• Registrarse
  • Iniciar sesión


  • Página 4 de 4 PrimeroPrimero 1234
    Resultados 31 al 40 de 40

    internet explorer me redirecciona a otras paginas

    ok eso hare...

    1. #31
      Usuario Avatar de angeles94
      Registrado
      oct 2012
      Ubicación
      campeche,campeche
      Mensajes
      24

      Re: internet explorer me redirecciona a otras paginas

      ok eso hare
      Última edición por angeles94 fecha: 12/11/12 a las 19:06:32

    2. #32
      Usuario Avatar de angeles94
      Registrado
      oct 2012
      Ubicación
      campeche,campeche
      Mensajes
      24

      Re: internet explorer me redirecciona a otras paginas

      ola hize lo que me indicastes funciono solo un dia(ya no me redireccionaba), pero al otro dia que volvi encender mi compu y abri internet me volvio a redireccionar
      aki te dejo el reporte de combofix

    3. #33
      Usuario Avatar de angeles94
      Registrado
      oct 2012
      Ubicación
      campeche,campeche
      Mensajes
      24

      Re: internet explorer me redirecciona a otras paginas

      ComboFix 12-11-08.01 - Admin 13/11/2012 14:36:10.11.1 - x86
      Microsoft Windows 7 Professional 6.1.7601.1.1252.52.3082.18.1406.757 [GMT -6:00]
      Running from: c:\users\Admin\Downloads\Desktop\ComboFix.exe
      AV: Panda Antivirus Pro 2011 *Enabled/Updated* {86971480-9989-6750-B122-681A86518D59}
      FW: Panda Personal Firewall 2011 *Enabled* {BEAC95A5-D3E6-6608-9A7D-C12F7882CA22}
      SP: Panda Antivirus Pro 2011 *Enabled/Updated* {3DF6F564-BFB3-68DE-8B92-5368FDD6C7E4}
      SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
      * Created a new restore point
      * Resident AV is active
      .
      .
      .
      ((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
      .
      .
      c:\users\Admin\AppData\Local\{2638392C-1551-4FC0-9349-05BF617A6670}
      .
      .
      ((((((((((((((((((((((((( Files Created from 2012-10-13 to 2012-11-13 )))))))))))))))))))))))))))))))
      .
      .
      2012-11-13 20:51 . 2012-11-13 20:51 -------- d-----w- c:\users\Public\AppData\Local\temp
      2012-11-13 20:51 . 2012-11-13 20:51 -------- d-----w- c:\users\Default\AppData\Local\temp
      2012-11-13 20:51 . 2012-11-13 20:51 -------- d-----w- c:\users\Carlitos\AppData\Local\temp
      2012-11-10 15:48 . 2012-11-10 15:48 -------- d-----w- c:\users\Admin\AppData\Local\ESET
      2012-11-10 12:53 . 2012-11-10 15:44 -------- d-----w- c:\program files\ESET
      2012-11-10 08:37 . 2012-11-10 14:53 -------- d-----w- c:\windows\system32\DBBK
      2012-11-10 08:12 . 2012-11-10 08:57 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
      2012-11-10 08:12 . 2012-09-30 01:54 22856 ----a-w- c:\windows\system32\drivers\mbam.sys
      2012-11-10 07:15 . 2012-11-10 07:32 -------- d-----w- C:\UsbFix
      2012-10-30 02:19 . 2012-10-30 02:24 -------- d-----w- C:\SMCLpav
      2012-10-27 03:28 . 2012-11-10 06:43 -------- d-----w- c:\program files\Common Files\PC Tools
      2012-10-23 20:28 . 2012-11-13 20:51 -------- d-----w- c:\users\Admin\AppData\Local\temp
      2012-10-15 08:22 . 2012-10-15 08:22 -------- d-----w- C:\_OTL
      2012-10-15 00:31 . 2012-10-15 00:31 -------- d-----w- c:\program files\Free PDF to Word Doc Converter
      2012-10-15 00:09 . 2012-10-15 00:10 -------- d-----w- c:\users\Admin\AppData\Roaming\YourFileDownloader
      .
      .
      .
      (((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
      .
      2012-11-10 07:32 . 2012-11-10 07:32 3983 ----a-w- C:\UsbFix_Upload_Me_CARLITOS-PC.zip
      2012-10-10 19:18 . 2012-06-24 19:23 696760 ----a-w- c:\windows\system32\FlashPlayerApp.exe
      2012-10-10 19:18 . 2011-06-29 14:21 73656 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
      2012-10-04 15:13 . 2012-10-04 15:13 48648 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCEClientUX\UpdateableMarkup\Markup.dll
      2012-10-04 15:13 . 2012-10-04 15:13 504656 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCESpotlight\MCESpotlight\SpotlightResources.dll
      2012-09-14 18:28 . 2012-10-10 13:32 2048 ----a-w- c:\windows\system32\tzres.dll
      2012-08-31 17:18 . 2012-10-10 13:31 1211760 ----a-w- c:\windows\system32\drivers\ntfs.sys
      2012-08-30 17:12 . 2012-10-10 13:31 3968880 ----a-w- c:\windows\system32\ntkrnlpa.exe
      2012-08-30 17:12 . 2012-10-10 13:31 3914096 ----a-w- c:\windows\system32\ntoskrnl.exe
      2012-08-30 08:17 . 2012-10-10 00:04 6980552 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{9270B763-D9A1-404F-A41D-0AAA8077A0D1}\mpengine.dll
      2012-08-24 16:57 . 2012-10-10 13:32 172544 ----a-w- c:\windows\system32\wintrust.dll
      2012-08-24 06:59 . 2012-09-22 05:22 1800704 ----a-w- c:\windows\system32\jscript9.dll
      2012-08-24 06:51 . 2012-09-22 05:22 1129472 ----a-w- c:\windows\system32\wininet.dll
      2012-08-24 06:51 . 2012-09-22 05:22 1427968 ----a-w- c:\windows\system32\inetcpl.cpl
      2012-08-24 06:47 . 2012-09-22 05:22 142848 ----a-w- c:\windows\system32\ieUnatt.exe
      2012-08-24 06:47 . 2012-09-22 05:22 420864 ----a-w- c:\windows\system32\vbscript.dll
      2012-08-24 06:43 . 2012-09-22 05:22 2382848 ----a-w- c:\windows\system32\mshtml.tlb
      2012-08-22 17:16 . 2012-09-11 19:30 1292144 ----a-w- c:\windows\system32\drivers\tcpip.sys
      2012-08-22 17:16 . 2012-09-11 19:30 712048 ----a-w- c:\windows\system32\drivers\ndis.sys
      2012-08-22 17:16 . 2012-09-11 19:30 240496 ----a-w- c:\windows\system32\drivers\netio.sys
      2012-08-22 17:16 . 2012-09-11 19:30 187760 ----a-w- c:\windows\system32\drivers\FWPKCLNT.SYS
      2012-08-21 20:12 . 2012-09-25 21:06 245760 ----a-w- c:\windows\system32\OxpsConverter.exe
      2012-08-20 17:40 . 2012-10-10 13:32 169984 ----a-w- c:\windows\system32\winsrv.dll
      2012-08-20 17:40 . 2012-10-10 13:32 293376 ----a-w- c:\windows\system32\KernelBase.dll
      2012-08-20 17:37 . 2012-10-10 13:32 271360 ----a-w- c:\windows\system32\conhost.exe
      2012-08-20 17:32 . 2012-10-10 13:32 5120 ---ha-w- c:\windows\system32\api-ms-win-core-file-l1-1-0.dll
      2012-08-20 17:32 . 2012-10-10 13:32 4608 ---ha-w- c:\windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
      2012-08-20 17:32 . 2012-10-10 13:32 4096 ---ha-w- c:\windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
      2012-08-20 17:32 . 2012-10-10 13:32 4096 ---ha-w- c:\windows\system32\api-ms-win-core-synch-l1-1-0.dll
      2012-08-20 17:32 . 2012-10-10 13:32 4096 ---ha-w- c:\windows\system32\api-ms-win-core-misc-l1-1-0.dll
      2012-08-20 17:32 . 2012-10-10 13:32 4096 ---ha-w- c:\windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
      2012-08-20 17:32 . 2012-10-10 13:32 3584 ---ha-w- c:\windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
      2012-08-20 17:32 . 2012-10-10 13:32 3584 ---ha-w- c:\windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
      2012-08-20 17:32 . 2012-10-10 13:32 3584 ---ha-w- c:\windows\system32\api-ms-win-core-memory-l1-1-0.dll
      2012-08-20 17:32 . 2012-10-10 13:32 3584 ---ha-w- c:\windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
      2012-08-20 17:32 . 2012-10-10 13:32 3584 ---ha-w- c:\windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
      2012-08-20 17:32 . 2012-10-10 13:32 3584 ---ha-w- c:\windows\system32\api-ms-win-core-heap-l1-1-0.dll
      2012-08-20 17:32 . 2012-10-10 13:32 3072 ---ha-w- c:\windows\system32\api-ms-win-core-string-l1-1-0.dll
      2012-08-20 17:32 . 2012-10-10 13:32 3072 ---ha-w- c:\windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
      2012-08-20 17:32 . 2012-10-10 13:32 3072 ---ha-w- c:\windows\system32\api-ms-win-core-profile-l1-1-0.dll
      2012-08-20 17:32 . 2012-10-10 13:32 3072 ---ha-w- c:\windows\system32\api-ms-win-core-io-l1-1-0.dll
      2012-08-20 17:32 . 2012-10-10 13:32 3072 ---ha-w- c:\windows\system32\api-ms-win-core-handle-l1-1-0.dll
      2012-08-20 17:32 . 2012-10-10 13:32 3072 ---ha-w- c:\windows\system32\api-ms-win-core-fibers-l1-1-0.dll
      2012-08-20 17:32 . 2012-10-10 13:32 3072 ---ha-w- c:\windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
      2012-08-20 17:32 . 2012-10-10 13:32 3072 ---ha-w- c:\windows\system32\api-ms-win-core-delayload-l1-1-0.dll
      2012-08-20 17:32 . 2012-10-10 13:32 3072 ---ha-w- c:\windows\system32\api-ms-win-core-debug-l1-1-0.dll
      2012-08-20 17:32 . 2012-10-10 13:32 3072 ---ha-w- c:\windows\system32\api-ms-win-core-datetime-l1-1-0.dll
      2012-08-20 17:32 . 2012-10-10 13:32 4096 ---ha-w- c:\windows\system32\api-ms-win-core-localization-l1-1-0.dll
      2012-08-20 17:32 . 2012-10-10 13:32 3072 ---ha-w- c:\windows\system32\api-ms-win-core-console-l1-1-0.dll
      2012-08-20 15:33 . 2012-10-10 13:32 6144 ---ha-w- c:\windows\system32\api-ms-win-security-base-l1-1-0.dll
      2012-08-20 15:33 . 2012-10-10 13:32 4608 ---ha-w- c:\windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
      2012-08-20 15:33 . 2012-10-10 13:32 3584 ---ha-w- c:\windows\system32\api-ms-win-core-xstate-l1-1-0.dll
      2012-08-20 15:33 . 2012-10-10 13:32 3072 ---ha-w- c:\windows\system32\api-ms-win-core-util-l1-1-0.dll
      2012-09-22 03:04 . 2012-06-24 19:03 266720 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll
      .
      .
      ((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
      .
      .
      *Note* empty entries & legit default entries are not shown
      REGEDIT4
      .
      [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
      "BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"="c:\program files\Common Files\Ahead\Lib\NMBgMonitor.exe" [2007-01-15 147456]
      "ISUSPM"="c:\program files\Common Files\InstallShield\UpdateService\ISUSPM.exe" [2007-08-30 205480]
      "Facebook Update"="c:\users\Admin\AppData\Local\Facebook\Update\FacebookUpdate.exe" [2012-07-11 138096]
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
      "NeroFilterCheck"="c:\program files\Common Files\Ahead\Lib\NeroCheck.exe" [2006-01-12 155648]
      "BCSSync"="c:\program files\Microsoft Office\Office14\BCSSync.exe" [2010-03-13 91520]
      "TkBellExe"="c:\program files\real\realplayer\Update\realsched.exe" [2011-04-05 273544]
      "Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2012-03-27 37296]
      "Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2012-01-02 843712]
      "SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2012-01-18 254696]
      "HP Software Update"="c:\program files\HP\HP Software Update\HPWuSchd2.exe" [2007-05-08 54840]
      "hpqSRMon"="c:\program files\HP\Digital Imaging\bin\hpqSRMon.exe" [2008-07-22 150528]
      "egui"="c:\program files\ESET\ESET Smart Security\egui.exe" [2012-03-07 3117344]
      .
      c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
      HP Digital Imaging Monitor.lnk - c:\program files\HP\Digital Imaging\bin\hpqtra08.exe [2009-9-20 270336]
      .
      [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
      "ConsentPromptBehaviorAdmin"= 5 (0x5)
      "ConsentPromptBehaviorUser"= 3 (0x3)
      "EnableUIADesktopToggle"= 0 (0x0)
      .
      [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\windows]
      "AppInit_DLLs"=c:\progra~2\BROWSE~1\23787~1.43\{16CDF~1\browsemngr.dll
      .
      [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
      "mixer"=wdmaud.drv
      .
      R2 BBSvc;BingBar Service;c:\program files\Microsoft\BingBar\7.1.391.0\BBSvc.exe [x]
      R3 cmusbser;Cmotech USB Device for Legacy Serial Communication;c:\windows\system32\DRIVERS\cmusbser.sys [x]
      R3 P0630VID;Creative WebCam Live!;c:\windows\system32\DRIVERS\P0630Vid.sys [x]
      R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [x]
      R3 WatAdminSvc;Servicio de tecnologías de activación de Windows;c:\windows\system32\Wat\WatAdminSvc.exe [x]
      R3 wirelessusbser;Wireless USB Device for Legacy Serial Communication;c:\windows\system32\DRIVERS\3GDatausbser.sys [x]
      R4 wlcrasvc;Windows Live Mesh remote connections service;c:\program files\Windows Live\Mesh\wlcrasvc.exe [x]
      S0 epfwwfp;epfwwfp;c:\windows\system32\DRIVERS\epfwwfp.sys [x]
      S1 eamonm;eamonm;c:\windows\system32\DRIVERS\eamonm.sys [x]
      S1 ehdrv;ehdrv;c:\windows\system32\DRIVERS\ehdrv.sys [x]
      S1 EpfwLWF;Epfw NDIS LightWeight Filter;c:\windows\system32\DRIVERS\EpfwLWF.sys [x]
      S2 ekrn;ESET Service;c:\program files\ESET\ESET Smart Security\ekrn.exe [x]
      S2 MBAMScheduler;MBAMScheduler;c:\program files\Malwarebytes' Anti-Malware\mbamscheduler.exe [x]
      S2 MBAMService;MBAMService;c:\program files\Malwarebytes' Anti-Malware\mbamservice.exe [x]
      S3 BBUpdate;BBUpdate;c:\program files\Microsoft\BingBar\7.1.391.0\SeaPort.exe [x]
      S3 HSFHWATI;HSFHWATI;c:\windows\system32\DRIVERS\HSFHWATI.sys [x]
      S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [x]
      .
      .
      [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
      hpdevmgmt REG_MULTI_SZ hpqcxs08 hpqddsvc
      .
      Contents of the 'Scheduled Tasks' folder
      .
      2012-11-13 c:\windows\Tasks\Adobe Flash Player Updater.job
      - c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2012-06-24 19:18]
      .
      2012-11-12 c:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-3180311463-1768964898-3199594699-1003Core.job
      - c:\users\Admin\AppData\Local\Facebook\Update\FacebookUpdate.exe [2012-06-25 22:13]
      .
      2012-11-13 c:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-3180311463-1768964898-3199594699-1003UA.job
      - c:\users\Admin\AppData\Local\Facebook\Update\FacebookUpdate.exe [2012-06-25 22:13]
      .
      2012-11-13 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
      - c:\program files\Google\Update\GoogleUpdate.exe [2010-08-12 21:26]
      .
      2012-11-13 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
      - c:\program files\Google\Update\GoogleUpdate.exe [2010-08-12 21:26]
      .
      2012-10-26 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3180311463-1768964898-3199594699-1003Core.job
      - c:\users\Admin\AppData\Local\Google\Update\GoogleUpdate.exe [2012-06-24 01:40]
      .
      2012-11-13 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3180311463-1768964898-3199594699-1003UA.job
      - c:\users\Admin\AppData\Local\Google\Update\GoogleUpdate.exe [2012-06-24 01:40]
      .
      2012-11-13 c:\windows\Tasks\rjrkpc.job
      - c:\windows\system32\da-DK7.dll [2012-10-10 02:40]
      .
      .
      ------- Supplementary Scan -------
      .
      uStart Page = hxxp://www.google.com.mx/
      IE: &Enviar a OneNote - c:\progra~1\MICROS~2\Office14\ONBttnIE.dll/105
      IE: Download with &Media Finder - c:\program files\Media Finder\hook.html
      IE: E&xportar a Microsoft Excel - c:\progra~1\MICROS~2\Office14\EXCEL.EXE/3000
      TCP: DhcpNameServer = 192.168.1.1
      FF - ProfilePath - c:\users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\au3nj5cw.default\
      FF - ExtSQL: !HIDDEN! 2012-07-21 23:03; [email protected]; c:\program files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
      FF - user.js: extensions.BabylonToolbar.autoRvrt - false
      FF - user.js: extensions.BabylonToolbar_i.newTab - false
      FF - user.js: extensions.BabylonToolbar.tlbrSrchUrl - hxxp://search.babylon.com/?babsrc=TB_def&mntrId=f0b5d0d50000000000000611f5aeff88&q=
      FF - user.js: extensions.BabylonToolbar.id - f0b5d0d50000000000000611f5aeff88
      FF - user.js: extensions.BabylonToolbar.appId - {BDB69379-802F-4eaf-B541-F8DE92DD98DB}
      FF - user.js: extensions.BabylonToolbar.instlDay - 15593
      FF - user.js: extensions.BabylonToolbar.vrsn - 1.6.9.12
      FF - user.js: extensions.BabylonToolbar.vrsni - 1.6.9.12
      FF - user.js: extensions.BabylonToolbar_i.vrsnTs - 1.6.9.1223:31
      FF - user.js: extensions.BabylonToolbar.prtnrId - babylon
      FF - user.js: extensions.BabylonToolbar.prdct - BabylonToolbar
      FF - user.js: extensions.BabylonToolbar.aflt - babsst
      FF - user.js: extensions.BabylonToolbar_i.smplGrp - none
      FF - user.js: extensions.BabylonToolbar.tlbrId - tb9
      FF - user.js: extensions.BabylonToolbar.instlRef - sst
      FF - user.js: extensions.BabylonToolbar.dfltLng - en
      FF - user.js: extensions.BabylonToolbar.excTlbr - false
      FF - user.js: extensions.BabylonToolbar.admin - false
      FF - user.js: extensions.BabylonToolbar_i.babTrack - affID=110823&tt=3712_6
      FF - user.js: extensions.BabylonToolbar_i.babExt -
      FF - user.js: extensions.BabylonToolbar_i.srcExt - ss
      user_pref('extensions.dealply.partner', 'vita');
      user_pref('extensions.dealply.channel', 'vitasolodrivers');
      user_pref('extensions.dealply.installId', 'v23500241227416535753212012032122545517');
      user_pref('extensions.dealply.installIdSource', 'inst');
      user_pref('extensions.dealply.sampleGroup', '7');
      .
      .
      ------- File Associations -------
      .
      .scr=AutoCADScriptFile
      .
      .
      --------------------- LOCKED REGISTRY KEYS ---------------------
      .
      [HKEY_USERS\S-1-5-21-3180311463-1768964898-3199594699-1003\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.*4%p***]
      @Class="Shell"
      .
      [HKEY_USERS\S-1-5-21-3180311463-1768964898-3199594699-1003\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.*4%p***\OpenWithList]
      @Class="Shell"
      "a"="wmplayer.exe"
      "MRUList"="a"
      .
      [HKEY_USERS\S-1-5-21-3180311463-1768964898-3199594699-1003\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.*4%p***\OpenWithProgids]
      "-p*_auto_file"=hex(0):
      .
      [HKEY_USERS\S-1-5-21-3180311463-1768964898-3199594699-1003_Classes\.*4%p***]
      @Allowed: (Read) (RestrictedCode)
      @="-p*_auto_file"
      .
      [HKEY_USERS\S-1-5-21-3180311463-1768964898-3199594699-1003_Classes\4%p***_*a*u*t*o*_*f*i*l*e*\shell]
      @="Play"
      .
      [HKEY_USERS\S-1-5-21-3180311463-1768964898-3199594699-1003_Classes\4%p***_*a*u*t*o*_*f*i*l*e*\shell\open\command]
      @=expand:"\"%ProgramFiles%\\Windows Media Player\\wmplayer.exe\" /Open \"%L\""
      .
      [HKEY_USERS\S-1-5-21-3180311463-1768964898-3199594699-1003_Classes\4%p***_*a*u*t*o*_*f*i*l*e*\shell\play]
      @="&Play"
      "MUIVerb"=expand:"@%SystemRoot%\\system32\\unregmp2.exe,-9991"
      .
      [HKEY_USERS\S-1-5-21-3180311463-1768964898-3199594699-1003_Classes\4%p***_*a*u*t*o*_*f*i*l*e*\shell\play\command]
      @=expand:"\"%ProgramFiles%\\Windows Media Player\\wmplayer.exe\" /Play \"%L\""
      DUMPHIVE0.003 (REGF)
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
      @Denied: (A 2) (Everyone)
      @="FlashBroker"
      "LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil32_11_4_402_287_ActiveX.exe,-101"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
      "Enabled"=dword:00000001
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
      @="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil32_11_4_402_287_ActiveX.exe"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
      @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
      @Denied: (A 2) (Everyone)
      @="IFlashBroker5"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
      @="{00020424-0000-0000-C000-000000000046}"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
      @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
      "Version"="1.0"
      .
      [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
      @Denied: (A) (Users)
      @Denied: (A) (Everyone)
      @Allowed: (B 1 2 3 4 5) (S-1-5-20)
      @SACL=
      "BlindDial"=dword:00000000
      .
      [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]
      @Denied: (A) (Users)
      @Denied: (A) (Everyone)
      @Allowed: (B 1 2 3 4 5) (S-1-5-20)
      "BlindDial"=dword:00000000
      .
      [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0002\AllUserSettings]
      @Denied: (A) (Users)
      @Denied: (A) (Everyone)
      @Allowed: (B 1 2 3 4 5) (S-1-5-20)
      "BlindDial"=dword:00000000
      .
      [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0004\AllUserSettings]
      @Denied: (A) (Users)
      @Denied: (A) (Everyone)
      @Allowed: (B 1 2 3 4 5) (S-1-5-20)
      "BlindDial"=dword:00000000
      .
      [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
      @Denied: (Full) (Everyone)
      .
      Completion time: 2012-11-13 14:56:58
      ComboFix-quarantined-files.txt 2012-11-13 20:56
      ComboFix2.txt 2012-11-13 03:23
      ComboFix3.txt 2012-10-30 20:36
      ComboFix4.txt 2012-10-30 05:03
      ComboFix5.txt 2012-11-13 20:34
      .
      Pre-Run: 12,391,280,640 bytes libres
      Post-Run: 12,333,551,616 bytes libres
      .
      - - End Of File - - 45503A59305E8BAAA83397BAC422FBBF

    4. #34
      Moderador.
      Avatar de @Tincho
      Registrado
      may 2008
      Ubicación
      Argentina
      Mensajes
      14.701

      Re: internet explorer me redirecciona a otras paginas

      Buenas.


      Segui el siguiente procedimiento.


      1.- Realiza un copia de tus marcadores:

      Menu Marcadores->organizar marcadores->Importar y respaldar->exportar Html
      2.- Elimina con Revo Unistaller En modo avanzado (Esto es muy importante) Seleccionas Firefox || presionas desinstalar || y seleccionas Modo avanzado y vas eliminado todo los restos.

      3.- Descarga y ejecuta: Glary Utilities.

      4.- Reinstala Firefox ; descargalo desde Aquí: Firefox

      5.- Restaura los marcadores:
      Para restaurarla menu marcadores->organizar marcadores->importar y respaldar->importar Html, marcamos desde archivo seleccionando el bookmarks.html con la copia de nuestros marcadores
      Nos cuentas.

      Salu2!!

      ____________________
      Tyny's
      If on your journey, you should encounter God, God will be cut!

      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.

    5. #35
      Usuario Avatar de angeles94
      Registrado
      oct 2012
      Ubicación
      campeche,campeche
      Mensajes
      24

      Re: internet explorer me redirecciona a otras paginas

      ola saludos

      he seguido los pasos al pie de la letra , pero siguo con el problema inicial, la de que me sigue redireccionando a otras paginas cuando le doy clic a un resultado, pero despues de darle muchos clic me abre la pagina , y me lo hace en mozilla , en internet explorer, google chrome y porfa ojala haya una solucion

    6. #36
      Moderador.
      Avatar de @Tincho
      Registrado
      may 2008
      Ubicación
      Argentina
      Mensajes
      14.701

      Re: internet explorer me redirecciona a otras paginas

      Buenas.


      Saca un nuevo log de OTL y Lo pegas.


      Saludos.
      Tyny's
      If on your journey, you should encounter God, God will be cut!

      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.

    7. #37
      Usuario Avatar de angeles94
      Registrado
      oct 2012
      Ubicación
      campeche,campeche
      Mensajes
      24

      Re: internet explorer me redirecciona a otras paginas

      ok aki esta log de otl

    8. #38
      Usuario Avatar de angeles94
      Registrado
      oct 2012
      Ubicación
      campeche,campeche
      Mensajes
      24

      Re: internet explorer me redirecciona a otras paginas

      OTL logfile created on: 17/11/2012 02:27:10 p.m. - Run 3
      OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Admin\Downloads\Desktop
      Professional Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
      Internet Explorer (Version = 9.0.8112.16421)
      Locale: 0000080a | Country: México | Language: ESM | Date Format: dd/MM/yyyy

      1.37 Gb Total Physical Memory | 0.89 Gb Available Physical Memory | 65.06% Memory free
      3.33 Gb Paging File | 2.48 Gb Available in Paging File | 74.43% Paging File free
      Paging file location(s): c:\pagefile.sys 2000 4000 [binary data]

      %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
      Drive C: | 55.79 Gb Total Space | 11.26 Gb Free Space | 20.19% Space Free | Partition Type: NTFS

      Computer Name: CARLITOS-PC | User Name: Admin | Logged in as Administrator.
      Boot Mode: Normal | Scan Mode: Current user
      Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

      ========== Processes (SafeList) ==========

      PRC - C:\Users\Admin\Downloads\Desktop\OTL.exe (OldTimer Tools)
      PRC - C:\Windows\System32\Macromed\Flash\FlashUtil32_11_4_402_287_ActiveX.exe (Adobe Systems Incorporated)
      PRC - C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe (Malwarebytes Corporation)
      PRC - C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe (Malwarebytes Corporation)
      PRC - C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe (Malwarebytes Corporation)
      PRC - C:\Program Files\ESET\ESET Smart Security\ekrn.exe (ESET)
      PRC - C:\Program Files\ESET\ESET Smart Security\egui.exe (ESET)
      PRC - C:\Windows\explorer.exe (Microsoft Corporation)
      PRC - C:\Windows\System32\taskhost.exe (Microsoft Corporation)
      PRC - C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe (Nero AG)
      PRC - C:\Program Files\Common Files\Ahead\Lib\NMIndexStoreSvr.exe (Nero AG)


      ========== Modules (No Company Name) ==========

      MOD - C:\Program Files\Common Files\microsoft shared\OFFICE14\Cultures\OFFICE.ODF ()
      MOD - C:\Program Files\WinRAR\rarext.dll ()


      ========== Services (SafeList) ==========

      SRV - (RoxLiveShare9) -- C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxLiveShare9.exe File not found
      SRV - (MozillaMaintenance) -- C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe (Mozilla Foundation)
      SRV - (AdobeFlashPlayerUpdateSvc) -- C:\Windows\System32\Macromed\Flash\FlashPlayerUpdateService.exe (Adobe Systems Incorporated)
      SRV - (MBAMService) -- C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe (Malwarebytes Corporation)
      SRV - (MBAMScheduler) -- C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe (Malwarebytes Corporation)
      SRV - (FLEXnet Licensing Service) -- C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe (Macrovision Europe Ltd.)
      SRV - (ekrn) -- C:\Program Files\ESET\ESET Smart Security\ekrn.exe (ESET)
      SRV - (Microsoft SharePoint Workspace Audit Service) -- C:\Program Files\Microsoft Office\Office14\GROOVE.EXE (Microsoft Corporation)
      SRV - (WatAdminSvc) -- C:\Windows\System32\Wat\WatAdminSvc.exe (Microsoft Corporation)
      SRV - (StorSvc) -- C:\Windows\System32\StorSvc.dll (Microsoft Corporation)
      SRV - (SensrSvc) -- C:\Windows\System32\sensrsvc.dll (Microsoft Corporation)
      SRV - (PeerDistSvc) -- C:\Windows\System32\PeerDistSvc.dll (Microsoft Corporation)
      SRV - (WinDefend) -- C:\Program Files\Windows Defender\MpSvc.dll (Microsoft Corporation)


      ========== Driver Services (SafeList) ==========

      DRV - (MBAMProtector) -- C:\Windows\System32\drivers\mbam.sys (Malwarebytes Corporation)
      DRV - (epfw) -- C:\Windows\System32\drivers\epfw.sys (ESET)
      DRV - (eamonm) -- C:\Windows\System32\drivers\eamonm.sys (ESET)
      DRV - (ehdrv) -- C:\Windows\System32\drivers\ehdrv.sys (ESET)
      DRV - (epfwwfp) -- C:\Windows\System32\drivers\epfwwfp.sys (ESET)
      DRV - (EpfwLWF) -- C:\Windows\System32\drivers\EpfwLWF.sys (ESET)
      DRV - (vmbus) -- C:\Windows\System32\drivers\vmbus.sys (Microsoft Corporation)
      DRV - (storflt) -- C:\Windows\System32\drivers\vmstorfl.sys (Microsoft Corporation)
      DRV - (storvsc) -- C:\Windows\System32\drivers\storvsc.sys (Microsoft Corporation)
      DRV - (TsUsbFlt) -- C:\Windows\System32\drivers\TsUsbFlt.sys (Microsoft Corporation)
      DRV - (WinUsb) -- C:\Windows\System32\drivers\winusb.sys (Microsoft Corporation)
      DRV - (VMBusHID) -- C:\Windows\System32\drivers\VMBusHID.sys (Microsoft Corporation)
      DRV - (s3cap) -- C:\Windows\System32\drivers\vms3cap.sys (Microsoft Corporation)
      DRV - (wirelessusbser) -- C:\Windows\System32\drivers\3GDatausbser.sys (QUALCOMM Incorporated)
      DRV - (ZTEusbnmea) -- C:\Windows\System32\drivers\ZTEusbnmea.sys (ZTE Incorporated)
      DRV - (ZTEusbmdm6k) -- C:\Windows\System32\drivers\ZTEusbmdm6k.sys (ZTE Incorporated)
      DRV - (ZTEusbser6k) -- C:\Windows\System32\drivers\ZTEusbser6k.sys (ZTE Incorporated)
      DRV - (athr) -- C:\Windows\System32\drivers\athr.sys (Atheros Communications, Inc.)
      DRV - (vwifimp) -- C:\Windows\System32\drivers\vwifimp.sys (Microsoft Corporation)
      DRV - (RTL8023xp) -- C:\Windows\System32\drivers\Rtnicxp.sys (Realtek Semiconductor Corporation )
      DRV - (atikmdag) -- C:\Windows\System32\drivers\atikmdag.sys (ATI Technologies Inc.)
      DRV - (cmusbser) -- C:\Windows\System32\drivers\cmusbser.sys (Cmotech Co.,Ltd)
      DRV - (CAMCHALA) -- C:\Windows\System32\drivers\camc6hal.sys (Conexant Systems Inc.)
      DRV - (CAMCAUD) -- C:\Windows\System32\drivers\camc6aud.sys (Conexant Systems Inc.)
      DRV - (HSFHWATI) -- C:\Windows\System32\drivers\HSFHWATI.sys (Conexant Systems, Inc.)
      DRV - (HSF_DPV) -- C:\Windows\System32\drivers\HSF_DPV.sys (Conexant Systems, Inc.)
      DRV - (winachsf) -- C:\Windows\System32\drivers\HSF_CNXT.sys (Conexant Systems, Inc.)
      DRV - (P0630VID) -- C:\Windows\System32\drivers\P0630Vid.sys (Creative Technology Ltd.)


      ========== Standard Registry (SafeList) ==========


      ========== Internet Explorer ==========

      IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search bar = Internet Explorer 6 Search Companion is no longer supported.
      IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Secondary Start Pages = Reg Error: Value error.
      IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = MSN Hotmail.fr, Messenger, Skype, Actualité, Sport, People, Femmes - MSN France
      IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
      IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC

      IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,bProtector Start Page = Google
      IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,BrowserMngr Start Page = Google
      IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,SearchDefaultBranded = 1
      IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = Google
      IE - HKCU\..\SearchScopes,bProtectorDefaultScope = {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}
      IE - HKCU\..\SearchScopes,BrowserMngrDefaultScope = {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}
      IE - HKCU\..\SearchScopes,DefaultScope = {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}
      IE - HKCU\..\SearchScopes\${searchCLSID}: "URL" = http://search.live.com/results.aspx?q={searchTerms}&src={referrer:source?}
      IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC
      IE - HKCU\..\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}: "URL" = http://search.babylon.com/?q={searchTerms}&affID=110823&tt=3712_6&babsrc=SP_ss&mntrId=f0b5d0d50000000000000611f5aeff88
      IE - HKCU\..\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}: "URL" = http://search.v9.com/web/?q={searchTerms}
      IE - HKCU\..\SearchScopes\{A6741140-E9BB-4ACF-BEFB-95856819BC86}: "URL" = http://www.ant.com/web/{searchTerms}/
      IE - HKCU\..\SearchScopes\{CA9998DA-3B8A-4FAC-90EA-5AB6D21AA5C0}: "URL" = http://www.bing.com/search?q={searchTerms}&form=BIE9DF&pc=BIE9&src=IE-SearchBox
      IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

      ========== FireFox ==========

      FF - user.js - File not found

      FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF32_11_4_402_287.dll ()
      FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\Windows\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
      FF - HKLM\Software\MozillaPlugins\@divx.com/DivX VOD Helper,version=1.0.0: C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
      FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=1.6.0_32: C:\Windows\system32\npdeployJava1.dll (Sun Microsystems, Inc.)
      FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\plugin2\npjp2.dll (Sun Microsystems, Inc.)
      FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
      FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\5.1.10411.0\npctrl.dll ( Microsoft Corporation)
      FF - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation)
      FF - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\PROGRA~1\MICROS~2\Office14\NPSPWRAP.DLL (Microsoft Corporation)
      FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922: C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll File not found
      FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3508.1109: C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll File not found
      FF - HKLM\Software\MozillaPlugins\@real.com/nppl3260;version=12.0.1.633: c:\program files\real\realplayer\Netscape6\nppl3260.dll (RealNetworks, Inc.)
      FF - HKLM\Software\MozillaPlugins\@real.com/nprjplug;version=12.0.1.633: c:\program files\real\realplayer\Netscape6\nprjplug.dll (RealNetworks, Inc.)
      FF - HKLM\Software\MozillaPlugins\@real.com/nprphtml5videoshim;version=12.0.1.633: C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll (RealNetworks, Inc.)
      FF - HKLM\Software\MozillaPlugins\@real.com/nprpjplug;version=12.0.1.633: c:\program files\real\realplayer\Netscape6\nprpjplug.dll (RealNetworks, Inc.)
      FF - HKLM\Software\MozillaPlugins\@real.com/nsJSRealPlayerPlugin;version=: File not found
      FF - HKLM\Software\MozillaPlugins\@rim.com/npappworld: C:\Program Files\Research In Motion Limited\Complemento para explorador de BlackBerry App World\npappworld.dll ()
      FF - HKLM\Software\MozillaPlugins\@RIM.com/WebSLLauncher,version=1.0: C:\Program Files\Common Files\Research In Motion\BBWebSLLauncher\NPWebSLLauncher.dll ()
      FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.123\npGoogleUpdate3.dll (Google Inc.)
      FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.123\npGoogleUpdate3.dll (Google Inc.)
      FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
      FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Users\Admin\AppData\Local\Google\Update\1.3.21.123\npGoogleUpdate3.dll (Google Inc.)
      FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Users\Admin\AppData\Local\Google\Update\1.3.21.123\npGoogleUpdate3.dll (Google Inc.)

      FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 16.0.2\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2012/11/16 17:49:27 | 000,000,000 | ---D | M]
      FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 16.0.2\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins
      FF - HKEY_LOCAL_MACHINE\software\mozilla\Thunderbird\Extensions\\[email protected]: C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird [2012/11/10 09:44:59 | 000,000,000 | ---D | M]

      [2012/04/17 00:38:56 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Admin\AppData\Roaming\Mozilla\Extensions
      [2012/11/16 17:49:26 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
      [2012/10/24 11:50:04 | 000,261,600 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll
      [2012/10/24 17:42:47 | 000,002,465 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\bing.xml
      [2012/10/24 17:42:47 | 000,002,456 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\mercadolibre-mx.xml
      [2012/10/24 17:42:47 | 000,001,178 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia-es.xml
      [2012/10/24 17:42:47 | 000,001,102 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\yahoo-mx.xml

      ========== Chrome ==========

      CHR - default_search_provider: Google (Enabled)
      CHR - default_search_provider: search_url = {google:baseURL}search?{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}{google:searchFieldtrialParameter}{google:instantFieldTrialGroupParameter}sourceid=chrome&ie={inputEncoding}&q={searchTerms}
      CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}{google:instantFieldTrialGroupParameter}client=chrome&hl={language}&q={searchTerms}
      CHR - homepage: Google
      CHR - Extension: No name found = C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\dednnpigldgdbpgcdpfppmlcnnbjciel\2.5_0\
      CHR - Extension: No name found = C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\jfmjfhklogoienhpfnppmbcbjfjnkonk\1.3_0\
      CHR - Extension: No name found = C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pgafcinpmmpklohkojmllohdhomoefph\1.0_0\

      O1 HOSTS File: ([2012/11/12 21:19:02 | 000,000,027 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
      O1 - Hosts: 127.0.0.1 localhost
      O2 - BHO: (RealPlayer Download and Record Plugin for Internet Explorer) - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll (RealPlayer)
      O2 - BHO: (Groove GFS Browser Helper) - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
      O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll (Sun Microsystems, Inc.)
      O2 - BHO: (Office Document Cache Handler) - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
      O4 - HKLM..\Run: [BCSSync] C:\Program Files\Microsoft Office\Office14\BCSSync.exe (Microsoft Corporation)
      O4 - HKLM..\Run: [egui] C:\Program Files\ESET\ESET Smart Security\egui.exe (ESET)
      O4 - HKLM..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe (Nero AG)
      O4 - HKLM..\Run: [TkBellExe] c:\program files\real\realplayer\Update\realsched.exe (RealNetworks, Inc.)
      O4 - HKCU..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe (Nero AG)
      O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Main present
      O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
      O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 3
      O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 0
      O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
      O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
      O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
      O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
      O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 3
      O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 0
      O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
      O8 - Extra context menu item: &Enviar a OneNote - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation)
      O8 - Extra context menu item: Download with &Media Finder - C:\Program Files\Media Finder\hook.html File not found
      O8 - Extra context menu item: E&xportar a Microsoft Excel - C:\Program Files\Microsoft Office\Office14\EXCEL.EXE (Microsoft Corporation)
      O9 - Extra Button: Enviar a OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation)
      O9 - Extra 'Tools' menuitem : &Enviar a OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation)
      O9 - Extra Button: Notas &vinculadas de OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll (Microsoft Corporation)
      O9 - Extra 'Tools' menuitem : Notas &vinculadas de OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll (Microsoft Corporation)
      O16 - DPF: {02BCC737-B171-4746-94C9-0D8A0B2C0089} http://office.microsoft.com/_layouts.../ieawsdc32.cab (Microsoft Office Template and Media Control)
      O16 - DPF: {05CA9FB0-3E3E-4B36-BF41-0E3A5CAA8CD8} http://download.microsoft.com/downlo...OGAControl.cab (Office Genuine Advantage Validation Tool)
      O16 - DPF: {166B1BCA-3F9C-11CF-8075-444553540000} http://download.macromedia.com/pub/s...irector/sw.cab (Shockwave ActiveX Control)
      O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} http://download.eset.com/special/eos/OnlineScanner.cab (OnlineScanner Control)
      O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jin...ndows-i586.cab (Java Plug-in 1.6.0_32)
      O16 - DPF: {CAFEEFAC-0016-0000-0032-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jin...ndows-i586.cab (Java Plug-in 1.6.0_32)
      O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jin...ndows-i586.cab (Java Plug-in 1.6.0_32)
      O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab (Reg Error: Key error.)
      O16 - DPF: {FE0BD779-44EE-4A4B-AA2E-743C63F2E5E6} http://pdl.stream.aol.com/downloads/...ampx_en_dl.cab (IWinAmpActiveX Class)
      O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
      O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{1FEE8884-0444-4B48-BBFF-79E1193A50F8}: DhcpNameServer = 192.168.1.1
      O18 - Protocol\Handler\base64 - No CLSID value found
      O18 - Protocol\Handler\chrome - No CLSID value found
      O18 - Protocol\Handler\prox - No CLSID value found
      O20 - AppInit_DLLs: (c:\PROGRA~2\BROWSE~1\23787~1.43\{16CDF~1\browsemngr.dll) - c:\ProgramData\Browser Manager\2.3.787.43\{16cdff19-861d-48e3-a751-d99a27784753}\browsemngr.dll ()
      O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
      O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\System32\userinit.exe (Microsoft Corporation)
      O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\System32\SystemPropertiesPerformance.exe (Microsoft Corporation)
      O28 - HKLM ShellExecuteHooks: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
      O32 - HKLM CDRom: AutoRun - 1
      O32 - AutoRun File - [2012/09/05 10:09:04 | 000,000,000 | ---D | M] - C:\Autodesk -- [ NTFS ]
      O32 - AutoRun File - [2009/06/10 15:42:20 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
      O32 - AutoRun File - [2012/11/10 01:32:35 | 000,000,000 | R--D | M] - C:\Autorun.inf -- [ NTFS ]
      O34 - HKLM BootExecute: (autocheck autochk *)
      O35 - HKLM\..comfile [open] -- "%1" %*
      O35 - HKLM\..exefile [open] -- "%1" %*
      O37 - HKLM\...com [@ = ComFile] -- "%1" %*
      O37 - HKLM\...exe [@ = exefile] -- "%1" %*
      O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
      O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
      O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)

      ========== Files/Folders - Created Within 30 Days ==========

      [2012/11/17 14:22:29 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Users\Admin\Downloads\Desktop\OTL.exe
      [2012/11/16 17:49:30 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Maintenance Service
      [2012/11/16 17:49:24 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Firefox
      [2012/11/16 00:21:03 | 000,000,000 | ---D | C] -- C:\Users\Admin\AppData\Roaming\GlarySoft
      [2012/11/16 00:13:34 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Glary Utilities
      [2012/11/16 00:13:22 | 000,000,000 | ---D | C] -- C:\Program Files\Glary Utilities
      [2012/11/15 23:59:38 | 000,000,000 | ---D | C] -- C:\Program Files\VS Revo Group
      [2012/11/15 23:59:38 | 000,000,000 | ---D | C] -- C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller
      [2012/11/15 23:58:45 | 002,617,648 | ---- | C] (VS Revo Group Ltd.) -- C:\Users\Admin\Downloads\Desktop\revosetup.exe
      [2012/11/15 12:19:06 | 000,000,000 | ---D | C] -- C:\Windows\temp
      [2012/11/15 12:16:52 | 000,000,000 | -HSD | C] -- C:\$RECYCLE.BIN
      [2012/11/15 11:54:17 | 005,001,745 | R--- | C] (Swearware) -- C:\Users\Admin\Downloads\Desktop\ComboFix.exe
      [2012/11/15 01:48:51 | 000,000,000 | ---D | C] -- C:\Users\Admin\AppData\Roaming\TigerPlayer
      [2012/11/12 19:43:20 | 002,213,976 | ---- | C] (Kaspersky Lab ZAO) -- C:\Users\Admin\Downloads\Desktop\TDSSKiller.exe
      [2012/11/10 09:48:46 | 000,000,000 | ---D | C] -- C:\Users\Admin\AppData\Roaming\ESET
      [2012/11/10 09:48:46 | 000,000,000 | ---D | C] -- C:\Users\Admin\AppData\Local\ESET
      [2012/11/10 09:44:38 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ESET
      [2012/11/10 09:44:36 | 000,000,000 | ---D | C] -- C:\ProgramData\ESET
      [2012/11/10 06:53:48 | 000,000,000 | ---D | C] -- C:\Program Files\ESET
      [2012/11/10 02:37:27 | 000,000,000 | ---D | C] -- C:\Windows\System32\DBBK
      [2012/11/10 02:30:46 | 000,000,000 | ---D | C] -- C:\Users\Public\Desktop\CC Support
      [2012/11/10 02:12:47 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware
      [2012/11/10 02:12:45 | 000,022,856 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbam.sys
      [2012/11/10 02:12:45 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware
      [2012/11/10 01:32:35 | 000,000,000 | R--D | C] -- C:\Autorun.inf
      [2012/11/10 01:15:09 | 000,000,000 | ---D | C] -- C:\UsbFix
      [2012/11/10 01:09:31 | 010,669,952 | ---- | C] (Malwarebytes Corporation ) -- C:\Users\Admin\Downloads\Desktop\malawarebites.exe
      [2012/11/10 01:05:12 | 001,271,879 | ---- | C] (El Desaparecido) -- C:\Users\Admin\Downloads\Desktop\UsbFix.exe
      [2012/10/29 20:19:28 | 000,000,000 | ---D | C] -- C:\SMCLpav
      [2012/10/26 21:28:07 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\PC Tools
      [2012/10/26 21:28:04 | 000,000,000 | ---D | C] -- C:\ProgramData\TEMP
      [2012/10/26 21:27:25 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\aTube Catcher
      [2012/10/23 14:28:12 | 000,000,000 | ---D | C] -- C:\Users\Admin\AppData\Local\temp
      [1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]

      ========== Files - Modified Within 30 Days ==========

      [2012/11/17 14:22:30 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Admin\Downloads\Desktop\OTL.exe
      [2012/11/17 1401 | 000,001,046 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-3180311463-1768964898-3199594699-1003UA.job
      [2012/11/17 13:52:01 | 000,001,028 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
      [2012/11/17 13:39:00 | 000,000,838 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
      [2012/11/17 11:08:32 | 000,020,720 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
      [2012/11/17 11:08:32 | 000,020,720 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
      [2012/11/17 11:01:25 | 000,001,024 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
      [2012/11/17 11:01:15 | 000,000,312 | ---- | M] () -- C:\Windows\tasks\GlaryInitialize.job
      [2012/11/17 11:01:10 | 000,000,312 | ---- | M] () -- C:\Windows\tasks\rjrkpc.job
      [2012/11/17 11:00:57 | 000,065,536 | ---- | M] () -- C:\Windows\System32\Ikeext.etl
      [2012/11/17 11:00:34 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
      [2012/11/17 11:00:27 | 1105,911,808 | -HS- | M] () -- C:\hiberfil.sys
      [2012/11/16 17:49:34 | 000,001,069 | ---- | M] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk
      [2012/11/16 00:13:34 | 000,000,994 | ---- | M] () -- C:\Users\Admin\Downloads\Desktop\Glary Utilities.lnk
      [2012/11/15 23:59:39 | 000,001,192 | ---- | M] () -- C:\Users\Admin\Downloads\Desktop\Revo Uninstaller.lnk
      [2012/11/15 23:58:56 | 002,617,648 | ---- | M] (VS Revo Group Ltd.) -- C:\Users\Admin\Downloads\Desktop\revosetup.exe
      [2012/11/15 23:50:24 | 000,014,027 | ---- | M] () -- C:\Users\Admin\Documents\bookmarks.html
      [2012/11/15 23:13:22 | 000,487,736 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT
      [2012/11/15 11:55:19 | 005,001,745 | R--- | M] (Swearware) -- C:\Users\Admin\Downloads\Desktop\ComboFix.exe
      [2012/11/15 07:21:27 | 000,616,008 | ---- | M] () -- C:\Windows\System32\perfh009.dat
      [2012/11/15 07:21:27 | 000,106,388 | ---- | M] () -- C:\Windows\System32\perfc009.dat
      [2012/11/15 07:21:27 | 000,019,002 | ---- | M] () -- C:\Windows\System32\perfh00A.dat
      [2012/11/15 07:21:27 | 000,007,262 | ---- | M] () -- C:\Windows\System32\perfc00A.dat
      [2012/11/13 21:06:52 | 000,087,331 | ---- | M] () -- C:\Users\Admin\Documents\angeleleleleleleelelelelelelel.dwg
      [2012/11/13 21:00:52 | 000,087,234 | ---- | M] () -- C:\Users\Admin\Documents\angeleleleleleleelelelelelelel.bak
      [2012/11/13 18:48:36 | 000,061,533 | ---- | M] () -- C:\Users\Admin\Documents\ppppppp.dwg
      [2012/11/13 18:37:47 | 000,060,503 | ---- | M] () -- C:\Users\Admin\Documents\ppppppp.bak
      [2012/11/13 17:36:16 | 000,000,215 | -H-- | M] () -- C:\Users\Admin\Documents\angel de jesus uc haaz.dwl2
      [2012/11/13 17:36:16 | 000,000,065 | -H-- | M] () -- C:\Users\Admin\Documents\angel de jesus uc haaz.dwl
      [2012/11/13 16:33:22 | 000,063,839 | ---- | M] () -- C:\Users\Admin\Documents\angel de jesus uc haaz.dwg
      [2012/11/13 16:32:44 | 000,075,778 | ---- | M] () -- C:\Users\Admin\Documents\angel de jesus uc haaz.bak
      [2012/11/13 13:17:26 | 000,072,482 | ---- | M] () -- C:\Users\Admin\Documents\EXAMEN.dwg
      [2012/11/13 13:17:24 | 000,067,676 | ---- | M] () -- C:\Users\Admin\Documents\EXAMEN.bak
      [2012/11/12 21:19:02 | 000,000,027 | ---- | M] () -- C:\Windows\System32\drivers\etc\hosts
      [2012/11/12 19:37:20 | 002,195,061 | ---- | M] () -- C:\Users\Admin\Downloads\Desktop\tdsskiller.zip
      [2012/11/10 11:52:52 | 000,113,446 | ---- | M] () -- C:\Users\Admin\Downloads\Desktop\amanecer.jpg
      [2012/11/10 08:53:03 | 000,001,441 | ---- | M] () -- C:\scu.dat
      [2012/11/10 02:57:09 | 000,001,031 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
      [2012/11/10 02:35:15 | 001,415,784 | ---- | M] () -- C:\Users\Admin\Downloads\Desktop\yorkyt.exe
      [2012/11/10 02:28:24 | 004,009,167 | ---- | M] () -- C:\Users\Admin\Downloads\Desktop\ServicesRepair.exe
      [2012/11/10 01:32:35 | 000,003,983 | ---- | M] () -- C:\UsbFix_Upload_Me_CARLITOS-PC.zip
      [2012/11/10 01:09:41 | 010,669,952 | ---- | M] (Malwarebytes Corporation ) -- C:\Users\Admin\Downloads\Desktop\malawarebites.exe
      [2012/11/10 01:08:40 | 002,195,061 | ---- | M] () -- C:\Users\Admin\Downloads\Desktop\aaaaaaaa.zip
      [2012/11/10 01:05:12 | 001,271,879 | ---- | M] (El Desaparecido) -- C:\Users\Admin\Downloads\Desktop\UsbFix.exe
      [2012/11/09 03:07:20 | 000,127,093 | ---- | M] () -- C:\Users\Admin\Documents\tarea d.png
      [2012/11/06 19:30:17 | 000,332,703 | ---- | M] () -- C:\Users\Admin\Downloads\Desktop\HinojosaRivera2001b.pdf
      [2012/11/05 12:28:02 | 000,022,786 | ---- | M] () -- C:\Users\Admin\Documents\INSTITUTO TECNOLÓGICO DE CAMPECHE.dotx
      [2012/11/04 19:07:24 | 000,016,451 | ---- | M] () -- C:\Users\Admin\Documents\maria.jpg
      [2012/11/04 19:04:25 | 000,031,173 | ---- | M] () -- C:\Users\Admin\Documents\cofra.jpg
      [2012/11/03 22:17:07 | 000,261,693 | ---- | M] () -- C:\Users\Admin\Documents\la_inglesita_pijama.pdf
      [2012/10/31 21:49:22 | 002,213,976 | ---- | M] (Kaspersky Lab ZAO) -- C:\Users\Admin\Downloads\Desktop\TDSSKiller.exe
      [2012/10/30 14:02:56 | 000,077,761 | ---- | M] () -- C:\Users\Admin\Documents\imprimir para papa.dwg
      [2012/10/30 12:59:24 | 000,091,437 | ---- | M] () -- C:\Users\Admin\Documents\Dibujo1.dwgaaaaa.dwg
      [2012/10/30 11:55:23 | 000,082,339 | ---- | M] () -- C:\Users\Admin\Documents\imprimir para papa.bak
      [2012/10/29 20:57:21 | 000,035,646 | ---- | M] () -- C:\Users\Admin\Downloads\Desktop\548372_294426407339772_114743707_n[1].jpg
      [2012/10/26 21:27:55 | 000,002,074 | ---- | M] () -- C:\Users\Public\Desktop\Video Search.lnk
      [2012/10/26 21:27:48 | 000,001,148 | ---- | M] () -- C:\Users\Public\Desktop\aTube Catcher.lnk
      [2012/10/26 18:45:58 | 001,365,488 | ---- | M] () -- C:\Users\Admin\Downloads\Desktop\SAM_0935.JPG
      [2012/10/26 0901 | 000,000,994 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-3180311463-1768964898-3199594699-1003Core.job
      [2012/10/24 20:09:36 | 001,277,486 | ---- | M] () -- C:\Users\Admin\Downloads\Desktop\SAM_0919.JPG
      [2012/10/23 13:48:44 | 000,000,132 | ---- | M] () -- C:\Users\Admin\Downloads\Desktop\recuva.ini
      [2012/10/21 18:04:09 | 000,067,837 | ---- | M] () -- C:\Users\Admin\Documents\ANCLA.dwg
      [2012/10/20 18:27:43 | 000,079,971 | ---- | M] () -- C:\Users\Admin\Documents\ANCLA.bak
      [2012/10/18 1509 | 000,138,464 | ---- | M] () -- C:\Users\Admin\Documents\imprimir 90 x 60.dwg
      [2012/10/18 15:05:27 | 000,138,464 | ---- | M] () -- C:\Users\Admin\Documents\imprimir papa90 x 60.dwg
      [1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]

      ========== Files Created - No Company Name ==========

      [2012/11/16 17:49:34 | 000,001,081 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
      [2012/11/16 17:49:34 | 000,001,069 | ---- | C] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk
      [2012/11/16 00:13:39 | 000,000,312 | ---- | C] () -- C:\Windows\tasks\GlaryInitialize.job
      [2012/11/16 00:13:34 | 000,000,994 | ---- | C] () -- C:\Users\Admin\Downloads\Desktop\Glary Utilities.lnk
      [2012/11/15 23:59:39 | 000,001,192 | ---- | C] () -- C:\Users\Admin\Downloads\Desktop\Revo Uninstaller.lnk
      [2012/11/15 23:50:24 | 000,014,027 | ---- | C] () -- C:\Users\Admin\Documents\bookmarks.html
      [2012/11/15 17:55:09 | 000,487,736 | ---- | C] () -- C:\Windows\System32\FNTCACHE.DAT
      [2012/11/15 07:09:46 | 000,000,003 | ---- | C] () -- C:\Windows\System32\drivers\MsftWdf_Kernel_01011_Inbox_Critical.Wdf
      [2012/11/15 07:08:39 | 000,000,003 | ---- | C] () -- C:\Windows\System32\drivers\MsftWdf_User_01_11_00_Inbox_Critical.Wdf
      [2012/11/13 19:53:06 | 000,087,234 | ---- | C] () -- C:\Users\Admin\Documents\angeleleleleleleelelelelelelel.bak
      [2012/11/13 19:24:10 | 000,087,331 | ---- | C] () -- C:\Users\Admin\Documents\angeleleleleleleelelelelelelel.dwg
      [2012/11/13 18:16:18 | 000,061,533 | ---- | C] () -- C:\Users\Admin\Documents\ppppppp.dwg
      [2012/11/13 18:16:18 | 000,060,503 | ---- | C] () -- C:\Users\Admin\Documents\ppppppp.bak
      [2012/11/13 16:34:57 | 000,000,215 | -H-- | C] () -- C:\Users\Admin\Documents\angel de jesus uc haaz.dwl2
      [2012/11/13 16:34:57 | 000,000,065 | -H-- | C] () -- C:\Users\Admin\Documents\angel de jesus uc haaz.dwl
      [2012/11/13 16:00:10 | 000,075,778 | ---- | C] () -- C:\Users\Admin\Documents\angel de jesus uc haaz.bak
      [2012/11/13 15:30:53 | 000,063,839 | ---- | C] () -- C:\Users\Admin\Documents\angel de jesus uc haaz.dwg
      [2012/11/13 11:50:52 | 000,072,482 | ---- | C] () -- C:\Users\Admin\Documents\EXAMEN.dwg
      [2012/11/13 11:50:52 | 000,067,676 | ---- | C] () -- C:\Users\Admin\Documents\EXAMEN.bak
      [2012/11/12 19:36:58 | 002,195,061 | ---- | C] () -- C:\Users\Admin\Downloads\Desktop\tdsskiller.zip
      [2012/11/10 11:53:10 | 000,113,446 | ---- | C] () -- C:\Users\Admin\Downloads\Desktop\amanecer.jpg
      [2012/11/10 08:16:25 | 000,001,441 | ---- | C] () -- C:\scu.dat
      [2012/11/10 02:35:15 | 001,415,784 | ---- | C] () -- C:\Users\Admin\Downloads\Desktop\yorkyt.exe
      [2012/11/10 02:28:24 | 004,009,167 | ---- | C] () -- C:\Users\Admin\Downloads\Desktop\ServicesRepair.exe
      [2012/11/10 02:12:47 | 000,001,031 | ---- | C] () -- C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
      [2012/11/10 01:32:35 | 000,003,983 | ---- | C] () -- C:\UsbFix_Upload_Me_CARLITOS-PC.zip
      [2012/11/10 01:08:40 | 002,195,061 | ---- | C] () -- C:\Users\Admin\Downloads\Desktop\aaaaaaaa.zip
      [2012/11/09 01:19:28 | 000,127,093 | ---- | C] () -- C:\Users\Admin\Documents\tarea d.png
      [2012/11/06 19:30:16 | 000,332,703 | ---- | C] () -- C:\Users\Admin\Downloads\Desktop\HinojosaRivera2001b.pdf
      [2012/11/05 12:31:49 | 000,022,786 | ---- | C] () -- C:\Users\Admin\Documents\INSTITUTO TECNOLÓGICO DE CAMPECHE.dotx
      [2012/11/04 19:08:09 | 000,016,451 | ---- | C] () -- C:\Users\Admin\Documents\maria.jpg
      [2012/11/04 19:05:25 | 000,031,173 | ---- | C] () -- C:\Users\Admin\Documents\cofra.jpg
      [2012/11/03 22:17:07 | 000,261,693 | ---- | C] () -- C:\Users\Admin\Documents\la_inglesita_pijama.pdf
      [2012/10/30 12:11:59 | 000,091,437 | ---- | C] () -- C:\Users\Admin\Documents\Dibujo1.dwgaaaaa.dwg
      [2012/10/29 20:59:03 | 000,035,646 | ---- | C] () -- C:\Users\Admin\Downloads\Desktop\548372_294426407339772_114743707_n[1].jpg
      [2012/10/29 20:12:06 | 000,082,339 | ---- | C] () -- C:\Users\Admin\Documents\imprimir para papa.bak
      [2012/10/29 18:41:45 | 000,077,761 | ---- | C] () -- C:\Users\Admin\Documents\imprimir para papa.dwg
      [2012/10/26 21:27:55 | 000,002,074 | ---- | C] () -- C:\Users\Public\Desktop\Video Search.lnk
      [2012/10/26 21:27:48 | 000,001,148 | ---- | C] () -- C:\Users\Public\Desktop\aTube Catcher.lnk
      [2012/10/26 18:44:36 | 001,365,488 | ---- | C] () -- C:\Users\Admin\Downloads\Desktop\SAM_0935.JPG
      [2012/10/24 20:06:17 | 001,277,486 | ---- | C] () -- C:\Users\Admin\Downloads\Desktop\SAM_0919.JPG
      [2012/10/20 13:19:44 | 000,079,971 | ---- | C] () -- C:\Users\Admin\Documents\ANCLA.bak
      [2012/10/20 13:19:44 | 000,067,837 | ---- | C] () -- C:\Users\Admin\Documents\ANCLA.dwg
      [2012/10/13 11:14:06 | 000,069,660 | ---- | C] () -- C:\Windows\Fart.exe
      [2012/10/13 11:14:06 | 000,022,528 | ---- | C] () -- C:\Windows\AT-Uninstall.exe
      [2012/10/13 11:14:06 | 000,011,776 | ---- | C] () -- C:\Windows\Colous.exe
      [2012/10/10 18:12:07 | 000,256,000 | ---- | C] () -- C:\Windows\PEV.exe
      [2012/10/10 18:12:07 | 000,208,896 | ---- | C] () -- C:\Windows\MBR.exe
      [2012/10/10 18:12:07 | 000,098,816 | ---- | C] () -- C:\Windows\sed.exe
      [2012/10/10 18:12:07 | 000,080,412 | ---- | C] () -- C:\Windows\grep.exe
      [2012/10/10 18:12:07 | 000,068,096 | ---- | C] () -- C:\Windows\zip.exe
      [2012/10/09 20:40:35 | 000,094,208 | RHS- | C] () -- C:\Windows\System32\da-DK7.dll
      [2012/07/21 21:55:42 | 000,178,625 | ---- | C] () -- C:\Windows\hphins15.dat
      [2012/07/21 21:55:42 | 000,002,011 | ---- | C] () -- C:\Windows\hphmdl15.dat
      [2011/03/20 21:42:31 | 000,066,048 | ---- | C] () -- C:\Windows\System32\PrintBrmUi.exe
      [2010/08/08 20:16:40 | 000,000,056 | -H-- | C] () -- C:\ProgramData\ezsidmv.dat

      ========== ZeroAccess Check ==========

      [2009/07/13 22:42:31 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\desktop.in0

      [HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

      [HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

      [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
      "" = %SystemRoot%\system32\shell32.dll -- [2012/06/08 22:41:00 | 012,873,728 | ---- | M] (Microsoft Corporation)
      "ThreadingModel" = Apartment

      [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
      "" = %systemroot%\system32\wbem\fastprox.dll -- [2010/11/20 06:19:02 | 000,606,208 | ---- | M] (Microsoft Corporation)
      "ThreadingModel" = Free

      [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
      "" = %systemroot%\system32\wbem\wbemess.dll -- [2009/07/13 19:16:17 | 000,342,528 | ---- | M] (Microsoft Corporation)
      "ThreadingModel" = Both

      ========== LOP Check ==========

      [2012/09/10 11:22:07 | 000,000,000 | ---D | M] -- C:\Users\Admin\AppData\Roaming\Autodesk
      [2012/05/03 22:28:55 | 000,000,000 | ---D | M] -- C:\Users\Admin\AppData\Roaming\avidemux
      [2012/06/02 15:48:27 | 000,000,000 | ---D | M] -- C:\Users\Admin\AppData\Roaming\com.adobe.downloadassistant.AdobeDownloadAssistant
      [2012/11/10 09:48:46 | 000,000,000 | ---D | M] -- C:\Users\Admin\AppData\Roaming\ESET
      [2012/03/15 12:35:00 | 000,000,000 | ---D | M] -- C:\Users\Admin\AppData\Roaming\FLVPlayer4Free
      [2012/11/16 00:21:03 | 000,000,000 | ---D | M] -- C:\Users\Admin\AppData\Roaming\GlarySoft
      [2012/04/17 00:46:16 | 000,000,000 | ---D | M] -- C:\Users\Admin\AppData\Roaming\Media Finder
      [2012/03/21 23:38:01 | 000,000,000 | ---D | M] -- C:\Users\Admin\AppData\Roaming\Publish Providers
      [2012/03/21 23:37:37 | 000,000,000 | ---D | M] -- C:\Users\Admin\AppData\Roaming\Sony
      [2012/11/15 01:48:51 | 000,000,000 | ---D | M] -- C:\Users\Admin\AppData\Roaming\TigerPlayer
      [2012/02/12 0230 | 000,000,000 | ---D | M] -- C:\Users\Admin\AppData\Roaming\Windows Live Writer
      [2012/10/14 1838 | 000,000,000 | ---D | M] -- C:\Users\Admin\AppData\Roaming\YourFileDownloader

      ========== Purity Check ==========



      ========== Alternate Data Streams ==========

      @Alternate Data Stream - 64 bytes -> C:\Users\Admin\Documents\tarea de cande.avi:TOC.WMV
      @Alternate Data Stream - 112 bytes -> C:\ProgramData\TEMP:D1B5B4F1

      < End of report >

    9. #39
      Usuario Avatar de angeles94
      Registrado
      oct 2012
      Ubicación
      campeche,campeche
      Mensajes
      24

      Re: internet explorer me redirecciona a otras paginas

      ola espero que leas este mensaje y espero que me puedas ayudar tengo un problema grve digo yo me sale un aventana y se va pero lo que dice el mensaje es sobre NTUSER.DAT , he buscado un poco pero no se que hacer

    10. #40
      Usuario Avatar de joangilberto1
      Registrado
      abr 2012
      Ubicación
      Costa Rica
      Mensajes
      69

      Re: internet explorer me redirecciona a otras paginas

      Ese archivo puede estar dañado.

    Página 4 de 4 PrimeroPrimero 1234