• Registrarse
  • Iniciar sesión


  • Página 1 de 2 12 ÚltimoÚltimo
    Resultados 1 al 10 de 11

    Virus 22find

    Hola, nose si me podrian ayudar.a mi me paso lo mismo. Se estaba descargando "Desk365", lo elimine. Pero cuando abro Google Chrome, la pagina de inicio es diferente(portal de internet 22find) a la q esta ...

    1. #1
      Usuario Avatar de beatriz_n
      Registrado
      ene 2013
      Ubicación
      argentina
      Mensajes
      6

      Virus 22find

      Hola, nose si me podrian ayudar.a mi me paso lo mismo. Se estaba descargando "Desk365", lo elimine. Pero cuando abro Google Chrome, la pagina de inicio es diferente(portal de internet 22find) a la q esta predeterminada(en mi caso Google).
      Trate de hacer todos los pasos tal cual estaban arriba, pero sigue todo igual. Espero que me puedan ayudar. Gracias!

    2. #2
      Ex-Colaborador Avatar de Anleg_30
      Registrado
      dic 2007
      Ubicación
      Bna-Venezuela
      Mensajes
      10.545

      Re: Virus 22find

      Hola beatriz_n, bienvenida al foro.

      El problema es solo en google chrome ? Si es así ve a configuración de chrome y desde allí la cambias, luego deshabilita cualquier extensión que desconoscas, reinicia chrome y me comentas a la vuelta.



      Blog | Antivirus Online | Eliminar Malwares | Antivirus Gratis

      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.

    3. #3
      Usuario Avatar de beatriz_n
      Registrado
      ene 2013
      Ubicación
      argentina
      Mensajes
      6

      Re: Virus 22find

      Hola, no solo es en google chrome tambien es en internet explorer. Ya habia intentado eso, pero nada..asi que lo que hice fue desinstalar google chrome, despues use el ccleaner y volvi a instalar google chrome. Con eso solo solucione que no me aparezca en Chrome, pero sigue en internet explorer. Gracias por tu ayuda!

    4. #4
      Ex-Colaborador Avatar de Anleg_30
      Registrado
      dic 2007
      Ubicación
      Bna-Venezuela
      Mensajes
      10.545

      Re: Virus 22find

      Ok, si tienes IE 9 tambien podrías reinstalarlo o resetearlo entrando al panel de control -> Redes e Internet -> Opciones de Internet -> ve a la pestaña Avanzado y verás la opción Reestablecer, pulsa en ella y asegurate de marcar la casilla de "quitar configuración personal", cierra y abre nuevamente IE.

      Me comentas a la vuelta.



      Blog | Antivirus Online | Eliminar Malwares | Antivirus Gratis

      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.

    5. #5
      Usuario Avatar de beatriz_n
      Registrado
      ene 2013
      Ubicación
      argentina
      Mensajes
      6

      Re: Virus 22find

      Lo hice tal cual me dijiste, pero sigue igual

    6. #6
      Ex-Colaborador Avatar de Anleg_30
      Registrado
      dic 2007
      Ubicación
      Bna-Venezuela
      Mensajes
      10.545

      Re: Virus 22find

      Descarga OTL.exe by Oldtimer en el Escritorio

      Cierra todas las ventanas y programas abiertos.

      Ejecuta OTL con Doble click sobre su ícono y solo configura lo siguiente dejando lo demas por default:
      1. Activa la casilla de "Scan All Users" (Analizar Todos )
      2. Cambia a resultado mínimo en "Tipo de Análisis"
      3. Activa la casilla de "Skip Microsoft Files" (Omitir archivos de Microsoft)
      4. Pulsa el Botón Run Scan (Analizar)


      Al finalizar, dos reportes se abriran, copia y pega solamente el de nombre:

      OTL.txt <-- (este es el que veras automaticamnte al finalizar)



      Blog | Antivirus Online | Eliminar Malwares | Antivirus Gratis

      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.

    7. #7
      Usuario Avatar de beatriz_n
      Registrado
      ene 2013
      Ubicación
      argentina
      Mensajes
      6

      Re: Virus 22find

      OTL logfile created on: 29/01/2013 01:50:19 p.m. - Run 2
      OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\PC\Downloads
      64bit- Ultimate Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
      Internet Explorer (Version = 9.0.8112.16421)
      Locale: 00002c0a | Country: Argentina | Language: ESS | Date Format: dd/MM/yyyy

      3,97 Gb Total Physical Memory | 2,54 Gb Available Physical Memory | 63,99% Memory free
      7,93 Gb Paging File | 6,41 Gb Available in Paging File | 80,73% Paging File free
      Paging file location(s): ?:\pagefile.sys [binary data]

      %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
      Drive C: | 78,03 Gb Total Space | 40,19 Gb Free Space | 51,51% Space Free | Partition Type: NTFS
      Drive F: | 387,63 Gb Total Space | 255,66 Gb Free Space | 65,95% Space Free | Partition Type: NTFS

      Computer Name: PC-PC | User Name: PC | Logged in as Administrator.
      Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans
      Company Name Whitelist: Off | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

      ========== Processes (SafeList) ==========

      PRC - C:\Users\PC\Downloads\OTL.exe (OldTimer Tools)
      PRC - C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.)
      PRC - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (Adobe Systems Incorporated)
      PRC - C:\Archivos de programa\AVAST Software\Avast\AvastUI.exe (AVAST Software)
      PRC - C:\Archivos de programa\AVAST Software\Avast\AvastSvc.exe (AVAST Software)
      PRC - C:\Program Files (x86)\Software Plate\svcgdp.exe (Beijing Xing Technology Co., Ltd.)
      PRC - C:\Program Files (x86)\Ares\Ares.exe (Ares Development Group)
      PRC - C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe (SEIKO EPSON CORPORATION)
      PRC - C:\Program Files (x86)\ABBYY FineReader 9.0 Sprint\Bonus.ScreenshotReader.exe (ABBYY)
      PRC - C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe (ABBYY)


      ========== Modules (No Company Name) ==========

      MOD - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\pgafcinpmmpklohkojmllohdhomoefph\1.0_0\spext.dll ()
      MOD - C:\Program Files (x86)\Google\Chrome\Application\24.0.1312.56\PepperFlash\pepflashplayer.dll ()
      MOD - C:\Program Files (x86)\Google\Chrome\Application\24.0.1312.56\ppGoogleNaClPluginChrome.dll ()
      MOD - C:\Program Files (x86)\Google\Chrome\Application\24.0.1312.56\pdf.dll ()
      MOD - C:\Program Files (x86)\Google\Chrome\Application\24.0.1312.56\libglesv2.dll ()
      MOD - C:\Program Files (x86)\Google\Chrome\Application\24.0.1312.56\libegl.dll ()
      MOD - C:\Program Files (x86)\Google\Chrome\Application\24.0.1312.56\ffmpegsumo.dll ()
      MOD - C:\PROGRA~2\COMMON~1\MICROS~1\OFFICE14\Cultures\office.odf ()


      ========== Services (SafeList) ==========

      SRV:64bit: - (AppMgmt) -- C:\Windows\SysNative\appmgmts.dll (Microsoft Corporation)
      SRV - (AdobeARMservice) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (Adobe Systems Incorporated)
      SRV - (avast! Antivirus) -- C:\Archivos de programa\AVAST Software\Avast\AvastSvc.exe (AVAST Software)
      SRV - (svcgdp) -- C:\Program Files (x86)\Software Plate\svcgdp.exe (Beijing Xing Technology Co., Ltd.)
      SRV - (clr_optimization_v4.0.30319_32) -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe (Microsoft Corporation)
      SRV - (osppsvc) -- C:\Archivos de programa\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE (Microsoft Corporation)
      SRV - (clr_optimization_v2.0.50727_32) -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe (Microsoft Corporation)
      SRV - (ABBYY.Licensing.FineReader.Sprint.9.0) -- C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe (ABBYY)


      ========== Driver Services (SafeList) ==========

      DRV:64bit: - (aswTdi) -- C:\Windows\SysNative\drivers\aswTdi.sys (AVAST Software)
      DRV:64bit: - (aswSnx) -- C:\Windows\SysNative\drivers\aswSnx.sys (AVAST Software)
      DRV:64bit: - (aswSP) -- C:\Windows\SysNative\drivers\aswSP.sys (AVAST Software)
      DRV:64bit: - (aswMonFlt) -- C:\Windows\SysNative\drivers\aswMonFlt.sys (AVAST Software)
      DRV:64bit: - (aswFsBlk) -- C:\Windows\SysNative\drivers\aswFsBlk.sys (AVAST Software)
      DRV:64bit: - (aswRdr) -- C:\Windows\SysNative\drivers\aswRdr2.sys (AVAST Software)
      DRV:64bit: - (sptd) -- C:\Windows\SysNative\drivers\sptd.sys (Duplex Secure Ltd.)
      DRV:64bit: - (Fs_Rec) -- C:\Windows\SysNative\drivers\fs_rec.sys (Microsoft Corporation)
      DRV:64bit: - (amdsata) -- C:\Windows\SysNative\drivers\amdsata.sys (Advanced Micro Devices)
      DRV:64bit: - (amdxata) -- C:\Windows\SysNative\drivers\amdxata.sys (Advanced Micro Devices)
      DRV:64bit: - (HpSAMD) -- C:\Windows\SysNative\drivers\HpSAMD.sys (Hewlett-Packard Company)
      DRV:64bit: - (TsUsbFlt) -- C:\Windows\SysNative\drivers\TsUsbFlt.sys (Microsoft Corporation)
      DRV:64bit: - (RdpVideoMiniport) -- C:\Windows\SysNative\drivers\rdpvideominiport.sys (Microsoft Corporation)
      DRV:64bit: - (SCDEmu) -- C:\Windows\SysNative\drivers\scdemu.sys (PowerISO Computing, Inc.)
      DRV:64bit: - (ss_mdm) -- C:\Windows\SysNative\drivers\ss_mdm.sys (MCCI Corporation)
      DRV:64bit: - (ss_bus) -- C:\Windows\SysNative\drivers\ss_bus.sys (MCCI Corporation)
      DRV:64bit: - (ss_mdfl) -- C:\Windows\SysNative\drivers\ss_mdfl.sys (MCCI Corporation)
      DRV:64bit: - (amdsbs) -- C:\Windows\SysNative\drivers\amdsbs.sys (AMD Technologies Inc.)
      DRV:64bit: - (LSI_SAS2) -- C:\Windows\SysNative\drivers\lsi_sas2.sys (LSI Corporation)
      DRV:64bit: - (stexstor) -- C:\Windows\SysNative\drivers\stexstor.sys (Promise Technology)
      DRV:64bit: - (NVNET) -- C:\Windows\SysNative\drivers\nvmf6264.sys (NVIDIA Corporation)
      DRV:64bit: - (BIOS) -- C:\Windows\SysNative\drivers\BIOS64.sys (BIOSTAR Group)
      DRV:64bit: - (NVENETFD) -- C:\Windows\SysNative\drivers\nvm62x64.sys (NVIDIA Corporation)
      DRV:64bit: - (ebdrv) -- C:\Windows\SysNative\drivers\evbda.sys (Broadcom Corporation)
      DRV:64bit: - (b06bdrv) -- C:\Windows\SysNative\drivers\bxvbda.sys (Broadcom Corporation)
      DRV:64bit: - (b57nd60a) -- C:\Windows\SysNative\drivers\b57nd60a.sys (Broadcom Corporation)
      DRV:64bit: - (hcw85cir) -- C:\Windows\SysNative\drivers\hcw85cir.sys (Hauppauge Computer Works, Inc.)
      DRV - (WIMMount) -- C:\Windows\SysWOW64\drivers\wimmount.sys (Microsoft Corporation)
      DRV - (BIOS) -- C:\Windows\SysWOW64\drivers\BIOS64.sys (BIOSTAR Group)


      ========== Standard Registry (SafeList) ==========


      ========== Internet Explorer ==========

      IE:64bit: - HKLM\..\SearchScopes,DefaultScope = {9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}
      IE:64bit: - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
      IE:64bit: - HKLM\..\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}: "URL" = http://dts.search-results.com/sr?src=ieb&appid=362&systemid=406&sr=0&q={searchTerms}
      IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL =
      IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
      IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page =
      IE - HKLM\..\SearchScopes,DefaultScope =
      IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
      IE - HKLM\..\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}: "URL" = http://dts.search-results.com/sr?src=ieb&appid=362&systemid=406&sr=0&q={searchTerms}


      IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

      IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0



      IE - HKU\S-1-5-21-2277349358-986273503-2746953306-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = Preserve
      IE - HKU\S-1-5-21-2277349358-986273503-2746953306-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = Hotmail, Messenger y más en MSN Argentina, noticias, entretenimiento, deportes, videos.
      IE - HKU\S-1-5-21-2277349358-986273503-2746953306-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = es-AR
      IE - HKU\S-1-5-21-2277349358-986273503-2746953306-1000\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
      IE - HKU\S-1-5-21-2277349358-986273503-2746953306-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0


      ========== FireFox ==========

      FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: C:\Windows\system32\Wat\npWatWeb.dll (Microsoft Corporation)
      FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation)
      FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: C:\Windows\system32\Wat\npWatWeb.dll (Microsoft Corporation)
      FF - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
      FF - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
      FF - HKLM\Software\MozillaPlugins\@real.com/nppl3260;version=6.0.12.69: C:\Program Files (x86)\K-Lite Codec Pack\Real\browser\plugins\nppl3260.dll (RealNetworks, Inc.)
      FF - HKLM\Software\MozillaPlugins\@real.com/nprpjplug;version=6.0.12.69: C:\Program Files (x86)\K-Lite Codec Pack\Real\browser\plugins\nprpjplug.dll (RealNetworks, Inc.)
      FF - HKLM\Software\MozillaPlugins\@real.com/nsJSRealPlayerPlugin;version=: File not found
      FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.21.123\npGoogleUpdate3.dll (Google Inc.)
      FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.21.123\npGoogleUpdate3.dll (Google Inc.)
      FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)

      FF - HKEY_CURRENT_USER\software\mozilla\Firefox\Extensions\\{b64982b1-d112-42b5-b1e4-d3867c4533f8}: C:\ProgramData\Browser Manager\2.3.787.43\{16cdff19-861d-48e3-a751-d99a27784753}\FirefoxExtension [2013/01/27 22:44:13 | 000,000,000 | ---D | M]

      [2012/09/05 12:01:16 | 000,000,000 | ---D | M] (No name found) -- C:\Users\PC\AppData\Roaming\mozilla\Extensions
      [2012/08/15 13:24:33 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\mozilla firefox\extensions

      ========== Chrome ==========

      CHR - default_search_provider: Google (Enabled)
      CHR - default_search_provider: search_url = {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}sourceid=chrome&ie={inputEncoding}
      CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client=chrome&hl={language}&q={searchTerms}&sugkey={google:suggestAPIKeyParameter}
      CHR - plugin: Shockwave Flash (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\24.0.1312.56\PepperFlash\pepflashplayer.dll
      CHR - plugin: Chrome Remote Desktop Viewer (Enabled) = internal-remoting-viewer
      CHR - plugin: Native Client (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\24.0.1312.56\ppGoogleNaClPluginChrome.dll
      CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\24.0.1312.56\pdf.dll
      CHR - plugin: Application Manager (Enabled) = C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\pgafcinpmmpklohkojmllohdhomoefph\1.0_0\spext.dll
      CHR - plugin: Perion plugin (Enabled) = C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\jifflliplgeajjdhmkcfnngfpgbjonjg\1.0.0_0\Plugins/PerionNewTabChrome-32.dll
      CHR - plugin: Perion plugin (Enabled) = C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\niogeckbkdcabhnapjbkeiklablhjoca\1.0.5_0\plugins/PerionChromeInfoBar-32.dll
      CHR - plugin: Adobe Acrobat (Enabled) = C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll
      CHR - plugin: Microsoft Office 2010 (Enabled) = C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL
      CHR - plugin: Microsoft Office 2010 (Enabled) = C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL
      CHR - plugin: Google Update (Enabled) = C:\Program Files (x86)\Google\Update\1.3.21.115\npGoogleUpdate3.dll
      CHR - plugin: RealPlayer(tm) G2 LiveConnect-Enabled Plug-In (32-bit) (Enabled) = C:\Program Files (x86)\K-Lite Codec Pack\Real\browser\plugins\nppl3260.dll
      CHR - plugin: RealPlayer Version Plugin (Enabled) = C:\Program Files (x86)\K-Lite Codec Pack\Real\browser\plugins\nprpjplug.dll
      CHR - plugin: Windows Activation Technologies (Enabled) = C:\Windows\system32\Wat\npWatWeb.dll
      CHR - Extension: avast! WebRep = C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\7.0.1474_0\
      CHR - Extension: Settings Protector = C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\pgafcinpmmpklohkojmllohdhomoefph\1.0_0\

      O1 HOSTS File: ([2009/06/10 18:00:26 | 000,000,824 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
      O2:64bit: - BHO: (avast! WebRep) - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Archivos de programa\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
      O2:64bit: - BHO: (Groove GFS Browser Helper) - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Archivos de programa\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
      O2:64bit: - BHO: (Easy Photo Print) - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files (x86)\Epson Software\Easy Photo Print\EPTBL.dll (SEIKO EPSON CORPORATION / CyCom Technology Corp.)
      O2:64bit: - BHO: (Office Document Cache Handler) - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Archivos de programa\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
      O2 - BHO: (no name) - {2EECD738-5844-4a99-B4B6-146BF802613B} - No CLSID value found.
      O2 - BHO: (TBSB01620 Class) - {58124A0B-DC32-4180-9BFF-E0E21AE34026} - C:\Program Files (x86)\IMinent Toolbar\tbcore3.dll File not found
      O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - No CLSID value found.
      O2 - BHO: (Groove GFS Browser Helper) - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL (Microsoft Corporation)
      O2 - BHO: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Archivos de programa\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
      O2 - BHO: (Office Document Cache Handler) - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL (Microsoft Corporation)
      O3:64bit: - HKLM\..\Toolbar: (avast! WebRep) - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Archivos de programa\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
      O3:64bit: - HKLM\..\Toolbar: (Easy Photo Print) - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files (x86)\Epson Software\Easy Photo Print\EPTBL.dll (SEIKO EPSON CORPORATION / CyCom Technology Corp.)
      O3:64bit: - HKLM\..\Toolbar: (no name) - 10 - No CLSID value found.
      O3 - HKLM\..\Toolbar: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Archivos de programa\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
      O3 - HKLM\..\Toolbar: (IMinent Toolbar) - {977AE9CC-AF83-45E8-9E03-E2798216E2D5} - C:\Program Files (x86)\IMinent Toolbar\tbcore3.dll File not found
      O3 - HKLM\..\Toolbar: (no name) - {98889811-442D-49dd-99D7-DC866BE87DBC} - No CLSID value found.
      O3 - HKLM\..\Toolbar: (no name) - 10 - No CLSID value found.
      O3 - HKU\S-1-5-21-2277349358-986273503-2746953306-1000\..\Toolbar\WebBrowser: (IMinent Toolbar) - {977AE9CC-AF83-45E8-9E03-E2798216E2D5} - C:\Program Files (x86)\IMinent Toolbar\tbcore3.dll File not found
      O4:64bit: - HKLM..\Run: [NvCplDaemon] C:\Windows\SysNative\NvCpl.dll (NVIDIA Corporation)
      O4:64bit: - HKLM..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Realtek Semiconductor)
      O4 - HKLM..\Run: [avast] C:\Program Files\AVAST Software\Avast\avastUI.exe (AVAST Software)
      O4 - HKLM..\Run: [EEventManager] C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe (SEIKO EPSON CORPORATION)
      O4 - HKU\S-1-5-19..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
      O4 - HKU\S-1-5-20..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
      O4 - HKU\S-1-5-21-2277349358-986273503-2746953306-1000..\Run: [ABBYY Screenshot Reader Bonus] "C:\Program Files (x86)\ABBYY FineReader 9.0 Sprint\Bonus.ScreenshotReader.exe" -autorun File not found
      O4 - HKU\S-1-5-21-2277349358-986273503-2746953306-1000..\Run: [ares] C:\Program Files (x86)\Ares\Ares.exe (Ares Development Group)
      O4 - HKU\S-1-5-21-2277349358-986273503-2746953306-1000..\Run: [EPSON TX125 Series] C:\Windows\system32\spool\DRIVERS\x64\3\E_IATIGGB.EXE /FU "C:\Windows\TEMP\E_S6220.tmp" /EF "HKCU" File not found
      O4 - HKU\S-1-5-19..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe File not found
      O4 - HKU\S-1-5-20..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe File not found
      O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
      O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDesktop = 0
      O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
      O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
      O7 - HKU\S-1-5-21-2277349358-986273503-2746953306-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDesktop = 0
      O9:64bit: - Extra Button: Enviar a OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Archivos de programa\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation)
      O9:64bit: - Extra 'Tools' menuitem : &Enviar a OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Archivos de programa\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation)
      O9:64bit: - Extra Button: Notas &vinculadas de OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Archivos de programa\Microsoft Office\Office14\ONBttnIELinkedNotes.dll (Microsoft Corporation)
      O9:64bit: - Extra 'Tools' menuitem : Notas &vinculadas de OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Archivos de programa\Microsoft Office\Office14\ONBttnIELinkedNotes.dll (Microsoft Corporation)
      O9 - Extra 'Tools' menuitem : Consola de Sun Java - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files (x86)\Java\jre1.5.0\bin\npjpi150.dll (Sun Microsystems, Inc.)
      O1364bit: - gopher Prefix: missing
      O13 - gopher Prefix: missing
      O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://javadl-esd.sun.com/update/1.5...ndows-i586.cab (Java Plug-in 1.5.0)
      O16 - DPF: {CAFEEFAC-0015-0000-0000-ABCDEFFEDCBA} http://java.sun.com/update/1.5.0/jin...ndows-i586.cab (Java Plug-in 1.5.0)
      O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/ge...sh/swflash.cab (Shockwave Flash Object)
      O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 200.42.4.207 200.49.130.44
      O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{49CAC122-DFCD-4C1E-8D1C-DACE394E8510}: DhcpNameServer = 200.42.4.207 200.49.130.44
      O18:64bit: - Protocol\Handler\livecall - No CLSID value found
      O18:64bit: - Protocol\Handler\ms-help - No CLSID value found
      O18:64bit: - Protocol\Handler\msnim - No CLSID value found
      O18 - Protocol\Handler\livecall {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~2\WIC4A1~1\MESSEN~1\MSGRAP~1.DLL (Microsoft Corporation)
      O18 - Protocol\Handler\msnim {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~2\WIC4A1~1\MESSEN~1\MSGRAP~1.DLL (Microsoft Corporation)
      O18:64bit: - Protocol\Filter\text/xml {807573E5-5146-11D5-A672-00B0D022E945} - C:\Archivos de programa\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL (Microsoft Corporation)
      O20:64bit: - AppInit_DLLs: (c:\progra~3\browse~1\23787~1.43\{16cdf~1\browse~1.dll) - File not found
      O20 - AppInit_DLLs: (c:\progra~3\browse~1\23787~1.43\{16cdf~1\browse~1.dll) - File not found
      O20:64bit: - HKLM Winlogon: Shell - (Explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
      O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
      O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
      O20 - HKLM Winlogon: UserInit - (userinit.exe) - C:\Windows\SysWow64\userinit.exe (Microsoft Corporation)
      O28:64bit: - HKLM ShellExecuteHooks: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Archivos de programa\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
      O28 - HKLM ShellExecuteHooks: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL (Microsoft Corporation)
      O32 - HKLM CDRom: AutoRun - 1
      O34 - HKLM BootExecute: (autocheck autochk *)
      O35:64bit: - HKLM\..comfile [open] -- "%1" %*
      O35:64bit: - HKLM\..exefile [open] -- "%1" %*
      O35 - HKLM\..comfile [open] -- "%1" %*
      O35 - HKLM\..exefile [open] -- "%1" %*
      O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
      O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
      O37 - HKLM\...com [@ = comfile] -- "%1" %*
      O37 - HKLM\...exe [@ = exefile] -- "%1" %*
      O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
      O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
      O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)

      ========== Files/Folders - Created Within 30 Days ==========

      [2013/01/27 22:44:37 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Perion
      [2013/01/27 22:43:23 | 000,000,000 | ---D | C] -- C:\Users\PC\AppData\Roaming\PerformerSoft
      [2013/01/27 22:43:22 | 000,000,000 | ---D | C] -- C:\ProgramData\IBUpdaterService
      [2013/01/27 22:43:21 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\File Scout
      [2013/01/27 22:43:03 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
      [2013/01/27 22:42:44 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Google
      [2013/01/27 22:41:12 | 031,997,200 | ---- | C] (Google Inc.) -- C:\ChromeStandaloneSetup.exe
      [2013/01/27 15:52:27 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
      [2013/01/27 15:52:25 | 000,000,000 | ---D | C] -- C:\Program Files\CCleaner
      [2013/01/27 15:45:17 | 000,000,000 | ---D | C] -- C:\Users\PC\AppData\Roaming\Panda Security
      [2013/01/27 15:43:33 | 000,000,000 | ---D | C] -- C:\ProgramData\Panda Security
      [2013/01/27 15:43:33 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Panda Security
      [2013/01/27 15:30:39 | 000,000,000 | ---D | C] -- C:\Users\PC\AppData\Roaming\Malwarebytes
      [2013/01/27 15:30:29 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
      [2013/01/27 15:29:56 | 000,000,000 | ---D | C] -- C:\Users\PC\AppData\Local\Programs
      [2013/01/27 15:21:26 | 000,000,000 | ---D | C] -- C:\_PoliFix
      [2013/01/27 14:46:37 | 000,000,000 | ---D | C] -- C:\_OTL
      [2013/01/25 10:19:20 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\337
      [2013/01/25 10:18:46 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Desk 365
      [2013/01/25 10:18:30 | 000,000,000 | ---D | C] -- C:\Users\PC\AppData\Roaming\Desk 365
      [2013/01/17 18:58:41 | 000,000,000 | ---D | C] -- C:\Users\PC\Documents\Mis archivos recibidos

      ========== Files - Modified Within 30 Days ==========

      [2013/01/29 13:53:00 | 000,001,028 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
      [2013/01/29 13:48:31 | 000,001,340 | ---- | M] () -- C:\Users\PC\Desktop\OTL - Acceso directo.lnk
      [2013/01/29 13:44:12 | 000,010,320 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
      [2013/01/29 13:44:12 | 000,010,320 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
      [2013/01/29 12:44:02 | 000,001,024 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
      [2013/01/29 12:43:42 | 3195,559,936 | -HS- | M] () -- C:\hiberfil.sys
      [2013/01/27 22:53:54 | 000,418,360 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT
      [2013/01/27 22:51:20 | 000,000,105 | ---- | M] () -- C:\prefs.js
      [2013/01/27 22:44:32 | 000,002,238 | ---- | M] () -- C:\user.js
      [2013/01/27 22:43:03 | 000,002,255 | ---- | M] () -- C:\Users\Public\Desktop\Google Chrome.lnk
      [2013/01/27 22:42:35 | 031,997,200 | ---- | M] (Google Inc.) -- C:\ChromeStandaloneSetup.exe
      [2013/01/27 17:17:24 | 000,000,822 | ---- | M] () -- C:\Users\Public\Desktop\CCleaner.lnk
      [2013/01/27 13:54:20 | 000,000,000 | ---- | M] () -- C:\Windows\SysWow64\config.nt
      [2013/01/25 10:18:26 | 000,001,607 | ---- | M] () -- C:\Users\PC\Desktop\Internet Explorer.lnk
      [2013/01/09 13:23:09 | 001,577,712 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
      [2013/01/09 13:23:09 | 000,703,824 | ---- | M] () -- C:\Windows\SysNative\perfh00A.dat
      [2013/01/09 13:23:09 | 000,616,032 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
      [2013/01/09 13:23:09 | 000,137,822 | ---- | M] () -- C:\Windows\SysNative\perfc00A.dat
      [2013/01/09 13:23:09 | 000,106,412 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat

      ========== Files Created - No Company Name ==========

      [2013/01/29 13:48:31 | 000,001,340 | ---- | C] () -- C:\Users\PC\Desktop\OTL - Acceso directo.lnk
      [2013/01/27 22:53:43 | 000,418,360 | ---- | C] () -- C:\Windows\SysNative\FNTCACHE.DAT
      [2013/01/27 22:51:20 | 000,000,105 | ---- | C] () -- C:\prefs.js
      [2013/01/27 22:43:03 | 000,002,255 | ---- | C] () -- C:\Users\Public\Desktop\Google Chrome.lnk
      [2013/01/27 22:42:48 | 000,001,028 | ---- | C] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
      [2013/01/27 22:42:47 | 000,001,024 | ---- | C] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
      [2013/01/27 15:52:27 | 000,000,822 | ---- | C] () -- C:\Users\Public\Desktop\CCleaner.lnk
      [2012/05/14 07:38:32 | 000,043,976 | ---- | C] () -- C:\Users\PC\AppData\Local\save_en.bmp
      [2012/05/14 07:38:08 | 000,043,976 | ---- | C] () -- C:\Users\PC\AppData\Local\save_es.bmp
      [2012/03/24 15:24:47 | 000,073,220 | ---- | C] () -- C:\Windows\SysWow64\EPPICPrinterDB.dat
      [2012/03/24 15:24:47 | 000,031,053 | ---- | C] () -- C:\Windows\SysWow64\EPPICPattern131.dat
      [2012/03/24 15:24:47 | 000,029,114 | ---- | C] () -- C:\Windows\SysWow64\EPPICPattern1.dat
      [2012/03/24 15:24:47 | 000,027,417 | ---- | C] () -- C:\Windows\SysWow64\EPPICPattern121.dat
      [2012/03/24 15:24:47 | 000,021,021 | ---- | C] () -- C:\Windows\SysWow64\EPPICPattern3.dat
      [2012/03/24 15:24:47 | 000,015,670 | ---- | C] () -- C:\Windows\SysWow64\EPPICPattern5.dat
      [2012/03/24 15:24:47 | 000,013,280 | ---- | C] () -- C:\Windows\SysWow64\EPPICPattern2.dat
      [2012/03/24 15:24:47 | 000,010,673 | ---- | C] () -- C:\Windows\SysWow64\EPPICPattern4.dat
      [2012/03/24 15:24:47 | 000,004,943 | ---- | C] () -- C:\Windows\SysWow64\EPPICPattern6.dat
      [2012/03/24 15:24:47 | 000,001,140 | ---- | C] () -- C:\Windows\SysWow64\EPPICPresetData_PT.dat
      [2012/03/24 15:24:47 | 000,001,140 | ---- | C] () -- C:\Windows\SysWow64\EPPICPresetData_BP.dat
      [2012/03/24 15:24:47 | 000,001,137 | ---- | C] () -- C:\Windows\SysWow64\EPPICPresetData_ES.dat
      [2012/03/24 15:24:47 | 000,001,130 | ---- | C] () -- C:\Windows\SysWow64\EPPICPresetData_FR.dat
      [2012/03/24 15:24:47 | 000,001,130 | ---- | C] () -- C:\Windows\SysWow64\EPPICPresetData_CF.dat
      [2012/03/24 15:24:47 | 000,001,104 | ---- | C] () -- C:\Windows\SysWow64\EPPICPresetData_EN.dat
      [2012/03/24 15:24:47 | 000,000,097 | ---- | C] () -- C:\Windows\SysWow64\PICSDK.ini
      [2012/03/24 15:22:59 | 000,000,088 | ---- | C] () -- C:\Windows\ETX123_125.ini
      [2012/03/23 00:15:03 | 000,000,135 | ---- | C] () -- C:\Windows\AutoKMS.ini
      [2012/03/23 00:04:11 | 000,168,448 | ---- | C] () -- C:\Windows\SysWow64\unrar.dll
      [2012/03/23 00:04:11 | 000,000,038 | ---- | C] () -- C:\Windows\avisplitter.ini
      [2012/03/23 00:04:08 | 003,596,288 | ---- | C] () -- C:\Windows\SysWow64\qt-dx331.dll
      [2012/03/23 00:04:08 | 000,881,664 | ---- | C] () -- C:\Windows\SysWow64\xvidcore.dll
      [2012/03/23 00:04:08 | 000,205,824 | ---- | C] () -- C:\Windows\SysWow64\xvidvfw.dll
      [2012/03/23 00:04:05 | 000,085,504 | ---- | C] () -- C:\Windows\SysWow64\ff_vfw.dll

      ========== ZeroAccess Check ==========

      [2009/07/14 01:55:00 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini

      [HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64

      [HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

      [HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64

      [HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

      [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
      "" = C:\Windows\SysNative\shell32.dll -- [2012/06/09 02:43:10 | 014,172,672 | ---- | M] (Microsoft Corporation)
      "ThreadingModel" = Apartment

      [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
      "" = %SystemRoot%\system32\shell32.dll -- [2012/06/09 01:41:00 | 012,873,728 | ---- | M] (Microsoft Corporation)
      "ThreadingModel" = Apartment

      [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
      "" = C:\Windows\SysNative\wbem\fastprox.dll -- [2009/07/13 22:40:51 | 000,909,312 | ---- | M] (Microsoft Corporation)
      "ThreadingModel" = Free

      [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
      "" = %systemroot%\system32\wbem\fastprox.dll -- [2010/11/20 09:19:02 | 000,606,208 | ---- | M] (Microsoft Corporation)
      "ThreadingModel" = Free

      [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
      "" = C:\Windows\SysNative\wbem\wbemess.dll -- [2009/07/13 22:41:56 | 000,505,856 | ---- | M] (Microsoft Corporation)
      "ThreadingModel" = Both

      [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]

      ========== Files - Unicode (All) ==========
      [2012/10/28 11:50:38 | 000,305,371 | ---- | M] ()(C:\Users\PC\Documents\FORMACION HUMANA ?.docx) -- C:\Users\PC\Documents\FORMACION HUMANA ♥.docx
      [2012/10/25 20:05:51 | 000,260,067 | ---- | M] ()(C:\Users\PC\Documents\Meses de Gestacion del bebe humano ?.docx) -- C:\Users\PC\Documents\Meses de Gestacion del bebe humano ♥.docx
      [2012/10/25 20:05:51 | 000,260,067 | ---- | C] ()(C:\Users\PC\Documents\Meses de Gestacion del bebe humano ?.docx) -- C:\Users\PC\Documents\Meses de Gestacion del bebe humano ♥.docx
      [2012/10/25 20:05:42 | 000,305,371 | ---- | C] ()(C:\Users\PC\Documents\FORMACION HUMANA ?.docx) -- C:\Users\PC\Documents\FORMACION HUMANA ♥.docx

      < End of report >

    8. #8
      Ex-Colaborador Avatar de Anleg_30
      Registrado
      dic 2007
      Ubicación
      Bna-Venezuela
      Mensajes
      10.545

      Re: Virus 22find

      Por favor pasa OTL al Escritorio.


      • Abre OTL.exe porfavor, y solo realiza lo siguiente tal cual:
      • Copia y pega el siguiente código en su marco en blanco (debajo de Código de Reparación)


      Código:
      :OTL
      IE:64bit: - HKLM\..\SearchScopes,DefaultScope = {9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}
      IE:64bit: - HKLM\..\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}: "URL" = http://dts.search-results.com/sr?src=ieb&appid=362&systemid=406&sr=0&q={searchTerms}
      IE - HKLM\..\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}: "URL" = http://dts.search-results.com/sr?src=ieb&appid=362&systemid=406&sr=0&q={searchTerms}
      IE - HKU\S-1-5-21-2277349358-986273503-2746953306-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = Preserve
      FF - HKEY_CURRENT_USER\software\mozilla\Firefox\Extensions\\{b64982b1-d112-42b5-b1e4-d3867c4533f8}: C:\ProgramData\Browser Manager\2.3.787.43\{16cdff19-861d-48e3-a751-d99a27784753}\FirefoxExtension 
      [2012/09/05 12:01:16 | 000,000,000 | ---D | M] (No name found) -- C:\Users\PC\AppData\Roaming\mozilla\Extensions
      O2 - BHO: (TBSB01620 Class) - {58124A0B-DC32-4180-9BFF-E0E21AE34026} - C:\Program Files (x86)\IMinent Toolbar\tbcore3.dll File not found
      O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - No CLSID value found.
      O3:64bit: - HKLM\..\Toolbar: (no name) - 10 - No CLSID value found.
      O3 - HKLM\..\Toolbar: (IMinent Toolbar) - {977AE9CC-AF83-45E8-9E03-E2798216E2D5} - C:\Program Files (x86)\IMinent Toolbar\tbcore3.dll File not found
      O3 - HKLM\..\Toolbar: (no name) - {98889811-442D-49dd-99D7-DC866BE87DBC} - No CLSID value found.
      O3 - HKLM\..\Toolbar: (no name) - 10 - No CLSID value found.
      O3 - HKU\S-1-5-21-2277349358-986273503-2746953306-1000\..\Toolbar\WebBrowser: (IMinent Toolbar) - {977AE9CC-AF83-45E8-9E03-E2798216E2D5} - C:\Program Files (x86)\IMinent Toolbar\tbcore3.dll File not found
      O20:64bit: - AppInit_DLLs: (c:\progra~3\browse~1\23787~1.43\{16cdf~1\browse~1.dll) - File not found
      O20 - AppInit_DLLs: (c:\progra~3\browse~1\23787~1.43\{16cdf~1\browse~1.dll) - File not found
      [2013/01/25 10:19:20 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\337
      [2013/01/25 10:18:46 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Desk 365
      [2013/01/25 10:18:30 | 000,000,000 | ---D | C] -- C:\Users\PC\AppData\Roaming\Desk 365
      [2013/01/27 22:44:37 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Perion
      [2013/01/27 22:43:23 | 000,000,000 | ---D | C] -- C:\Users\PC\AppData\Roaming\PerformerSoft
      [2013/01/27 22:43:22 | 000,000,000 | ---D | C] -- C:\ProgramData\IBUpdaterService
      [2013/01/27 22:43:21 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\File Scout
      
      :Files
      C:\ProgramData\Browser Manager
      C:\Program Files (x86)\IMinent Toolbar
      ipconfig /flushdns /c
      
      
      :Commands
      [emptytemp]
      • Seguidamente pulsa sobre el botón Reparar



      Deja que se ejecute y luego del reinicio me copias el reporte que genere.



      Blog | Antivirus Online | Eliminar Malwares | Antivirus Gratis

      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.

    9. #9
      Usuario Avatar de beatriz_n
      Registrado
      ene 2013
      Ubicación
      argentina
      Mensajes
      6

      Re: Virus 22find

      All processes killed
      ========== OTL ==========
      HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope| /E : value set successfully!
      64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}\ deleted successfully.
      64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}\ not found.
      Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}\ deleted successfully.
      Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}\ not found.
      HKU\S-1-5-21-2277349358-986273503-2746953306-1000\SOFTWARE\Microsoft\Internet Explorer\Main\\Search Bar| /E : value set successfully!
      Registry value HKEY_CURRENT_USER\software\mozilla\Firefox\Extensions\\{b64982b1-d112-42b5-b1e4-d3867c4533f8} deleted successfully.
      Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{b64982b1-d112-42b5-b1e4-d3867c4533f8}\ not found.
      C:\ProgramData\Browser Manager\2.3.787.43\{16cdff19-861d-48e3-a751-d99a27784753}\FirefoxExtension\content folder moved successfully.
      C:\ProgramData\Browser Manager\2.3.787.43\{16cdff19-861d-48e3-a751-d99a27784753}\FirefoxExtension\components folder moved successfully.
      C:\ProgramData\Browser Manager\2.3.787.43\{16cdff19-861d-48e3-a751-d99a27784753}\FirefoxExtension folder moved successfully.
      C:\Users\PC\AppData\Roaming\mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384}\[email protected]\chrome\content folder moved successfully.
      C:\Users\PC\AppData\Roaming\mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384}\[email protected]\chrome folder moved successfully.
      Folder move failed. C:\Users\PC\AppData\Roaming\mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384}\[email protected] scheduled to be moved on reboot.
      Folder move failed. C:\Users\PC\AppData\Roaming\mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384} scheduled to be moved on reboot.
      Folder move failed. C:\Users\PC\AppData\Roaming\mozilla\Extensions scheduled to be moved on reboot.
      Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{58124A0B-DC32-4180-9BFF-E0E21AE34026}\ deleted successfully.
      Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{58124A0B-DC32-4180-9BFF-E0E21AE34026}\ deleted successfully.
      Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5C255C8A-E604-49b4-9D64-90988571CECB}\ deleted successfully.
      Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{5C255C8A-E604-49b4-9D64-90988571CECB}\ not found.
      64bit-Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\10 deleted successfully.
      Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{977AE9CC-AF83-45E8-9E03-E2798216E2D5} deleted successfully.
      Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{977AE9CC-AF83-45E8-9E03-E2798216E2D5}\ deleted successfully.
      Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{98889811-442D-49dd-99D7-DC866BE87DBC} deleted successfully.
      Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{98889811-442D-49dd-99D7-DC866BE87DBC}\ not found.
      Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\10 deleted successfully.
      Registry value HKEY_USERS\S-1-5-21-2277349358-986273503-2746953306-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{977AE9CC-AF83-45E8-9E03-E2798216E2D5} deleted successfully.
      Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{977AE9CC-AF83-45E8-9E03-E2798216E2D5}\ not found.
      64bit-Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows\\AppInit_Dlls:c:\progra~3\browse~1\23787~1.43\{16cdf~1\browse~1.dll deleted successfully.
      Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows\\AppInit_Dlls:c:\progra~3\browse~1\23787~1.43\{16cdf~1\browse~1.dll deleted successfully.
      C:\Program Files (x86)\Common Files\337\libcef\1.963.439\locales folder moved successfully.
      C:\Program Files (x86)\Common Files\337\libcef\1.963.439 folder moved successfully.
      C:\Program Files (x86)\Common Files\337\libcef folder moved successfully.
      C:\Program Files (x86)\Common Files\337 folder moved successfully.
      C:\Program Files (x86)\Desk 365 folder moved successfully.
      C:\Users\PC\AppData\Roaming\Desk 365\sysicons folder moved successfully.
      C:\Users\PC\AppData\Roaming\Desk 365\promote folder moved successfully.
      C:\Users\PC\AppData\Roaming\Desk 365\icons\CWindowstwain_32escndvescndv folder moved successfully.
      C:\Users\PC\AppData\Roaming\Desk 365\icons\CWindowsSystem32taskhost folder moved successfully.
      C:\Users\PC\AppData\Roaming\Desk 365\icons\CWindowsSystem32spooldriversx643E_IATIGGB folder moved successfully.
      C:\Users\PC\AppData\Roaming\Desk 365\icons\CWindowsSystem32slui folder moved successfully.
      C:\Users\PC\AppData\Roaming\Desk 365\icons\CWindowssystem32mspaint folder moved successfully.
      C:\Users\PC\AppData\Roaming\Desk 365\icons\CWindowsSystem32dwm folder moved successfully.
      C:\Users\PC\AppData\Roaming\Desk 365\icons\CWindowssystem32calc folder moved successfully.
      C:\Users\PC\AppData\Roaming\Desk 365\icons\CWindowsInstaller{C4156B59-DD7E-40DF-AF08-E568A27A6409}MsblIco folder moved successfully.
      C:\Users\PC\AppData\Roaming\Desk 365\icons\CWindowsInstaller{90140000-0011-0000-0000-0000000FF1CE}wordicon folder moved successfully.
      C:\Users\PC\AppData\Roaming\Desk 365\icons\CWindowsexplorer folder moved successfully.
      C:\Users\PC\AppData\Roaming\Desk 365\icons\CUsersPCAppDataLocalTemp1 folder moved successfully.
      C:\Users\PC\AppData\Roaming\Desk 365\icons\CUsersPCAppDataLocalGoogleChromeApplicationchrome folder moved successfully.
      C:\Users\PC\AppData\Roaming\Desk 365\icons\CProgramFilesRealtekAudioHDARAVCpl64 folder moved successfully.
      C:\Users\PC\AppData\Roaming\Desk 365\icons\CProgramFilesAVASTSoftwareAvastAvastUI folder moved successfully.
      C:\Users\PC\AppData\Roaming\Desk 365\icons\CProgramFiles(x86)WindowsMediaPlayerwmplayer folder moved successfully.
      C:\Users\PC\AppData\Roaming\Desk 365\icons\CProgramFiles(x86)WindowsLiveMessengermsnmsgr folder moved successfully.
      C:\Users\PC\AppData\Roaming\Desk 365\icons\CProgramFiles(x86)MicrosoftOfficeOffice14WINWORD folder moved successfully.
      C:\Users\PC\AppData\Roaming\Desk 365\icons\CProgramFiles(x86)MicrosoftOfficeOffice14POWERPNT folder moved successfully.
      C:\Users\PC\AppData\Roaming\Desk 365\icons\CProgramFiles(x86)MicrosoftOfficeOffice14OUTLOOK folder moved successfully.
      C:\Users\PC\AppData\Roaming\Desk 365\icons\CProgramFiles(x86)MicrosoftOfficeOffice14MSOSYNC folder moved successfully.
      C:\Users\PC\AppData\Roaming\Desk 365\icons\CProgramFiles(x86)MicrosoftOfficeOffice14MSACCESS folder moved successfully.
      C:\Users\PC\AppData\Roaming\Desk 365\icons\CProgramFiles(x86)MicrosoftOfficeOffice14EXCEL folder moved successfully.
      C:\Users\PC\AppData\Roaming\Desk 365\icons\CProgramFiles(x86)InternetExploreriexplore folder moved successfully.
      C:\Users\PC\AppData\Roaming\Desk 365\icons\CProgramFiles(x86)EpsonSoftwareEventManagerEEventManager folder moved successfully.
      C:\Users\PC\AppData\Roaming\Desk 365\icons\CProgramFiles(x86)EpsonSoftwareEasyPhotoPrintEPQuicker folder moved successfully.
      C:\Users\PC\AppData\Roaming\Desk 365\icons\CProgramFiles(x86)epsonguidetx125_sindex folder moved successfully.
      C:\Users\PC\AppData\Roaming\Desk 365\icons\CProgramFiles(x86)AresAres folder moved successfully.
      C:\Users\PC\AppData\Roaming\Desk 365\icons\CProgramFiles(x86)ABBYYFineReader90SprintBonusScreenshotReader folder moved successfully.
      C:\Users\PC\AppData\Roaming\Desk 365\icons folder moved successfully.
      C:\Users\PC\AppData\Roaming\Desk 365\desk_bkg folder moved successfully.
      C:\Users\PC\AppData\Roaming\Desk 365\components folder moved successfully.
      C:\Users\PC\AppData\Roaming\Desk 365 folder moved successfully.
      C:\Program Files (x86)\Perion\NewTab folder moved successfully.
      C:\Program Files (x86)\Perion\ChromeInfoBar folder moved successfully.
      C:\Program Files (x86)\Perion folder moved successfully.
      C:\Users\PC\AppData\Roaming\PerformerSoft folder moved successfully.
      C:\ProgramData\IBUpdaterService folder moved successfully.
      C:\Program Files (x86)\File Scout folder moved successfully.
      ========== FILES ==========
      C:\ProgramData\Browser Manager\2.3.787.43\{16cdff19-861d-48e3-a751-d99a27784753}\traking_settings folder moved successfully.
      C:\ProgramData\Browser Manager\2.3.787.43\{16cdff19-861d-48e3-a751-d99a27784753} folder moved successfully.
      C:\ProgramData\Browser Manager\2.3.787.43 folder moved successfully.
      C:\ProgramData\Browser Manager\2.2.643.41\{16cdff19-861d-48e3-a751-d99a27784753}\traking_settings folder moved successfully.
      C:\ProgramData\Browser Manager\2.2.643.41\{16cdff19-861d-48e3-a751-d99a27784753} folder moved successfully.
      C:\ProgramData\Browser Manager\2.2.643.41 folder moved successfully.
      C:\ProgramData\Browser Manager folder moved successfully.
      File\Folder C:\Program Files (x86)\IMinent Toolbar not found.
      < ipconfig /flushdns /c >
      Configuraci¢n IP de Windows
      Se vaci¢ correctamente la cach‚ de resoluci¢n de DNS.
      C:\Users\PC\Downloads\cmd.bat deleted successfully.
      C:\Users\PC\Downloads\cmd.txt deleted successfully.
      ========== COMMANDS ==========

      [EMPTYTEMP]

      User: All Users

      User: Default
      ->Temp folder emptied: 0 bytes
      ->Temporary Internet Files folder emptied: 0 bytes

      User: Default User
      ->Temp folder emptied: 0 bytes
      ->Temporary Internet Files folder emptied: 0 bytes

      User: PC
      ->Temp folder emptied: 11311520 bytes
      ->Temporary Internet Files folder emptied: 1694548 bytes
      ->Google Chrome cache emptied: 280156179 bytes
      ->Flash cache emptied: 470 bytes

      User: Public

      %systemdrive% .tmp files removed: 0 bytes
      %systemroot% .tmp files removed: 0 bytes
      %systemroot%\System32 .tmp files removed: 0 bytes
      %systemroot%\System32 (64bit) .tmp files removed: 0 bytes
      %systemroot%\System32\drivers .tmp files removed: 0 bytes
      Windows Temp folder emptied: 8283 bytes
      %systemroot%\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 88550 bytes
      %systemroot%\sysnative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 918723 bytes
      RecycleBin emptied: 36813050 bytes

      Total Files Cleaned = 316,00 mb


      OTL by OldTimer - Version 3.2.69.0 log created on 01292013_151952

      Files\Folders moved on Reboot...
      C:\Users\PC\AppData\Roaming\mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384}\[email protected] folder moved successfully.
      C:\Users\PC\AppData\Roaming\mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384} folder moved successfully.
      C:\Users\PC\AppData\Roaming\mozilla\Extensions folder moved successfully.
      C:\Users\PC\AppData\Local\Temp\FXSAPIDebugLogFile.txt moved successfully.
      File move failed. C:\Windows\temp\_avast_\Webshlock.txt scheduled to be moved on reboot.

      PendingFileRenameOperations files...

      Registry entries deleted on Reboot...

    10. #10
      Usuario Avatar de beatriz_n
      Registrado
      ene 2013
      Ubicación
      argentina
      Mensajes
      6

      Re: Virus 22find

      perdon, me olvide pasar OTL al escritorio. Este es el informe:
      All processes killed
      ========== OTL ==========
      HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope| /E : value set successfully!
      64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}\ not found.
      64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}\ not found.
      Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}\ not found.
      Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}\ not found.
      HKU\S-1-5-21-2277349358-986273503-2746953306-1000\SOFTWARE\Microsoft\Internet Explorer\Main\\Search Bar| /E : value set successfully!
      Registry value HKEY_CURRENT_USER\software\mozilla\Firefox\Extensions\\{b64982b1-d112-42b5-b1e4-d3867c4533f8} not found.
      Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{b64982b1-d112-42b5-b1e4-d3867c4533f8}\ not found.
      File C:\ProgramData\Browser Manager\2.3.787.43\{16cdff19-861d-48e3-a751-d99a27784753}\FirefoxExtension not found.
      Folder C:\Users\PC\AppData\Roaming\mozilla\Extensions\ not found.
      Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{58124A0B-DC32-4180-9BFF-E0E21AE34026}\ not found.
      Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{58124A0B-DC32-4180-9BFF-E0E21AE34026}\ not found.
      Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5C255C8A-E604-49b4-9D64-90988571CECB}\ not found.
      Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{5C255C8A-E604-49b4-9D64-90988571CECB}\ not found.
      64bit-Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\10 not found.
      Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{977AE9CC-AF83-45E8-9E03-E2798216E2D5} not found.
      Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{977AE9CC-AF83-45E8-9E03-E2798216E2D5}\ not found.
      Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{98889811-442D-49dd-99D7-DC866BE87DBC} not found.
      Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{98889811-442D-49dd-99D7-DC866BE87DBC}\ not found.
      Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\10 not found.
      Registry value HKEY_USERS\S-1-5-21-2277349358-986273503-2746953306-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{977AE9CC-AF83-45E8-9E03-E2798216E2D5} not found.
      Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{977AE9CC-AF83-45E8-9E03-E2798216E2D5}\ not found.
      64bit-Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows\\AppInit_Dlls:c:\progra~3\browse~1\23787~1.43\{16cdf~1\browse~1.dll deleted successfully.
      Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows\\AppInit_Dlls:c:\progra~3\browse~1\23787~1.43\{16cdf~1\browse~1.dll deleted successfully.
      Folder C:\Program Files (x86)\Common Files\337\ not found.
      Folder C:\Program Files (x86)\Desk 365\ not found.
      Folder C:\Users\PC\AppData\Roaming\Desk 365\ not found.
      Folder C:\Program Files (x86)\Perion\ not found.
      Folder C:\Users\PC\AppData\Roaming\PerformerSoft\ not found.
      Folder C:\ProgramData\IBUpdaterService\ not found.
      Folder C:\Program Files (x86)\File Scout\ not found.
      ========== FILES ==========
      File\Folder C:\ProgramData\Browser Manager not found.
      File\Folder C:\Program Files (x86)\IMinent Toolbar not found.
      < ipconfig /flushdns /c >
      Configuraci¢n IP de Windows
      Se vaci¢ correctamente la cach‚ de resoluci¢n de DNS.
      C:\Users\PC\Desktop\cmd.bat deleted successfully.
      C:\Users\PC\Desktop\cmd.txt deleted successfully.
      ========== COMMANDS ==========

      [EMPTYTEMP]

      User: All Users

      User: Default
      ->Temp folder emptied: 0 bytes
      ->Temporary Internet Files folder emptied: 0 bytes

      User: Default User
      ->Temp folder emptied: 0 bytes
      ->Temporary Internet Files folder emptied: 0 bytes

      User: PC
      ->Temp folder emptied: 30696 bytes
      ->Temporary Internet Files folder emptied: 33170 bytes
      ->Google Chrome cache emptied: 6677583 bytes
      ->Flash cache emptied: 0 bytes

      User: Public

      %systemdrive% .tmp files removed: 0 bytes
      %systemroot% .tmp files removed: 0 bytes
      %systemroot%\System32 .tmp files removed: 0 bytes
      %systemroot%\System32 (64bit) .tmp files removed: 0 bytes
      %systemroot%\System32\drivers .tmp files removed: 0 bytes
      Windows Temp folder emptied: 0 bytes
      %systemroot%\sysnative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 0 bytes
      RecycleBin emptied: 0 bytes

      Total Files Cleaned = 6,00 mb


      OTL by OldTimer - Version 3.2.69.0 log created on 01292013_152534

      Files\Folders moved on Reboot...
      C:\Users\PC\AppData\Local\Temp\FXSAPIDebugLogFile.txt moved successfully.
      File move failed. C:\Windows\temp\_avast_\Webshlock.txt scheduled to be moved on reboot.

      PendingFileRenameOperations files...

      Registry entries deleted on Reboot...

    Página 1 de 2 12 ÚltimoÚltimo