• Registrarse
  • Iniciar sesión


  • Página 3 de 3 PrimeroPrimero 123
    Resultados 21 al 25 de 25

    NOD 32 me deja el Mensaje Prof.eorezo.com/ cgi-bin/ create_profile.cgi y no actualiza

    Ok, espero ese reporte....

    1. #21
      Ex-Colaborador Avatar de Marr0n
      Registrado
      mar 2010
      Ubicación
      Catalunya
      Mensajes
      5.871

      Re: NOD 32 me deja el Mensaje Prof.eorezo.com/ cgi-bin/ create_profile.cgi y no actua

      Ok, espero ese reporte.
      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.

    2. #22
      Usuario Avatar de augustrush
      Registrado
      nov 2012
      Ubicación
      Puebla
      Mensajes
      16

      Re: NOD 32 me deja el Mensaje Prof.eorezo.com/ cgi-bin/ create_profile.cgi y no actua

      ahí te dejo el reporte gracias espero tu respuesta gracias

      OTL logfile created on: 24/11/2012 17:06:32 - Run 3
      OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\DREASM-WORK\Downloads
      64bit- Ultimate Edition (Version = 6.1.7600) - Type = NTWorkstation
      Internet Explorer (Version = 8.0.7600.16385)
      Locale: 00000c0a | Country: México | Language: ESM | Date Format: dd/MM/yyyy

      1,75 Gb Total Physical Memory | 0,32 Gb Available Physical Memory | 18,46% Memory free
      3,49 Gb Paging File | 0,64 Gb Available in Paging File | 18,45% Paging File free
      Paging file location(s): ?:\pagefile.sys [binary data]

      %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
      Drive C: | 169,95 Gb Total Space | 14,57 Gb Free Space | 8,57% Space Free | Partition Type: NTFS
      Drive D: | 48,83 Gb Total Space | 0,48 Gb Free Space | 0,99% Space Free | Partition Type: NTFS

      Computer Name: DREAMS-WORK | User Name: DREASM-WORK | Logged in as Administrator.
      Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans
      Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 90 Days

      ========== Processes (SafeList) ==========

      PRC - C:\Users\DREASM-WORK\Downloads\OTL.exe (OldTimer Tools)
      PRC - C:\Archivos de programa\Alwil Software\Avast5\AvastUI.exe (AVAST Software)
      PRC - C:\Archivos de programa\Alwil Software\Avast5\AvastSvc.exe (AVAST Software)
      PRC - C:\ProgramData\Browser Manager\2.3.796.11\{16cdff19-861d-48e3-a751-d99a27784753}\browsemngr.exe ()
      PRC - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe (Malwarebytes Corporation)
      PRC - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (Adobe Systems Incorporated)
      PRC - C:\Users\DREASM-WORK\AppData\Local\tutoriales100_mx_3\UpdTuto100SlmbaHP.exe ()
      PRC - C:\Program Files (x86)\Yuna Software\Messenger Plus!\PlusService.exe (Yuna Software)
      PRC - C:\Program Files (x86)\TuneUp Utilities 2011\OneClick.exe (TuneUp Software)
      PRC - C:\Program Files (x86)\Common Files\Research In Motion\USB Drivers\RIMBBLaunchAgent.exe (Research In Motion Limited)
      PRC - C:\Program Files (x86)\TeamViewer\Version6\TeamViewer_Service.exe (TeamViewer GmbH)
      PRC - C:\Windows\SysWOW64\schtasks.exe (Microsoft Corporation)
      PRC - C:\Archivos de programa\ESET\ESET NOD32 Antivirus\x86\ekrn.exe (ESET)
      PRC - C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe (NewTech Infosystems, Inc.)
      PRC - C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\BackupManagerTray.exe (NewTech Infosystems, Inc.)
      PRC - C:\Program Files (x86)\Launch Manager\LManager.exe (Dritek System Inc.)
      PRC - C:\Program Files (x86)\Launch Manager\dsiwmis.exe (Dritek System Inc.)
      PRC - C:\Program Files (x86)\Launch Manager\LMworker.exe (Dritek System Inc.)
      PRC - C:\Program Files (x86)\EgisTec MyWinLocker\x86\mwlDaemon.exe (Egis Technology Inc.)
      PRC - C:\Archivos de programa\Acer\Acer Updater\UpdaterService.exe (Acer Group)
      PRC - C:\Program Files (x86)\Acer\Registration\GREGsvc.exe (Acer Incorporated)
      PRC - C:\Program Files (x86)\EgisTec IPS\PmmUpdate.exe (Egis Technology Inc.)
      PRC - C:\Program Files (x86)\EgisTec IPS\EgisUpdate.exe (Egis Technology Inc.)
      PRC - C:\Program Files (x86)\USB Disk Security\USBGuard.exe (Zbshareware Lab)


      ========== Modules (No Company Name) ==========

      MOD - C:\Users\DREASM-WORK\AppData\Local\Google\Chrome\User Data\Default\Extensions\pgafcinpmmpklohkojmllohdhomoefph\1.0_0\spext.dll ()
      MOD - C:\Users\DREASM-WORK\AppData\Local\Google\Chrome\Application\23.0.1271.64\ppGoogleNaClPluginChrome.dll ()
      MOD - C:\Users\DREASM-WORK\AppData\Local\Google\Chrome\Application\23.0.1271.64\PepperFlash\pepflashplayer.dll ()
      MOD - C:\Users\DREASM-WORK\AppData\Local\Google\Chrome\Application\23.0.1271.64\pdf.dll ()
      MOD - C:\Users\DREASM-WORK\AppData\Local\Google\Chrome\Application\23.0.1271.64\libglesv2.dll ()
      MOD - C:\Users\DREASM-WORK\AppData\Local\Google\Chrome\Application\23.0.1271.64\libegl.dll ()
      MOD - C:\Users\DREASM-WORK\AppData\Local\Google\Chrome\Application\23.0.1271.64\avutil-51.dll ()
      MOD - C:\Users\DREASM-WORK\AppData\Local\Google\Chrome\Application\23.0.1271.64\avformat-54.dll ()
      MOD - C:\Users\DREASM-WORK\AppData\Local\Google\Chrome\Application\23.0.1271.64\avcodec-54.dll ()
      MOD - C:\ProgramData\Browser Manager\2.3.796.11\{16cdff19-861d-48e3-a751-d99a27784753}\browsemngr.exe ()
      MOD - C:\ProgramData\Browser Manager\2.3.796.11\{16cdff19-861d-48e3-a751-d99a27784753}\browsemngr.dll ()
      MOD - C:\Users\DREASM-WORK\AppData\Local\tutoriales100_mx_3\UpdTuto100SlmbaHP.exe ()
      MOD - C:\Program Files (x86)\TuneUp Utilities 2011\TUSqlDB32.dll ()
      MOD - C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\sqlite3.dll ()
      MOD - C:\Program Files (x86)\Launch Manager\CdDirIo.dll ()


      ========== Services (SafeList) ==========

      SRV:64bit: - (UxTuneUp) -- C:\Windows\SysNative\uxtuneup.dll (TuneUp Software)
      SRV:64bit: - (AMD External Events Utility) -- C:\Windows\SysNative\atiesrxx.exe (AMD)
      SRV:64bit: - (AppMgmt) -- C:\Windows\SysNative\appmgmts.dll (Microsoft Corporation)
      SRV - (MozillaMaintenance) -- C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe (Mozilla Foundation)
      SRV - (avast! Antivirus) -- C:\Archivos de programa\Alwil Software\Avast5\AvastSvc.exe (AVAST Software)
      SRV - (Browser Manager) -- C:\ProgramData\Browser Manager\2.3.796.11\{16cdff19-861d-48e3-a751-d99a27784753}\browsemngr.exe ()
      SRV - (MBAMService) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe (Malwarebytes Corporation)
      SRV - (MBAMScheduler) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe (Malwarebytes Corporation)
      SRV - (AdobeARMservice) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (Adobe Systems Incorporated)
      SRV - (TuneUp.UtilitiesSvc) -- C:\Program Files (x86)\TuneUp Utilities 2011\TuneUpUtilitiesService64.exe (TuneUp Software)
      SRV - (UxTuneUp) -- C:\Windows\SysWOW64\uxtuneup.dll (TuneUp Software)
      SRV - (TeamViewer6) -- C:\Program Files (x86)\TeamViewer\Version6\TeamViewer_Service.exe (TeamViewer GmbH)
      SRV - (EhttpSrv) -- C:\Archivos de programa\ESET\ESET NOD32 Antivirus\EHttpSrv.exe (ESET)
      SRV - (ekrn) -- C:\Archivos de programa\ESET\ESET NOD32 Antivirus\x86\ekrn.exe (ESET)
      SRV - (clr_optimization_v4.0.30319_32) -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe (Microsoft Corporation)
      SRV - (NTI IScheduleSvc) -- C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe (NewTech Infosystems, Inc.)
      SRV - (DsiWMIService) -- C:\Program Files (x86)\Launch Manager\dsiwmis.exe (Dritek System Inc.)
      SRV - (ePowerSvc) -- C:\Archivos de programa\Acer\Acer ePower Management\ePowerSvc.exe (Acer Incorporated)
      SRV - (MWLService) -- C:\Program Files (x86)\EgisTec MyWinLocker\x86\MWLService.exe (Egis Technology Inc.)
      SRV - (Updater Service) -- C:\Archivos de programa\Acer\Acer Updater\UpdaterService.exe (Acer Group)
      SRV - (GREGService) -- C:\Program Files (x86)\Acer\Registration\GREGsvc.exe (Acer Incorporated)
      SRV - (MSSQLServerADHelper100) -- c:\Archivos de programa\Microsoft SQL Server\100\Shared\sqladhlp.exe (Microsoft Corporation)
      SRV - (clr_optimization_v2.0.50727_32) -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe (Microsoft Corporation)
      SRV - (MSSQL$SQLEXPRESS) -- c:\Archivos de programa\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\sqlservr.exe (Microsoft Corporation)
      SRV - (SQLAgent$SQLEXPRESS) -- c:\Archivos de programa\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\SQLAGENT.EXE (Microsoft Corporation)
      SRV - (SQLWriter) -- c:\Archivos de programa\Microsoft SQL Server\90\Shared\sqlwriter.exe (Microsoft Corporation)


      ========== Driver Services (SafeList) ==========

      DRV:64bit: - (aswSnx) -- C:\Windows\SysNative\drivers\aswSnx.sys (AVAST Software)
      DRV:64bit: - (aswSP) -- C:\Windows\SysNative\drivers\aswSP.sys (AVAST Software)
      DRV:64bit: - (aswTdi) -- C:\Windows\SysNative\drivers\aswTdi.sys (AVAST Software)
      DRV:64bit: - (aswMonFlt) -- C:\Windows\SysNative\drivers\aswMonFlt.sys (AVAST Software)
      DRV:64bit: - (aswFsBlk) -- C:\Windows\SysNative\drivers\aswFsBlk.sys (AVAST Software)
      DRV:64bit: - (aswRdr) -- C:\Windows\SysNative\drivers\aswRdr2.sys (AVAST Software)
      DRV:64bit: - (MBAMProtector) -- C:\Windows\SysNative\drivers\mbam.sys (Malwarebytes Corporation)
      DRV:64bit: - (ggsemc) -- C:\Windows\SysNative\drivers\ggsemc.sys (Sony Ericsson Mobile Communications)
      DRV:64bit: - (ggflt) -- C:\Windows\SysNative\drivers\ggflt.sys (Sony Ericsson Mobile Communications)
      DRV:64bit: - (USBAAPL64) -- C:\Windows\SysNative\drivers\usbaapl64.sys (Apple, Inc.)
      DRV:64bit: - (seehcri) -- C:\Windows\SysNative\drivers\seehcri.sys (Sony Ericsson Mobile Communications)
      DRV:64bit: - (VBoxNetAdp) -- C:\Windows\SysNative\drivers\VBoxNetAdp.sys (Oracle Corporation)
      DRV:64bit: - (cpuz135) -- C:\Windows\SysNative\drivers\cpuz135_x64.sys (CPUID)
      DRV:64bit: - (nmwcdnsux64) -- C:\Windows\SysNative\drivers\nmwcdnsux64.sys (Nokia)
      DRV:64bit: - (nmwcdnsucx64) -- C:\Windows\SysNative\drivers\nmwcdnsucx64.sys (Nokia)
      DRV:64bit: - (UsbserFilt) -- C:\Windows\SysNative\drivers\usbser_lowerfltjx64.sys (Nokia)
      DRV:64bit: - (upperdev) -- C:\Windows\SysNative\drivers\usbser_lowerfltx64.sys (Nokia)
      DRV:64bit: - (nmwcdc) -- C:\Windows\SysNative\drivers\ccdcmbox64.sys (Nokia)
      DRV:64bit: - (nmwcd) -- C:\Windows\SysNative\drivers\ccdcmbx64.sys (Nokia)
      DRV:64bit: - (RimUsb) -- C:\Windows\SysNative\drivers\RimUsb_AMD64.sys (Research In Motion Limited)
      DRV:64bit: - (RimVSerPort) -- C:\Windows\SysNative\drivers\RimSerial_AMD64.sys (Research in Motion Ltd)
      DRV:64bit: - (epfwwfpr) -- C:\Windows\SysNative\drivers\epfwwfpr.sys (ESET)
      DRV:64bit: - (ehdrv) -- C:\Windows\SysNative\drivers\ehdrv.sys (ESET)
      DRV:64bit: - (eamonm) -- C:\Windows\SysNative\drivers\eamonm.sys (ESET)
      DRV:64bit: - (k57nd60a) -- C:\Windows\SysNative\drivers\k57nd60a.sys (Broadcom Corporation)
      DRV:64bit: - (athr) -- C:\Windows\SysNative\drivers\athrx.sys (Atheros Communications, Inc.)
      DRV:64bit: - (amdkmdag) -- C:\Windows\SysNative\drivers\atipmdag.sys (ATI Technologies Inc.)
      DRV:64bit: - (amdkmdap) -- C:\Windows\SysNative\drivers\atikmpag.sys (Advanced Micro Devices, Inc.)
      DRV:64bit: - (sscdmdm) -- C:\Windows\SysNative\drivers\sscdmdm.sys (MCCI Corporation)
      DRV:64bit: - (sscdserd) -- C:\Windows\SysNative\drivers\sscdserd.sys (MCCI Corporation)
      DRV:64bit: - (sscdbus) -- C:\Windows\SysNative\drivers\sscdbus.sys (MCCI Corporation)
      DRV:64bit: - (sscdmdfl) -- C:\Windows\SysNative\drivers\sscdmdfl.sys (MCCI Corporation)
      DRV:64bit: - (RSUSBSTOR) -- C:\Windows\SysNative\drivers\RtsUStor.sys (Realtek Semiconductor Corp.)
      DRV:64bit: - (usbfilter) -- C:\Windows\SysNative\drivers\usbfilter.sys (Advanced Micro Devices)
      DRV:64bit: - (SynTP) -- C:\Windows\SysNative\drivers\SynTP.sys (Synaptics Incorporated)
      DRV:64bit: - (RTHDMIAzAudService) -- C:\Windows\SysNative\drivers\RtHDMIVX.sys (Realtek Semiconductor Corp.)
      DRV:64bit: - (ss_bmdm) -- C:\Windows\SysNative\drivers\ss_bmdm.sys (MCCI Corporation)
      DRV:64bit: - (ss_bbus) -- C:\Windows\SysNative\drivers\ss_bbus.sys (MCCI)
      DRV:64bit: - (ss_bmdfl) -- C:\Windows\SysNative\drivers\ss_bmdfl.sys (MCCI Corporation)
      DRV:64bit: - (AtiPcie) -- C:\Windows\SysNative\drivers\AtiPcie.sys (Advanced Micro Devices Inc.)
      DRV:64bit: - (amdsata) -- C:\Windows\SysNative\drivers\amdsata.sys (Advanced Micro Devices)
      DRV:64bit: - (amdxata) -- C:\Windows\SysNative\drivers\amdxata.sys (Advanced Micro Devices)
      DRV:64bit: - (amdsbs) -- C:\Windows\SysNative\drivers\amdsbs.sys (AMD Technologies Inc.)
      DRV:64bit: - (LSI_SAS2) -- C:\Windows\SysNative\drivers\lsi_sas2.sys (LSI Corporation)
      DRV:64bit: - (HpSAMD) -- C:\Windows\SysNative\drivers\HpSAMD.sys (Hewlett-Packard Company)
      DRV:64bit: - (Fs_Rec) -- C:\Windows\SysNative\drivers\fs_rec.sys (Microsoft Corporation)
      DRV:64bit: - (stexstor) -- C:\Windows\SysNative\drivers\stexstor.sys (Promise Technology)
      DRV:64bit: - (ROOTMODEM) -- C:\Windows\SysNative\drivers\rootmdm.sys (Microsoft Corporation)
      DRV:64bit: - (usbser) -- C:\Windows\SysNative\drivers\usbser.sys (Microsoft Corporation)
      DRV:64bit: - (ebdrv) -- C:\Windows\SysNative\drivers\evbda.sys (Broadcom Corporation)
      DRV:64bit: - (b06bdrv) -- C:\Windows\SysNative\drivers\bxvbda.sys (Broadcom Corporation)
      DRV:64bit: - (b57nd60a) -- C:\Windows\SysNative\drivers\b57nd60a.sys (Broadcom Corporation)
      DRV:64bit: - (hcw85cir) -- C:\Windows\SysNative\drivers\hcw85cir.sys (Hauppauge Computer Works, Inc.)
      DRV:64bit: - (mwlPSDVDisk) -- C:\Windows\SysNative\drivers\mwlPSDVDisk.sys (Egis Technology Inc.)
      DRV:64bit: - (mwlPSDFilter) -- C:\Windows\SysNative\drivers\mwlPSDFilter.sys (Egis Technology Inc.)
      DRV:64bit: - (mwlPSDNServ) -- C:\Windows\SysNative\drivers\mwlPSDNserv.sys (Egis Technology Inc.)
      DRV:64bit: - (NTIDrvr) -- C:\Windows\SysNative\drivers\NTIDrvr.sys (NewTech Infosystems, Inc.)
      DRV:64bit: - (UBHelper) -- C:\Windows\SysNative\drivers\UBHelper.sys (NewTech Infosystems Corporation)
      DRV:64bit: - (pccsmcfd) -- C:\Windows\SysNative\drivers\pccsmcfdx64.sys (Nokia)
      DRV - (TuneUpUtilitiesDrv) -- C:\Program Files (x86)\TuneUp Utilities 2011\TuneUpUtilitiesDriver64.sys (TuneUp Software)
      DRV - (WIMMount) -- C:\Windows\SysWOW64\drivers\wimmount.sys (Microsoft Corporation)
      DRV - (MSKSSRV) -- C:\Windows\SysWOW64\drivers\mskssrv.sys (Microsoft Corporation)
      DRV - (MSPCLOCK) -- C:\Windows\SysWOW64\drivers\mspclock.sys (Microsoft Corporation)


      ========== Standard Registry (SafeList) ==========


      ========== Internet Explorer ==========

      IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = iGoogle Redirect
      IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = iGoogle Redirect
      IE:64bit: - HKLM\..\SearchScopes,DefaultScope = {6A1806CD-94D4-4689-BA73-E35EA1EA9990}
      IE:64bit: - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
      IE:64bit: - HKLM\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7
      IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = about:blank
      IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
      IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = Google
      IE - HKLM\..\SearchScopes,DefaultScope = {67A2568C-7A0A-4EED-AECC-B5405DE63B64}
      IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
      IE - HKLM\..\SearchScopes\{67A2568C-7A0A-4EED-AECC-B5405DE63B64}: "URL" = http://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7ACAW
      IE - HKLM\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7


      IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

      IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0



      IE - HKU\S-1-5-21-958544824-3572393668-250251223-1000\SOFTWARE\Microsoft\Internet Explorer\Main,bProtector Start Page = Babylon Search
      IE - HKU\S-1-5-21-958544824-3572393668-250251223-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = about:blank
      IE - HKU\S-1-5-21-958544824-3572393668-250251223-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = Google
      IE - HKU\S-1-5-21-958544824-3572393668-250251223-1000\..\SearchScopes,bProtectorDefaultScope = {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}
      IE - HKU\S-1-5-21-958544824-3572393668-250251223-1000\..\SearchScopes,DefaultScope = {33BB0A4E-99AF-4226-BDF6-49120163DE86}
      IE - HKU\S-1-5-21-958544824-3572393668-250251223-1000\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC
      IE - HKU\S-1-5-21-958544824-3572393668-250251223-1000\..\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}: "URL" = http://search.babylon.com/?q={searchTerms}&affID=115290&tt=4312_5&babsrc=SP_ss&mntrId=aaf36384000000000000fa7bcb819687
      IE - HKU\S-1-5-21-958544824-3572393668-250251223-1000\..\SearchScopes\{67A2568C-7A0A-4EED-AECC-B5405DE63B64}: "URL" = http://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7ACAW_esMX462
      IE - HKU\S-1-5-21-958544824-3572393668-250251223-1000\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7
      IE - HKU\S-1-5-21-958544824-3572393668-250251223-1000\..\SearchScopes\{A584F926-B51B-404C-8B7D-9941F818042F}: "URL" = http://websearch.ask.com/redirect?client=ie&tb=ORJ&o=100000027&src=crm&q={searchTerms}&locale=es_ES&apn_ptnrs=U3&apn_dtid=OSJ000YYMX&apn_uid=AF23B53A-7C03-4689-856E-DB4A228BBC94&apn_sauid=6833960D-5F6A-4F35-A07B-2C12B27B9249
      IE - HKU\S-1-5-21-958544824-3572393668-250251223-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
      IE - HKU\S-1-5-21-958544824-3572393668-250251223-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = local;*.local
      IE - HKU\S-1-5-21-958544824-3572393668-250251223-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyServer" = 127.0.0.1:9666

      ========== FireFox ==========

      FF - prefs.js..browser.search.defaultenginename: "Google"
      FF - prefs.js..browser.search.defaultthis.engineName: "Google"
      FF - prefs.js..browser.search.defaulturl: "http://www.google.com/cse?cx=partner-pub-9609672093949948%3A2pdkvfm6u5y&ie=ISO-8859-1&q="
      FF - prefs.js..browser.search.order.1: "Google"
      FF - prefs.js..browser.search.selectedEngine: "Google"
      FF - prefs.js..browser.search.useDBForOrder: true
      FF - prefs.js..extensions.enabledAddons: {EDA7B1D7-F793-4e03-B074-E6F303317FB0}:1.2.7
      FF - prefs.js..browser.startup.homepage: "http://google.com"
      FF - prefs.js..keyword.URL: "http://google.com"


      FF:64bit: - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF64_11_2_202_233.dll File not found
      FF:64bit: - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\5.1.10411.0\npctrl.dll ( Microsoft Corporation)
      FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_2_202_235.dll ()
      FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found
      FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
      FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.7.2: C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
      FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.7.2: C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
      FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files (x86)\Microsoft Silverlight\5.1.10411.0\npctrl.dll ( Microsoft Corporation)
      FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll File not found
      FF - HKLM\Software\MozillaPlugins\@real.com/nppl3260;version=15.0.4.53: c:\program files (x86)\real\realplayer\Netscape6\nppl3260.dll (RealNetworks, Inc.)
      FF - HKLM\Software\MozillaPlugins\@real.com/nprjplug;version=15.0.4.53: c:\program files (x86)\real\realplayer\Netscape6\nprjplug.dll (RealNetworks, Inc.)
      FF - HKLM\Software\MozillaPlugins\@real.com/nprpchromebrowserrecordext;version=15.0.4.53: C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprpchromebrowserrecordext.dll File not found
      FF - HKLM\Software\MozillaPlugins\@real.com/nprphtml5videoshim;version=15.0.4.53: C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll File not found
      FF - HKLM\Software\MozillaPlugins\@real.com/nprpplugin;version=15.0.4.53: c:\program files (x86)\real\realplayer\Netscape6\nprpplugin.dll (RealPlayer)
      FF - HKLM\Software\MozillaPlugins\@RIM.com/WebSLLauncher,version=1.0: C:\Program Files (x86)\Common Files\Research In Motion\BBWebSLLauncher\NPWebSLLauncher.dll ()
      FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.0.3: C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
      FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
      FF - HKCU\Software\MozillaPlugins\@Skype Limited.com/Facebook Video Calling Plugin: C:\Users\DREASM-WORK\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll (Skype Limited)
      FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Users\DREASM-WORK\AppData\Local\Google\Update\1.3.21.123\npGoogleUpdate3.dll (Google Inc.)
      FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Users\DREASM-WORK\AppData\Local\Google\Update\1.3.21.123\npGoogleUpdate3.dll (Google Inc.)

      FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{97E22097-9A2F-45b1-8DAF-36AD648C7EF4}: C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext
      FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\[email protected]: C:\Program Files\Alwil Software\Avast5\WebRep\FF [2012/10/25 18:48:38 | 000,000,000 | ---D | M]
      FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 16.0.2\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2012/10/28 14:01:49 | 000,000,000 | ---D | M]
      FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 16.0.2\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins
      FF - HKEY_LOCAL_MACHINE\software\mozilla\Thunderbird\Extensions\\[email protected]: C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird [2012/01/14 10:58:22 | 000,000,000 | ---D | M]
      FF - HKEY_CURRENT_USER\software\mozilla\Firefox\Extensions\\{b64982b1-d112-42b5-b1e4-d3867c4533f8}: C:\ProgramData\Browser Manager\2.3.796.11\{16cdff19-861d-48e3-a751-d99a27784753}\FirefoxExtension [2012/10/24 15:54:44 | 000,000,000 | ---D | M]
      FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 16.0.2\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2012/10/28 14:01:49 | 000,000,000 | ---D | M]
      FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 16.0.2\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins

      [2012/03/27 17:25:33 | 000,000,000 | ---D | M] (No name found) -- C:\Users\DREASM-WORK\AppData\Roaming\mozilla\Extensions
      [2012/10/24 21:34:28 | 000,000,000 | ---D | M] (No name found) -- C:\Users\DREASM-WORK\AppData\Roaming\mozilla\Firefox\Profiles\0929arhc.default\extensions
      [2012/10/24 18:56:24 | 000,022,389 | ---- | M] () (No name found) -- C:\Users\DREASM-WORK\AppData\Roaming\mozilla\firefox\profiles\0929arhc.default\extensions\[email protected]
      [2012/10/15 21:59:27 | 000,091,556 | ---- | M] () (No name found) -- C:\Users\DREASM-WORK\AppData\Roaming\mozilla\firefox\profiles\0929arhc.default\extensions\{EDA7B1D7-F793-4e03-B074-E6F303317FB0}.xpi
      [2012/10/20 16:00:37 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\mozilla firefox\extensions
      [2012/10/28 14:01:48 | 000,261,600 | ---- | M] (Mozilla Foundation) -- C:\Program Files (x86)\mozilla firefox\components\browsercomps.dll
      [2012/09/09 14:17:54 | 000,002,465 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\bing.xml
      [2012/07/31 16:03:27 | 000,003,882 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\drae.xml
      [2012/06/29 21:31:02 | 000,001,143 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\eBay-es.xml
      [2012/10/20 16:00:45 | 000,002,058 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\twitter.xml
      [2012/06/29 21:31:02 | 000,001,178 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\wikipedia-es.xml
      [2012/06/29 21:31:02 | 000,001,102 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\yahoo-es.xml

      ========== Chrome ==========

      CHR - homepage: Google
      CHR - default_search_provider: Google (Enabled)
      CHR - default_search_provider: search_url = {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}sourceid=chrome&ie={inputEncoding}
      CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client=chrome&hl={language}&q={searchTerms}&sugkey={google:suggestAPIKeyParameter}
      CHR - homepage: Google
      CHR - plugin: Shockwave Flash (Enabled) = C:\Users\DREASM-WORK\AppData\Local\Google\Chrome\Application\23.0.1271.64\PepperFlash\pepflashplayer.dll
      CHR - plugin: Chrome Remote Desktop Viewer (Enabled) = internal-remoting-viewer
      CHR - plugin: Native Client (Enabled) = C:\Users\DREASM-WORK\AppData\Local\Google\Chrome\Application\23.0.1271.64\ppGoogleNaClPluginChrome.dll
      CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Users\DREASM-WORK\AppData\Local\Google\Chrome\Application\23.0.1271.64\pdf.dll
      CHR - plugin: Application Manager (Enabled) = C:\Users\DREASM-WORK\AppData\Local\Google\Chrome\User Data\Default\Extensions\pgafcinpmmpklohkojmllohdhomoefph\1.0_0\spext.dll
      CHR - plugin: Adobe Acrobat (Enabled) = C:\Program Files (x86)\Adobe\Reader 11.0\Reader\Browser\nppdf32.dll
      CHR - plugin: RIM Handheld Application Loader (Enabled) = C:\Program Files (x86)\Common Files\Research In Motion\BBWebSLLauncher\NPWebSLLauncher.dll
      CHR - plugin: Java(TM) Platform SE 7 U7 (Enabled) = C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll
      CHR - plugin: VLC Web Plugin (Enabled) = C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
      CHR - plugin: iTunes Application Detector (Enabled) = C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll
      CHR - plugin: Facebook Video Calling Plugin (Enabled) = C:\Users\DREASM-WORK\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll
      CHR - plugin: Google Update (Enabled) = C:\Users\DREASM-WORK\AppData\Local\Google\Update\1.3.21.123\npGoogleUpdate3.dll
      CHR - plugin: Shockwave Flash (Enabled) = C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_2_202_235.dll
      CHR - plugin: Java Deployment Toolkit 7.0.70.11 (Enabled) = C:\Windows\SysWOW64\npDeployJava1.dll
      CHR - plugin: Silverlight Plug-In (Enabled) = c:\Program Files (x86)\Microsoft Silverlight\5.1.10411.0\npctrl.dll
      CHR - plugin: RealPlayer(tm) G2 LiveConnect-Enabled Plug-In (32-bit) (Enabled) = c:\program files (x86)\real\realplayer\Netscape6\nppl3260.dll
      CHR - plugin: RealJukebox NS Plugin (Enabled) = c:\program files (x86)\real\realplayer\Netscape6\nprjplug.dll
      CHR - plugin: RealPlayer Download Plugin (Enabled) = c:\program files (x86)\real\realplayer\Netscape6\nprpplugin.dll
      CHR - Extension: avast! WebRep = C:\Users\DREASM-WORK\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\7.0.1473_0\
      CHR - Extension: Settings Protector = C:\Users\DREASM-WORK\AppData\Local\Google\Chrome\User Data\Default\Extensions\pgafcinpmmpklohkojmllohdhomoefph\1.0_0\

      O1 HOSTS File: ([2012/10/24 20:39:39 | 000,001,107 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
      O1 - Hosts: 127.0.0.1 adobeereg.com
      O1 - Hosts: 127.0.0.1 Registration
      O1 - Hosts: 127.0.0.1 activate.adobe.com
      O1 - Hosts: 127.0.0.1 activate-sea.adobe.com
      O1 - Hosts: 127.0.0.1 activate-sjc0.adobe.com
      O1 - Hosts: 127.0.0.1 wwis-dubc1-vip60.adobe.com
      O2:64bit: - BHO: (AC-Pro) - {0FB6A909-6086-458F-BD92-1F8EE10042A0} - C:\Program Files (x86)\AutocompletePro\64\AutocompletePro64.dll (SimplyGen)
      O2:64bit: - BHO: (avast! WebRep) - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Archivos de programa\Alwil Software\Avast5\aswWebRepIE64.dll (AVAST Software)
      O2 - BHO: (no name) - {3049C3E9-B461-4BC5-8870-4C09146192CA} - No CLSID value found.
      O2 - BHO: (Canon Easy-WebPrint EX BHO) - {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll (CANON INC.)
      O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
      O2 - BHO: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Archivos de programa\Alwil Software\Avast5\aswWebRepIE.dll (AVAST Software)
      O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
      O3:64bit: - HKLM\..\Toolbar: (avast! WebRep) - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Archivos de programa\Alwil Software\Avast5\aswWebRepIE64.dll (AVAST Software)
      O3:64bit: - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
      O3 - HKLM\..\Toolbar: (Canon Easy-WebPrint EX) - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll (CANON INC.)
      O3 - HKLM\..\Toolbar: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Archivos de programa\Alwil Software\Avast5\aswWebRepIE.dll (AVAST Software)
      O3 - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
      O3 - HKU\S-1-5-21-958544824-3572393668-250251223-1000\..\Toolbar\WebBrowser: (Canon Easy-WebPrint EX) - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll (CANON INC.)
      O4:64bit: - HKLM..\Run: [Acer ePower Management] C:\Archivos de programa\Acer\Acer ePower Management\ePowerTray.exe (Acer Incorporated)
      O4:64bit: - HKLM..\Run: [egui] C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe (ESET)
      O4:64bit: - HKLM..\Run: [mwlDaemon] C:\Program Files (x86)\EgisTec MyWinLocker\x86\mwlDaemon.exe (Egis Technology Inc.)
      O4:64bit: - HKLM..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Realtek Semiconductor)
      O4 - HKLM..\Run: [APSDaemon] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc.)
      O4 - HKLM..\Run: [avast5] C:\Program Files\Alwil Software\Avast5\avastUI.exe (AVAST Software)
      O4 - HKLM..\Run: [BackupManagerTray] C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\BackupManagerTray.exe (NewTech Infosystems, Inc.)
      O4 - HKLM..\Run: [EgisTecPMMUpdate] C:\Program Files (x86)\EgisTec IPS\PmmUpdate.exe (Egis Technology Inc.)
      O4 - HKLM..\Run: [EgisUpdate] C:\Program Files (x86)\EgisTec IPS\EgisUpdate.exe (Egis Technology Inc.)
      O4 - HKLM..\Run: [LManager] C:\Program Files (x86)\Launch Manager\LManager.exe (Dritek System Inc.)
      O4 - HKLM..\Run: [PlusService] C:\Program Files (x86)\Yuna Software\Messenger Plus!\PlusService.exe (Yuna Software)
      O4 - HKLM..\Run: [RIMBBLaunchAgent.exe] C:\Program Files (x86)\Common Files\Research In Motion\USB Drivers\RIMBBLaunchAgent.exe (Research In Motion Limited)
      O4 - HKLM..\Run: [StartCCC] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.)
      O4 - HKLM..\Run: [SuiteTray] C:\Program Files (x86)\EgisTec MyWinLockerSuite\x86\SuiteTray.exe (Egis Technology Inc.)
      O4 - HKLM..\Run: [USB Antivirus] C:\Program Files (x86)\USB Disk Security\USBGuard.exe (Zbshareware Lab)
      O4 - HKU\S-1-5-19..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
      O4 - HKU\S-1-5-20..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
      O4 - HKLM..\RunOnce: [UpdTuto100SlmbaHP.exe] C:\Users\DREASM-WORK\AppData\Local\tutoriales100_mx_3\UpdTuto100SlmbaHP.exe ()
      O4 - HKU\S-1-5-19..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe File not found
      O4 - HKU\S-1-5-20..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe File not found
      O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
      O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
      O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
      O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
      O8:64bit: - Extra context menu item: Descargar con Mipony - C:\Program Files (x86)\MiPony\Browser\IEContext.htm ()
      O8:64bit: - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000 File not found
      O8:64bit: - Extra context menu item: Google Sidewiki... - res://C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_96D6FF0C6D236BF8.dll/cmsidewiki.html File not found
      O8 - Extra context menu item: Descargar con Mipony - C:\Program Files (x86)\MiPony\Browser\IEContext.htm ()
      O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000 File not found
      O8 - Extra context menu item: Google Sidewiki... - res://C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_96D6FF0C6D236BF8.dll/cmsidewiki.html File not found
      O9 - Extra Button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll (Microsoft Corporation)
      O9 - Extra 'Tools' menuitem : S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll (Microsoft Corporation)
      O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL (Microsoft Corporation)
      O10:64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000007 [] - C:\Archivos de programa\Bonjour\mdnsNSP.dll (Apple Inc.)
      O10 - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Program Files (x86)\Bonjour\mdnsNSP.dll (Apple Inc.)
      O1364bit: - gopher Prefix: missing
      O13 - gopher Prefix: missing
      O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jin...ndows-i586.cab (Reg Error: Value error.)
      O16 - DPF: {CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jin...ndows-i586.cab (Java Plug-in 1.6.0_31)
      O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jin...ndows-i586.cab (Java Plug-in 10.7.2)
      O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.254
      O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{162A17D0-28DA-42AF-B433-0B24DAA2557E}: DhcpNameServer = 192.168.1.254
      O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{19BDDDF4-FC84-43F6-B9A5-BB32AFB7F18A}: DhcpNameServer = 192.168.1.254
      O18:64bit: - Protocol\Handler\livecall - No CLSID value found
      O18:64bit: - Protocol\Handler\ms-help - No CLSID value found
      O18:64bit: - Protocol\Handler\msnim - No CLSID value found
      O18 - Protocol\Handler\livecall {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~2\WIC4A1~1\MESSEN~1\MSGRAP~1.DLL (Microsoft Corporation)
      O18 - Protocol\Handler\msnim {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~2\WIC4A1~1\MESSEN~1\MSGRAP~1.DLL (Microsoft Corporation)
      O18:64bit: - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\Archivos de programa\Common Files\Microsoft Shared\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)
      O18 - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\PROGRA~2\COMMON~1\MICROS~1\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)
      O20 - AppInit_DLLs: (c:\progra~3\browse~1\23796~1.11\{16cdf~1\browse~1.dll) - c:\ProgramData\Browser Manager\2.3.796.11\{16cdff19-861d-48e3-a751-d99a27784753}\browsemngr.dll ()
      O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
      O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
      O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
      O20 - HKLM Winlogon: UserInit - (userinit.exe) - C:\Windows\SysWow64\userinit.exe (Microsoft Corporation)
      O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
      O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
      O32 - HKLM CDRom: AutoRun - 1
      O33 - MountPoints2\{7caf572a-c449-11e1-b87a-705ab6e30466}\Shell - "" = AutoRun
      O33 - MountPoints2\{7caf572a-c449-11e1-b87a-705ab6e30466}\Shell\AutoRun\command - "" = E:\Startme.exe
      O33 - MountPoints2\{cf4e3dc9-4db5-11e1-b7e9-705ab6e30466}\Shell - "" = AutoRun
      O33 - MountPoints2\{cf4e3dc9-4db5-11e1-b7e9-705ab6e30466}\Shell\AutoRun\command - "" = E:\LaunchU3.exe -a
      O33 - MountPoints2\{d14be198-091e-11e2-ab41-705ab6e30466}\Shell - "" = AutoRun
      O33 - MountPoints2\{d14be198-091e-11e2-ab41-705ab6e30466}\Shell\AutoRun\command - "" = E:\KODAK_Camera_Setup_App.exe
      O33 - MountPoints2\{e27a07b0-4ace-11e1-b07e-705ab6e30466}\Shell - "" = AutoRun
      O33 - MountPoints2\{e27a07b0-4ace-11e1-b07e-705ab6e30466}\Shell\AutoRun\command - "" = E:\start.exe
      O33 - MountPoints2\E\Shell - "" = AutoRun
      O33 - MountPoints2\E\Shell\AutoRun\command - "" = E:\LaunchU3.exe -a
      O34 - HKLM BootExecute: (autocheck autochk *)
      O35:64bit: - HKLM\..comfile [open] -- "%1" %*
      O35:64bit: - HKLM\..exefile [open] -- "%1" %*
      O35 - HKLM\..comfile [open] -- "%1" %*
      O35 - HKLM\..exefile [open] -- "%1" %*
      O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
      O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
      O37 - HKLM\...com [@ = comfile] -- "%1" %*
      O37 - HKLM\...exe [@ = exefile] -- "%1" %*
      O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
      O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
      O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)

      NetSvcs:64bit: UxTuneUp - C:\Windows\SysNative\uxtuneup.dll (TuneUp Software)
      NetSvcs:64bit: AppMgmt - C:\Windows\SysNative\appmgmts.dll (Microsoft Corporation)

      MsConfig:64bit - StartUpReg: CanonMyPrinter - hkey= - key= - C:\Program Files\Canon\MyPrinter\BJMyPrt.exe (CANON INC.)
      MsConfig:64bit - StartUpReg: CanonSolutionMenu - hkey= - key= - C:\Program Files (x86)\Canon\SolutionMenu\CNSLMAIN.exe (CANON INC.)
      MsConfig:64bit - StartUpReg: Facebook Update - hkey= - key= - C:\Users\DREASM-WORK\AppData\Local\Facebook\Update\FacebookUpdate.exe (Facebook Inc.)
      MsConfig:64bit - StartUpReg: iTunesHelper - hkey= - key= - C:\Program Files (x86)\iTunes\iTunesHelper.exe (Apple Inc.)
      MsConfig:64bit - StartUpReg: NortonOnlineBackupReminder - hkey= - key= - C:\Program Files (x86)\Symantec\Norton Online Backup\Activation\NobuActivation.exe (Symantec Corporation)

      CREATERESTOREPOINT
      System Restore Service not available.

      ========== Files/Folders - Created Within 90 Days ==========

      [2012/11/12 17:12:49 | 000,000,000 | ---D | C] -- C:\Users\DREASM-WORK\AppData\Roaming\Malwarebytes
      [2012/11/12 17:12:19 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware
      [2012/11/12 17:12:17 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
      [2012/11/12 17:12:13 | 000,025,928 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\SysNative\drivers\mbam.sys
      [2012/11/12 17:12:13 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware
      [2012/11/10 15:36:17 | 000,036,864 | ---- | C] (NirSoft) -- C:\Windows\nircmd.exe
      [2012/11/09 12:15:24 | 000,000,000 | ---D | C] -- C:\Users\DREASM-WORK\Documents\MPLAB_IDE_v8_56
      [2012/11/05 01:38:17 | 000,000,000 | ---D | C] -- C:\Users\DREASM-WORK\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Karnaugh Minimizer Pro
      [2012/11/05 01:38:17 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Karnaugh Minimizer Pro
      [2012/10/30 09:19:10 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
      [2012/10/26 15:50:46 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\MSXML 4.0
      [2012/10/25 18:50:25 | 000,054,072 | ---- | C] (AVAST Software) -- C:\Windows\SysNative\drivers\aswRdr2.sys
      [2012/10/25 18:49:30 | 000,984,144 | ---- | C] (AVAST Software) -- C:\Windows\SysNative\drivers\aswSnx.sys
      [2012/10/25 18:49:28 | 000,285,328 | ---- | C] (AVAST Software) -- C:\Windows\SysNative\aswBoot.exe
      [2012/10/25 18:48:22 | 000,041,224 | ---- | C] (AVAST Software) -- C:\Windows\avastSS.scr
      [2012/10/25 0837 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\avast! Free Antivirus
      [2012/10/25 0836 | 000,025,232 | ---- | C] (AVAST Software) -- C:\Windows\SysNative\drivers\aswFsBlk.sys
      [2012/10/25 0835 | 000,364,096 | ---- | C] (AVAST Software) -- C:\Windows\SysNative\drivers\aswSP.sys
      [2012/10/25 0829 | 000,028,752 | ---- | C] (ALWIL Software) -- C:\Windows\SysNative\drivers\aswRdr.sys
      [2012/10/25 0828 | 000,059,728 | ---- | C] (AVAST Software) -- C:\Windows\SysNative\drivers\aswTdi.sys
      [2012/10/25 0826 | 000,071,600 | ---- | C] (AVAST Software) -- C:\Windows\SysNative\drivers\aswMonFlt.sys
      [2012/10/25 08:09:52 | 000,227,648 | ---- | C] (AVAST Software) -- C:\Windows\SysWow64\aswBoot.exe
      [2012/10/25 08:09:49 | 000,000,000 | ---D | C] -- C:\ProgramData\Alwil Software
      [2012/10/25 08:09:49 | 000,000,000 | ---D | C] -- C:\Program Files\Alwil Software
      [2012/10/24 21:41:25 | 000,000,000 | ---D | C] -- C:\Users\DREASM-WORK\AppData\Local\tutoriales100_mx_3
      [2012/10/24 21:41:24 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Tutoriales100
      [2012/10/24 21:40:30 | 000,000,000 | ---D | C] -- C:\Users\DREASM-WORK\AppData\Roaming\IObit
      [2012/10/24 21:40:09 | 001,699,712 | ---- | C] (IObit) -- C:\Users\DREASM-WORK\Desktop\IObit Uninstaller.exe
      [2012/10/24 17:56:28 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
      [2012/10/24 17:55:42 | 000,000,000 | ---D | C] -- C:\Program Files\iPod
      [2012/10/24 17:55:41 | 000,000,000 | ---D | C] -- C:\Program Files\iTunes
      [2012/10/24 17:55:41 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\iTunes
      [2012/10/24 17:27:52 | 000,000,000 | ---D | C] -- C:\Users\DREASM-WORK\AppData\Roaming\DefaultTab
      [2012/10/24 17:25:53 | 000,000,000 | ---D | C] -- C:\Users\DREASM-WORK\AppData\Roaming\URSoft
      [2012/10/24 17:25:43 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Your Uninstaller! 7
      [2012/10/24 17:25:36 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Your Uninstaller! 7
      [2012/10/24 17:23:56 | 006,552,560 | ---- | C] (URSoft, Inc. ) -- C:\Users\DREASM-WORK\Desktop\yusetup7.exe
      [2012/10/24 17:08:34 | 000,000,000 | ---D | C] -- C:\ProgramData\{93E26451-CD9A-43A5-A2FA-C42392EA4001}
      [2012/10/24 15:54:46 | 000,000,000 | ---D | C] -- C:\Users\DREASM-WORK\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Browser Manager
      [2012/10/24 15:54:43 | 000,000,000 | ---D | C] -- C:\ProgramData\Browser Manager
      [2012/10/24 10:39:00 | 000,000,000 | ---D | C] -- C:\Users\DREASM-WORK\AppData\Roaming\redsn0w
      [2012/10/23 19:07:36 | 000,000,000 | ---D | C] -- C:\Users\DREASM-WORK\.shsh
      [2012/10/23 18:58:45 | 000,000,000 | ---D | C] -- C:\Users\DREASM-WORK\AppData\Local\Apple Computer
      [2012/10/23 18:58:44 | 000,000,000 | ---D | C] -- C:\Users\DREASM-WORK\AppData\Roaming\Apple Computer
      [2012/10/23 18:56:24 | 000,000,000 | ---D | C] -- C:\ProgramData\Apple Computer
      [2012/10/23 18:56:24 | 000,000,000 | ---D | C] -- C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
      [2012/10/23 18:55:40 | 000,000,000 | ---D | C] -- C:\Users\DREASM-WORK\AppData\Local\Apple
      [2012/10/23 18:55:36 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Apple Software Update
      [2012/10/23 18:55:04 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Apple
      [2012/10/23 18:54:31 | 000,000,000 | ---D | C] -- C:\Program Files\Bonjour
      [2012/10/23 18:54:31 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Bonjour
      [2012/10/23 18:53:42 | 000,000,000 | ---D | C] -- C:\ProgramData\Apple
      [2012/10/23 18:53:42 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Apple
      [2012/10/20 16:00:33 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Mozilla Firefox
      [2012/10/13 19:48:41 | 000,000,000 | ---D | C] -- C:\Users\DREASM-WORK\AppData\Roaming\Media Player Classic
      [2012/10/13 19:46:23 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack
      [2012/10/13 19:46:11 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\K-Lite Codec Pack
      [2012/10/12 12:29:43 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Works
      [2012/10/12 12:29:30 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Visual Studio
      [2012/10/12 12:29:21 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Visual Studio 8
      [2012/10/12 09:39:07 | 000,000,000 | ---D | C] -- C:\Users\DREASM-WORK\Desktop\programs
      [2012/10/11 20:41:44 | 000,000,000 | ---D | C] -- C:\ProgramData\Eltima Software
      [2012/10/11 20:41:17 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Eltima Software
      [2012/10/11 20:41:15 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Eltima Software
      [2012/10/11 20:16:57 | 000,000,000 | ---D | C] -- C:\Users\DREASM-WORK\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VideoLAN
      [2012/10/11 20:16:54 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\v9Soft
      [2012/10/02 09:22:38 | 000,000,000 | -HSD | C] -- C:\found.000
      [2012/09/24 23:14:20 | 000,000,000 | ---D | C] -- C:\Users\DREASM-WORK\AppData\Roaming\Real
      [2012/09/24 22:44:25 | 000,000,000 | ---D | C] -- C:\Users\DREASM-WORK\AppData\Roaming\Template
      [2012/09/24 11:37:25 | 000,171,520 | ---- | C] (Europress Software) -- C:\Windows\SysWow64\cncs32.dll
      [2012/09/24 11:37:25 | 000,000,000 | ---D | C] -- C:\Windows\mar-2-20
      [2012/09/24 11:37:25 | 000,000,000 | ---D | C] -- C:\Users\DREASM-WORK\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Jeux
      [2012/09/24 11:21:40 | 000,000,000 | ---D | C] -- C:\Users\DREASM-WORK\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Super Mario Epic
      [2012/09/19 21:09:52 | 000,000,000 | ---D | C] -- C:\Users\DREASM-WORK\Documents\khg
      [2012/09/18 19:50:26 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Java
      [2012/09/07 13:45:07 | 000,000,000 | ---D | C] -- C:\Users\DREASM-WORK\AppData\Roaming\replacer
      [2012/09/07 13:32:38 | 000,000,000 | ---D | C] -- C:\Users\DREASM-WORK\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Moo0
      [2012/09/07 13:25:54 | 000,000,000 | ---D | C] -- C:\Windows\W7SBC
      [2012/09/07 13:25:36 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\AutocompletePro
      [2012/09/07 13:25:27 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Moo0
      [2012/09/07 12:38:58 | 000,036,160 | ---- | C] (TuneUp Software) -- C:\Windows\SysNative\uxtuneup.dll
      [2012/09/07 12:38:58 | 000,029,504 | ---- | C] (TuneUp Software) -- C:\Windows\SysWow64\uxtuneup.dll
      [2012/09/07 12:38:58 | 000,025,920 | ---- | C] (TuneUp Software) -- C:\Windows\SysNative\authuitu.dll
      [2012/09/07 12:38:57 | 000,021,312 | ---- | C] (TuneUp Software) -- C:\Windows\SysWow64\authuitu.dll
      [2012/09/04 17:59:58 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kroll Ontrack
      [2012/09/04 17:59:44 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Kroll Ontrack
      [2012/08/31 19:17:26 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\KM555
      [7 C:\Windows\SysWow64\*.tmp files -> C:\Windows\SysWow64\*.tmp -> ]

      ========== Files - Modified Within 90 Days ==========

      [2012/11/24 16:49:04 | 000,001,070 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-958544824-3572393668-250251223-1000UA.job
      [2012/11/24 15:23:16 | 000,001,090 | ---- | M] () -- C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-958544824-3572393668-250251223-1000UA.job
      [2012/11/24 14:59:55 | 000,013,936 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
      [2012/11/24 14:59:55 | 000,013,936 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
      [2012/11/24 14:52:19 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
      [2012/11/24 14:52:14 | 1405,272,064 | -HS- | M] () -- C:\hiberfil.sys
      [2012/11/23 21:40:10 | 001,852,900 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
      [2012/11/23 21:40:10 | 000,810,566 | ---- | M] () -- C:\Windows\SysNative\perfh00A.dat
      [2012/11/23 21:40:10 | 000,717,228 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
      [2012/11/23 21:40:10 | 000,182,124 | ---- | M] () -- C:\Windows\SysNative\perfc00A.dat
      [2012/11/23 21:40:10 | 000,145,250 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
      [2012/11/23 09:49:01 | 000,001,018 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-958544824-3572393668-250251223-1000Core.job
      [2012/11/21 23:28:43 | 000,019,399 | ---- | M] () -- C:\Users\DREASM-WORK\Desktop\155916_382945208456222_2087149514_n.jpg
      [2012/11/19 18:23:05 | 000,001,068 | ---- | M] () -- C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-958544824-3572393668-250251223-1000Core.job
      [2012/11/19 09:55:57 | 000,090,332 | ---- | M] () -- C:\Users\DREASM-WORK\Documents\ph_index_01.jpg
      [2012/11/19 00:08:19 | 001,241,541 | ---- | M] () -- C:\Users\DREASM-WORK\Documents\SA Tema 05 Sensores optoelectronicos (1).pdf
      [2012/11/13 10:09:33 | 000,045,568 | ---- | M] () -- C:\Users\DREASM-WORK\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
      [2012/11/13 09:40:34 | 000,000,017 | ---- | M] () -- C:\Users\DREASM-WORK\AppData\Local\resmon.resmoncfg
      [2012/11/12 17:12:20 | 000,001,113 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
      [2012/11/09 11:20:41 | 000,002,132 | ---- | M] () -- C:\Users\DREASM-WORK\Documents\inductor.TSC
      [2012/11/09 01:41:29 | 000,422,431 | ---- | M] () -- C:\Users\DREASM-WORK\Documents\DS005704lm311.pdf
      [2012/11/09 0124 | 000,031,704 | ---- | M] () -- C:\Users\DREASM-WORK\Desktop\no mams.png
      [2012/11/07 01:51:14 | 2240,512,000 | ---- | M] () -- C:\Users\DREASM-WORK\Documents\matlabx64.iso
      [2012/11/06 19:38:33 | 003,011,928 | ---- | M] () -- C:\Users\DREASM-WORK\Documents\k-370-instr.pdf
      [2012/11/05 01:44:41 | 000,001,218 | ---- | M] () -- C:\Users\Public\Desktop\Karnaugh Minimizer.lnk
      [2012/10/30 09:19:11 | 000,001,070 | ---- | M] () -- C:\Users\Public\Desktop\VLC media player.lnk
      [2012/10/29 22:23:59 | 000,325,112 | ---- | M] () -- C:\Users\DREASM-WORK\Documents\91363_DS.pdf
      [2012/10/29 22:23:36 | 000,396,989 | ---- | M] () -- C:\Users\DREASM-WORK\Documents\91494_DS.pdf
      [2012/10/29 22:19:23 | 000,729,659 | ---- | M] () -- C:\Users\DREASM-WORK\Documents\22v10.pdf
      [2012/10/25 18:49:29 | 000,000,000 | ---- | M] () -- C:\Windows\SysWow64\config.nt
      [2012/10/25 0837 | 000,001,856 | ---- | M] () -- C:\Users\Public\Desktop\avast! Free Antivirus.lnk
      [2012/10/24 21:40:23 | 001,699,712 | ---- | M] (IObit) -- C:\Users\DREASM-WORK\Desktop\IObit Uninstaller.exe
      [2012/10/24 20:39:39 | 000,001,107 | ---- | M] () -- C:\Windows\SysNative\drivers\etc\hosts
      [2012/10/24 20:39:39 | 000,001,106 | ---- | M] () -- C:\Windows\SysNative\drivers\etc\hosts.umbrella
      [2012/10/24 17:56:28 | 000,001,787 | ---- | M] () -- C:\Users\Public\Desktop\iTunes.lnk
      [2012/10/24 17:25:44 | 000,001,076 | ---- | M] () -- C:\Users\DREASM-WORK\Desktop\Your Unin-staller!.lnk
      [2012/10/24 17:24:59 | 006,552,560 | ---- | M] (URSoft, Inc. ) -- C:\Users\DREASM-WORK\Desktop\yusetup7.exe
      [2012/10/23 11:49:43 | 000,396,989 | ---- | M] () -- C:\Users\DREASM-WORK\Documents\91494_DS22v10.pdf
      [2012/10/23 11:36:04 | 000,533,183 | ---- | M] () -- C:\Users\DREASM-WORK\Documents\GAL22V10.pdf
      [2012/10/23 04:18:31 | 000,984,144 | ---- | M] (AVAST Software) -- C:\Windows\SysNative\drivers\aswSnx.sys
      [2012/10/23 04:18:31 | 000,364,096 | ---- | M] (AVAST Software) -- C:\Windows\SysNative\drivers\aswSP.sys
      [2012/10/23 04:18:31 | 000,059,728 | ---- | M] (AVAST Software) -- C:\Windows\SysNative\drivers\aswTdi.sys
      [2012/10/23 04:18:30 | 000,071,600 | ---- | M] (AVAST Software) -- C:\Windows\SysNative\drivers\aswMonFlt.sys
      [2012/10/23 04:18:30 | 000,025,232 | ---- | M] (AVAST Software) -- C:\Windows\SysNative\drivers\aswFsBlk.sys
      [2012/10/23 04:17:48 | 000,041,224 | ---- | M] (AVAST Software) -- C:\Windows\avastSS.scr
      [2012/10/23 04:17:38 | 000,227,648 | ---- | M] (AVAST Software) -- C:\Windows\SysWow64\aswBoot.exe
      [2012/10/23 04:17:13 | 000,285,328 | ---- | M] (AVAST Software) -- C:\Windows\SysNative\aswBoot.exe
      [2012/10/22 15:11:31 | 000,002,023 | ---- | M] () -- C:\Users\Public\Desktop\Adobe Reader XI.lnk
      [2012/10/19 23:42:56 | 000,234,569 | ---- | M] () -- C:\Users\DREASM-WORK\Desktop\detector.png
      [2012/10/15 10:59:28 | 000,054,072 | ---- | M] (AVAST Software) -- C:\Windows\SysNative\drivers\aswRdr2.sys
      [2012/10/13 19:44:40 | 020,816,132 | ---- | M] ( ) -- C:\Users\DREASM-WORK\Desktop\K-Lite_Codec_Pack_920_Full.exe
      [2012/10/12 09:38:01 | 000,439,048 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT
      [2012/10/04 08:51:02 | 001,895,020 | ---- | M] () -- C:\Users\DREASM-WORK\Documents\Prac1_CEF_09_10.pdf
      [2012/10/01 20:45:09 | 000,513,558 | ---- | M] () -- C:\Users\DREASM-WORK\Documents\relesdocumentacion6.pdf
      [2012/10/01 20:43:51 | 000,804,292 | ---- | M] () -- C:\Users\DREASM-WORK\Documents\Optoelectronica.pdf
      [2012/10/01 20:37:42 | 000,136,670 | ---- | M] () -- C:\Users\DREASM-WORK\Documents\relays solido.png
      [2012/09/29 19:54:26 | 000,025,928 | ---- | M] (Malwarebytes Corporation) -- C:\Windows\SysNative\drivers\mbam.sys
      [2012/09/24 22:46:39 | 000,089,560 | ---- | M] () -- C:\Windows\extWall.jar
      [2012/09/24 22:43:55 | 000,000,000 | ---- | M] () -- C:\Users\DREASM-WORK\AppData\Roaming\wklnhst.dat
      [2012/09/24 11:37:25 | 000,171,520 | ---- | M] (Europress Software) -- C:\Windows\SysWow64\cncs32.dll
      [2012/09/24 11:37:25 | 000,000,018 | ---- | M] () -- C:\Windows\gfact.ini
      [2012/09/22 20:58:06 | 000,501,549 | ---- | M] () -- C:\Users\DREASM-WORK\Documents\UNIDAD3TEMA12.pdf
      [2012/09/22 20:48:59 | 000,513,558 | ---- | M] () -- C:\Users\DREASM-WORK\Documents\documentacion6.pdf
      [2012/09/18 01:28:59 | 000,005,641 | ---- | M] () -- C:\Users\DREASM-WORK\Documents\contador salteado.lvw
      [2012/09/14 21:21:39 | 000,006,922 | ---- | M] () -- C:\Users\DREASM-WORK\Documents\contador salteado.TSC
      [2012/09/14 03:15:29 | 000,005,658 | ---- | M] () -- C:\Users\DREASM-WORK\Documents\estados mapeados.TSC
      [2012/09/12 04:15:54 | 000,007,811 | ---- | M] () -- C:\Users\DREASM-WORK\Documents\potencia.TSC
      [2012/09/11 22:28:49 | 000,404,680 | ---- | M] () -- C:\Users\DREASM-WORK\Documents\inteses.xps
      [2012/09/09 23:27:39 | 000,130,808 | ---- | M] () -- C:\Users\DREASM-WORK\Documents\Apunte-Unidad-4-Interes-Simmple-y-Compuesto.pdf
      [2012/09/07 10:46:22 | 000,145,680 | ---- | M] () -- C:\vesamenu.c32
      [2012/09/07 10:46:22 | 000,000,159 | ---- | M] () -- C:\syslinux.cfg
      [2012/09/04 17:59:56 | 000,001,137 | ---- | M] () -- C:\Windows\SysWow64\mapisvc.inf
      [2012/09/03 01:03:51 | 000,005,448 | ---- | M] () -- C:\Users\DREASM-WORK\Documents\mapeado.lvw
      [2012/09/02 17:13:19 | 000,006,129 | ---- | M] () -- C:\Users\DREASM-WORK\Documents\contador mapeado a 0.TSC
      [2012/09/02 00:09:18 | 000,006,818 | ---- | M] () -- C:\Users\DREASM-WORK\Documents\contador mapeado.lvw
      [2012/08/31 13:51:04 | 000,065,536 | ---- | M] () -- C:\Windows\IFinst27.exe
      [2012/08/29 05:49:05 | 000,005,793 | ---- | M] () -- C:\Users\DREASM-WORK\Documents\practicas doc 3.1.TSC
      [2012/08/29 05:48:49 | 000,005,136 | ---- | M] () -- C:\Users\DREASM-WORK\Documents\practica doc3.TSC
      [2012/08/29 05:48:27 | 000,006,515 | ---- | M] () -- C:\Users\DREASM-WORK\Documents\practica doc.lvw
      [2012/08/29 05:48:14 | 000,000,403 | ---- | M] () -- C:\Users\DREASM-WORK\Documents\practica doc 3.lvw
      [2012/08/29 05:46:01 | 000,013,375 | ---- | M] () -- C:\Users\DREASM-WORK\Documents\practica3-4.lvw
      [7 C:\Windows\SysWow64\*.tmp files -> C:\Windows\SysWow64\*.tmp -> ]

      ========== Files Created - No Company Name ==========

      [2012/11/21 23:28:41 | 000,019,399 | ---- | C] () -- C:\Users\DREASM-WORK\Desktop\155916_382945208456222_2087149514_n.jpg
      [2012/11/19 09:55:56 | 000,090,332 | ---- | C] () -- C:\Users\DREASM-WORK\Documents\ph_index_01.jpg
      [2012/11/19 00:08:18 | 001,241,541 | ---- | C] () -- C:\Users\DREASM-WORK\Documents\SA Tema 05 Sensores optoelectronicos (1).pdf
      [2012/11/13 09:40:34 | 000,000,017 | ---- | C] () -- C:\Users\DREASM-WORK\AppData\Local\resmon.resmoncfg
      [2012/11/12 17:12:20 | 000,001,113 | ---- | C] () -- C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
      [2012/11/10 15:36:17 | 000,069,660 | ---- | C] () -- C:\Windows\Fart.exe
      [2012/11/10 15:36:17 | 000,022,528 | ---- | C] () -- C:\Windows\AT-Uninstall.exe
      [2012/11/10 15:36:17 | 000,011,776 | ---- | C] () -- C:\Windows\Colous.exe
      [2012/11/09 12:17:30 | 105,472,657 | ---- | C] () -- C:\Users\DREASM-WORK\Documents\MPLAB_IDE_v8_63.zip
      [2012/11/09 12:17:30 | 000,095,462 | ---- | C] () -- C:\Users\DREASM-WORK\Documents\Microprocesadores y Microcontroladores_Ing Electronica.pdf
      [2012/11/09 12:17:30 | 000,083,192 | ---- | C] () -- C:\Users\DREASM-WORK\Documents\Microcontroladores_Ing Mecatronica.pdf
      [2012/11/09 11:20:41 | 000,002,132 | ---- | C] () -- C:\Users\DREASM-WORK\Documents\inductor.TSC
      [2012/11/09 01:41:29 | 000,422,431 | ---- | C] () -- C:\Users\DREASM-WORK\Documents\DS005704lm311.pdf
      [2012/11/09 0124 | 000,031,704 | ---- | C] () -- C:\Users\DREASM-WORK\Desktop\no mams.png
      [2012/11/07 01:49:38 | 2240,512,000 | ---- | C] () -- C:\Users\DREASM-WORK\Documents\matlabx64.iso
      [2012/11/06 19:38:33 | 003,011,928 | ---- | C] () -- C:\Users\DREASM-WORK\Documents\k-370-instr.pdf
      [2012/11/05 01:44:41 | 000,001,218 | ---- | C] () -- C:\Users\Public\Desktop\Karnaugh Minimizer.lnk
      [2012/10/30 09:19:11 | 000,001,070 | ---- | C] () -- C:\Users\Public\Desktop\VLC media player.lnk
      [2012/10/29 22:23:59 | 000,325,112 | ---- | C] () -- C:\Users\DREASM-WORK\Documents\91363_DS.pdf
      [2012/10/29 22:23:36 | 000,396,989 | ---- | C] () -- C:\Users\DREASM-WORK\Documents\91494_DS.pdf
      [2012/10/29 22:19:21 | 000,729,659 | ---- | C] () -- C:\Users\DREASM-WORK\Documents\22v10.pdf
      [2012/10/25 0837 | 000,001,856 | ---- | C] () -- C:\Users\Public\Desktop\avast! Free Antivirus.lnk
      [2012/10/25 0826 | 000,000,000 | ---- | C] () -- C:\Windows\SysWow64\config.nt
      [2012/10/24 20:53:35 | 000,059,904 | ---- | C] () -- C:\Windows\SysNative\zlib1.dll
      [2012/10/24 17:56:28 | 000,001,787 | ---- | C] () -- C:\Users\Public\Desktop\iTunes.lnk
      [2012/10/24 17:55:23 | 000,002,519 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apple Software Update.lnk
      [2012/10/24 17:25:44 | 000,001,076 | ---- | C] () -- C:\Users\DREASM-WORK\Desktop\Your Unin-staller!.lnk
      [2012/10/23 11:49:42 | 000,396,989 | ---- | C] () -- C:\Users\DREASM-WORK\Documents\91494_DS22v10.pdf
      [2012/10/23 11:36:04 | 000,533,183 | ---- | C] () -- C:\Users\DREASM-WORK\Documents\GAL22V10.pdf
      [2012/10/22 15:11:31 | 000,002,441 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk
      [2012/10/22 15:11:31 | 000,002,023 | ---- | C] () -- C:\Users\Public\Desktop\Adobe Reader XI.lnk
      [2012/10/19 23:42:56 | 000,234,569 | ---- | C] () -- C:\Users\DREASM-WORK\Desktop\detector.png
      [2012/10/13 19:46:18 | 000,178,688 | ---- | C] () -- C:\Windows\SysWow64\unrar.dll
      [2012/10/13 19:41:22 | 020,816,132 | ---- | C] ( ) -- C:\Users\DREASM-WORK\Desktop\K-Lite_Codec_Pack_920_Full.exe
      [2012/10/09 00:20:10 | 000,130,808 | ---- | C] () -- C:\Users\DREASM-WORK\Documents\Apunte-Unidad-4-Interes-Simmple-y-Compuesto.pdf
      [2012/10/04 08:51:02 | 001,895,020 | ---- | C] () -- C:\Users\DREASM-WORK\Documents\Prac1_CEF_09_10.pdf
      [2012/10/01 20:45:09 | 000,513,558 | ---- | C] () -- C:\Users\DREASM-WORK\Documents\relesdocumentacion6.pdf
      [2012/10/01 20:43:51 | 000,804,292 | ---- | C] () -- C:\Users\DREASM-WORK\Documents\Optoelectronica.pdf
      [2012/10/01 20:37:41 | 000,136,670 | ---- | C] () -- C:\Users\DREASM-WORK\Documents\relays solido.png
      [2012/09/24 22:46:36 | 000,089,560 | ---- | C] () -- C:\Windows\extWall.jar
      [2012/09/24 22:43:55 | 000,000,000 | ---- | C] () -- C:\Users\DREASM-WORK\AppData\Roaming\wklnhst.dat
      [2012/09/24 11:37:25 | 000,000,018 | ---- | C] () -- C:\Windows\gfact.ini
      [2012/09/22 20:58:06 | 000,501,549 | ---- | C] () -- C:\Users\DREASM-WORK\Documents\UNIDAD3TEMA12.pdf
      [2012/09/22 20:48:59 | 000,513,558 | ---- | C] () -- C:\Users\DREASM-WORK\Documents\documentacion6.pdf
      [2012/09/14 21:21:39 | 000,006,922 | ---- | C] () -- C:\Users\DREASM-WORK\Documents\contador salteado.TSC
      [2012/09/14 21:20:03 | 000,005,641 | ---- | C] () -- C:\Users\DREASM-WORK\Documents\contador salteado.lvw
      [2012/09/14 03:15:29 | 000,005,658 | ---- | C] () -- C:\Users\DREASM-WORK\Documents\estados mapeados.TSC
      [2012/09/12 02:28:31 | 000,007,811 | ---- | C] () -- C:\Users\DREASM-WORK\Documents\potencia.TSC
      [2012/09/11 22:28:29 | 000,404,680 | ---- | C] () -- C:\Users\DREASM-WORK\Documents\inteses.xps
      [2012/09/07 10:46:22 | 000,145,680 | ---- | C] () -- C:\vesamenu.c32
      [2012/09/07 10:46:22 | 000,000,159 | ---- | C] () -- C:\syslinux.cfg
      [2012/09/04 17:59:56 | 000,000,535 | ---- | C] () -- C:\Windows\SysWow64\MAPISVC.BAK
      [2012/09/02 00:09:29 | 000,005,448 | ---- | C] () -- C:\Users\DREASM-WORK\Documents\mapeado.lvw
      [2012/09/02 00:09:18 | 000,006,818 | ---- | C] () -- C:\Users\DREASM-WORK\Documents\contador mapeado.lvw
      [2012/09/02 00:09:05 | 000,006,129 | ---- | C] () -- C:\Users\DREASM-WORK\Documents\contador mapeado a 0.TSC
      [2012/08/29 05:49:04 | 000,005,793 | ---- | C] () -- C:\Users\DREASM-WORK\Documents\practicas doc 3.1.TSC
      [2012/08/29 05:48:49 | 000,005,136 | ---- | C] () -- C:\Users\DREASM-WORK\Documents\practica doc3.TSC
      [2012/08/29 05:48:27 | 000,006,515 | ---- | C] () -- C:\Users\DREASM-WORK\Documents\practica doc.lvw
      [2012/08/29 05:48:14 | 000,000,403 | ---- | C] () -- C:\Users\DREASM-WORK\Documents\practica doc 3.lvw
      [2012/08/29 05:46:01 | 000,013,375 | ---- | C] () -- C:\Users\DREASM-WORK\Documents\practica3-4.lvw
      [2012/08/07 14:13:55 | 000,000,000 | ---- | C] () -- C:\Windows\optiflash.INI
      [2012/06/21 13:09:01 | 000,100,533 | ---- | C] () -- C:\Windows\gdfs_35171001740113.bin
      [2012/04/26 08:12:27 | 000,000,600 | ---- | C] () -- C:\Users\DREASM-WORK\PUTTY.RND
      [2012/03/11 01:28:10 | 000,161,206 | ---- | C] () -- C:\Windows\Expstudio Audio Editor FREE Uninstaller.exe
      [2012/03/05 11:34:00 | 000,000,162 | ---- | C] () -- C:\Windows\ODBC.INI
      [2012/02/27 22:36:28 | 000,221,184 | ---- | C] () -- C:\Windows\SysWow64\Dualunis.exe
      [2012/01/30 22:08:31 | 001,647,364 | ---- | C] () -- C:\Windows\SysWow64\PerfStringBackup.INI
      [2012/01/19 01:09:42 | 000,000,025 | ---- | C] () -- C:\Windows\cdplayer.ini
      [2012/01/13 22:07:40 | 000,065,536 | ---- | C] () -- C:\Windows\IFinst27.exe
      [2012/01/13 00:01:23 | 000,000,219 | ---- | C] () -- C:\Windows\PowerReg.dat
      [2012/01/06 18:29:22 | 000,045,568 | ---- | C] () -- C:\Users\DREASM-WORK\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
      [2011/12/17 15:29:41 | 000,000,056 | ---- | C] () -- C:\Windows\TiojCk.dat
      [2011/12/13 02:42:53 | 000,000,000 | ---- | C] () -- C:\Windows\ativpsrm.bin
      [2010/04/02 00:24:46 | 000,131,472 | ---- | C] () -- C:\ProgramData\FullRemove.exe

      ========== ZeroAccess Check ==========

      [2009/07/13 22:55:00 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini

      [HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64

      [HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

      [HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64

      [HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

      [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
      "" = C:\Windows\SysNative\shell32.dll -- [2010/07/27 08:59:11 | 014,162,944 | ---- | M] (Microsoft Corporation)
      "ThreadingModel" = Apartment

      [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
      "" = %SystemRoot%\system32\shell32.dll -- [2010/07/27 08:03:24 | 012,867,584 | ---- | M] (Microsoft Corporation)
      "ThreadingModel" = Apartment

      [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
      "" = C:\Windows\SysNative\wbem\fastprox.dll -- [2009/07/13 19:40:51 | 000,909,312 | ---- | M] (Microsoft Corporation)
      "ThreadingModel" = Free

      [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
      "" = %systemroot%\system32\wbem\fastprox.dll -- [2009/07/13 19:15:20 | 000,605,696 | ---- | M] (Microsoft Corporation)
      "ThreadingModel" = Free

      [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
      "" = C:\Windows\SysNative\wbem\wbemess.dll -- [2009/07/13 19:41:56 | 000,505,856 | ---- | M] (Microsoft Corporation)
      "ThreadingModel" = Both

      [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]

      ========== LOP Check ==========

      [2010/09/15 22:57:57 | 000,000,000 | ---D | M] -- C:\Users\DREASM-WORK\AppData\Roaming\aerix
      [2012/05/26 14:28:59 | 000,000,000 | ---D | M] -- C:\Users\DREASM-WORK\AppData\Roaming\Canon
      [2012/01/20 12:43:48 | 000,000,000 | ---D | M] -- C:\Users\DREASM-WORK\AppData\Roaming\com.socialbox.socialbox
      [2012/10/24 17:27:52 | 000,000,000 | ---D | M] -- C:\Users\DREASM-WORK\AppData\Roaming\DefaultTab
      [2012/03/01 22:13:34 | 000,000,000 | ---D | M] -- C:\Users\DREASM-WORK\AppData\Roaming\GetRightToGo
      [2012/10/24 21:40:30 | 000,000,000 | ---D | M] -- C:\Users\DREASM-WORK\AppData\Roaming\IObit
      [2012/11/18 01:46:19 | 000,000,000 | ---D | M] -- C:\Users\DREASM-WORK\AppData\Roaming\Mipony
      [2012/03/02 22:21:07 | 000,000,000 | ---D | M] -- C:\Users\DREASM-WORK\AppData\Roaming\Nokia
      [2012/03/02 22:04:58 | 000,000,000 | ---D | M] -- C:\Users\DREASM-WORK\AppData\Roaming\PC Suite
      [2012/04/24 23:09:47 | 000,000,000 | ---D | M] -- C:\Users\DREASM-WORK\AppData\Roaming\PhotoScape
      [2012/03/11 03:16:23 | 000,000,000 | ---D | M] -- C:\Users\DREASM-WORK\AppData\Roaming\Publish Providers
      [2012/10/24 14:23:20 | 000,000,000 | ---D | M] -- C:\Users\DREASM-WORK\AppData\Roaming\redsn0w
      [2012/09/07 13:45:07 | 000,000,000 | ---D | M] -- C:\Users\DREASM-WORK\AppData\Roaming\replacer
      [2012/06/20 12:47:52 | 000,000,000 | ---D | M] -- C:\Users\DREASM-WORK\AppData\Roaming\Research In Motion
      [2012/04/16 09:03:02 | 000,000,000 | ---D | M] -- C:\Users\DREASM-WORK\AppData\Roaming\Rovio
      [2012/04/25 22:34:49 | 000,000,000 | ---D | M] -- C:\Users\DREASM-WORK\AppData\Roaming\ShurikSoft
      [2012/03/11 03:16:17 | 000,000,000 | ---D | M] -- C:\Users\DREASM-WORK\AppData\Roaming\Sony
      [2011/12/22 12:02:06 | 000,000,000 | ---D | M] -- C:\Users\DREASM-WORK\AppData\Roaming\TeamViewer
      [2012/09/24 22:44:25 | 000,000,000 | ---D | M] -- C:\Users\DREASM-WORK\AppData\Roaming\Template
      [2012/02/21 09:25:05 | 000,000,000 | ---D | M] -- C:\Users\DREASM-WORK\AppData\Roaming\TuneUp Software
      [2012/10/24 17:25:53 | 000,000,000 | ---D | M] -- C:\Users\DREASM-WORK\AppData\Roaming\URSoft
      [2012/05/26 11:08:46 | 000,000,000 | ---D | M] -- C:\Users\DREASM-WORK\AppData\Roaming\YourFileDownloader
      [2012/03/12 20:28:08 | 000,000,000 | ---D | M] -- C:\Users\Invitado\AppData\Roaming\PC Suite
      [2012/07/09 09:12:50 | 000,000,000 | ---D | M] -- C:\Users\Invitado\AppData\Roaming\Rovio
      [2012/02/22 15:00:02 | 000,000,000 | ---D | M] -- C:\Users\Invitado\AppData\Roaming\TuneUp Software

      ========== Purity Check ==========



      ========== Custom Scans ==========

      < %SYSTEMDRIVE%\*.* >
      [2012/11/10 16:45:30 | 000,025,091 | ---- | M] () -- C:\AT-Destroyer.txt
      [2009/07/13 19:38:58 | 000,383,562 | RHS- | M] () -- C:\bootmgr
      [2010/04/02 01:09:43 | 000,008,192 | RHS- | M] () -- C:\BOOTSECT.BAK
      [2012/11/24 14:52:14 | 1405,272,064 | -HS- | M] () -- C:\hiberfil.sys
      [2012/11/24 14:52:17 | 1873,698,816 | -HS- | M] () -- C:\pagefile.sys
      [2012/11/10 15:36:36 | 000,000,246 | ---- | M] () -- C:\prueba.txt
      [2010/04/02 00:23:59 | 000,003,274 | ---- | M] () -- C:\RHDSetup.log
      [2012/09/07 10:46:22 | 000,000,159 | ---- | M] () -- C:\syslinux.cfg
      [2012/09/07 10:46:21 | 000,000,000 | ---- | M] () -- C:\ubnfilel.txt
      [2012/09/07 10:46:21 | 000,000,000 | ---- | M] () -- C:\ubnpathl.txt
      [2012/09/07 10:46:22 | 000,145,680 | ---- | M] () -- C:\vesamenu.c32
      [2010/04/22 16:12:08 | 002,088,311 | ---- | M] () -- C:\VS_EXPBSLN_x64_esn.CAB
      [2010/04/22 16:14:40 | 000,555,008 | ---- | M] () -- C:\VS_EXPBSLN_x64_esn.MSI

      ========== Alternate Data Streams ==========

      @Alternate Data Stream - 94 bytes -> C:\ProgramData\Temp:1CE11B51
      @Alternate Data Stream - 145 bytes -> C:\ProgramData\Temp:AB689DEA
      @Alternate Data Stream - 143 bytes -> C:\ProgramData\Temp:4D066AD2
      @Alternate Data Stream - 136 bytes -> C:\ProgramData\Temp:93DE1838
      @Alternate Data Stream - 135 bytes -> C:\ProgramData\Temp:93EB7685
      @Alternate Data Stream - 132 bytes -> C:\ProgramData\Temp:ABE89FFE
      @Alternate Data Stream - 132 bytes -> C:\ProgramData\Temp:5D7E5A8F
      @Alternate Data Stream - 130 bytes -> C:\ProgramData\Temp:798A3728
      @Alternate Data Stream - 128 bytes -> C:\ProgramData\Temp:E1F04E8D
      @Alternate Data Stream - 127 bytes -> C:\ProgramData\Temp:60466E88
      @Alternate Data Stream - 108 bytes -> C:\ProgramData\Temp:9FA1200D

      < End of report >

    3. #23
      Ex-Colaborador Avatar de Marr0n
      Registrado
      mar 2010
      Ubicación
      Catalunya
      Mensajes
      5.871

      Re: NOD 32 me deja el Mensaje Prof.eorezo.com/ cgi-bin/ create_profile.cgi y no actua

      De nada.

      Te pido paciencia por favor, ya que analizar el log de OTL lleva su tiempo ya que es bastante complejo y a la vez es muy extenso. Contestaré a la mayor brevedad posible.

      MUY IMPORTANTE:

      NO descargues/instales + programas mientras terminamos la desinfección.
      NO ejecutes otras herramientas Antivirus/Antimalwares. Aunque puedes activar nuevamente tu Antivirus.
      NO ejecutes nuevamente OTL hasta que vuelva con una respuesta.


      Saludos.
      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.

    4. #24
      Usuario Avatar de augustrush
      Registrado
      nov 2012
      Ubicación
      Puebla
      Mensajes
      16

      Re: NOD 32 me deja el Mensaje Prof.eorezo.com/ cgi-bin/ create_profile.cgi y no actua

      ok muchas gracias espero tu respuesta

    5. #25
      Ex-Colaborador Avatar de Marr0n
      Registrado
      mar 2010
      Ubicación
      Catalunya
      Mensajes
      5.871

      Re: NOD 32 me deja el Mensaje Prof.eorezo.com/ cgi-bin/ create_profile.cgi y no actua

      De nada.

      Realiza lo siguiente:


      • Descarga AT-Destroyer (Adwares/Toolbars-Destroyer) by @Infospyware.
      • Desactiva temporalmente el Antivirus y/o Antispyware.
      • Ejecuta AT-Destroyer como administrador.
      • Presiona sobre la opción 2 (Buscar y Destruir) para comenzar el escaneo.
      • Una vez terminada la búsqueda de Adwares & Toolbars, se generará un reporte con los resultados al reiniciar.
      • Copia y pega el reporte en este mismo tema para analizar los resultados generados por AT-Destroyer


      Una vez reiniciado el ordenador, ejecuta nuevamente OTL y pegas su reporte.

      Salu2.
      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.

    Página 3 de 3 PrimeroPrimero 123