• Registrarse
  • Iniciar sesión


  • Página 2 de 2 PrimeroPrimero 12
    Resultados 11 al 17 de 17

    Virus oculta carpetas de la memoria USB y las reemplaza por aplicaciones

    Hola como va? Mira te comento que fue lo q sucedio: Estuve hablando con un amigo cuya pc se infecto con el mismo virus por un pendrive q saco de mi pc. El me dijo ...

    1. #11
      Usuario Avatar de matupresos
      Registrado
      feb 2010
      Ubicación
      Concordia, Entr
      Mensajes
      99

      Re: Virus oculta carpetas de la memoria USB y las reemplaza por aplicaciones

      Hola como va? Mira te comento que fue lo q sucedio: Estuve hablando con un amigo cuya pc se infecto con el mismo virus por un pendrive q saco de mi pc. El me dijo que para sacarlo finalizo un proceso llamado isass.exe y elimino el archivo del mismo nombre de la carpeta System32. El archivo en cuestion es el mismo que detecto y elimino el MBAM como podras ver en el reporte. El analisis con el Eset online no lo pude realizar todavia xq la pagina no se encuentra disponible. Por ahora el problema parece solucionado. Te paso el reporte del MBAM:

      Malwarebytes Anti-Malware (Versión de Prueba) 1.70.0.1100
      Malwarebytes : Free anti-malware download

      Versión de la Base de Datos: v2013.01.18.06

      Windows 7 x64 NTFS
      Internet Explorer 9.0.8112.16421
      Claudia :: BENITEZ-PC [administrador]

      Protección: Habilitado

      18/01/2013 11:26:47
      mbam-log-2013-01-18 (11-26-47).txt

      Tipos de Análisis: Análisis Completo (C:\|G:\|H:\|)
      Opciones de análisis activado: Memoria | Inicio | Registro | Sistema de archivos | Heurística/Extra | Heurística/Shuriken | PUP | PUM
      Opciones de análisis desactivados: P2P
      Objetos examinados: 721476
      Tiempo transcurrido: 1 hora(s), 35 minuto(s), 38 segundo(s)

      Procesos en Memoria Detectados: 0
      (No se han detectado elementos maliciosos)

      Módulos de Memoria Detectados: 0
      (No se han detectado elementos maliciosos)

      Claves del Registro Detectados: 0
      (No se han detectado elementos maliciosos)

      Valores del Registro Detectados: 1
      HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run|Microsoft Install Manager (Trojan.Agent) -> datos: C:\Windows\system32\issas.exe -> En cuarentena y eliminado con éxito.

      Elementos de Datos del Registro Detectados: 0
      (No se han detectado elementos maliciosos)

      Carpetas Detectadas: 0
      (No se han detectado elementos maliciosos)

      Archivos Detectados: 4
      G:\Documents and Settings (Pc Vieja)\Doble V Especial\Mis documentos\Descargas\SoftonicDownloader_para_ares.exe (PUP.OfferBundler.ST) -> En cuarentena y eliminado con éxito.
      G:\Documents and Settings (Pc Vieja)\Doble V Especial\Mis documentos\Downloads\SoftonicDownloader_para_photoscape.exe (PUP.OfferBundler.ST) -> En cuarentena y eliminado con éxito.
      G:\Documents and Settings (Pc Vieja)\Doble V Especial\Mis documentos\Downloads\unconfirmed 97455.crdownload (PUP.OfferBundler.ST) -> En cuarentena y eliminado con éxito.
      C:\Windows\System32\issas.exe (Trojan.Agent) -> Se eliminarán al reiniciar.

      fin)

      Voy a intentar mas tarde con el Eset. Te mantengo al tanto. Saludos!

    2. #12
      Usuario Avatar de Raudron
      Registrado
      sep 2012
      Ubicación
      El Mundo
      Mensajes
      1.467

      Re: Virus oculta carpetas de la memoria USB y las reemplaza por aplicaciones

      Hola,

      Parece que el link de ESET ya no es el correcto, te pido disculpas
      Podés intentar descargándolo con ESET Smart Installer y siguiendo los pasos de su manual.

      Como acertadamente nos comentas, MBAM eliminó la infección que era responsable de los problemas con el USB.

      Nos comentas
      Saludos

    3. #13
      Usuario Avatar de matupresos
      Registrado
      feb 2010
      Ubicación
      Concordia, Entr
      Mensajes
      99

      Re: Virus oculta carpetas de la memoria USB y las reemplaza por aplicaciones

      Hola! Te paso el informe del ESET, aunque encontró algunas infecciones el problema está aparentemente solucionado! Te mantengo al tanto!

      Saludos!

      C:\Users\All Users\Browser Manager\2.5.976.107\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\FirefoxExtension\components\mngr-10.0.2.dll una variante de Win32/bProtector.B aplicación
      C:\Users\All Users\Browser Manager\2.5.976.107\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\FirefoxExtension\components\mngr-11.0.dll una variante de Win32/bProtector.B aplicación
      C:\Users\All Users\Browser Manager\2.5.976.107\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\FirefoxExtension\components\mngr-12.0.dll una variante de Win32/bProtector.B aplicación
      C:\Users\All Users\Browser Manager\2.5.976.107\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\FirefoxExtension\components\mngr-13.0.dll una variante de Win32/bProtector.B aplicación
      C:\Users\All Users\Browser Manager\2.5.976.107\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\FirefoxExtension\components\mngr-14.0.1.dll una variante de Win32/bProtector.B aplicación
      C:\Users\All Users\Browser Manager\2.5.976.107\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\FirefoxExtension\components\mngr-15.0.dll una variante de Win32/bProtector.B aplicación
      C:\Users\All Users\Browser Manager\2.5.976.107\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\FirefoxExtension\components\mngr-16.0.dll una variante de Win32/bProtector.B aplicación
      C:\Users\All Users\Browser Manager\2.5.976.107\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\FirefoxExtension\components\mngr-17.0.dll una variante de Win32/bProtector.B aplicación
      C:\Users\All Users\Browser Manager\2.5.976.107\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\FirefoxExtension\components\mngr-18.0.dll una variante de Win32/bProtector.B aplicación
      C:\Users\All Users\Browser Manager\2.5.976.107\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\FirefoxExtension\components\mngr-3.6.dll una variante de Win32/bProtector.B aplicación
      C:\Users\All Users\Browser Manager\2.5.976.107\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\FirefoxExtension\components\mngr-5.0.dll una variante de Win32/bProtector.B aplicación
      C:\Users\All Users\Browser Manager\2.5.976.107\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\FirefoxExtension\components\mngr-6.0.2.dll una variante de Win32/bProtector.B aplicación
      C:\Users\All Users\Browser Manager\2.5.976.107\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\FirefoxExtension\components\mngr-7.0.1.dll una variante de Win32/bProtector.B aplicación
      C:\Users\All Users\Browser Manager\2.5.976.107\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\FirefoxExtension\components\mngr-8.0.1.dll una variante de Win32/bProtector.B aplicación
      C:\Users\All Users\Browser Manager\2.5.976.107\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\FirefoxExtension\components\mngr-9.0.1.dll una variante de Win32/bProtector.B aplicación
      C:\Users\All Users\Browser Manager\2.5.976.107\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\FirefoxExtension\content\mngr.js Win32/bProtector.C aplicación
      C:\Users\All Users\Browser Manager\2.5.976.107\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\mngr.crx Win32/bProtector.D aplicación
      C:\Users\All Users\Browser Manager\2.5.976.107\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\mngr.exe una variante de Win32/bProtector.A aplicación
      C:\Users\All Users\Browser Manager\2.5.976.107\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\uninstall.exe una variante de Win32/bProtector.A aplicación
      C:\ProgramData\Browser Manager\2.5.976.107\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\FirefoxExtension\components\mngr-10.0.2.dll una variante de Win32/bProtector.B aplicación no se ha podido desinfectar - archivo eliminado (después del próximo reinicio) - puesto en Cuarentena
      C:\ProgramData\Browser Manager\2.5.976.107\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\FirefoxExtension\components\mngr-11.0.dll una variante de Win32/bProtector.B aplicación no se ha podido desinfectar - archivo eliminado (después del próximo reinicio) - puesto en Cuarentena
      C:\ProgramData\Browser Manager\2.5.976.107\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\FirefoxExtension\components\mngr-12.0.dll una variante de Win32/bProtector.B aplicación no se ha podido desinfectar - archivo eliminado (después del próximo reinicio) - puesto en Cuarentena
      C:\ProgramData\Browser Manager\2.5.976.107\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\FirefoxExtension\components\mngr-13.0.dll una variante de Win32/bProtector.B aplicación no se ha podido desinfectar - archivo eliminado (después del próximo reinicio) - puesto en Cuarentena
      C:\ProgramData\Browser Manager\2.5.976.107\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\FirefoxExtension\components\mngr-14.0.1.dll una variante de Win32/bProtector.B aplicación no se ha podido desinfectar - archivo eliminado (después del próximo reinicio) - puesto en Cuarentena
      C:\ProgramData\Browser Manager\2.5.976.107\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\FirefoxExtension\components\mngr-15.0.dll una variante de Win32/bProtector.B aplicación no se ha podido desinfectar - archivo eliminado (después del próximo reinicio) - puesto en Cuarentena
      C:\ProgramData\Browser Manager\2.5.976.107\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\FirefoxExtension\components\mngr-16.0.dll una variante de Win32/bProtector.B aplicación no se ha podido desinfectar - archivo eliminado (después del próximo reinicio) - puesto en Cuarentena
      C:\ProgramData\Browser Manager\2.5.976.107\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\FirefoxExtension\components\mngr-17.0.dll una variante de Win32/bProtector.B aplicación no se ha podido desinfectar - archivo eliminado (después del próximo reinicio) - puesto en Cuarentena
      C:\ProgramData\Browser Manager\2.5.976.107\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\FirefoxExtension\components\mngr-18.0.dll una variante de Win32/bProtector.B aplicación no se ha podido desinfectar - archivo eliminado (después del próximo reinicio) - puesto en Cuarentena
      C:\ProgramData\Browser Manager\2.5.976.107\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\FirefoxExtension\components\mngr-3.6.dll una variante de Win32/bProtector.B aplicación no se ha podido desinfectar - archivo eliminado (después del próximo reinicio) - puesto en Cuarentena
      C:\ProgramData\Browser Manager\2.5.976.107\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\FirefoxExtension\components\mngr-5.0.dll una variante de Win32/bProtector.B aplicación no se ha podido desinfectar - archivo eliminado (después del próximo reinicio) - puesto en Cuarentena
      C:\ProgramData\Browser Manager\2.5.976.107\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\FirefoxExtension\components\mngr-6.0.2.dll una variante de Win32/bProtector.B aplicación no se ha podido desinfectar - archivo eliminado (después del próximo reinicio) - puesto en Cuarentena
      C:\ProgramData\Browser Manager\2.5.976.107\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\FirefoxExtension\components\mngr-7.0.1.dll una variante de Win32/bProtector.B aplicación no se ha podido desinfectar - archivo eliminado (después del próximo reinicio) - puesto en Cuarentena
      C:\ProgramData\Browser Manager\2.5.976.107\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\FirefoxExtension\components\mngr-8.0.1.dll una variante de Win32/bProtector.B aplicación no se ha podido desinfectar - archivo eliminado (después del próximo reinicio) - puesto en Cuarentena
      C:\ProgramData\Browser Manager\2.5.976.107\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\FirefoxExtension\components\mngr-9.0.1.dll una variante de Win32/bProtector.B aplicación no se ha podido desinfectar - archivo eliminado (después del próximo reinicio) - puesto en Cuarentena
      C:\ProgramData\Browser Manager\2.5.976.107\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\FirefoxExtension\content\mngr.js Win32/bProtector.C aplicación no se ha podido desinfectar - archivo eliminado (después del próximo reinicio) - puesto en Cuarentena
      C:\ProgramData\Browser Manager\2.5.976.107\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\mngr.crx Win32/bProtector.D aplicación eliminado (después del próximo reinicio) - puesto en Cuarentena
      C:\ProgramData\Browser Manager\2.5.976.107\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\mngr.dll una variante de Win32/bProtector.A aplicación no se ha podido desinfectar - archivo eliminado (después del próximo reinicio) - puesto en Cuarentena
      C:\ProgramData\Browser Manager\2.5.976.107\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\mngr.exe una variante de Win32/bProtector.A aplicación no se ha podido desinfectar - archivo eliminado (después del próximo reinicio) - puesto en Cuarentena
      C:\ProgramData\Browser Manager\2.5.976.107\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\uninstall.exe una variante de Win32/bProtector.A aplicación no se ha podido desinfectar - archivo eliminado (después del próximo reinicio) - puesto en Cuarentena
      C:\UsbFix\Quarantine\E\DCIM.exe.vir Win32/Autoit.GU gusano no se ha podido desinfectar - archivo eliminado - puesto en Cuarentena
      C:\UsbFix\Quarantine\E\temp.exe.vir Win32/Autoit.GU gusano no se ha podido desinfectar - archivo eliminado - puesto en Cuarentena
      C:\UsbFix\Quarantine\E\video.exe.vir Win32/Autoit.GU gusano no se ha podido desinfectar - archivo eliminado - puesto en Cuarentena
      C:\Users\All Users\Browser Manager\2.5.976.107\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\mngr.dll una variante de Win32/bProtector.A aplicación no se ha podido desinfectar - archivo eliminado (después del próximo reinicio) - puesto en Cuarentena
      C:\Users\Claudia\AppData\Local\Google\Chrome\User Data\Default\Extensions\pgafcinpmmpklohkojmllohdhomoefph\1.0_0\spext.dll Win32/bProtector.D aplicación no se ha podido desinfectar - archivo eliminado - puesto en Cuarentena
      C:\Users\Claudia\Downloads\DIMultike1.5.rar una variante de Win32/Keygen.AR aplicación eliminado - puesto en Cuarentena
      C:\Users\Claudia\Downloads\SoftonicDownloader_para_sony-vegas-pro.exe una variante de Win32/SoftonicDownloader.E aplicación no se ha podido desinfectar - archivo eliminado - puesto en Cuarentena
      C:\Users\Claudia\Downloads\SoftonicDownloader_para_utorrent.exe una variante de Win32/SoftonicDownloader.E aplicación no se ha podido desinfectar - archivo eliminado - puesto en Cuarentena
      C:\Users\Claudia\Downloads\Subtitulos-para-Mr-Hollands-Opus.exe Win32/Toolbar.Babylon aplicación no se ha podido desinfectar - archivo eliminado - puesto en Cuarentena
      C:\Windows\AutoKMS\AutoKMS.exe una variante de Win32/HackKMS.B aplicación no se ha podido desinfectar - archivo eliminado - puesto en Cuarentena
      G:\Documents and Settings (Pc Vieja)\Doble V Especial\Mis documentos\Descargas\SoftonicDownloader_para_directx-9.exe Win32/SoftonicDownloader aplicación no se ha podido desinfectar - archivo eliminado - puesto en Cuarentena
      G:\Documents and Settings (Pc Vieja)\Doble V Especial\Mis documentos\Downloads\MsgPlusLive-490.exe una variante de Win32/MessengerPlus aplicación no se ha podido desinfectar - archivo eliminado - puesto en Cuarentena
      G:\Documents and Settings (Pc Vieja)\Doble V Especial\Mis documentos\Downloads\SoftonicDownloader_para_regseeker.exe una variante de Win32/SoftonicDownloader.A aplicación no se ha podido desinfectar - archivo eliminado - puesto en Cuarentena
      Memoria operativa una variante de Win32/bProtector.A aplicación contiene archivos infectados

    4. #14
      Usuario Avatar de Raudron
      Registrado
      sep 2012
      Ubicación
      El Mundo
      Mensajes
      1.467

      Re: Virus oculta carpetas de la memoria USB y las reemplaza por aplicaciones

      Hola,

      ESET Online Scanner eliminó un adware... y también la cuarentena de USBFix...

      C:\UsbFix\Quarantine\E\DCIM.exe.vir Win32/Autoit.GU gusano no se ha podido desinfectar - archivo eliminado - puesto en Cuarentena
      C:\UsbFix\Quarantine\E\temp.exe.vir Win32/Autoit.GU gusano no se ha podido desinfectar - archivo eliminado - puesto en Cuarentena
      C:\UsbFix\Quarantine\E\video.exe.vir Win32/Autoit.GU gusano no se ha podido desinfectar - archivo eliminado - puesto en Cuarentena
      Para limpiar completamente tu equipo de adwares como Browser Manager, te recomiendo realizar lo siguiente:

      • Descarga >> AT-Destroyer 2.0 (Adwares/Toolbars-Destroyer 2.0) by @Infospyware.
      • Desactiva temporalmente el Antivirus y/o Antispyware.
      • Ejecuta AT-Destroyer. (Si usas Windows Vista o 7 Presiona clic derecho y selecciona "Ejecutar como Administrador.")
      • Aparecerá el Disclaimer, si estás de acuerdo, presiona SI para continuar.
      • Presiona sobre la opción Buscar y Destruir para comenzar el escaneo.
      • AT-Destroyer desconectará el escritorio momentáneamente, esto es normal.
      • Una vez terminado el escaneo, podrás volver a ver el escritorio y se te abrirá un reporte, que deberás copiar en tu próxima respuesta comentando cómo funciona el sistema.(También lo puedes encontrar en C:\AT-Destroyer.log)
      • Inmediatamente debes Reiniciar el equipo.

      Nos traes el reporte de AT-Destroyer, y nos comentas cómo funciona el equipo
      Saludos

    5. #15
      Usuario Avatar de matupresos
      Registrado
      feb 2010
      Ubicación
      Concordia, Entr
      Mensajes
      99

      Re: Virus oculta carpetas de la memoria USB y las reemplaza por aplicaciones

      Te paso el informe del AT. Por ahora el sistema se comporta correctamente. El problema no se volvio a presentar

      ######################## AT-Destroyer [2.1] By Infospyware.
      Hora/Día/Mes/Año: 12:40:34 \\\ 23/01/2013
      AT-Destroyer 2.1 By Infospyware ---> InfoSpyware
      Última actualización: 30/11/2012
      Opción escogida: 2 :Buscar y Destruir
      Versión Internet Explorer:9.0.8112.16421
      Mozilla Firefox:1.9.2.3989
      Privilegios: Claudia - Administrador
      Modo Actual: Modo Seguro.
      Nombre del pc: BENITEZ-PC
      Información del sistema operativo:X64-WIN_7-
      nombre del usuario:Claudia
      Lenguaje del sistema: Español



      >>>>>>> Servicios <<<<<<<



      >>>>>> Carpetas <<<<<<

      C:\Users\Claudia\AppData\Roaming\Babylon\log_file.txt (W32/PND.Babylon Toolbar)
      C:\Users\Claudia\AppData\Roaming\Babylon (W32/PND.Babylon Toolbar)
      C:\ProgramData\Browser Manager\2.5.976.107 (W32/Adware.BrowserCompanion)
      C:\ProgramData\Browser Manager\2.5.976.107\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8} (W32/Adware.BrowserCompanion)
      C:\ProgramData\Browser Manager\2.5.976.107\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\bl (W32/Adware.BrowserCompanion)
      C:\ProgramData\Browser Manager\2.5.976.107\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\FirefoxExtension (W32/Adware.BrowserCompanion)
      C:\ProgramData\Browser Manager\2.5.976.107\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\FirefoxExtension\chrome.manifest (W32/Adware.BrowserCompanion)
      C:\ProgramData\Browser Manager\2.5.976.107\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\FirefoxExtension\components (W32/Adware.BrowserCompanion)
      C:\ProgramData\Browser Manager\2.5.976.107\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\FirefoxExtension\components\mngr-3.6.xpt (W32/Adware.BrowserCompanion)
      C:\ProgramData\Browser Manager\2.5.976.107\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\FirefoxExtension\content (W32/Adware.BrowserCompanion)
      C:\ProgramData\Browser Manager\2.5.976.107\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\FirefoxExtension\content\overlay.xul (W32/Adware.BrowserCompanion)
      C:\ProgramData\Browser Manager\2.5.976.107\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\FirefoxExtension\install.rdf (W32/Adware.BrowserCompanion)
      C:\ProgramData\Browser Manager\2.5.976.107\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\mngr.settings (W32/Adware.BrowserCompanion)
      C:\ProgramData\Browser Manager\2.5.976.107\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\traking_settings (W32/Adware.BrowserCompanion)
      C:\ProgramData\Browser Manager\2.5.976.107\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\traking_settings\00 (W32/Adware.BrowserCompanion)
      C:\ProgramData\Browser Manager\2.5.976.107\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\traking_settings\01 (W32/Adware.BrowserCompanion)
      C:\ProgramData\Browser Manager\2.5.976.107\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\traking_settings\02 (W32/Adware.BrowserCompanion)
      C:\ProgramData\Browser Manager\2.5.976.107\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\traking_settings\10 (W32/Adware.BrowserCompanion)
      C:\ProgramData\Browser Manager\2.5.976.107\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\traking_settings\11 (W32/Adware.BrowserCompanion)
      C:\ProgramData\Browser Manager\2.5.976.107\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\traking_settings\12 (W32/Adware.BrowserCompanion)
      C:\ProgramData\Browser Manager\2.5.976.107\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\traking_settings\20 (W32/Adware.BrowserCompanion)
      C:\ProgramData\Browser Manager\2.5.976.107\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\traking_settings\21 (W32/Adware.BrowserCompanion)
      C:\ProgramData\Browser Manager\2.5.976.107\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\traking_settings\22 (W32/Adware.BrowserCompanion)
      C:\ProgramData\Browser Manager (W32/Adware.BrowserCompanion)
      C:\ProgramData\Babylon (W32/PND.Babylon Toolbar)


      >>>>>> Archivos <<<<<<

      C:\Program Files (x86)\mozilla firefox\searchplugins\babylon.xml
      C:\Windows\System32\ezsidmv.dat


      >>>>>> Registro <<<<<<

      HKEY_CURRENT_USER\Software\DataMngr
      HKEY_LOCAL_MACHINE\SOFTWARE\DataMngr
      HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}


      >>>>>> Heurística <<<<<<



      >>>>>> Internet Explorer <<<<<<

      Start Page==www.google.com
      Local Page==C:\Windows\SysWOW64\blank.htm
      Search Page==http://go.microsoft.com/fwlink/?LinkId=54896
      Default_search_url==http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
      Default_Page_URL==http://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome


      ''HKCU\Software\Microsoft\Internet Explorer\Main''
      Start Page==www.google.com
      Local Page==C:\Windows\system32\blank.htm
      Search Page==http://go.microsoft.com/fwlink/?LinkId=54896
      Default_search_url==http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
      Default_Page_URL==http://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome


      HKEY_USERS\S-1-5-21-2293343596-2862650067-2332596281-1000\Software\Microsoft\Internet Explorer\Main''
      Start Page==www.google.com
      Local Page==C:\Windows\system32\blank.htm
      Search Page==http://go.microsoft.com/fwlink/?LinkId=54896
      Default_search_url==http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
      Default_Page_URL==http://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome


      >>>>>> Firefox <<<<<<

      user_pref("browser.startup.homepage_override.mstone", "rv:1.9.2.13");
      user_pref("browser.startup.homepage", "http://search.babylon.com/?affID=112209&tt=4912_1&babsrc=HP_ss&mntrId=d443da8f00000000000010bf48774af7");


      >>>>>> Extensiones Firefox <<<<<<


      C:\Program Files (x86)\{972ce4c6-7e08-4474-a285-3208198ce6fd}
      C:\Program Files (x86)\{AB2CE124-6272-4b12-94A9-7303C7397BD1}
      C:\Program Files (x86)\{CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}

      >>>>>> Plugins Firefox <<<<<<

      HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer
      HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/ShockwavePlayer
      HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Google.com/GoogleEarthPlugin
      HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@google.com/npPicasa3,version=3.0.0
      HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=10.7.2
      HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin,version=10.9.2
      HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE
      HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0
      HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0
      HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/SharePoint,version=14.0

      >>>>>> Google Chrome <<<<<<

      "homepage": "http://www.google.com/",
      "homepage_changed": true,
      "homepage_is_newtabpage": false,


      >>>>>> Extensiones Google Chrome <<<<<<

      C:\Users\Claudia\AppData\Local\Google\Chrome\User Data\Default\Extensions\3
      C:\Users\Claudia\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgmhjlhfghldaofhdoafgpfjnbhihpha
      C:\Users\Claudia\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda
      C:\Users\Claudia\AppData\Local\Google\Chrome\User Data\Default\Extensions\nefbimbphlddggoikpapfadmgbjjibpl

      ======== Listado ===========

      [09/09/2012 10:50] [09/09/2012 10:50] [DI] C:\Users\Claudia\AppData\Roaming\Arcsoft
      [08/09/2012 19:42] [08/09/2012 19:42] [DI] C:\Users\Claudia\AppData\Roaming\ATI
      [15/09/2012 13:05] [10/09/2012 14:58] [DI] C:\Users\Claudia\AppData\Roaming\Autodesk
      [03/12/2012 18:44] [03/12/2012 18:44] [DI] C:\Users\Claudia\AppData\Roaming\Corel
      [08/09/2012 14:59] [08/09/2012 14:55] [DI] C:\Users\Claudia\AppData\Roaming\HP
      [15/10/2012 10:05] [08/09/2012 14:49] [DI] C:\Users\Claudia\AppData\Roaming\HpUpdate
      [08/09/2012 23:40] [08/09/2012 23:40] [DI] C:\Users\Claudia\AppData\Roaming\Identities
      [24/09/2012 18:20] [09/09/2012 16:05] [DI] C:\Users\Claudia\AppData\Roaming\KodakCredentialStore
      [08/09/2012 13:22] [08/09/2012 13:22] [DI] C:\Users\Claudia\AppData\Roaming\Macromedia
      [18/01/2013 11:22] [18/01/2013 11:22] [DI] C:\Users\Claudia\AppData\Roaming\Malwarebytes
      [20/09/2012 12:21] [20/09/2012 12:21] [DI] C:\Users\Claudia\AppData\Roaming\MathWorks
      [ 14/07/2009 7:10] [ 08/09/2012 23:39] [DI] C:\Users\Claudia\AppData\Roaming\Media Center Programs
      [03/12/2012 18:39] [08/09/2012 23:39] [SDI] C:\Users\Claudia\AppData\Roaming\Microsoft
      [29/09/2012 20:24] [29/09/2012 20:24] [DI] C:\Users\Claudia\AppData\Roaming\Mirillis
      [27/11/2012 19:48] [27/11/2012 19:48] [DI] C:\Users\Claudia\AppData\Roaming\Mozilla
      [20/09/2012 14:42] [08/09/2012 13:29] [DI] C:\Users\Claudia\AppData\Roaming\Nero
      [07/10/2012 15:42] [07/10/2012 15:42] [DI] C:\Users\Claudia\AppData\Roaming\Samsung
      [09/09/2012 10:51] [09/09/2012 10:51] [DI] C:\Users\Claudia\AppData\Roaming\Skinux
      [14/09/2012 21:34] [08/09/2012 13:18] [DI] C:\Users\Claudia\AppData\Roaming\Skype
      [ 14/09/2012 9:28] [ 14/09/2012 9:28] [DI] C:\Users\Claudia\AppData\Roaming\skypePM
      [19/10/2012 22:16] [19/10/2012 22:13] [DI] C:\Users\Claudia\AppData\Roaming\Sony
      [08/09/2012 13:30] [08/09/2012 13:30] [DI] C:\Users\Claudia\AppData\Roaming\TuneUp Software
      [23/01/2013 11:40] [06/11/2012 12:56] [DI] C:\Users\Claudia\AppData\Roaming\uTorrent
      [19/11/2012 11:34] [19/11/2012 11:34] [DI] C:\Users\Claudia\AppData\Roaming\Visan
      [08/09/2012 13:27] [08/09/2012 13:27] [DI] C:\Users\Claudia\AppData\Roaming\WinRAR
      [22/09/2012 14:36] [22/09/2012 14:36] [D] C:\Program Files (x86)\AMD APP
      [22/09/2012 14:36] [22/09/2012 14:36] [D] C:\Program Files (x86)\AMD AVT
      [09/09/2012 10:49] [09/09/2012 10:49] [D] C:\Program Files (x86)\ArcSoft
      [26/09/2012 14:52] [26/09/2012 14:46] [D] C:\Program Files (x86)\Ares
      [11/09/2012 17:32] [11/09/2012 17:10] [D] C:\Program Files (x86)\Arnet
      [22/09/2012 14:36] [22/09/2012 14:36] [D] C:\Program Files (x86)\ATI Technologies
      [21/09/2012 12:02] [21/09/2012 12:02] [D] C:\Program Files (x86)\Bethesda Softworks
      [08/09/2012 13:09] [08/09/2012 13:09] [D] C:\Program Files (x86)\Chuzzle Christmas Edition
      [08/09/2012 23:44] [08/09/2012 23:44] [D] C:\Program Files (x86)\Cisco
      [03/12/2012 18:37] [14/07/2009 0:20] [D] C:\Program Files (x86)\Common Files
      [03/12/2012 18:34] [03/12/2012 18:34] [D] C:\Program Files (x86)\Corel
      [08/09/2012 13:27] [08/09/2012 13:27] [D] C:\Program Files (x86)\CyberLink
      C:\Program Files (x86)\desktop.ini [HSA] 174 bytes( 0)
      [10/09/2012 14:20] [10/09/2012 14:20] [D] C:\Program Files (x86)\EA GAMES
      [08/09/2012 13:08] [08/09/2012 13:08] [D] C:\Program Files (x86)\EASEUS
      [21/01/2013 8:20] [21/01/2013 8:20] [D] C:\Program Files (x86)\ESET
      [21/09/2012 21:45] [21/09/2012 21:45] [D] C:\Program Files (x86)\Futuremark
      [19/12/2012 8:43] [08/09/2012 13:25] [D] C:\Program Files (x86)\Google
      [01/10/2012 11:49] [08/09/2012 14:36] [D] C:\Program Files (x86)\HP
      [19/11/2012 11:34] [19/11/2012 11:33] [D] C:\Program Files (x86)\HP Photo Creations
      [07/10/2012 15:38] [08/09/2012 23:44] [HD] C:\Program Files (x86)\InstallShield Installation Information
      [08/09/2012 22:08] [14/07/2009 0:20] [D] C:\Program Files (x86)\Internet Explorer
      [22/10/2012 10:06] [08/09/2012 13:20] [D] C:\Program Files (x86)\Java
      [07/01/2013 23:15] [09/09/2012 22:53] [D] C:\Program Files (x86)\JDownloader
      [08/09/2012 12:59] [08/09/2012 12:59] [D] C:\Program Files (x86)\K-Lite Codec Pack
      [09/09/2012 10:48] [09/09/2012 10:32] [D] C:\Program Files (x86)\Kodak
      [08/09/2012 13:07] [08/09/2012 13:07] [D] C:\Program Files (x86)\Lavalys
      [18/01/2013 11:22] [18/01/2013 11:22] [D] C:\Program Files (x86)\Malwarebytes' Anti-Malware
      [07/10/2012 15:38] [07/10/2012 15:38] [D] C:\Program Files (x86)\MarkAny
      [09/09/2012 21:23] [08/09/2012 14:50] [D] C:\Program Files (x86)\Microsoft
      [08/09/2012 14:05] [08/09/2012 14:05] [D] C:\Program Files (x86)\Microsoft Analysis Services
      [08/09/2012 14:15] [08/09/2012 14:03] [D] C:\Program Files (x86)\Microsoft Office
      [03/12/2012 18:38] [03/12/2012 18:38] [D] C:\Program Files (x86)\Microsoft SDKs
      [08/09/2012 17:21] [08/09/2012 13:24] [D] C:\Program Files (x86)\Microsoft Silverlight
      [08/09/2012 14:15] [08/09/2012 14:15] [D] C:\Program Files (x86)\Microsoft SQL Server Compact Edition
      [08/09/2012 14:15] [08/09/2012 14:15] [D] C:\Program Files (x86)\Microsoft Sync Framework
      [08/09/2012 14:15] [08/09/2012 14:15] [D] C:\Program Files (x86)\Microsoft Synchronization Services
      [08/09/2012 14:08] [08/09/2012 14:08] [D] C:\Program Files (x86)\Microsoft Visual Studio 8
      [03/12/2012 18:40] [03/12/2012 18:38] [D] C:\Program Files (x86)\Microsoft Visual Studio 9.0
      [08/09/2012 14:15] [08/09/2012 12:56] [D] C:\Program Files (x86)\Microsoft.NET
      [29/09/2012 20:23] [29/09/2012 20:23] [D] C:\Program Files (x86)\Mirillis
      [08/09/2012 13:08] [08/09/2012 13:08] [D] C:\Program Files (x86)\Mozilla Firefox
      [08/09/2012 14:16] [14/07/2009 2:32] [D] C:\Program Files (x86)\MSBuild
      [08/09/2012 14:50] [08/09/2012 14:49] [D] C:\Program Files (x86)\MSN Toolbar Installer
      [09/09/2012 23:07] [09/09/2012 23:07] [D] C:\Program Files (x86)\MSXML 4.0
      [08/09/2012 13:29] [08/09/2012 13:29] [D] C:\Program Files (x86)\Nero
      [08/09/2012 13:55] [08/09/2012 13:55] [D] C:\Program Files (x86)\Oracle
      [08/09/2012 13:16] [08/09/2012 13:16] [D] C:\Program Files (x86)\Plantas Contra Zombis
      [08/09/2012 13:16] [08/09/2012 13:16] [D] C:\Program Files (x86)\PopCap Games
      [08/09/2012 13:28] [08/09/2012 13:27] [D] C:\Program Files (x86)\QT Lite
      [08/09/2012 19:32] [08/09/2012 19:32] [D] C:\Program Files (x86)\Realtek
      [14/07/2009 2:32] [14/07/2009 2:32] [D] C:\Program Files (x86)\Reference Assemblies
      [07/10/2012 15:39] [07/10/2012 15:37] [D] C:\Program Files (x86)\Samsung
      [03/01/2013 10:33] [03/01/2013 10:33] [D] C:\Program Files (x86)\ScureMyLinks
      [14/09/2012 10:54] [08/09/2012 13:18] [RD] C:\Program Files (x86)\Skype
      [19/10/2012 22:14] [19/10/2012 22:14] [D] C:\Program Files (x86)\Sony
      [08/09/2012 19:34] [08/09/2012 15:07] [HD] C:\Program Files (x86)\Temp
      [08/09/2012 23:44] [08/09/2012 23:44] [D] C:\Program Files (x86)\TP-LINK
      [08/09/2012 13:16] [08/09/2012 13:16] [D] C:\Program Files (x86)\Tumblebugs 2 en Español
      [08/09/2012 13:16] [08/09/2012 13:16] [D] C:\Program Files (x86)\Tumblebugs en Español
      [08/09/2012 13:30] [08/09/2012 13:30] [D] C:\Program Files (x86)\TuneUp Utilities 2011
      [20/09/2012 14:13] [20/09/2012 14:13] [D] C:\Program Files (x86)\Ubisoft
      [08/09/2012 13:30] [08/09/2012 13:30] [D] C:\Program Files (x86)\UltraISO
      [14/07/2009 1:57] [14/07/2009 1:57] [HD] C:\Program Files (x86)\Uninstall Information
      [11/12/2012 7:07] [06/11/2012 12:56] [D] C:\Program Files (x86)\uTorrent
      [08/09/2012 13:25] [08/09/2012 13:25] [D] C:\Program Files (x86)\VideoLAN
      [14/07/2009 6:30] [14/07/2009 2:32] [D] C:\Program Files (x86)\Windows Defender
      [08/09/2012 22:08] [14/07/2009 0:20] [D] C:\Program Files (x86)\Windows Mail
      [08/09/2012 15:33] [14/07/2009 2:32] [D] C:\Program Files (x86)\Windows Media Player
      [14/07/2009 2:32] [14/07/2009 0:20] [D] C:\Program Files (x86)\Windows NT
      [14/07/2009 6:30] [14/07/2009 2:32] [D] C:\Program Files (x86)\Windows Photo Viewer
      [14/07/2009 2:32] [14/07/2009 2:32] [D] C:\Program Files (x86)\Windows Portable Devices
      [14/07/2009 6:30] [14/07/2009 2:32] [D] C:\Program Files (x86)\Windows Sidebar
      [08/09/2012 13:07] [08/09/2012 13:07] [D] C:\Program Files (x86)\Winrar
      [08/09/2012 13:33] [08/09/2012 13:33] [DI] C:\ProgramData\Alwil Software
      [22/09/2012 14:37] [22/09/2012 14:36] [DI] C:\ProgramData\AMD
      [08/09/2012 13:28] [08/09/2012 13:28] [DI] C:\ProgramData\Apple Computer
      [14/07/2009 2:08] [14/07/2009 2:08] [HSDLI] C:\ProgramData\Application Data
      [09/09/2012 10:50] [09/09/2012 10:49] [DI] C:\ProgramData\ArcSoft
      [22/09/2012 14:37] [22/09/2012 14:37] [DI] C:\ProgramData\ATI
      [15/09/2012 13:05] [10/09/2012 14:58] [DI] C:\ProgramData\Autodesk
      [03/12/2012 18:44] [03/12/2012 18:36] [DI] C:\ProgramData\Corel
      [03/12/2012 18:43] [03/12/2012 18:34] [DI] C:\ProgramData\CorelDRAW Graphics Suite X6
      [08/09/2012 23:39] [08/09/2012 23:39] [HSDLI] C:\ProgramData\Datos de programa
      [14/07/2009 2:08] [14/07/2009 2:08] [HSDLI] C:\ProgramData\Desktop
      [08/09/2012 23:39] [08/09/2012 23:39] [HSDLI] C:\ProgramData\Documentos
      [14/07/2009 2:08] [14/07/2009 2:08] [HSDLI] C:\ProgramData\Documents
      [08/09/2012 13:14] [08/09/2012 13:13] [DI] C:\ProgramData\EPSON
      [08/09/2012 23:39] [08/09/2012 23:39] [HSDLI] C:\ProgramData\Escritorio
      [14/07/2009 2:08] [14/07/2009 2:08] [HSDLI] C:\ProgramData\Favorites
      [08/09/2012 23:39] [08/09/2012 23:39] [HSDLI] C:\ProgramData\Favoritos
      [11/09/2012 14:43] [11/09/2012 14:40] [DI] C:\ProgramData\FLEXnet
      [27/09/2012 13:32] [08/09/2012 14:30] [DI] C:\ProgramData\HP
      [19/11/2012 11:34] [19/11/2012 11:33] [DI] C:\ProgramData\HP Photo Creations
      [27/09/2012 13:32] [27/09/2012 13:32] [DI] C:\ProgramData\HP Product Assistant
      C:\ProgramData\hpzinstall.log [AI] 9,25 KB 0
      [09/09/2012 10:50] [09/09/2012 10:23] [DI] C:\ProgramData\Kodak
      [18/01/2013 11:22] [18/01/2013 11:22] [DI] C:\ProgramData\Malwarebytes
      [08/09/2012 23:39] [08/09/2012 23:39] [HSDLI] C:\ProgramData\Menú Inicio
      [03/12/2012 18:39] [14/07/2009 0:20] [SDI] C:\ProgramData\Microsoft
      [03/12/2012 18:40] [08/09/2012 14:03] [DI] C:\ProgramData\Microsoft Help
      [29/09/2012 20:24] [29/09/2012 20:24] [DI] C:\ProgramData\Mirillis
      [08/09/2012 23:39] [08/09/2012 23:39] [HSDLI] C:\ProgramData\Plantillas
      [18/09/2012 20:48] [18/09/2012 20:48] [DI] C:\ProgramData\PopCap Games
      [03/12/2012 18:44] [03/12/2012 18:44] [DI] C:\ProgramData\Protexis
      [08/09/2012 12:47] [08/09/2012 23:45] [DI] C:\ProgramData\Ralink
      [07/10/2012 15:38] [07/10/2012 15:37] [DI] C:\ProgramData\Samsung
      [14/09/2012 10:54] [08/09/2012 13:17] [DI] C:\ProgramData\Skype
      [14/07/2009 2:08] [14/07/2009 2:08] [HSDLI] C:\ProgramData\Start Menu
      [08/09/2012 13:20] [08/09/2012 13:20] [DI] C:\ProgramData\Sun
      [08/09/2012 13:27] [08/09/2012 13:27] [DI] C:\ProgramData\Temp
      [14/07/2009 2:08] [14/07/2009 2:08] [HSDLI] C:\ProgramData\Templates
      [08/09/2012 23:44] [08/09/2012 23:44] [DI] C:\ProgramData\TP-LINK Driver
      [08/09/2012 13:35] [08/09/2012 13:27] [DI] C:\ProgramData\TuneUp Software
      [19/11/2012 11:34] [19/11/2012 11:33] [DI] C:\ProgramData\Visan
      [08/09/2012 14:59] [08/09/2012 14:59] [DI] C:\ProgramData\WEBREG
      [08/09/2012 13:27] [08/09/2012 13:27] [HSD] C:\ProgramData\{24036256-BFDB-4CD3-BE8A-A3D6160F2E16}

      ==================== EOF ==================

    6. #16
      Usuario Avatar de matupresos
      Registrado
      feb 2010
      Ubicación
      Concordia, Entr
      Mensajes
      99

      Re: Virus oculta carpetas de la memoria USB y las reemplaza por aplicaciones

      Te paso el informe del AT. Por ahora el sistema se comporta correctamente. El problema no se volvio a presentar

      ######################## AT-Destroyer [2.1] By Infospyware.
      Hora/Día/Mes/Año: 12:40:34 \\\ 23/01/2013
      AT-Destroyer 2.1 By Infospyware ---> InfoSpyware
      Última actualización: 30/11/2012
      Opción escogida: 2 :Buscar y Destruir
      Versión Internet Explorer:9.0.8112.16421
      Mozilla Firefox:1.9.2.3989
      Privilegios: Claudia - Administrador
      Modo Actual: Modo Seguro.
      Nombre del pc: BENITEZ-PC
      Información del sistema operativo:X64-WIN_7-
      nombre del usuario:Claudia
      Lenguaje del sistema: Español



      >>>>>>> Servicios <<<<<<<



      >>>>>> Carpetas <<<<<<

      C:\Users\Claudia\AppData\Roaming\Babylon\log_file.txt (W32/PND.Babylon Toolbar)
      C:\Users\Claudia\AppData\Roaming\Babylon (W32/PND.Babylon Toolbar)
      C:\ProgramData\Browser Manager\2.5.976.107 (W32/Adware.BrowserCompanion)
      C:\ProgramData\Browser Manager\2.5.976.107\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8} (W32/Adware.BrowserCompanion)
      C:\ProgramData\Browser Manager\2.5.976.107\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\bl (W32/Adware.BrowserCompanion)
      C:\ProgramData\Browser Manager\2.5.976.107\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\FirefoxExtension (W32/Adware.BrowserCompanion)
      C:\ProgramData\Browser Manager\2.5.976.107\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\FirefoxExtension\chrome.manifest (W32/Adware.BrowserCompanion)
      C:\ProgramData\Browser Manager\2.5.976.107\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\FirefoxExtension\components (W32/Adware.BrowserCompanion)
      C:\ProgramData\Browser Manager\2.5.976.107\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\FirefoxExtension\components\mngr-3.6.xpt (W32/Adware.BrowserCompanion)
      C:\ProgramData\Browser Manager\2.5.976.107\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\FirefoxExtension\content (W32/Adware.BrowserCompanion)
      C:\ProgramData\Browser Manager\2.5.976.107\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\FirefoxExtension\content\overlay.xul (W32/Adware.BrowserCompanion)
      C:\ProgramData\Browser Manager\2.5.976.107\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\FirefoxExtension\install.rdf (W32/Adware.BrowserCompanion)
      C:\ProgramData\Browser Manager\2.5.976.107\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\mngr.settings (W32/Adware.BrowserCompanion)
      C:\ProgramData\Browser Manager\2.5.976.107\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\traking_settings (W32/Adware.BrowserCompanion)
      C:\ProgramData\Browser Manager\2.5.976.107\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\traking_settings\00 (W32/Adware.BrowserCompanion)
      C:\ProgramData\Browser Manager\2.5.976.107\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\traking_settings\01 (W32/Adware.BrowserCompanion)
      C:\ProgramData\Browser Manager\2.5.976.107\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\traking_settings\02 (W32/Adware.BrowserCompanion)
      C:\ProgramData\Browser Manager\2.5.976.107\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\traking_settings\10 (W32/Adware.BrowserCompanion)
      C:\ProgramData\Browser Manager\2.5.976.107\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\traking_settings\11 (W32/Adware.BrowserCompanion)
      C:\ProgramData\Browser Manager\2.5.976.107\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\traking_settings\12 (W32/Adware.BrowserCompanion)
      C:\ProgramData\Browser Manager\2.5.976.107\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\traking_settings\20 (W32/Adware.BrowserCompanion)
      C:\ProgramData\Browser Manager\2.5.976.107\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\traking_settings\21 (W32/Adware.BrowserCompanion)
      C:\ProgramData\Browser Manager\2.5.976.107\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\traking_settings\22 (W32/Adware.BrowserCompanion)
      C:\ProgramData\Browser Manager (W32/Adware.BrowserCompanion)
      C:\ProgramData\Babylon (W32/PND.Babylon Toolbar)


      >>>>>> Archivos <<<<<<

      C:\Program Files (x86)\mozilla firefox\searchplugins\babylon.xml
      C:\Windows\System32\ezsidmv.dat


      >>>>>> Registro <<<<<<

      HKEY_CURRENT_USER\Software\DataMngr
      HKEY_LOCAL_MACHINE\SOFTWARE\DataMngr
      HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}


      >>>>>> Heurística <<<<<<



      >>>>>> Internet Explorer <<<<<<

      Start Page==www.google.com
      Local Page==C:\Windows\SysWOW64\blank.htm
      Search Page==http://go.microsoft.com/fwlink/?LinkId=54896
      Default_search_url==http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
      Default_Page_URL==http://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome


      ''HKCU\Software\Microsoft\Internet Explorer\Main''
      Start Page==www.google.com
      Local Page==C:\Windows\system32\blank.htm
      Search Page==http://go.microsoft.com/fwlink/?LinkId=54896
      Default_search_url==http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
      Default_Page_URL==http://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome


      HKEY_USERS\S-1-5-21-2293343596-2862650067-2332596281-1000\Software\Microsoft\Internet Explorer\Main''
      Start Page==www.google.com
      Local Page==C:\Windows\system32\blank.htm
      Search Page==http://go.microsoft.com/fwlink/?LinkId=54896
      Default_search_url==http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
      Default_Page_URL==http://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome


      >>>>>> Firefox <<<<<<

      user_pref("browser.startup.homepage_override.mstone", "rv:1.9.2.13");
      user_pref("browser.startup.homepage", "http://search.babylon.com/?affID=112209&tt=4912_1&babsrc=HP_ss&mntrId=d443da8f00000000000010bf48774af7");


      >>>>>> Extensiones Firefox <<<<<<


      C:\Program Files (x86)\{972ce4c6-7e08-4474-a285-3208198ce6fd}
      C:\Program Files (x86)\{AB2CE124-6272-4b12-94A9-7303C7397BD1}
      C:\Program Files (x86)\{CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}

      >>>>>> Plugins Firefox <<<<<<

      HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer
      HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/ShockwavePlayer
      HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Google.com/GoogleEarthPlugin
      HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@google.com/npPicasa3,version=3.0.0
      HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=10.7.2
      HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin,version=10.9.2
      HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE
      HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0
      HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0
      HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/SharePoint,version=14.0

      >>>>>> Google Chrome <<<<<<

      "homepage": "http://www.google.com/",
      "homepage_changed": true,
      "homepage_is_newtabpage": false,


      >>>>>> Extensiones Google Chrome <<<<<<

      C:\Users\Claudia\AppData\Local\Google\Chrome\User Data\Default\Extensions\3
      C:\Users\Claudia\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgmhjlhfghldaofhdoafgpfjnbhihpha
      C:\Users\Claudia\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda
      C:\Users\Claudia\AppData\Local\Google\Chrome\User Data\Default\Extensions\nefbimbphlddggoikpapfadmgbjjibpl

      ======== Listado ===========

      [09/09/2012 10:50] [09/09/2012 10:50] [DI] C:\Users\Claudia\AppData\Roaming\Arcsoft
      [08/09/2012 19:42] [08/09/2012 19:42] [DI] C:\Users\Claudia\AppData\Roaming\ATI
      [15/09/2012 13:05] [10/09/2012 14:58] [DI] C:\Users\Claudia\AppData\Roaming\Autodesk
      [03/12/2012 18:44] [03/12/2012 18:44] [DI] C:\Users\Claudia\AppData\Roaming\Corel
      [08/09/2012 14:59] [08/09/2012 14:55] [DI] C:\Users\Claudia\AppData\Roaming\HP
      [15/10/2012 10:05] [08/09/2012 14:49] [DI] C:\Users\Claudia\AppData\Roaming\HpUpdate
      [08/09/2012 23:40] [08/09/2012 23:40] [DI] C:\Users\Claudia\AppData\Roaming\Identities
      [24/09/2012 18:20] [09/09/2012 16:05] [DI] C:\Users\Claudia\AppData\Roaming\KodakCredentialStore
      [08/09/2012 13:22] [08/09/2012 13:22] [DI] C:\Users\Claudia\AppData\Roaming\Macromedia
      [18/01/2013 11:22] [18/01/2013 11:22] [DI] C:\Users\Claudia\AppData\Roaming\Malwarebytes
      [20/09/2012 12:21] [20/09/2012 12:21] [DI] C:\Users\Claudia\AppData\Roaming\MathWorks
      [ 14/07/2009 7:10] [ 08/09/2012 23:39] [DI] C:\Users\Claudia\AppData\Roaming\Media Center Programs
      [03/12/2012 18:39] [08/09/2012 23:39] [SDI] C:\Users\Claudia\AppData\Roaming\Microsoft
      [29/09/2012 20:24] [29/09/2012 20:24] [DI] C:\Users\Claudia\AppData\Roaming\Mirillis
      [27/11/2012 19:48] [27/11/2012 19:48] [DI] C:\Users\Claudia\AppData\Roaming\Mozilla
      [20/09/2012 14:42] [08/09/2012 13:29] [DI] C:\Users\Claudia\AppData\Roaming\Nero
      [07/10/2012 15:42] [07/10/2012 15:42] [DI] C:\Users\Claudia\AppData\Roaming\Samsung
      [09/09/2012 10:51] [09/09/2012 10:51] [DI] C:\Users\Claudia\AppData\Roaming\Skinux
      [14/09/2012 21:34] [08/09/2012 13:18] [DI] C:\Users\Claudia\AppData\Roaming\Skype
      [ 14/09/2012 9:28] [ 14/09/2012 9:28] [DI] C:\Users\Claudia\AppData\Roaming\skypePM
      [19/10/2012 22:16] [19/10/2012 22:13] [DI] C:\Users\Claudia\AppData\Roaming\Sony
      [08/09/2012 13:30] [08/09/2012 13:30] [DI] C:\Users\Claudia\AppData\Roaming\TuneUp Software
      [23/01/2013 11:40] [06/11/2012 12:56] [DI] C:\Users\Claudia\AppData\Roaming\uTorrent
      [19/11/2012 11:34] [19/11/2012 11:34] [DI] C:\Users\Claudia\AppData\Roaming\Visan
      [08/09/2012 13:27] [08/09/2012 13:27] [DI] C:\Users\Claudia\AppData\Roaming\WinRAR
      [22/09/2012 14:36] [22/09/2012 14:36] [D] C:\Program Files (x86)\AMD APP
      [22/09/2012 14:36] [22/09/2012 14:36] [D] C:\Program Files (x86)\AMD AVT
      [09/09/2012 10:49] [09/09/2012 10:49] [D] C:\Program Files (x86)\ArcSoft
      [26/09/2012 14:52] [26/09/2012 14:46] [D] C:\Program Files (x86)\Ares
      [11/09/2012 17:32] [11/09/2012 17:10] [D] C:\Program Files (x86)\Arnet
      [22/09/2012 14:36] [22/09/2012 14:36] [D] C:\Program Files (x86)\ATI Technologies
      [21/09/2012 12:02] [21/09/2012 12:02] [D] C:\Program Files (x86)\Bethesda Softworks
      [08/09/2012 13:09] [08/09/2012 13:09] [D] C:\Program Files (x86)\Chuzzle Christmas Edition
      [08/09/2012 23:44] [08/09/2012 23:44] [D] C:\Program Files (x86)\Cisco
      [03/12/2012 18:37] [14/07/2009 0:20] [D] C:\Program Files (x86)\Common Files
      [03/12/2012 18:34] [03/12/2012 18:34] [D] C:\Program Files (x86)\Corel
      [08/09/2012 13:27] [08/09/2012 13:27] [D] C:\Program Files (x86)\CyberLink
      C:\Program Files (x86)\desktop.ini [HSA] 174 bytes( 0)
      [10/09/2012 14:20] [10/09/2012 14:20] [D] C:\Program Files (x86)\EA GAMES
      [08/09/2012 13:08] [08/09/2012 13:08] [D] C:\Program Files (x86)\EASEUS
      [21/01/2013 8:20] [21/01/2013 8:20] [D] C:\Program Files (x86)\ESET
      [21/09/2012 21:45] [21/09/2012 21:45] [D] C:\Program Files (x86)\Futuremark
      [19/12/2012 8:43] [08/09/2012 13:25] [D] C:\Program Files (x86)\Google
      [01/10/2012 11:49] [08/09/2012 14:36] [D] C:\Program Files (x86)\HP
      [19/11/2012 11:34] [19/11/2012 11:33] [D] C:\Program Files (x86)\HP Photo Creations
      [07/10/2012 15:38] [08/09/2012 23:44] [HD] C:\Program Files (x86)\InstallShield Installation Information
      [08/09/2012 22:08] [14/07/2009 0:20] [D] C:\Program Files (x86)\Internet Explorer
      [22/10/2012 10:06] [08/09/2012 13:20] [D] C:\Program Files (x86)\Java
      [07/01/2013 23:15] [09/09/2012 22:53] [D] C:\Program Files (x86)\JDownloader
      [08/09/2012 12:59] [08/09/2012 12:59] [D] C:\Program Files (x86)\K-Lite Codec Pack
      [09/09/2012 10:48] [09/09/2012 10:32] [D] C:\Program Files (x86)\Kodak
      [08/09/2012 13:07] [08/09/2012 13:07] [D] C:\Program Files (x86)\Lavalys
      [18/01/2013 11:22] [18/01/2013 11:22] [D] C:\Program Files (x86)\Malwarebytes' Anti-Malware
      [07/10/2012 15:38] [07/10/2012 15:38] [D] C:\Program Files (x86)\MarkAny
      [09/09/2012 21:23] [08/09/2012 14:50] [D] C:\Program Files (x86)\Microsoft
      [08/09/2012 14:05] [08/09/2012 14:05] [D] C:\Program Files (x86)\Microsoft Analysis Services
      [08/09/2012 14:15] [08/09/2012 14:03] [D] C:\Program Files (x86)\Microsoft Office
      [03/12/2012 18:38] [03/12/2012 18:38] [D] C:\Program Files (x86)\Microsoft SDKs
      [08/09/2012 17:21] [08/09/2012 13:24] [D] C:\Program Files (x86)\Microsoft Silverlight
      [08/09/2012 14:15] [08/09/2012 14:15] [D] C:\Program Files (x86)\Microsoft SQL Server Compact Edition
      [08/09/2012 14:15] [08/09/2012 14:15] [D] C:\Program Files (x86)\Microsoft Sync Framework
      [08/09/2012 14:15] [08/09/2012 14:15] [D] C:\Program Files (x86)\Microsoft Synchronization Services
      [08/09/2012 14:08] [08/09/2012 14:08] [D] C:\Program Files (x86)\Microsoft Visual Studio 8
      [03/12/2012 18:40] [03/12/2012 18:38] [D] C:\Program Files (x86)\Microsoft Visual Studio 9.0
      [08/09/2012 14:15] [08/09/2012 12:56] [D] C:\Program Files (x86)\Microsoft.NET
      [29/09/2012 20:23] [29/09/2012 20:23] [D] C:\Program Files (x86)\Mirillis
      [08/09/2012 13:08] [08/09/2012 13:08] [D] C:\Program Files (x86)\Mozilla Firefox
      [08/09/2012 14:16] [14/07/2009 2:32] [D] C:\Program Files (x86)\MSBuild
      [08/09/2012 14:50] [08/09/2012 14:49] [D] C:\Program Files (x86)\MSN Toolbar Installer
      [09/09/2012 23:07] [09/09/2012 23:07] [D] C:\Program Files (x86)\MSXML 4.0
      [08/09/2012 13:29] [08/09/2012 13:29] [D] C:\Program Files (x86)\Nero
      [08/09/2012 13:55] [08/09/2012 13:55] [D] C:\Program Files (x86)\Oracle
      [08/09/2012 13:16] [08/09/2012 13:16] [D] C:\Program Files (x86)\Plantas Contra Zombis
      [08/09/2012 13:16] [08/09/2012 13:16] [D] C:\Program Files (x86)\PopCap Games
      [08/09/2012 13:28] [08/09/2012 13:27] [D] C:\Program Files (x86)\QT Lite
      [08/09/2012 19:32] [08/09/2012 19:32] [D] C:\Program Files (x86)\Realtek
      [14/07/2009 2:32] [14/07/2009 2:32] [D] C:\Program Files (x86)\Reference Assemblies
      [07/10/2012 15:39] [07/10/2012 15:37] [D] C:\Program Files (x86)\Samsung
      [03/01/2013 10:33] [03/01/2013 10:33] [D] C:\Program Files (x86)\ScureMyLinks
      [14/09/2012 10:54] [08/09/2012 13:18] [RD] C:\Program Files (x86)\Skype
      [19/10/2012 22:14] [19/10/2012 22:14] [D] C:\Program Files (x86)\Sony
      [08/09/2012 19:34] [08/09/2012 15:07] [HD] C:\Program Files (x86)\Temp
      [08/09/2012 23:44] [08/09/2012 23:44] [D] C:\Program Files (x86)\TP-LINK
      [08/09/2012 13:16] [08/09/2012 13:16] [D] C:\Program Files (x86)\Tumblebugs 2 en Español
      [08/09/2012 13:16] [08/09/2012 13:16] [D] C:\Program Files (x86)\Tumblebugs en Español
      [08/09/2012 13:30] [08/09/2012 13:30] [D] C:\Program Files (x86)\TuneUp Utilities 2011
      [20/09/2012 14:13] [20/09/2012 14:13] [D] C:\Program Files (x86)\Ubisoft
      [08/09/2012 13:30] [08/09/2012 13:30] [D] C:\Program Files (x86)\UltraISO
      [14/07/2009 1:57] [14/07/2009 1:57] [HD] C:\Program Files (x86)\Uninstall Information
      [11/12/2012 7:07] [06/11/2012 12:56] [D] C:\Program Files (x86)\uTorrent
      [08/09/2012 13:25] [08/09/2012 13:25] [D] C:\Program Files (x86)\VideoLAN
      [14/07/2009 6:30] [14/07/2009 2:32] [D] C:\Program Files (x86)\Windows Defender
      [08/09/2012 22:08] [14/07/2009 0:20] [D] C:\Program Files (x86)\Windows Mail
      [08/09/2012 15:33] [14/07/2009 2:32] [D] C:\Program Files (x86)\Windows Media Player
      [14/07/2009 2:32] [14/07/2009 0:20] [D] C:\Program Files (x86)\Windows NT
      [14/07/2009 6:30] [14/07/2009 2:32] [D] C:\Program Files (x86)\Windows Photo Viewer
      [14/07/2009 2:32] [14/07/2009 2:32] [D] C:\Program Files (x86)\Windows Portable Devices
      [14/07/2009 6:30] [14/07/2009 2:32] [D] C:\Program Files (x86)\Windows Sidebar
      [08/09/2012 13:07] [08/09/2012 13:07] [D] C:\Program Files (x86)\Winrar
      [08/09/2012 13:33] [08/09/2012 13:33] [DI] C:\ProgramData\Alwil Software
      [22/09/2012 14:37] [22/09/2012 14:36] [DI] C:\ProgramData\AMD
      [08/09/2012 13:28] [08/09/2012 13:28] [DI] C:\ProgramData\Apple Computer
      [14/07/2009 2:08] [14/07/2009 2:08] [HSDLI] C:\ProgramData\Application Data
      [09/09/2012 10:50] [09/09/2012 10:49] [DI] C:\ProgramData\ArcSoft
      [22/09/2012 14:37] [22/09/2012 14:37] [DI] C:\ProgramData\ATI
      [15/09/2012 13:05] [10/09/2012 14:58] [DI] C:\ProgramData\Autodesk
      [03/12/2012 18:44] [03/12/2012 18:36] [DI] C:\ProgramData\Corel
      [03/12/2012 18:43] [03/12/2012 18:34] [DI] C:\ProgramData\CorelDRAW Graphics Suite X6
      [08/09/2012 23:39] [08/09/2012 23:39] [HSDLI] C:\ProgramData\Datos de programa
      [14/07/2009 2:08] [14/07/2009 2:08] [HSDLI] C:\ProgramData\Desktop
      [08/09/2012 23:39] [08/09/2012 23:39] [HSDLI] C:\ProgramData\Documentos
      [14/07/2009 2:08] [14/07/2009 2:08] [HSDLI] C:\ProgramData\Documents
      [08/09/2012 13:14] [08/09/2012 13:13] [DI] C:\ProgramData\EPSON
      [08/09/2012 23:39] [08/09/2012 23:39] [HSDLI] C:\ProgramData\Escritorio
      [14/07/2009 2:08] [14/07/2009 2:08] [HSDLI] C:\ProgramData\Favorites
      [08/09/2012 23:39] [08/09/2012 23:39] [HSDLI] C:\ProgramData\Favoritos
      [11/09/2012 14:43] [11/09/2012 14:40] [DI] C:\ProgramData\FLEXnet
      [27/09/2012 13:32] [08/09/2012 14:30] [DI] C:\ProgramData\HP
      [19/11/2012 11:34] [19/11/2012 11:33] [DI] C:\ProgramData\HP Photo Creations
      [27/09/2012 13:32] [27/09/2012 13:32] [DI] C:\ProgramData\HP Product Assistant
      C:\ProgramData\hpzinstall.log [AI] 9,25 KB 0
      [09/09/2012 10:50] [09/09/2012 10:23] [DI] C:\ProgramData\Kodak
      [18/01/2013 11:22] [18/01/2013 11:22] [DI] C:\ProgramData\Malwarebytes
      [08/09/2012 23:39] [08/09/2012 23:39] [HSDLI] C:\ProgramData\Menú Inicio
      [03/12/2012 18:39] [14/07/2009 0:20] [SDI] C:\ProgramData\Microsoft
      [03/12/2012 18:40] [08/09/2012 14:03] [DI] C:\ProgramData\Microsoft Help
      [29/09/2012 20:24] [29/09/2012 20:24] [DI] C:\ProgramData\Mirillis
      [08/09/2012 23:39] [08/09/2012 23:39] [HSDLI] C:\ProgramData\Plantillas
      [18/09/2012 20:48] [18/09/2012 20:48] [DI] C:\ProgramData\PopCap Games
      [03/12/2012 18:44] [03/12/2012 18:44] [DI] C:\ProgramData\Protexis
      [08/09/2012 12:47] [08/09/2012 23:45] [DI] C:\ProgramData\Ralink
      [07/10/2012 15:38] [07/10/2012 15:37] [DI] C:\ProgramData\Samsung
      [14/09/2012 10:54] [08/09/2012 13:17] [DI] C:\ProgramData\Skype
      [14/07/2009 2:08] [14/07/2009 2:08] [HSDLI] C:\ProgramData\Start Menu
      [08/09/2012 13:20] [08/09/2012 13:20] [DI] C:\ProgramData\Sun
      [08/09/2012 13:27] [08/09/2012 13:27] [DI] C:\ProgramData\Temp
      [14/07/2009 2:08] [14/07/2009 2:08] [HSDLI] C:\ProgramData\Templates
      [08/09/2012 23:44] [08/09/2012 23:44] [DI] C:\ProgramData\TP-LINK Driver
      [08/09/2012 13:35] [08/09/2012 13:27] [DI] C:\ProgramData\TuneUp Software
      [19/11/2012 11:34] [19/11/2012 11:33] [DI] C:\ProgramData\Visan
      [08/09/2012 14:59] [08/09/2012 14:59] [DI] C:\ProgramData\WEBREG
      [08/09/2012 13:27] [08/09/2012 13:27] [HSD] C:\ProgramData\{24036256-BFDB-4CD3-BE8A-A3D6160F2E16}

      ==================== EOF ==================

    7. #17
      Usuario Avatar de Raudron
      Registrado
      sep 2012
      Ubicación
      El Mundo
      Mensajes
      1.467

      Re: Virus oculta carpetas de la memoria USB y las reemplaza por aplicaciones

      Hola,

      Perfecto No quedaron restos de Adware.

      Probá el PC sin apuro, para ver si el problema no se repite, y nos comentas

      Saludos

    Página 2 de 2 PrimeroPrimero 12