• Registrarse
  • Iniciar sesión


  • Página 2 de 2 PrimeroPrimero 12
    Resultados 11 al 14 de 14

    IE me abre con http://www_getwindowinfo/ y no lo puedo sacar.

    Hola. Efectivamente el problema sigue, y no he podido sacarlo. Si has podido averiguar algo, espero tu respuesta. Gracias y Feliz Año!!...

    1. #11
      Usuario Avatar de dardochanampa
      Registrado
      jul 2005
      Ubicación
      México
      Mensajes
      14

      Re: IE me abre con http://www_getwindowinfo/ y no lo puedo sacar.

      Hola. Efectivamente el problema sigue, y no he podido sacarlo. Si has podido averiguar algo, espero tu respuesta. Gracias y Feliz Año!!

    2. #12
      Ex-Colaborador Avatar de RevesdeLiberte
      Registrado
      feb 2010
      Ubicación
      México
      Mensajes
      7.976

      Re: IE me abre con http://www_getwindowinfo/ y no lo puedo sacar.

      OK.


      ¿Que navegadores siguen afectados? ¿Conservas OTL.exe? Si es así saca un nuevo reporte con OTL.exe como el que solicite anteriormente en mi Post #6.


      PD: Felices fiestas, te deseo paz y salud.


      Última edición por RevesdeLiberte fecha: 31/12/12 a las 21:31:26
      La paciencia es un árbol de raíces amargas, pero de frutos dulces.

      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.

    3. #13
      Usuario Avatar de dardochanampa
      Registrado
      jul 2005
      Ubicación
      México
      Mensajes
      14

      Re: IE me abre con http://www_getwindowinfo/ y no lo puedo sacar.

      Hola, aqui re envío el OTL actual. El programa es el IE, con los otros no hay problema. Un abrazo.

      OTL logfile created on: 02/01/2013 01:37:34 p.m. - Run 2
      OTL by OldTimer - Version 3.2.69.0 Folder = D:\Downloads
      Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
      Internet Explorer (Version = 8.0.6001.18702)
      Locale: 0000080A | Country: México | Language: ESM | Date Format: dd/MM/yyyy

      3.44 Gb Total Physical Memory | 2.34 Gb Available Physical Memory | 68.02% Memory free
      5.28 Gb Paging File | 4.19 Gb Available in Paging File | 79.38% Paging File free
      Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]

      %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Archivos de programa
      Drive C: | 146.48 Gb Total Space | 61.19 Gb Free Space | 41.77% Space Free | Partition Type: NTFS
      Drive D: | 97.65 Gb Total Space | 88.32 Gb Free Space | 90.44% Space Free | Partition Type: NTFS
      Drive E: | 292.97 Gb Total Space | 110.35 Gb Free Space | 37.67% Space Free | Partition Type: NTFS
      Drive F: | 292.97 Gb Total Space | 93.96 Gb Free Space | 32.07% Space Free | Partition Type: NTFS
      Drive G: | 1032.93 Gb Total Space | 660.20 Gb Free Space | 63.92% Space Free | Partition Type: NTFS

      Computer Name: FIJA | User Name: Dardo | Logged in as Administrator.
      Boot Mode: Normal | Scan Mode: Current user
      Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

      ========== Processes (SafeList) ==========

      PRC - D:\Downloads\OTL.exe (OldTimer Tools)
      PRC - C:\Documents and Settings\All Users\Datos de programa\Skype\Toolbars\Skype C2C Service\c2c_service.exe (Skype Technologies S.A.)
      PRC - C:\Archivos de programa\Real\RealPlayer\Update\realsched.exe (RealNetworks, Inc.)
      PRC - C:\Archivos de programa\Intel\IntelAppStore\bin\ismagent.exe (Intel Corporation)
      PRC - C:\Archivos de programa\Intel\IntelAppStore\bin\AppUp.exe (Intel Corporation)
      PRC - C:\Archivos de programa\Archivos comunes\Java\Java Update\jusched.exe (Sun Microsystems, Inc.)
      PRC - C:\Archivos de programa\AVG\AVG2012\avgidsagent.exe (AVG Technologies CZ, s.r.o.)
      PRC - C:\Archivos de programa\AVG\AVG2012\avgtray.exe (AVG Technologies CZ, s.r.o.)
      PRC - C:\Archivos de programa\AVG\AVG2012\avgrsx.exe (AVG Technologies CZ, s.r.o.)
      PRC - C:\Archivos de programa\AVG\AVG2012\avgnsx.exe (AVG Technologies CZ, s.r.o.)
      PRC - C:\Archivos de programa\KG Monitor\klgratis.exe ()
      PRC - C:\Archivos de programa\AVG\AVG2012\avgemcx.exe (AVG Technologies CZ, s.r.o.)
      PRC - C:\Archivos de programa\AVG\AVG2012\avgwdsvc.exe (AVG Technologies CZ, s.r.o.)
      PRC - C:\Archivos de programa\AVG\AVG2012\avgcsrvx.exe (AVG Technologies CZ, s.r.o.)
      PRC - C:\Archivos de programa\Motorola\MotoHelper\MotoHelperAgent.exe ()
      PRC - C:\Archivos de programa\Motorola\MotoHelper\MotoHelperService.exe ()
      PRC - C:\Archivos de programa\Winamp\winampa.exe (Nullsoft, Inc.)
      PRC - C:\Archivos de programa\Logitech\SetPointP\SetPoint.exe (Logitech, Inc.)
      PRC - C:\Archivos de programa\Archivos comunes\Logishrd\KHAL3\KHALMNPR.exe (Logitech, Inc.)
      PRC - C:\Prey\platform\windows\cronsvc.exe (Fork Ltd.)
      PRC - C:\Archivos de programa\Archivos comunes\AOL\1313533770\ee\aolsoftware.exe (AOL Inc.)
      PRC - C:\Archivos de programa\Norton SystemWorks Premier Edition\Norton Utilities\Speed Disk\NOPDB.exe (Symantec Corporation)
      PRC - C:\Archivos de programa\Norton SystemWorks Premier Edition\Norton Utilities\NPROTECT.EXE (Symantec Corporation)
      PRC - C:\Archivos de programa\Norton SystemWorks Premier Edition\NswUiTray.exe (Symantec Corporation)
      PRC - C:\Archivos de programa\Symantec\LiveUpdate\AluSchedulerSvc.exe (Symantec Corporation)
      PRC - C:\Archivos de programa\Lavasoft\Ad-Aware\aawservice.exe (Lavasoft)
      PRC - C:\WINDOWS\explorer.exe (Microsoft Corporation)
      PRC - C:\Documents and Settings\All Users\Datos de programa\EPSON\EPW!3 SSRP\E_S40ST7.EXE (SEIKO EPSON CORPORATION)
      PRC - C:\Archivos de programa\Nero\Nero 7\InCD\NBHGui.exe (Nero AG)
      PRC - C:\Archivos de programa\Nero\Nero 7\InCD\InCDsrv.exe (Nero AG)
      PRC - C:\Archivos de programa\Nero\Nero 7\InCD\InCD.exe (Nero AG)
      PRC - C:\Documents and Settings\All Users\Datos de programa\EPSON\EPW!3 SSRP\E_S40RP7.EXE (SEIKO EPSON CORPORATION)
      PRC - C:\Archivos de programa\Archivos comunes\Microsoft Shared\VS7DEBUG\mdm.exe (Microsoft Corporation)
      PRC - C:\WINDOWS\system32\CTHELPER.EXE (Creative Technology Ltd)
      PRC - C:\Archivos de programa\Creative\ShareDLL\Mediadet.exe (Creative Technology Ltd.)
      PRC - C:\Archivos de programa\Creative\ShareDLL\CTNotify.exe (Creative Technology Ltd.)


      ========== Modules (No Company Name) ==========

      MOD - c:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.ServiceProce#\31b7eef43a23e7c6e93594be583f3d08\System.ServiceProcess.ni.dll ()
      MOD - c:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System\90ad0c96693527ae685ff40019bb33b0\System.ni.dll ()
      MOD - c:\WINDOWS\assembly\NativeImages_v2.0.50727_32\mscorlib\3add69b075f3da012fb97ce00cd795c0\mscorlib.ni.dll ()
      MOD - C:\Archivos de programa\Intel\IntelAppStore\bin\zlib1.dll ()
      MOD - C:\Archivos de programa\Intel\IntelAppStore\bin\sqlite3.dll ()
      MOD - C:\Archivos de programa\Intel\IntelAppStore\bin\osEvents.dll ()
      MOD - C:\Archivos de programa\Intel\IntelAppStore\bin\log4cplus.dll ()
      MOD - C:\Archivos de programa\Intel\IntelAppStore\bin\libgsoap.dll ()
      MOD - C:\Archivos de programa\Intel\IntelAppStore\bin\ServiceManagerStarter.dll ()
      MOD - C:\Archivos de programa\Intel\IntelAppStore\bin\eventsSender.dll ()
      MOD - C:\Archivos de programa\Intel\IntelAppStore\bin\featureController.dll ()
      MOD - C:\Archivos de programa\Intel\IntelAppStore\bin\DeviceProfile.dll ()
      MOD - C:\Archivos de programa\Archivos comunes\Adobe\Acrobat\ActiveX\PDFShell.ESP ()
      MOD - C:\Archivos de programa\KG Monitor\klgratis.exe ()
      MOD - C:\Archivos de programa\Motorola\MotoHelper\MotoHelperAgent.exe ()
      MOD - C:\Archivos de programa\Motorola\MotoHelper\MotoHelperService.exe ()
      MOD - C:\Archivos de programa\Logitech\SetPointP\Macros\MacroCore.dll ()
      MOD - C:\WINDOWS\system32\nvapi.dll ()


      ========== Services (SafeList) ==========

      SRV - (AdobeFlashPlayerUpdateSvc) -- C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe (Adobe Systems Incorporated)
      SRV - (SkypeUpdate) -- C:\Archivos de programa\Skype\Updater\Updater.exe (Skype Technologies)
      SRV - (Skype C2C Service) -- C:\Documents and Settings\All Users\Datos de programa\Skype\Toolbars\Skype C2C Service\c2c_service.exe (Skype Technologies S.A.)
      SRV - (AVGIDSAgent) -- C:\Archivos de programa\AVG\AVG2012\avgidsagent.exe (AVG Technologies CZ, s.r.o.)
      SRV - (avgwd) -- C:\Archivos de programa\AVG\AVG2012\avgwdsvc.exe (AVG Technologies CZ, s.r.o.)
      SRV - (Sony PC Companion) -- C:\Archivos de programa\Sony\Sony PC Companion\PCCService.exe (Avanquest Software)
      SRV - (MotoHelper) -- C:\Archivos de programa\Motorola\MotoHelper\MotoHelperService.exe ()
      SRV - (Adobe LM Service) -- C:\Archivos de programa\Archivos comunes\Adobe Systems Shared\Service\Adobelmsvc.exe (Adobe Systems)
      SRV - (odserv) -- C:\Archivos de programa\Archivos comunes\Microsoft Shared\OFFICE12\ODSERV.EXE (Microsoft Corporation)
      SRV - (LBTServ) -- C:\Archivos de programa\Archivos comunes\Logishrd\Bluetooth\LBTServ.exe (Logitech, Inc.)
      SRV - (ServiceLayer) -- C:\Archivos de programa\PC Connectivity Solution\ServiceLayer.exe (Nokia)
      SRV - (CronService) -- C:\Prey\platform\windows\cronsvc.exe (Fork Ltd.)
      SRV - (Speed Disk service) -- C:\Archivos de programa\Norton SystemWorks Premier Edition\Norton Utilities\Speed Disk\NOPDB.exe (Symantec Corporation)
      SRV - (NProtectService) -- C:\Archivos de programa\Norton SystemWorks Premier Edition\Norton Utilities\NPROTECT.EXE (Symantec Corporation)
      SRV - (Automatic LiveUpdate Scheduler) -- C:\Archivos de programa\Symantec\LiveUpdate\AluSchedulerSvc.exe (Symantec Corporation)
      SRV - (LiveUpdate) -- C:\Archivos de programa\Symantec\LiveUpdate\LuComServer_3_4.EXE (Symantec Corporation)
      SRV - (aawservice) -- C:\Archivos de programa\Lavasoft\Ad-Aware\aawservice.exe (Lavasoft)
      SRV - (EPSON_EB_RPCV4_01) -- C:\Documents and Settings\All Users\Datos de programa\EPSON\EPW!3 SSRP\E_S40ST7.EXE (SEIKO EPSON CORPORATION)
      SRV - (InCDsrv) -- C:\Archivos de programa\Nero\Nero 7\InCD\InCDsrv.exe (Nero AG)
      SRV - (NMIndexingService) -- C:\Archivos de programa\Archivos comunes\Ahead\Lib\NMIndexingService.exe (Nero AG)
      SRV - (EPSON_PM_RPCV4_01) -- C:\Documents and Settings\All Users\Datos de programa\EPSON\EPW!3 SSRP\E_S40RP7.EXE (SEIKO EPSON CORPORATION)
      SRV - (ose) -- C:\Archivos de programa\Archivos comunes\Microsoft Shared\Source Engine\OSE.EXE (Microsoft Corporation)
      SRV - (MDM) -- C:\Archivos de programa\Archivos comunes\Microsoft Shared\VS7DEBUG\mdm.exe (Microsoft Corporation)
      SRV - (AOL ACS) -- C:\Archivos de programa\Archivos comunes\AOL\acs\AOLacsd.exe (AOL LLC)


      ========== Driver Services (SafeList) ==========

      DRV - (WDICA) -- File not found
      DRV - (PDRFRAME) -- File not found
      DRV - (PDRELI) -- File not found
      DRV - (PDFRAME) -- File not found
      DRV - (PDCOMP) -- File not found
      DRV - (PCIDump) -- File not found
      DRV - (lbrtfdc) -- File not found
      DRV - (kxwdmdrv) -- system32\drivers\kx.sys File not found
      DRV - (i2omgmt) -- File not found
      DRV - (CrystalSysInfo) -- C:\Archivos de programa\XULPlayer\SysInfo.sys File not found
      DRV - (Changer) -- File not found
      DRV - (Avgtdix) -- C:\WINDOWS\system32\drivers\avgtdix.sys (AVG Technologies CZ, s.r.o.)
      DRV - (Avgldx86) -- C:\WINDOWS\system32\drivers\avgldx86.sys (AVG Technologies CZ, s.r.o.)
      DRV - (AVGIDSHX) -- C:\WINDOWS\system32\drivers\avgidshx.sys (AVG Technologies CZ, s.r.o. )
      DRV - (Avgrkx86) -- C:\WINDOWS\system32\drivers\avgrkx86.sys (AVG Technologies CZ, s.r.o.)
      DRV - (Avgmfx86) -- C:\WINDOWS\system32\drivers\avgmfx86.sys (AVG Technologies CZ, s.r.o.)
      DRV - (AVGIDSShim) -- C:\WINDOWS\system32\drivers\avgidsshimx.sys (AVG Technologies CZ, s.r.o. )
      DRV - (AVGIDSFilter) -- C:\WINDOWS\system32\drivers\avgidsfilterx.sys (AVG Technologies CZ, s.r.o. )
      DRV - (AVGIDSDriver) -- C:\WINDOWS\system32\drivers\avgidsdriverx.sys (AVG Technologies CZ, s.r.o. )
      DRV - (SymEvent) -- C:\WINDOWS\system32\drivers\SYMEVENT.SYS (Symantec Corporation)
      DRV - (gdrv) -- C:\WINDOWS\gdrv.sys (Windows (R) 2000 DDK provider)
      DRV - (BazisVirtualCDBus) -- C:\WINDOWS\system32\drivers\BazisVirtualCDBus.sys (SysProgs.org)
      DRV - (LMouFilt) -- C:\WINDOWS\system32\drivers\LMouFilt.Sys (Logitech, Inc.)
      DRV - (LHidFilt) -- C:\WINDOWS\system32\drivers\LHidFilt.Sys (Logitech, Inc.)
      DRV - (LBeepKE) -- C:\WINDOWS\system32\drivers\LBeepKE.sys (Logitech, Inc.)
      DRV - (Aspi32) -- C:\WINDOWS\system32\drivers\ASPI32.SYS (Adaptec)
      DRV - (s1018mdm) -- C:\WINDOWS\system32\drivers\s1018mdm.sys (MCCI Corporation)
      DRV - (s1018unic) -- C:\WINDOWS\system32\drivers\s1018unic.sys (MCCI Corporation)
      DRV - (s1018mgmt) -- C:\WINDOWS\system32\drivers\s1018mgmt.sys (MCCI Corporation)
      DRV - (s1018obex) -- C:\WINDOWS\system32\drivers\s1018obex.sys (MCCI Corporation)
      DRV - (s1018bus) -- C:\WINDOWS\system32\drivers\s1018bus.sys (MCCI Corporation)
      DRV - (s1018nd5) -- C:\WINDOWS\system32\drivers\s1018nd5.sys (MCCI Corporation)
      DRV - (s1018mdfl) -- C:\WINDOWS\system32\drivers\s1018mdfl.sys (MCCI Corporation)
      DRV - (IntcAzAudAddService) -- C:\WINDOWS\system32\drivers\RtkHDAud.sys (Realtek Semiconductor Corp.)
      DRV - (SDdriver) -- C:\WINDOWS\system32\drivers\SdDriver.SYS (Symantec Corporation)
      DRV - (NPDriver) -- C:\WINDOWS\system32\drivers\NPDRIVER.SYS (Symantec Corporation)
      DRV - (pccsmcfd) -- C:\WINDOWS\system32\drivers\pccsmcfd.sys (Nokia)
      DRV - (gameenum) -- C:\WINDOWS\system32\drivers\gameenum.sys (Microsoft Corporation)
      DRV - (incdrm) -- C:\WINDOWS\system32\drivers\InCDRm.sys (Nero AG)
      DRV - (InCDPass) -- C:\WINDOWS\system32\drivers\InCDPass.sys (Nero AG)
      DRV - (InCDrec) -- C:\WINDOWS\System32\drivers\InCDrec.sys (Nero AG)
      DRV - (InCDfs) -- C:\WINDOWS\system32\drivers\InCDfs.sys (Nero AG)
      DRV - (AmdPPM) -- C:\WINDOWS\system32\drivers\AmdPPM.sys (Advanced Micro Devices)
      DRV - (nvnetbus) -- C:\WINDOWS\system32\drivers\nvnetbus.sys (NVIDIA Corporation)
      DRV - (NVENETFD) -- C:\WINDOWS\system32\drivers\NVENETFD.sys (NVIDIA Corporation)
      DRV - (nvata) -- C:\WINDOWS\system32\drivers\nvata.sys (NVIDIA Corporation)
      DRV - (CEUSBAUD) -- C:\WINDOWS\system32\drivers\ceusbaud.sys (CEntrance, Inc.)
      DRV - (wanatw) -- C:\WINDOWS\system32\drivers\wanatw4.sys (America Online, Inc.)
      DRV - (ha10kx2k) -- C:\WINDOWS\system32\drivers\ha10kx2k.sys (Creative Technology Ltd)
      DRV - (emupia) -- C:\WINDOWS\system32\drivers\emupia2k.sys (Creative Technology Ltd)
      DRV - (ctsfm2k) -- C:\WINDOWS\system32\drivers\ctsfm2k.sys (Creative Technology Ltd)
      DRV - (ctprxy2k) -- C:\WINDOWS\system32\drivers\ctprxy2k.sys (Creative Technology Ltd)
      DRV - (ossrv) -- C:\WINDOWS\system32\drivers\ctoss2k.sys (Creative Technology Ltd.)
      DRV - (ctaud2k) -- C:\WINDOWS\system32\drivers\ctaud2k.sys (Creative Technology Ltd)
      DRV - (ctac32k) -- C:\WINDOWS\system32\drivers\ctac32k.sys (Creative Technology Ltd)
      DRV - (ctljystk) -- C:\WINDOWS\system32\drivers\ctljystk.sys (Creative Technology Ltd.)
      DRV - (PfModNT) -- C:\WINDOWS\system32\PFMODNT.SYS (Creative Technology Ltd.)


      ========== Standard Registry (SafeList) ==========


      ========== Internet Explorer ==========

      IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = Google
      IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://start.facemoods.com/?a=ddrnw&s={searchTerms}&f=4
      IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}

      IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = Yahoo! México
      IE - HKCU\..\SearchScopes,DefaultScope = {0D7562AE-8EF6-416d-A838-AB665251703A}
      IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC
      IE - HKCU\..\SearchScopes\{0D7562AE-8EF6-416d-A838-AB665251703A}: "URL" = http://start.facemoods.com/?a=ddrnw&s={searchTerms}&f=4
      IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

      ========== FireFox ==========

      FF - prefs.js..extensions.enabledAddons: {a3a5c777-f583-4fef-9380-ab4add1bc2a8}:3.1.5
      FF - prefs.js..extensions.enabledAddons: {EB9394A3-4AD6-4918-9537-31A1FD8E8EDF}:2.0
      FF - prefs.js..extensions.enabledAddons: [email protected]:1.0
      FF - prefs.js..extensions.enabledAddons: {F53C93F1-07D5-430c-86D4-C9531B27DFAF}:12.0.0.2189
      FF - prefs.js..extensions.enabledAddons: {0153E448-190B-4987-BDE1-F256CADA672F}:15.0.6
      FF - prefs.js..browser.startup.homepage: "http://google.com"
      FF - prefs.js..keyword.URL: "https://www.google.com/search?q="
      FF - prefs.js..browser.search.order.1: "(Google)"
      FF - prefs.js..browser.search.defaultenginename: "(Google)"
      FF - prefs.js..browser.search.selectedEngine: "Google"
      FF - prefs.js..browser.search.defaulturl: "www.Google.com"


      FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_5_502_135.dll ()
      FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\WINDOWS\system32\Adobe\Director\np32dsw_1166636.dll (Adobe Systems, Inc.)
      FF - HKLM\Software\MozillaPlugins\@divx.com/DivX Player Plugin,version=1.0.0: C:\Archivos de programa\DivX\DivX Player\npDivxPlayerPlugin.dll File not found
      FF - HKLM\Software\MozillaPlugins\@divx.com/DivX VOD Helper,version=1.0.0: C:\Archivos de programa\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
      FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=1.6.0_37: C:\WINDOWS\system32\npdeployJava1.dll (Sun Microsystems, Inc.)
      FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Archivos de programa\Java\jre6\bin\plugin2\npjp2.dll (Sun Microsystems, Inc.)
      FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Archivos de programa\Microsoft Silverlight\4.1.10329.0\npctrl.dll ( Microsoft Corporation)
      FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
      FF - HKLM\Software\MozillaPlugins\@real.com/nppl3260;version=15.0.6.14: c:\archivos de programa\real\realplayer\Netscape6\nppl3260.dll (RealNetworks, Inc.)
      FF - HKLM\Software\MozillaPlugins\@real.com/nprjplug;version=15.0.6.14: c:\archivos de programa\real\realplayer\Netscape6\nprjplug.dll (RealNetworks, Inc.)
      FF - HKLM\Software\MozillaPlugins\@real.com/nprpchromebrowserrecordext;version=15.0.6.14: C:\Documents and Settings\All Users\Datos de programa\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprpchromebrowserrecordext.dll (RealNetworks, Inc.)
      FF - HKLM\Software\MozillaPlugins\@real.com/nprphtml5videoshim;version=15.0.6.14: C:\Documents and Settings\All Users\Datos de programa\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll (RealNetworks, Inc.)
      FF - HKLM\Software\MozillaPlugins\@real.com/nprpplugin;version=15.0.6.14: c:\archivos de programa\real\realplayer\Netscape6\nprpplugin.dll (RealPlayer)
      FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Archivos de programa\Google\Update\1.3.21.123\npGoogleUpdate3.dll (Google Inc.)
      FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Archivos de programa\Google\Update\1.3.21.123\npGoogleUpdate3.dll (Google Inc.)
      FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.0.1: C:\Archivos de programa\VideoLAN\VLC\npvlc.dll (VideoLAN)
      FF - HKLM\Software\MozillaPlugins\@viewpoint.com/VMP: C:\Archivos de programa\Viewpoint\Viewpoint Experience Technology\npViewpoint.dll ()
      FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Archivos de programa\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
      FF - HKCU\Software\MozillaPlugins\@unity3d.com/UnityPlayer,version=1.0: C:\Documents and Settings\Dardo\Configuración local\Datos de programa\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
      FF - HKCU\Software\MozillaPlugins\intel.com/AppUp: C:\Archivos de programa\Intel\IntelAppStore\bin\npAppUp.dll (Intel)

      FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\extensions\\{1E73965B-8B48-48be-9C8D-68B920ABC1C4}: C:\Archivos de programa\AVG\AVG2012\Firefox4\ [2012/09/10 08:46:03 | 000,000,000 | ---D | M]
      FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\extensions\\{97E22097-9A2F-45b1-8DAF-36AD648C7EF4}: C:\Documents and Settings\All Users\Datos de programa\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext [2012/09/30 15:17:58 | 000,000,000 | ---D | M]
      FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\extensions\\{F53C93F1-07D5-430c-86D4-C9531B27DFAF}: C:\Archivos de programa\AVG\AVG2012\Firefox\DoNotTrack\ [2012/07/02 13:40:19 | 000,000,000 | ---D | M]
      FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\extensions\\{22119944-ED35-4ab1-910B-E619EA06A115}: C:\Archivos de programa\Siber Systems\AI RoboForm\Firefox [2012/09/19 00:05:50 | 000,000,000 | ---D | M]
      FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\extensions\\{0153E448-190B-4987-BDE1-F256CADA672F}: C:\Documents and Settings\All Users\Datos de programa\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext [2012/09/30 15:17:58 | 000,000,000 | ---D | M]
      FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 9.0.1\extensions\\Components: C:\Archivos de programa\Mozilla Firefox\components [2012/01/31 00:19:48 | 000,000,000 | ---D | M]
      FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 9.0.1\extensions\\Plugins: C:\Archivos de programa\Mozilla Firefox\plugins

      [2012/05/27 01:44:58 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Dardo\Datos de programa\Mozilla\Extensions
      [2012/05/27 01:44:58 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Dardo\Datos de programa\Mozilla\Extensions\XulPlayer
      [2012/07/14 20:57:39 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Dardo\Datos de programa\Mozilla\Firefox\Profiles\md7ycwdv.default\extensions
      [2012/07/14 20:57:39 | 000,000,000 | ---D | M] (OneClickDownloader) -- C:\Documents and Settings\Dardo\Datos de programa\Mozilla\Firefox\Profiles\md7ycwdv.default\extensions\[email protected]
      [2012/01/31 04:25:08 | 000,013,642 | ---- | M] () (No name found) -- C:\Documents and Settings\Dardo\Datos de programa\Mozilla\Firefox\Profiles\md7ycwdv.default\extensions\{a3a5c777-f583-4fef-9380-ab4add1bc2a8}.xpi
      [2012/05/20 12:20:32 | 000,004,929 | ---- | M] () (No name found) -- C:\Documents and Settings\Dardo\Datos de programa\Mozilla\Firefox\Profiles\md7ycwdv.default\extensions\{EB9394A3-4AD6-4918-9537-31A1FD8E8EDF}.xpi
      [2012/12/11 00:38:34 | 000,000,000 | ---D | M] (No name found) -- C:\Archivos de programa\Mozilla Firefox\extensions
      [2012/12/11 00:38:34 | 000,000,000 | ---D | M] (Skype Click to Call) -- C:\Archivos de programa\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
      [2012/07/29 20:52:23 | 000,000,000 | ---D | M] (Java Console) -- C:\Archivos de programa\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0033-ABCDEFFEDCBA}
      [2012/09/11 11:41:29 | 000,000,000 | ---D | M] (Java Console) -- C:\Archivos de programa\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0035-ABCDEFFEDCBA}
      [2012/10/21 12:32:45 | 000,000,000 | ---D | M] (Java Console) -- C:\Archivos de programa\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0037-ABCDEFFEDCBA}
      [2012/07/02 13:40:19 | 000,000,000 | ---D | M] (AVG Do Not Track) -- C:\ARCHIVOS DE PROGRAMA\AVG\AVG2012\FIREFOX\DONOTTRACK
      [2012/09/30 15:17:58 | 000,000,000 | ---D | M] (RealPlayer Browser Record Plugin) -- C:\DOCUMENTS AND SETTINGS\ALL USERS\DATOS DE PROGRAMA\REAL\REALPLAYER\BROWSERRECORDPLUGIN\FIREFOX\EXT
      [2011/12/21 01:46:43 | 000,121,816 | ---- | M] (Mozilla Foundation) -- C:\Archivos de programa\mozilla firefox\components\browsercomps.dll
      [2011/12/20 23:02:40 | 000,002,252 | ---- | M] () -- C:\Archivos de programa\mozilla firefox\searchplugins\bing.xml
      [2011/09/24 01:27:37 | 000,002,048 | ---- | M] () -- C:\Archivos de programa\mozilla firefox\searchplugins\fcmdSrch.xml
      [2011/12/20 23:30:37 | 000,002,456 | ---- | M] () -- C:\Archivos de programa\mozilla firefox\searchplugins\mercadolibre-mx.xml
      [2011/12/20 23:30:37 | 000,001,178 | ---- | M] () -- C:\Archivos de programa\mozilla firefox\searchplugins\wikipedia-es.xml
      [2011/12/20 23:30:37 | 000,001,102 | ---- | M] () -- C:\Archivos de programa\mozilla firefox\searchplugins\yahoo-mx.xml

      ========== Chrome ==========

      CHR - homepage: Google
      CHR - default_search_provider: Google (Enabled)
      CHR - default_search_provider: search_url = {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}sourceid=chrome&ie={inputEncoding}
      CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client=chrome&hl={language}&q={searchTerms}&sugkey={google:suggestAPIKeyParameter}
      CHR - homepage: Google
      CHR - plugin: Shockwave Flash (Enabled) = C:\Archivos de programa\Google\Chrome\Application\23.0.1271.97\PepperFlash\pepflashplayer.dll
      CHR - plugin: Chrome Remote Desktop Viewer (Enabled) = internal-remoting-viewer
      CHR - plugin: Native Client (Enabled) = C:\Archivos de programa\Google\Chrome\Application\23.0.1271.97\ppGoogleNaClPluginChrome.dll
      CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Archivos de programa\Google\Chrome\Application\23.0.1271.97\pdf.dll
      CHR - plugin: Skype Click to Call (Enabled) = C:\Documents and Settings\Dardo\Configuraci\u00F3n local\Datos de programa\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl\6.3.0.11079_0\npSkypeChromePlugin.dll
      CHR - plugin: AVG Internet Security (Enabled) = C:\Documents and Settings\Dardo\Configuraci\u00F3n local\Datos de programa\Google\Chrome\User Data\Default\Extensions\jmfkcklnlgedgbglfkkgedjfmejoahla\12.0.0.2210_0\plugins/avgnpss.dll
      CHR - plugin: Adobe Acrobat (Enabled) = C:\Archivos de programa\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll
      CHR - plugin: QuickTime Plug-in 7.4.5 (Enabled) = C:\Archivos de programa\QuickTime\plugins\npqtplugin.dll
      CHR - plugin: QuickTime Plug-in 7.4.5 (Enabled) = C:\Archivos de programa\QuickTime\plugins\npqtplugin2.dll
      CHR - plugin: QuickTime Plug-in 7.4.5 (Enabled) = C:\Archivos de programa\QuickTime\plugins\npqtplugin3.dll
      CHR - plugin: QuickTime Plug-in 7.4.5 (Enabled) = C:\Archivos de programa\QuickTime\plugins\npqtplugin4.dll
      CHR - plugin: QuickTime Plug-in 7.4.5 (Enabled) = C:\Archivos de programa\QuickTime\plugins\npqtplugin5.dll
      CHR - plugin: QuickTime Plug-in 7.4.5 (Enabled) = C:\Archivos de programa\QuickTime\plugins\npqtplugin6.dll
      CHR - plugin: QuickTime Plug-in 7.4.5 (Enabled) = C:\Archivos de programa\QuickTime\plugins\npqtplugin7.dll
      CHR - plugin: Microsoft\u00AE DRM (Enabled) = C:\Archivos de programa\Windows Media Player\npdrmv2.dll
      CHR - plugin: Windows Media Player Plug-in Dynamic Link Library (Enabled) = C:\Archivos de programa\Windows Media Player\npdsplay.dll
      CHR - plugin: Microsoft\u00AE DRM (Enabled) = C:\Archivos de programa\Windows Media Player\npwmsdrm.dll
      CHR - plugin: Microsoft Lync 2010 Attendee Meeting Join Plug-in (Enabled) = C:\Documents and Settings\Dardo\Datos de programa\Mozilla\plugins\npMeetingJoinPluginAOCUser.dll
      CHR - plugin: DivX VOD Helper Plug-in (Enabled) = C:\Archivos de programa\DivX\DivX OVS Helper\npovshelper.dll
      CHR - plugin: Google Update (Enabled) = C:\Archivos de programa\Google\Update\1.3.21.123\npGoogleUpdate3.dll
      CHR - plugin: AppUp (Enabled) = C:\Archivos de programa\Intel\IntelAppStore\bin\npAppUp.dll
      CHR - plugin: Java(TM) Platform SE 6 U37 (Enabled) = C:\Archivos de programa\Java\jre6\bin\plugin2\npjp2.dll
      CHR - plugin: Silverlight Plug-In (Enabled) = C:\Archivos de programa\Microsoft Silverlight\4.1.10329.0\npctrl.dll
      CHR - plugin: VLC Web Plugin (Enabled) = C:\Archivos de programa\VideoLAN\VLC\npvlc.dll
      CHR - plugin: MetaStream 3 Plugin (Enabled) = C:\Archivos de programa\Viewpoint\Viewpoint Experience Technology\npViewpoint.dll
      CHR - plugin: RealNetworks(tm) Chrome Background Extension Plug-In (32-bit) (Enabled) = C:\Documents and Settings\All Users\Datos de programa\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprpchromebrowserrecordext.dll
      CHR - plugin: RealPlayer(tm) HTML5VideoShim Plug-In (32-bit) (Enabled) = C:\Documents and Settings\All Users\Datos de programa\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll
      CHR - plugin: Unity Player (Enabled) = C:\Documents and Settings\Dardo\Configuraci\u00F3n local\Datos de programa\Unity\WebPlayer\loader\npUnity3D32.dll
      CHR - plugin: Windows Presentation Foundation (Enabled) = C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll
      CHR - plugin: Shockwave for Director (Enabled) = C:\WINDOWS\system32\Adobe\Director\np32dsw_1166636.dll
      CHR - plugin: Shockwave Flash (Enabled) = C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_5_502_135.dll
      CHR - plugin: Java Deployment Toolkit 6.0.370.6 (Enabled) = C:\WINDOWS\system32\npdeployJava1.dll
      CHR - plugin: RealPlayer(tm) G2 LiveConnect-Enabled Plug-In (32-bit) (Enabled) = c:\archivos de programa\real\realplayer\Netscape6\nppl3260.dll
      CHR - plugin: RealJukebox NS Plugin (Enabled) = c:\archivos de programa\real\realplayer\Netscape6\nprjplug.dll
      CHR - plugin: RealPlayer Download Plugin (Enabled) = c:\archivos de programa\real\realplayer\Netscape6\nprpplugin.dll
      CHR - Extension: RealPlayer HTML5Video Downloader Extension = C:\Documents and Settings\Dardo\Configuración local\Datos de programa\Google\Chrome\User Data\Default\Extensions\jfmjfhklogoienhpfnppmbcbjfjnkonk\1.5_0\
      CHR - Extension: AVG Safe Search = C:\Documents and Settings\Dardo\Configuración local\Datos de programa\Google\Chrome\User Data\Default\Extensions\jmfkcklnlgedgbglfkkgedjfmejoahla\12.0.0.2210_0\
      CHR - Extension: Skype Click to Call = C:\Documents and Settings\Dardo\Configuración local\Datos de programa\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl\6.3.0.11079_0\
      CHR - Extension: AVG Do Not Track = C:\Documents and Settings\Dardo\Configuración local\Datos de programa\Google\Chrome\User Data\Default\Extensions\ndibdjnfmopecpmkdieinmbadjfpblof\12.0.0.2166_0\

      O1 HOSTS File: ([2001/08/24 04:00:00 | 000,000,792 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
      O1 - Hosts: 127.0.0.1 localhost
      O2 - BHO: (Adobe PDF Link Helper) - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Archivos de programa\Archivos comunes\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
      O2 - BHO: (RealPlayer Download and Record Plugin for Internet Explorer) - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Documents and Settings\All Users\Datos de programa\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll (RealPlayer)
      O2 - BHO: (AVG Do Not Track) - {31332EEF-CB9F-458F-AFEB-D30E9A66B6BA} - C:\Archivos de programa\AVG\AVG2012\avgdtiex.dll (AVG Technologies CZ, s.r.o.)
      O2 - BHO: (AVG Safe Search) - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Archivos de programa\AVG\AVG2012\avgssie.dll (AVG Technologies CZ, s.r.o.)
      O2 - BHO: (RoboForm Toolbar Helper) - {724d43a9-0d85-11d4-9908-00400523e39a} - C:\Archivos de programa\Siber Systems\AI RoboForm\roboform.dll (Siber Systems Inc.)
      O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Archivos de programa\Java\jre6\bin\ssv.dll (Sun Microsystems, Inc.)
      O2 - BHO: (Windows Live Aplicación auxiliar de inicio de sesión) - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Archivos de programa\Archivos comunes\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
      O2 - BHO: (DealPly) - {A6174F27-1FFF-E1D6-A93F-BA48AD5DD448} - C:\Archivos de programa\DealPly\DealPlyIE.dll File not found
      O2 - BHO: (Skype Browser Helper) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Archivos de programa\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
      O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Archivos de programa\Google\GoogleToolbarNotifier\5.7.7529.1424\swg.dll (Google Inc.)
      O3 - HKLM\..\Toolbar: (&RoboForm Toolbar) - {724d43a0-0d85-11d4-9908-00400523e39a} - C:\Archivos de programa\Siber Systems\AI RoboForm\roboform.dll (Siber Systems Inc.)
      O3 - HKCU\..\Toolbar\WebBrowser: (&RoboForm Toolbar) - {724D43A0-0D85-11D4-9908-00400523E39A} - C:\Archivos de programa\Siber Systems\AI RoboForm\roboform.dll (Siber Systems Inc.)
      O4 - HKLM..\Run: [Adobe ARM] C:\Archivos de programa\Archivos comunes\Adobe\ARM\1.0\AdobeARM.exe (Adobe Systems Incorporated)
      O4 - HKLM..\Run: [Aimersoft Helper Compact.exe] C:\Archivos de programa\Common Files\Aimersoft\Aimersoft Helper Compact\ASHelper.exe File not found
      O4 - HKLM..\Run: [Alcmtr] C:\WINDOWS\ALCMTR.EXE (Realtek Semiconductor Corp.)
      O4 - HKLM..\Run: [AVG_TRAY] C:\Archivos de programa\AVG\AVG2012\avgtray.exe (AVG Technologies CZ, s.r.o.)
      O4 - HKLM..\Run: [CTStartup] C:\Archivos de programa\Creative\Splash Screen\CTEaxSpl.EXE (Creative Technology Ltd.)
      O4 - HKLM..\Run: [Disc Detector] C:\Archivos de programa\Creative\ShareDLL\CTNotify.exe (Creative Technology Ltd.)
      O4 - HKLM..\Run: [DivXUpdate] C:\Archivos de programa\DivX\DivX Update\DivXUpdate.exe ()
      O4 - HKLM..\Run: [EvtMgr6] C:\Archivos de programa\Logitech\SetPointP\SetPoint.exe (Logitech, Inc.)
      O4 - HKLM..\Run: [HostManager] C:\Archivos de programa\Archivos comunes\AOL\1313533770\ee\aolsoftware.exe (AOL Inc.)
      O4 - HKLM..\Run: [InCD] C:\Archivos de programa\Nero\Nero 7\InCD\InCD.exe (Nero AG)
      O4 - HKLM..\Run: [Intel AppUp(R) center] C:\Archivos de programa\Intel\IntelAppStore\bin\ismagent.exe (Intel Corporation)
      O4 - HKLM..\Run: [Intel AppUp(R) center Systray] C:\Archivos de programa\Intel\IntelAppStore\bin\AppUp.exe (Intel Corporation)
      O4 - HKLM..\Run: [Intel AppUp(SM) center] C:\Archivos de programa\Intel\IntelAppStore\bin\ismagent.exe (Intel Corporation)
      O4 - HKLM..\Run: [Intel AppUp(SM) center Systray] C:\Archivos de programa\Intel\IntelAppStore\bin\AppUp.exe (Intel Corporation)
      O4 - HKLM..\Run: [Jet Detection] C:\Archivos de programa\Creative\SBLive\PROGRAM\ADGJDet.exe ()
      O4 - HKLM..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k File not found
      O4 - HKLM..\Run: [LanguageShortcut] C:\Archivos de programa\CyberLink\PowerDVD\Language\Language.exe ()
      O4 - HKLM..\Run: [NeroFilterCheck] C:\Archivos de programa\Archivos comunes\Ahead\Lib\NeroCheck.exe (Nero AG)
      O4 - HKLM..\Run: [NSWosCheck] C:\Archivos de programa\Norton SystemWorks Premier Edition\osCheck.exe (Symantec Corporation)
      O4 - HKLM..\Run: [NswUiTray] C:\Archivos de programa\Norton SystemWorks Premier Edition\NswUiTray.exe (Symantec Corporation)
      O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.dll (NVIDIA Corporation)
      O4 - HKLM..\Run: [nwiz] C:\WINDOWS\System32\nwiz.exe ()
      O4 - HKLM..\Run: [SecurDisc] C:\Archivos de programa\Nero\Nero 7\InCD\NBHGui.exe (Nero AG)
      O4 - HKLM..\Run: [SunJavaUpdateSched] C:\Archivos de programa\Archivos comunes\Java\Java Update\jusched.exe (Sun Microsystems, Inc.)
      O4 - HKLM..\Run: [TkBellExe] C:\archivos de programa\real\realplayer\update\realsched.exe (RealNetworks, Inc.)
      O4 - HKLM..\Run: [WinampAgent] C:\Archivos de programa\Winamp\winampa.exe (Nullsoft, Inc.)
      O4 - HKLM..\Run: [WINDVDPatch] C:\WINDOWS\System32\CTHELPER.EXE (Creative Technology Ltd)
      O4 - HKCU..\Run: [DriverMax] File not found
      O4 - HKCU..\Run: [klgratis.exe] C:\Archivos de programa\KG Monitor\klgratis.exe ()
      O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
      O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
      O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: =
      O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = _ [binary data]
      O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
      O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Restrictions present
      O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
      O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
      O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoViewOnDrive = 0
      O8 - Extra context menu item: Guardar Formularios - C:\Archivos de programa\Siber Systems\AI RoboForm\RoboFormComSavePass.html ()
      O8 - Extra context menu item: Mostrar Barra de Herramientas - C:\Archivos de programa\Siber Systems\AI RoboForm\RoboFormComShowToolbar.html ()
      O8 - Extra context menu item: Personalizar Menú - C:\Archivos de programa\Siber Systems\AI RoboForm\RoboFormComCustomizeIEMenu.html ()
      O8 - Extra context menu item: Rellenar Formularios - C:\Archivos de programa\Siber Systems\AI RoboForm\RoboFormComFillForms.html ()
      O9 - Extra Button: Rellenar Formularios - {320AF880-6646-11D3-ABEE-C5DBF3571F46} - C:\Archivos de programa\Siber Systems\AI RoboForm\roboform.dll (Siber Systems Inc.)
      O9 - Extra 'Tools' menuitem : Rellenar Formularios - {320AF880-6646-11D3-ABEE-C5DBF3571F46} - C:\Archivos de programa\Siber Systems\AI RoboForm\roboform.dll (Siber Systems Inc.)
      O9 - Extra Button: Guardar - {320AF880-6646-11D3-ABEE-C5DBF3571F49} - C:\Archivos de programa\Siber Systems\AI RoboForm\roboform.dll (Siber Systems Inc.)
      O9 - Extra 'Tools' menuitem : Guardar Formularios - {320AF880-6646-11D3-ABEE-C5DBF3571F49} - C:\Archivos de programa\Siber Systems\AI RoboForm\roboform.dll (Siber Systems Inc.)
      O9 - Extra Button: AVG Do Not Track - {68BCFFE1-A2DA-4B40-9068-87ECBFC19D16} - C:\Archivos de programa\AVG\AVG2012\avgdtiex.dll (AVG Technologies CZ, s.r.o.)
      O9 - Extra Button: Mostrar Barra de Herramientas - {724d43aa-0d85-11d4-9908-00400523e39a} - C:\Archivos de programa\Siber Systems\AI RoboForm\roboform.dll (Siber Systems Inc.)
      O9 - Extra 'Tools' menuitem : Mostrar Barra de Herramientas - {724d43aa-0d85-11d4-9908-00400523e39a} - C:\Archivos de programa\Siber Systems\AI RoboForm\roboform.dll (Siber Systems Inc.)
      O9 - Extra Button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Archivos de programa\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
      O15 - HKCU\..Trusted Domains: aol.com ([objects] * is out of zone range - 5)
      O16 - DPF: {0067DBFC-A752-458C-AE6E-B9C7E63D4824} http://www.logitech.com/devicedetect...etection32.cab (Detección de dispositivos)
      O16 - DPF: {166B1BCA-3F9C-11CF-8075-444553540000} http://download.macromedia.com/pub/s...irector/sw.cab (Shockwave ActiveX Control)
      O16 - DPF: {1E54D648-B804-468d-BC78-4AFFED8E262F} http://www.nvidia.com/content/Driver...reqlab_nvd.cab (System Requirements Lab Class)
      O16 - DPF: {74DBCB52-F298-4110-951D-AD2FF67BC8AB} http://www.nvidia.com/content/Driver...aSmartScan.cab (NVIDIA Smart Scan)
      O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jin...ndows-i586.cab (Java Plug-in 1.6.0_37)
      O16 - DPF: {CAFEEFAC-0016-0000-0037-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jin...ndows-i586.cab (Java Plug-in 1.6.0_37)
      O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jin...ndows-i586.cab (Java Plug-in 1.6.0_37)
      O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 10.3.77.10 10.3.1.100 10.3.1.221
      O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{27C1002C-25D0-4654-9F00-38601C3ADFDB}: DhcpNameServer = 10.3.77.10 10.3.1.100 10.3.1.221
      O18 - Protocol\Handler\ipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Archivos de programa\Archivos comunes\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
      O18 - Protocol\Handler\linkscanner {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Archivos de programa\AVG\AVG2012\avgpp.dll (AVG Technologies CZ, s.r.o.)
      O18 - Protocol\Handler\livecall {828030A1-22C1-4009-854F-8E305202313F} - C:\ARCHIV~1\WINDOW~4\MESSEN~1\MSGRAP~1.DLL File not found
      O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Archivos de programa\Archivos comunes\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
      O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Archivos de programa\Archivos comunes\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
      O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Archivos de programa\Archivos comunes\Microsoft Shared\Help\hxds.dll (Microsoft Corporation)
      O18 - Protocol\Handler\msnim {828030A1-22C1-4009-854F-8E305202313F} - C:\ARCHIV~1\WINDOW~4\MESSEN~1\MSGRAP~1.DLL File not found
      O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Archivos de programa\Archivos comunes\Skype\Skype4COM.dll (Skype Technologies)
      O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Archivos de programa\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
      O18 - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\Archivos de programa\Archivos comunes\Microsoft Shared\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)
      O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
      O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) - C:\WINDOWS\system32\userinit.exe (Microsoft Corporation)
      O20 - Winlogon\Notify\LBTWlgn: DllName - (c:\archivos de programa\archivos comunes\logishrd\bluetooth\LBTWlgn.dll) - c:\Archivos de programa\Archivos comunes\Logishrd\Bluetooth\LBTWLgn.dll (Logitech, Inc.)
      O24 - Desktop Components:0 (Mi página de inicio actual) - About:Home
      O24 - Desktop WallPaper: C:\Documents and Settings\Dardo\Configuración local\Datos de programa\Microsoft\Wallpaper1.bmp
      O24 - Desktop BackupWallPaper: C:\Documents and Settings\Dardo\Configuración local\Datos de programa\Microsoft\Wallpaper1.bmp
      O32 - HKLM CDRom: AutoRun - 1
      O32 - AutoRun File - [2011/08/08 17:29:15 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
      O33 - MountPoints2\{278997f0-498a-11e1-926c-00241d69594d}\Shell - "" = AutoRun
      O33 - MountPoints2\{278997f0-498a-11e1-926c-00241d69594d}\Shell\AutoRun\command - "" = J:\sources\sperr32.exe x64
      O33 - MountPoints2\{5e0aa9c4-5cd3-11e1-9281-00241d69594d}\Shell - "" = AutoRun
      O33 - MountPoints2\{5e0aa9c4-5cd3-11e1-9281-00241d69594d}\Shell\AutoRun\command - "" = J:\Setup\setup.exe
      O33 - MountPoints2\{6ebda45c-c1de-11e0-b907-806d6172696f}\Shell - "" = AutoRun
      O33 - MountPoints2\{6ebda45c-c1de-11e0-b907-806d6172696f}\Shell\AutoRun\command - "" = H:\Run.exe
      O33 - MountPoints2\{77947778-1a50-11e1-91f4-00241d69594d}\Shell - "" = AutoRun
      O33 - MountPoints2\{77947778-1a50-11e1-91f4-00241d69594d}\Shell\AutoRun\command - "" = I:\AutoRun.exe TMM70
      O33 - MountPoints2\{a5174408-1c49-11e1-91f8-00241d69594d}\Shell - "" = AutoRun
      O33 - MountPoints2\{a5174408-1c49-11e1-91f8-00241d69594d}\Shell\AutoRun\command - "" = I:\setup.exe
      O34 - HKLM BootExecute: (autocheck autochk *)
      O34 - HKLM BootExecute: (C:\ARCHIV~1\AVG\AVG2012\avgrsx.exe /sync /restart)
      O34 - HKLM BootExecute: (lsdelete)
      O35 - HKLM\..comfile [open] -- "%1" %*
      O35 - HKLM\..exefile [open] -- "%1" %*
      O37 - HKLM\...com [@ = comfile] -- "%1" %*
      O37 - HKLM\...exe [@ = exefile] -- "%1" %*
      O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
      O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)

      NetSvcs: 6to4 - File not found
      NetSvcs: Ias - File not found
      NetSvcs: Iprip - File not found
      NetSvcs: Irmon - File not found
      NetSvcs: NWCWorkstation - File not found
      NetSvcs: Nwsapagent - File not found
      NetSvcs: WmdmPmSp - File not found

      MsConfig - StartUpFolder: C:^Documents and Settings^Dardo^Menú Inicio^Programas^Inicio^Logitech . Registro de productos.lnk - C:\Archivos de programa\Archivos comunes\Logishrd\eReg\SetPoint\eReg.exe - (Leader Technologies/Logitech)
      MsConfig - StartUpReg: UpdReg - hkey= - key= - C:\WINDOWS\Updreg.EXE (Creative Technology Ltd.)
      MsConfig - State: "system.ini" - 0
      MsConfig - State: "win.ini" - 0
      MsConfig - State: "bootini" - 2
      MsConfig - State: "services" - 0
      MsConfig - State: "startup" - 2

      CREATERESTOREPOINT
      Restore point Set: OTL Restore Point

      ========== Files/Folders - Created Within 30 Days ==========

      [2012/12/11 00:38:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Dardo\Datos de programa\Skype
      [2012/12/11 00:38:27 | 000,000,000 | R--D | C] -- C:\Archivos de programa\Skype
      [2012/12/11 00:38:27 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menú Inicio\Programas\Skype
      [2012/12/11 00:38:27 | 000,000,000 | ---D | C] -- C:\Archivos de programa\Archivos comunes\Skype
      [2012/12/11 00:38:23 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Datos de programa\Skype
      [2012/12/06 2204 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Dardo\Datos de programa\Malwarebytes
      [2012/12/06 22:09:54 | 000,022,856 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys
      [2012/12/06 22:09:54 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menú Inicio\Programas\Malwarebytes' Anti-Malware
      [2012/12/06 22:09:54 | 000,000,000 | ---D | C] -- C:\Archivos de programa\Malwarebytes' Anti-Malware
      [2012/12/06 22:09:54 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Datos de programa\Malwarebytes
      [2011/08/13 21:33:50 | 000,047,360 | ---- | C] (VSO Software) -- C:\Documents and Settings\Dardo\Datos de programa\pcouffin.sys
      [4 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
      [2 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

      ========== Files - Modified Within 30 Days ==========

      [2013/01/02 13:37:22 | 000,000,029 | ---- | M] () -- C:\WINDOWS\System32\TempWmicBatchFile.bat
      [2013/01/02 13:29:59 | 105,024,606 | ---- | M] () -- C:\WINDOWS\System32\drivers\AVG\incavi.avm
      [2013/01/02 13:29:51 | 000,000,025 | ---- | M] () -- C:\WINDOWS\popcinfot.dat
      [2013/01/02 13:11:00 | 000,000,838 | ---- | M] () -- C:\WINDOWS\tasks\Adobe Flash Player Updater.job
      [2013/01/02 12:51:00 | 000,001,036 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
      [2013/01/02 10:57:12 | 003,374,149 | ---- | M] () -- C:\WINDOWS\{00000001-00000000-00000007-00001102-00000002-80651102}.CDF
      [2013/01/02 10:57:12 | 003,374,149 | ---- | M] () -- C:\WINDOWS\{00000001-00000000-00000007-00001102-00000002-80651102}.BAK
      [2013/01/02 10:57:06 | 000,000,292 | ---- | M] () -- C:\WINDOWS\tasks\RealUpgradeLogonTaskS-1-5-21-1275210071-861567501-839522115-1003.job
      [2013/01/02 10:57:03 | 000,081,496 | ---- | M] () -- C:\WINDOWS\System32\nvapps.xml
      [2013/01/02 10:57:02 | 000,001,032 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
      [2013/01/02 10:56:52 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
      [2013/01/01 21:58:31 | 000,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
      [2013/01/01 15:31:45 | 000,025,296 | ---- | M] () -- C:\WINDOWS\System32\BMXCtrlState-{00000001-00000000-00000007-00001102-00000002-80651102}.rfx
      [2013/01/01 15:31:45 | 000,025,296 | ---- | M] () -- C:\WINDOWS\System32\BMXBkpCtrlState-{00000001-00000000-00000007-00001102-00000002-80651102}.rfx
      [2013/01/01 15:31:45 | 000,016,516 | ---- | M] () -- C:\WINDOWS\System32\BMXStateBkp-{00000001-00000000-00000007-00001102-00000002-80651102}.rfx
      [2013/01/01 15:31:45 | 000,016,516 | ---- | M] () -- C:\WINDOWS\System32\BMXState-{00000001-00000000-00000007-00001102-00000002-80651102}.rfx
      [2013/01/01 15:31:45 | 000,001,080 | ---- | M] () -- C:\WINDOWS\System32\settingsbkup.sfm
      [2013/01/01 15:31:45 | 000,001,080 | ---- | M] () -- C:\WINDOWS\System32\settings.sfm
      [2013/01/01 15:31:45 | 000,000,024 | ---- | M] () -- C:\WINDOWS\System32\DVCStateBkp-{00000001-00000000-00000007-00001102-00000002-80651102}.dat
      [2013/01/01 15:31:45 | 000,000,024 | ---- | M] () -- C:\WINDOWS\System32\DVCState-{00000001-00000000-00000007-00001102-00000002-80651102}.dat
      [2013/01/01 03:22:59 | 000,000,318 | ---- | M] () -- C:\WINDOWS\tasks\DealPlyUpdate.job
      [2012/12/31 23:20:01 | 000,000,382 | ---- | M] () -- C:\WINDOWS\tasks\MotoHelper Routing.job
      [2012/12/31 17:26:57 | 000,261,274 | ---- | M] () -- C:\WINDOWS\System32\drivers\AVG\iavichjg.avm
      [2012/12/27 20:51:40 | 000,559,440 | ---- | M] () -- C:\WINDOWS\System32\perfh00A.dat
      [2012/12/27 20:51:40 | 000,492,758 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
      [2012/12/27 20:51:40 | 000,105,828 | ---- | M] () -- C:\WINDOWS\System32\perfc00A.dat
      [2012/12/27 20:51:40 | 000,083,406 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
      [2012/12/27 18:38:01 | 000,000,300 | ---- | M] () -- C:\WINDOWS\tasks\RealUpgradeScheduledTaskS-1-5-21-1275210071-861567501-839522115-1003.job
      [2012/12/27 18:36:16 | 000,054,156 | -H-- | M] () -- C:\WINDOWS\QTFont.qfn
      [2012/12/27 18:25:37 | 000,004,625 | ---- | M] () -- C:\WINDOWS\imsins.BAK
      [2012/12/24 20:02:51 | 000,002,491 | ---- | M] () -- C:\Documents and Settings\All Users\Escritorio\Fruit Ninja Lite.lnk
      [2012/12/22 21:01:59 | 000,176,640 | ---- | M] () -- C:\Documents and Settings\Dardo\Configuración local\Datos de programa\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
      [2012/12/22 21:01:59 | 000,000,069 | ---- | M] () -- C:\WINDOWS\NeroDigital.ini
      [2012/12/21 20:48:44 | 000,983,408 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
      [2012/12/18 17:13:00 | 000,000,298 | ---- | M] () -- C:\WINDOWS\tasks\AppleSoftwareUpdate.job
      [2012/12/11 00:47:55 | 000,002,307 | ---- | M] () -- C:\Documents and Settings\All Users\Escritorio\Skype.lnk
      [2012/12/06 22:09:54 | 000,000,842 | ---- | M] () -- C:\Documents and Settings\All Users\Escritorio\Malwarebytes Anti-Malware.lnk
      [4 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
      [2 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

      ========== Files Created - No Company Name ==========

      [2012/12/27 20:51:38 | 000,000,811 | ---- | C] () -- C:\Documents and Settings\Dardo\Menú Inicio\Programas\Internet Explorer.lnk
      [2012/12/11 00:38:27 | 000,002,307 | ---- | C] () -- C:\Documents and Settings\All Users\Escritorio\Skype.lnk
      [2012/12/06 22:09:54 | 000,000,842 | ---- | C] () -- C:\Documents and Settings\All Users\Escritorio\Malwarebytes Anti-Malware.lnk
      [2012/10/21 23:41:47 | 000,000,025 | ---- | C] () -- C:\WINDOWS\popcinfot.dat
      [2012/02/15 03:53:39 | 000,003,072 | ---- | C] () -- C:\WINDOWS\System32\iacenc.dll
      [2012/01/19 23:37:58 | 000,122,880 | ---- | C] () -- C:\WINDOWS\System32\msjacword.dll
      [2011/12/12 01:38:19 | 000,004,096 | -H-- | C] () -- C:\Documents and Settings\Dardo\Configuración local\Datos de programa\keyfile3.drm
      [2011/11/29 22:56:43 | 000,010,240 | ---- | C] () -- C:\WINDOWS\System32\vidx16.dll
      [2011/10/04 10:58:38 | 000,024,576 | ---- | C] () -- C:\WINDOWS\System32\CTMERes.DLL
      [2011/09/22 13:42:27 | 000,000,887 | ---- | C] () -- C:\WINDOWS\ARPR.INI
      [2011/09/06 17:28:41 | 000,000,123 | ---- | C] () -- C:\WINDOWS\CTRec.INI
      [2011/08/25 00:45:25 | 000,073,220 | ---- | C] () -- C:\WINDOWS\System32\EPPICPrinterDB.dat
      [2011/08/25 00:45:25 | 000,031,053 | ---- | C] () -- C:\WINDOWS\System32\EPPICPattern131.dat
      [2011/08/25 00:45:25 | 000,029,114 | ---- | C] () -- C:\WINDOWS\System32\EPPICPattern1.dat
      [2011/08/25 00:45:25 | 000,027,417 | ---- | C] () -- C:\WINDOWS\System32\EPPICPattern121.dat
      [2011/08/25 00:45:25 | 000,021,021 | ---- | C] () -- C:\WINDOWS\System32\EPPICPattern3.dat
      [2011/08/25 00:45:25 | 000,015,670 | ---- | C] () -- C:\WINDOWS\System32\EPPICPattern5.dat
      [2011/08/25 00:45:25 | 000,013,280 | ---- | C] () -- C:\WINDOWS\System32\EPPICPattern2.dat
      [2011/08/25 00:45:25 | 000,010,673 | ---- | C] () -- C:\WINDOWS\System32\EPPICPattern4.dat
      [2011/08/25 00:45:25 | 000,004,943 | ---- | C] () -- C:\WINDOWS\System32\EPPICPattern6.dat
      [2011/08/25 00:45:25 | 000,001,140 | ---- | C] () -- C:\WINDOWS\System32\EPPICPresetData_PT.dat
      [2011/08/25 00:45:25 | 000,001,140 | ---- | C] () -- C:\WINDOWS\System32\EPPICPresetData_BP.dat
      [2011/08/25 00:45:25 | 000,001,137 | ---- | C] () -- C:\WINDOWS\System32\EPPICPresetData_ES.dat
      [2011/08/25 00:45:25 | 000,001,130 | ---- | C] () -- C:\WINDOWS\System32\EPPICPresetData_FR.dat
      [2011/08/25 00:45:25 | 000,001,130 | ---- | C] () -- C:\WINDOWS\System32\EPPICPresetData_CF.dat
      [2011/08/25 00:45:25 | 000,001,104 | ---- | C] () -- C:\WINDOWS\System32\EPPICPresetData_EN.dat
      [2011/08/25 00:45:25 | 000,000,097 | ---- | C] () -- C:\WINDOWS\System32\PICSDK.ini
      [2011/08/25 00:44:27 | 000,000,078 | ---- | C] () -- C:\WINDOWS\EPSTX200.ini
      [2011/08/16 20:34:58 | 000,000,551 | ---- | C] () -- C:\Documents and Settings\Dardo\Datos de programa\AutoGK.ini
      [2011/08/16 14:39:55 | 000,043,698 | ---- | C] () -- C:\WINDOWS\System32\xvid-uninstall.exe
      [2011/08/16 02:20:25 | 000,000,335 | ---- | C] () -- C:\WINDOWS\nsreg.dat
      [2011/08/13 21:33:50 | 000,007,887 | ---- | C] () -- C:\Documents and Settings\Dardo\Datos de programa\pcouffin.cat
      [2011/08/13 21:33:50 | 000,001,144 | ---- | C] () -- C:\Documents and Settings\Dardo\Datos de programa\pcouffin.inf
      [2011/08/13 03:45:15 | 000,000,069 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini
      [2011/08/09 00:53:44 | 000,048,358 | ---- | C] () -- C:\WINDOWS\System32\uninst Codec pack Base (DivX, Xvid, 3ivx).exe
      [2011/08/09 00:13:03 | 000,000,024 | ---- | C] () -- C:\WINDOWS\System32\DVCStateBkp-{00000001-00000000-00000007-00001102-00000002-80651102}.dat
      [2011/08/09 00:13:03 | 000,000,024 | ---- | C] () -- C:\WINDOWS\System32\DVCState-{00000001-00000000-00000007-00001102-00000002-80651102}.dat
      [2011/08/08 21:35:56 | 000,000,187 | ---- | C] () -- C:\WINDOWS\SBWIN.INI
      [2011/08/08 21:35:55 | 000,000,231 | ---- | C] () -- C:\WINDOWS\AC3API.INI
      [2011/08/08 21:35:53 | 001,048,576 | ---- | C] () -- C:\WINDOWS\System32\SFMAN.DAT
      [2011/08/08 21:35:40 | 000,037,727 | ---- | C] () -- C:\WINDOWS\System32\Emu10kx.ini
      [2011/08/08 21:35:40 | 000,000,029 | ---- | C] () -- C:\WINDOWS\System32\ctzapxx.ini
      [2011/08/08 21:35:28 | 000,164,044 | R--- | C] () -- C:\WINDOWS\System32\ctdlang.dat
      [2011/08/08 21:35:28 | 000,113,373 | R--- | C] () -- C:\WINDOWS\System32\ctbasicw.dat
      [2011/08/08 21:35:28 | 000,113,273 | ---- | C] () -- C:\WINDOWS\System32\CTBAS2W.DAT
      [2011/08/08 21:35:26 | 000,179,669 | R--- | C] () -- C:\WINDOWS\System32\ctstatic.dat
      [2011/08/08 21:35:26 | 000,044,055 | R--- | C] () -- C:\WINDOWS\System32\ctdaught.dat
      [2011/08/08 21:35:12 | 000,049,152 | ---- | C] () -- C:\WINDOWS\System32\KILLAPPS.EXE
      [2011/08/08 21:35:12 | 000,000,180 | ---- | C] () -- C:\WINDOWS\System32\KILL.INI
      [2011/08/08 21:35:11 | 000,184,320 | ---- | C] () -- C:\WINDOWS\PSCONV.EXE
      [2011/08/08 21:35:11 | 000,036,864 | ---- | C] () -- C:\WINDOWS\System32\REGPLIB.EXE
      [2011/08/08 21:35:03 | 000,065,536 | R--- | C] ( ) -- C:\WINDOWS\System32\a3d.dll
      [2011/08/08 17:34:36 | 000,001,732 | ---- | C] () -- C:\WINDOWS\System32\drivers\nvphy.bin
      [2011/08/08 17:30:56 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat
      [2011/08/08 17:26:31 | 000,021,900 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat
      [2011/08/08 16:49:11 | 000,176,640 | ---- | C] () -- C:\Documents and Settings\Dardo\Configuración local\Datos de programa\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
      [2011/08/08 10:19:57 | 000,004,205 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI
      [2011/08/08 10:18:52 | 000,983,408 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT

      ========== ZeroAccess Check ==========

      [2011/09/20 16:36:10 | 000,000,227 | RHS- | M] () -- C:\WINDOWS\assembly\Desktop.ini

      [HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

      [HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

      [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
      "" = %SystemRoot%\system32\shdocvw.dll -- [2008/04/13 20:18:36 | 001,499,648 | ---- | M] (Microsoft Corporation)
      "ThreadingModel" = Apartment

      [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
      "" = C:\WINDOWS\system32\wbem\fastprox.dll -- [2009/02/09 04:52:53 | 000,473,600 | ---- | M] (Microsoft Corporation)
      "ThreadingModel" = Free

      [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
      "" = C:\WINDOWS\system32\wbem\wbemess.dll -- [2008/04/13 20:18:46 | 000,273,920 | ---- | M] (Microsoft Corporation)
      "ThreadingModel" = Both

      ========== LOP Check ==========

      [2011/08/25 00:36:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Datos de programa\Applications
      [2012/03/10 00:39:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Datos de programa\Avanquest
      [2012/11/20 20:32:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Datos de programa\AVG2012
      [2011/08/29 00:29:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Datos de programa\BVRP Software
      [2011/08/09 01:03:25 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Datos de programa\Common Files
      [2011/08/25 00:45:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Datos de programa\EPSON
      [2011/08/28 23:51:39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Datos de programa\Installations
      [2013/01/02 13:30:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Datos de programa\MFAData
      [2012/03/09 22:48:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Datos de programa\Motorola
      [2012/03/09 22:46:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Datos de programa\Motorola Media Link
      [2011/08/28 23:46:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Datos de programa\Nokia
      [2011/08/26 20:47:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Datos de programa\NokiaInstallerCache
      [2011/08/28 23:43:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Datos de programa\PC Suite
      [2012/03/13 19:54:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Datos de programa\Pinnacle
      [2012/10/21 21:44:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Datos de programa\PopCap Games
      [2012/09/19 00:05:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Datos de programa\RoboForm
      [2012/03/09 22:36:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Datos de programa\Sony
      [2011/08/21 17:28:39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Datos de programa\Steinberg
      [2012/12/06 23:22:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Datos de programa\SUS
      [2012/10/23 19:40:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Datos de programa\TEMP
      [2011/08/16 16:30:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Datos de programa\Viewpoint
      [2012/01/25 04:14:44 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Datos de programa\{B49A644A-1076-4A3D-B124-DAA7862F2318}
      [2011/11/22 21:13:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Dardo\Datos de programa\AVG
      [2011/11/14 1340 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Dardo\Datos de programa\AVG2012
      [2012/05/27 01:44:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Dardo\Datos de programa\Broad Intelligence
      [2011/09/20 20:50:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Dardo\Datos de programa\BSplayer PRO
      [2011/08/09 00:53:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Dardo\Datos de programa\Crystal Player
      [2012/02/20 12:06:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Dardo\Datos de programa\EPSON
      [2012/05/17 23:03:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Dardo\Datos de programa\invibes
      [2012/11/29 16:49:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Dardo\Datos de programa\KG Monitor
      [2011/08/09 10:25:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Dardo\Datos de programa\Leadertech
      [2012/03/09 23:20:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Dardo\Datos de programa\motorola
      [2011/08/13 03:16:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Dardo\Datos de programa\Moyea
      [2011/10/05 22:26:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Dardo\Datos de programa\Nokia
      [2011/10/05 22:26:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Dardo\Datos de programa\Nokia Ovi Suite
      [2011/08/28 23:46:34 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Dardo\Datos de programa\PC Suite
      [2012/03/13 20:00:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Dardo\Datos de programa\Steinberg
      [2012/05/21 11:00:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Dardo\Datos de programa\Unity
      [2011/08/20 20:46:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Dardo\Datos de programa\Vso
      [2011/08/13 19:01:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Dardo\Datos de programa\Xilisoft

      ========== Custom Scans ==========

      ========== Drive Information ==========

      Physical Drives
      ---------------

      Drive: \\\\.\\PHYSICALDRIVE0 - Fixed\thard disk media
      Interface type: IDE
      Media Type: Fixed\thard disk media
      Model: Hitachi HDS722020ALA330
      Partitions: 5
      Status: OK
      Status Info: 0

      Partitions
      ---------------

      DeviceID: Disk #0, Partition #0
      PartitionType: Installable File System
      Bootable: True
      BootPartition: True
      PrimaryPartition: True
      Size: 146.00GB
      Starting Offset: 32256
      Hidden sectors: 0


      DeviceID: Disk #0, Partition #1
      PartitionType: Extended w/Extended Int 13
      Bootable: False
      BootPartition: False
      PrimaryPartition: False
      Size: 1,717.00GB
      Starting Offset: 157283804160
      Hidden sectors: 0


      < %appdata%\* >
      [2012/07/14 19:39:16 | 000,000,551 | ---- | M] () -- C:\Documents and Settings\Dardo\Datos de programa\AutoGK.ini
      [2012/05/17 23:08:35 | 000,001,062 | ---- | M] () -- C:\Documents and Settings\Dardo\Datos de programa\config.txt
      [2011/08/08 10:19:29 | 000,000,062 | -HS- | M] () -- C:\Documents and Settings\Dardo\Datos de programa\desktop.ini
      [2011/08/13 21:33:50 | 000,007,887 | ---- | M] () -- C:\Documents and Settings\Dardo\Datos de programa\pcouffin.cat
      [2011/08/13 21:33:50 | 000,001,144 | ---- | M] () -- C:\Documents and Settings\Dardo\Datos de programa\pcouffin.inf
      [2011/08/13 21:33:53 | 000,000,034 | ---- | M] () -- C:\Documents and Settings\Dardo\Datos de programa\pcouffin.log
      [2011/08/13 21:33:50 | 000,047,360 | ---- | M] (VSO Software) -- C:\Documents and Settings\Dardo\Datos de programa\pcouffin.sys
      Invalid Environment Variable: localappdata

      < %systemdrive%\*.* >
      [2011/08/16 16:31:11 | 000,010,920 | ---- | M] () -- C:\aolconnfix.exe
      [2011/08/16 16:31:11 | 000,001,039 | ---- | M] () -- C:\aolconnfix.txt
      [2011/08/13 21:58:06 | 000,001,041 | ---- | M] () -- C:\AT-Cuarentena
      [2012/12/26 20:17:36 | 000,000,090 | ---- | M] () -- C:\audiodec.txt
      [2011/08/08 17:29:15 | 000,000,000 | ---- | M] () -- C:\AUTOEXEC.BAT
      [2012/11/30 01:14:13 | 000,000,223 | RHS- | M] () -- C:\boot.ini
      [2001/08/24 04:00:00 | 000,004,952 | RHS- | M] () -- C:\Bootfont.bin
      [2011/08/08 17:29:15 | 000,000,000 | ---- | M] () -- C:\CONFIG.SYS
      [2011/08/08 17:38:05 | 000,000,206 | ---- | M] () -- C:\csb.log
      [2007/08/24 13:24:08 | 016,138,240 | ---- | M] (Steinberg Media Technologies) -- C:\HALionOne.dll
      [2011/08/16 16:30:17 | 000,031,185 | ---- | M] () -- C:\install.log
      [2011/08/08 17:29:15 | 000,000,000 | RHS- | M] () -- C:\IO.SYS
      [2011/08/08 17:29:15 | 000,000,000 | RHS- | M] () -- C:\MSDOS.SYS
      [2004/08/03 14:38:34 | 000,047,564 | RHS- | M] () -- C:\NTDETECT.COM
      [2011/08/09 00:23:49 | 000,251,168 | RHS- | M] () -- C:\ntldr
      [2013/01/02 10:56:49 | 2145,386,496 | -HS- | M] () -- C:\pagefile.sys
      [2011/08/08 17:38:05 | 000,001,593 | ---- | M] () -- C:\RHDSetup.log
      [2012/07/30 23:07:46 | 000,000,011 | ---- | M] () -- C:\trace.ini

      ========== Alternate Data Streams ==========

      @Alternate Data Stream - 181 bytes -> C:\Documents and Settings\All Users\Datos de programa\TEMP:8927A071
      @Alternate Data Stream - 146 bytes -> C:\Documents and Settings\All Users\Datos de programa\TEMP:0B4227B4

      < End of report >

    4. #14
      Ex-Colaborador Avatar de RevesdeLiberte
      Registrado
      feb 2010
      Ubicación
      México
      Mensajes
      7.976

      Re: IE me abre con http://www_getwindowinfo/ y no lo puedo sacar.

      Buenas.


      Importante: Cortar OTL.exe de la carpeta Downloads y Pegar en el Escritorio.


      Realiza lo siguiente:


      • Has una copia se seguridad con ERUNT
        • Doble clic sobre OTL.exe para ejecutarlo.
      • Copie todo el siguiente código: (No copiar la palabra "Código:")
      Código:
      :OTL
      IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://start.facemoods.com/?a=ddrnw&s={searchTerms}&f=4
      IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
      IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC
      IE - HKCU\..\SearchScopes\{0D7562AE-8EF6-416d-A838-AB665251703A}: "URL" = http://start.facemoods.com/?a=ddrnw&s={searchTerms}&f=4
      O2 - BHO: (RoboForm Toolbar Helper) - {724d43a9-0d85-11d4-9908-00400523e39a} - C:\Archivos de programa\Siber Systems\AI RoboForm\roboform.dll (Siber Systems Inc.)
      O2 - BHO: (DealPly) - {A6174F27-1FFF-E1D6-A93F-BA48AD5DD448} - C:\Archivos de programa\DealPly\DealPlyIE.dll File not found
      O3 - HKLM\..\Toolbar: (&RoboForm Toolbar) - {724d43a0-0d85-11d4-9908-00400523e39a} - C:\Archivos de programa\Siber Systems\AI RoboForm\roboform.dll (Siber Systems Inc.)
      O3 - HKCU\..\Toolbar\WebBrowser: (&RoboForm Toolbar) - {724D43A0-0D85-11D4-9908-00400523E39A} - C:\Archivos de programa\Siber Systems\AI RoboForm\roboform.dll (Siber Systems Inc.)
      O4 - HKCU..\Run: [DriverMax] File not found
      O4 - HKLM..\Run: [Aimersoft Helper Compact.exe] C:\Archivos de programa\Common Files\Aimersoft\Aimersoft Helper Compact\ASHelper.exe File not found
      O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jin...ndows-i586.cab (Java Plug-in 1.6.0_37)
      O16 - DPF: {CAFEEFAC-0016-0000-0037-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jin...ndows-i586.cab (Java Plug-in 1.6.0_37)
      O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jin...ndows-i586.cab (Java Plug-in 1.6.0_37)
      [2013/01/02 10:57:03 | 000,081,496 | ---- | M] () -- C:\WINDOWS\System32\nvapps.xml
      [2013/01/02 13:37:22 | 000,000,029 | ---- | M] () -- C:\WINDOWS\System32\TempWmicBatchFile.bat
      [2011/09/24 01:27:37 | 000,002,048 | ---- | M] () -- C:\Archivos de programa\mozilla firefox\searchplugins\fcmdSrch.xml
      O33 - MountPoints2\{278997f0-498a-11e1-926c-00241d69594d}\Shell - "" = AutoRun
      O33 - MountPoints2\{278997f0-498a-11e1-926c-00241d69594d}\Shell\AutoRun\command - "" = J:\sources\sperr32.exe x64
      O33 - MountPoints2\{5e0aa9c4-5cd3-11e1-9281-00241d69594d}\Shell - "" = AutoRun
      O33 - MountPoints2\{5e0aa9c4-5cd3-11e1-9281-00241d69594d}\Shell\AutoRun\command - "" = J:\Setup\setup.exe
      O33 - MountPoints2\{6ebda45c-c1de-11e0-b907-806d6172696f}\Shell - "" = AutoRun
      O33 - MountPoints2\{6ebda45c-c1de-11e0-b907-806d6172696f}\Shell\AutoRun\command - "" = H:\Run.exe
      O33 - MountPoints2\{77947778-1a50-11e1-91f4-00241d69594d}\Shell - "" = AutoRun
      O33 - MountPoints2\{77947778-1a50-11e1-91f4-00241d69594d}\Shell\AutoRun\command - "" = I:\AutoRun.exe TMM70
      O33 - MountPoints2\{a5174408-1c49-11e1-91f8-00241d69594d}\Shell - "" = AutoRun
      O33 - MountPoints2\{a5174408-1c49-11e1-91f8-00241d69594d}\Shell\AutoRun\command - "" = I:\setup.exe
      @Alternate Data Stream - 181 bytes -> C:\Documents and Settings\All Users\Datos de programa\TEMP:8927A071
      @Alternate Data Stream - 146 bytes -> C:\Documents and Settings\All Users\Datos de programa\TEMP:0B4227B4
      
      :Files
      recycler /alldrives
      
      :Commands
      [Purity]
      [EmptyTemp]
      [EmptyJava]
      • Pegue el código sobre el área Análisis Personalizados/Código de Reparación.



      • Haga clic en Reparar para comenzar la reparación. Clic en Aceptar para reiniciar el ordenador.
      • Tras el reinicio se abrirá un reporte con los resultados, copia y pega todo el contenido en tu siguiente respuesta.


      En tu siguiente respuesta pegas el reporte completo, no olvides comentar si se soluciono el problema inicial o no.
      La paciencia es un árbol de raíces amargas, pero de frutos dulces.

      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.

    Página 2 de 2 PrimeroPrimero 12