• Registrarse
  • Iniciar sesión


  • Resultados 1 al 6 de 6

    Virus desconocido en el Chrome

    Hola a todos, les escribo porque tengo un problema con el Chrome hace ya unos meses comenzo a fallar, si se puede decir asi, porque no podia ver los videos de youtube ni cualquier pagina ...

    1. #1
      Usuario Avatar de Sky Byte
      Registrado
      ene 2013
      Mensajes
      3

      Virus desconocido en el Chrome

      Hola a todos, les escribo porque tengo un problema con el Chrome hace ya unos meses comenzo a fallar, si se puede decir asi, porque no podia ver los videos de youtube ni cualquier pagina de videos, me pedia a fuerza el flash player pero aunke lo instalara me lo seguia pidiendo, cosa que se me hacia raro, asi que trate de verlos con safari y se veian muy bn por lo que decidi desintarlarlo primero y luego volverlo a instalar, una vez hecho esto me volvi a meter a youtube y me pidio que intalara el flash player asi que lo hice y ia todo funciono, pero con una peculiaridad, algunas veces en la que hago click me manda a adf.ly.com no importa si le digo que me lo abra en otra ventana, pestaña o en la misma pestaña a veces me manda a esa pagina pero me manda como si el link estuviera protegido. Y eso no es lo peor porque hace como 15 dias trate de visitar la pagina oficial de la Formula 1 pero no podia entrar, no pasaba del titulo asi que decidi probar con Safari de nuevo y todo esta bien asi que trate de probar con otrar paginas que requieren el uso de Java pero ni una me funciona en Chrome. Hasta le instale de neuvo el java pero aun asi nada de nada, y corri ya el malwarebytes y no me soluciona el probelma del chrome que puedo hacer, estaria muy agradecido si alguien pudiera ayudarme. De antemano muchas gracias a todos.

    2. #2
      Moderador.
      Avatar de @Tincho
      Registrado
      may 2008
      Ubicación
      Argentina
      Mensajes
      14.701

      Re: Virus desconocido en el Chrome

      Buenas


      Es importante que leas con atención el siguiente procedimiento:


      Descarga la herramienta ComboFix.exe y guárdala en el escritorio.

      • Desactiva temporalmente el Antivirus y/o Antispyware.
      • Cierra todas las ventanas abiertas y programas
      • Hacele doble clic al archivo ComboFix.exe y seguí las instrucciones. Si pide actualizar "Update" aceptas.
        • *Nota* Mientras CF este trabajando no mover el mouse ya que pararía su proceso.
        • *Nota* ComboFix puede reiniciar automáticamente el PC para completar el proceso de eliminación, de no ser así lo reinicias manualmente.
        • Al finalizar el trabajo Comobofix generara un registro en C:\ComboFix.txt.



      Atención!! No use ComboFix a menos que se le haya indicado específicamente en su mensaje por un integrante de nuestro Staff. Es una herramienta de gran alcance destinada por su creador a ser usada bajo la orientación y supervisión de un experto, no para uso privado. El uso de ComboFix incorrectamente podría generar problemas en su sistema. Por favor, lea las "Negaciones de la Garantía" de ComboFix.


      En tu Próxima respuesta necesitamos la siguiente Información



      • El reporte de Combofix que se encuentra en C:\ComboFix.txt lo pegas en este mismo tema.
      • Comentar como esta funcionado tu sistema en relacion al problema inicial.


      Saludos.
      Tyny's
      If on your journey, you should encounter God, God will be cut!

      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.

    3. #3
      Usuario Avatar de Sky Byte
      Registrado
      ene 2013
      Mensajes
      3

      Re: Virus desconocido en el Chrome

      Bueno primero mando la copia del reporte del combo fix


      ComboFix 13-03-07.02 - Starscream 03/07/2013 9:58.4.4 - x64
      Microsoft Windows 7 Home Premium 6.1.7601.1.1252.1.1033.18.6051.3764 [GMT -6:00]
      Running from: c:\users\Starscream\Desktop\ComboFix.exe
      AV: avast! Antivirus *Disabled/Updated* {2B2D1395-420B-D5C9-657E-930FE358FC3C}
      SP: avast! Antivirus *Disabled/Updated* {904CF271-6431-DA47-5FCE-A87D98DFB681}
      SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
      .
      .
      ((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
      .
      .
      ---- Previous Run -------
      .
      c:\programdata\SPL36BB.tmp
      c:\programdata\SPL4014.tmp
      c:\programdata\SPL761.tmp
      .
      .
      ((((((((((((((((((((((((( Files Created from 2013-02-07 to 2013-03-07 )))))))))))))))))))))))))))))))
      .
      .
      2013-03-07 16:15 . 2013-03-07 16:15 -------- dc----w- c:\users\Public\AppData\Local\temp
      2013-03-07 16:15 . 2013-03-07 16:15 -------- dc----w- c:\users\Default\AppData\Local\temp
      2013-03-07 16:15 . 2013-03-07 16:15 -------- dc----w- c:\users\Administrator\AppData\Local\temp
      2013-03-07 14:21 . 2012-01-29 15:55 269272 -c--a-w- c:\program files (x86)\Mozilla Firefox\tobedeleted\mozB019.tmp
      2013-03-07 14:21 . 2013-03-07 14:21 74136 -c--a-w- c:\program files (x86)\Mozilla Firefox\breakpadinjector.dll
      2013-03-07 14:21 . 2013-03-07 14:21 2954136 -c--a-w- c:\program files (x86)\Mozilla Firefox\gkmedias.dll
      2013-03-07 14:21 . 2013-03-07 14:21 770384 -c--a-w- c:\program files (x86)\Mozilla Firefox\msvcr100.dll
      2013-03-07 14:21 . 2013-03-07 14:21 421200 -c--a-w- c:\program files (x86)\Mozilla Firefox\msvcp100.dll
      2013-03-07 14:21 . 2013-03-07 14:21 193576 -c--a-w- c:\program files (x86)\Mozilla Firefox\maintenanceservice_installer.exe
      2013-03-07 14:21 . 2013-03-07 14:21 131480 -c--a-w- c:\program files (x86)\Mozilla Firefox\mozglue.dll
      2013-03-07 14:21 . 2013-03-07 14:21 115608 -c--a-w- c:\program files (x86)\Mozilla Firefox\maintenanceservice.exe
      2013-03-07 14:21 . 2013-03-07 14:21 170232 -c--a-w- c:\program files (x86)\Mozilla Firefox\webapp-uninstaller.exe
      2013-03-07 14:21 . 2013-03-07 14:21 96664 -c--a-w- c:\program files (x86)\Mozilla Firefox\webapprt-stub.exe
      2013-03-07 02:43 . 2013-03-07 02:43 -------- dc----w- c:\program files\iPod
      2013-03-07 02:43 . 2013-03-07 02:44 -------- dc----w- c:\programdata\34BE82C4-E596-4e99-A191-52C6199EBF69
      2013-03-07 02:43 . 2013-03-07 02:44 -------- dc----w- c:\program files\iTunes
      2013-03-07 02:43 . 2013-03-07 02:44 -------- dc----w- c:\program files (x86)\iTunes
      2013-03-06 14:48 . 2013-03-06 14:48 95648 -c--a-w- c:\windows\SysWow64\WindowsAccessBridge-32.dll
      2013-03-05 14:44 . 2013-02-08 00:28 9162192 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{1E81768D-E1E1-4C6D-B35B-9730908A0386}\mpengine.dll
      2013-03-05 02:19 . 2013-02-28 08:36 177672 -c--a-w- c:\windows\system32\drivers\aswVmm.sys
      2013-03-05 02:19 . 2013-02-28 08:36 65408 -c--a-w- c:\windows\system32\drivers\aswRvrt.sys
      2013-02-15 22:31 . 2013-02-15 22:31 186432 -c--a-w- c:\program files (x86)\Internet Explorer\Plugins\nppdf32.dll
      2013-02-13 09:04 . 2013-02-13 09:04 996352 ----a-w- c:\program files\Common Files\Microsoft Shared\VGX\VGX.dll
      2013-02-13 09:04 . 2013-02-13 09:04 768000 ----a-w- c:\program files (x86)\Common Files\Microsoft Shared\VGX\VGX.dll
      2013-02-13 05:42 . 2013-02-13 09:13 5553512 ----a-w- c:\windows\system32\ntoskrnl.exe
      2013-02-13 05:42 . 2013-02-13 09:13 3967848 ----a-w- c:\windows\SysWow64\ntkrnlpa.exe
      2013-02-13 05:42 . 2013-02-13 09:13 3913064 ----a-w- c:\windows\SysWow64\ntoskrnl.exe
      2013-02-13 05:42 . 2013-02-13 09:12 3153408 ----a-w- c:\windows\system32\win32k.sys
      2013-02-13 05:42 . 2013-02-13 09:03 215040 ----a-w- c:\windows\system32\winsrv.dll
      2013-02-13 05:42 . 2013-02-13 09:03 14336 ----a-w- c:\windows\SysWow64\ntvdm64.dll
      2013-02-13 05:42 . 2013-02-13 09:03 7680 ----a-w- c:\windows\SysWow64\instnm.exe
      2013-02-13 05:42 . 2013-02-13 09:03 5120 ----a-w- c:\windows\SysWow64\wow32.dll
      2013-02-13 05:42 . 2013-02-13 09:03 25600 ----a-w- c:\windows\SysWow64\setup16.exe
      2013-02-13 05:42 . 2013-02-13 09:03 2048 ----a-w- c:\windows\SysWow64\user.exe
      2013-02-13 05:42 . 2013-02-13 09:03 1913192 ----a-w- c:\windows\system32\drivers\tcpip.sys
      2013-02-13 05:42 . 2013-02-13 09:03 288088 ----a-w- c:\windows\system32\drivers\FWPKCLNT.SYS
      2013-02-08 04:38 . 2013-02-08 04:38 -------- dc----w- c:\program files (x86)\Ciel
      2013-02-08 04:12 . 2013-02-08 04:12 -------- dc----w- c:\users\Starscream\AppData\Roaming\Stellarium
      2013-02-08 04:12 . 2013-02-08 04:12 -------- dc----w- c:\users\Starscream\AppData\Local\stellarium
      2013-02-08 04:11 . 2013-02-08 04:11 -------- dc----w- c:\program files\Stellarium
      .
      .
      .
      (((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
      .
      2013-03-06 14:48 . 2012-06-23 12:14 861088 -c--a-w- c:\windows\SysWow64\npDeployJava1.dll
      2013-03-06 14:48 . 2011-04-07 02:52 782240 -c--a-w- c:\windows\SysWow64\deployJava1.dll
      2013-03-05 14:31 . 2012-06-23 09:48 1085344 -c--a-w- c:\windows\system32\npDeployJava1.dll
      2013-03-05 14:31 . 2011-09-18 05:45 963488 -c--a-w- c:\windows\system32\deployJava1.dll
      2013-03-01 03:24 . 2012-11-30 01:06 691568 -c--a-w- c:\windows\SysWow64\FlashPlayerApp.exe
      2013-03-01 03:24 . 2012-11-30 01:06 71024 -c--a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
      2013-02-28 08:36 . 2012-11-19 09:33 68992 -c--a-w- c:\windows\system32\drivers\aswTdi.sys
      2013-02-28 08:36 . 2012-11-19 09:33 377992 -c--a-w- c:\windows\system32\drivers\aswSP.sys
      2013-02-28 08:36 . 2012-11-19 09:33 71064 -c--a-w- c:\windows\system32\drivers\aswRdr2.sys
      2013-02-28 08:36 . 2012-11-19 09:33 1025880 -c--a-w- c:\windows\system32\drivers\aswSnx.sys
      2013-02-28 08:36 . 2012-11-19 09:33 80888 -c--a-w- c:\windows\system32\drivers\aswMonFlt.sys
      2013-02-28 08:36 . 2012-11-19 09:33 33472 -c--a-w- c:\windows\system32\drivers\aswFsBlk.sys
      2013-02-28 08:36 . 2012-11-19 09:32 41664 -c--a-w- c:\windows\avastSS.scr
      2013-02-28 08:35 . 2012-11-19 09:33 287840 -c--a-w- c:\windows\system32\aswBoot.exe
      2013-02-13 09:08 . 2011-09-18 16:53 70004024 -c--a-w- c:\windows\system32\MRT.exe
      2013-02-13 09:03 . 2013-02-13 05:42 44032 ----a-w- c:\windows\apppatch\acwow64.dll
      2013-01-17 07:28 . 2010-11-21 03:27 273840 -c----w- c:\windows\system32\MpSigStub.exe
      2013-01-09 08:46 . 2013-01-08 23:24 750592 ----a-w- c:\windows\system32\win32spl.dll
      2013-01-09 08:46 . 2013-01-08 23:24 492032 ----a-w- c:\windows\SysWow64\win32spl.dll
      2013-01-09 08:37 . 2013-01-08 23:24 2002432 ----a-w- c:\windows\system32\msxml6.dll
      2013-01-09 08:37 . 2013-01-08 23:24 1882624 ----a-w- c:\windows\system32\msxml3.dll
      2013-01-09 08:37 . 2013-01-08 23:24 1389568 ----a-w- c:\windows\SysWow64\msxml6.dll
      2013-01-09 08:37 . 2013-01-08 23:24 1236992 ----a-w- c:\windows\SysWow64\msxml3.dll
      2013-01-09 08:36 . 2013-01-08 23:24 307200 ----a-w- c:\windows\system32\ncrypt.dll
      2013-01-09 08:36 . 2013-01-08 23:24 220160 ----a-w- c:\windows\SysWow64\ncrypt.dll
      2013-01-09 08:36 . 2013-01-08 23:24 800768 ----a-w- c:\windows\system32\usp10.dll
      2013-01-09 08:36 . 2013-01-08 23:24 626688 ----a-w- c:\windows\SysWow64\usp10.dll
      2013-01-09 08:36 . 2013-01-08 23:24 45568 ----a-w- c:\windows\SysWow64\oflc-nz.rs
      2013-01-09 08:36 . 2013-01-08 23:24 45568 ----a-w- c:\windows\system32\oflc-nz.rs
      2013-01-09 08:36 . 2013-01-08 23:24 43520 ----a-w- c:\windows\system32\csrr.rs
      2013-01-09 08:36 . 2013-01-08 23:24 46592 ----a-w- c:\windows\SysWow64\fpb.rs
      2013-01-09 08:36 . 2013-01-08 23:24 46592 ----a-w- c:\windows\system32\fpb.rs
      2013-01-09 08:36 . 2013-01-08 23:24 44544 ----a-w- c:\windows\SysWow64\pegibbfc.rs
      2013-01-09 08:36 . 2013-01-08 23:24 44544 ----a-w- c:\windows\system32\pegibbfc.rs
      2013-01-09 08:36 . 2013-01-08 23:24 43520 ----a-w- c:\windows\SysWow64\csrr.rs
      2013-01-09 08:36 . 2013-01-08 23:24 40960 ----a-w- c:\windows\SysWow64\cob-au.rs
      2013-01-09 08:36 . 2013-01-08 23:24 40960 ----a-w- c:\windows\system32\cob-au.rs
      2013-01-09 08:36 . 2013-01-08 23:24 30720 ----a-w- c:\windows\SysWow64\usk.rs
      2013-01-09 08:36 . 2013-01-08 23:24 30720 ----a-w- c:\windows\system32\usk.rs
      2013-01-09 08:36 . 2013-01-08 23:24 441856 ----a-w- c:\windows\system32\Wpc.dll
      2013-01-09 08:36 . 2013-01-08 23:24 21504 ----a-w- c:\windows\SysWow64\grb.rs
      2013-01-09 08:36 . 2013-01-08 23:24 21504 ----a-w- c:\windows\system32\grb.rs
      2013-01-09 08:36 . 2013-01-08 23:24 20480 ----a-w- c:\windows\SysWow64\pegi.rs
      2013-01-09 08:36 . 2013-01-08 23:24 20480 ----a-w- c:\windows\SysWow64\pegi-pt.rs
      2013-01-09 08:36 . 2013-01-08 23:24 20480 ----a-w- c:\windows\system32\pegi.rs
      2013-01-09 08:36 . 2013-01-08 23:24 20480 ----a-w- c:\windows\system32\pegi-pt.rs
      2013-01-09 08:36 . 2013-01-08 23:24 15360 ----a-w- c:\windows\SysWow64\djctq.rs
      2013-01-09 08:36 . 2013-01-08 23:24 15360 ----a-w- c:\windows\system32\djctq.rs
      2013-01-09 08:36 . 2013-01-08 23:24 308736 ----a-w- c:\windows\SysWow64\Wpc.dll
      2013-01-09 08:36 . 2013-01-08 23:24 2746368 ----a-w- c:\windows\system32\gameux.dll
      2013-01-09 08:36 . 2013-01-08 23:24 2576384 ----a-w- c:\windows\SysWow64\gameux.dll
      2013-01-09 08:36 . 2013-01-08 23:24 51712 ----a-w- c:\windows\SysWow64\esrb.rs
      2013-01-09 08:36 . 2013-01-08 23:24 51712 ----a-w- c:\windows\system32\esrb.rs
      2013-01-09 08:36 . 2013-01-08 23:24 55296 ----a-w- c:\windows\SysWow64\cero.rs
      2013-01-09 08:36 . 2013-01-08 23:24 55296 ----a-w- c:\windows\system32\cero.rs
      2013-01-09 08:36 . 2013-01-08 23:24 23552 ----a-w- c:\windows\SysWow64\oflc.rs
      2013-01-09 08:36 . 2013-01-08 23:24 23552 ----a-w- c:\windows\system32\oflc.rs
      2013-01-09 08:36 . 2013-01-08 23:24 20480 ----a-w- c:\windows\SysWow64\pegi-fi.rs
      2013-01-09 08:36 . 2013-01-08 23:24 20480 ----a-w- c:\windows\system32\pegi-fi.rs
      2013-01-09 08:35 . 2013-01-08 23:23 424448 ----a-w- c:\windows\system32\KernelBase.dll
      2013-01-09 08:35 . 2013-01-08 23:23 274944 ----a-w- c:\windows\SysWow64\KernelBase.dll
      2013-01-09 08:35 . 2013-01-08 23:23 1161216 ----a-w- c:\windows\system32\kernel32.dll
      2013-01-09 08:35 . 2013-01-08 23:23 362496 ----a-w- c:\windows\system32\wow64win.dll
      2013-01-09 08:35 . 2013-01-08 23:23 338432 ----a-w- c:\windows\system32\conhost.exe
      2013-01-09 08:35 . 2013-01-08 23:23 243200 ----a-w- c:\windows\system32\wow64.dll
      2013-01-09 08:35 . 2013-01-08 23:23 16384 ----a-w- c:\windows\system32\ntvdm64.dll
      2013-01-09 08:35 . 2013-01-08 23:23 13312 ----a-w- c:\windows\system32\wow64cpu.dll
      2013-01-09 08:35 . 2013-01-08 23:23 4096 ---ha-w- c:\windows\SysWow64\api-ms-win-core-sysinfo-l1-1-0.dll
      2013-01-09 08:35 . 2013-01-08 23:23 3072 ---ha-w- c:\windows\SysWow64\api-ms-win-core-string-l1-1-0.dll
      2013-01-09 08:35 . 2013-01-08 23:23 4096 ---ha-w- c:\windows\SysWow64\api-ms-win-core-misc-l1-1-0.dll
      2013-01-09 08:35 . 2013-01-08 23:23 4096 ---ha-w- c:\windows\SysWow64\api-ms-win-core-localregistry-l1-1-0.dll
      2013-01-09 08:35 . 2013-01-08 23:23 3584 ---ha-w- c:\windows\SysWow64\api-ms-win-core-processenvironment-l1-1-0.dll
      2013-01-09 08:35 . 2013-01-08 23:23 3584 ---ha-w- c:\windows\SysWow64\api-ms-win-core-namedpipe-l1-1-0.dll
      2013-01-09 08:35 . 2013-01-08 23:23 3584 ---ha-w- c:\windows\SysWow64\api-ms-win-core-libraryloader-l1-1-0.dll
      2013-01-09 08:35 . 2013-01-08 23:23 3072 ---ha-w- c:\windows\SysWow64\api-ms-win-core-profile-l1-1-0.dll
      2013-01-09 08:35 . 2013-01-08 23:23 3072 ---ha-w- c:\windows\SysWow64\api-ms-win-core-io-l1-1-0.dll
      2013-01-09 08:35 . 2013-01-08 23:23 3584 ---ha-w- c:\windows\SysWow64\api-ms-win-core-heap-l1-1-0.dll
      2013-01-09 08:35 . 2013-01-08 23:23 3072 ---ha-w- c:\windows\SysWow64\api-ms-win-core-handle-l1-1-0.dll
      2013-01-09 08:35 . 2013-01-08 23:23 3584 ---ha-w- c:\windows\SysWow64\api-ms-win-core-xstate-l1-1-0.dll
      2013-01-09 08:35 . 2013-01-08 23:23 3072 ---ha-w- c:\windows\SysWow64\api-ms-win-core-datetime-l1-1-0.dll
      2013-01-09 08:35 . 2013-01-08 23:23 4608 ---ha-w- c:\windows\SysWow64\api-ms-win-core-threadpool-l1-1-0.dll
      2013-01-09 08:35 . 2013-01-08 23:23 4096 ---ha-w- c:\windows\SysWow64\api-ms-win-core-localization-l1-1-0.dll
      2013-01-09 08:35 . 2013-01-08 23:23 3072 ---ha-w- c:\windows\SysWow64\api-ms-win-core-console-l1-1-0.dll
      2013-01-09 08:35 . 2013-01-08 23:23 5120 ---ha-w- c:\windows\SysWow64\api-ms-win-core-file-l1-1-0.dll
      2013-01-09 08:35 . 2013-01-08 23:23 5120 ---ha-w- c:\windows\system32\api-ms-win-core-file-l1-1-0.dll
      2013-01-09 08:35 . 2013-01-08 23:23 3072 ---ha-w- c:\windows\SysWow64\api-ms-win-core-errorhandling-l1-1-0.dll
      2013-01-09 08:35 . 2013-01-08 23:23 3072 ---ha-w- c:\windows\system32\api-ms-win-core-string-l1-1-0.dll
      2013-01-09 08:35 . 2013-01-08 23:23 6144 ---ha-w- c:\windows\system32\api-ms-win-security-base-l1-1-0.dll
      2013-01-09 08:35 . 2013-01-08 23:23 4608 ---ha-w- c:\windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
      2013-01-09 08:35 . 2013-01-08 23:23 4096 ---ha-w- c:\windows\SysWow64\api-ms-win-core-synch-l1-1-0.dll
      2013-01-09 08:35 . 2013-01-08 23:23 4096 ---ha-w- c:\windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
      2013-01-09 08:35 . 2013-01-08 23:23 4096 ---ha-w- c:\windows\system32\api-ms-win-core-synch-l1-1-0.dll
      2013-01-09 08:35 . 2013-01-08 23:23 3584 ---ha-w- c:\windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
      2013-01-09 08:35 . 2013-01-08 23:23 3072 ---ha-w- c:\windows\SysWow64\api-ms-win-core-delayload-l1-1-0.dll
      2013-01-09 08:35 . 2013-01-08 23:23 3072 ---ha-w- c:\windows\system32\api-ms-win-core-xstate-l1-1-0.dll
      2013-01-09 08:35 . 2013-01-08 23:23 3072 ---ha-w- c:\windows\system32\api-ms-win-core-util-l1-1-0.dll
      2013-01-09 08:35 . 2013-01-08 23:23 3072 ---ha-w- c:\windows\system32\api-ms-win-core-profile-l1-1-0.dll
      2013-01-09 08:35 . 2013-01-08 23:23 3072 ---ha-w- c:\windows\system32\api-ms-win-core-delayload-l1-1-0.dll
      2013-01-09 08:35 . 2013-01-08 23:23 4608 ---ha-w- c:\windows\SysWow64\api-ms-win-core-processthreads-l1-1-0.dll
      2013-01-09 08:35 . 2013-01-08 23:23 4608 ---ha-w- c:\windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
      .
      .
      ((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
      .
      .
      *Note* empty entries & legit default entries are not shown
      REGEDIT4
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\~\Browser Helper Objects\{991D97B8-F0D8-4EA1-9100-7A65EA2D3A63}]
      2012-08-28 06:53 84840 -c--a-w- c:\users\Starscream\AppData\Roaming\SenselessTV\bho.dll
      .
      [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
      "Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2010-11-21 1475584]
      "Facebook Update"="c:\users\Starscream\AppData\Local\Facebook\Update\FacebookUpdate.exe" [2012-09-08 138096]
      "Spotify Web Helper"="c:\users\Starscream\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe" [2012-11-05 1199576]
      "DAEMON Tools Lite"="c:\program files (x86)\DAEMON Tools Lite\DTLite.exe" [2011-11-10 3514176]
      "GoogleChromeAutoLaunch_4725A66862EB80C1BF33AD8552F6442E"="c:\program files (x86)\Google\Chrome\Application\chrome.exe" [2013-02-28 1274832]
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
      "SVPWUTIL"="c:\program files (x86)\TOSHIBA\Utilities\SVPWUTIL.exe" [2010-11-09 532480]
      "HWSetup"="c:\program files\TOSHIBA\Utilities\HWSetup.exe" [2010-03-04 423936]
      "ToshibaAppPlace"="c:\program files (x86)\Toshiba\Toshiba App Place\ToshibaAppPlace.exe" [2010-09-23 552960]
      "NortonOnlineBackupReminder"="c:\program files (x86)\Toshiba\Toshiba Online Backup\Activation\TOBuActivation.exe" [2010-08-17 3218792]
      "ToshibaServiceStation"="c:\program files (x86)\TOSHIBA\TOSHIBA Service Station\ToshibaServiceStation.exe" [2011-02-11 1295736]
      "KeNotify"="c:\program files (x86)\TOSHIBA\Utilities\KeNotify.exe" [2009-12-25 34160]
      "APSDaemon"="c:\program files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" [2013-01-28 59720]
      "Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2012-12-03 946352]
      "QuickTime Task"="c:\program files (x86)\QuickTime\QTTask.exe" [2012-10-25 421888]
      "avast"="c:\program files\AVAST Software\Avast\avastUI.exe" [2013-02-28 4767304]
      "DivXMediaServer"="c:\program files (x86)\DivX\DivX Media Server\DivXMediaServer.exe" [2012-11-13 450560]
      "DivXUpdate"="c:\program files (x86)\DivX\DivX Update\DivXUpdate.exe" [2012-11-30 1263512]
      "TkBellExe"="c:\program files (x86)\real\realplayer\Update\realsched.exe" [2013-02-03 295072]
      "iTunesHelper"="c:\program files (x86)\iTunes\iTunesHelper.exe" [2013-02-20 152392]
      .
      c:\users\Starscream\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
      OneNote 2010 Screen Clipper and Launcher.lnk - c:\program files (x86)\Microsoft Office\Office14\ONENOTEM.EXE [2010-12-21 227712]
      .
      [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
      "ConsentPromptBehaviorAdmin"= 5 (0x5)
      "ConsentPromptBehaviorUser"= 3 (0x3)
      "EnableUIADesktopToggle"= 0 (0x0)
      .
      [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32]
      "aux"=wdmaud.drv
      .
      [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\run-]
      "QuickTime Task"="c:\program files (x86)\QuickTime\QTTask.exe" -atboottime
      "iTunesHelper"="c:\program files (x86)\iTunes\iTunesHelper.exe"
      "DivXUpdate"="c:\program files (x86)\DivX\DivX Update\DivXUpdate.exe" /CHECKNOW
      "KeNotify"="c:\program files (x86)\TOSHIBA\Utilities\KeNotify.exe" LPCM
      "Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
      "TkBellExe"="c:\program files (x86)\Real\RealPlayer\Update\realsched.exe" -osboot
      "SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe"
      "APSDaemon"="c:\program files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
      "FaxCenterServer"="c:\program files (x86)\Dell PC Fax\fm3032.exe" /s
      "Bonus.SSR.FR11"="c:\program files (x86)\ABBYY FineReader 11\Bonus.ScreenshotReader.exe" /autorun
      .
      R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
      R2 Freemake Improver;Freemake Improver;c:\programdata\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe [2012-06-06 100864]
      R2 MBAMScheduler;MBAMScheduler;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [2012-12-14 398184]
      R2 MBAMService;MBAMService;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2012-12-14 682344]
      R2 Skype C2C Service;Skype C2C Service;c:\programdata\Skype\Toolbars\Skype C2C Service\c2c_service.exe [2013-01-31 3289208]
      R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe [2012-11-09 160944]
      R3 BBSvc;Bing Bar Update Service;c:\program files (x86)\Microsoft\BingBar\BBSvc.EXE [2011-04-01 183560]
      R3 dc3d;MS Hardware Device Detection Driver;c:\windows\system32\DRIVERS\dc3d.sys [2012-09-29 75928]
      R3 GamesAppService;GamesAppService;c:\program files (x86)\WildTangent Games\App\GamesAppService.exe [2010-10-12 206072]
      R3 JMCR;JMCR;c:\windows\system32\DRIVERS\jmcr.sys [2011-05-26 174680]
      R3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [2012-12-14 24176]
      R3 MyWiFiDHCPDNS;Wireless PAN DHCP Server;c:\program files\Intel\WiFi\bin\PanDhcpDns.exe [2011-01-05 340240]
      R3 Point64;Microsoft Mouse and Keyboard Center Filter Driver;c:\windows\system32\DRIVERS\point64.sys [2012-11-02 50856]
      R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys [2012-12-16 19456]
      R3 s1018bus;Sony Ericsson Device 1018 driver (WDM);c:\windows\system32\DRIVERS\s1018bus.sys [2009-03-25 113704]
      R3 s1018mdfl;Sony Ericsson Device 1018 USB WMC Modem Filter;c:\windows\system32\DRIVERS\s1018mdfl.sys [2009-03-25 19496]
      R3 s1018mdm;Sony Ericsson Device 1018 USB WMC Modem Driver;c:\windows\system32\DRIVERS\s1018mdm.sys [2009-03-25 153128]
      R3 s1018mgmt;Sony Ericsson Device 1018 USB WMC Device Management Drivers (WDM);c:\windows\system32\DRIVERS\s1018mgmt.sys [2009-03-25 133160]
      R3 s1018nd5;Sony Ericsson Device 1018 USB Ethernet Emulation (NDIS);c:\windows\system32\DRIVERS\s1018nd5.sys [2009-03-25 34856]
      R3 s1018obex;Sony Ericsson Device 1018 USB WMC OBEX Interface;c:\windows\system32\DRIVERS\s1018obex.sys [2009-03-25 128552]
      R3 s1018unic;Sony Ericsson Device 1018 USB Ethernet Emulation (WDM);c:\windows\system32\DRIVERS\s1018unic.sys [2009-03-25 146472]
      R3 Sony PC Companion;Sony PC Companion;c:\program files (x86)\Sony\Sony PC Companion\PCCService.exe [2012-01-18 155320]
      R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2012-12-16 57856]
      R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys [2012-08-23 30208]
      R3 WatAdminSvc;Windows Activation Technologies Service;c:\windows\system32\Wat\WatAdminSvc.exe [2011-09-18 1255736]
      R4 wlcrasvc;Windows Live Mesh remote connections service;c:\program files\Windows Live\Mesh\wlcrasvc.exe [2010-09-22 57184]
      S0 aswRvrt;aswRvrt; [x]
      S0 aswVmm;aswVmm; [x]
      S0 sptd;sptd;c:\windows\\SystemRoot\System32\Drivers\sptd.sys [x]
      S0 Thpdrv;TOSHIBA HDD Protection Driver;c:\windows\system32\DRIVERS\thpdrv.sys [2009-06-29 34880]
      S0 Thpevm;TOSHIBA HDD Protection - Shock Sensor Driver;c:\windows\system32\DRIVERS\Thpevm.SYS [2009-06-29 14784]
      S0 tos_sps64;TOSHIBA tos_sps64 Service;c:\windows\system32\DRIVERS\tos_sps64.sys [2011-03-04 482384]
      S1 aswSnx;aswSnx; [x]
      S1 aswSP;aswSP; [x]
      S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys [2012-12-27 279616]
      S2 ABBYY.Licensing.FineReader.Corporate.11.0;ABBYY FineReader 11 CE Licensing Service;c:\program files (x86)\Common Files\ABBYY\FineReader\11.00\Licensing\CE\NetworkLicenseServer.exe [2011-12-23 818952]
      S2 aswFsBlk;aswFsBlk; [x]
      S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys [2013-02-28 80888]
      S2 RealNetworks Downloader Resolver Service;RealNetworks Downloader Resolver Service;c:\program files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe [2012-11-30 38608]
      S2 TOSHIBA eco Utility Service;TOSHIBA eco Utility Service;c:\program files\TOSHIBA\TECO\TecoService.exe [2010-12-08 267192]
      S2 TVALZFL;TOSHIBA ACPI-Based Value Added Logical and General Purpose Device Filter Driver;c:\windows\system32\DRIVERS\TVALZFL.sys [2009-06-20 14472]
      S2 UNS;Intel(R) Management and Security Application User Notification Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2011-02-01 2656280]
      S3 IntcDAud;Intel(R) Display Audio;c:\windows\system32\DRIVERS\IntcDAud.sys [2010-10-15 317440]
      S3 nusb3hub;Renesas Electronics USB 3.0 Hub Driver;c:\windows\system32\DRIVERS\nusb3hub.sys [2011-02-10 82432]
      S3 nusb3xhc;Renesas Electronics USB 3.0 Host Controller Driver;c:\windows\system32\DRIVERS\nusb3xhc.sys [2011-02-10 181760]
      S3 PGEffect;Pangu effect driver;c:\windows\system32\DRIVERS\pgeffect.sys [2011-02-09 38096]
      S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys [2011-06-10 539240]
      S3 TMachInfo;TMachInfo;c:\program files (x86)\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe [2011-02-11 54136]
      S3 TOSHIBA HDD SSD Alert Service;TOSHIBA HDD SSD Alert Service;c:\program files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSmartSrv.exe [2010-12-08 137632]
      S3 TPCHSrv;TPCH Service;c:\program files\TOSHIBA\TPHM\TPCHSrv.exe [2010-12-21 822704]
      S3 wdkmd;Intel WiDi KMD;c:\windows\system32\DRIVERS\WDKMD.sys [2010-12-25 42392]
      .
      .
      [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
      2013-03-06 06:23 1630672 -c--a-w- c:\program files (x86)\Google\Chrome\Application\25.0.1364.152\Installer\chrmstp.exe
      .
      Contents of the 'Scheduled Tasks' folder
      .
      2013-03-07 c:\windows\Tasks\Adobe Flash Player Updater.job
      - c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-11-30 03:24]
      .
      2013-03-07 c:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1182960227-54336049-2099137094-1000Core.job
      - c:\users\Starscream\AppData\Local\Facebook\Update\FacebookUpdate.exe [2012-06-26 22:48]
      .
      2013-03-07 c:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1182960227-54336049-2099137094-1000UA.job
      - c:\users\Starscream\AppData\Local\Facebook\Update\FacebookUpdate.exe [2012-06-26 22:48]
      .
      2013-03-07 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
      - c:\program files (x86)\Google\Update\GoogleUpdate.exe [2012-12-16 06:13]
      .
      2013-03-07 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
      - c:\program files (x86)\Google\Update\GoogleUpdate.exe [2012-12-16 06:13]
      .
      .
      --------- X64 Entries -----------
      .
      .
      [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
      @="{472083B0-C522-11CF-8763-00608CC02F24}"
      [HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
      2013-02-28 08:35 133840 -c--a-w- c:\program files\AVAST Software\Avast\ashShA64.dll
      .
      [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveBlacklistedOverlay]
      @="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42}"
      [HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42}]
      2012-12-18 01:50 755816 -c--a-w- c:\program files (x86)\Google\Drive\googledrivesync64.dll
      .
      [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSharedOverlay]
      @="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D43}"
      [HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D43}]
      2012-12-18 01:50 755816 -c--a-w- c:\program files (x86)\Google\Drive\googledrivesync64.dll
      .
      [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSyncedOverlay]
      @="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40}"
      [HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40}]
      2012-12-18 01:50 755816 -c--a-w- c:\program files (x86)\Google\Drive\googledrivesync64.dll
      .
      [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSyncingOverlay]
      @="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41}"
      [HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41}]
      2012-12-18 01:50 755816 -c--a-w- c:\program files (x86)\Google\Drive\googledrivesync64.dll
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
      "ThpSrv"="c:\windows\system32\thpsrv" [X]
      "IgfxTray"="c:\windows\system32\igfxtray.exe" [2011-04-08 167256]
      "Persistence"="c:\windows\system32\igfxpers.exe" [2011-04-08 418136]
      "RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RAVCpl64.exe" [2011-01-26 11775592]
      "RtHDVBg"="c:\program files\Realtek\Audio\HDA\RAVBg64.exe" [2011-01-18 2188904]
      "SynTPEnh"="c:\program files (x86)\Synaptics\SynTP\SynTPEnh.exe" [BU]
      "Teco"="c:\program files (x86)\TOSHIBA\TECO\Teco.exe" [BU]
      "IntelWireless"="c:\program files\Common Files\Intel\WirelessCommon\iFrmewrk.exe" [2011-01-05 1933584]
      "TosSENotify"="c:\program files\TOSHIBA\TOSHIBA HDD SSD Alert\TosWaitSrv.exe" [2010-12-08 710040]
      "TosWaitSrv"="c:\program files (x86)\TOSHIBA\TPHM\TosWaitSrv.exe" [BU]
      "TosNC"="c:\program files (x86)\Toshiba\BulletinBoard\TosNcCore.exe" [BU]
      "TosReelTimeMonitor"="c:\program files (x86)\TOSHIBA\ReelTime\TosReelTimeMonitor.exe" [BU]
      "dlcqmon.exe"="c:\program files (x86)\Dell Photo AIO Printer 966\dlcqmon.exe" [2007-01-12 292336]
      "MemoryCardManager"="c:\program files (x86)\Dell Photo AIO Printer 966\memcard.exe" [2006-12-12 304008]
      "DLCQCATS"="c:\windows\system32\spool\DRIVERS\x64\3\DLCQtime.dll" [2006-10-16 31744]
      "TosVolRegulator"="c:\program files\TOSHIBA\TosVolRegulator\TosVolRegulator.exe" [2009-11-11 24376]
      "TPwrMain"="c:\program files (x86)\TOSHIBA\Power Saver\TPwrMain.EXE" [BU]
      "HSON"="c:\program files (x86)\TOSHIBA\TBS\HSON.exe" [BU]
      "TCrdMain"="c:\program files (x86)\TOSHIBA\FlashCards\TCrdMain.exe" [BU]
      "HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2011-04-08 391000]
      "IntelliType Pro"="c:\program files\Microsoft Mouse and Keyboard Center\itype.exe" [2012-11-02 1464944]
      "IntelliPoint"="c:\program files\Microsoft Mouse and Keyboard Center\ipoint.exe" [2012-11-02 2076272]
      .
      ------- Supplementary Scan -------
      .
      uLocal Page = c:\windows\system32\blank.htm
      uStart Page = hxxp://www.google.com.mx/
      uDefault_Search_URL = hxxp://mmwwx.com.ar/
      mLocal Page = c:\windows\SysWOW64\blank.htm
      uInternet Settings,ProxyOverride = <local>;*.local
      mSearchAssistant = hxxp://start.facemoods.com/?a=ddrnw&s={searchTerms}&f=4
      IE: E&xport to Microsoft Excel - c:\progra~2\MICROS~1\Office14\EXCEL.EXE/3000
      IE: E&xportar a Microsoft Excel - c:\progra~2\MICROS~1\Office12\EXCEL.EXE/3000
      IE: Free YouTube Download - c:\users\Starscream\AppData\Roaming\DVDVideoSoftIEHelpers\freeytvdownloader.htm
      IE: Free YouTube to MP3 Converter - c:\users\Starscream\AppData\Roaming\DVDVideoSoftIEHelpers\freeyoutubetomp3converter.htm
      IE: Google Sidewiki... - c:\program files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_7461B1589E8B4FB7.dll/cmsidewiki.html
      IE: Se&nd to OneNote - c:\progra~2\MICROS~1\Office14\ONBttnIE.dll/105
      TCP: DhcpNameServer = 192.168.254.205 132.248.204.1 132.248.10.2
      FF - ProfilePath - c:\users\Starscream\AppData\Roaming\Mozilla\Firefox\Profiles\l5v7v4gp.default\
      FF - prefs.js: browser.search.selectedEngine - Google
      FF - prefs.js: browser.startup.homepage - hxxp://search.babylon.com/home?affID=18173&tt=140612_dpl
      FF - prefs.js: keyword.URL - hxxp://search.babylon.com/?affID=18173&tt=140612_dpl&babsrc=KW_def&mntrId=82c2d1db0000000000008ca9829b8a77&q=
      FF - ExtSQL: 2013-02-03 12:22; {34712C68-7391-4c47-94F3-8F88D49AD632}; c:\programdata\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext
      FF - ExtSQL: !HIDDEN! 2012-12-23 19:34; [email protected]; c:\users\Starscream\AppData\Roaming\SenselessTV\ffextension
      FF - user.js: network.http.max-persistent-connections-per-server - 4
      FF - user.js: nglayout.initialpaint.delay - 600
      FF - user.js: content.notify.interval - 600000
      FF - user.js: content.max.tokenizing.time - 1800000
      FF - user.js: content.switch.threshold - 600000
      .
      - - - - ORPHANS REMOVED - - - -
      .
      Toolbar-Locked - (no file)
      AddRemove-GeoGebra 4 - c:\windows\system32\javaws.exe
      .
      .
      .
      --------------------- LOCKED REGISTRY KEYS ---------------------
      .
      [HKEY_USERS\S-1-5-21-1182960227-54336049-2099137094-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.download\UserChoice]
      @Denied: (2) (S-1-5-21-1182960227-54336049-2099137094-1000)
      @Denied: (2) (LocalSystem)
      "Progid"="SafariDownload"
      .
      [HKEY_USERS\S-1-5-21-1182960227-54336049-2099137094-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.eml\UserChoice]
      @Denied: (2) (LocalSystem)
      "Progid"="WindowsLiveMail.Email.1"
      .
      [HKEY_USERS\S-1-5-21-1182960227-54336049-2099137094-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.htm\UserChoice]
      @Denied: (2) (S-1-5-21-1182960227-54336049-2099137094-1000)
      @Denied: (2) (LocalSystem)
      "Progid"="ChromeHTML"
      .
      [HKEY_USERS\S-1-5-21-1182960227-54336049-2099137094-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.html\UserChoice]
      @Denied: (2) (S-1-5-21-1182960227-54336049-2099137094-1000)
      @Denied: (2) (LocalSystem)
      "Progid"="ChromeHTML"
      .
      [HKEY_USERS\S-1-5-21-1182960227-54336049-2099137094-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.safariextz\UserChoice]
      @Denied: (2) (S-1-5-21-1182960227-54336049-2099137094-1000)
      @Denied: (2) (LocalSystem)
      "Progid"="SafariExtension"
      .
      [HKEY_USERS\S-1-5-21-1182960227-54336049-2099137094-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.shtml\UserChoice]
      @Denied: (2) (S-1-5-21-1182960227-54336049-2099137094-1000)
      @Denied: (2) (LocalSystem)
      "Progid"="ChromeHTML"
      .
      [HKEY_USERS\S-1-5-21-1182960227-54336049-2099137094-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.svg\UserChoice]
      @Denied: (2) (S-1-5-21-1182960227-54336049-2099137094-1000)
      @Denied: (2) (LocalSystem)
      "Progid"="SafariHTML"
      .
      [HKEY_USERS\S-1-5-21-1182960227-54336049-2099137094-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.vcf\UserChoice]
      @Denied: (2) (LocalSystem)
      "Progid"="WindowsLiveMail.VCard.1"
      .
      [HKEY_USERS\S-1-5-21-1182960227-54336049-2099137094-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.webarchive\UserChoice]
      @Denied: (2) (S-1-5-21-1182960227-54336049-2099137094-1000)
      @Denied: (2) (LocalSystem)
      "Progid"="SafariHTML"
      .
      [HKEY_USERS\S-1-5-21-1182960227-54336049-2099137094-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.xht\UserChoice]
      @Denied: (2) (S-1-5-21-1182960227-54336049-2099137094-1000)
      @Denied: (2) (LocalSystem)
      "Progid"="ChromeHTML"
      .
      [HKEY_USERS\S-1-5-21-1182960227-54336049-2099137094-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.xhtml\UserChoice]
      @Denied: (2) (S-1-5-21-1182960227-54336049-2099137094-1000)
      @Denied: (2) (LocalSystem)
      "Progid"="ChromeHTML"
      .
      [HKEY_USERS\S-1-5-21-1182960227-54336049-2099137094-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.xml\UserChoice]
      @Denied: (2) (S-1-5-21-1182960227-54336049-2099137094-1000)
      @Denied: (2) (LocalSystem)
      "Progid"="SafariHTML"
      .
      [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
      @Denied: (A 2) (Everyone)
      @="FlashBroker"
      "LocalizedString"="@c:\\windows\\system32\\Macromed\\Flash\\FlashUtil64_11_6_602_171_ActiveX.exe,-101"
      .
      [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
      "Enabled"=dword:00000001
      .
      [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
      @="c:\\windows\\system32\\Macromed\\Flash\\FlashUtil64_11_6_602_171_ActiveX.exe"
      .
      [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
      @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
      .
      [HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
      @Denied: (A 2) (Everyone)
      @="IFlashBroker5"
      .
      [HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
      @="{00020424-0000-0000-C000-000000000046}"
      .
      [HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
      @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
      "Version"="1.0"
      .
      [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
      @Denied: (A 2) (Everyone)
      @="FlashBroker"
      "LocalizedString"="@c:\\windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_6_602_171_ActiveX.exe,-101"
      .
      [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
      "Enabled"=dword:00000001
      .
      [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
      @="c:\\windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_6_602_171_ActiveX.exe"
      .
      [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
      @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
      .
      [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
      @Denied: (A 2) (Everyone)
      @="Shockwave Flash Object"
      .
      [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
      @="c:\\windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_6_602_171.ocx"
      "ThreadingModel"="Apartment"
      .
      [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
      @="0"
      .
      [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
      @="ShockwaveFlash.ShockwaveFlash.11"
      .
      [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
      @="c:\\windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_6_602_171.ocx, 1"
      .
      [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
      @="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
      .
      [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
      @="1.0"
      .
      [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
      @="ShockwaveFlash.ShockwaveFlash"
      .
      [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
      @Denied: (A 2) (Everyone)
      @="Macromedia Flash Factory Object"
      .
      [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
      @="c:\\windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_6_602_171.ocx"
      "ThreadingModel"="Apartment"
      .
      [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
      @="FlashFactory.FlashFactory.1"
      .
      [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
      @="c:\\windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_6_602_171.ocx, 1"
      .
      [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
      @="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
      .
      [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
      @="1.0"
      .
      [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
      @="FlashFactory.FlashFactory"
      .
      [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
      @Denied: (A 2) (Everyone)
      @="IFlashBroker5"
      .
      [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
      @="{00020424-0000-0000-C000-000000000046}"
      .
      [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
      @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
      "Version"="1.0"
      .
      [HKEY_LOCAL_MACHINE\software\Classes\VideoLAN.VLCPlugin.*1*]
      @="?????????????????? v1"
      .
      [HKEY_LOCAL_MACHINE\software\Classes\VideoLAN.VLCPlugin.*1*\CLSID]
      @="{E23FE9C6-778E-49D4-B537-38FCDE4887D8}"
      .
      [HKEY_LOCAL_MACHINE\software\Classes\VideoLAN.VLCPlugin.*2*]
      @="?????????????????? v2"
      .
      [HKEY_LOCAL_MACHINE\software\Classes\VideoLAN.VLCPlugin.*2*\CLSID]
      @="{9BE31822-FDAD-461B-AD51-BE1D1C159921}"
      .
      [HKEY_LOCAL_MACHINE\software\Wow6432Node\Microsoft\Office\Common\Smart Tag\Actions\{B7EFF951-E52F-45CC-9EF7-57124F2177CC}]
      @Denied: (A) (Everyone)
      "Solution"="{15727DE6-F92D-4E46-ACB4-0E2C58B31A18}"
      .
      [HKEY_LOCAL_MACHINE\software\Wow6432Node\Microsoft\Schema Library\ActionsPane3]
      @Denied: (A) (Everyone)
      .
      [HKEY_LOCAL_MACHINE\software\Wow6432Node\Microsoft\Schema Library\ActionsPane3\0]
      "Location"="c:\\Program Files (x86)\\Common Files\\Microsoft Shared\\VSTO\\ActionsPane3.xsd"
      "Key"="ActionsPane3"
      .
      [HKEY_LOCAL_MACHINE\software\Wow6432Node\Microsoft\Schema Library\ActionsPane3\0\Solutions\]Error
      "Key"="http://schemas.microsoft.com/office/smartdocuments/2003"
      .
      [HKEY_LOCAL_MACHINE\software\Wow6432Node\Microsoft\Schema Library\ActionsPane3\0\Solutions\http://schemas.microsoft.com/office/smartdocuments/2003\0\{15727DE6-F92D-4E46-ACB4-0E2C58B31A18}\Alias]
      "0"="Microsoft Actions Pane 3"
      .
      [HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
      @Denied: (A) (Users)
      @Denied: (A) (Everyone)
      @Allowed: (B 1 2 3 4 5) (S-1-5-20)
      "BlindDial"=dword:00000000
      .
      [HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]
      @Denied: (A) (Users)
      @Denied: (A) (Everyone)
      @Allowed: (B 1 2 3 4 5) (S-1-5-20)
      "BlindDial"=dword:00000000
      .
      [HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security]
      @Denied: (Full) (Everyone)
      .
      Completion time: 2013-03-07 10:42:10
      ComboFix-quarantined-files.txt 2013-03-07 16:42
      ComboFix2.txt 2013-01-25 07:10
      .
      Pre-Run: 476,261,224,448 bytes free
      Post-Run: 476,430,901,248 bytes free
      .
      - - End Of File - - 0B0DBA93332C6174A178D5468BEDB035


      Y respecto a como esta mi sistema pues esta un poco peor porque ya veo publicadad hasta en la imagenes de la wikipedia y si les doy click me envia a paginas de concursos, musica, porno, etc y en el chrome sigue sin funciar bien el complemento de java

    4. #4
      Moderador.
      Avatar de @Tincho
      Registrado
      may 2008
      Ubicación
      Argentina
      Mensajes
      14.701

      Re: Virus desconocido en el Chrome

      Hola



      • Desactivá temporalmente el Antivirus y/o Antispyware. Cómo deshabilitar temporalmente su Antivirus
      • Descarga la Herramienta AT-Destroyer (by InfoSpyware)
      • Ejecuta la herramienta como administrador.
      • (Si usas Windows Vista o 7 Presiona clic derecho y selecciona "Ejecutar como Administrador.")
      • Aparecerá el Disclaimer de la herramienta. Presiona .
      • Presiona sobre la opción 1 (Buscar y Destruir)
      • La herramienta desconectará el escritorio moméntaneamente.
      • En caso de estar infectado,la herramienta lo indicará con lineas rojas donde se haya encontrado la infección,sino,serán lineas verdes.
      • Una vez terminado el escaneo,podrás volver a ver el escritorio y se te abrirá un reporte,que deberás copiar en tu próxima respuesta comentando cómo funciona el sistema.






      • Descargá a Tu escritorio la herramienta Adwcleaner.exe.
      • Cerrá Todos los programas que tengas abiertos.
      • Clic derecho sobre su ícono y elegis Ejecutar Como Administrador.
      • Pulsas el Boton Supresión.
      • Seguí las Instrucciones. La herramienta va a pedir Reiniciar el sistema, lo cual debes aceptar.
      • Volves con el reporte generado y nos comentas como va el ordenador ahora.




      Saludos
      Tyny's
      If on your journey, you should encounter God, God will be cut!

      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.

    5. #5
      Usuario Avatar de Sky Byte
      Registrado
      ene 2013
      Mensajes
      3

      Re: Virus desconocido en el Chrome

      hola bueno primero envio los reportes primero el del at destroyer

      ######################## AT-Destroyer [2.1] By Infospyware.
      Hora/Día/Mes/Año: 20:31:57 \\\ 07/03/2013
      AT-Destroyer 2.1 By Infospyware ---> InfoSpyware
      Última actualización: 30/11/2012
      Opción escogida: 2 :Buscar y Destruir
      Versión Internet Explorer:9.0.8112.16421
      Mozilla Firefox:19.0.0.4794
      Google Chrome:25.0.1364.152
      Privilegios: Starscream - Administrador
      Modo Actual: Modo Normal.
      Nombre del pc: RB-8
      Información del sistema operativo:X64-WIN_7-Service Pack 1
      nombre del usuario:Starscream
      Lenguaje del sistema: Inglés



      >>>>>>> Servicios <<<<<<<



      >>>>>> Carpetas <<<<<<



      >>>>>> Archivos <<<<<<

      C:\Program Files (x86)\mozilla firefox\searchplugins\babylon.xml


      >>>>>> Registro <<<<<<

      HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}


      >>>>>> Heurística <<<<<<



      >>>>>> Internet Explorer <<<<<<

      Start Page==www.google.com
      Local Page==C:\Windows\SysWOW64\blank.htm
      Search Page==http://go.microsoft.com/fwlink/?LinkId=54896
      Default_search_url==http://go.microsoft.com/fwlink/?LinkId=54896
      Default_Page_URL==http://go.microsoft.com/fwlink/?LinkId=69157


      ''HKCU\Software\Microsoft\Internet Explorer\Main''
      Start Page==www.google.com
      Local Page==C:\windows\system32\blank.htm
      Search Page==http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
      Default_search_url==http://mmwwx.com.ar/
      Default_Page_URL==


      HKEY_USERS\S-1-5-21-1182960227-54336049-2099137094-1000\Software\Microsoft\Internet Explorer\Main''
      Start Page==www.google.com
      Local Page==C:\windows\system32\blank.htm
      Search Page==http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
      Default_search_url==http://mmwwx.com.ar/
      Default_Page_URL==


      >>>>>> Firefox <<<<<<

      user_pref("browser.startup.homepage", "http://search.babylon.com/home?affID=18173&tt=140612_dpl");
      user_pref("browser.startup.homepage_override.buildID", "20120129021758");
      user_pref("browser.startup.homepage_override.mstone", "rv:10.0");


      >>>>>> Extensiones Firefox <<<<<<


      C:\Program Files (x86)\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
      C:\Program Files (x86)\{972ce4c6-7e08-4474-a285-3208198ce6fd}

      >>>>>> Plugins Firefox <<<<<<

      HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer
      HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Apple.com/iTunes,version=
      HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Apple.com/iTunes,version=1.0
      HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@divx.com/DivX Browser Plugin,version=1.0.0
      HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@divx.com/DivX VOD Helper,version=1.0.0
      HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Google.com/GoogleEarthPlugin
      HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=10.17.2
      HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin,version=10.17.2
      HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE
      HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0

      >>>>>> Google Chrome <<<<<<

      "homepage": "http://www.google.com/",
      "homepage_changed": true,
      "homepage_is_newtabpage": false,


      >>>>>> Extensiones Google Chrome <<<<<<

      C:\Users\Starscream\AppData\Local\Google\Chrome\User Data\Default\Extensions\29
      C:\Users\Starscream\AppData\Local\Google\Chrome\User Data\Default\Extensions\aknpkdffaafgjchaibgeefbgmgeghloj
      C:\Users\Starscream\AppData\Local\Google\Chrome\User Data\Default\Extensions\algoakekcdmbbikdjgjdahbfihboglmi
      C:\Users\Starscream\AppData\Local\Google\Chrome\User Data\Default\Extensions\aobghpockniceeknecdpjkmlhdcpeiei
      C:\Users\Starscream\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjbikmbmilakjnllalphcbploneeolep
      C:\Users\Starscream\AppData\Local\Google\Chrome\User Data\Default\Extensions\eafhgomkapdagnpmmgilphbolnejepoc
      C:\Users\Starscream\AppData\Local\Google\Chrome\User Data\Default\Extensions\gkddaofiamhgfjmaccfcfpfolpgbeomj
      C:\Users\Starscream\AppData\Local\Google\Chrome\User Data\Default\Extensions\hlpiaibleklmjieibbnmkignbggodmmj
      C:\Users\Starscream\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda
      C:\Users\Starscream\AppData\Local\Google\Chrome\User Data\Default\Extensions\idhngdhcfkoamngbedgpaokgjbnpdiji
      C:\Users\Starscream\AppData\Local\Google\Chrome\User Data\Default\Extensions\ilghikgbapocohbodgkkemghiegioilk
      C:\Users\Starscream\AppData\Local\Google\Chrome\User Data\Default\Extensions\jlicihemmeabfjhdckhpkmopojohlkab
      C:\Users\Starscream\AppData\Local\Google\Chrome\User Data\Default\Extensions\joddpakmckcghlejglhhkoiebmobmjpg
      C:\Users\Starscream\AppData\Local\Google\Chrome\User Data\Default\Extensions\keembkgclppcbilkekfgpobhldjjhpmn
      C:\Users\Starscream\AppData\Local\Google\Chrome\User Data\Default\Extensions\kfomhlbnciicmciejodphlggfbmhbbbo
      C:\Users\Starscream\AppData\Local\Google\Chrome\User Data\Default\Extensions\knollhnieedbbldapalggidnebanepcp
      C:\Users\Starscream\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl
      C:\Users\Starscream\AppData\Local\Google\Chrome\User Data\Default\Extensions\lnlljnmekmbblccedllicahemcdkdgoo
      C:\Users\Starscream\AppData\Local\Google\Chrome\User Data\Default\Extensions\loamdenijebhollnjgehcfbnpeelfhlk
      C:\Users\Starscream\AppData\Local\Google\Chrome\User Data\Default\Extensions\mjhghbcafejkfiblgpohglclcogihmia
      C:\Users\Starscream\AppData\Local\Google\Chrome\User Data\Default\Extensions\ncdcclndkdgngndhjfccoabooegcgamk
      C:\Users\Starscream\AppData\Local\Google\Chrome\User Data\Default\Extensions\nefbimbphlddggoikpapfadmgbjjibpl
      C:\Users\Starscream\AppData\Local\Google\Chrome\User Data\Default\Extensions\nikpibnbobmbdbheedjfogjlikpgpnhp
      C:\Users\Starscream\AppData\Local\Google\Chrome\User Data\Default\Extensions\nneajnkjbffgblleaoojgaacokifdkhm
      C:\Users\Starscream\AppData\Local\Google\Chrome\User Data\Default\Extensions\ocomjkpcpjdjmgomoeaepjdbckdmmjkm
      C:\Users\Starscream\AppData\Local\Google\Chrome\User Data\Default\Extensions\ohlnnphcijlcbbahaelhmedmkdfjcnfe
      C:\Users\Starscream\AppData\Local\Google\Chrome\User Data\Default\Extensions\pbalkogcfbpplioohgihkidalmomblfc
      C:\Users\Starscream\AppData\Local\Google\Chrome\User Data\Default\Extensions\pfmopbbadnfoelckkcmjjeaaegjpjjbk
      C:\Users\Starscream\AppData\Local\Google\Chrome\User Data\Default\Extensions\pmphjijgcdpmmnfjbemolkdiidinogml
      C:\Users\Starscream\AppData\Local\Google\Chrome\User Data\Default\Extensions\ppjafajfielilohpkmhdjgjfofojkhcl

      ======== Listado ===========

      C:\Users\Starscream\AppData\Roaming\7 Sticky Notes [DCI] 0 ( )
      C:\Users\Starscream\AppData\Roaming\ABBYY [DCI] 0 ( )
      C:\Users\Starscream\AppData\Roaming\Adobe [DCI] 0 ( )
      C:\Users\Starscream\AppData\Roaming\Apple Computer [DCI] 0 ( )
      C:\Users\Starscream\AppData\Roaming\AVS4YOU [DCI] 0 ( )
      C:\Users\Starscream\AppData\Roaming\BeSpotted [DCI] 0 ( )
      C:\Users\Starscream\AppData\Roaming\BitTorrent [DCI] 0 ( )
      C:\Users\Starscream\AppData\Roaming\Book Place [DCI] 0 ( )
      C:\Users\Starscream\AppData\Roaming\com.adobe.px.Uploader.4C35C4D325D350FE0114230CBADCA2DDD0AC8D25.1 [DCI] 0 ( )
      C:\Users\Starscream\AppData\Roaming\com.likno.air.PhotoFrameShow.BA293090D193671BA859C8E310874AAD5CDD8BAD.1 [DCI] 0 ( )
      C:\Users\Starscream\AppData\Roaming\DAEMON Tools Lite [DCI] 0 ( )
      C:\Users\Starscream\AppData\Roaming\DellFaxCtr [DCI] 0 ( )
      C:\Users\Starscream\AppData\Roaming\DivX [DCI] 0 ( )
      C:\Users\Starscream\AppData\Roaming\DVDVideoSoft [DCI] 0 ( )
      C:\Users\Starscream\AppData\Roaming\DVDVideoSoftIEHelpers [DCI] 0 ( )
      C:\Users\Starscream\AppData\Roaming\FreeAudioPack [DCI] 0 ( )
      C:\Users\Starscream\AppData\Roaming\Google [DCI] 0 ( )
      C:\Users\Starscream\AppData\Roaming\Identities [DCI] 0 ( )
      C:\Users\Starscream\AppData\Roaming\inkscape [DCI] 0 ( )
      C:\Users\Starscream\AppData\Roaming\InstallShield [DCI] 0 ( )
      C:\Users\Starscream\AppData\Roaming\Intel [DCI] 0 ( )
      C:\Users\Starscream\AppData\Roaming\Macromedia [DCI] 0 ( )
      C:\Users\Starscream\AppData\Roaming\Malwarebytes [DCI] 0 ( )
      C:\Users\Starscream\AppData\Roaming\mbam.context.scan [ACI] 100 bytes ( )
      C:\Users\Starscream\AppData\Roaming\Media Center Programs [DCI] 0 ( )
      C:\Users\Starscream\AppData\Roaming\Microsoft [SDCI] 0 ( )
      C:\Users\Starscream\AppData\Roaming\Mozilla [DCI] 0 ( )
      C:\Users\Starscream\AppData\Roaming\Mp3tag [DCI] 0 ( )
      C:\Users\Starscream\AppData\Roaming\MyPhoneExplorer [DCI] 0 ( )
      C:\Users\Starscream\AppData\Roaming\National Instruments [DCI] 0 ( )
      C:\Users\Starscream\AppData\Roaming\ObviousIdea [DCI] 0 ( )
      C:\Users\Starscream\AppData\Roaming\PCCUStubInstaller [DCI] 0 ( )
      C:\Users\Starscream\AppData\Roaming\Real [DCI] 0 ( )
      C:\Users\Starscream\AppData\Roaming\RealNetworks [DCI] 0 ( )
      C:\Users\Starscream\AppData\Roaming\SenselessTV [DCI] 0 ( )
      C:\Users\Starscream\AppData\Roaming\Skype [DCI] 0 ( )
      C:\Users\Starscream\AppData\Roaming\Sony [DCI] 0 ( )
      C:\Users\Starscream\AppData\Roaming\Sony Corporation [DCI] 0 ( )
      C:\Users\Starscream\AppData\Roaming\Spotify [DCI] 0 ( )
      C:\Users\Starscream\AppData\Roaming\Stellarium [DCI] 0 ( )
      C:\Users\Starscream\AppData\Roaming\SumatraPDF [DCI] 0 ( )
      C:\Users\Starscream\AppData\Roaming\Sun [DCI] 0 ( )
      C:\Users\Starscream\AppData\Roaming\Tific [DCI] 0 ( )
      C:\Users\Starscream\AppData\Roaming\Toshiba [DCI] 0 ( )
      C:\Users\Starscream\AppData\Roaming\TuneUp Software [DCI] 0 ( )
      C:\Users\Starscream\AppData\Roaming\Unity [DCI] 0 ( )
      C:\Users\Starscream\AppData\Roaming\UserTile.png [ACI] 7.05 KB ( )
      C:\Users\Starscream\AppData\Roaming\vlc [DCI] 0 ( )
      C:\Users\Starscream\AppData\Roaming\WildTangent [DCI] 0 ( )
      C:\Users\Starscream\AppData\Roaming\WinBatch [DCI] 0 ( )
      C:\Users\Starscream\AppData\Roaming\Windows Live Writer [DCI] 0 ( )
      C:\Users\Starscream\AppData\Roaming\WinRAR [DCI] 0 ( )
      C:\Users\Starscream\AppData\Roaming\YCanPDF [DCI] 0 ( )
      C:\Program Files (x86)\ABBYY FineReader 11 [DC] 0( 0)
      C:\Program Files (x86)\Abbyy FineReader 6.0 Sprint [DC] 0( 0)
      C:\Program Files (x86)\ADLSoft [DC] 0( 0)
      C:\Program Files (x86)\Adobe [DC] 0( 0)
      C:\Program Files (x86)\Adobe Photoshop Express Uploader [DC] 0( 0)
      C:\Program Files (x86)\Aerosoft [DC] 0( 0)
      C:\Program Files (x86)\Apple Software Update [DC] 0( 0)
      C:\Program Files (x86)\Ashampoo [DC] 0( 0)
      C:\Program Files (x86)\AudioConverter Studio [DC] 0( 0)
      C:\Program Files (x86)\AVS4YOU [DC] 0( 0)
      C:\Program Files (x86)\BitTorrent [DC] 0( 0)
      C:\Program Files (x86)\Bonjour [DC] 0( 0)
      C:\Program Files (x86)\Caminova [DC] 0( 0)
      C:\Program Files (x86)\Cheat Engine [DC] 0( 0)
      C:\Program Files (x86)\Ciel [DC] 0( 0)
      C:\Program Files (x86)\Cisco [DC] 0( 0)
      C:\Program Files (x86)\Comical [DC] 0( 0)
      C:\Program Files (x86)\Common Files [DC] 0( 0)
      C:\Program Files (x86)\Corel [DC] 0( 0)
      C:\Program Files (x86)\DAEMON Tools Lite [DC] 0( 0)
      C:\Program Files (x86)\Dell [DC] 0( 0)
      C:\Program Files (x86)\Dell PC Fax [DC] 0( 0)
      C:\Program Files (x86)\Dell Photo AIO Printer 966 [DC] 0( 0)
      C:\Program Files (x86)\desktop.ini [HSA] 174 bytes( 0)
      C:\Program Files (x86)\DivX [DC] 0( 0)
      C:\Program Files (x86)\DVDVideoSoft [DC] 0( 0)
      C:\Program Files (x86)\ESET [DC] 0( 0)
      C:\Program Files (x86)\Firebird [DC] 0( 0)
      C:\Program Files (x86)\Free Instagram Downloader [DC] 0( 0)
      C:\Program Files (x86)\Free M4a to MP3 Converter [DC] 0( 0)
      C:\Program Files (x86)\Free mp3 Wma Converter [DC] 0( 0)
      C:\Program Files (x86)\Free Photo Frame [DC] 0( 0)
      C:\Program Files (x86)\Freemake [DC] 0( 0)
      C:\Program Files (x86)\Gadwy Solutions [DC] 0( 0)
      C:\Program Files (x86)\Google [DC] 0( 0)
      C:\Program Files (x86)\Google Books Downloader [DC] 0( 0)
      C:\Program Files (x86)\Gophoto.it [DC] 0( 0)
      C:\Program Files (x86)\Graph [DC] 0( 0)
      C:\Program Files (x86)\HI-TECH Software [DC] 0( 0)
      C:\Program Files (x86)\Inkscape [DC] 0( 0)
      C:\Program Files (x86)\InstallShield Installation Information [HDC] 0( 0)
      C:\Program Files (x86)\Intel [DC] 0( 0)
      C:\Program Files (x86)\Intel Corporation [DC] 0( 0)
      C:\Program Files (x86)\Internet Explorer [DC] 0( 0)
      C:\Program Files (x86)\iTunes [DC] 0( 0)
      C:\Program Files (x86)\Java [DC] 0( 0)
      C:\Program Files (x86)\JDownloader [DC] 0( 0)
      C:\Program Files (x86)\JMicron [DC] 0( 0)
      C:\Program Files (x86)\Malwarebytes' Anti-Malware [DC] 0( 0)
      C:\Program Files (x86)\Media Flash Player [DC] 0( 0)
      C:\Program Files (x86)\Medieval Software [DC] 0( 0)
      C:\Program Files (x86)\Microsoft [DC] 0( 0)
      C:\Program Files (x86)\Microsoft Analysis Services [DC] 0( 0)
      C:\Program Files (x86)\Microsoft Office [DC] 0( 0)
      C:\Program Files (x86)\Microsoft Silverlight [DC] 0( 0)
      C:\Program Files (x86)\Microsoft SQL Server Compact Edition [DC] 0( 0)
      C:\Program Files (x86)\Microsoft Works [DC] 0( 0)
      C:\Program Files (x86)\Microsoft.NET [DC] 0( 0)
      C:\Program Files (x86)\Mozilla Firefox [DC] 0( 0)
      C:\Program Files (x86)\Mp3tag [DC] 0( 0)
      C:\Program Files (x86)\MSBuild [DC] 0( 0)
      C:\Program Files (x86)\MyPhoneExplorer [DC] 0( 0)
      C:\Program Files (x86)\National Instruments [DC] 0( 0)
      C:\Program Files (x86)\ObviousIdea [DC] 0( 0)
      C:\Program Files (x86)\Oracle [DC] 0( 0)
      C:\Program Files (x86)\PCSX2 1.0.0 [DC] 0( 0)
      C:\Program Files (x86)\pdfsam [DC] 0( 0)
      C:\Program Files (x86)\Photo Frame Show [DC] 0( 0)
      C:\Program Files (x86)\PlayReady [DC] 0( 0)
      C:\Program Files (x86)\PopCap Games [DC] 0( 0)
      C:\Program Files (x86)\Project64 1.6 [DC] 0( 0)
      C:\Program Files (x86)\QuickTime [DC] 0( 0)
      C:\Program Files (x86)\Real [DC] 0( 0)
      C:\Program Files (x86)\RealNetworks [DC] 0( 0)
      C:\Program Files (x86)\Realtek [DC] 0( 0)
      C:\Program Files (x86)\Reference Assemblies [DC] 0( 0)
      C:\Program Files (x86)\Renesas Electronics [DC] 0( 0)
      C:\Program Files (x86)\Rockstar Games [DC] 0( 0)
      C:\Program Files (x86)\Safari [DC] 0( 0)
      C:\Program Files (x86)\Skype [RDC] 0( 0)
      C:\Program Files (x86)\Sony [DC] 0( 0)
      C:\Program Files (x86)\Sony Media Go Install [DC] 0( 0)
      C:\Program Files (x86)\Temp [HDC] 0( 0)
      C:\Program Files (x86)\Toshiba [DC] 0( 0)
      C:\Program Files (x86)\TOSHIBA Corporation [DC] 0( 0)
      C:\Program Files (x86)\TOSHIBA Games [DC] 0( 0)
      C:\Program Files (x86)\Toshiba Online Backup [DC] 0( 0)
      C:\Program Files (x86)\UEFI WinFlash [DC] 0( 0)
      C:\Program Files (x86)\Uninstall Information [HDC] 0( 0)
      C:\Program Files (x86)\VideoLAN [DC] 0( 0)
      C:\Program Files (x86)\VipBoxSportsApp.com [DC] 0( 0)
      C:\Program Files (x86)\WildGames [DC] 0( 0)
      C:\Program Files (x86)\WildTangent Games [DC] 0( 0)
      C:\Program Files (x86)\Windows Defender [DC] 0( 0)
      C:\Program Files (x86)\Windows Live [DC] 0( 0)
      C:\Program Files (x86)\Windows Mail [DC] 0( 0)
      C:\Program Files (x86)\Windows Media Player [DC] 0( 0)
      C:\Program Files (x86)\Windows NT [DC] 0( 0)
      C:\Program Files (x86)\Windows Photo Viewer [DC] 0( 0)
      C:\Program Files (x86)\Windows Portable Devices [DC] 0( 0)
      C:\Program Files (x86)\Windows Sidebar [DC] 0( 0)
      C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69 [DCI] 0 0
      C:\ProgramData\ABBYY [DCI] 0 0
      C:\ProgramData\Adobe [DCI] 0 0
      C:\ProgramData\Apple [DCI] 0 0
      C:\ProgramData\Apple Computer [DCI] 0 0
      C:\ProgramData\Application Data [HSDLI] 0 0
      C:\ProgramData\AVAST Software [DCI] 0 0
      C:\ProgramData\AVS4YOU [DCI] 0 0
      C:\ProgramData\BVRP Software [DCI] 0 0
      C:\ProgramData\DAEMON Tools Lite [DCI] 0 0
      C:\ProgramData\DellFaxCtr [DCI] 0 0
      C:\ProgramData\Desktop [SDL] 0 0
      C:\ProgramData\DivX [DCI] 0 0
      C:\ProgramData\Documents [HSDLI] 0 0
      C:\ProgramData\Downloaded Installations [DCI] 0 0
      C:\ProgramData\Favorites [HSDLI] 0 0
      C:\ProgramData\Freemake [DCI] 0 0
      C:\ProgramData\Google [DCI] 0 0
      C:\ProgramData\Intel [DCI] 0 0
      C:\ProgramData\Malwarebytes [DCI] 0 0
      C:\ProgramData\Microsoft [SDCI] 0 0
      C:\ProgramData\Microsoft Help [DCI] 0 0
      C:\ProgramData\National Instruments [DCI] 0 0
      C:\ProgramData\Norton [DCI] 0 0
      C:\ProgramData\NortonInstaller [DCI] 0 0
      C:\ProgramData\Ocster Backup [DCI] 0 0
      C:\ProgramData\PopCap Games [DCI] 0 0
      C:\ProgramData\Real [DCI] 0 0
      C:\ProgramData\RealNetworks [DCI] 0 0
      C:\ProgramData\Skype [DCI] 0 0
      C:\ProgramData\Sony [DCI] 0 0
      C:\ProgramData\Sony Corporation [DCI] 0 0
      C:\ProgramData\Start Menu [HSDLI] 0 0
      C:\ProgramData\Sun [DCI] 0 0
      C:\ProgramData\Symantec [DCI] 0 0
      C:\ProgramData\sysnfxo [HDCI] 0 0
      C:\ProgramData\Templates [HSDLI] 0 0
      C:\ProgramData\Toshiba [DCI] 0 0
      C:\ProgramData\Toshiba Book Place [DCI] 0 0
      C:\ProgramData\TuneUp Software [DCI] 0 0
      C:\ProgramData\Ulead Systems [DCI] 0 0
      C:\ProgramData\vista32 [DCI] 0 0
      C:\ProgramData\vista64 [DCI] 0 0
      C:\ProgramData\Wild Tangent [DCI] 0 0
      C:\ProgramData\WildTangent [DCI] 0 0
      C:\ProgramData\win7_32 [DCI] 0 0
      C:\ProgramData\win7_64 [DCI] 0 0
      C:\ProgramData\xp [DCI] 0 0
      C:\ProgramData\{32364CEA-7855-4A3C-B674-53D8E9B97936} [HSDC] 0 0
      C:\ProgramData\{93E26451-CD9A-43A5-A2FA-C42392EA4001} [DCI] 0 0

      ==================== EOF ==================



      y este es el del adwCleaner



      # AdwCleaner v2.114 - Logfile created 03/08/2013 at 08:44:30
      # Updated 05/03/2013 by Xplode
      # Operating system : Windows 7 Home Premium Service Pack 1 (64 bits)
      # User : Starscream - RB-8
      # Boot Mode : Normal
      # Running from : C:\Users\Starscream\Desktop\AdwCleaner.exe
      # Option [Delete]


      ***** [Services] *****


      ***** [Files / Folders] *****

      File Deleted : C:\Program Files (x86)\Mozilla Firefox\searchplugins\fcmdSrch.xml
      Folder Deleted : C:\Users\Starscream\AppData\Local\Google\Chrome\User Data\Default\Extensions\jlicihemmeabfjhdckhpkmopojohlkab
      Folder Deleted : C:\Users\Starscream\AppData\LocalLow\boost_interprocess
      Folder Deleted : C:\Users\Starscream\AppData\Roaming\dvdvideosoftiehelpers
      Folder Deleted : C:\Users\Starscream\AppData\Roaming\Mozilla\Firefox\Profiles\l5v7v4gp.default\extensions\staged
      Folder Deleted : C:\Users\Starscream\AppData\Roaming\Mozilla\Firefox\Profiles\l5v7v4gp.default\jetpack
      Folder Deleted : C:\Users\Starscream\AppData\Roaming\SenselessTV

      ***** [Registry] *****

      Key Deleted : HKCU\Software\1ClickDownload
      Key Deleted : HKCU\Software\AppDataLow\Software\Smart Suggestor
      Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{991D97B8-F0D8-4EA1-9100-7A65EA2D3A63}
      Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{991D97B8-F0D8-4EA1-9100-7A65EA2D3A63}
      Key Deleted : HKCU\Software\Softonic
      Key Deleted : HKLM\Software\BabylonToolbar
      Key Deleted : HKLM\SOFTWARE\Classes\AppID\{3A188115-B81B-48F2-A958-F974C8F3F309}
      Key Deleted : HKLM\SOFTWARE\Classes\AppID\{5B1881D1-D9C7-46DF-B041-1E593282C7D0}
      Key Deleted : HKLM\SOFTWARE\Classes\AppID\{608D3067-77E8-463D-9084-908966806826}
      Key Deleted : HKLM\SOFTWARE\Classes\AppID\{BDB69379-802F-4EAF-B541-F8DE92DD98DB}
      Key Deleted : HKLM\SOFTWARE\Classes\AppID\{EA28B360-05E0-4F93-8150-02891F1D8D3C}
      Key Deleted : HKLM\SOFTWARE\Classes\AppID\BabylonHelper.EXE
      Key Deleted : HKLM\SOFTWARE\Classes\AppID\SMBarBroker.EXE
      Key Deleted : HKLM\SOFTWARE\Classes\Prod.cap
      Key Deleted : HKLM\Software\Iminent
      Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\Babylon_RASAPI32
      Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\Babylon_RASMANCS
      Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\BabylonTC_RASAPI32
      Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\BabylonTC_RASMANCS
      Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\facemoods_RASAPI32
      Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\facemoods_RASMANCS
      Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\facemoodssrv_RASAPI32
      Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\facemoodssrv_RASMANCS
      Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{991D97B8-F0D8-4EA1-9100-7A65EA2D3A63}
      Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{78CE34FD-F6D4-4866-B79C-A37268D06A04}
      Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{80904944-C726-4C7D-A452-3FFF2A882095}
      Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{A9379648-F6EB-4F65-A624-1C10411A15D0}
      Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{F16AB1DB-15C0-4456-A29E-4DF24FB9E3D2}
      Key Deleted : HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\demmlacpnijjgliknaehpamnnbncnodb
      Key Deleted : HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\jlicihemmeabfjhdckhpkmopojohlkab
      Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{991D97B8-F0D8-4EA1-9100-7A65EA2D3A63}
      Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Senseless.TV Video Plugin
      Key Deleted : HKLM\SOFTWARE\Classes\Interface\{78CE34FD-F6D4-4866-B79C-A37268D06A04}
      Key Deleted : HKLM\SOFTWARE\Classes\Interface\{80904944-C726-4C7D-A452-3FFF2A882095}
      Key Deleted : HKLM\SOFTWARE\Classes\Interface\{A9379648-F6EB-4F65-A624-1C10411A15D0}
      Key Deleted : HKLM\SOFTWARE\Classes\Interface\{F16AB1DB-15C0-4456-A29E-4DF24FB9E3D2}
      Key Deleted : HKLM\SOFTWARE\Software
      Value Deleted : HKCU\Software\Mozilla\Firefox\Extensions [[email protected]]
      Value Deleted : HKLM\SOFTWARE\Mozilla\Firefox\extensions [{acaa314b-eeba-48e4-ad47-84e31c44796c}]
      Value Deleted : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [[email protected]]

      ***** [Internet Browsers] *****

      -\\ Internet Explorer v9.0.8112.16464

      Replaced : [HKLM\SOFTWARE\Microsoft\Internet Explorer\Search - SearchAssistant] = hxxp://start.facemoods.com/?a=ddrnw&s={searchTerms}&f=4 --> hxxp://www.google.com

      -\\ Mozilla Firefox v10.0 (en-US)

      File : C:\Users\Starscream\AppData\Roaming\Mozilla\Firefox\Profiles\l5v7v4gp.default\prefs.js

      C:\Users\Starscream\AppData\Roaming\Mozilla\Firefox\Profiles\l5v7v4gp.default\user.js ... Deleted !

      Deleted : user_pref("browser.babylon.HPOnNewTab", "search.babylon.com");
      Deleted : user_pref("extensions.BabylonToolbar_i.newTab", true);
      Deleted : user_pref("extensions.BabylonToolbar_i.newTabUrl", "hxxp://search.babylon.com/?affID=18173&tt=140612[...]
      Deleted : user_pref("extensions.SmartSuggestor.aid", "10007");
      Deleted : user_pref("extensions.SmartSuggestor.uid", "f1f80bce67e3ef9df9c853ef00175c26");

      -\\ Google Chrome v25.0.1364.152

      File : C:\Users\Starscream\AppData\Local\Google\Chrome\User Data\Default\Preferences

      Deleted [l.3300] : urls_to_restore_on_startup = [ "hxxp://search.babylon.com/home?affID=18173&tt=140612_dpl", "h[...]

      *************************

      AdwCleaner[R1].txt - [5244 octets] - [08/03/2013 08:44:05]
      AdwCleaner[S1].txt - [5412 octets] - [08/03/2013 08:44:30]

      ########## EOF - C:\AdwCleaner[S1].txt - [5472 octets] ##########




      y el ordenar pues ya me funciona el java en chrome pero aun siguen apareciendo la publicidad en la imagenes y las paginas los anuncios en vez de ser de carros y marcas son de animales raros porno y tmb de cosas bizarras y todavia me manda si abro enlances en otro pestaña a la pagina de AdF.ly
      Última edición por Sky Byte fecha: 08/03/13 a las 11:22:39 Razón: me faltaron mas detalles

    6. #6
      Moderador.
      Avatar de @Tincho
      Registrado
      may 2008
      Ubicación
      Argentina
      Mensajes
      14.701

      Re: Virus desconocido en el Chrome

      Buenas.

      Descargá OTL.exe By Oldtimer a Tu escritorio.


      Cerrá Todos los programas que tengas abiertos.


      Hacé doble clic sobre Su ícono para ejecutarlo.


      Tené en cuenta los siguientes datos de configuración antes de lanzar el análisis:


      Tilda los casilleros de la siguiente Manera:

      ° Procesos, Módulos, Servicios, Controladores, Registro Normal y Registro Adicional, deben estar Tildados en Usar Listado Mínimo

      ° Tipo de Análisis: Debe estar tildado el casillero Resultado completo

      ° Tildá el casillero Analizar Todos

      ° Tildá el casillero Omitir Archivos de Windows

      ° Tildá el casillero Usar listado de Compañias Conocidas

      ° Archivos Creados y Archivos Modificados: Deben estar Tildados los casilleros Edad de Archivo




      Listo. Presioná el boton Analizar y esperá a que termine.



      Se van a generar 2 reportes:


      OTL.txt ----> Este debes abrir, copiar y pegar en Tu Próxima Respuesta, junjto al reporte de OTM.


      Extra.txt -----> Debes guardarlo en el Escritorio. Si es necesario, se te pedirá que Nos lo muestre.




      Saludos.
      Tyny's
      If on your journey, you should encounter God, God will be cut!

      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.