• Registrarse
  • Iniciar sesión


  • Página 5 de 8 PrimeroPrimero 12345678 ÚltimoÚltimo
    Resultados 41 al 50 de 74

    Cómo eliminar http://searchfunmoods.com sin que salga al reiniciar (Reabierto)

    Para empezar, por fin parece que a desaparecido el Funmoods Search , y no solo eso si no que me a mejorado mucho el consumo de cpu de ir a 80% o casi 90%, a ...

    1. #41
      Baneado Avatar de selohu
      Registrado
      mar 2009
      Ubicación
      Madrid
      Mensajes
      745

      Re: Cómo eliminar http://searchfunmoods.com sin que salga al reiniciar

      Para empezar, por fin parece que a desaparecido el Funmoods Search, y no solo eso si no que me a mejorado mucho el consumo de cpu de ir a 80% o casi 90%, a ir a penas 30% e incluso menos.
      Gracias

    2. #42
      Ex-Colaborador Avatar de Anleg_30
      Registrado
      dic 2007
      Ubicación
      Bna-Venezuela
      Mensajes
      10.545

      Re: Cómo eliminar http://searchfunmoods.com sin que salga al reiniciar

      Bien,

      Si está todo en orden entonces daremos por solventado el tema,

      Abre OTM y pulsa el botón "LImpiar" tambien elimina/desisntala según sea el caso las otras herramientas usadas durante el proceso.



      Blog | Antivirus Online | Eliminar Malwares | Antivirus Gratis

      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.

    3. #43
      Ex-Colaborador Avatar de JackBauer
      Registrado
      dic 2008
      Ubicación
      Argentina
      Mensajes
      7.695

      Re: Cómo eliminar http://searchfunmoods.com sin que salga al reiniciar (Reabierto)

      Buenas,

      A pedido del usuario se reabre el tema:

      Cita Originalmente publicado por selohu
      Quizá hemos corrido mucho, pero sí otra vez vuelve a salir. después de limpiar el otem y desinstalar destroyer al reiniciar la sorpresa a sido que al abrir el chrome otra vez se abría.
      Salu2.
      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.

    4. #44
      Baneado Avatar de selohu
      Registrado
      mar 2009
      Ubicación
      Madrid
      Mensajes
      745

      Re: Cómo eliminar http://searchfunmoods.com sin que salga al reiniciar (Reabierto)

      Hola, si no se por que pero al finalizar y limpiar el otm y desinstalar el destroyer al reiniciar me volvió a aparecer
      Funmoods Search.

    5. #45
      Ex-Colaborador Avatar de Anleg_30
      Registrado
      dic 2007
      Ubicación
      Bna-Venezuela
      Mensajes
      10.545

      Re: Cómo eliminar http://searchfunmoods.com sin que salga al reiniciar (Reabierto)

      Algo de lo que haces te lo vuelve a instalar.

      Descarga ss-cleaner.exe al Escritorio, lo ejecutas, al finalizar me copias el contenido del reporte que te aparecerá.


      Luego Descarga OTL.exe by Oldtimer en el Escritorio

      Cierra todas las ventanas y programas abiertos.

      Desde Modo Normal Ejecuta OTL con Double click sobre su ícono y solo configura lo siguiente dejando lo demas por default:
      1. Activa la casilla de "Scan All Users" (Analizar Todos )
      2. Cambia a resultado mínimo en "Tipo de Análisis"
      3. Activa la casilla de "Skip Microsoft Files" (Omitir archivos de Microsoft)
      4. Pulsa el Botón Run Scan (Analizar)


      Al finalizar, dos reportes se abriran, copiame los dos



      Blog | Antivirus Online | Eliminar Malwares | Antivirus Gratis

      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.

    6. #46
      Baneado Avatar de selohu
      Registrado
      mar 2009
      Ubicación
      Madrid
      Mensajes
      745

      Re: Cómo eliminar http://searchfunmoods.com sin que salga al reiniciar (Reabierto)

      Shortcut Cleaner 1.2.0 by Lawrence Abrams (Grinler)
      Bleeping Computer - Technical Support and Computer Help
      Copyright 2008-2013 BleepingComputer.com
      More Information about Shortcut Cleaner can be found at this link:
      Shortcut Cleaner Download

      Program started at: 02/04/2013 08:23:38 PM.

      Searching C:\Users\SLH\AppData\Roaming\Microsoft\Windows\Start Menu\

      Searching C:\ProgramData\Microsoft\Windows\Start Menu\

      Searching C:\Users\SLH\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\

      Searching C:\Users\Public\Desktop\

      Searching C:\Users\SLH\Desktop\


      0 bad shortcuts found.

      Program finished at: 02/04/2013 08:23:39 PM
      Execution time: 0 hours(s), 0 minute(s), and 0 seconds(s)

    7. #47
      Baneado Avatar de selohu
      Registrado
      mar 2009
      Ubicación
      Madrid
      Mensajes
      745

      Re: Cómo eliminar http://searchfunmoods.com sin que salga al reiniciar (Reabierto)

      El otro analisis no me deja ponerlo, Has incluido 40 imágenes en tu mensaje. Tú estás limitado a utilizar 25 imágenes asi que por favor regresa y corriges el problema y continuas de nuevo.

      Por imágenes se entiende el uso de caritas, el código vB la etiqueta [img] y las etiquetas <img>. El uso de todo esto está sujeto a habilitación en el panel de administración.

    8. #48
      Ex-Colaborador Avatar de Anleg_30
      Registrado
      dic 2007
      Ubicación
      Bna-Venezuela
      Mensajes
      10.545

      Re: Cómo eliminar http://searchfunmoods.com sin que salga al reiniciar (Reabierto)



      Colocalo en varios post (mensajes)



      Blog | Antivirus Online | Eliminar Malwares | Antivirus Gratis

      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.

    9. #49
      Baneado Avatar de selohu
      Registrado
      mar 2009
      Ubicación
      Madrid
      Mensajes
      745
      OTL logfile created on: 04/02/2013 20:59:29 - Run 3
      OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\SLH\Desktop
      64bit- Professional (Version = 6.2.9200) - Type = NTWorkstation
      Internet Explorer (Version = 9.10.9200.16384)
      Locale: 00000c0a | Country: España | Language: ESN | Date Format: dd/MM/yyyy

      3,50 Gb Total Physical Memory | 1,93 Gb Available Physical Memory | 55,27% Memory free
      7,00 Gb Paging File | 4,83 Gb Available in Paging File | 69,06% Paging File free
      Paging file location(s): ?:\pagefile.sys [binary data]

      %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
      Drive C: | 465,76 Gb Total Space | 257,82 Gb Free Space | 55,35% Space Free | Partition Type: NTFS
      Drive D: | 189,92 Gb Total Space | 43,25 Gb Free Space | 22,77% Space Free | Partition Type: NTFS

      Computer Name: SLH | User Name: SLH | Logged in as Administrator.
      Boot Mode: Normal | Scan Mode: All users
      Company Name Whitelist: Off | Skip Microsoft Files: On | No Company Name Whitelist: Off | File Age = 30 Days

      ========== Processes (SafeList) ==========

      PRC - C:\Users\SLH\Desktop\OTL.exe (OldTimer Tools)
      PRC - C:\Program Files (x86)\Google\Update\1.3.21.124\GoogleCrashHandler.exe (Google Inc.)
      PRC - C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.)
      PRC - C:\Program Files (x86)\Real\RealPlayer\update\realsched.exe (RealNetworks, Inc.)
      PRC - C:\Program Files (x86)\DVBViewer\dvbviewer.exe (CM&V Hackbart)
      PRC - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe (NVIDIA Corporation)
      PRC - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe (NVIDIA Corporation)
      PRC - C:\Program Files (x86)\RealNetworks\RealDownloader\recordingmanager.exe (RealNetworks, Inc.)
      PRC - C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe ()
      PRC - C:\Program Files (x86)\Panda Security\Panda Cloud Antivirus\PSUAService.exe (Panda Security, S.L.)
      PRC - C:\Program Files (x86)\Panda Security\Panda Cloud Antivirus\PSUAMain.exe (Panda Security, S.L.)
      PRC - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe (Safer-Networking Ltd.)
      PRC - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe (Safer-Networking Ltd.)
      PRC - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe (Safer-Networking Ltd.)
      PRC - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe (Safer-Networking Ltd.)
      PRC - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe (Safer-Networking Ltd.)
      PRC - C:\Program Files (x86)\Panda Security\Panda Cloud Antivirus\PSANHost.exe (Panda Security, S.L.)
      PRC - C:\Windows\SysWOW64\wbem\WmiPrvSE.exe (Microsoft Corporation)


      ========== Modules (No Company Name) ==========

      MOD - C:\Users\SLH\AppData\Local\Google\Chrome\User Data\PepperFlash\11.5.31.138\pepflashplayer.dll ()
      MOD - C:\Program Files (x86)\Google\Chrome\Application\24.0.1312.57\ppGoogleNaClPluginChrome.dll ()
      MOD - C:\Program Files (x86)\Google\Chrome\Application\24.0.1312.57\pdf.dll ()
      MOD - C:\Program Files (x86)\Google\Chrome\Application\24.0.1312.57\libglesv2.dll ()
      MOD - C:\Program Files (x86)\Google\Chrome\Application\24.0.1312.57\libegl.dll ()
      MOD - C:\Program Files (x86)\Google\Chrome\Application\24.0.1312.57\ffmpegsumo.dll ()
      MOD - C:\Program Files (x86)\DVBViewer\sqlite3.dll ()
      MOD - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Chrome\Hook\rndlpepperbrowserrecordhelper.dll ()
      MOD - C:\Program Files (x86)\Spybot - Search & Destroy 2\snlFileFormats150.bpl ()
      MOD - C:\Program Files (x86)\Spybot - Search & Destroy 2\snlThirdParty150.bpl ()
      MOD - C:\Program Files (x86)\Spybot - Search & Destroy 2\VirtualTreesDXE150.bpl ()
      MOD - C:\Program Files (x86)\Spybot - Search & Destroy 2\JSDialogPack150.bpl ()
      MOD - C:\Program Files (x86)\Spybot - Search & Destroy 2\DEC150.bpl ()
      MOD - C:\Program Files (x86)\K-Lite Codec Pack\Filters\ffdshow\ffdshow.ax ()
      MOD - C:\Program Files (x86)\K-Lite Codec Pack\Filters\ffdshow\ffmpeg.dll ()
      MOD - C:\Program Files (x86)\DVBViewer\Plugins\vModules\Viaccess.mdl ()
      MOD - C:\Program Files (x86)\DVBViewer\Plugins\vplug.dll ()
      MOD - C:\Program Files (x86)\DVBViewer\Plugins\vModules\nagra.mdl ()
      MOD - C:\Program Files (x86)\DVBViewer\Plugins\vModules\Irdeto.mdl ()
      MOD - C:\Program Files (x86)\DVBViewer\Plugins\vModules\Seca.mdl ()
      MOD - C:\Program Files (x86)\DVBViewer\Plugins\vHelper.mdl ()
      MOD - C:\Program Files (x86)\DVBViewer\Plugins\vModules\NDS.mdl ()
      MOD - C:\Program Files (x86)\DVBViewer\Plugins\vModules\Cryptoworks.mdl ()
      MOD - C:\Program Files (x86)\DVBViewer\Plugins\vModules\SIDSA.mdl ()
      MOD - C:\Program Files (x86)\DVBViewer\Plugins\sqlite.mdl ()
      MOD - C:\Program Files (x86)\DVBViewer\Plugins\csa\FFDecsa_64_MMX.mdl ()

      ========== Services (SafeList) ==========

      SRV - (nvUpdatusService) -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe (NVIDIA Corporation)
      SRV - (Stereo Service) -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe (NVIDIA Corporation)
      SRV - (RealNetworks Downloader Resolver Service) -- C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe ()
      SRV - (PSUAService) -- C:\Program Files (x86)\Panda Security\Panda Cloud Antivirus\PSUAService.exe (Panda Security, S.L.)
      SRV - (NanoServiceMain) -- C:\Program Files (x86)\Panda Security\Panda Cloud Antivirus\PSANHost.exe (Panda Security, S.L.)
      SRV - (PrintNotify) -- C:\Windows\system32\spool\DRIVERS\x64\3\PrintConfig.dll (Microsoft Corporation)
      SRV - (StorSvc) -- C:\Windows\SysWOW64\StorSvc.dll (Microsoft Corporation)


      ========== Driver Services (SafeList) ==========


      ========== Standard Registry (SafeList) ==========


      ========== Internet Explorer ==========

      IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
      IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = Google
      IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}


      IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

      IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0



      IE - HKU\S-1-5-21-2279379250-4058835316-2027715141-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = Google
      IE - HKU\S-1-5-21-2279379250-4058835316-2027715141-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = MSN España: Hotmail, Messenger, Skype y Cuenta Microsoft
      IE - HKU\S-1-5-21-2279379250-4058835316-2027715141-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = es-ES
      IE - HKU\S-1-5-21-2279379250-4058835316-2027715141-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 6D 9B 82 80 61 F6 CD 01 [binary data]
      IE - HKU\S-1-5-21-2279379250-4058835316-2027715141-1001\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
      IE - HKU\S-1-5-21-2279379250-4058835316-2027715141-1001\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE10SR
      IE - HKU\S-1-5-21-2279379250-4058835316-2027715141-1001\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

      ========== FireFox ==========

      FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVision: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
      FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVisionStreaming: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
      FF - HKLM\Software\MozillaPlugins\@real.com/nppl3260;version=16.0.0.282: C:\Program Files (x86)\Real\RealPlayer\Netscape6\nppl3260.dll (RealNetworks, Inc.)
      FF - HKLM\Software\MozillaPlugins\@real.com/nprndlchromebrowserrecordext;version=1.3.0: C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlchromebrowserrecordext.dll (RealNetworks, Inc.)
      FF - HKLM\Software\MozillaPlugins\@real.com/nprndlhtml5videoshim;version=1.3.0: C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlhtml5videoshim.dll (RealNetworks, Inc.)
      FF - HKLM\Software\MozillaPlugins\@real.com/nprndlpepperflashvideoshim;version=1.3.0: C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlpepperflashvideoshim.dll (RealNetworks, Inc.)
      FF - HKLM\Software\MozillaPlugins\@real.com/nprpplugin;version=16.0.0.282: C:\Program Files (x86)\Real\RealPlayer\Netscape6\nprpplugin.dll (RealPlayer)
      FF - HKLM\Software\MozillaPlugins\@realnetworks.com/npdlplugin;version=1: C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\npdlplugin.dll (RealDownloader)
      FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.21.124\npGoogleUpdate3.dll (Google Inc.)
      FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.21.124\npGoogleUpdate3.dll (Google Inc.)
      FF - HKLM\Software\MozillaPlugins\Adobe Acrobat: C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Air\nppdf32.dll (Adobe Systems Inc.)
      FF - HKCU\Software\MozillaPlugins\@talk.google.com/GoogleTalkPlugin: C:\Users\SLH\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll (Google)
      FF - HKCU\Software\MozillaPlugins\@talk.google.com/O3DPlugin: C:\Users\SLH\AppData\Roaming\Mozilla\plugins\npgtpo3dautoplugin.dll ()
      FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Users\SLH\AppData\Local\Google\Update\1.3.21.124\npGoogleUpdate3.dll (Google Inc.)
      FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Users\SLH\AppData\Local\Google\Update\1.3.21.124\npGoogleUpdate3.dll (Google Inc.)

      FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\[email protected]: C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Browser\WCFirefoxExtn [2013/01/20 23:15:12 | 000,000,000 | ---D | M]
      FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{34712C68-7391-4c47-94F3-8F88D49AD632}: C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext\ [2013/01/22 00:55:40 | 000,000,000 | ---D | M]
      FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{ABDE892B-13A8-4d1b-88E6-365A6E755758}: C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext [2013/01/22 00:55:40 | 000,000,000 | ---D | M]

      ========== Chrome ==========

      CHR - homepage: Google
      CHR - default_search_provider: Google (Enabled)
      CHR - default_search_provider: search_url = {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}sourceid=chrome&ie={inputEncoding}
      CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client=chrome&hl={language}&q={searchTerms}&sugkey={google:suggestAPIKeyParameter},
      CHR - homepage: Google
      CHR - plugin: Shockwave Flash (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\24.0.1312.57\PepperFlash\pepflashplayer.dll
      CHR - plugin: Chrome Remote Desktop Viewer (Enabled) = internal-remoting-viewer
      CHR - plugin: Native Client (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\24.0.1312.57\ppGoogleNaClPluginChrome.dll
      CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\24.0.1312.57\pdf.dll
      CHR - plugin: Adobe Acrobat (Enabled) = C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Browser\nppdf32.dll
      CHR - plugin: Google Talk Plugin (Enabled) = C:\Users\SLH\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll
      CHR - plugin: Google Talk Plugin Video Accelerator (Enabled) = C:\Users\SLH\AppData\Roaming\Mozilla\plugins\npgtpo3dautoplugin.dll
      CHR - plugin: Google Update (Enabled) = C:\Program Files (x86)\Google\Update\1.3.21.124\npGoogleUpdate3.dll
      CHR - plugin: NVIDIA 3D Vision (Enabled) = C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll
      CHR - plugin: NVIDIA 3D VISION (Enabled) = C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll
      CHR - plugin: RealPlayer(tm) G2 LiveConnect-Enabled Plug-In (32-bit) (Enabled) = C:\Program Files (x86)\Real\RealPlayer\Netscape6\nppl3260.dll
      CHR - plugin: RealPlayer Download Plugin (Enabled) = C:\Program Files (x86)\Real\RealPlayer\Netscape6\nprpplugin.dll
      CHR - plugin: RealNetworks(tm) RealDownloader Chrome Background Extension Plug-In (32-bit) (Enabled) = C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlchromebrowserrecordext.dll
      CHR - plugin: RealNetworks(tm) RealDownloader HTML5VideoShim Plug-In (32-bit) (Enabled) = C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlhtml5videoshim.dll
      CHR - plugin: RealNetworks(tm) RealDownloader PepperFlashVideoShim Plug-In (32-bit) (Enabled) = C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlpepperflashvideoshim.dll
      CHR - plugin: RealDownloader Plugin (Enabled) = C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\npdlplugin.dll
      CHR - Extension: Live Online TV 24/7 = C:\Users\SLH\AppData\Local\Google\Chrome\User Data\Default\Extensions\akpdghbhngcicphgfmefdjhcdflpjhdi\1.0_0\
      CHR - Extension: Google Docs = C:\Users\SLH\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\
      CHR - Extension: Google Drive = C:\Users\SLH\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\
      CHR - Extension: Grupos de Google = C:\Users\SLH\AppData\Local\Google\Chrome\User Data\Default\Extensions\bfmbadcfdhiklafcdohpfphhhakmiakk\1.3_0\
      CHR - Extension: FacturaDirecta = C:\Users\SLH\AppData\Local\Google\Chrome\User Data\Default\Extensions\bfnolnpaocpnjlfciikkkanlkhoognpb\0.12.5.16_0\
      CHR - Extension: YouTube = C:\Users\SLH\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\
      CHR - Extension: B\u00FAsqueda de Google = C:\Users\SLH\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\
      CHR - Extension: WGT Golf Challenge = C:\Users\SLH\AppData\Local\Google\Chrome\User Data\Default\Extensions\dcilimldmomiaihcfkmaldanopfejefg\45.0.0_0\
      CHR - Extension: Hd Television = C:\Users\SLH\AppData\Local\Google\Chrome\User Data\Default\Extensions\fcejbfoaabbaepadhechhncffipeoige\3.7.6_0\
      CHR - Extension: Full Screen Weather = C:\Users\SLH\AppData\Local\Google\Chrome\User Data\Default\Extensions\fkkaebihfmbofclegkcfkkemepfehibg\1.3_0\
      CHR - Extension: Google Play Music = C:\Users\SLH\AppData\Local\Google\Chrome\User Data\Default\Extensions\icppfcnhkcmnfdhfhphakoifcfokfdhg\4.0_0\
      CHR - Extension: RealDownloader = C:\Users\SLH\AppData\Local\Google\Chrome\User Data\Default\Extensions\idhngdhcfkoamngbedgpaokgjbnpdiji\1.3.0_0\
      CHR - Extension: The Weather Channel for Chrome = C:\Users\SLH\AppData\Local\Google\Chrome\User Data\Default\Extensions\iflpcokdamgefbghpdipcibmhlkdopop\1.0.0.4_0\
      CHR - Extension: Beer Pong 2 = C:\Users\SLH\AppData\Local\Google\Chrome\User Data\Default\Extensions\ikefecbhochkfigimjmnagilaojpgnfl\2.0.0_0\
      CHR - Extension: HootSuite = C:\Users\SLH\AppData\Local\Google\Chrome\User Data\Default\Extensions\kneloppijbcidgidihgdjnooihjcdbij\5.244_0\
      CHR - Extension: Mesa de ping pong en 3D = C:\Users\SLH\AppData\Local\Google\Chrome\User Data\Default\Extensions\lggegdhfphffaeipfpocijebeakpmcih\2.1.0_0\
      CHR - Extension: Sprocket Rocket = C:\Users\SLH\AppData\Local\Google\Chrome\User Data\Default\Extensions\lpdichmkdadfihhbgllepglgbkonlehe\1.0_0\
      CHR - Extension: WGT Golf Game = C:\Users\SLH\AppData\Local\Google\Chrome\User Data\Default\Extensions\mpedbpkelbhcbkdaglillalioeeekbpb\32.1.0_0\
      CHR - Extension: Forex all in 1 = C:\Users\SLH\AppData\Local\Google\Chrome\User Data\Default\Extensions\npchhbldbmcolnkknikmdbdgcceijfil\0.0.1_0\
      CHR - Extension: Gmail = C:\Users\SLH\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\
      CHR - Extension: Alcantarillado de carreras en 3D = C:\Users\SLH\AppData\Local\Google\Chrome\User Data\Default\Extensions\pmhndjicclacpeciiaeoelefdakfoblk\3.0_0\

      O1 HOSTS File: ([2013/02/03 10:26:37 | 000,000,098 | ---- | M]) - C:\Windows\SysNative\Drivers\etc\Hosts
      O1 - Hosts: 127.0.0.1 localhost
      O1 - Hosts: ::1 localhost
      O2 - BHO: (RealNetworks Download and Record Plugin for Internet Explorer) - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll (RealDownloader)
      O2 - BHO: (Spybot-S&D IE Protection) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDHelper.dll (Safer-Networking Ltd.)
      O2 - BHO: (Adobe PDF Conversion Toolbar Helper) - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
      O2 - BHO: (SmartSelect Class) - {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
      O3 - HKLM\..\Toolbar: (Adobe PDF) - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
      O4 - HKLM..\Run: [Acrobat Assistant 8.0] C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrotray.exe (Adobe Systems Inc.)
      O4 - HKLM..\Run: [Adobe Acrobat Speed Launcher] C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrobat_sl.exe (Adobe Systems Incorporated)
      O4 - HKLM..\Run: [AdobeCS6ServiceManager] C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe (Adobe Systems Incorporated)
      O4 - HKLM..\Run: [PSUAMain] C:\Program Files (x86)\Panda Security\Panda Cloud Antivirus\PSUAMain.exe (Panda Security, S.L.)
      O4 - HKLM..\Run: [SDTray] C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe (Safer-Networking Ltd.)
      O4 - HKLM..\Run: [TkBellExe] C:\Program Files (x86)\Real\RealPlayer\update\realsched.exe (RealNetworks, Inc.)
      O4 - Startup: C:\Users\SLH\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk = C:\Users\SLH\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
      O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
      O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
      O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
      O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableCursorSuppression = 1
      O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
      O9 - Extra 'Tools' menuitem : Spybot - Search && Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDHelper.dll (Safer-Networking Ltd.)
      O13 - gopher Prefix: missing
      O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 80.58.61.250 80.58.61.254
      O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{386696C8-2C6F-41FB-B5BC-FC89E03AFF34}: DhcpNameServer = 80.58.61.250 80.58.61.254
      O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{93FF643B-5A6B-48B1-A2D8-406008630683}: DhcpNameServer = 80.58.61.250 80.58.61.254
      O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{F297000C-544A-4150-B728-C7C510D94BB9}: DhcpNameServer = 80.58.61.250 80.58.61.254
      O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
      O20 - HKLM Winlogon: UserInit - (userinit.exe) - C:\Windows\SysWow64\userinit.exe (Microsoft Corporation)
      O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
      O30 - LSA: Security Packages - (livessp) - File not found
      O32 - HKLM CDRom: AutoRun - 1

    10. #50
      Baneado Avatar de selohu
      Registrado
      mar 2009
      Ubicación
      Madrid
      Mensajes
      745
      O32 - AutoRun File - [2009/06/10 22:42:20 | 000,000,024 | ---- | M] () - D:\autoexec.bat -- [ NTFS ]
      O34 - HKLM BootExecute: (autocheck autochk *)
      O35 - HKLM\..comfile [open] -- "%1" %*
      O35 - HKLM\..exefile [open] -- "%1" %*
      O37 - HKLM\...com [@ = comfile] -- "%1" %*
      O37 - HKLM\...exe [@ = exefile] -- "%1" %*
      O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
      O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)

      ========== Files/Folders - Created Within 30 Days ==========

      [2013/02/04 20:24:50 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Users\SLH\Desktop\OTL.exe
      [2013/02/04 20:21:26 | 000,384,928 | ---- | C] (Bleeping Computer, LLC) -- C:\Users\SLH\Desktop\sc-cleaner.exe
      [2013/02/04 1402 | 000,000,000 | ---D | C] -- C:\Users\SLH\Desktop\Elastislide
      [2013/02/04 03:06:49 | 000,000,000 | ---D | C] -- C:\Users\SLH\Desktop\elegantpress
      [2013/02/03 14:01:32 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
      [2013/02/03 13:58:54 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Google
      [2013/02/02 20:44:11 | 000,000,000 | ---D | C] -- C:\Users\SLH\AppData\Roaming\Panda Security
      [2013/02/02 20:30:27 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Panda Cloud Antivirus
      [2013/02/02 20:30:05 | 000,000,000 | ---D | C] -- C:\ProgramData\Panda Security
      [2013/02/02 20:30:05 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Panda Security
      [2013/02/02 19:49:21 | 000,000,000 | ---D | C] -- C:\Users\SLH\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller
      [2013/02/02 15:39:38 | 000,000,000 | ---D | C] -- C:\Users\SLH\Documents\ProcAlyzer Dumps
      [2013/02/02 14:26:46 | 000,000,000 | ---D | C] -- C:\ProgramData\Spybot - Search & Destroy
      [2013/02/02 14:26:35 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot - Search & Destroy 2
      [2013/02/02 14:26:12 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Spybot - Search & Destroy 2
      [2013/02/02 03:41:00 | 000,000,000 | ---D | C] -- C:\Windows\pss
      [2013/02/01 14:12:59 | 000,000,000 | ---D | C] -- C:\Windows\Minidump
      [2013/02/01 04:27:39 | 000,000,000 | ---D | C] -- C:\ProgramData\AVAST Software
      [2013/02/01 01:43:48 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\VS Revo Group
      [2013/01/31 18:41:14 | 000,000,000 | ---D | C] -- C:\Users\SLH\AppData\Local\Avg2013
      [2013/01/31 02:56:37 | 000,000,000 | R--D | C] -- C:\Users\SLH\Dropbox
      [2013/01/31 02:53:50 | 000,000,000 | ---D | C] -- C:\Users\SLH\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
      [2013/01/31 02:50:15 | 000,000,000 | ---D | C] -- C:\Users\SLH\AppData\Roaming\Dropbox

      [2013/01/31 01:39:51 | 000,000,000 | ---D | C] -- C:\Users\SLH\AppData\Roaming\Mozilla
      [2013/01/29 13:58:22 | 000,000,000 | ---D | C] -- C:\Users\SLH\AppData\Roaming\TuneUp Software
      [2013/01/29 13:17:46 | 000,000,000 | -H-D | C] -- C:\ProgramData\Common Files
      [2013/01/29 13:17:45 | 000,000,000 | ---D | C] -- C:\Users\SLH\AppData\Local\MFAData
      [2013/01/29 13:17:45 | 000,000,000 | ---D | C] -- C:\ProgramData\MFAData
      [2013/01/29 00:50:15 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CoreCodec
      [2013/01/29 00:41:57 | 000,000,000 | ---D | C] -- C:\Users\SLH\Desktop\CoreAVC.Professional.Edition.v3.0.Final.Retail.Incl.Serial
      [2013/01/28 18:13:52 | 000,000,000 | ---D | C] -- C:\Users\SLH\AppData\Local\Diagnostics
      [2013/01/28 17:32:44 | 000,000,000 | -H-D | C] -- C:\VTRoot
      [2013/01/28 02:47:40 | 000,000,000 | ---D | C] -- C:\Users\SLH\AppData\Roaming\Malwarebytes
      [2013/01/28 02:47:06 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware
      [2013/01/28 02:47:02 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware
      [2013/01/28 02:36:13 | 000,000,000 | ---D | C] -- C:\TDSSKiller_Quarantine
      [2013/01/27 03:39:33 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\DCoder Image Source
      [2013/01/27 03:39:30 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip
      [2013/01/27 03:39:25 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\7-Zip
      [2013/01/27 03:39:18 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\FFMPEG Core Files
      [2013/01/27 03:39:01 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\CD Audio Reader Filter
      [2013/01/27 03:38:59 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\OpenSource AVI Splitter
      [2013/01/27 03:38:56 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Gabest MPEG Splitter
      [2013/01/27 03:38:52 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\OpenSource DTSAC3DD+ Source Filter
      [2013/01/27 03:38:46 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DScaler5
      [2013/01/27 03:38:46 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\DScaler5
      [2013/01/27 03:38:34 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AC3Filter
      [2013/01/27 03:38:33 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\AC3Filter
      [2013/01/27 03:38:20 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\OpenSource Flash Video Splitter
      [2013/01/27 03:38:09 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\MadVR
      [2013/01/27 03:37:25 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LAV Filters

      [2013/01/22 00:54:26 | 000,272,896 | ---- | C] (Progressive Networks) -- C:\Windows\SysWow64\pncrt.dll
      [2013/01/22 00:53:07 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Real
      [2013/01/22 00:52:22 | 000,000,000 | ---D | C] -- C:\Users\SLH\AppData\Roaming\Real
      [2013/01/22 00:49:38 | 000,000,000 | ---D | C] -- C:\ProgramData\Real
      [2013/01/21 21:38:50 | 000,000,000 | ---D | C] -- C:\Users\SLH\Desktop\Mejorando Curso
      [2013/01/21 21:16:30 | 000,000,000 | ---D | C] -- C:\Users\SLH\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Talk
      [2013/01/21 21:16:30 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Talk
      [2013/01/21 17:15:27 | 000,000,000 | ---D | C] -- C:\ProgramData\Hewlett-Packard
      [2013/01/21 01:08:34 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\AGEIA Technologies
      [2013/01/21 01:01:55 | 020,450,232 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvoglv32.dll
      [2013/01/21 01:01:55 | 017,560,504 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcompiler.dll
      [2013/01/21 01:01:55 | 012,641,120 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvwgf2um.dll
      [2013/01/21 01:01:55 | 006,263,784 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvopencl.dll
      [2013/01/21 01:01:55 | 002,720,696 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcuvid.dll
      [2013/01/21 01:01:55 | 001,985,976 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcuvenc.dll
      [2013/01/21 01:00:33 | 000,000,000 | ---D | C] -- C:\NVIDIA
      [2013/01/20 23:26:33 | 000,000,000 | ---D | C] -- C:\ProgramData\regid.1986-12.com.adobe
      [2013/01/20 23:19:34 | 000,000,000 | ---D | C] -- C:\ProgramData\ALM
      [2013/01/20 23:15:18 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe LiveCycle ES2
      [2013/01/20 22:53:33 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Adobe AIR
      [2013/01/20 22:48:53 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Adobe
      [2013/01/20 22:46:52 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Master Collection CS6
      [2013/01/20 22:35:32 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Adobe
      [2013/01/20 22:26:35 | 000,000,000 | ---D | C] -- C:\ProgramData\Adobe
      [2013/01/20 22:25:40 | 000,000,000 | ---D | C] -- C:\Users\SLH\AppData\Local\Adobe

      [2013/01/20 03:32:56 | 000,000,000 | ---D | C] -- C:\Users\SLH\AppData\Roaming\NVIDIA
      [2013/01/20 03:32:56 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Haali Media Splitter
      [2013/01/20 03:32:36 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\CoreCodec
      [2013/01/20 03:31:29 | 000,000,000 | ---D | C] -- C:\Users\SLH\AppData\Roaming\WinRAR
      [2013/01/20 03:31:29 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
      [2013/01/20 03:31:28 | 000,000,000 | ---D | C] -- C:\Users\SLH\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
      [2013/01/20 02:39:52 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\directx
      [2013/01/19 23:35:15 | 000,000,000 | ---D | C] -- C:\Users\SLH\AppData\Roaming\Macromedia
      [2013/01/19 23:31:02 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\DVBViewer Shared
      [2013/01/19 23:25:51 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVBViewer
      [2013/01/19 23:25:35 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\DVBViewer
      [2013/01/19 23:25:35 | 000,000,000 | ---D | C] -- C:\ProgramData\CMUV
      [2013/01/19 23:25:06 | 000,000,000 | ---D | C] -- C:\Users\SLH\AppData\Local\Programs
      [2013/01/19 1843 | 000,000,000 | ---D | C] -- C:\Users\SLH\Desktop\sergio
      [2013/01/19 18:02:26 | 000,000,000 | ---D | C] -- C:\Users\SLH\AppData\Local\Google
      [2013/01/19 17:14:10 | 000,000,000 | ---D | C] -- C:\Users\SLH\AppData\Local\ElevatedDiagnostics
      [2013/01/19 16:50:56 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
      [2013/01/19 16:44:23 | 000,000,000 | ---D | C] -- C:\ProgramData\NVIDIA
      [2013/01/19 16:44:14 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\NVIDIA Corporation

      [2013/01/19 16:41:14 | 000,052,584 | ---- | C] (Khronos Group) -- C:\Windows\SysWow64\OpenCL.dll
      [2013/01/19 16:39:36 | 000,000,000 | ---D | C] -- C:\ProgramData\NVIDIA Corporation
      [2013/01/19 16:35:48 | 000,000,000 | ---D | C] -- C:\Windows\Driver Cache
      [2013/01/19 16:35:09 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\AVerMedia
      [2013/01/19 16:23:30 | 000,000,000 | RHSD | C] -- C:\Windows Activation Technologies
      [2013/01/19 16:21:29 | 000,000,000 | ---D | C] -- C:\Windows\KJ
      [2013/01/19 16:12:54 | 000,000,000 | R--D | C] -- C:\Users\SLH\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
      [2013/01/19 16:12:54 | 000,000,000 | R--D | C] -- C:\Users\SLH\Searches
      [2013/01/19 16:12:54 | 000,000,000 | R--D | C] -- C:\Users\SLH\Contacts
      [2013/01/19 16:12:54 | 000,000,000 | R--D | C] -- C:\Users\SLH\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
      [2013/01/19 16:12:42 | 000,000,000 | ---D | C] -- C:\Users\SLH\AppData\Roaming\Adobe
      [2013/01/19 16:11:25 | 000,000,000 | ---D | C] -- C:\Users\SLH\AppData\Local\VirtualStore
      [2013/01/19 16:11:09 | 000,000,000 | ---D | C] -- C:\ProgramData\PRICache
      [2013/01/19 16:11:09 | 000,000,000 | ---D | C] -- C:\Users\SLH\AppData\Local\Packages
      [2013/01/19 1654 | 000,000,000 | -HSD | C] -- C:\Users\SLH\SendTo
      [2013/01/19 1654 | 000,000,000 | -HSD | C] -- C:\Users\SLH\Reciente
      [2013/01/19 1654 | 000,000,000 | -HSD | C] -- C:\Users\SLH\Plantillas
      [2013/01/19 1654 | 000,000,000 | -HSD | C] -- C:\Users\SLH\Documents\Mis vídeos
      [2013/01/19 1654 | 000,000,000 | -HSD | C] -- C:\Users\SLH\Documents\Mis imágenes

      [2013/01/19 1654 | 000,000,000 | -HSD | C] -- C:\Users\SLH\Mis documentos
      [2013/01/19 1654 | 000,000,000 | -HSD | C] -- C:\Users\SLH\Documents\Mi música
      [2013/01/19 1654 | 000,000,000 | -HSD | C] -- C:\Users\SLH\Menú Inicio
      [2013/01/19 1654 | 000,000,000 | -HSD | C] -- C:\Users\SLH\Impresoras
      [2013/01/19 1654 | 000,000,000 | -HSD | C] -- C:\Users\SLH\AppData\Local\Historial
      [2013/01/19 1654 | 000,000,000 | -HSD | C] -- C:\Users\SLH\Entorno de red
      [2013/01/19 1654 | 000,000,000 | -HSD | C] -- C:\Users\SLH\Datos de programa
      [2013/01/19 1654 | 000,000,000 | -HSD | C] -- C:\Users\SLH\AppData\Local\Datos de programa
      [2013/01/19 1654 | 000,000,000 | -HSD | C] -- C:\Users\SLH\Cookies
      [2013/01/19 1654 | 000,000,000 | -HSD | C] -- C:\Users\SLH\Configuración local
      [2013/01/19 1654 | 000,000,000 | -HSD | C] -- C:\Users\SLH\AppData\Local\Archivos temporales de Internet
      [2013/01/19 1653 | 000,000,000 | --SD | C] -- C:\Users\SLH\AppData\Roaming\Microsoft
      [2013/01/19 1653 | 000,000,000 | R--D | C] -- C:\Users\SLH\Videos
      [2013/01/19 1653 | 000,000,000 | R--D | C] -- C:\Users\SLH\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
      [2013/01/19 1653 | 000,000,000 | R--D | C] -- C:\Users\SLH\Saved Games
      [2013/01/19 1653 | 000,000,000 | R--D | C] -- C:\Users\SLH\Pictures
      [2013/01/19 1653 | 000,000,000 | R--D | C] -- C:\Users\SLH\Music
      [2013/01/19 1653 | 000,000,000 | R--D | C] -- C:\Users\SLH\Links
      [2013/01/19 1653 | 000,000,000 | R--D | C] -- C:\Users\SLH\Favorites
      [2013/01/19 1653 | 000,000,000 | R--D | C] -- C:\Users\SLH\Downloads
      [2013/01/19 1653 | 000,000,000 | R--D | C] -- C:\Users\SLH\Documents

      [2013/01/19 1653 | 000,000,000 | R--D | C] -- C:\Users\SLH\Desktop
      [2013/01/19 1653 | 000,000,000 | R--D | C] -- C:\Users\SLH\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
      [2013/01/19 1653 | 000,000,000 | R--D | C] -- C:\Users\SLH\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
      [2013/01/19 1653 | 000,000,000 | -H-D | C] -- C:\Users\SLH\AppData
      [2013/01/19 1653 | 000,000,000 | ---D | C] -- C:\Users\SLH\AppData\Local\Temp
      [2013/01/19 1653 | 000,000,000 | ---D | C] -- C:\Users\SLH\AppData\Local\Microsoft
      [2013/01/19 1653 | 000,000,000 | ---D | C] -- C:\Users\SLH\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
      [2013/01/19 1646 | 000,000,000 | ---D | C] -- C:\Windows\SoftwareDistribution
      [2013/01/19 1618 | 000,000,000 | ---D | C] -- C:\Windows\CSC
      [2013/01/19 16:05:34 | 000,000,000 | -HSD | C] -- C:\Recovery
      [2013/01/19 16:05:32 | 000,000,000 | -HSD | C] -- C:\ProgramData\Plantillas
      [2013/01/19 16:05:32 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\Mis vídeos
      [2013/01/19 16:05:32 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\Mis imágenes
      [2013/01/19 16:05:32 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\Mi música
      [2013/01/19 16:05:32 | 000,000,000 | -HSD | C] -- C:\ProgramData\Menú Inicio
      [2013/01/19 16:05:32 | 000,000,000 | -HSD | C] -- C:\ProgramData\Escritorio
      [2013/01/19 16:05:32 | 000,000,000 | -HSD | C] -- C:\ProgramData\Documentos
      [2013/01/19 16:05:32 | 000,000,000 | -HSD | C] -- C:\ProgramData\Datos de programa

      [2013/01/19 16:05:32 | 000,000,000 | -HSD | C] -- C:\Archivos de programa
      [2013/01/19 15:57:18 | 000,000,000 | ---D | C] -- C:\Windows\Prefetch
      [2013/01/19 15:55:42 | 000,000,000 | -HSD | C] -- C:\System Volume Information
      [2013/01/19 15:54:49 | 000,000,000 | ---D | C] -- C:\Windows\Panther
      [2013/01/19 15:54:29 | 000,000,000 | -HSD | C] -- C:\Boot
      [2013/01/19 15:30:30 | 000,000,000 | ---D | C] -- C:\Windows.old

      ========== Files - Modified Within 30 Days ==========

      [2013/02/04 20:24:54 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\SLH\Desktop\OTL.exe
      [2013/02/04 20:21:31 | 000,384,928 | ---- | M] (Bleeping Computer, LLC) -- C:\Users\SLH\Desktop\sc-cleaner.exe
      [2013/02/04 20:04:00 | 000,001,102 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
      [2013/02/04 20:02:33 | 139,198,985 | ---- | M] () -- C:\Users\SLH\Desktop\Bruno Mars Unorthodox Jukebox [NEW ALBUM] - YouTube.flv
      [2013/02/04 14:03:00 | 000,001,098 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
      [2013/02/04 12:09:40 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
      [2013/02/04 03:38:41 | 003,407,872 | -HS- | M] () -- C:\Users\SLH\NTUSER.DAT
      [2013/02/04 03:38:39 | 000,040,833 | -H-- | M] () -- C:\Users\SLH\AppData\Local\IconCache.db

      [2013/02/03 19:55:30 | 000,000,006 | -H-- | M] () -- C:\Windows\tasks\SA.DAT
      [2013/02/03 19:55:05 | 268,435,456 | -HS- | M] () -- C:\swapfile.sys
      [2013/02/03 19:55:04 | 3005,784,064 | -HS- | M] () -- C:\hiberfil.sys
      [2013/02/03 19:29:41 | 119,980,948 | ---- | M] () -- C:\Users\SLH\Desktop\Mix 2012 sur Virtual DJ (N ° 14) HD - YouTube.flv
      [2013/02/03 00:41:40 | 000,556,823 | ---- | M] () -- C:\Users\SLH\Desktop\bookmarks_03_02_13.html
      [2013/02/02 19:49:21 | 000,001,268 | ---- | M] () -- C:\Users\SLH\Desktop\Revo Uninstaller.lnk
      [2013/02/02 14:26:36 | 000,002,177 | ---- | M] () -- C:\Users\Public\Desktop\Spybot-S&D Start Center.lnk
      [2013/02/01 1934 | 004,937,235 | ---- | M] () -- C:\Users\SLH\Desktop\537156_327829363990295_721449413_n.psd
      [2013/02/01 04:38:30 | 000,000,000 | ---- | M] () -- C:\Windows\SysWow64\config.nt
      [2013/01/31 02:54:46 | 000,001,042 | ---- | M] () -- C:\Users\SLH\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk
      [2013/01/27 04:01:50 | 000,001,042 | ---- | M] () -- C:\Users\SLH\AppData\Roaming\coreavc.ini
      [2013/01/23 14:48:02 | 001,106,432 | ---- | M] (The OpenSSL Project, OpenSSL: The Open Source toolkit for SSL/TLS) -- C:\Windows\SysWow64\libeay32.dll
      [2013/01/23 14:06:33 | 000,372,736 | ---- | M] () -- C:\Users\SLH\Desktop\Maqueta escudos.indd
      [2013/01/22 15:28:31 | 000,000,000 | ---- | M] () -- C:\Users\SLH\.gitconfig
      [2013/01/22 00:54:53 | 000,201,424 | ---- | M] (RealNetworks, Inc.) -- C:\Windows\SysWow64\rmoc3260.dll
      [2013/01/22 00:54:29 | 000,006,656 | ---- | M] (RealNetworks, Inc.) -- C:\Windows\SysWow64\pndx5016.dll
      [2013/01/22 00:54:29 | 000,005,632 | ---- | M] (RealNetworks, Inc.) -- C:\Windows\SysWow64\pndx5032.dll
      [2013/01/22 00:54:26 | 000,272,896 | ---- | M] (Progressive Networks) -- C:\Windows\SysWow64\pncrt.dll

      [2013/01/20 14:31:02 | 000,007,605 | ---- | M] () -- C:\Users\SLH\AppData\Local\Resmon.ResmonCfg
      [2013/01/19 16:24:15 | 000,524,288 | -HS- | M] () -- C:\Users\SLH\NTUSER.DAT{97e1de87-d6fa-11e1-be62-94c0340a1222}.TMContainer00000000000000000002.regtrans-ms
      [2013/01/19 16:24:15 | 000,524,288 | -HS- | M] () -- C:\Users\SLH\NTUSER.DAT{97e1de87-d6fa-11e1-be62-94c0340a1222}.TMContainer00000000000000000001.regtrans-ms
      [2013/01/19 16:24:15 | 000,065,536 | -HS- | M] () -- C:\Users\SLH\NTUSER.DAT{97e1de87-d6fa-11e1-be62-94c0340a1222}.TM.blf
      [2013/01/19 1654 | 000,000,020 | -HS- | M] () -- C:\Users\SLH\ntuser.ini
      [2013/01/19 16:03:17 | 000,052,618 | ---- | M] () -- C:\Windows\SysWow64\license.rtf
      [2013/01/19 15:54:36 | 000,008,192 | RHS- | M] () -- C:\BOOTSECT.BAK

      ========== Files Created - No Company Name ==========

      [2013/02/04 19:21:30 | 139,198,985 | ---- | C] () -- C:\Users\SLH\Desktop\Bruno Mars Unorthodox Jukebox [NEW ALBUM] - YouTube.flv
      [2013/02/04 12:23:14 | 000,000,319 | ---- | C] () -- C:\Users\SLH\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Papelera de reciclaje.lnk
      [2013/02/03 19:00:09 | 119,980,948 | ---- | C] () -- C:\Users\SLH\Desktop\Mix 2012 sur Virtual DJ (N ° 14) HD - YouTube.flv
      [2013/02/03 13:59:00 | 000,001,102 | ---- | C] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
      [2013/02/03 13:58:58 | 000,001,098 | ---- | C] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
      [2013/02/03 00:41:40 | 000,556,823 | ---- | C] () -- C:\Users\SLH\Desktop\bookmarks_03_02_13.html
      [2013/02/02 23:52:15 | 000,040,833 | -H-- | C] () -- C:\Users\SLH\AppData\Local\IconCache.db
      [2013/02/02 19:49:21 | 000,001,268 | ---- | C] () -- C:\Users\SLH\Desktop\Revo Uninstaller.lnk

      [2013/02/02 14:26:36 | 000,002,189 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot-S&D Start Center.lnk
      [2013/02/02 14:26:36 | 000,002,177 | ---- | C] () -- C:\Users\Public\Desktop\Spybot-S&D Start Center.lnk
      [2013/02/01 1933 | 004,937,235 | ---- | C] () -- C:\Users\SLH\Desktop\537156_327829363990295_721449413_n.psd
      [2013/02/01 04:28:46 | 000,000,000 | ---- | C] () -- C:\Windows\SysWow64\config.nt
      [2013/01/31 03:07:56 | 005,548,694 | ---- | C] () -- C:\Users\SLH\Desktop\msterpin.jpg
      [2013/01/31 02:54:46 | 000,001,042 | ---- | C] () -- C:\Users\SLH\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk
      [2013/01/27 03:36:19 | 000,079,872 | ---- | C] () -- C:\Windows\SysWow64\ff_vfw.dll
      [2013/01/23 14:06:31 | 000,372,736 | ---- | C] () -- C:\Users\SLH\Desktop\Maqueta escudos.indd
      [2013/01/23 10:58:46 | 000,000,822 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sublime Text 2.lnk
      [2013/01/22 15:28:31 | 000,000,000 | ---- | C] () -- C:\Users\SLH\.gitconfig
      [2013/01/20 23:15:18 | 000,002,465 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat Distiller X.lnk
      [2013/01/20 23:15:18 | 000,002,453 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat X Pro.lnk
      [2013/01/20 22:53:45 | 000,000,997 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Help.lnk
      [2013/01/20 14:31:02 | 000,007,605 | ---- | C] () -- C:\Users\SLH\AppData\Local\Resmon.ResmonCfg
      [2013/01/20 0447 | 000,178,688 | ---- | C] () -- C:\Windows\SysWow64\unrar.dll
      [2013/01/20 03:33:16 | 000,001,042 | ---- | C] () -- C:\Users\SLH\AppData\Roaming\coreavc.ini
      [2013/01/19 16:22:43 | 000,405,881 | ---- | C] () -- C:\Windows\KJ.exe
      [2013/01/19 16:22:43 | 000,001,429 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\KJ_Starter.lnk
      [2013/01/19 16:12:42 | 000,001,418 | ---- | C] () -- C:\Users\SLH\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
      [2013/01/19 1654 | 000,524,288 | -HS- | C] () -- C:\Users\SLH\NTUSER.DAT{97e1de87-d6fa-11e1-be62-94c0340a1222}.TMContainer00000000000000000002.regtrans-ms
      [2013/01/19 1654 | 000,524,288 | -HS- | C] () -- C:\Users\SLH\NTUSER.DAT{97e1de87-d6fa-11e1-be62-94c0340a1222}.TMContainer00000000000000000001.regtrans-ms
      [2013/01/19 1654 | 000,065,536 | -HS- | C] () -- C:\Users\SLH\NTUSER.DAT{97e1de87-d6fa-11e1-be62-94c0340a1222}.TM.blf
      [2013/01/19 1654 | 000,000,020 | -HS- | C] () -- C:\Users\SLH\ntuser.ini
      [2013/01/19 1653 | 003,407,872 | -HS- | C] () -- C:\Users\SLH\NTUSER.DAT
      [2013/01/19 16:04:23 | 3005,784,064 | -HS- | C] () -- C:\hiberfil.sys

      [2013/01/19 15:55:50 | 268,435,456 | -HS- | C] () -- C:\swapfile.sys
      [2013/01/19 15:54:36 | 000,008,192 | RHS- | C] () -- C:\BOOTSECT.BAK
      [2012/07/26 09:13:10 | 000,215,943 | ---- | C] () -- C:\Windows\SysWow64\dssec.dat
      [2012/07/26 09:13:09 | 000,000,741 | ---- | C] () -- C:\Windows\SysWow64\NOISE.DAT
      [2012/07/26 08:21:26 | 000,067,584 | --S- | C] () -- C:\Windows\bootstat.dat
      [2012/07/26 06:26:52 | 000,000,219 | ---- | C] () -- C:\Windows\system.ini
      [2012/07/26 06:26:52 | 000,000,092 | ---- | C] () -- C:\Windows\win.ini
      [2012/07/26 02:17:42 | 000,043,520 | ---- | C] () -- C:\Windows\SysWow64\BWContextHandler.dll
      [2012/07/26 01:48:53 | 000,083,968 | ---- | C] () -- C:\Windows\SysWow64\OEMLicense.dll
      [2012/07/25 21:37:29 | 000,043,131 | ---- | C] () -- C:\Windows\mib.bin
      [2012/07/25 21:28:31 | 000,364,544 | ---- | C] () -- C:\Windows\SysWow64\msjetoledb40.dll
      [2012/06/02 15:31:19 | 000,673,088 | ---- | C] () -- C:\Windows\SysWow64\mlang.dat

      ========== ZeroAccess Check ==========


      [HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64

      [HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

      [HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64

      [HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

      [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
      "" = C:\Windows\SysNative\shell32.dll -- [2012/07/26 04:07:16 | 019,779,584 | ---- | M] (Microsoft Corporation)
      "ThreadingModel" = Apartment

      [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
      "" = %SystemRoot%\system32\shell32.dll -- [2012/07/26 04:19:59 | 017,559,552 | ---- | M] (Microsoft Corporation)
      "ThreadingModel" = Apartment

      [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
      "" = C:\Windows\SysNative\wbem\fastprox.dll -- [2012/07/26 04:05:38 | 001,004,544 | ---- | M] (Microsoft Corporation)
      "ThreadingModel" = Free

      [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
      "" = %systemroot%\system32\wbem\fastprox.dll -- [2012/07/26 04:18:27 | 000,784,896 | ---- | M] (Microsoft Corporation)
      "ThreadingModel" = Free

      [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
      "" = C:\Windows\SysNative\wbem\wbemess.dll -- [2012/07/26 04:07:41 | 000,455,680 | ---- | M] (Microsoft Corporation)
      "ThreadingModel" = Both

      [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]

      < End of report >