• Registrarse
  • Iniciar sesión


  • Página 1 de 2 12 ÚltimoÚltimo
    Resultados 1 al 10 de 19

    facebook y google.com me pide descargar flash y java constantemente

    Buenas para todos, leí un post sobre el tema (http://www.forospyware.com/t443430-2.html) y tengo el mismo problema hace unos varios días. Este problema lo tengo en las dos notebook y en una fija Cuando quiero ingresar a ...

    1. #1
      Usuario Avatar de ariel_el_chapa
      Registrado
      abr 2007
      Ubicación
      argentina
      Mensajes
      9

      [B]facebook y google.com me pide descargar flash y java constantemente[/B]

      Buenas para todos, leí un post sobre el tema (http://www.forospyware.com/t443430-2.html)
      y tengo el mismo problema hace unos varios días. Este problema lo tengo en las dos notebook y en una fija
      Cuando quiero ingresar a google.com tengo el problema, a com.ar sin problemas, y a pagina de facebook me pide actualizar java o flash y ademas esta en portugués
      Este error lo hace con chrome, explorer o firefox


      Hice el primer informe de info.bat como señaló RevesdeLiberte

      @echo off
      >Log.txt (
      ipconfig /all
      nslookup google.com
      nslookup yahoo.com
      ping -n 2 google.com
      ping -n 2 yahoo.com
      route print
      )
      start Log.txt
      del %


      Aca va el reporte






      Windows IP Configuration



      Host Name . . . . . . . . . . . . : ariel

      Primary Dns Suffix . . . . . . . :

      Node Type . . . . . . . . . . . . : Unknown

      IP Routing Enabled. . . . . . . . : No

      WINS Proxy Enabled. . . . . . . . : No



      Ethernet adapter Conexiones de red inalámbricas:



      Connection-specific DNS Suffix . :

      Description . . . . . . . . . . . : Realtek RTL8188CE Wireless LAN 802.11n PCI-E NIC

      Physical Address. . . . . . . . . : E0-91-53-62-36-FA

      DHCP Enabled. . . . . . . . . . . : Yes

      Autoconfiguration Enabled . . . . : Yes

      IP Address. . . . . . . . . . . . : 192.168.1.3

      Subnet Mask . . . . . . . . . . . : 255.255.255.0

      Default Gateway . . . . . . . . . : 192.168.1.1

      DHCP Server . . . . . . . . . . . : 192.168.1.1

      DNS Servers . . . . . . . . . . . : 200.172.230.137

      8.8.8.8

      Lease Obtained. . . . . . . . . . : Viernes, 02 de Noviembre de 2012 09:20:26 a.m.

      Lease Expires . . . . . . . . . . : Lunes, 05 de Noviembre de 2012 09:20:26 a.m.

      Server: UnKnown
      Address: 200.172.230.137

      Name: google.com

      DNS request timed out.
      timeout was 2 seconds.
      Server: UnKnown
      Address: 200.172.230.137

      Name: yahoo.com
      Addresses: 98.138.253.109, 98.139.183.24, 72.30.38.140



      Haciendo ping a google.com [173.194.37.14] con 32 bytes de datos:



      Respuesta desde 173.194.37.14: bytes=32 tiempo=150ms TTL=53

      Respuesta desde 173.194.37.14: bytes=32 tiempo=146ms TTL=53



      Estad¡sticas de ping para 173.194.37.14:

      Paquetes: enviados = 2, recibidos = 2, perdidos = 0

      (0% perdidos),

      Tiempos aproximados de ida y vuelta en milisegundos:

      M¡nimo = 146ms, M*ximo = 150ms, Media = 148ms



      Haciendo ping a yahoo.com [72.30.38.140] con 32 bytes de datos:



      Respuesta desde 72.30.38.140: bytes=32 tiempo=236ms TTL=52

      Respuesta desde 72.30.38.140: bytes=32 tiempo=290ms TTL=52



      Estad¡sticas de ping para 72.30.38.140:

      Paquetes: enviados = 2, recibidos = 2, perdidos = 0

      (0% perdidos),

      Tiempos aproximados de ida y vuelta en milisegundos:

      M¡nimo = 236ms, M*ximo = 290ms, Media = 263ms


      IPv4 Tabla de enrutamiento
      ===========================================================================
      ILista de interfaces
      0x1 ........................... MS TCP Loopback interface
      0x10004 ...e0 91 53 62 36 fa ...... Realtek RTL8188CE Wireless LAN 802.11n PCI-E NIC - Packet Scheduler Miniport
      ===========================================================================
      ===========================================================================
      Rutas activas:
      Destino de red M*scara de red Puerta de acceso Interfaz M‚trica
      0.0.0.0 0.0.0.0 192.168.1.1 192.168.1.3 25
      127.0.0.0 255.0.0.0 127.0.0.1 127.0.0.1 1
      192.168.1.0 255.255.255.0 192.168.1.3 192.168.1.3 25
      192.168.1.3 255.255.255.255 127.0.0.1 127.0.0.1 25
      192.168.1.255 255.255.255.255 192.168.1.3 192.168.1.3 25
      224.0.0.0 240.0.0.0 192.168.1.3 192.168.1.3 25
      255.255.255.255 255.255.255.255 192.168.1.3 192.168.1.3 1
      Puerta de enlace predeterminada: 192.168.1.1
      ===========================================================================
      Rutas persistentes:
      Ninguno


      Intento entrar al modem pero pongo usuarioy contraseña y se abre de nuevo pidiendo lo mismo, aclaro esto por el tema de cambiar los DNS

      Muchas gracias aguardo alguna ayuda

      Ariel
      Última edición por ariel_el_chapa fecha: 02/11/12 a las 14:12:14

    2. #2
      Ex-Colaborador Avatar de RevesdeLiberte
      Registrado
      feb 2010
      Ubicación
      México
      Mensajes
      7.976

      Re: facebook y google.com me pide descargar flash y java constantemente

      Hola ariel_el_chapa
      Bienvenido al Foro de InfoSpyware.



      Realiza lo siguiente:


      • Descarga la herramienta OTL by OldTimer en tu escritorio.
      • Cierre todas las ventanas y programas abiertos. Haga doble clic sobre OTL.exe para ejecutarlo.
      • En Tipo de Análisis marque la casilla "Resultado Mínimo". Por ultimo seleccione las opciones:
        • Usar listado de Compañías Reconocidas
        • Omitir Archivos de Microsoft
        • Buscar LOP
      • Copie el siguiente código: (No copiar la palabra "Código:")

      Código:
      msconfig
      netsvcs
      baseservices
      %systemdrive%\*.*
      %programfiles%\*.exe 
      %appdata%\*.exe /s /5
      %localappdata%\*.exe /s /5
      %systemroot%\*. /mp /s
      CREATERESTOREPOINT
      • Pegue el código sobre el área Análisis Personalizados/Código de Reparación.



      • Haga clic en el botón Analizar y espere paciente a que concluya el análisis.
      • Se abrirán dos (2) archivos, OTL.txt y Extras.txt. Éstos aparecerán grabados en donde OTL fue ejecutado.



      Para terminar, solo abra el archivo OTL.txt, copie y pegue todo su contenido en la siguiente respuesta para revisarlo.
      La paciencia es un árbol de raíces amargas, pero de frutos dulces.

      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.

    3. #3
      Usuario Avatar de ariel_el_chapa
      Registrado
      abr 2007
      Ubicación
      argentina
      Mensajes
      9

      Re: facebook y google.com me pide descargar flash y java constantemente

      Gracias por la pronta respuesta RevesdeLiberte, te dejo el reporte del otl.



      OTL logfile created on: 02/11/2012 05:28:10 p.m. - Run 1
      OTL by OldTimer - Version 3.2.69.0 Folder = C:\Documents and Settings\Administrator\Desktop
      64bit-Windows Server 2003 Service Pack 2 (Version = 5.2.3790) - Type = NTWorkstation
      Internet Explorer (Version = 8.0.6001.18702)
      Locale: 00002C0A | Country: Argentina | Language: ESS | Date Format: dd/MM/yyyy

      3,97 Gb Total Physical Memory | 3,33 Gb Available Physical Memory | 83,92% Memory free
      7,71 Gb Paging File | 7,33 Gb Available in Paging File | 95,13% Paging File free
      Paging file location(s): c:\pagefile.sys 4092 8184 [binary data]

      %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files (x86)
      Drive C: | 152,34 Gb Total Space | 123,32 Gb Free Space | 80,95% Space Free | Partition Type: NTFS
      Drive D: | 313,41 Gb Total Space | 252,57 Gb Free Space | 80,59% Space Free | Partition Type: NTFS

      Computer Name: ARIEL | User Name: Administrator | Logged in as Administrator.
      Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans
      Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

      ========== Processes (SafeList) ==========

      PRC - C:\Documents and Settings\Administrator\Desktop\OTL.exe (OldTimer Tools)
      PRC - C:\Program Files (x86)\Java\jre7\bin\jqs.exe (Oracle Corporation)
      PRC - C:\Program Files (x86)\MSN Messenger\msnmsgr.exe (Microsoft Corporation)


      ========== Modules (No Company Name) ==========

      MOD - C:\WINDOWS\SysWOW64\quartz.dll ()
      MOD - C:\WINDOWS\SysWOW64\devenum.dll ()
      MOD - C:\WINDOWS\SysWOW64\msdmo.dll ()


      ========== Services (SafeList) ==========

      SRV:64bit: - (MsMpSvc) -- C:\Program Files\Microsoft Security Client\MsMpEng.exe (Microsoft Corporation)
      SRV:64bit: - (STacSV) -- c:\Program Files\IDT\WDM\stacsv64.exe (IDT, Inc.)
      SRV - (MozillaMaintenance) -- C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe (Mozilla Foundation)
      SRV - (AdobeFlashPlayerUpdateSvc) -- C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe (Adobe Systems Incorporated)
      SRV - (JavaQuickStarterService) -- C:\Program Files (x86)\Java\jre7\bin\jqs.exe (Oracle Corporation)
      SRV - (Spooler) -- C:\WINDOWS\system32\spoolsv.exe (Microsoft Corporation)
      SRV - (clr_optimization_v2.0.50727_32) -- C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe (Microsoft Corporation)
      SRV - (helpsvc) -- C:\WINDOWS\PCHEALTH\HELPCTR\Binaries\pchsvc.dll (Microsoft Corporation)
      SRV - (usnjsvc) -- C:\Program Files (x86)\MSN Messenger\usnsvc.exe (Microsoft Corporation)
      SRV - (UMWdf) -- C:\WINDOWS\SysWOW64\wdfmgr.exe (Microsoft Corporation)


      ========== Driver Services (SafeList) ==========

      DRV - (mnmdd) -- C:\WINDOWS\SysWow64\mnmdd.dll (Microsoft Corporation)
      DRV - (Winsock) -- C:\WINDOWS\SysWow64\winsock.dll (Microsoft Corporation)


      ========== Standard Registry (SafeList) ==========


      ========== Internet Explorer ==========

      IE:64bit: - HKLM\..\SearchScopes,DefaultScope =
      IE:64bit: - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.live.com/results.aspx?q={searchTerms}&src={referrer:source?}
      IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = about:blank
      IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank
      IE - HKLM\..\SearchScopes,DefaultScope =
      IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.live.com/results.aspx?q={searchTerms}&src={referrer:source?}

      IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = about:blank
      IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = Google
      IE - HKCU\..\SearchScopes,DefaultScope =
      IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

      ========== FireFox ==========

      FF - prefs.js..browser.search.defaultengine: "Google"
      FF - prefs.js..browser.search.defaultenginename: "v9"
      FF - prefs.js..browser.search.order.1: "v9"
      FF - prefs.js..browser.search.selectedEngine: "v9"
      FF - prefs.js..browser.search.update: false
      FF - prefs.js..browser.search.useDBForOrder: true
      FF - prefs.js..browser.startup.homepage: "https://www.google.com.ar/"
      FF - user.js - File not found

      FF:64bit: - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF64_11_4_402_287.dll File not found
      FF:64bit: - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.7.2: C:\WINDOWS\system32\npDeployJava1.dll (Oracle Corporation)
      FF:64bit: - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.7.2: C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
      FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_11_4_402_287.dll ()
      FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.7.2: C:\WINDOWS\SysWOW64\npDeployJava1.dll (Oracle Corporation)
      FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.9.2: C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
      FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
      FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
      FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Update\1.3.21.123\npGoogleUpdate3.dll (Google Inc.)
      FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Update\1.3.21.123\npGoogleUpdate3.dll (Google Inc.)

      FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 16.0.2\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2012/10/28 16:29:53 | 000,000,000 | ---D | M]
      FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 16.0.2\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins

      [2012/01/24 17:06:09 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Administrator\Application Data\mozilla\Extensions
      [2012/10/31 09:20:19 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Administrator\Application Data\mozilla\Firefox\Profiles\4wilouga.default\extensions
      [2012/09/03 14:19:12 | 000,003,793 | ---- | M] () (No name found) -- C:\Documents and Settings\Administrator\Application Data\mozilla\firefox\profiles\4wilouga.default\extensions\{66E978CD-981F-47DF-AC42-E3CF417C1467}.xpi
      [2012/03/21 11:38:47 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\Mozilla Firefox\extensions
      [2012/10/28 16:29:52 | 000,261,600 | ---- | M] (Mozilla Foundation) -- C:\Program Files (x86)\mozilla firefox\components\browsercomps.dll
      [2012/09/11 12:20:49 | 000,002,465 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\bing.xml
      [2012/07/19 13:05:22 | 000,003,882 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\drae.xml
      [2012/06/22 20:44:33 | 000,001,143 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\eBay-es.xml
      [2012/10/19 16:12:33 | 000,002,058 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\twitter.xml
      [2012/06/22 20:44:33 | 000,001,178 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\wikipedia-es.xml
      [2012/06/22 20:44:33 | 000,001,102 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\yahoo-es.xml

      ========== Chrome ==========

      CHR - homepage: about:blank
      CHR - default_search_provider: Google (Enabled)
      CHR - default_search_provider: search_url = {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}{google:searchFieldtrialParameter}sourceid=chrome&ie={inputEncoding}
      CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client=chrome&hl={language}&q={searchTerms},
      CHR - homepage: about:blank
      CHR - plugin: Remoting Viewer (Enabled) = internal-remoting-viewer
      CHR - plugin: Native Client (Enabled) = C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Chrome\Application\22.0.1229.94\ppGoogleNaClPluginChrome.dll
      CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Chrome\Application\22.0.1229.94\pdf.dll
      CHR - plugin: Shockwave Flash (Enabled) = C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Chrome\Application\22.0.1229.94\gcswf32.dll
      CHR - plugin: Shockwave Flash (Enabled) = C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32.dll
      CHR - plugin: Adobe Acrobat (Enabled) = C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll
      CHR - plugin: Java Deployment Toolkit 6.0.300.12 (Enabled) = C:\Program Files (x86)\Java\jre6\bin\new_plugin\npdeployJava1.dll
      CHR - plugin: Java(TM) Platform SE 6 U30 (Enabled) = C:\Program Files (x86)\Java\jre6\bin\new_plugin\npjp2.dll
      CHR - plugin: Windows Media Player Plug-in Dynamic Link Library (Enabled) = C:\Program Files (x86)\Windows Media Player\npdsplay.dll
      CHR - plugin: Google Update (Enabled) = C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Update\1.3.21.99\npGoogleUpdate3.dll
      CHR - plugin: Picasa (Enabled) = C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll
      CHR - plugin: Default Plug-in (Enabled) = default_plugin
      CHR - Extension: YouTube = C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\
      CHR - Extension: B\u00FAsqueda de Google = C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\
      CHR - Extension: Gmail = C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\

      Hosts file not found
      O2:64bit: - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
      O2:64bit: - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
      O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
      O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - No CLSID value found.
      O2 - BHO: (FlashGetBHO) - {b070d3e3-fec0-47d9-8e8a-99d4eeb3d3b0} - C:\Documents and Settings\Administrator\Application Data\FlashGetBHO\FlashGetBHO.dll (Trend Media Group)
      O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
      O3:64bit: - HKCU\..\Toolbar\ShellBrowser: (&Address) - {01E04581-4EEE-11D0-BFE9-00AA005B4383} - %SystemRoot%\system32\browseui.dll File not found
      O3:64bit: - HKCU\..\Toolbar\WebBrowser: (&Address) - {01E04581-4EEE-11D0-BFE9-00AA005B4383} - %SystemRoot%\system32\browseui.dll File not found
      O3:64bit: - HKCU\..\Toolbar\WebBrowser: (&Links) - {0E5CBF21-D15F-11D0-8301-00AA005B4383} - %SystemRoot%\system32\SHELL32.dll File not found
      O4:64bit: - HKLM..\Run: [MSC] C:\Program Files\Microsoft Security Client\msseces.exe (Microsoft Corporation)
      O4 - HKCU..\Run: [FlashGet 3] C:\Program Files (x86)\FlashGet Network\FlashGet 3\flashget3.exe (Trend Media Corporation Limited)
      O4 - HKCU..\Run: [msnmsgr] C:\Program Files (x86)\MSN Messenger\msnmsgr.exe (Microsoft Corporation)
      O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Control Panel present
      O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
      O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
      O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
      O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
      O8:64bit: - Extra context menu item: Download all links by FlashGet3 - C:\Program Files (x86)\FlashGet Network\FlashGet 3\BHO\fdgetallurl.htm ()
      O8:64bit: - Extra context menu item: Download by FlashGet3 - C:\Program Files (x86)\FlashGet Network\FlashGet 3\BHO\fdgeturl.htm ()
      O8 - Extra context menu item: Download all links by FlashGet3 - C:\Program Files (x86)\FlashGet Network\FlashGet 3\BHO\fdgetallurl.htm ()
      O8 - Extra context menu item: Download by FlashGet3 - C:\Program Files (x86)\FlashGet Network\FlashGet 3\BHO\fdgeturl.htm ()
      O9:64bit: - Extra Button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (Microsoft Corporation)
      O9:64bit: - Extra 'Tools' menuitem : Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (Microsoft Corporation)
      O9 - Extra Button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (Microsoft Corporation)
      O9 - Extra 'Tools' menuitem : Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (Microsoft Corporation)
      O10:64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000001 [] - %SystemRoot%\System32\mswsock.dll File not found
      O10:64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000002 [] - %SystemRoot%\System32\winrnr.dll File not found
      O10:64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000003 [] - %SystemRoot%\System32\mswsock.dll File not found
      O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000001 - %SystemRoot%\system32\mswsock.dll File not found
      O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000002 - %SystemRoot%\system32\mswsock.dll File not found
      O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000003 - %SystemRoot%\system32\mswsock.dll File not found
      O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000004 - %SystemRoot%\system32\mswsock.dll File not found
      O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000005 - %SystemRoot%\system32\mswsock.dll File not found
      O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jin...ndows-i586.cab (Reg Error: Value error.)
      O16 - DPF: {CAFEEFAC-0016-0000-0030-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jin...ndows-i586.cab (Java Plug-in 1.6.0_30)
      O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jin...ndows-i586.cab (Java Plug-in 1.6.0_30)
      O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 200.172.230.137 8.8.8.8
      O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{7189B5A1-8F09-49DD-A344-C5926F2DCE64}: NameServer = 200.51.211.7,200.51.212.7
      O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{88B1ABE7-3501-4F55-B071-DF73338FDFA2}: DhcpNameServer = 200.172.230.137 8.8.8.8
      O18:64bit: - Protocol\Handler\about {3050F406-98B5-11CF-BB82-00AA00BDCE0B} - C:\WINDOWS\system32\mshtml.dll File not found
      O18:64bit: - Protocol\Handler\cdl {3dd53d40-7b8b-11D0-b013-00aa0059ce02} - C:\WINDOWS\system32\urlmon.dll File not found
      O18:64bit: - Protocol\Handler\dvd {12D51199-0DB5-46FE-A120-47A3D7D937CC} - C:\WINDOWS\system32\msvidctl.dll File not found
      O18:64bit: - Protocol\Handler\file {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\system32\urlmon.dll File not found
      O18:64bit: - Protocol\Handler\ftp {79eac9e3-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\system32\urlmon.dll File not found
      O18:64bit: - Protocol\Handler\gopher {79eac9e4-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\system32\urlmon.dll File not found
      O18:64bit: - Protocol\Handler\http {79eac9e2-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\system32\urlmon.dll File not found
      O18:64bit: - Protocol\Handler\http\0x00000001 - No CLSID value found
      O18:64bit: - Protocol\Handler\http\oledb - No CLSID value found
      O18:64bit: - Protocol\Handler\https {79eac9e5-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\system32\urlmon.dll File not found
      O18:64bit: - Protocol\Handler\https\0x00000001 - No CLSID value found
      O18:64bit: - Protocol\Handler\https\oledb - No CLSID value found
      O18:64bit: - Protocol\Handler\its {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\WINDOWS\system32\itss.dll File not found
      O18:64bit: - Protocol\Handler\javascript {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\WINDOWS\system32\mshtml.dll File not found
      O18:64bit: - Protocol\Handler\livecall - No CLSID value found
      O18:64bit: - Protocol\Handler\local {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\system32\urlmon.dll File not found
      O18:64bit: - Protocol\Handler\mailto {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} - C:\WINDOWS\system32\mshtml.dll File not found
      O18:64bit: - Protocol\Handler\mhtml {05300401-BCBC-11d0-85E3-00C04FD85AB4} - %SystemRoot%\system32\inetcomm.dll File not found
      O18:64bit: - Protocol\Handler\mk {79eac9e6-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\system32\urlmon.dll File not found
      O18:64bit: - Protocol\Handler\msdaipp - No CLSID value found
      O18:64bit: - Protocol\Handler\msdaipp\0x00000001 - No CLSID value found
      O18:64bit: - Protocol\Handler\msdaipp\oledb - No CLSID value found
      O18:64bit: - Protocol\Handler\ms-its {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\WINDOWS\system32\itss.dll File not found
      O18:64bit: - Protocol\Handler\ms-itss - No CLSID value found
      O18:64bit: - Protocol\Handler\msnim - No CLSID value found
      O18:64bit: - Protocol\Handler\mso-offdap - No CLSID value found
      O18:64bit: - Protocol\Handler\mso-offdap11 - No CLSID value found
      O18:64bit: - Protocol\Handler\res {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} - C:\WINDOWS\system32\mshtml.dll File not found
      O18:64bit: - Protocol\Handler\sysimage {76E67A63-06E9-11D2-A840-006008059382} - %SystemRoot%\system32\mshtml.dll File not found
      O18:64bit: - Protocol\Handler\tv {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} - C:\WINDOWS\system32\msvidctl.dll File not found
      O18:64bit: - Protocol\Handler\vbscript {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\WINDOWS\system32\mshtml.dll File not found
      O18:64bit: - Protocol\Handler\wia {13F3EA8B-91D7-4F0A-AD76-D2853AC8BECE} - C:\WINDOWS\system32\wiascr.dll File not found
      O18 - Protocol\Handler\livecall {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files (x86)\MSN Messenger\msgrapp.8.1.0178.00.dll (Microsoft Corporation)
      O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
      O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
      O18 - Protocol\Handler\msnim {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files (x86)\MSN Messenger\msgrapp.8.1.0178.00.dll (Microsoft Corporation)
      O18:64bit: - Protocol\Filter\application/octet-stream {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - mscoree.dll File not found
      O18:64bit: - Protocol\Filter\application/x-complus {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - mscoree.dll File not found
      O18:64bit: - Protocol\Filter\application/x-msdownload {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - mscoree.dll File not found
      O18:64bit: - Protocol\Filter\Class Install Handler {32B533BB-EDAE-11d0-BD5A-00AA00B92AF1} - C:\WINDOWS\system32\urlmon.dll File not found
      O18:64bit: - Protocol\Filter\deflate {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\WINDOWS\system32\urlmon.dll File not found
      O18:64bit: - Protocol\Filter\gzip {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\WINDOWS\system32\urlmon.dll File not found
      O18:64bit: - Protocol\Filter\lzdhtml {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\WINDOWS\system32\urlmon.dll File not found
      O18:64bit: - Protocol\Filter\text/webviewhtml {733AC4CB-F1A4-11d0-B951-00A0C90312E1} - %SystemRoot%\system32\SHELL32.dll File not found
      O18:64bit: - Protocol\Filter\text/xml - No CLSID value found
      O20:64bit: - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
      O20:64bit: - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) - File not found
      O20:64bit: - HKLM Winlogon: UIHost - (%SystemRoot%\system32\logonui.exe) - File not found
      O20:64bit: - HKLM Winlogon: VMApplet - (Control_RunDLL "sysdm.cpl") - File not found
      O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\SysWow64\explorer.exe (Microsoft Corporation)
      O20 - HKLM Winlogon: System - (lsass.exe) - File not found
      O20 - HKLM Winlogon: UserInit - (userinit) - C:\WINDOWS\SysWow64\userinit.exe (Microsoft Corporation)
      O20:64bit: - Winlogon\Notify\crypt32chain: DllName - (crypt32.dll) - File not found
      O20:64bit: - Winlogon\Notify\cryptnet: DllName - (cryptnet.dll) - File not found
      O20:64bit: - Winlogon\Notify\cscdll: DllName - (cscdll.dll) - File not found
      O20:64bit: - Winlogon\Notify\dimsntfy: DllName - (dimsntfy.dll) - File not found
      O20:64bit: - Winlogon\Notify\igfxcui: DllName - (igfxdev.dll) - File not found
      O20:64bit: - Winlogon\Notify\ScCertProp: DllName - (wlnotify.dll) - File not found
      O20:64bit: - Winlogon\Notify\Schedule: DllName - (wlnotify.dll) - File not found
      O20:64bit: - Winlogon\Notify\sclgntfy: DllName - (sclgntfy.dll) - File not found
      O20:64bit: - Winlogon\Notify\SensLogn: DllName - (WlNotify.dll) - File not found
      O20:64bit: - Winlogon\Notify\termsrv: DllName - (wlnotify.dll) - File not found
      O20:64bit: - Winlogon\Notify\wlballoon: DllName - (wlnotify.dll) - File not found
      O20 - Winlogon\Notify\ScCertProp: DllName - (wlnotify.dll) - File not found
      O20 - Winlogon\Notify\Schedule: DllName - (wlnotify.dll) - File not found
      O20 - Winlogon\Notify\SensLogn: DllName - (WlNotify.dll) - File not found
      O20 - Winlogon\Notify\wlballoon: DllName - (wlnotify.dll) - File not found
      O21:64bit: - SSODL: CDBurn - {fbeb8a05-beee-4442-804e-409d6c4515e9} - %SystemRoot%\system32\SHELL32.dll File not found
      O21:64bit: - SSODL: PostBootReminder - {7849596a-48ea-486e-8937-a2a3009f31a9} - %SystemRoot%\system32\SHELL32.dll File not found
      O21:64bit: - SSODL: SysTray - {35CEC8A3-2BE6-11D2-8773-92E220524153} - C:\WINDOWS\system32\stobject.dll File not found
      O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - C:\WINDOWS\system32\webcheck.dll File not found
      O22:64bit: - SharedTaskScheduler: {438755C2-A8BA-11D1-B96B-00A0C90312E1} - Browseui preloader - %SystemRoot%\system32\browseui.dll File not found
      O22:64bit: - SharedTaskScheduler: {8C7461EF-2B13-11d2-BE35-3078302C2030} - Component Categories cache daemon - %SystemRoot%\system32\browseui.dll File not found
      O24 - Desktop WallPaper: C:\WINDOWS\ACDSee 32 Wallpaper.bmp
      O24 - Desktop BackupWallPaper: C:\WINDOWS\ACDSee 32 Wallpaper.bmp
      O28:64bit: - HKLM ShellExecuteHooks: {AEB6717E-7E19-11d0-97EE-00C04FD91972} - shell32.dll File not found
      O32 - HKLM CDRom: AutoRun - 1
      O32 - AutoRun File - [2012/01/24 15:52:08 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
      O34 - HKLM BootExecute: (autocheck autochk *)
      O35:64bit: - HKLM\..comfile [open] -- "%1" %*
      O35:64bit: - HKLM\..exefile [open] -- "%1" %*
      O35 - HKLM\..comfile [open] -- "%1" %*
      O35 - HKLM\..exefile [open] -- "%1" %*
      O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
      O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
      O37 - HKLM\...com [@ = comfile] -- "%1" %*
      O37 - HKLM\...exe [@ = exefile] -- "%1" %*
      O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
      O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)



      CREATERESTOREPOINT
      Restore point Set: OTL Restore Point

      ========== Files/Folders - Created Within 30 Days ==========

      [2012/11/02 17:23:40 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Administrator\Desktop\OTL.exe
      [2012/11/02 15:07:57 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Administrator\Recent
      [2012/11/02 00:52:13 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\DoctorWeb
      [2012/10/14 22:32:50 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Local Settings\Application Data\Help
      [3 C:\Program Files (x86)\*.tmp files -> C:\Program Files (x86)\*.tmp -> ]
      [2 C:\WINDOWS\SysWow64\*.tmp files -> C:\WINDOWS\SysWow64\*.tmp -> ]
      [2 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]

      ========== Files - Modified Within 30 Days ==========

      [2012/11/02 17:23:48 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Administrator\Desktop\OTL.exe
      [2012/11/02 15:09:38 | 000,128,064 | ---- | M] () -- C:\Documents and Settings\Administrator\Desktop\1.JPG
      [2012/11/02 13:38:30 | 000,000,404 | -H-- | M] () -- C:\WINDOWS\tasks\Microsoft Antimalware Scheduled Scan.job
      [2012/11/02 13:36:29 | 000,000,512 | ---- | M] () -- C:\WINDOWS\SysWow64\secustat.dat
      [2012/11/02 09:20:05 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
      [2012/11/01 23:38:37 | 000,000,268 | -H-- | M] () -- C:\sqmdata06.sqm
      [2012/11/01 23:38:37 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt06.sqm
      [2012/11/01 23:32:45 | 000,112,323 | ---- | M] () -- C:\Documents and Settings\Administrator\Desktop\facebook.JPG
      [2012/10/26 00:51:09 | 000,117,248 | ---- | M] () -- C:\Documents and Settings\Administrator\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
      [2012/10/25 18:36:47 | 000,000,838 | ---- | M] () -- C:\WINDOWS\tasks\Adobe Flash Player Updater.job
      [2012/10/22 09:25:48 | 000,000,069 | ---- | M] () -- C:\WINDOWS\NeroDigital.ini
      [2012/10/20 23:39:48 | 000,000,024 | ---- | M] () -- C:\WINDOWS\winamp.ini
      [2012/10/15 16:06:45 | 000,031,068 | ---- | M] () -- C:\Documents and Settings\Administrator\My Documents\Cuenta (6186108842) Al (2012-09-30) Pro (ALRESU) Sis (10) Key (ROBRESUNICO).pdf
      [2012/10/14 20:16:25 | 000,000,268 | -H-- | M] () -- C:\sqmdata05.sqm
      [2012/10/14 20:16:25 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt05.sqm
      [2012/10/13 12:33:47 | 000,003,821 | ---- | M] () -- C:\WINDOWS\SysWow64\secushr.dat
      [2012/10/10 19:41:03 | 000,002,351 | ---- | M] () -- C:\Documents and Settings\Administrator\Desktop\Google Chrome.lnk
      [2012/10/10 19:41:03 | 000,002,329 | ---- | M] () -- C:\Documents and Settings\Administrator\Application Data\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk
      [2012/10/10 03:22:26 | 000,000,268 | -H-- | M] () -- C:\sqmdata04.sqm
      [2012/10/10 03:22:26 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt04.sqm
      [2012/10/05 20:14:27 | 000,000,268 | -H-- | M] () -- C:\sqmdata03.sqm
      [2012/10/05 20:14:27 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt03.sqm
      [3 C:\Program Files (x86)\*.tmp files -> C:\Program Files (x86)\*.tmp -> ]
      [2 C:\WINDOWS\SysWow64\*.tmp files -> C:\WINDOWS\SysWow64\*.tmp -> ]
      [2 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]

      ========== Files Created - No Company Name ==========

      [2012/11/02 15:09:38 | 000,128,064 | ---- | C] () -- C:\Documents and Settings\Administrator\Desktop\1.JPG
      [2012/11/01 23:58:07 | 000,000,810 | ---- | C] () -- C:\Documents and Settings\Administrator\Application Data\Microsoft\Internet Explorer\Quick Launch\Internet Explorer (64-bit).lnk
      [2012/11/01 23:32:45 | 000,112,323 | ---- | C] () -- C:\Documents and Settings\Administrator\Desktop\facebook.JPG
      [2012/10/19 21:13:36 | 000,000,838 | ---- | C] () -- C:\WINDOWS\tasks\Adobe Flash Player Updater.job
      [2012/10/19 19:23:51 | 000,115,640 | ---- | C] () -- C:\Documents and Settings\LocalService\Local Settings\Application Data\FontCache3.0.0.0.dat
      [2012/10/15 16:06:45 | 000,031,068 | ---- | C] () -- C:\Documents and Settings\Administrator\My Documents\Cuenta (6186108842) Al (2012-09-30) Pro (ALRESU) Sis (10) Key (ROBRESUNICO).pdf
      [2012/06/18 19:21:32 | 000,061,440 | ---- | C] () -- C:\WINDOWS\SysWow64\devenum.dll
      [2012/01/29 13:03:48 | 000,000,057 | -H-- | C] () -- C:\WINDOWS\.picasa.ini
      [2012/01/28 22:44:07 | 000,003,821 | ---- | C] () -- C:\WINDOWS\SysWow64\secushr.dat
      [2012/01/26 12:13:20 | 000,117,248 | ---- | C] () -- C:\Documents and Settings\Administrator\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
      [2012/01/26 00:51:40 | 000,373,248 | ---- | C] () -- C:\WINDOWS\EyeCand3.INI
      [2012/01/25 22:59:29 | 000,000,512 | ---- | C] () -- C:\WINDOWS\SysWow64\secustat.dat
      [2012/01/25 22:05:49 | 000,000,025 | ---- | C] () -- C:\WINDOWS\libem.INI
      [2012/01/25 21:46:43 | 000,175,616 | ---- | C] () -- C:\WINDOWS\SysWow64\unrar.dll
      [2012/01/25 21:46:35 | 000,650,752 | ---- | C] () -- C:\WINDOWS\SysWow64\xvidcore.dll
      [2012/01/25 21:46:35 | 000,243,200 | ---- | C] () -- C:\WINDOWS\SysWow64\xvidvfw.dll
      [2012/01/25 21:46:34 | 000,079,360 | ---- | C] () -- C:\WINDOWS\SysWow64\ff_vfw.dll
      [2012/01/25 21:38:08 | 000,000,069 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini
      [2012/01/24 17:28:29 | 001,162,144 | ---- | C] () -- C:\WINDOWS\SysWow64\PerfStringBackup.INI
      [2012/01/24 17:12:10 | 000,000,379 | ---- | C] () -- C:\WINDOWS\ODBC.INI
      [2012/01/24 17:08:08 | 000,000,012 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\ReminderNextRun
      [2012/01/24 17:03:57 | 000,032,768 | ---- | C] () -- C:\WINDOWS\SysWow64\BCGPOleAcc.dll
      [2012/01/24 16:50:21 | 000,000,664 | ---- | C] () -- C:\WINDOWS\SysWow64\d3d9caps.dat
      [2012/01/24 16:43:24 | 000,000,024 | ---- | C] () -- C:\WINDOWS\winamp.ini
      [2012/01/24 16:37:15 | 000,614,400 | ---- | C] () -- C:\WINDOWS\Rtlihvs.dll
      [2012/01/24 16:37:15 | 000,451,072 | ---- | C] () -- C:\WINDOWS\SysWow64\ISSRemoveSP.exe
      [2012/01/24 16:37:15 | 000,380,928 | ---- | C] () -- C:\WINDOWS\RtlUI2.exe
      [2012/01/24 16:37:15 | 000,188,416 | ---- | C] () -- C:\WINDOWS\RTLExtUI.dll
      [2012/01/24 15:58:40 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat
      [2012/01/24 12:27:22 | 000,004,161 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI
      [2011/11/14 19:07:20 | 001,278,976 | ---- | C] () -- C:\WINDOWS\SysWow64\quartz.dll

      ========== ZeroAccess Check ==========

      [2012/01/24 17:27:31 | 000,000,227 | RHS- | M] () -- C:\WINDOWS\assembly\Desktop.ini

      [HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64

      [HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

      [HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64

      [HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

      [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
      "" = %SystemRoot%\system32\shdocvw.dll
      "ThreadingModel" = Apartment

      [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
      "" = %SystemRoot%\SysWOW64\shdocvw.dll -- [2007/02/18 11:05:50 | 001,508,352 | ---- | M] (Microsoft Corporation)
      "ThreadingModel" = Apartment

      [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
      "" = C:\WINDOWS\system32\wbem\fastprox.dll
      "ThreadingModel" = Free

      [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
      "" = C:\WINDOWS\SysWOW64\wbem\fastprox.dll -- [2009/03/19 19:51:22 | 000,483,840 | ---- | M] (Microsoft Corporation)
      "ThreadingModel" = Free

      [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
      "" = C:\WINDOWS\system32\wbem\wbemess.dll
      "ThreadingModel" = Both

      [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]

      ========== LOP Check ==========

      [2012/11/02 13:36:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\BITS
      [2012/01/25 22:05:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\FlashGet
      [2012/01/25 22:05:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\FlashGetBHO
      [2012/01/25 22:05:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\FlashgetSetup
      [2012/05/22 1252 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\GARMIN
      [2012/06/28 14:06:37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Oracle
      [2012/04/21 20:56:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Electronic Arts
      [2012/05/22 1253 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Garmin
      [2012/01/29 19:23:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\GoldWave

      ========== Custom Scans ==========

      ========== Base Services ==========
      SRV - [2005/03/25 09:00:00 | 000,045,056 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\WINDOWS\SysWOW64\alg.exe -- (ALG)
      No service found with a name of wuauserv
      No service found with a name of BITS
      SRV - [2012/06/29 21:54:36 | 000,078,336 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\WINDOWS\SysWOW64\browser.dll -- (Browser)
      SRV - [2007/02/18 11:05:24 | 000,056,320 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\WINDOWS\SysWOW64\cryptsvc.dll -- (CryptSvc)
      SRV - [2007/02/18 11:05:24 | 000,117,248 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\WINDOWS\SysWOW64\dhcpcsvc.dll -- (Dhcp)
      SRV - [2011/03/03 12:50:58 | 000,045,568 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\WINDOWS\SysWOW64\dnsrslvr.dll -- (Dnscache)
      No service found with a name of Eventlog
      No service found with a name of EapHost
      No service found with a name of FastUserSwitchingCompatibility
      SRV - [2005/03/25 09:00:00 | 000,015,360 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\WINDOWS\SysWOW64\w3ssl.dll -- (HTTPFilter)
      No service found with a name of HidServ
      No service found with a name of ImapiService
      No service found with a name of PolicyAgent
      No service found with a name of dmserver
      No service found with a name of dmadmin
      No service found with a name of SwPrv
      No service found with a name of NetLogon
      SRV - [2007/02/18 11:05:42 | 000,263,680 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\WINDOWS\SysWOW64\netman.dll -- (Netman)
      SRV - [2011/03/03 12:50:58 | 000,233,472 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\WINDOWS\SysWOW64\mswsock.dll -- (Nla)
      No service found with a name of PlugPlay
      SRV - [2010/08/18 01:31:42 | 000,111,616 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\WINDOWS\system32\spoolsv.exe -- (Spooler)
      No service found with a name of ProtectedStorage
      SRV - [2007/02/18 11:05:46 | 000,091,648 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\WINDOWS\SysWOW64\rasauto.dll -- (RasAuto)
      SRV - [2007/02/18 11:05:46 | 000,181,760 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\WINDOWS\SysWOW64\rasmans.dll -- (RasMan)
      No service found with a name of RpcSs
      No service found with a name of NtmsSvc
      SRV - [2007/02/18 11:05:48 | 000,018,432 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\WINDOWS\SysWOW64\seclogon.dll -- (seclogon)
      No service found with a name of SamSs
      No service found with a name of wscsvc
      No service found with a name of lanmanserver
      SRV - [2009/07/29 09:36:12 | 000,135,680 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\WINDOWS\SysWOW64\shsvcs.dll -- (ShellHWDetection)
      No service found with a name of srservice
      SRV - [2007/02/18 11:05:48 | 000,202,240 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\WINDOWS\SysWOW64\schedsvc.dll -- (Schedule)
      SRV - [2007/02/18 11:05:34 | 000,019,968 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\WINDOWS\SysWOW64\lmhsvc.dll -- (LmHosts)
      SRV - [2007/02/18 11:05:54 | 000,254,976 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\WINDOWS\SysWOW64\tapisrv.dll -- (TapiSrv)
      No service found with a name of TermService
      SRV - [2009/07/29 09:36:12 | 000,135,680 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\WINDOWS\SysWOW64\shsvcs.dll -- (Themes)
      No service found with a name of VSS
      SRV - [2005/03/25 09:00:00 | 000,041,472 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\WINDOWS\SysWOW64\audiosrv.dll -- (AudioSrv)
      SRV - [2007/02/18 11:05:32 | 000,343,552 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\WINDOWS\SysWOW64\ipnathlp.dll -- (SharedAccess)
      SRV - [2007/02/18 11:05:58 | 000,348,160 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\WINDOWS\SysWOW64\wiaservc.dll -- (stisvc)
      SRV - [2007/02/18 11:05:38 | 000,078,848 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\WINDOWS\SysWow64\msiexec.exe -- (MSIServer)
      No service found with a name of winmgmt
      SRV - [2009/03/19 19:51:22 | 000,619,008 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\WINDOWS\SysWOW64\advapi32.dll -- (Wmi)
      No service found with a name of Dot3Svc
      SRV - [2007/02/18 11:06:04 | 000,489,472 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\WINDOWS\SysWOW64\wzcsvc.dll -- (WZCSVC)
      No service found with a name of lanmanworkstation

      < %systemdrive%\*.* >
      [2012/10/31 09:11:09 | 000,020,816 | ---- | M] () -- C:\AdwCleaner[R1].txt
      [2012/10/31 09:13:30 | 000,020,893 | ---- | M] () -- C:\AdwCleaner[R2].txt
      [2012/11/02 09:17:16 | 000,001,217 | ---- | M] () -- C:\AdwCleaner[R3].txt
      [2012/10/31 09:20:30 | 000,021,449 | ---- | M] () -- C:\AdwCleaner[S2].txt
      [2012/11/02 09:17:43 | 000,001,277 | ---- | M] () -- C:\AdwCleaner[S3].txt
      [2012/01/24 15:52:08 | 000,000,000 | ---- | M] () -- C:\AUTOEXEC.BAT
      [2012/01/24 16:27:52 | 000,000,212 | -HS- | M] () -- C:\boot.ini
      [2012/01/24 15:52:08 | 000,000,000 | ---- | M] () -- C:\CONFIG.SYS
      [2012/01/24 15:52:08 | 000,000,000 | RHS- | M] () -- C:\IO.SYS
      [2012/01/24 15:52:08 | 000,000,000 | RHS- | M] () -- C:\MSDOS.SYS
      [2005/03/25 09:00:00 | 000,047,772 | RHS- | M] () -- C:\NTDETECT.COM
      [2012/06/18 19:18:07 | 000,297,072 | RHS- | M] () -- C:\ntldr
      [2012/11/02 09:19:55 | 4290,772,992 | -HS- | M] () -- C:\pagefile.sys
      [2012/09/11 12:50:16 | 000,000,268 | -H-- | M] () -- C:\sqmdata00.sqm
      [2012/10/02 12:32:51 | 000,000,268 | -H-- | M] () -- C:\sqmdata01.sqm
      [2012/10/02 12:36:16 | 000,000,268 | -H-- | M] () -- C:\sqmdata02.sqm
      [2012/10/05 20:14:27 | 000,000,268 | -H-- | M] () -- C:\sqmdata03.sqm
      [2012/10/10 03:22:26 | 000,000,268 | -H-- | M] () -- C:\sqmdata04.sqm
      [2012/10/14 20:16:25 | 000,000,268 | -H-- | M] () -- C:\sqmdata05.sqm
      [2012/11/01 23:38:37 | 000,000,268 | -H-- | M] () -- C:\sqmdata06.sqm
      [2012/01/26 10:15:29 | 000,000,268 | -H-- | M] () -- C:\sqmdata07.sqm
      [2012/01/27 18:15:16 | 000,000,268 | -H-- | M] () -- C:\sqmdata08.sqm
      [2012/01/29 23:01:58 | 000,000,268 | -H-- | M] () -- C:\sqmdata09.sqm
      [2012/01/30 02:22:47 | 000,000,268 | -H-- | M] () -- C:\sqmdata10.sqm
      [2012/03/01 13:56:19 | 000,000,268 | -H-- | M] () -- C:\sqmdata11.sqm
      [2012/03/21 17:24:30 | 000,000,268 | -H-- | M] () -- C:\sqmdata12.sqm
      [2012/06/18 20:52:50 | 000,000,268 | -H-- | M] () -- C:\sqmdata13.sqm
      [2012/08/06 20:40:34 | 000,000,268 | -H-- | M] () -- C:\sqmdata14.sqm
      [2012/08/24 10:20:15 | 000,000,268 | -H-- | M] () -- C:\sqmdata15.sqm
      [2012/08/24 11:29:25 | 000,000,268 | -H-- | M] () -- C:\sqmdata16.sqm
      [2012/08/24 17:02:22 | 000,000,268 | -H-- | M] () -- C:\sqmdata17.sqm
      [2012/08/24 17:19:43 | 000,000,268 | -H-- | M] () -- C:\sqmdata18.sqm
      [2012/08/27 23:00:40 | 000,000,268 | -H-- | M] () -- C:\sqmdata19.sqm
      [2012/09/11 12:50:16 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt00.sqm
      [2012/10/02 12:32:50 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt01.sqm
      [2012/10/02 12:36:16 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt02.sqm
      [2012/10/05 20:14:27 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt03.sqm
      [2012/10/10 03:22:26 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt04.sqm
      [2012/10/14 20:16:25 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt05.sqm
      [2012/11/01 23:38:37 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt06.sqm
      [2012/01/26 10:15:29 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt07.sqm
      [2012/01/27 18:15:16 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt08.sqm
      [2012/01/29 23:01:58 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt09.sqm
      [2012/01/30 02:22:47 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt10.sqm
      [2012/03/01 13:56:19 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt11.sqm
      [2012/03/21 17:24:30 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt12.sqm
      [2012/06/18 20:52:50 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt13.sqm
      [2012/08/06 20:40:34 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt14.sqm
      [2012/08/24 10:20:15 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt15.sqm
      [2012/08/24 11:29:25 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt16.sqm
      [2012/08/24 17:02:22 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt17.sqm
      [2012/08/24 17:19:43 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt18.sqm
      [2012/08/27 23:00:40 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt19.sqm
      [2012/11/02 00:42:16 | 000,073,622 | ---- | M] () -- C:\TDSSKiller.2.8.15.0_02.11.2012_00.39.04_log.txt

      < %programfiles%\*.exe >

      < %appdata%\*.exe /s /5 >
      Invalid Environment Variable: localappdata

      < %systemroot%\*. /mp /s >

      < End of report >



      Muchas gracias

      Ariel

    4. #4
      Ex-Colaborador Avatar de RevesdeLiberte
      Registrado
      feb 2010
      Ubicación
      México
      Mensajes
      7.976

      Re: facebook y google.com me pide descargar flash y java constantemente

      Hola.


      Te pido paciencia mientras analizamos tu reporte de OTL, que como veras es muy extenso y esto lleva su tiempo. Responderé en la mayor brevedad posible.


      IMPORTANTE:

      • NO descargues o instales mas programas mientras terminamos la desinfección.

      • NO ejecutes otras herramientas Antivirus/Antimalwares.

      • NO ejecutes nuevamente OTL hasta que vuelva con una respuesta.



      Saludos.
      La paciencia es un árbol de raíces amargas, pero de frutos dulces.

      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.

    5. #5
      Usuario Avatar de ariel_el_chapa
      Registrado
      abr 2007
      Ubicación
      argentina
      Mensajes
      9

      Re: facebook y google.com me pide descargar flash y java constantemente

      ok, muchas gracias, espero entonces

    6. #6
      Ex-Colaborador Avatar de RevesdeLiberte
      Registrado
      feb 2010
      Ubicación
      México
      Mensajes
      7.976

      Re: facebook y google.com me pide descargar flash y java constantemente

      Buenas.


      Realiza lo siguiente:


      1.- Muy importante: en primer lugar desconecte el ordenador de Internet.

      2.- En la parte trasera del Modem vera un pequeña ranura al lado del botón de apagado; Dicho botón se utiliza para retesar al mismo introduciendo un objeto puntiagudo. Procede a resetearlo

      3.- Restablecer los parametros de navegacion/ configuración de DNS de la conexión a Internet:
      • Vaya a Inicio -> Panel de control -> Haga doble clic en Conexiones de red.
      • Haga clic derecho sobre la conexión por defecto (en Conexión de área local o general, la conexión de red inalámbrica) y seleccione Propiedades.
      • Haga doble clic en Protocolo Internet (TCP / IP).
      • En la pestaña General:
      • Seleccione "Obtener una dirección IP automáticamente".
      • Seleccione "Obtener la dirección del servidor DNS automáticamente".
      • Haga clic en Aceptar dos veces para guardar la configuración.
      • Reinicie si tiene que cambiar cualquier configuración.


      4.- Vuelva a conectar: Una vez que haya seguido todos los pasos anteriores puede volver a conectar su ordenador a Internet.


      OTL Fix:

      • Cierre todas las ventanas y programas abiertos. Haga doble clic sobre OTL.exe para ejecutarlo.
        • Copie todo el siguiente código: (No copiar la palabra "Código:")
      Código:
      :Files
      ipconfig /flushdns /c
      C:\sqmdata*.sqm
      
      :OTL
      FF:64bit: - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF64_11_4_402_287.dll File not found
      FF - prefs.js..browser.search.defaultenginename: "v9"
      FF - prefs.js..browser.search.order.1: "v9"
      FF - prefs.js..browser.search.selectedEngine: "v9"
      [2012/09/03 14:19:12 | 000,003,793 | ---- | M] () (No name found) -- C:\Documents and Settings\Administrator\Application Data\mozilla\firefox\profiles\4wilouga.default\extensions\{66E978CD-981F-47DF-AC42-E3CF417C1467}.xpi
      O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - No CLSID value found.
      O3:64bit: - HKCU\..\Toolbar\ShellBrowser: (&Address) - {01E04581-4EEE-11D0-BFE9-00AA005B4383} - %SystemRoot%\system32\browseui.dll File not found
      O3:64bit: - HKCU\..\Toolbar\WebBrowser: (&Address) - {01E04581-4EEE-11D0-BFE9-00AA005B4383} - %SystemRoot%\system32\browseui.dll File not found
      O3:64bit: - HKCU\..\Toolbar\WebBrowser: (&Links) - {0E5CBF21-D15F-11D0-8301-00AA005B4383} - %SystemRoot%\system32\SHELL32.dll File not found
      O10:64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000001 [] - %SystemRoot%\System32\mswsock.dll File not found
      O10:64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000002 [] - %SystemRoot%\System32\winrnr.dll File not found
      O10:64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000003 [] - %SystemRoot%\System32\mswsock.dll File not found
      O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000001 - %SystemRoot%\system32\mswsock.dll File not found
      O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000002 - %SystemRoot%\system32\mswsock.dll File not found
      O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000003 - %SystemRoot%\system32\mswsock.dll File not found
      O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000004 - %SystemRoot%\system32\mswsock.dll File not found
      O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000005 - %SystemRoot%\system32\mswsock.dll File not found
      O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jin...ndows-i586.cab (Reg Error: Value error.)
      O16 - DPF: {CAFEEFAC-0016-0000-0030-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jin...ndows-i586.cab (Java Plug-in 1.6.0_30)
      O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jin...ndows-i586.cab (Java Plug-in 1.6.0_30)
      O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 200.172.230.137 8.8.8.8
      O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{7189B5A1-8F09-49DD-A344-C5926F2DCE64}: NameServer = 200.51.211.7,200.51.212.7
      O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{88B1ABE7-3501-4F55-B071-DF73338FDFA2}: DhcpNameServer = 200.172.230.137 8.8.8.8
      O18:64bit: - Protocol\Handler\about {3050F406-98B5-11CF-BB82-00AA00BDCE0B} - C:\WINDOWS\system32\mshtml.dll File not found
      O18:64bit: - Protocol\Handler\cdl {3dd53d40-7b8b-11D0-b013-00aa0059ce02} - C:\WINDOWS\system32\urlmon.dll File not found
      O18:64bit: - Protocol\Handler\dvd {12D51199-0DB5-46FE-A120-47A3D7D937CC} - C:\WINDOWS\system32\msvidctl.dll File not found
      O18:64bit: - Protocol\Handler\file {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\system32\urlmon.dll File not found
      O18:64bit: - Protocol\Handler\ftp {79eac9e3-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\system32\urlmon.dll File not found
      O18:64bit: - Protocol\Handler\gopher {79eac9e4-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\system32\urlmon.dll File not found
      O18:64bit: - Protocol\Handler\http {79eac9e2-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\system32\urlmon.dll File not found
      O18:64bit: - Protocol\Handler\http\0x00000001 - No CLSID value found
      O18:64bit: - Protocol\Handler\http\oledb - No CLSID value found
      O18:64bit: - Protocol\Handler\https {79eac9e5-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\system32\urlmon.dll File not found
      O18:64bit: - Protocol\Handler\https\0x00000001 - No CLSID value found
      O18:64bit: - Protocol\Handler\https\oledb - No CLSID value found
      O18:64bit: - Protocol\Handler\its {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\WINDOWS\system32\itss.dll File not found
      O18:64bit: - Protocol\Handler\javascript {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\WINDOWS\system32\mshtml.dll File not found
      O18:64bit: - Protocol\Handler\livecall - No CLSID value found
      O18:64bit: - Protocol\Handler\local {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\system32\urlmon.dll File not found
      O18:64bit: - Protocol\Handler\mailto {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} - C:\WINDOWS\system32\mshtml.dll File not found
      O18:64bit: - Protocol\Handler\mhtml {05300401-BCBC-11d0-85E3-00C04FD85AB4} - %SystemRoot%\system32\inetcomm.dll File not found
      O18:64bit: - Protocol\Handler\mk {79eac9e6-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\system32\urlmon.dll File not found
      O18:64bit: - Protocol\Handler\msdaipp - No CLSID value found
      O18:64bit: - Protocol\Handler\msdaipp\0x00000001 - No CLSID value found
      O18:64bit: - Protocol\Handler\msdaipp\oledb - No CLSID value found
      O18:64bit: - Protocol\Handler\ms-its {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\WINDOWS\system32\itss.dll File not found
      O18:64bit: - Protocol\Handler\ms-itss - No CLSID value found
      O18:64bit: - Protocol\Handler\msnim - No CLSID value found
      O18:64bit: - Protocol\Handler\mso-offdap - No CLSID value found
      O18:64bit: - Protocol\Handler\mso-offdap11 - No CLSID value found
      O18:64bit: - Protocol\Handler\res {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} - C:\WINDOWS\system32\mshtml.dll File not found
      O18:64bit: - Protocol\Handler\sysimage {76E67A63-06E9-11D2-A840-006008059382} - %SystemRoot%\system32\mshtml.dll File not found
      O18:64bit: - Protocol\Handler\tv {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} - C:\WINDOWS\system32\msvidctl.dll File not found
      O18:64bit: - Protocol\Handler\vbscript {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\WINDOWS\system32\mshtml.dll File not found
      O18:64bit: - Protocol\Handler\wia {13F3EA8B-91D7-4F0A-AD76-D2853AC8BECE} - C:\WINDOWS\system32\wiascr.dll File not found
      O18:64bit: - Protocol\Filter\application/octet-stream {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - mscoree.dll File not found
      O18:64bit: - Protocol\Filter\application/x-complus {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - mscoree.dll File not found
      O18:64bit: - Protocol\Filter\application/x-msdownload {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - mscoree.dll File not found
      O18:64bit: - Protocol\Filter\Class Install Handler {32B533BB-EDAE-11d0-BD5A-00AA00B92AF1} - C:\WINDOWS\system32\urlmon.dll File not found
      O18:64bit: - Protocol\Filter\deflate {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\WINDOWS\system32\urlmon.dll File not found
      O18:64bit: - Protocol\Filter\gzip {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\WINDOWS\system32\urlmon.dll File not found
      O18:64bit: - Protocol\Filter\lzdhtml {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\WINDOWS\system32\urlmon.dll File not found
      O18:64bit: - Protocol\Filter\text/webviewhtml {733AC4CB-F1A4-11d0-B951-00A0C90312E1} - %SystemRoot%\system32\SHELL32.dll File not found
      O18:64bit: - Protocol\Filter\text/xml - No CLSID value found
      O20:64bit: - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) - File not found
      O20:64bit: - HKLM Winlogon: UIHost - (%SystemRoot%\system32\logonui.exe) - File not found
      O20:64bit: - HKLM Winlogon: VMApplet - (Control_RunDLL "sysdm.cpl") - File not found
      O20 - HKLM Winlogon: System - (lsass.exe) - File not found
      O20:64bit: - Winlogon\Notify\crypt32chain: DllName - (crypt32.dll) - File not found
      O20:64bit: - Winlogon\Notify\cryptnet: DllName - (cryptnet.dll) - File not found
      O20:64bit: - Winlogon\Notify\cscdll: DllName - (cscdll.dll) - File not found
      O20:64bit: - Winlogon\Notify\dimsntfy: DllName - (dimsntfy.dll) - File not found
      O20:64bit: - Winlogon\Notify\igfxcui: DllName - (igfxdev.dll) - File not found
      O20:64bit: - Winlogon\Notify\ScCertProp: DllName - (wlnotify.dll) - File not found
      O20:64bit: - Winlogon\Notify\Schedule: DllName - (wlnotify.dll) - File not found
      O20:64bit: - Winlogon\Notify\sclgntfy: DllName - (sclgntfy.dll) - File not found
      O20:64bit: - Winlogon\Notify\SensLogn: DllName - (WlNotify.dll) - File not found
      O20:64bit: - Winlogon\Notify\termsrv: DllName - (wlnotify.dll) - File not found
      O20:64bit: - Winlogon\Notify\wlballoon: DllName - (wlnotify.dll) - File not found
      O20 - Winlogon\Notify\ScCertProp: DllName - (wlnotify.dll) - File not found
      O20 - Winlogon\Notify\Schedule: DllName - (wlnotify.dll) - File not found
      O20 - Winlogon\Notify\SensLogn: DllName - (WlNotify.dll) - File not found
      O20 - Winlogon\Notify\wlballoon: DllName - (wlnotify.dll) - File not found
      O21:64bit: - SSODL: CDBurn - {fbeb8a05-beee-4442-804e-409d6c4515e9} - %SystemRoot%\system32\SHELL32.dll File not found
      O21:64bit: - SSODL: PostBootReminder - {7849596a-48ea-486e-8937-a2a3009f31a9} - %SystemRoot%\system32\SHELL32.dll File not found
      O21:64bit: - SSODL: SysTray - {35CEC8A3-2BE6-11D2-8773-92E220524153} - C:\WINDOWS\system32\stobject.dll File not found
      O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - C:\WINDOWS\system32\webcheck.dll File not found
      O22:64bit: - SharedTaskScheduler: {438755C2-A8BA-11D1-B96B-00A0C90312E1} - Browseui preloader - %SystemRoot%\system32\browseui.dll File not found
      O22:64bit: - SharedTaskScheduler: {8C7461EF-2B13-11d2-BE35-3078302C2030} - Component Categories cache daemon - %SystemRoot%\system32\browseui.dll File not found
      O28:64bit: - HKLM ShellExecuteHooks: {AEB6717E-7E19-11d0-97EE-00C04FD91972} - shell32.dll File not found
      
      :Commands
      [resethosts]
      [EmptyTemp]
      [EmptyJava]
      • Pegue el código sobre el área Análisis Personalizados/Código de Reparación.



      • Haga clic en el botón Reparar para comenzar la reparación. Se te solicitara reiniciar el ordenador, haga clic en Aceptar.
      • Tras el reinicio se abrirá un reporte con los resultados, ese reporte también quedara guardado en C:\_OTL\MovedFiles\***_***.txt (Donde dice "***_***" es la fecha y hora).



      Copia y pega el reporte generado en tu siguiente respuesta comentando si persiste el problema inicial.
      Última edición por RevesdeLiberte fecha: 02/11/12 a las 20:57:13
      La paciencia es un árbol de raíces amargas, pero de frutos dulces.

      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.

    7. #7
      Usuario Avatar de ariel_el_chapa
      Registrado
      abr 2007
      Ubicación
      argentina
      Mensajes
      9

      Re: facebook y google.com me pide descargar flash y java constantemente

      si reseteo el modem no pierdo la configuracion que tiene?? porque no tengo idea de como volver a configurarlo en caso de que haga falta.

      muchas gracias

      Ariel

    8. #8
      Ex-Colaborador Avatar de RevesdeLiberte
      Registrado
      feb 2010
      Ubicación
      México
      Mensajes
      7.976

      Re: facebook y google.com me pide descargar flash y java constantemente

      Hola.


      No se pierde, continua por favor.
      La paciencia es un árbol de raíces amargas, pero de frutos dulces.

      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.

    9. #9
      Usuario Avatar de ariel_el_chapa
      Registrado
      abr 2007
      Ubicación
      argentina
      Mensajes
      9

      Re: facebook y google.com me pide descargar flash y java constantemente

      Hice todo todos los pasos, el tema ahora es que no tengo conexión de red por wi-fi, cuando voy a ver redes inalámbricas disponibles no me aparece ninguna, solo la leyenda

      Windows no pudo configurar esta conexión inalámbrica
      si tiene habilitado otro programa para administrar esta conexión use dicho sofware
      Si desea que Windows configure esta conexión inalámbrica, inicie el servicio configuración inalámbrica rápida (WZC)

      Y en Estado de conexión dice obtener dirección de red
      Red House
      una cosa mas, cuando la reinicio me demora casi 10 minutos para poder usarla y en conexiones de red

      Ahora estoy en la otra notebook debido a que no me pude conectar en la que estoy haciendo las cosas

      te dejo el reporte




      All processes killed
      ========== FILES ==========
      < ipconfig /flushdns /c >
      Windows IP Configuration
      Successfully flushed the DNS Resolver Cache.
      D:\ariel\limpiadores\otl\cmd.bat deleted successfully.
      D:\ariel\limpiadores\otl\cmd.txt deleted successfully.
      C:\sqmdata00.sqm moved successfully.
      C:\sqmdata01.sqm moved successfully.
      C:\sqmdata02.sqm moved successfully.
      C:\sqmdata03.sqm moved successfully.
      C:\sqmdata04.sqm moved successfully.
      C:\sqmdata05.sqm moved successfully.
      C:\sqmdata06.sqm moved successfully.
      C:\sqmdata07.sqm moved successfully.
      C:\sqmdata08.sqm moved successfully.
      C:\sqmdata09.sqm moved successfully.
      C:\sqmdata10.sqm moved successfully.
      C:\sqmdata11.sqm moved successfully.
      C:\sqmdata12.sqm moved successfully.
      C:\sqmdata13.sqm moved successfully.
      C:\sqmdata14.sqm moved successfully.
      C:\sqmdata15.sqm moved successfully.
      C:\sqmdata16.sqm moved successfully.
      C:\sqmdata17.sqm moved successfully.
      C:\sqmdata18.sqm moved successfully.
      C:\sqmdata19.sqm moved successfully.
      ========== OTL ==========
      64bit-Registry key HKEY_LOCAL_MACHINE\Software\MozillaPlugins\@adobe.com/FlashPlayer\ deleted successfully.
      Prefs.js: "v9" removed from browser.search.defaultenginename
      Prefs.js: "v9" removed from browser.search.order.1
      Prefs.js: "v9" removed from browser.search.selectedEngine
      C:\Documents and Settings\Administrator\Application Data\mozilla\firefox\profiles\4wilouga.default\extensions\{66E978CD-981F-47DF-AC42-E3CF417C1467}.xpi moved successfully.
      Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7E853D72-626A-48EC-A868-BA8D5E23E045}\ deleted successfully.
      Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{7E853D72-626A-48EC-A868-BA8D5E23E045}\ not found.
      64bit-Registry value HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\ShellBrowser\\{01E04581-4EEE-11D0-BFE9-00AA005B4383} deleted successfully.
      64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{01E04581-4EEE-11D0-BFE9-00AA005B4383}\ deleted successfully.
      64bit-Registry value HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{01E04581-4EEE-11D0-BFE9-00AA005B4383} deleted successfully.
      Unable to delete 64bit registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{01E04581-4EEE-11D0-BFE9-00AA005B4383}\ .
      64bit-Registry value HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{0E5CBF21-D15F-11D0-8301-00AA005B4383} deleted successfully.
      64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0E5CBF21-D15F-11D0-8301-00AA005B4383}\ deleted successfully.
      64bit-Registry key HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries64\000000000001\ deleted successfully.
      64bit-Registry key HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries64\000000000002\ deleted successfully.
      64bit-Registry key HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries64\000000000003\ deleted successfully.
      64bit-Registry key HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries64\000000000001\ deleted successfully.
      64bit-Registry key HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries64\000000000002\ deleted successfully.
      64bit-Registry key HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries64\000000000003\ deleted successfully.
      64bit-Registry key HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries64\000000000004\ deleted successfully.
      64bit-Registry key HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries64\000000000005\ deleted successfully.
      Starting removal of ActiveX control {8AD9C840-044E-11D1-B3E9-00805F499D93}
      Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{8AD9C840-044E-11D1-B3E9-00805F499D93}\ deleted successfully.
      Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{8AD9C840-044E-11D1-B3E9-00805F499D93}\ deleted successfully.
      Registry key HKEY_CURRENT_USER\SOFTWARE\Classes\CLSID\{8AD9C840-044E-11D1-B3E9-00805F499D93}\ deleted successfully.
      Registry key HKEY_USERS\.DEFAULT\SOFTWARE\Classes\CLSID\{8AD9C840-044E-11D1-B3E9-00805F499D93}\ deleted successfully.
      Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{8AD9C840-044E-11D1-B3E9-00805F499D93}\ not found.
      Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{8AD9C840-044E-11D1-B3E9-00805F499D93}\ not found.
      Starting removal of ActiveX control {CAFEEFAC-0016-0000-0030-ABCDEFFEDCBA}
      Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{CAFEEFAC-0016-0000-0030-ABCDEFFEDCBA}\ deleted successfully.
      Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0030-ABCDEFFEDCBA}\ deleted successfully.
      Registry key HKEY_CURRENT_USER\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0030-ABCDEFFEDCBA}\ deleted successfully.
      Registry key HKEY_USERS\.DEFAULT\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0030-ABCDEFFEDCBA}\ deleted successfully.
      Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{CAFEEFAC-0016-0000-0030-ABCDEFFEDCBA}\ not found.
      Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0030-ABCDEFFEDCBA}\ not found.
      Starting removal of ActiveX control {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}
      Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}\ deleted successfully.
      Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}\ deleted successfully.
      Registry key HKEY_CURRENT_USER\SOFTWARE\Classes\CLSID\{CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}\ deleted successfully.
      Registry key HKEY_USERS\.DEFAULT\SOFTWARE\Classes\CLSID\{CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}\ deleted successfully.
      Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}\ not found.
      Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}\ not found.
      HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\Tcpip\Parameters\\DhcpNameServer| /E : value set successfully!
      HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{7189B5A1-8F09-49DD-A344-C5926F2DCE64}\\NameServer| /E : value set successfully!
      HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{88B1ABE7-3501-4F55-B071-DF73338FDFA2}\\DhcpNameServer| /E : value set successfully!
      64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\about\ deleted successfully.
      64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{3050F406-98B5-11CF-BB82-00AA00BDCE0B}\ deleted successfully.
      File {3050F406-98B5-11CF-BB82-00AA00BDCE0B} - C:\WINDOWS\system32\mshtml.dll File not found not found.
      64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\cdl\ deleted successfully.
      64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{3dd53d40-7b8b-11D0-b013-00aa0059ce02}\ deleted successfully.
      File {3dd53d40-7b8b-11D0-b013-00aa0059ce02} - C:\WINDOWS\system32\urlmon.dll File not found not found.
      64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\dvd\ deleted successfully.
      64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{12D51199-0DB5-46FE-A120-47A3D7D937CC}\ deleted successfully.
      File {12D51199-0DB5-46FE-A120-47A3D7D937CC} - C:\WINDOWS\system32\msvidctl.dll File not found not found.
      64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\file\ deleted successfully.
      64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{79eac9e7-baf9-11ce-8c82-00aa004ba90b}\ deleted successfully.
      File {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\system32\urlmon.dll File not found not found.
      64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\ftp\ deleted successfully.
      64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{79eac9e3-baf9-11ce-8c82-00aa004ba90b}\ deleted successfully.
      File {79eac9e3-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\system32\urlmon.dll File not found not found.
      64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\gopher\ deleted successfully.
      64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{79eac9e4-baf9-11ce-8c82-00aa004ba90b}\ deleted successfully.
      File {79eac9e4-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\system32\urlmon.dll File not found not found.
      64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\http\ deleted successfully.
      64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{79eac9e2-baf9-11ce-8c82-00aa004ba90b}\ deleted successfully.
      File {79eac9e2-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\system32\urlmon.dll File not found not found.
      64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\http\0x00000001\ not found.
      File Protocol\Handler\http\0x00000001 - No CLSID value found not found.
      64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\http\oledb\ not found.
      File Protocol\Handler\http\oledb - No CLSID value found not found.
      64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\https\ deleted successfully.
      64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{79eac9e5-baf9-11ce-8c82-00aa004ba90b}\ deleted successfully.
      File {79eac9e5-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\system32\urlmon.dll File not found not found.
      64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\https\0x00000001\ not found.
      File Protocol\Handler\https\0x00000001 - No CLSID value found not found.
      64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\https\oledb\ not found.
      File Protocol\Handler\https\oledb - No CLSID value found not found.
      64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\its\ deleted successfully.
      64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{9D148291-B9C8-11D0-A4CC-0000F80149F6}\ deleted successfully.
      File {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\WINDOWS\system32\itss.dll File not found not found.
      64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\javascript\ deleted successfully.
      64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{3050F3B2-98B5-11CF-BB82-00AA00BDCE0B}\ deleted successfully.
      File {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\WINDOWS\system32\mshtml.dll File not found not found.
      64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\livecall\ deleted successfully.
      File Protocol\Handler\livecall - No CLSID value found not found.
      64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\local\ deleted successfully.
      Unable to delete 64bit registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{79eac9e7-baf9-11ce-8c82-00aa004ba90b}\ .
      File {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\system32\urlmon.dll File not found not found.
      64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\mailto\ deleted successfully.
      64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{3050f3DA-98B5-11CF-BB82-00AA00BDCE0B}\ deleted successfully.
      File {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} - C:\WINDOWS\system32\mshtml.dll File not found not found.
      64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\mhtml\ deleted successfully.
      64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{05300401-BCBC-11d0-85E3-00C04FD85AB4}\ deleted successfully.
      File {05300401-BCBC-11d0-85E3-00C04FD85AB4} - %SystemRoot%\system32\inetcomm.dll File not found not found.
      64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\mk\ deleted successfully.
      64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{79eac9e6-baf9-11ce-8c82-00aa004ba90b}\ deleted successfully.
      File {79eac9e6-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\system32\urlmon.dll File not found not found.
      64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\msdaipp\ deleted successfully.
      File Protocol\Handler\msdaipp - No CLSID value found not found.
      64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\msdaipp\0x00000001\ not found.
      File Protocol\Handler\msdaipp\0x00000001 - No CLSID value found not found.
      64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\msdaipp\oledb\ not found.
      File Protocol\Handler\msdaipp\oledb - No CLSID value found not found.
      64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\ms-its\ deleted successfully.
      Unable to delete 64bit registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{9D148291-B9C8-11D0-A4CC-0000F80149F6}\ .
      File {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\WINDOWS\system32\itss.dll File not found not found.
      64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\ms-itss\ deleted successfully.
      File Protocol\Handler\ms-itss - No CLSID value found not found.
      64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\msnim\ deleted successfully.
      File Protocol\Handler\msnim - No CLSID value found not found.
      64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\mso-offdap\ deleted successfully.
      File Protocol\Handler\mso-offdap - No CLSID value found not found.
      64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\mso-offdap11\ deleted successfully.
      File Protocol\Handler\mso-offdap11 - No CLSID value found not found.
      64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\res\ deleted successfully.
      64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{3050F3BC-98B5-11CF-BB82-00AA00BDCE0B}\ deleted successfully.
      File {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} - C:\WINDOWS\system32\mshtml.dll File not found not found.
      64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\sysimage\ deleted successfully.
      64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{76E67A63-06E9-11D2-A840-006008059382}\ deleted successfully.
      File {76E67A63-06E9-11D2-A840-006008059382} - %SystemRoot%\system32\mshtml.dll File not found not found.
      64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\tv\ deleted successfully.
      64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CBD30858-AF45-11D2-B6D6-00C04FBBDE6E}\ deleted successfully.
      File {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} - C:\WINDOWS\system32\msvidctl.dll File not found not found.
      64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\vbscript\ deleted successfully.
      Unable to delete 64bit registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{3050F3B2-98B5-11CF-BB82-00AA00BDCE0B}\ .
      File {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\WINDOWS\system32\mshtml.dll File not found not found.
      64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\wia\ deleted successfully.
      64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{13F3EA8B-91D7-4F0A-AD76-D2853AC8BECE}\ deleted successfully.
      File {13F3EA8B-91D7-4F0A-AD76-D2853AC8BECE} - C:\WINDOWS\system32\wiascr.dll File not found not found.
      64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Filter\application/octet-stream\ deleted successfully.
      64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{1E66F26B-79EE-11D2-8710-00C04F79ED0D}\ deleted successfully.
      64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Filter\application/x-complus\ deleted successfully.
      Unable to delete 64bit registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{1E66F26B-79EE-11D2-8710-00C04F79ED0D}\ .
      64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Filter\application/x-msdownload\ deleted successfully.
      Unable to delete 64bit registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{1E66F26B-79EE-11D2-8710-00C04F79ED0D}\ .
      64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\ deleted successfully.
      64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{32B533BB-EDAE-11d0-BD5A-00AA00B92AF1}\ deleted successfully.
      File {32B533BB-EDAE-11d0-BD5A-00AA00B92AF1} - C:\WINDOWS\system32\urlmon.dll File not found not found.
      64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Filter\deflate\ deleted successfully.
      64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{8f6b0360-b80d-11d0-a9b3-006097942311}\ deleted successfully.
      64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Filter\gzip\ deleted successfully.
      Unable to delete 64bit registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{8f6b0360-b80d-11d0-a9b3-006097942311}\ .
      64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Filter\lzdhtml\ deleted successfully.
      Unable to delete 64bit registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{8f6b0360-b80d-11d0-a9b3-006097942311}\ .
      64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Filter\text/webviewhtml\ deleted successfully.
      64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{733AC4CB-F1A4-11d0-B951-00A0C90312E1}\ deleted successfully.
      64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Filter\ deleted successfully.
      64bit-Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\\UserInit:C:\WINDOWS\system32\userinit.exe deleted successfully.
      64bit-Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\\UIHost:%SystemRoot%\system32\logonui.exe deleted successfully.
      64bit-Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\\VMApplet:Control_RunDLL "sysdm.cpl" deleted successfully.
      Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\\System:lsass.exe deleted successfully.
      64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\crypt32chain\ deleted successfully.
      64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\cryptnet\ deleted successfully.
      64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\cscdll\ deleted successfully.
      64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\dimsntfy\ deleted successfully.
      64bit-Registry delete failed. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui\ scheduled to be deleted on reboot.
      64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\ScCertProp\ deleted successfully.
      64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\Schedule\ deleted successfully.
      64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\sclgntfy\ deleted successfully.
      64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\SensLogn\ deleted successfully.
      64bit-Registry delete failed. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\termsrv\ scheduled to be deleted on reboot.
      64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\wlballoon\ deleted successfully.
      Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\ScCertProp\ not found.
      Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\Schedule\ not found.
      Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\SensLogn\ not found.
      Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\wlballoon\ not found.
      64bit-Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad\\CDBurn deleted successfully.
      64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{fbeb8a05-beee-4442-804e-409d6c4515e9}\ deleted successfully.
      64bit-Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad\\PostBootReminder deleted successfully.
      64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{7849596a-48ea-486e-8937-a2a3009f31a9}\ deleted successfully.
      64bit-Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad\\SysTray deleted successfully.
      64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{35CEC8A3-2BE6-11D2-8773-92E220524153}\ deleted successfully.
      64bit-Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad\\WebCheck deleted successfully.
      64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{E6FB5E20-DE35-11CF-9C87-00AA005127ED}\ deleted successfully.
      64bit-Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SharedTaskScheduler\\{438755C2-A8BA-11D1-B96B-00A0C90312E1} deleted successfully.
      64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{438755C2-A8BA-11D1-B96B-00A0C90312E1}\ deleted successfully.
      64bit-Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SharedTaskScheduler\\{8C7461EF-2B13-11d2-BE35-3078302C2030} deleted successfully.
      64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{8C7461EF-2B13-11d2-BE35-3078302C2030}\ deleted successfully.
      64bit-Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks\\{AEB6717E-7E19-11d0-97EE-00C04FD91972} deleted successfully.
      64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{AEB6717E-7E19-11d0-97EE-00C04FD91972}\ deleted successfully.
      ========== COMMANDS ==========
      HOSTS file reset successfully

      [EMPTYTEMP]

      User: Administrator
      ->Temp folder emptied: 1377242 bytes
      ->Temporary Internet Files folder emptied: 3421762 bytes
      ->Java cache emptied: 73971 bytes
      ->FireFox cache emptied: 118678000 bytes
      ->Google Chrome cache emptied: 26799896 bytes
      ->Flash cache emptied: 729 bytes

      User: All Users

      User: Default User
      ->Temp folder emptied: 0 bytes
      ->Temporary Internet Files folder emptied: 67 bytes

      User: LocalService
      ->Temp folder emptied: 0 bytes
      ->Temporary Internet Files folder emptied: 67 bytes

      User: NetworkService
      ->Temp folder emptied: 7358 bytes
      ->Temporary Internet Files folder emptied: 67 bytes

      %systemdrive% .tmp files removed: 0 bytes
      %systemroot% .tmp files removed: 1114333 bytes
      %systemroot%\System32 .tmp files removed: 4265 bytes
      %systemroot%\System32\drivers .tmp files removed: 0 bytes
      Windows Temp folder emptied: 15296 bytes
      RecycleBin emptied: 0 bytes

      Total Files Cleaned = 144,00 mb


      [EMPTYJAVA]

      User: Administrator
      ->Java cache emptied: 0 bytes

      User: All Users

      User: Default User

      User: LocalService

      User: NetworkService

      Total Java Files Cleaned = 0,00 mb


      OTL by OldTimer - Version 3.2.69.0 log created on 11022012_222606

      Files\Folders moved on Reboot...

      PendingFileRenameOperations files...

      Registry entries deleted on Reboot...
      64bit-Registry delete failed. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui\ scheduled to be deleted on reboot.
      64bit-Registry delete failed. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\termsrv\ scheduled to be deleted on reboot.



      Gracias por las respuestas y la paciencia

      Ariel

    10. #10
      Ex-Colaborador Avatar de RevesdeLiberte
      Registrado
      feb 2010
      Ubicación
      México
      Mensajes
      7.976

      Re: facebook y google.com me pide descargar flash y java constantemente

      Hola.


      No te preocupes, estas cosas siempre suceden con este tipo de infección, pero vamos a solucionarlo. Te pido paciencia mientras analizamos tu reporte de OTL, que como veras es muy extenso y esto lleva su tiempo. Responderé en la mayor brevedad posible.


      IMPORTANTE:

      • NO descargues o instales mas programas mientras terminamos la desinfección.

      • NO ejecutes otras herramientas Antivirus/Antimalwares. Aunque puedes activar nuevamente tu Antivirus.

      • NO ejecutes nuevamente OTL hasta que vuelva con una respuesta.



      Saludos.
      La paciencia es un árbol de raíces amargas, pero de frutos dulces.

      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.

    Página 1 de 2 12 ÚltimoÚltimo