• Registrarse
  • Iniciar sesión


  • Resultados 1 al 10 de 10

    Infección en ConduitInstaler

    Al analizar el ordenador con el AVG Free me encontro un virus en el archivo conduitinstaler. He analizado el ordenador con el programa Malwarebytes anti-malware y el resporte me puso esto: Malwarebytes Anti-Malware 1.65.1.1000 www.malwarebytes.org ...

    1. #1
      Usuario Avatar de Frodor
      Registrado
      oct 2009
      Ubicación
      Santiago
      Mensajes
      48

      Infección en ConduitInstaler

      Al analizar el ordenador con el AVG Free me encontro un virus en el archivo conduitinstaler.
      He analizado el ordenador con el programa Malwarebytes anti-malware y el resporte me puso esto:

      Malwarebytes Anti-Malware 1.65.1.1000
      www.malwarebytes.org

      Versión de la Base de Datos: v2012.12.26.11

      Windows 7 Service Pack 1 x64 NTFS
      Internet Explorer 9.0.8112.16421
      Manuel Z F :: MANUEL [administrador]

      26/12/2012 20:00:53
      mbam-log-2012-12-26 (21-10-49).txt

      Tipos de Análisis: Análisis Completo (C:\|D:\|)
      Opciones de análisis activado: Memoria | Inicio | Registro | Sistema de archivos | Heurística/Extra | Heurística/Shuriken | PUP | PUM
      Opciones de análisis desactivados: P2P
      Objetos examinados: 468936
      Tiempo transcurrido: 1 hora(s), 8 minuto(s), 59 segundo(s)

      Procesos en Memoria Detectados: 0
      (No se han detectado elementos maliciosos)

      Módulos de Memoria Detectados: 0
      (No se han detectado elementos maliciosos)

      Claves del Registro Detectados: 0
      (No se han detectado elementos maliciosos)

      Valores del Registro Detectados: 0
      (No se han detectado elementos maliciosos)

      Elementos de Datos del Registro Detectados: 0
      (No se han detectado elementos maliciosos)

      Carpetas Detectadas: 0
      (No se han detectado elementos maliciosos)

      Archivos Detectados: 3
      C:\Program Files (x86)\TuneUp Utilities 2013\Patch.exe (Riskware.Tool.CK) -> No se tomaron medidas.
      C:\Users\Manuel Z F\Documents\programas\Software\Adobe Lightroom\keygen.exe (Malware.Packer.Gen) -> No se tomaron medidas.
      C:\Users\Manuel Z F\Documents\programas\Software\TuneUp_2013\Patch.exe (Riskware.Tool.CK) -> No se tomaron medidas.

      fin)


      Como puedo hacer para eliminar este virus.

    2. #2
      Usuario Avatar de Raudron
      Registrado
      sep 2012
      Ubicación
      El Mundo
      Mensajes
      1.467

      Re: Infección en ConduitInstaler

      Hola Manuel

      El reporte de Malwarebytes Antimalware muestra que no eliminaste las infecciones que encontró. Realiza un escaneo completo, selecciona y elimina todo lo que muestre

      Adicionalmente, por favor realiza lo siguiente:

      • Descarga >> AT-Destroyer 2.0 (Adwares/Toolbars-Destroyer 2.0) by @Infospyware.
      • Desactiva temporalmente el Antivirus y/o Antispyware.
      • Ejecuta AT-Destroyer. (Si usas Windows Vista o 7 Presiona clic derecho y selecciona "Ejecutar como Administrador.")
      • Aparecerá el Disclaimer, si estás de acuerdo, presiona SI para continuar.
      • Presiona sobre la opción Buscar y Destruir para comenzar el escaneo.
      • AT-Destroyer desconectará el escritorio momentáneamente, esto es normal.
      • Una vez terminado el escaneo, podrás volver a ver el escritorio y se te abrirá un reporte, que deberás copiar en tu próxima respuesta comentando cómo funciona el sistema.(También lo puedes encontrar en C:\AT-Destroyer.log)
      • Inmediatamente debes Reiniciar el equipo.


      Descarga y ejecuta Ccleaner, de la siguiente forma:
      • Ve a su sección Herramientas > Inicio > Guardar a un archivo de texto. Guárdalo como startup.txt
      • Luego ve a Herramientas > Desinstalar programas > Guardar a un archivo de texto. Guárdalo como install.txt


      Nos traes el reporte de AT-Destroyer, y nos comentas cómo funciona tu ordenador
      Saludos

    3. #3
      Usuario Avatar de Frodor
      Registrado
      oct 2009
      Ubicación
      Santiago
      Mensajes
      48

      Re: Infección en ConduitInstaler

      Por una parte no he borrado esos 3 archivos porque pertenecen a programs que he bajado y no quiero perder los parches o keygen.
      Cuando pase el programa que me dices pego el reporte aquí.

    4. #4
      Usuario Avatar de Raudron
      Registrado
      sep 2012
      Ubicación
      El Mundo
      Mensajes
      1.467

      Re: Infección en ConduitInstaler

      Hola,

      OK... Respeto tu decisión, pero te recomiendo eliminarlos ya que son peligrosos

      Esperamos los resultados.

      Saludos

    5. #5
      Usuario Avatar de Frodor
      Registrado
      oct 2009
      Ubicación
      Santiago
      Mensajes
      48

      Re: Infección en ConduitInstaler

      Por mi parte el ordenador no va nada mal solo que me encontró ese archivo infectado y esta tarde no me funcionaba un pendrive en los 4 USB era fallo del ordenador porque en otro si funcionaba bien.
      Pego reporte:

      ######################## AT-Destroyer [2.1] By Infospyware.
      Hora/Día/Mes/Año: 23:52:54 \\\ 26/12/2012
      AT-Destroyer 2.1 By Infospyware ---> InfoSpyware
      Última actualización: 30/11/2012
      Opción escogida: 2 :Buscar y Destruir
      Versión Internet Explorer:9.0.8112.16421
      Mozilla Firefox:17.0.1.4715
      Google Chrome:23.0.1271.97
      Privilegios: Manuel Z F - Administrador
      Modo Actual: Modo Normal.
      Nombre del pc: MANUEL
      Información del sistema operativo:X64-WIN_7-Service Pack 1
      nombre del usuario:Manuel Z F
      Lenguaje del sistema: Español



      >>>>>>> Servicios <<<<<<<



      >>>>>> Carpetas <<<<<<

      C:\Users\Manuel Z F\AppData\Roaming\OpenCandy\0C5D030F589E4DE1AF92C23B391E68F7 (W32/Adware.OpenCandy)
      C:\Users\Manuel Z F\AppData\Roaming\OpenCandy\0C5D030F589E4DE1AF92C23B391E68F7\TuneUpUtilities2013_2200344_es-ES.exe (W32/Adware.OpenCandy)
      C:\Users\Manuel Z F\AppData\Roaming\OpenCandy (W32/Adware.OpenCandy)
      C:\Users\Manuel Z F\AppData\Roaming\Babylon\log_file.txt (W32/PND.Babylon Toolbar)
      C:\Users\Manuel Z F\AppData\Roaming\Babylon (W32/PND.Babylon Toolbar)
      C:\ProgramData\Browser Manager\2.2.643.41 (W32/Adware.BrowserCompanion)
      C:\ProgramData\Browser Manager\2.2.643.41\{16cdff19-861d-48e3-a751-d99a27784753} (W32/Adware.BrowserCompanion)
      C:\ProgramData\Browser Manager\2.2.643.41\{16cdff19-861d-48e3-a751-d99a27784753}\traking_settings (W32/Adware.BrowserCompanion)
      C:\ProgramData\Browser Manager\2.2.643.41\{16cdff19-861d-48e3-a751-d99a27784753}\traking_settings\00 (W32/Adware.BrowserCompanion)
      C:\ProgramData\Browser Manager\2.2.643.41\{16cdff19-861d-48e3-a751-d99a27784753}\traking_settings\01 (W32/Adware.BrowserCompanion)
      C:\ProgramData\Browser Manager\2.2.643.41\{16cdff19-861d-48e3-a751-d99a27784753}\traking_settings\02 (W32/Adware.BrowserCompanion)
      C:\ProgramData\Browser Manager\2.2.643.41\{16cdff19-861d-48e3-a751-d99a27784753}\traking_settings\10 (W32/Adware.BrowserCompanion)
      C:\ProgramData\Browser Manager\2.2.643.41\{16cdff19-861d-48e3-a751-d99a27784753}\traking_settings\11 (W32/Adware.BrowserCompanion)
      C:\ProgramData\Browser Manager\2.2.643.41\{16cdff19-861d-48e3-a751-d99a27784753}\traking_settings\12 (W32/Adware.BrowserCompanion)
      C:\ProgramData\Browser Manager\2.2.643.41\{16cdff19-861d-48e3-a751-d99a27784753}\traking_settings\20 (W32/Adware.BrowserCompanion)
      C:\ProgramData\Browser Manager\2.2.643.41\{16cdff19-861d-48e3-a751-d99a27784753}\traking_settings\21 (W32/Adware.BrowserCompanion)
      C:\ProgramData\Browser Manager\2.2.643.41\{16cdff19-861d-48e3-a751-d99a27784753}\traking_settings\22 (W32/Adware.BrowserCompanion)
      C:\ProgramData\Browser Manager\2.3.787.43 (W32/Adware.BrowserCompanion)
      C:\ProgramData\Browser Manager\2.3.787.43\{16cdff19-861d-48e3-a751-d99a27784753} (W32/Adware.BrowserCompanion)
      C:\ProgramData\Browser Manager\2.3.787.43\{16cdff19-861d-48e3-a751-d99a27784753}\browsemngr.crx (W32/Adware.BrowserCompanion)
      C:\ProgramData\Browser Manager\2.3.787.43\{16cdff19-861d-48e3-a751-d99a27784753}\browsemngr.dll (W32/Adware.BrowserCompanion)
      C:\ProgramData\Browser Manager\2.3.787.43\{16cdff19-861d-48e3-a751-d99a27784753}\browsemngr.exe (W32/Adware.BrowserCompanion)
      C:\ProgramData\Browser Manager\2.3.787.43\{16cdff19-861d-48e3-a751-d99a27784753}\browsemngr.settings (W32/Adware.BrowserCompanion)
      C:\ProgramData\Browser Manager\2.3.787.43\{16cdff19-861d-48e3-a751-d99a27784753}\FirefoxExtension (W32/Adware.BrowserCompanion)
      C:\ProgramData\Browser Manager\2.3.787.43\{16cdff19-861d-48e3-a751-d99a27784753}\FirefoxExtension\chrome.manifest (W32/Adware.BrowserCompanion)
      C:\ProgramData\Browser Manager\2.3.787.43\{16cdff19-861d-48e3-a751-d99a27784753}\FirefoxExtension\components (W32/Adware.BrowserCompanion)
      C:\ProgramData\Browser Manager\2.3.787.43\{16cdff19-861d-48e3-a751-d99a27784753}\FirefoxExtension\components\browsemngr-15.0.dll (W32/Adware.BrowserCompanion)
      C:\ProgramData\Browser Manager\2.3.787.43\{16cdff19-861d-48e3-a751-d99a27784753}\FirefoxExtension\components\browsemngr-16.0.dll (W32/Adware.BrowserCompanion)
      C:\ProgramData\Browser Manager\2.3.787.43\{16cdff19-861d-48e3-a751-d99a27784753}\FirefoxExtension\components\browsemngr-3.6.xpt (W32/Adware.BrowserCompanion)
      C:\ProgramData\Browser Manager\2.3.787.43\{16cdff19-861d-48e3-a751-d99a27784753}\FirefoxExtension\content (W32/Adware.BrowserCompanion)
      C:\ProgramData\Browser Manager\2.3.787.43\{16cdff19-861d-48e3-a751-d99a27784753}\FirefoxExtension\content\browsemngr.js (W32/Adware.BrowserCompanion)
      C:\ProgramData\Browser Manager\2.3.787.43\{16cdff19-861d-48e3-a751-d99a27784753}\FirefoxExtension\content\overlay.xul (W32/Adware.BrowserCompanion)
      C:\ProgramData\Browser Manager\2.3.787.43\{16cdff19-861d-48e3-a751-d99a27784753}\FirefoxExtension\install.rdf (W32/Adware.BrowserCompanion)
      C:\ProgramData\Browser Manager\2.3.787.43\{16cdff19-861d-48e3-a751-d99a27784753}\traking_settings (W32/Adware.BrowserCompanion)
      C:\ProgramData\Browser Manager\2.3.787.43\{16cdff19-861d-48e3-a751-d99a27784753}\traking_settings\00 (W32/Adware.BrowserCompanion)
      C:\ProgramData\Browser Manager\2.3.787.43\{16cdff19-861d-48e3-a751-d99a27784753}\traking_settings\01 (W32/Adware.BrowserCompanion)
      C:\ProgramData\Browser Manager\2.3.787.43\{16cdff19-861d-48e3-a751-d99a27784753}\traking_settings\02 (W32/Adware.BrowserCompanion)
      C:\ProgramData\Browser Manager\2.3.787.43\{16cdff19-861d-48e3-a751-d99a27784753}\traking_settings\10 (W32/Adware.BrowserCompanion)
      C:\ProgramData\Browser Manager\2.3.787.43\{16cdff19-861d-48e3-a751-d99a27784753}\traking_settings\11 (W32/Adware.BrowserCompanion)
      C:\ProgramData\Browser Manager\2.3.787.43\{16cdff19-861d-48e3-a751-d99a27784753}\traking_settings\12 (W32/Adware.BrowserCompanion)
      C:\ProgramData\Browser Manager\2.3.787.43\{16cdff19-861d-48e3-a751-d99a27784753}\traking_settings\20 (W32/Adware.BrowserCompanion)
      C:\ProgramData\Browser Manager\2.3.787.43\{16cdff19-861d-48e3-a751-d99a27784753}\traking_settings\21 (W32/Adware.BrowserCompanion)
      C:\ProgramData\Browser Manager\2.3.787.43\{16cdff19-861d-48e3-a751-d99a27784753}\traking_settings\22 (W32/Adware.BrowserCompanion)
      C:\ProgramData\Browser Manager\2.3.787.43\{16cdff19-861d-48e3-a751-d99a27784753}\uninstall.exe (W32/Adware.BrowserCompanion)
      C:\ProgramData\Browser Manager (W32/Adware.BrowserCompanion) <--Se eliminará la carpeta y los subdirectorios al reiniciar
      C:\Users\Manuel Z F\AppData\Local\Google\Chrome\User Data\Default\Extensions\jcdgjdiieiljkfkdcloehkohchhpekkn\1.0.0.0_0 86
      C:\Users\Manuel Z F\AppData\Local\Google\Chrome\User Data\Default\Extensions\jcdgjdiieiljkfkdcloehkohchhpekkn\1.0.0.0_0\128.png 86
      C:\Users\Manuel Z F\AppData\Local\Google\Chrome\User Data\Default\Extensions\jcdgjdiieiljkfkdcloehkohchhpekkn\1.0.0.0_0\16.png 86
      C:\Users\Manuel Z F\AppData\Local\Google\Chrome\User Data\Default\Extensions\jcdgjdiieiljkfkdcloehkohchhpekkn\1.0.0.0_0\48.png 86
      C:\Users\Manuel Z F\AppData\Local\Google\Chrome\User Data\Default\Extensions\jcdgjdiieiljkfkdcloehkohchhpekkn\1.0.0.0_0\Copy of fbsim.js 86
      C:\Users\Manuel Z F\AppData\Local\Google\Chrome\User Data\Default\Extensions\jcdgjdiieiljkfkdcloehkohchhpekkn\1.0.0.0_0\Copy of manifest.json 86
      C:\Users\Manuel Z F\AppData\Local\Google\Chrome\User Data\Default\Extensions\jcdgjdiieiljkfkdcloehkohchhpekkn\1.0.0.0_0\fbsim.js 86
      C:\Users\Manuel Z F\AppData\Local\Google\Chrome\User Data\Default\Extensions\jcdgjdiieiljkfkdcloehkohchhpekkn\1.0.0.0_0\manifest.json 86
      C:\Users\Manuel Z F\AppData\Local\Google\Chrome\User Data\Default\Extensions\jcdgjdiieiljkfkdcloehkohchhpekkn 86
      C:\ProgramData\Babylon (W32/PND.Babylon Toolbar)
      C:\ProgramData\Browser Manager\2.3.787.43 (W32/Adware.BrowserCompanion)
      C:\ProgramData\Browser Manager\2.3.787.43\{16cdff19-861d-48e3-a751-d99a27784753} (W32/Adware.BrowserCompanion)
      C:\ProgramData\Browser Manager\2.3.787.43\{16cdff19-861d-48e3-a751-d99a27784753}\browsemngr.dll (W32/Adware.BrowserCompanion)
      C:\ProgramData\Browser Manager\2.3.787.43\{16cdff19-861d-48e3-a751-d99a27784753}\browsemngr.exe (W32/Adware.BrowserCompanion)
      C:\ProgramData\Browser Manager\2.3.787.43\{16cdff19-861d-48e3-a751-d99a27784753}\browsemngr.settings (W32/Adware.BrowserCompanion)
      C:\ProgramData\Browser Manager\2.3.787.43\{16cdff19-861d-48e3-a751-d99a27784753}\FirefoxExtension (W32/Adware.BrowserCompanion)
      C:\ProgramData\Browser Manager\2.3.787.43\{16cdff19-861d-48e3-a751-d99a27784753}\FirefoxExtension\chrome.manifest (W32/Adware.BrowserCompanion)
      C:\ProgramData\Browser Manager\2.3.787.43\{16cdff19-861d-48e3-a751-d99a27784753}\FirefoxExtension\components (W32/Adware.BrowserCompanion)
      C:\ProgramData\Browser Manager\2.3.787.43\{16cdff19-861d-48e3-a751-d99a27784753}\FirefoxExtension\components\browsemngr-15.0.dll (W32/Adware.BrowserCompanion)
      C:\ProgramData\Browser Manager\2.3.787.43\{16cdff19-861d-48e3-a751-d99a27784753}\FirefoxExtension\components\browsemngr-16.0.dll (W32/Adware.BrowserCompanion)
      C:\ProgramData\Browser Manager\2.3.787.43\{16cdff19-861d-48e3-a751-d99a27784753}\FirefoxExtension\components\browsemngr-3.6.xpt (W32/Adware.BrowserCompanion)
      C:\ProgramData\Browser Manager\2.3.787.43\{16cdff19-861d-48e3-a751-d99a27784753}\FirefoxExtension\content (W32/Adware.BrowserCompanion)
      C:\ProgramData\Browser Manager\2.3.787.43\{16cdff19-861d-48e3-a751-d99a27784753}\FirefoxExtension\content\browsemngr.js (W32/Adware.BrowserCompanion)
      C:\ProgramData\Browser Manager\2.3.787.43\{16cdff19-861d-48e3-a751-d99a27784753}\FirefoxExtension\content\overlay.xul (W32/Adware.BrowserCompanion)
      C:\ProgramData\Browser Manager\2.3.787.43\{16cdff19-861d-48e3-a751-d99a27784753}\FirefoxExtension\install.rdf (W32/Adware.BrowserCompanion)
      C:\ProgramData\Browser Manager\2.3.787.43\{16cdff19-861d-48e3-a751-d99a27784753}\traking_settings (W32/Adware.BrowserCompanion)
      C:\ProgramData\Browser Manager\2.3.787.43\{16cdff19-861d-48e3-a751-d99a27784753}\traking_settings\00 (W32/Adware.BrowserCompanion)
      C:\ProgramData\Browser Manager\2.3.787.43\{16cdff19-861d-48e3-a751-d99a27784753}\traking_settings\01 (W32/Adware.BrowserCompanion)
      C:\ProgramData\Browser Manager\2.3.787.43\{16cdff19-861d-48e3-a751-d99a27784753}\traking_settings\02 (W32/Adware.BrowserCompanion)
      C:\ProgramData\Browser Manager\2.3.787.43\{16cdff19-861d-48e3-a751-d99a27784753}\traking_settings\10 (W32/Adware.BrowserCompanion)
      C:\ProgramData\Browser Manager\2.3.787.43\{16cdff19-861d-48e3-a751-d99a27784753}\traking_settings\11 (W32/Adware.BrowserCompanion)
      C:\ProgramData\Browser Manager\2.3.787.43\{16cdff19-861d-48e3-a751-d99a27784753}\traking_settings\12 (W32/Adware.BrowserCompanion)
      C:\ProgramData\Browser Manager\2.3.787.43\{16cdff19-861d-48e3-a751-d99a27784753}\traking_settings\20 (W32/Adware.BrowserCompanion)
      C:\ProgramData\Browser Manager\2.3.787.43\{16cdff19-861d-48e3-a751-d99a27784753}\traking_settings\21 (W32/Adware.BrowserCompanion)
      C:\ProgramData\Browser Manager\2.3.787.43\{16cdff19-861d-48e3-a751-d99a27784753}\traking_settings\22 (W32/Adware.BrowserCompanion)
      C:\ProgramData\Browser Manager\2.3.787.43\{16cdff19-861d-48e3-a751-d99a27784753}\uninstall.exe (W32/Adware.BrowserCompanion)
      C:\ProgramData\Browser Manager (W32/Adware.BrowserCompanion) <--Se eliminará la carpeta y los subdirectorios al reiniciar


      >>>>>> Archivos <<<<<<

      C:\Program Files (x86)\mozilla firefox\searchplugins\babylon.xml
      C:\Windows\System32\ezsidmv.dat
      C:\user.js


      >>>>>> Registro <<<<<<

      HKEY_CURRENT_USER\Software\DataMngr
      HKEY_LOCAL_MACHINE\SOFTWARE\DataMngr
      HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2EECD738-5844-4a99-B4B6-146BF802613B}
      HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{64182481-4F71-486b-A045-B233BD0DA8FC}
      HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{DDE2C74F-58CC-4d71-8CE1-09DEBB8CFB78}
      HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}


      >>>>>> Heurística <<<<<<

      C:\Users\Manuel Z F\AppData\Local\ConduitInstaller.exe (Heur malware.win32.generic)
      C:\Users\Manuel Z F\AppData\Local\rc_v3setup.exe (Heur malware.win32.generic)


      >>>>>> Internet Explorer <<<<<<

      Start Page==www.google.com
      Local Page==
      Search Page==http://go.microsoft.com/fwlink/?LinkId=54896
      Default_search_url==http://go.microsoft.com/fwlink/?LinkId=54896
      Default_Page_URL==http://g.uk.msn.com/HPCON/10


      ''HKCU\Software\Microsoft\Internet Explorer\Main''
      Start Page==www.google.com
      Local Page==C:\Windows\system32\blank.htm
      Search Page==http://go.microsoft.com/fwlink/?LinkId=54896
      Default_search_url==
      Default_Page_URL==http://g.uk.msn.com/HPCON/10


      HKEY_USERS\S-1-5-21-3281925394-3309705923-1347756159-1000\Software\Microsoft\Internet Explorer\Main''
      Start Page==www.google.com
      Local Page==C:\Windows\system32\blank.htm
      Search Page==http://go.microsoft.com/fwlink/?LinkId=54896
      Default_search_url==
      Default_Page_URL==http://g.uk.msn.com/HPCON/10


      >>>>>> Firefox <<<<<<

      user_pref("CT2737658.HomePageProtectorEnabled", true);
      user_pref("CT2737658.HomepageBeforeUnload", "http://search.conduit.com/?ctid=CT2737658&SearchSource=13");
      user_pref("CT2737658.SavedHomepage", "chrome://branding/locale/browserconfig.properties");
      user_pref("CT2737658.TBHomePageUrl", "http://search.conduit.com/?ctid=CT2737658&SearchSource=13");
      user_pref("CT2737658.homepageProtectorEnableByLogin", true);
      user_pref("CommunityToolbar.ConduitHomepagesList", "http://search.conduit.com/?ctid=CT2737658&SearchSource=13");
      user_pref("CommunityToolbar.originalHomepage", "chrome://branding/locale/browserconfig.properties");
      user_pref("browser.startup.homepage", "www.google.es");
      user_pref("browser.startup.homepage_override.buildID", "20121128204232");
      user_pref("browser.startup.homepage_override.mstone", "17.0.1");
      user_pref("extensions.t2v.showHomePage", "false");
      user_pref("extensions.t2v110.showHomePage", "false");
      user_pref("pref.browser.homepage.disable_button.current_page", false);
      user_pref("pref.browser.homepage.disable_button.restore_default", false);
      user_pref("sweetim.toolbar.urls.homepage", "http://search.babylon.com/?affID=112555&tt=120912_cpc_3912_1&babsrc=HP_ss&mntrId=5210cfe7000000000000ac81124fc356");
      user_pref("t2v.showHomePage", "false");


      >>>>>> Extensiones Firefox <<<<<<


      C:\Program Files (x86)\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
      C:\Program Files (x86)\{972ce4c6-7e08-4474-a285-3208198ce6fd}

      >>>>>> Plugins Firefox <<<<<<

      HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer
      HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@authentec.com/ffwloplugin
      HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Google.com/GoogleEarthPlugin
      HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@google.com/npPicasa3,version=3.0.0
      HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=10.10.2
      HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE
      HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0
      HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0
      HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/SharePoint,version=14.0
      HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922

      >>>>>> Google Chrome <<<<<<

      "homepage": "http://www.google.com/",
      "homepage_changed": true,
      "homepage_is_newtabpage": false,


      >>>>>> Extensiones Google Chrome <<<<<<

      C:\Users\Manuel Z F\AppData\Local\Google\Chrome\User Data\Default\Extensions\4
      C:\Users\Manuel Z F\AppData\Local\Google\Chrome\User Data\Default\Extensions\idhngdhcfkoamngbedgpaokgjbnpdiji
      C:\Users\Manuel Z F\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl
      C:\Users\Manuel Z F\AppData\Local\Google\Chrome\User Data\Default\Extensions\pgafcinpmmpklohkojmllohdhomoefph
      C:\Users\Manuel Z F\AppData\Local\Google\Chrome\User Data\Default\Extensions\phjpcdidncppdkgmgihcnjceicpnblnk

      ======== Listado ===========

      [28/02/2012 17:00] [17/08/2011 23:56] [DI] C:\Users\Manuel Z F\AppData\Roaming\Adobe
      [ 12/09/2011 0:23] [ 12/09/2011 0:23] [DI] C:\Users\Manuel Z F\AppData\Roaming\Adobe Mini Bridge CS5
      [30/11/2011 16:35] [30/11/2011 16:35] [DI] C:\Users\Manuel Z F\AppData\Roaming\AnvSoft
      [23/11/2012 21:48] [23/11/2012 21:48] [DI] C:\Users\Manuel Z F\AppData\Roaming\APP_NAME_NON_STRING
      [17/08/2011 18:53] [17/08/2011 18:53] [DI] C:\Users\Manuel Z F\AppData\Roaming\ATI
      [14/12/2012 22:53] [14/11/2012 17:05] [DI] C:\Users\Manuel Z F\AppData\Roaming\Audacity
      [06/09/2011 21:56] [06/09/2011 21:56] [DI] C:\Users\Manuel Z F\AppData\Roaming\AVG2012
      [08/12/2012 15:37] [08/12/2012 15:37] [DI] C:\Users\Manuel Z F\AppData\Roaming\AVG2013
      [15/01/2012 20:07] [15/01/2012 20:07] [DI] C:\Users\Manuel Z F\AppData\Roaming\calibre
      [02/11/2011 21:09] [02/11/2011 21:09] [DI] C:\Users\Manuel Z F\AppData\Roaming\Canneverbe Limited
      [12/09/2011 22:29] [12/09/2011 22:29] [DI] C:\Users\Manuel Z F\AppData\Roaming\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1
      [06/12/2012 19:09] [06/12/2012 19:09] [DI] C:\Users\Manuel Z F\AppData\Roaming\coupons
      [25/03/2012 17:39] [25/03/2012 17:39] [DI] C:\Users\Manuel Z F\AppData\Roaming\CrystalIdea Software
      [ 18/08/2011 2:01] [ 18/08/2011 2:01] [DI] C:\Users\Manuel Z F\AppData\Roaming\CyberLink
      [20/10/2011 20:03] [20/10/2011 20:02] [DI] C:\Users\Manuel Z F\AppData\Roaming\Devicescape
      [24/10/2012 18:39] [27/12/2011 23:51] [DI] C:\Users\Manuel Z F\AppData\Roaming\dvdcss
      [02/04/2012 12:32] [14/02/2012 21:51] [DI] C:\Users\Manuel Z F\AppData\Roaming\EssentialPIM
      [26/04/2012 22:46] [26/04/2012 22:46] [DI] C:\Users\Manuel Z F\AppData\Roaming\Flood Light Games
      [10/02/2012 12:12] [10/02/2012 12:12] [DI] C:\Users\Manuel Z F\AppData\Roaming\Free AVI MPEG WMV MP4 FLV Video Joiner
      [ 09/09/2011 1:23] [ 09/09/2011 1:23] [DI] C:\Users\Manuel Z F\AppData\Roaming\Free PDF to Word Converter
      [23/12/2012 23:29] [04/04/2012 17:01] [DI] C:\Users\Manuel Z F\AppData\Roaming\FreeFileSync
      [30/05/2012 23:45] [30/05/2012 23:45] [DI] C:\Users\Manuel Z F\AppData\Roaming\funkitron
      [01/12/2012 21:57] [05/06/2012 13:30] [DI] C:\Users\Manuel Z F\AppData\Roaming\GlarySoft
      [15/01/2012 20:05] [15/01/2012 20:05] [DI] C:\Users\Manuel Z F\AppData\Roaming\HamsterSoft
      [02/12/2011 16:49] [17/08/2011 18:45] [DI] C:\Users\Manuel Z F\AppData\Roaming\Hewlett-Packard
      [25/12/2012 18:59] [17/08/2011 18:51] [DI] C:\Users\Manuel Z F\AppData\Roaming\hpqlog
      [17/08/2011 18:51] [17/08/2011 18:51] [DI] C:\Users\Manuel Z F\AppData\Roaming\Identities
      [ 18/08/2011 0:47] [ 18/08/2011 0:47] [DI] C:\Users\Manuel Z F\AppData\Roaming\IDT
      [06/02/2012 12:16] [06/02/2012 12:15] [DI] C:\Users\Manuel Z F\AppData\Roaming\InfraRecorder
      [17/08/2011 18:52] [17/08/2011 18:52] [DI] C:\Users\Manuel Z F\AppData\Roaming\Intel Corporation
      [ 18/08/2011 0:39] [ 18/08/2011 0:39] [DI] C:\Users\Manuel Z F\AppData\Roaming\Macromedia
      [26/12/2012 20:00] [26/12/2012 20:00] [DI] C:\Users\Manuel Z F\AppData\Roaming\Malwarebytes
      [ 19/06/2011 1:47] [ 17/08/2011 18:42] [DI] C:\Users\Manuel Z F\AppData\Roaming\Media Center Programs
      [ 13/10/2012 0:51] [ 17/08/2011 18:42] [SDI] C:\Users\Manuel Z F\AppData\Roaming\Microsoft
      [ 18/08/2011 1:22] [ 18/08/2011 1:22] [DI] C:\Users\Manuel Z F\AppData\Roaming\Mozilla
      [12/08/2012 20:59] [20/08/2011 0:15] [DI] C:\Users\Manuel Z F\AppData\Roaming\Nokia
      [12/08/2012 21:08] [12/08/2012 20:59] [DI] C:\Users\Manuel Z F\AppData\Roaming\Nokia Suite
      [06/09/2011 22:11] [18/08/2011 1:20] [DI] C:\Users\Manuel Z F\AppData\Roaming\PC Suite
      [20/10/2011 20:34] [20/10/2011 20:34] [DI] C:\Users\Manuel Z F\AppData\Roaming\PCTEL
      [23/11/2012 22:07] [23/11/2012 22:07] [DI] C:\Users\Manuel Z F\AppData\Roaming\PDF Architect
      [14/06/2012 11:56] [20/08/2011 1:14] [DI] C:\Users\Manuel Z F\AppData\Roaming\pdfforge
      C:\Users\Manuel Z F\AppData\Roaming\Prefs. de filtro IllExport de Adobe CS5 [AI] 132 bytes ( )
      [ 13/12/2012 1:42] [ 27/08/2011 22:04] [DI] C:\Users\Manuel Z F\AppData\Roaming\Real
      [ 13/12/2012 1:43] [ 13/12/2012 1:43] [DI] C:\Users\Manuel Z F\AppData\Roaming\RealNetworks
      [02/09/2012 17:34] [23/08/2012 20:13] [DI] C:\Users\Manuel Z F\AppData\Roaming\Samsung
      [19/12/2012 22:51] [17/08/2011 23:52] [DI] C:\Users\Manuel Z F\AppData\Roaming\Skype
      [22/09/2011 10:27] [19/08/2011 22:09] [DI] C:\Users\Manuel Z F\AppData\Roaming\SoftGrid Client
      [26/12/2012 21:06] [17/09/2011 19:12] [DI] C:\Users\Manuel Z F\AppData\Roaming\Spotify
      [ 12/09/2011 0:23] [ 12/09/2011 0:23] [DI] C:\Users\Manuel Z F\AppData\Roaming\StageManager.BD092818F67280F4B42B04877600987F0111B594.1
      [ 18/08/2011 1:15] [ 18/08/2011 1:15] [DI] C:\Users\Manuel Z F\AppData\Roaming\SUPERAntiSpyware.com
      [17/08/2011 18:52] [17/08/2011 18:52] [DI] C:\Users\Manuel Z F\AppData\Roaming\Synaptics
      [ 20/08/2011 1:30] [ 20/08/2011 1:30] [DI] C:\Users\Manuel Z F\AppData\Roaming\Tific
      [19/08/2011 22:10] [19/08/2011 22:07] [DI] C:\Users\Manuel Z F\AppData\Roaming\TP
      [20/12/2012 17:36] [16/09/2011 12:02] [DI] C:\Users\Manuel Z F\AppData\Roaming\TuneUp Software
      [ 25/12/2012 1:54] [ 20/02/2012 23:31] [DI] C:\Users\Manuel Z F\AppData\Roaming\vlc
      [01/12/2012 22:00] [01/08/2012 21:49] [DI] C:\Users\Manuel Z F\AppData\Roaming\WildTangent
      [27/05/2012 23:47] [27/05/2012 23:47] [DI] C:\Users\Manuel Z F\AppData\Roaming\WildTangentv1001
      [30/09/2011 17:16] [30/09/2011 17:16] [DI] C:\Users\Manuel Z F\AppData\Roaming\Windows Live Writer
      [ 20/08/2011 2:10] [ 18/08/2011 1:24] [DI] C:\Users\Manuel Z F\AppData\Roaming\WinRAR
      [24/09/2012 13:20] [24/09/2012 13:20] [DI] C:\Users\Manuel Z F\AppData\Roaming\YourFileDownloader
      [10/02/2012 12:36] [19/08/2011 0:02] [DI] C:\Users\Manuel Z F\AppData\Roaming\_MDLogs
      [11/09/2011 13:22] [11/09/2011 13:22] [D] C:\Program Files (x86)\Adobe Media Player
      [23/10/2012 20:45] [23/10/2012 20:45] [D] C:\Program Files (x86)\AMD APP
      [30/11/2011 16:35] [30/11/2011 16:35] [D] C:\Program Files (x86)\AnvSoft
      [03/12/2011 11:03] [18/06/2011 15:56] [D] C:\Program Files (x86)\ATI Technologies
      [14/11/2012 17:05] [14/11/2012 17:05] [D] C:\Program Files (x86)\Audacity
      [08/12/2012 15:34] [06/09/2011 21:54] [D] C:\Program Files (x86)\AVG
      [30/08/2011 2:51] [30/08/2011 2:51] [D] C:\Program Files (x86)\Canon
      [16/11/2012 16:00] [16/11/2012 16:00] [D] C:\Program Files (x86)\CEXv1.0
      [18/12/2012 0:27] [14/07/2009 5:20] [D] C:\Program Files (x86)\Common Files
      [09/03/2012 23:41] [28/09/2011 16:53] [D] C:\Program Files (x86)\CyberLink
      C:\Program Files (x86)\desktop.ini [HSA] 174 bytes( 0)
      [23/11/2012 22:05] [21/10/2011 18:55] [D] C:\Program Files (x86)\DsNET Corp
      [10/02/2012 12:37] [11/04/2011 10:32] [D] C:\Program Files (x86)\EasyBits For Kids
      [14/02/2012 22:43] [14/02/2012 21:51] [D] C:\Program Files (x86)\EssentialPIM
      [17/11/2012 11:38] [17/11/2012 11:38] [D] C:\Program Files (x86)\EuroLuxor EM 2.0 Normalux
      [08/08/2012 20:37] [11/04/2011 10:20] [D] C:\Program Files (x86)\Evernote
      [01/12/2012 21:57] [05/06/2012 13:30] [D] C:\Program Files (x86)\Glary Utilities
      [11/12/2012 15:24] [19/08/2011 22:20] [D] C:\Program Files (x86)\Google
      [20/11/2012 18:39] [15/01/2012 20:05] [D] C:\Program Files (x86)\Hamster Soft
      [05/12/2012 22:58] [11/04/2011 10:18] [D] C:\Program Files (x86)\Hewlett-Packard
      [14/09/2011 12:46] [14/09/2011 12:46] [D] C:\Program Files (x86)\HP
      [11/04/2011 10:23] [11/04/2011 10:20] [D] C:\Program Files (x86)\HP Games
      [22/08/2012 21:59] [22/08/2012 21:59] [D] C:\Program Files (x86)\HP SimplePass
      [22/08/2012 21:59] [18/06/2011 16:12] [D] C:\Program Files (x86)\HP SimplePass 2011
      [05/12/2012 23:01] [11/04/2011 10:32] [HD] C:\Program Files (x86)\InstallShield Installation Information
      [18/06/2011 15:58] [18/06/2011 15:54] [D] C:\Program Files (x86)\Intel
      [12/12/2012 0:09] [14/07/2009 5:20] [D] C:\Program Files (x86)\Internet Explorer
      [18/12/2012 0:26] [18/10/2012 13:21] [D] C:\Program Files (x86)\Java
      [25/12/2012 18:24] [27/08/2011 21:02] [D] C:\Program Files (x86)\JDownloader
      [14/11/2012 17:21] [14/11/2012 17:21] [D] C:\Program Files (x86)\Lame For Audacity
      [26/12/2012 20:00] [26/12/2012 20:00] [D] C:\Program Files (x86)\Malwarebytes' Anti-Malware
      [23/08/2012 15:46] [23/08/2012 15:46] [D] C:\Program Files (x86)\MarkAny
      [18/06/2011 16:14] [18/06/2011 16:14] [D] C:\Program Files (x86)\Microsoft
      [10/10/2012 23:13] [10/10/2012 23:13] [D] C:\Program Files (x86)\Microsoft Analysis Services
      [10/10/2012 23:04] [11/04/2011 10:25] [D] C:\Program Files (x86)\Microsoft Office
      [08/05/2012 19:47] [16/12/2011 15:50] [D] C:\Program Files (x86)\Microsoft Silverlight
      [27/08/2011 20:31] [11/04/2011 10:28] [D] C:\Program Files (x86)\Microsoft SQL Server Compact Edition
      [27/08/2011 20:31] [27/08/2011 20:31] [D] C:\Program Files (x86)\Microsoft Synchronization Services
      [10/10/2012 23:15] [10/10/2012 23:15] [D] C:\Program Files (x86)\Microsoft Visual Studio 8
      [10/10/2012 23:16] [27/08/2011 20:31] [D] C:\Program Files (x86)\Microsoft.NET
      [01/12/2012 21:06] [07/09/2012 15:38] [D] C:\Program Files (x86)\Mozilla Firefox
      [02/12/2012 16:41] [24/04/2012 17:16] [D] C:\Program Files (x86)\Mozilla Maintenance Service
      [10/10/2012 23:16] [14/07/2009 7:32] [D] C:\Program Files (x86)\MSBuild
      [12/03/2012 19:27] [19/08/2011 22:26] [D] C:\Program Files (x86)\MSXML 4.0
      [16/11/2012 13:50] [16/11/2012 13:50] [D] C:\Program Files (x86)\MyFree Codec
      [08/12/2012 15:44] [08/12/2012 15:44] [D] C:\Program Files (x86)\Naver
      [20/11/2012 18:48] [18/08/2011 1:17] [D] C:\Program Files (x86)\Nokia
      [17/08/2011 18:44] [11/04/2011 10:20] [RD] C:\Program Files (x86)\Online Services
      [22/03/2012 13:06] [22/03/2012 13:06] [D] C:\Program Files (x86)\PANDORA.TV
      [20/11/2012 18:48] [20/11/2012 18:48] [D] C:\Program Files (x86)\PC Connectivity Solution
      [23/11/2012 21:48] [23/11/2012 21:48] [D] C:\Program Files (x86)\PDF Architect
      [12/12/2012 22:26] [12/12/2012 22:25] [D] C:\Program Files (x86)\PDFCreator
      [13/12/2012 1:42] [27/08/2011 22:04] [D] C:\Program Files (x86)\Real
      [13/12/2012 1:42] [13/12/2012 1:42] [D] C:\Program Files (x86)\RealNetworks
      [18/06/2011 15:59] [18/06/2011 15:58] [D] C:\Program Files (x86)\Realtek
      [14/07/2009 7:32] [14/07/2009 7:32] [D] C:\Program Files (x86)\Reference Assemblies
      [18/06/2011 16:01] [18/06/2011 16:01] [D] C:\Program Files (x86)\Renesas Electronics
      [23/08/2012 15:46] [23/08/2012 15:45] [D] C:\Program Files (x86)\Samsung
      [24/10/2012 19:04] [19/08/2011 22:20] [RD] C:\Program Files (x86)\Skype
      [02/12/2011 16:31] [02/12/2011 16:30] [D] C:\Program Files (x86)\SP55068
      [19/04/2012 23:18] [19/04/2012 22:29] [D] C:\Program Files (x86)\Team MediaPortal
      [23/06/2012 18:34] [22/03/2012 13:06] [D] C:\Program Files (x86)\The KMPlayer
      [25/12/2012 18:41] [23/12/2012 22:54] [D] C:\Program Files (x86)\TuneUp Utilities 2013
      [14/07/2009 6:57] [14/07/2009 6:57] [HD] C:\Program Files (x86)\Uninstall Information
      [18/08/2011 1:14] [18/08/2011 1:14] [D] C:\Program Files (x86)\VideoLAN
      [01/12/2012 22:00] [11/04/2011 10:20] [D] C:\Program Files (x86)\WildTangent Games
      [12/09/2011 14:45] [14/07/2009 7:32] [D] C:\Program Files (x86)\Windows Defender
      [16/04/2012 19:27] [11/04/2011 10:27] [D] C:\Program Files (x86)\Windows Live
      [12/09/2011 14:45] [14/07/2009 5:20] [D] C:\Program Files (x86)\Windows Mail
      [12/09/2011 14:45] [14/07/2009 7:32] [D] C:\Program Files (x86)\Windows Media Player
      [14/07/2009 7:32] [14/07/2009 5:20] [D] C:\Program Files (x86)\Windows NT
      [12/09/2011 14:45] [14/07/2009 7:32] [D] C:\Program Files (x86)\Windows Photo Viewer
      [21/11/2010 4:31] [14/07/2009 7:32] [D] C:\Program Files (x86)\Windows Portable Devices
      [12/09/2011 14:46] [14/07/2009 7:32] [D] C:\Program Files (x86)\Windows Sidebar
      [21/10/2011 19:09] [21/10/2011 19:09] [D] C:\Program Files (x86)\WinPcap
      [27/11/2012 19:38] [20/05/2012 18:44] [D] C:\Program Files (x86)\WinUtilities
      [24/09/2012 13:21] [24/09/2012 13:20] [D] C:\Program Files (x86)\YourFileDownloader
      [29/09/2012 19:09] [29/09/2012 19:09] [DI] C:\ProgramData\APN
      [14/07/2009 7:08] [14/07/2009 7:08] [HSDLI] C:\ProgramData\Application Data
      [04/04/2012 18:04] [04/04/2012 18:04] [DI] C:\ProgramData\Ask
      [03/12/2011 11:11] [03/12/2011 11:11] [DI] C:\ProgramData\ATI
      [02/09/2012 19:30] [02/09/2012 19:29] [DI] C:\ProgramData\AuthentecUpdater
      [01/10/2012 13:31] [06/09/2011 21:55] [DI] C:\ProgramData\AVG2012
      [08/12/2012 15:36] [01/10/2012 13:38] [DI] C:\ProgramData\AVG2013
      [25/04/2012 21:21] [24/04/2012 23:55] [DI] C:\ProgramData\boost_interprocess
      [26/12/2012 23:53] [24/09/2012 13:21] [DI] C:\ProgramData\Browser Manager
      [02/11/2011 21:09] [02/11/2011 21:09] [DI] C:\ProgramData\Canneverbe Limited
      [06/09/2011 21:55] [06/09/2011 21:55] [HD] C:\ProgramData\Common Files
      [20/10/2011 20:55] [18/08/2011 2:01] [DI] C:\ProgramData\CyberLink
      [17/08/2011 18:42] [17/08/2011 18:42] [HSDLI] C:\ProgramData\Datos de programa
      [14/07/2009 7:08] [14/07/2009 7:08] [HSDLI] C:\ProgramData\Desktop
      [17/08/2011 18:42] [17/08/2011 18:42] [HSDLI] C:\ProgramData\Documentos
      [14/07/2009 7:08] [14/07/2009 7:08] [HSDLI] C:\ProgramData\Documents
      [22/08/2012 21:57] [18/06/2011 16:11] [DI] C:\ProgramData\Downloaded Installations
      [17/08/2011 18:42] [17/08/2011 18:42] [HSDLI] C:\ProgramData\Escritorio
      [12/09/2011 1:27] [12/09/2011 0:45] [DI] C:\ProgramData\Farm Frenzy
      [14/07/2009 7:08] [14/07/2009 7:08] [HSDLI] C:\ProgramData\Favorites
      [17/08/2011 18:42] [17/08/2011 18:42] [HSDLI] C:\ProgramData\Favoritos
      [26/04/2012 22:46] [26/04/2012 22:46] [DI] C:\ProgramData\Flood Light Games
      [20/10/2011 20:57] [11/04/2011 10:26] [DI] C:\ProgramData\Hewlett-Packard
      [22/08/2012 21:57] [22/08/2012 21:57] [DI] C:\ProgramData\HP SimplePass 2011
      [06/07/2012 15:53] [20/08/2011 0:13] [DI] C:\ProgramData\Installations
      [19/06/2012 14:05] [19/06/2012 14:05] [DI] C:\ProgramData\InstallMate
      [26/12/2012 20:00] [26/12/2012 20:00] [DI] C:\ProgramData\Malwarebytes
      [17/08/2011 18:42] [17/08/2011 18:42] [HSDLI] C:\ProgramData\Menú Inicio
      [26/12/2012 19:13] [06/09/2011 21:50] [DI] C:\ProgramData\MFAData
      [10/10/2012 23:16] [14/07/2009 5:20] [SDI] C:\ProgramData\Microsoft
      [11/12/2012 23:52] [20/08/2011 0:49] [DI] C:\ProgramData\Microsoft Help
      [24/04/2012 17:16] [24/04/2012 17:16] [DI] C:\ProgramData\Mozilla
      [22/09/2011 10:09] [04/09/2011 17:48] [DI] C:\ProgramData\MusicStation
      [19/04/2012 22:31] [19/04/2012 22:31] [DI] C:\ProgramData\MySQL
      [25/05/2012 10:18] [04/11/2011 13:24] [DI] C:\ProgramData\Nokia
      [12/03/2012 18:49] [18/08/2011 1:17] [DI] C:\ProgramData\NokiaInstallerCache
      [20/10/2011 20:57] [18/06/2011 16:11] [DI] C:\ProgramData\Norton
      [18/06/2011 16:10] [18/06/2011 16:10] [DI] C:\ProgramData\NortonInstaller
      [22/09/2012 16:42] [22/09/2012 16:42] [DI] C:\ProgramData\OO Software
      [20/10/2011 20:55] [18/08/2011 1:20] [DI] C:\ProgramData\PC Suite
      [17/08/2011 18:42] [17/08/2011 18:42] [HSDLI] C:\ProgramData\Plantillas
      [19/06/2012 14:05] [19/06/2012 14:05] [DI] C:\ProgramData\Premium
      [13/12/2012 1:42] [27/08/2011 22:04] [DI] C:\ProgramData\Real
      [13/12/2012 1:42] [13/12/2012 1:42] [DI] C:\ProgramData\RealNetworks
      [01/10/2011 17:09] [11/09/2011 13:26] [DI] C:\ProgramData\regid.1986-12.com.adobe
      [23/08/2012 15:46] [23/08/2012 15:45] [DI] C:\ProgramData\Samsung
      [20/11/2012 18:33] [17/08/2011 23:52] [DI] C:\ProgramData\Skype
      [20/10/2011 20:57] [06/09/2011 22:43] [DI] C:\ProgramData\Smart Soft
      [14/07/2009 7:08] [14/07/2009 7:08] [HSDLI] C:\ProgramData\Start Menu
      [11/04/2011 10:33] [11/04/2011 10:33] [DI] C:\ProgramData\Sun
      [18/08/2011 1:15] [18/08/2011 1:15] [DI] C:\ProgramData\SUPERAntiSpyware.com
      [20/10/2011 20:55] [18/08/2011 23:53] [DI] C:\ProgramData\Synaptics
      [27/11/2011 1:02] [21/10/2011 16:39] [DI] C:\ProgramData\TamoSoft
      [19/04/2012 22:32] [19/04/2012 22:29] [D] C:\ProgramData\Team MediaPortal
      [09/03/2012 23:44] [18/06/2011 16:09] [DI] C:\ProgramData\Temp
      [14/07/2009 7:08] [14/07/2009 7:08] [HSDLI] C:\ProgramData\Templates
      [22/08/2012 22:09] [22/08/2012 21:59] [DI] C:\ProgramData\TrueSuite
      [20/12/2012 17:36] [16/09/2011 12:01] [DI] C:\ProgramData\TuneUp Software
      [20/08/2011 1:53] [20/08/2011 1:53] [DI] C:\ProgramData\VirtualizedApplications
      [04/09/2011 2:12] [20/08/2011 2:26] [DI] C:\ProgramData\Wild Tangent
      [06/08/2012 23:36] [11/04/2011 10:20] [DI] C:\ProgramData\WildTangent
      [20/12/2012 23:47] [15/09/2011 19:20] [HSD] C:\ProgramData\{24036256-BFDB-4CD3-BE8A-A3D6160F2E16}
      [20/12/2012 23:47] [20/10/2011 13:47] [HSD] C:\ProgramData\{32364CEA-7855-4A3C-B674-53D8E9B97936}
      [20/12/2012 23:47] [05/12/2012 22:57] [DI] C:\ProgramData\{9BF4D58B-C6D6-467B-BC5A-FD0C1278F4AF}
      [25/12/2012 18:46] [20/12/2012 17:27] [HSD] C:\ProgramData\{C4ABDBC8-1C81-42C9-BFFC-4A68511E9E4F}

      ==================== EOF ==================

      La segunda parte donde pone ccleaner no entendí que tengo q hacer, que es lo q tengo q guardar¿?

    6. #6
      Usuario Avatar de Raudron
      Registrado
      sep 2012
      Ubicación
      El Mundo
      Mensajes
      1.467

      Re: Infección en ConduitInstaler

      Hola,

      Para realizar lo de CCleaner, tenés que actualizarlo (descargando e instalandolo "arriba" del que ya tenés) y luego hacer clic en Herramientas:

      [IMG]http://i47.*******.com/l8llc.jpg[/IMG]

      Siguiendo los pasos que te dejé.
      Guarda los archivos de texto correspondientes a Inicio y Desinstalar programas

      Saludos

    7. #7
      Usuario Avatar de Frodor
      Registrado
      oct 2009
      Ubicación
      Santiago
      Mensajes
      48

      Re: Infección en ConduitInstaler

      ok. ya lo hice

    8. #8
      Usuario Avatar de Raudron
      Registrado
      sep 2012
      Ubicación
      El Mundo
      Mensajes
      1.467

      Re: Infección en ConduitInstaler

      Hola,

      Pega el contenido de ambos archivos en tu próxima respuesta..

      Saludos

    9. #9
      Usuario Avatar de Frodor
      Registrado
      oct 2009
      Ubicación
      Santiago
      Mensajes
      48

      Re: Infección en ConduitInstaler

      El archivo install reporta esto:
      Adobe AIR Adobe Systems Incorporated 22/08/2012 3.4.0.2540
      Adobe Community Help Adobe Systems Incorporated 11/09/2011 3.0.0.400
      Adobe Flash Player 11 ActiveX Adobe Systems Incorporated 11/12/2012 6,00 MB 11.5.502.135
      Adobe Flash Player 11 Plugin Adobe Systems Incorporated 12/12/2012 6,00 MB 11.5.502.135
      Adobe Media Player Adobe Systems Incorporated 11/09/2011 1.8
      Adobe Photoshop CS5 Adobe Systems Incorporated 28/02/2012 2,53 GB 12.0
      Adobe Photoshop Lightroom 3.6 64-bit Adobe 25/12/2011 327 MB 3.6.1
      Adobe Reader XI - Español Adobe Systems Incorporated 07/11/2012 124 MB 11.0.00
      AMD Catalyst Install Manager Advanced Micro Devices, Inc. 23/10/2012 26,3 MB 8.0.891.0
      Any Video Converter 3.5.8 Any-Video-Converter.com 14/12/2012 106 MB
      aTube Catcher DsNET Corp 23/11/2012 2.9.1347
      Audacity 2.0.2 Audacity Team 14/11/2012 43,5 MB 2.0.2
      AVG 2013 AVG Technologies 09/12/2012 2013.0.2805
      Bing Bar Microsoft Corporation 18/06/2011 24,4 MB 7.0.610.0
      Broadcom 802.11 Wireless LAN Adapter Broadcom Corporation 18/06/2011 5.60.48.61
      Canon RAW Codec Canon Inc. 30/08/2011 1.9.0.73
      CCleaner Piriform 19/12/2012 3.26
      CDBurnerXP CDBurnerXP 20/12/2012 13,1 MB 4.5.0.3685
      Centro de Ratón y Teclado de Microsoft Microsoft Corporation 22/10/2012 2.0.161.0
      CEX v1.0 MIYABI_CENER 16/11/2012 169 MB
      Control ActiveX de Windows Live Mesh para conexiones remotas Microsoft Corporation 11/04/2011 5,57 MB 15.4.5722.2
      CyberLink YouCam CyberLink Corp. 28/09/2011 124 MB 3.5.1.3922
      Energy Star Digital Logo Hewlett-Packard 18/06/2011 300 KB 1.0.1
      EssentialPIM 01/08/2012 5.02
      EuroLuxor EM 2.0 Normalux - 17/11/2012 9,21 MB 1.00.0000
      Evernote v. 4.6 Evernote Corp. 04/12/2012 132 MB 4.6.0.7670
      Facebook Video Calling 1.2.0.287 Skype Limited 25/10/2012 4,76 MB 1.2.287
      Free PDF to Word Converter 5.1.0.383 Smart Soft 14/12/2012 5.1.0.383
      FreeFileSync 5.10 Zenju 01/12/2012 5.10
      Glary Utilities 2.51.0.1666 Glarysoft Ltd 01/12/2012 21,9 MB 2.51.0.1666
      Google Chrome Google Inc. 26/10/2012 23.0.1271.97
      Google Earth Google 11/12/2012 342 MB 7.0.1.8244
      Hamster Free EbookConverter HamsterSoft 20/11/2012 155 MB 1.0.0.13
      HP 3D DriveGuard Hewlett-Packard Company 02/12/2011 6,99 MB 4.1.9.1
      HP Connection Manager Hewlett-Packard Company 18/06/2011 33,4 MB 4.0.45.1
      HP Documentation Hewlett-Packard 18/06/2011 332 MB 1.1.0.0
      HP Games WildTangent 18/06/2011 1.0.2.4
      HP On Screen Display Hewlett-Packard Company 11/04/2011 1,43 MB 1.1.2
      HP Power Manager Hewlett-Packard Company 18/06/2011 3,61 MB 1.2.3
      HP Product Detection HP 06/07/2012 3,82 MB 11.14.0003
      HP Quick Launch Hewlett-Packard Company 11/04/2011 7,14 MB 2.3.6
      HP Setup Hewlett-Packard Company 11/04/2011 8.6.4530.3651
      HP Setup Manager Hewlett-Packard Company 18/06/2011 8,30 MB 1.1.13231.3673
      HP SimplePass Hewlett-Packard 22/08/2012 74,1 MB 5.4.0.620
      HP Software Framework Hewlett-Packard Company 11/04/2011 2,81 MB 4.0.110.1
      HP Support Assistant 05/12/2012
      IDT Audio IDT 05/10/2011 1.0.6341.0
      InfraRecorder 0.53 (x64 edition) Christian Kindahl 02/09/2012 9,73 MB 0.53.00.00
      Intel(R) Display Audio Driver Intel Corporation 10/03/2012 6.14.00.3074
      Intel(R) Management Engine Components Intel Corporation 11/04/2011 7.0.0.1144
      Intel(R) Rapid Storage Technology Intel Corporation 18/06/2011 10.1.2.1004
      Java 7 Update 10 Oracle 18/12/2012 130 MB 7.0.100
      Java 7 Update 10 (64-bit) Oracle 18/12/2012 127 MB 7.0.100
      JDownloader 0.9 AppWork GmbH 27/08/2011 0.9
      LADSPA_plugins-win-0.4.15 Audacity Team 14/11/2012
      LAME v3.99.3 (for Windows) 14/11/2012 1,52 MB
      LINE NHN Japan 23/12/2012 3.1.1.17
      Magic Desktop EasyBits Software AS 18/06/2011 107 MB 3.0
      Malwarebytes Anti-Malware versión 1.65.1.1000 Malwarebytes Corporation 26/12/2012 19,4 MB 1.65.1.1000
      Microsoft .NET Framework 4 Client Profile Microsoft Corporation 23/08/2012 38,8 MB 4.0.30320
      Microsoft Office Professional Plus 2010 Microsoft Corporation 11/10/2012 14.0.6029.1000
      Microsoft Silverlight Microsoft Corporation 08/05/2012 100 MB 5.1.10411.0
      Microsoft SQL Server 2005 Compact Edition [ENU] Microsoft Corporation 11/04/2011 1,69 MB 3.1.0000
      Microsoft SQL Server Compact 3.5 SP1 English Microsoft Corporation 04/09/2011 2,58 MB 3.5.5692.0
      Microsoft SQL Server Compact 3.5 SP1 x64 English Microsoft Corporation 04/09/2011 3,69 MB 3.5.5692.0
      Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 Microsoft Corporation 24/01/2012 250 KB 8.0.50727.4053
      Microsoft Visual C++ 2005 Redistributable Microsoft Corporation 19/08/2011 300 KB 8.0.59193
      Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 Microsoft Corporation 11/04/2011 788 KB 9.0.30729
      Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 Microsoft Corporation 18/06/2011 784 KB 9.0.30729.4148
      Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 Microsoft Corporation 19/08/2011 788 KB 9.0.30729.6161
      Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 Microsoft Corporation 12/03/2012 238 KB 9.0.30729
      Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 Microsoft Corporation 18/06/2011 592 KB 9.0.30729.4148
      Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 Microsoft Corporation 19/08/2011 600 KB 9.0.30729.6161
      Microsoft Visual C++ 2010 x64 Redistributable - 10.0.30319 Microsoft Corporation 19/08/2011 13,7 MB 10.0.30319
      Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 Microsoft Corporation 01/10/2012 11,1 MB 10.0.40219
      Mozilla Firefox 17.0.1 (x86 es-ES) Mozilla 01/12/2012 47,0 MB 17.0.1
      Mozilla Maintenance Service Mozilla 01/12/2012 329 KB 17.0.1
      MSXML 4.0 SP2 (KB954430) Microsoft Corporation 19/08/2011 1,27 MB 4.20.9870.0
      MSXML 4.0 SP2 (KB973688) Microsoft Corporation 19/08/2011 1,33 MB 4.20.9876.0
      MSXML 4.0 SP3 Parser Microsoft Corporation 12/03/2012 1,47 MB 4.30.2100.0
      MSXML 4.0 SP3 Parser (KB2721691) Microsoft Corporation 11/07/2012 1,53 MB 4.30.2114.0
      MSXML 4.0 SP3 Parser (KB973685) Microsoft Corporation 12/03/2012 1,53 MB 4.30.2107.0
      MyFreeCodec 16/11/2012
      Nokia Connectivity Cable Driver Nokia 20/11/2012 3,95 MB 7.1.92.0
      Nokia PC Suite Nokia 06/07/2012 7.1.180.94
      Nokia Software Updater Nokia Corporation 12/03/2012 55,8 MB 3.0.655
      Nokia Suite Nokia 20/11/2012 3.6.36.0
      O&O Defrag Professional O&O Software GmbH 17/11/2012 73,0 MB 16.0.183
      Pandora Service Pandora.TV 14/11/2012 9,11 MB
      Paquete de controladores de Windows - Nokia Modem (02/25/2011 4.7) Nokia 06/07/2012 02/25/2011 4.7
      Paquete de controladores de Windows - Nokia Modem (02/25/2011 7.01.0.9) Nokia 06/07/2012 02/25/2011 7.01.0.9
      Paquete de controladores de Windows - Nokia pccsmcfd LegacyDriver (05/31/2012 7.1.2.0) Nokia 20/11/2012 05/31/2012 7.1.2.0
      Paquete de idioma de Microsoft .NET Framework 4 Client Profile ESN Microsoft Corporation 23/08/2012 2,93 MB 4.0.30320
      PC Connectivity Solution Nokia 20/11/2012 21,2 MB 12.0.48.0
      PDF Architect pdfforge 23/11/2012 93,2 MB 1.0.41.8362
      PDFCreator pdfforge 12/12/2012 1.6.1
      Picasa 3 Google, Inc. 27/08/2011 3.8
      RealPlayer RealNetworks 13/12/2012 91,7 MB 16.0.0
      Realtek Ethernet Controller Driver Realtek 18/06/2011 7.41.216.2011
      Realtek PCIE Card Reader Realtek Semiconductor Corp. 18/06/2011 6.1.7600.74
      Renesas Electronics USB 3.0 Host Controller Driver Renesas Electronics Corporation 18/06/2011 601 KB 2.0.32.0
      Samsung Kies Samsung Electronics Co., Ltd. 23/08/2012 210 MB 2.3.2.12074_13
      SAMSUNG USB Driver for Mobile Phones SAMSUNG Electronics Co., Ltd. 09/12/2012 42,9 MB 1.5.16.0
      Skype Click to Call Skype Technologies S.A. 13/10/2012 95,9 MB 6.3.11079
      Skype™ 6.0 Skype Technologies S.A. 16/11/2012 20,3 MB 6.0.126
      Spotify Spotify AB 10/11/2012 0.8.5.1333.g822e0de8
      SUPERAntiSpyware SUPERAntiSpyware.com 05/07/2012 127 MB 5.5.1006
      Synaptics TouchPad Driver Synaptics Incorporated 15/03/2012 46,4 MB 15.3.29.0
      The KMPlayer (remove only) KMP Media co., Ltd 14/11/2012 3.4.0.59
      TuneUp Utilities 2013 TuneUp Software 25/12/2012 13.0.2020.60
      Validity WBF DDK Validity Sensors, Inc. 03/12/2011 23,5 MB 4.3.205.0
      Visual Studio 2008 x64 Redistributables AVG Technologies 06/09/2011 8,14 MB 10.0.0.2
      Visual Studio 2010 x64 Redistributables AVG Technologies 01/10/2012 12,4 MB 13.0.0.1
      VLC media player 2.0.5 VideoLAN 25/12/2012 2.0.5
      Windows Live Essentials Microsoft Corporation 11/04/2011 15.4.3555.0308
      Windows Live Mesh ActiveX Control for Remote Connections Microsoft Corporation 11/04/2011 5,37 MB 15.4.5722.2
      Windows Media Player Firefox Plugin Microsoft Corp 01/10/2011 296 KB 1.0.0.8
      WinHTTrack Website Copier 3.46-1 (x64) HTTrack 28/06/2012 3.46.1
      WinPcap 4.1.2 CACE Technologies 21/10/2011 4.1.0.2001
      WinRAR 4.20 (64-bit) win.rar GmbH 23/06/2012 4.20.0
      WinUtilities 10.54 Professional Edition YL Computing, Inc 27/11/2012 23,0 MB


      El archivo startup reporta lo siguiente:
      Si HKCU:Run Facebook Update Facebook Inc. "C:\Users\Manuel Z F\AppData\Local\Facebook\Update\FacebookUpdate.exe" /c /nocrashserver
      Si HKCU:Run KiesAirMessage Samsung Electronics C:\Program Files (x86)\Samsung\Kies\KiesAirMessage.exe -startup
      Si HKCU:Run KiesPDLR Samsung C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe
      Si HKCU:Run KiesPreload Samsung C:\Program Files (x86)\Samsung\Kies\Kies.exe /preload
      No HKCU:Run PC Suite Tray Nokia "C:\Program Files (x86)\Nokia\Nokia PC Suite 7\PCSuite.exe" -onlytray
      Si HKCU:Run Sidebar Microsoft Corporation C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
      No HKCU:Run Skype Skype Technologies S.A. "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
      Si HKCU:Run Spotify Web Helper Spotify Ltd "C:\Users\Manuel Z F\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe"
      Si HKCU:RunOnce RegistryDefrag Success Message TuneUp Software "C:\Program Files (x86)\TuneUp Utilities 2013\TUMessages.exe" /RegDefrag_Success
      Si HKLM:Run AdobeCS5ServiceManager Adobe Systems Incorporated "C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe" -launchedbylogin
      Si HKLM:Run AVG_UI AVG Technologies CZ, s.r.o. "C:\Program Files (x86)\AVG\AVG2013\avgui.exe" /TRAYONLY
      Si HKLM:Run Easybits Recovery EasyBits Software AS C:\Program Files (x86)\EasyBits For Kids\ezRecover.exe
      Si HKLM:Run HotKeysCmds Intel Corporation C:\Windows\system32\hkcmd.exe
      Si HKLM:Run HP Quick Launch Hewlett-Packard Development Company, L.P. C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe
      Si HKLM:Run HPConnectionManager Hewlett-Packard Development Company L.P. C:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\HPCMDelayStart.exe
      Si HKLM:Run HPOSD Hewlett-Packard Development Company, L.P. C:\Program Files (x86)\Hewlett-Packard\HP On Screen Display\HPOSD.exe
      Si HKLM:Run IAStorIcon Intel Corporation C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
      Si HKLM:Run IgfxTray Intel Corporation C:\Windows\system32\igfxtray.exe
      Si HKLM:Run IntelliPoint Microsoft Corporation "c:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe"
      Si HKLM:Run IntelliType Pro Microsoft Corporation "c:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe"
      Si HKLM:Run KiesTrayAgent Samsung Electronics Co., Ltd. C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe
      No HKLM:Run NSU_agent Nokia "C:\Program Files (x86)\Nokia\Nokia Software Updater\nsu3ui_agent.exe"
      Si HKLM:Run NUSB3MON Renesas Electronics Corporation "C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe"
      Si HKLM:Run Persistence Intel Corporation C:\Windows\system32\igfxpers.exe
      Si HKLM:Run StartCCC Advanced Micro Devices, Inc. "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
      Si HKLM:Run SwitchBoard Adobe Systems Incorporated C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
      Si HKLM:Run SynTPEnh Synaptics Incorporated %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe
      Si HKLM:Run SysTrayApp IDT, Inc. C:\Program Files\IDT\WDM\sttray64.exe
      Si Startup Common O&O Defrag Tray.lnk C:\Windows\Installer\{AC5FFE7C-7101-4639-8559-92F3139F3FDC}\DefragIcon.exe

    10. #10
      Usuario Avatar de Raudron
      Registrado
      sep 2012
      Ubicación
      El Mundo
      Mensajes
      1.467

      Re: Infección en ConduitInstaler

      Hola,

      Todo parece estar en orden

      Si queres que el ordenador inicie más rápido, podés ir a CCleaner - Herramientas - Inicio y desactivar lo siguiente:
      • HKCU:Run Facebook Update Facebook Inc. "C:\Users\Manuel Z F\AppData\Local\Facebook\Update\FacebookUpdate.exe" /c /nocrashserver
      • HKCU:Run Spotify Web Helper Spotify Ltd "C:\Users\Manuel Z F\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe"
      • HKCU:RunOnce RegistryDefrag Success Message TuneUp Software "C:\Program Files (x86)\TuneUp Utilities 2013\TUMessages.exe" /RegDefrag_Success
      • HKLM:Run AdobeCS5ServiceManager Adobe Systems Incorporated "C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe" -launchedbylogin
      • HKLM:Run Easybits Recovery EasyBits Software AS C:\Program Files (x86)\EasyBits For Kids\ezRecover.exe
      • Startup Common O&O Defrag Tray.lnk C:\Windows\Installer\{AC5FFE7C-7101-4639-8559-92F3139F3FDC}\DefragIcon.exe

      Sino, podés dejarlo

      Cómo funciona tu ordenador? Tiene algún problema?
      Saludos