/09 05:12:24 | 000,002,515 | ---- | M] () -- C:\Users\Public\Desktop\Skype.lnk
      [2012/09/08 02:01:27 | 000,001,094 | ---- | M] () -- C:\Users\Public\Desktop\HoldemManager2.lnk
      [2012/09/07 17:04:46 | 000,025,928 | ---- | M] (Malwarebytes Corporation) -- C:\Windows\SysNative\drivers\mbam.sys
      [2012/09/03 21:40:42 | 000,002,346 | ---- | M] () -- C:\Users\Public\Desktop\Google Chrome.lnk
      [2012/08/21 11:13:13 | 000,969,200 | ---- | M] (AVAST Software) -- C:\Windows\SysNative\drivers\aswSnx.sys
      [2012/08/21 11:13:13 | 000,359,464 | ---- | M] (AVAST Software) -- C:\Windows\SysNative\drivers\aswSP.sys
      [2012/08/21 11:13:13 | 000,059,728 | ---- | M] (AVAST Software) -- C:\Windows\SysNative\drivers\aswTdi.sys
      [2012/08/21 11:13:12 | 000,071,600 | ---- | M] (AVAST Software) -- C:\Windows\SysNative\drivers\aswMonFlt.sys
      [2012/08/21 11:13:12 | 000,054,072 | ---- | M] (AVAST Software) -- C:\Windows\SysNative\drivers\aswRdr2.sys
      [2012/08/21 11:13:11 | 000,025,232 | ---- | M] (AVAST Software) -- C:\Windows\SysNative\drivers\aswFsBlk.sys
      [2012/08/21 11:12:33 | 000,041,224 | ---- | M] (AVAST Software) -- C:\Windows\avastSS.scr
      [2012/08/21 11:12:23 | 000,227,648 | ---- | M] (AVAST Software) -- C:\Windows\SysWow64\aswBoot.exe
      [2012/08/21 11:12:02 | 000,285,328 | ---- | M] (AVAST Software) -- C:\Windows\SysNative\aswBoot.exe

      ========== Files Created - No Company Name ==========

      [2012/09/18 01:32:51 | 000,022,528 | ---- | C] () -- C:\Windows\AT-Uninstall.exe
      [2012/09/18 01:32:51 | 000,011,776 | ---- | C] () -- C:\Windows\Colous.exe
      [2012/09/18 01:32:50 | 000,069,660 | ---- | C] () -- C:\Windows\Fart.exe
      [2012/09/09 05:12:24 | 000,002,515 | ---- | C] () -- C:\Users\Public\Desktop\Skype.lnk
      [2011/11/02 12:47:25 | 001,649,416 | ---- | C] () -- C:\Windows\SysWow64\PerfStringBackup.INI
      [2011/05/03 2153 | 000,000,000 | ---- | C] () -- C:\Users\raul\AppData\Local\{AB80A951-9AE9-49A9-926A-2D40E824DB50}
      [2010/05/11 13:50:47 | 000,007,605 | ---- | C] () -- C:\Users\raul\AppData\Local\resmon.resmoncfg
      [2010/03/13 01:46:13 | 000,003,584 | ---- | C] () -- C:\Users\raul\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
      [2010/03/05 18:15:16 | 000,000,056 | -H-- | C] () -- C:\ProgramData\ezsidmv.dat
      [2010/03/05 18:04:09 | 000,004,985 | ---- | C] () -- C:\ProgramData\ojvzdisj.xda
      [2009/04/08 19:31:56 | 000,106,496 | ---- | C] () -- C:\Program Files (x86)\Common Files\CPInstallAction.dll
      [2008/05/22 17:35:54 | 000,051,962 | ---- | C] () -- C:\Program Files (x86)\Common Files\banner.jpg

      ========== LOP Check ==========

      [2010/12/13 11:32:46 | 000,000,000 | ---D | M] -- C:\Users\raul\AppData\Roaming\ASUSTek
      [2011/07/28 23:08:45 | 000,000,000 | ---D | M] -- C:\Users\raul\AppData\Roaming\ChessBase
      [2012/04/01 06:17:29 | 000,000,000 | ---D | M] -- C:\Users\raul\AppData\Roaming\EurekaLog
      [2011/05/20 18:53:11 | 000,000,000 | ---D | M] -- C:\Users\raul\AppData\Roaming\HEM Data
      [2012/09/08 02:12:42 | 000,000,000 | ---D | M] -- C:\Users\raul\AppData\Roaming\HoldemManager
      [2012/09/14 06:08:54 | 000,000,000 | ---D | M] -- C:\Users\raul\AppData\Roaming\PartyEspana
      [2012/07/12 20:26:55 | 000,000,000 | ---D | M] -- C:\Users\raul\AppData\Roaming\QuickScan
      [2012/06/06 11:46:45 | 000,000,000 | ---D | M] -- C:\Users\raul\AppData\Roaming\SumatraPDF
      [2012/05/10 11:31:53 | 000,032,610 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT

      ========== Purity Check ==========



      ========== Custom Scans ==========

      < %SYSTEMDRIVE%\*.* >
      [2009/06/15 13:11:59 | 000,000,054 | ---- | M] () -- C:\AdobeReader.log
      [2012/09/18 01:36:20 | 000,004,119 | ---- | M] () -- C:\AT-Destroyer.txt
      [2010/11/20 14:40:07 | 000,383,786 | RHS- | M] () -- C:\bootmgr
      [2009/07/29 07:09:18 | 000,008,192 | RHS- | M] () -- C:\BOOTSECT.BAK
      [2009/10/26 11:43:21 | 000,013,657 | ---- | M] () -- C:\devlist.txt
      [2009/10/26 11:43:20 | 000,000,009 | ---- | M] () -- C:\Finish.log
      [2012/09/17 21:55:48 | 3220,529,152 | -HS- | M] () -- C:\hiberfil.sys
      [2009/06/15 17:51:07 | 001,048,576 | -H-- | M] () -- C:\K40ABAS.BIN
      [2009/09/04 04:27:48 | 000,000,019 | ---- | M] () -- C:\K40AB_K50AB_K40AD_K50AD_WIN7.10
      [2009/08/21 04:53:12 | 001,048,576 | -H-- | M] () -- C:\K40ADAS.BIN
      [2009/06/15 1855 | 001,048,576 | -H-- | M] () -- C:\K50ABAS.BIN
      [2009/08/21 05:16:52 | 001,048,576 | -H-- | M] () -- C:\K50ADAS.BIN
      [2009/07/02 09:17:15 | 000,000,037 | ---- | M] () -- C:\Nero.Log
      [2009/06/12 03:32:00 | 000,000,057 | ---- | M] () -- C:\OFFICE2007_E.TXT
      [2012/09/17 21:55:50 | 4294,041,600 | -HS- | M] () -- C:\pagefile.sys
      [2009/10/25 23:12:07 | 000,000,146 | ---- | M] () -- C:\Pass.txt
      [2009/09/01 04:54:37 | 000,003,750 | ---- | M] () -- C:\Patch.LOG
      [2012/09/18 01:33:05 | 000,000,120 | ---- | M] () -- C:\prueba.txt
      [2009/08/25 0252 | 000,000,026 | ---- | M] () -- C:\RECOVERY.DAT
      [2012/03/31 22:32:09 | 000,000,359 | ---- | M] () -- C:\rkill.log
      [2012/03/15 17:12:44 | 000,000,510 | ---- | M] () -- C:\settings.ini
      [2009/10/26 11:30:55 | 000,000,090 | ---- | M] () -- C:\setup.log
      [2006/05/14 10:22:24 | 000,000,005 | ---- | M] () -- C:\store.log
      [2009/10/26 11:04:13 | 000,000,170 | ---- | M] () -- C:\SumHidd.txt
      [2009/10/26 11:02:21 | 000,000,098 | ---- | M] () -- C:\SumOS.txt
      [2009/09/16 20:04:46 | 000,000,024 | ---- | M] () -- C:\v82.txt

      ========== Alternate Data Streams ==========

      @Alternate Data Stream - 81 bytes -> C:\Program Files (x86)\liipoker:MID
      @Alternate Data Stream - 143 bytes -> C:\ProgramData\Temp:DE406C3E

      < End of report >


      El avast me sigue saltando cada vez que navego con mozilla. Acepto sugerencias.

    4. #4
      Ex-Colaboradora Avatar de @SanMar
      Registrado
      jun 2008
      Ubicación
      Argentina
      Mensajes
      22.290

      Re: Avast detecta: trkjmp.com URL:Mal

      Hola:


      Realiza lo siguiente:






      1.-Ejecutar OTL.exe
      • Pegue el siguiente script bajo la casilla Análisis Personalizados/Codigo de Reparación:
        • NOTA: No copiar la palabra codigo.

        Código:
        :OTL
        IE:64bit: - HKLM\..\SearchScopes,DefaultScope = {9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}
        IE:64bit: - HKLM\..\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}: "URL" = http://dts.search-results.com/sr?src=ieb&appid=361&systemid=406&sr=0&q={searchTerms}
        IE - HKLM\..\URLSearchHook: {0974848a-b5bc-49f2-9778-307742b4a55d} - C:\Program Files (x86)\softonic.com4\tbsoft.dll (Conduit Ltd.)
        IE - HKLM\..\SearchScopes,DefaultScope = {BB74DE59-BC4C-4172-9AC4-73315F71CFFE}
        IE - HKLM\..\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}: "URL" = http://dts.search-results.com/sr?src=ieb&appid=361&systemid=406&sr=0&q={searchTerms}
        IE - HKLM\..\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}: "URL" = http://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT2431232
        IE - HKLM\..\SearchScopes\{BB74DE59-BC4C-4172-9AC4-73315F71CFFE}: "URL" = http://search.searchonme.com/?l=1&q={searchTerms}
        IE - HKLM\..\SearchScopes\{BE28C22E-F666-424d-B5FD-125C4AFEE34E}: "URL" = http://search.myheritage.com?orig=ds&q={searchTerms}
        IE - HKCU\..\URLSearchHook: {0974848a-b5bc-49f2-9778-307742b4a55d} - C:\Program Files (x86)\softonic.com4\tbsoft.dll (Conduit Ltd.)
        IE - HKCU\..\SearchScopes,DefaultScope = {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}
        IE - HKCU\..\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}: "URL" = http://search.babylon.com/?q={searchTerms}&affID=110819&babsrc=SP_ss&mntrId=7253370000000000000090e6ba90fd75
        IE - HKCU\..\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}: "URL" = http://dts.search-results.com/sr?src=ieb&appid=361&systemid=406&sr=0&q={searchTerms}
        IE - HKCU\..\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}: "URL" = http://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT2431232
        IE - HKCU\..\SearchScopes\{BB74DE59-BC4C-4172-9AC4-73315F71CFFE}: "URL" = http://search.searchonme.com/?l=1&q={searchTerms}
        IE - HKCU\..\SearchScopes\{BE28C22E-F666-424d-B5FD-125C4AFEE34E}: "URL" = http://search.myheritage.com?orig=ds&q={searchTerms}
        FF - prefs.js..browser.search.defaultenginename: "Search Results"
        FF - prefs.js..browser.search.defaultthis.engineName: "softonic.com4 Customized Web Search"
        FF - prefs.js..browser.search.defaulturl: "http://search.conduit.com/ResultsExt.aspx?ctid=CT2431232&SearchSource=3&q={searchTerms}"
        FF - prefs.js..browser.search.order.1: "Search Results"
        FF - prefs.js..extensions.enabledItems: [email protected]:3.2.5.2
        [2012/08/22 01:44:46 | 000,000,000 | ---D | M] (ST.com4 Community Toolbar) -- C:\Users\raul\AppData\Roaming\mozilla\Firefox\Profiles\ulikg9zn.default\extensions\{0974848a-b5bc-49f2-9778-307742b4a55d}
        [2012/03/29 03:48:47 | 000,000,000 | ---D | M] (CodecC) -- C:\Users\raul\AppData\Roaming\mozilla\Firefox\Prof iles\ulikg9zn.default\extensions\[email protected]
        [2010/08/27 07:36:31 | 000,003,803 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\MyHeritage.xml
        [2012/03/29 03:43:05 | 000,002,519 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\Search_Results.xml
        O2 - BHO: (softonic.com4 Toolbar) - {0974848a-b5bc-49f2-9778-307742b4a55d} - C:\Program Files (x86)\softonic.com4\tbsoft.dll (Conduit Ltd.)
        O2 - BHO: (no name) - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - No CLSID value found.
        O3:64bit: - HKLM\..\Toolbar: (no name) - 10 - No CLSID value found.
        O3:64bit: - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
        O3 - HKLM\..\Toolbar: (no name) - 10 - No CLSID value found.
        O3 - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
        O3 - HKCU\..\Toolbar\WebBrowser: (softonic.com4 Toolbar) - {0974848A-B5BC-49F2-9778-307742B4A55D} - C:\Program Files (x86)\softonic.com4\tbsoft.dll (Conduit Ltd.)
        O8:64bit: - Extra context menu item: Buscar en la web - C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\resources\menuext.html File not found
        016 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_30-windows-i586.cab (Java Plug-in 1.6.0_30)
        O16 - DPF: {CAFEEFAC-0016-0000-0030-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_30-windows-i586.cab (Java Plug-in 1.6.0_30)
        O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_30-windows-i586.cab (Java Plug-in 1.6.0_30)
        O18:64bit: - Protocol\Handler\livecall - No CLSID value found
        O18:64bit: - Protocol\Handler\ms-help - No CLSID value found
        O18:64bit: - Protocol\Handler\msnim - No CLSID value found
        O18:64bit: - Protocol\Handler\skype4com - No CLSID value found
        O18:64bit: - Protocol\Handler\wlmailhtml - No CLSID value found
        O20:64bit: - AppInit_DLLs: (C:\PROGRA~2\SEARCH~1\Datamngr\x64\datamngr.dll) - File not found
        O20:64bit: - AppInit_DLLs: (C:\PROGRA~2\SEARCH~1\Datamngr\x64\IEBHO.dll) - File not found
        O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
        O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
        O33 - MountPoints2\{abb20cd7-dc17-11e1-be95-90e6ba90fd75}\Shell - "" = AutoRun
        O33 - MountPoints2\{abb20cd7-dc17-11e1-be95-90e6ba90fd75}\Shell\AutoRun\command - "" = F:\LaunchU3.exe
        O33 - MountPoints2\F\Shell - "" = AutoRun
        O33 - MountPoints2\F\Shell\AutoRun\command - "" = F:\LaunchU3.exe
        MsConfig:64bit - State: "startup" - Reg Error: Key error.
        [2010/03/05 18:15:16 | 000,000,056 | -H-- | C] () -- C:\ProgramData\ezsidmv.dat
        [2010/03/05 18:04:09 | 000,004,985 | ---- | C] () -- C:\ProgramData\ojvzdisj.xda
        [2012/09/17 22:18:22 | 000,045,056 | ---- | M] () -- C:\Windows\SysNative\acovcnt.exe
        @Alternate Data Stream - 81 bytes -> C:\Program Files (x86)\liipoker:MID
        @Alternate Data Stream - 143 bytes -> C:\ProgramData\Temp:DE406C3E
        
        :files
        ipconfig /flushdns /c
        netsh int ip reset c:\resetlog.txt  /c
        ipconfig /release /c
        ipconfig /renew /c
        
        :commands
        [resethosts]
        [emptyflash]
        [emptytemp]
        [emptyjava]
        [Reboot]
      • Luego haga clic en el botón Reparar en la parte superior.
      • Deje que el programa se ejecute sin trabas, reinicie cuando lo pida hacer.
      • Al reiniciar se creará un reporte por defecto en C:\_OTL\MovedFiles, copie y pegue ese log en la próxima respuesta.



      Nos comentas los resultados.

      Salu2.

      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.

    5. #5
      Usuario Avatar de Camus83
      Registrado
      sep 2012
      Ubicación
      Valencia
      Mensajes
      4

      Re: Avast detecta: trkjmp.com URL:Mal

      Le he pasado el avast durante el arranque y me ha detectado y eliminado:

      Amenaza Java CVE 2012-0507-AW [Expl]

      Amenaza Java CVE 2012-0507- AL [Expl]

      PPD: NSIS: Adware-EO [PUP]

      Ya no me salta ningún problema ni me detecta ni avast ni malwarebytes nada en absoluto ni se dispara el escudo cuando navego. Yo creo que la infección ya está eliminada no?!!!!

      Es raro porque no me he descargado nada ni he hecho nada fuera de lo habitual ultimamente, cómo puede ser que me haya infectado con esto?!!!!


      Muchas gracias por vuestra ayuda.

    6. #6
      Ex-Colaboradora Avatar de @SanMar
      Registrado
      jun 2008
      Ubicación
      Argentina
      Mensajes
      22.290

      Re: Avast detecta: trkjmp.com URL:Mal

      Hola:


      Hiciste la eliminación con el Script de OTL que te deje ya que tienes mucha basura ?

      Si lo hiciste trae el reporte.


      Es raro porque no me he descargado nada ni he hecho nada fuera de lo habitual ultimamente, cómo puede ser que me haya infectado con esto?!

      Tu versión de Java esta desactualizada. Actualiza a su ultima aversión ¿Cómo puedo comprobar si Java funciona en mi equipo?, y si no se elimina automáticamente elimina la versión vieja sujeta a vulnerabilidades.



      Salu2.

      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.