• Registrarse
  • Iniciar sesión


  • Página 2 de 2 PrimeroPrimero 12
    Resultados 11 al 17 de 17

    Re: adware en chrome??

    Hola jidonoso : Ejecuta nuevamente AdwCleaner y nos traes un nuevo reporte. Descargue Malwarebytes Anti-Rootkit Beta.zip y descomprima el contenido en su escritorio. Abra la carpeta Mbar . Doble clic en el archivo Mbar.exe En ...

    1. #11
      Ex-Colaboradora Avatar de @SanMar
      Registrado
      jun 2008
      Ubicación
      Argentina
      Mensajes
      22.290

      Re: adware en chrome??

      Hola jidonoso:


      Ejecuta nuevamente AdwCleaner y nos traes un nuevo reporte.


      • Descargue Malwarebytes Anti-Rootkit Beta.zip y descomprima el contenido en su escritorio.
        1. Abra la carpeta Mbar. Doble clic en el archivo Mbar.exe
        2. En la interfaz del programa haga clic en Next.
        3. Haga clic en el botón Update. Terminando clic en Next
        4. Para iniciar el análisis clic en el botón Scan
        5. Terminando, si hay infección clic en CleanUp, si no hay clic en Exit.


      Al finalizar abra la carpeta Mbar, los archivos mbar-log.txt y system-log.txt, copie y pegue todo su contenido en la siguiente respuesta y comentando los resultados

      Una consulta en que navegador volvió el problema? Ya que en el ultimo reporte de OTL no se ve Google Chrome instalado.






      Salu2.

      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.

    2. #12
      Usuario Avatar de jidonoso
      Registrado
      mar 2013
      Ubicación
      Chile
      Mensajes
      10

      Re: adware en chrome??

      En Chrome solamente, pero lo tenía desinstalado cuando hice el OTL por segunda vez (por ejemplo en IE no tengo el mismo problema, pero prefiero usar Chrome). Igual lo hice denuevo (con el Chrome instalado y fallando), acá está el reporte. Hoy a más tardar mañana hago los pasos indicados, gracias.

      OTL logfile created on: 06-04-2013 12:28:50 - Run 3
      OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Juan Ignacio\Desktop
      64bit- Home Basic Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
      Internet Explorer (Version = 9.0.8112.16421)
      Locale: 0000340A | Country: Chile | Language: ESL | Date Format: dd-MM-yyyy

      3,95 Gb Total Physical Memory | 2,22 Gb Available Physical Memory | 56,16% Memory free
      7,89 Gb Paging File | 5,85 Gb Available in Paging File | 74,14% Paging File free
      Paging file location(s): ?:\pagefile.sys [binary data]

      %SystemDrive% = C: | %SystemRoot% = C:\windows | %ProgramFiles% = C:\Program Files (x86)
      Drive C: | 421,81 Gb Total Space | 273,30 Gb Free Space | 64,79% Space Free | Partition Type: NTFS
      Drive D: | 29,00 Gb Total Space | 26,51 Gb Free Space | 91,43% Space Free | Partition Type: NTFS

      Computer Name: JUANIGNACIO-PC | User Name: Juan Ignacio | Logged in as Administrator.
      Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans
      Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 90 Days

      ========== Processes (SafeList) ==========

      PRC - C:\Users\Juan Ignacio\Desktop\OTL.exe (OldTimer Tools)
      PRC - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe (Safer-Networking Ltd.)
      PRC - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe (Safer-Networking Ltd.)
      PRC - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe (Safer-Networking Ltd.)
      PRC - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe (Safer-Networking Ltd.)
      PRC - C:\Program Files (x86)\Trusteer\Rapport\bin\RapportMgmtService.exe (Trusteer Ltd.)
      PRC - C:\Program Files (x86)\Trusteer\Rapport\bin\RapportService.exe (Trusteer Ltd.)
      PRC - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (Adobe Systems Incorporated)
      PRC - C:\Program Files (x86)\PowerISO\PWRISOVM.EXE (Power Software Ltd)
      PRC - C:\Program Files (x86)\Lenovo\VeriFace\PManage.exe (Lenovo)
      PRC - C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\acrotray.exe (Adobe Systems Inc.)
      PRC - C:\Program Files (x86)\USB Camera\VM331_STI.EXE (Vimicro)
      PRC - C:\Program Files (x86)\Nuance\PDF Professional 7\PdfPro7Hook.exe (Nuance Communications, Inc.)
      PRC - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe (Intel Corporation)
      PRC - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe (Intel Corporation)
      PRC - C:\Program Files (x86)\Lenovo\YouCam\YCMMirage.exe (CyberLink)
      PRC - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe (Intel Corporation)
      PRC - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (Intel Corporation)
      PRC - C:\Archivos de programa\Lenovo\Bluetooth Software\BluetoothHeadsetProxy.exe (Broadcom Corporation.)
      PRC - C:\Program Files (x86)\Lenovo\PowerDVD10\PDVD10Serv.exe (CyberLink Corp.)
      PRC - C:\ProgramData\FLEXnet\Connect\11\ISUSPM.exe (Acresso Corporation)


      ========== Modules (No Company Name) ==========

      MOD - C:\windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\cb562e2e4f74ae607f1186f6ec50cec7\System.Windows.Forms.ni.dll ()
      MOD - C:\ProgramData\Trusteer\Rapport\store\exts\RapportMS\46125\RapportMS.dll ()
      MOD - C:\windows\assembly\NativeImages_v2.0.50727_32\IAStorUtil\7b0ad24d45e2a3f5f54f5f71748d8545\IAStorUtil.ni.dll ()
      MOD - C:\windows\assembly\NativeImages_v2.0.50727_32\IAStorCommon\8c4058d017d39a61458f635112f4e394\IAStorCommon.ni.dll ()
      MOD - C:\windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Remo#\90b89f6e8032310e9ac72a309fd49e83\System.Runtime.Remoting.ni.dll ()
      MOD - C:\windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\eead6629e384a5b69f9ae35284b7eeed\System.Drawing.ni.dll ()
      MOD - C:\windows\assembly\NativeImages_v2.0.50727_32\WindowsBase\cf827fe7bc99d9bcf0ba3621054ef527\WindowsBase.ni.dll ()
      MOD - C:\windows\assembly\NativeImages_v2.0.50727_32\System.Xml\f687c43e9fdec031988b33ae722c4613\System.Xml.ni.dll ()
      MOD - C:\windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\195a77fcc6206f8bb35d419ff2cf0d72\System.Configuration.ni.dll ()
      MOD - C:\windows\assembly\NativeImages_v2.0.50727_32\System\369f8bdca364e2b4936d18dea582912c\System.ni.dll ()
      MOD - C:\windows\assembly\NativeImages_v2.0.50727_32\mscorlib\7150b9136fad5b79e88f6c7f9d3d2c39\mscorlib.ni.dll ()
      MOD - C:\Program Files (x86)\Spybot - Search & Destroy 2\snlFileFormats150.bpl ()
      MOD - C:\Program Files (x86)\Spybot - Search & Destroy 2\snlThirdParty150.bpl ()
      MOD - C:\Program Files (x86)\Spybot - Search & Destroy 2\VirtualTreesDXE150.bpl ()
      MOD - C:\Program Files (x86)\Spybot - Search & Destroy 2\JSDialogPack150.bpl ()
      MOD - C:\Program Files (x86)\Spybot - Search & Destroy 2\DEC150.bpl ()
      MOD - C:\Program Files (x86)\Lenovo\VeriFace\ChooseLang.dll ()
      MOD - C:\windows\assembly\GAC_MSIL\System.Runtime.Remoting.resources\2.0.0.0_es_b77a5c561934e089\System.Runtime.Remoting.resources.dll ()
      MOD - C:\Program Files (x86)\Trusteer\Rapport\bin\js32.dll ()
      MOD - C:\windows\assembly\GAC_MSIL\mscorlib.resources\2.0.0.0_es_b77a5c561934e089\mscorlib.resources.dll ()


      ========== Services (SafeList) ==========

      SRV:64bit: - (mfevtp) -- C:\Windows\SysNative\mfevtps.exe (McAfee, Inc.)
      SRV:64bit: - (mfefire) -- C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe ()
      SRV:64bit: - (McShield) -- C:\Program Files\Common Files\McAfee\SystemCore\\mcshield.exe ()
      SRV:64bit: - (McProxy) -- C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe (McAfee, Inc.)
      SRV:64bit: - (McOobeSv) -- C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe (McAfee, Inc.)
      SRV:64bit: - (McNASvc) -- C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe (McAfee, Inc.)
      SRV:64bit: - (McNaiAnn) -- C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe (McAfee, Inc.)
      SRV:64bit: - (mcmscsvc) -- C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe (McAfee, Inc.)
      SRV:64bit: - (McMPFSvc) -- C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe (McAfee, Inc.)
      SRV:64bit: - (McAfee SiteAdvisor Service) -- C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe (McAfee, Inc.)
      SRV - (AdobeFlashPlayerUpdateSvc) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe (Adobe Systems Incorporated)
      SRV - (SkypeUpdate) -- C:\Program Files (x86)\Skype\Updater\Updater.exe (Skype Technologies)
      SRV - (McODS) -- C:\Archivos de programa\mcafee\virusscan\mcods.exe (McAfee, Inc.)
      SRV - (RapportMgmtService) -- C:\Program Files (x86)\Trusteer\Rapport\bin\RapportMgmtService.exe (Trusteer Ltd.)
      SRV - (AdobeARMservice) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (Adobe Systems Incorporated)
      SRV - (cphs) -- C:\Windows\SysWOW64\IntelCpHeciSvc.exe (Intel Corporation)
      SRV - (IAStorDataMgrSvc) -- C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe (Intel Corporation)
      SRV - (McAWFwk) -- c:\Archivos de programa\mcafee\msc\McAWFwk.exe (McAfee, Inc.)
      SRV - (UNS) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe (Intel Corporation)
      SRV - (LMS) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (Intel Corporation)
      SRV - (btwdins) -- C:\Archivos de programa\Lenovo\Bluetooth Software\btwdins.exe (Broadcom Corporation.)
      SRV - (wlcrasvc) -- C:\Archivos de programa\Windows Live\Mesh\wlcrasvc.exe (Microsoft Corporation)
      SRV - (wlidsvc) -- C:\Archivos de programa\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE (Microsoft Corp.)
      SRV - (clr_optimization_v4.0.30319_32) -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe (Microsoft Corporation)
      SRV - (SwitchBoard) -- C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe (Adobe Systems Incorporated)
      SRV - (clr_optimization_v2.0.50727_32) -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe (Microsoft Corporation)


      ========== Driver Services (SafeList) ==========

      DRV:64bit: - (cfwids) -- C:\Windows\SysNative\drivers\cfwids.sys (McAfee, Inc.)
      DRV:64bit: - (mfewfpk) -- C:\Windows\SysNative\drivers\mfewfpk.sys (McAfee, Inc.)
      DRV:64bit: - (mferkdet) -- C:\Windows\SysNative\drivers\mferkdet.sys (McAfee, Inc.)
      DRV:64bit: - (mfehidk) -- C:\Windows\SysNative\drivers\mfehidk.sys (McAfee, Inc.)
      DRV:64bit: - (mfefirek) -- C:\Windows\SysNative\drivers\mfefirek.sys (McAfee, Inc.)
      DRV:64bit: - (mfeavfk) -- C:\Windows\SysNative\drivers\mfeavfk.sys (McAfee, Inc.)
      DRV:64bit: - (mfeapfk) -- C:\Windows\SysNative\drivers\mfeapfk.sys (McAfee, Inc.)
      DRV:64bit: - (RapportKE64) -- C:\Windows\SysNative\drivers\RapportKE64.sys (Trusteer Ltd.)
      DRV:64bit: - (HipShieldK) -- C:\Windows\SysNative\drivers\HipShieldK.sys (McAfee, Inc.)
      DRV:64bit: - (SCDEmu) -- C:\windows\SysNative\drivers\scdemu.sys (Power Software Ltd)
      DRV:64bit: - (igfx) -- C:\Windows\SysNative\drivers\igdkmd64.sys (Intel Corporation)
      DRV:64bit: - (LHDmgr) -- C:\Windows\SysNative\drivers\LhdX64.sys (Lenovo.)
      DRV:64bit: - (ACPIVPC) -- C:\Windows\SysNative\drivers\AcpiVpc.sys (Lenovo Corporation)
      DRV:64bit: - (fbfmon) -- C:\Windows\SysNative\drivers\fbfmon.sys (Lenovo)
      DRV:64bit: - (BPntDrv) -- C:\Windows\SysNative\drivers\BPntDrv.sys (Lenovo)
      DRV:64bit: - (Fs_Rec) -- C:\windows\SysNative\drivers\fs_rec.sys (Microsoft Corporation)
      DRV:64bit: - (amdsata) -- C:\Windows\SysNative\drivers\amdsata.sys (Advanced Micro Devices)
      DRV:64bit: - (amdxata) -- C:\Windows\SysNative\drivers\amdxata.sys (Advanced Micro Devices)
      DRV:64bit: - (vm331avs) -- C:\Windows\SysNative\drivers\vm331avs.sys (Vimicro Corporation)
      DRV:64bit: - (SynTP) -- C:\Windows\SysNative\drivers\SynTP.sys (Synaptics Incorporated)
      DRV:64bit: - (CnxtHdAudService) -- C:\Windows\SysNative\drivers\CHDRT64.sys (Conexant Systems Inc.)
      DRV:64bit: - (iaStor) -- C:\Windows\SysNative\drivers\iaStor.sys (Intel Corporation)
      DRV:64bit: - (clwvd) -- C:\Windows\SysNative\drivers\clwvd.sys (CyberLink Corporation)
      DRV:64bit: - (BTWAMPFL) -- C:\Windows\SysNative\drivers\btwampfl.sys (Broadcom Corporation.)
      DRV:64bit: - (btwl2cap) -- C:\Windows\SysNative\drivers\btwl2cap.sys (Broadcom Corporation.)
      DRV:64bit: - (btwrchid) -- C:\Windows\SysNative\drivers\btwrchid.sys (Broadcom Corporation.)
      DRV:64bit: - (btwavdt) -- C:\Windows\SysNative\drivers\btwavdt.sys (Broadcom Corporation.)
      DRV:64bit: - (btwaudio) -- C:\Windows\SysNative\drivers\btwaudio.sys (Broadcom Corporation.)
      DRV:64bit: - (TsUsbFlt) -- C:\Windows\SysNative\drivers\TsUsbFlt.sys (Microsoft Corporation)
      DRV:64bit: - (HpSAMD) -- C:\Windows\SysNative\drivers\HpSAMD.sys (Hewlett-Packard Company)
      DRV:64bit: - (TsUsbGD) -- C:\Windows\SysNative\drivers\TsUsbGD.sys (Microsoft Corporation)
      DRV:64bit: - (BCM43XX) -- C:\Windows\SysNative\drivers\BCMWL664.SYS (Broadcom Corporation)
      DRV:64bit: - (L1C) -- C:\Windows\SysNative\drivers\L1C62x64.sys (Atheros Communications, Inc.)
      DRV:64bit: - (MEIx64) -- C:\Windows\SysNative\drivers\HECIx64.sys (Intel Corporation)
      DRV:64bit: - (IntcDAud) -- C:\Windows\SysNative\drivers\IntcDAud.sys (Intel(R) Corporation)
      DRV:64bit: - (RSUSBVSTOR) -- C:\Windows\SysNative\drivers\rtsuvstor.sys (Realtek Semiconductor Corp.)
      DRV:64bit: - (vmuvcflt) -- C:\Windows\SysNative\drivers\vmuvcflt.sys (Vimicro Corporation)
      DRV:64bit: - (wsvd) -- C:\Windows\SysNative\drivers\wsvd.sys (CyberLink)
      DRV:64bit: - (amdsbs) -- C:\Windows\SysNative\drivers\amdsbs.sys (AMD Technologies Inc.)
      DRV:64bit: - (LSI_SAS2) -- C:\Windows\SysNative\drivers\lsi_sas2.sys (LSI Corporation)
      DRV:64bit: - (stexstor) -- C:\Windows\SysNative\drivers\stexstor.sys (Promise Technology)
      DRV:64bit: - (RTL8167) -- C:\Windows\SysNative\drivers\Rt64win7.sys (Realtek Corporation )
      DRV:64bit: - (ebdrv) -- C:\Windows\SysNative\drivers\evbda.sys (Broadcom Corporation)
      DRV:64bit: - (b06bdrv) -- C:\Windows\SysNative\drivers\bxvbda.sys (Broadcom Corporation)
      DRV:64bit: - (b57nd60a) -- C:\Windows\SysNative\drivers\b57nd60a.sys (Broadcom Corporation)
      DRV:64bit: - (hcw85cir) -- C:\Windows\SysNative\drivers\hcw85cir.sys (Hauppauge Computer Works, Inc.)
      DRV:64bit: - (HPFXBULK) -- C:\Windows\SysNative\drivers\hpfx64bulk.sys (Hewlett Packard)
      DRV - (RapportCerberus_50414) -- C:\ProgramData\Trusteer\Rapport\store\exts\RapportCerberus\baseline\RapportCerberus64_50414.sys ()
      DRV - (RapportIaso) -- c:\ProgramData\Trusteer\Rapport\store\exts\RapportMS\46125\RapportIaso64.sys (Trusteer Ltd.)
      DRV - (RapportEI64) -- C:\Program Files (x86)\Trusteer\Rapport\bin\x64\RapportEI64.sys (Trusteer Ltd.)
      DRV - (RapportPG64) -- C:\Program Files (x86)\Trusteer\Rapport\bin\x64\RapportPG64.sys (Trusteer Ltd.)
      DRV - (WIMMount) -- C:\Windows\SysWOW64\drivers\wimmount.sys (Microsoft Corporation)


      ========== Standard Registry (SafeList) ==========


      ========== Internet Explorer ==========

      IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Secondary Start Pages = Laptops, Notebooks & Netbooks - Laptops For Those Who Do | Lenovo | US [binary data]
      IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = MSN.com
      IE:64bit: - HKLM\..\SearchScopes,DefaultScope =
      IE:64bit: - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&form=LENDF8&pc=MALN&src=IE-SearchBox
      IE:64bit: - HKLM\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7
      IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
      IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Secondary Start Pages = Laptops, Notebooks & Netbooks - Laptops For Those Who Do | Lenovo | US [binary data]
      IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = MSN.com
      IE - HKLM\..\SearchScopes,DefaultScope =
      IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&form=LENDF8&pc=MALN&src=IE-SearchBox
      IE - HKLM\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7

      IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = iGoogle
      IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = Emol.com - El sitio de noticias online de Chile
      IE - HKCU\..\URLSearchHook: {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll (McAfee, Inc.)
      IE - HKCU\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
      IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&form=LENDF8&pc=MALN&src=IE-SearchBox
      IE - HKCU\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7LENN_esCL485
      IE - HKCU\..\SearchScopes\{9EB11308-6788-4D35-81D5-51B97C380911}: "URL" = http://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT2504091
      IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
      IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyServer" = :


      ========== FireFox ==========

      FF:64bit: - HKLM\Software\MozillaPlugins\@mcafee.com/MSC,version=10: c:\PROGRA~1\mcafee\msc\NPMCSN~1.DLL ()
      FF:64bit: - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\5.1.20125.0\npctrl.dll ( Microsoft Corporation)
      FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.17.2: C:\windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
      FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.17.2: C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
      FF - HKLM\Software\MozillaPlugins\@mcafee.com/MSC,version=10: c:\PROGRA~2\mcafee\msc\NPMCSN~1.DLL ()
      FF - HKLM\Software\MozillaPlugins\@mcafee.com/SAFFPlugin: C:\Program Files (x86)\McAfee\SiteAdvisor\npmcffplg32.dll (McAfee, Inc.)
      FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files (x86)\Microsoft Silverlight\5.1.20125.0\npctrl.dll ( Microsoft Corporation)
      FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
      FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3508.1109: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
      FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.21.135\npGoogleUpdate3.dll (Google Inc.)
      FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.21.135\npGoogleUpdate3.dll (Google Inc.)
      FF - HKLM\Software\MozillaPlugins\@veetle.com/veetleCorePlugin,version=0.9.19: C:\Program Files (x86)\Veetle\plugins\npVeetle.dll (Veetle Inc)
      FF - HKLM\Software\MozillaPlugins\@veetle.com/veetlePlayerPlugin,version=0.9.18: C:\Program Files (x86)\Veetle\Player\npvlc.dll (Veetle Inc)
      FF - HKLM\Software\MozillaPlugins\Adobe Acrobat: C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Air\nppdf32.dll (Adobe Systems Inc.)
      FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
      FF - HKLM\Software\MozillaPlugins\ZEON/PDF,version=2.0: C:\Program Files (x86)\Nuance\PDF Professional 7\bin\nppdf.dll (Zeon Corporation)

      FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{4ED1F68A-5463-4931-9384-8FFF5ED91D92}: C:\Program Files (x86)\McAfee\SiteAdvisor [2013-02-01 08:06:57 | 000,000,000 | ---D | M]
      FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{D19CA586-DD6C-4a0a-96F8-14644F340D60}: C:\Program Files (x86)\Common Files\McAfee\SystemCore [2013-03-08 08:17:54 | 000,000,000 | ---D | M]
      FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\[email protected]: C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2012-09-17 13:32:17 | 000,000,000 | ---D | M]
      FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\[email protected]: C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Browser\WCFirefoxExtn [2012-12-27 10:06:29 | 000,000,000 | ---D | M]
      FF - HKEY_CURRENT_USER\software\mozilla\Firefox\Extensions\\[email protected]: C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2012-09-17 13:32:17 | 000,000,000 | ---D | M]


      ========== Chrome ==========

      CHR - default_search_provider: Google (Enabled)
      CHR - default_search_provider: search_url = {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}{google:searchClient}{google:sourceId}{google:instantExtendedEnabledParameter}ie={inputEncoding}
      CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client=chrome&q={searchTerms}&{google:cursorPosition}sugkey={google:suggestAPIKeyParameter}
      CHR - plugin: Shockwave Flash (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\26.0.1410.43\PepperFlash\pepflashplayer.dll
      CHR - plugin: Chrome Remote Desktop Viewer (Enabled) = internal-remoting-viewer
      CHR - plugin: Native Client (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\26.0.1410.43\ppGoogleNaClPluginChrome.dll
      CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\26.0.1410.43\pdf.dll
      CHR - plugin: Adobe Acrobat (Enabled) = C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll
      CHR - plugin: Google Update (Enabled) = C:\Program Files (x86)\Google\Update\1.3.21.135\npGoogleUpdate3.dll
      CHR - plugin: Java(TM) Platform SE 7 U15 (Enabled) = C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll
      CHR - plugin: McAfee SiteAdvisor (Enabled) = C:\Program Files (x86)\McAfee\SiteAdvisor\npmcffplg32.dll
      CHR - plugin: DocuCom PDF Plus (Enabled) = C:\Program Files (x86)\Nuance\PDF Professional 7\bin\nppdf.dll
      CHR - plugin: Veetle TV Player (Enabled) = C:\Program Files (x86)\Veetle\Player\npvlc.dll
      CHR - plugin: Veetle TV Core (Enabled) = C:\Program Files (x86)\Veetle\plugins\npVeetle.dll
      CHR - plugin: Windows Live\u0099 Photo Gallery (Enabled) = C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
      CHR - plugin: Java Deployment Toolkit 7.0.150.3 (Enabled) = C:\windows\SysWOW64\npDeployJava1.dll
      CHR - plugin: McAfee SecurityCenter (Enabled) = c:\PROGRA~2\mcafee\msc\NPMCSN~1.DLL
      CHR - plugin: Silverlight Plug-In (Enabled) = c:\Program Files (x86)\Microsoft Silverlight\5.1.20125.0\npctrl.dll
      CHR - Extension: Google Docs = C:\Users\Juan Ignacio\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_1\
      CHR - Extension: Google Drive = C:\Users\Juan Ignacio\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_1\
      CHR - Extension: YouTube = C:\Users\Juan Ignacio\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_2\
      CHR - Extension: \u2605 Chrome Extensions = C:\Users\Juan Ignacio\AppData\Local\Google\Chrome\User Data\Default\Extensions\bmbpbbnadaecbckmojfinokdnaegcafp\22.3.1229.79_1\
      CHR - Extension: Adblock Plus = C:\Users\Juan Ignacio\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.4_0\
      CHR - Extension: B\u00FAsqueda de Google = C:\Users\Juan Ignacio\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_1\
      CHR - Extension: SiteAdvisor = C:\Users\Juan Ignacio\AppData\Local\Google\Chrome\User Data\Default\Extensions\fheoggkfdfchfphceeifdbepaooicaho\3.60.126.1_1\
      CHR - Extension: Gmail = C:\Users\Juan Ignacio\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_2\

      O1 HOSTS File: ([2012-10-08 16:43:36 | 000,001,728 | R--- | M]) - C:\Windows\SysNative\drivers\etc\hosts
      O1 - Hosts: 127.0.0.1 3dns-1.adobe.com 3dns-2.adobe.com 3dns-3.adobe.com 3dns-4.adobe.com 3dns.adobe.com activate-sea.adobe.com activate-sjc0.adobe.com activate.adobe.com activate.wip.adobe.com activate.wip1.adobe.com activate.wip2.adobe.com activate.wip3.adobe.com activate.wip4.adobe.com adobe-dns-1.adobe.com adobe-dns-2.adobe.com
      O1 - Hosts: 127.0.0.1 adobe-dns-3.adobe.com adobe-dns-4.adobe.com adobe-dns.adobe.com adobeereg.com crl.verisign.net ereg.adobe.com ereg.wip.adobe.com ereg.wip1.adobe.com ereg.wip2.adobe.com ereg.wip3.adobe.com ereg.wip4.adobe.com hl2rcv.adobe.com ood.opsource.net practivate.adobe practivate.adobe.com
      O1 - Hosts: 127.0.0.1 practivate.adobe.ipp practivate.adobe.newoa practivate.adobe.ntp wip.adobe.com wip1.adobe.com wip2.adobe.com wip3.adobe.com wip4.adobe.com wwis-dubc1-vip60.adobe.com Registration www.wip.adobe.com www.wip1.adobe.com www.wip2.adobe.com www.wip3.adobe.com Adobe
      O2:64bit: - BHO: (scriptproxy) - {7DB2D5A0-7241-4E79-B68D-6309F01C5231} - C:\Archivos de programa\Common Files\mcafee\systemcore\ScriptSn.20120701213645.dll (McAfee, Inc.)
      O2:64bit: - BHO: (Windows Live ID Sign-in Helper) - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Archivos de programa\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
      O2:64bit: - BHO: (Google Toolbar Helper) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
      O2:64bit: - BHO: (McAfee SiteAdvisor BHO) - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - c:\PROGRA~2\mcafee\SITEAD~1\x64\mcieplg.dll (McAfee, Inc.)
      O2 - BHO: (Spybot-S&D IE Protection) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDHelper.dll (Safer-Networking Ltd.)
      O2 - BHO: (PlusIEEventHelper Class) - {551A852F-39A6-44A7-9C13-AFBEC9185A9D} - C:\Program Files (x86)\Nuance\PDF Professional 7\Bin\PlusIEContextMenu.dll (Zeon Corporation)
      O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
      O2 - BHO: (scriptproxy) - {7DB2D5A0-7241-4E79-B68D-6309F01C5231} - C:\Program Files (x86)\Common Files\McAfee\SystemCore\ScriptSn.20120701213645.dll (McAfee, Inc.)
      O2 - BHO: (Adobe PDF Conversion Toolbar Helper) - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
      O2 - BHO: (McAfee SiteAdvisor BHO) - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll (McAfee, Inc.)
      O2 - BHO: (ZeonIEEventHelper Class) - {DA986D7D-CCAF-47B2-84FE-BFA1549BEBF9} - C:\Program Files (x86)\Nuance\PDF Professional 7\bin\ZeonIEFavClient.dll (Zeon Corporation)
      O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
      O2 - BHO: (SmartSelect Class) - {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
      O3:64bit: - HKLM\..\Toolbar: (McAfee SiteAdvisor Toolbar) - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\PROGRA~2\mcafee\SITEAD~1\x64\mcieplg.dll (McAfee, Inc.)
      O3:64bit: - HKLM\..\Toolbar: (Google Toolbar) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
      O3:64bit: - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
      O3 - HKLM\..\Toolbar: (McAfee SiteAdvisor Toolbar) - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll (McAfee, Inc.)
      O3 - HKLM\..\Toolbar: (Adobe PDF) - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
      O3 - HKLM\..\Toolbar: (Nuance PDF) - {E3286BF1-E654-42FF-B4A6-5E111731DF6B} - C:\Program Files (x86)\Nuance\PDF Professional 7\bin\ZeonIEFavClient.dll (Zeon Corporation)
      O3 - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
      O3:64bit: - HKCU\..\Toolbar\WebBrowser: (Google Toolbar) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
      O4:64bit: - HKLM..\Run: [AdobeAAMUpdater-1.0] C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe (Adobe Systems Incorporated)
      O4:64bit: - HKLM..\Run: [Energy Management] C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe (Lenovo (Beijing) Limited)
      O4:64bit: - HKLM..\Run: [EnergyUtility] C:\Program Files (x86)\Lenovo\Energy Management\Utility.exe (Lenovo(beijing) Limited)
      O4:64bit: - HKLM..\Run: [HotKeysCmds] C:\Windows\SysNative\hkcmd.exe (Intel Corporation)
      O4:64bit: - HKLM..\Run: [IgfxTray] C:\Windows\SysNative\igfxtray.exe (Intel Corporation)
      O4:64bit: - HKLM..\Run: [Lenovo EE Boot Optimizer] C:\Program Files (x86)\Lenovo\Boot Optimizer\PopWnd.exe (Lenovo)
      O4:64bit: - HKLM..\Run: [Persistence] C:\Windows\SysNative\igfxpers.exe (Intel Corporation)
      O4 - HKLM..\Run: [] File not found
      O4 - HKLM..\Run: [331BigDog] C:\Program Files (x86)\USB Camera\VM331_STI.EXE (Vimicro)
      O4 - HKLM..\Run: [Acrobat Assistant 8.0] C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrotray.exe (Adobe Systems Inc.)
      O4 - HKLM..\Run: [Adobe Acrobat Speed Launcher] C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrobat_sl.exe (Adobe Systems Incorporated)
      O4 - HKLM..\Run: [AdobeCS6ServiceManager] C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe (Adobe Systems Incorporated)
      O4 - HKLM..\Run: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe (Intel Corporation)
      O4 - HKLM..\Run: [mcui_exe] C:\Program Files\McAfee.com\Agent\mcagent.exe (McAfee, Inc.)
      O4 - HKLM..\Run: [PDF7 Registry Controller] C:\Program Files (x86)\Nuance\PDF Professional 7\RegistryController.exe (Nuance Communications, Inc.)
      O4 - HKLM..\Run: [PDFHook] C:\Program Files (x86)\Nuance\PDF Professional 7\pdfpro7hook.exe (Nuance Communications, Inc.)
      O4 - HKLM..\Run: [PWRISOVM.EXE] C:\Program Files (x86)\PowerISO\PWRISOVM.EXE (Power Software Ltd)
      O4 - HKLM..\Run: [RemoteControl10] C:\Program Files (x86)\Lenovo\PowerDVD10\PDVD10Serv.exe (CyberLink Corp.)
      O4 - HKLM..\Run: [SDTray] C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe (Safer-Networking Ltd.)
      O4 - HKLM..\Run: [SwitchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe (Adobe Systems Incorporated)
      O4 - HKLM..\Run: [UpdateP2GShortCut] C:\Program Files (x86)\Lenovo\Power2Go\MUITransfer\MUIStartMenu.exe (CyberLink Corp.)
      O4 - HKLM..\Run: [UpdatePRCShortCut] C:\Program Files\Lenovo\OneKey App\OneKey Recovery\MUITransfer\MUIStartMenu.exe (CyberLink Corp.)
      O4 - HKLM..\Run: [VeriFaceManager] C:\Program Files (x86)\Lenovo\VeriFace\PManage.exe (Lenovo)
      O4 - HKLM..\Run: [YouCam Mirage] C:\Program Files (x86)\Lenovo\YouCam\YCMMirage.exe (CyberLink)
      O4 - HKLM..\Run: [YouCam Tray] C:\Program Files (x86)\Lenovo\YouCam\YouCam.exe (CyberLink Corp.)
      O4 - HKCU..\Run: [AdobeBridge] File not found
      O4 - HKCU..\Run: [ISUSPM] C:\ProgramData\FLEXnet\Connect\11\ISUSPM.exe (Acresso Corporation)
      O4 - HKCU..\Run: [Spybot-S&D Cleaning] C:\Program Files (x86)\Spybot - Search & Destroy 2\SDCleaner.exe (Safer-Networking Ltd.)
      O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
      O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
      O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoControlPanel = 0
      O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
      O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
      O8:64bit: - Extra context menu item: Append the content of the link to existing PDF file - C:\Program Files (x86)\Nuance\PDF Professional 7\Bin\ZeonIEFavClient.dll (Zeon Corporation)
      O8:64bit: - Extra context menu item: Append the content of the selected links to existing PDF file - C:\Program Files (x86)\Nuance\PDF Professional 7\Bin\ZeonIEFavClient.dll (Zeon Corporation)
      O8:64bit: - Extra context menu item: Append to existing PDF file - C:\Program Files (x86)\Nuance\PDF Professional 7\Bin\ZeonIEFavClient.dll (Zeon Corporation)
      O8:64bit: - Extra context menu item: Create PDF file - C:\Program Files (x86)\Nuance\PDF Professional 7\Bin\ZeonIEFavClient.dll (Zeon Corporation)
      O8:64bit: - Extra context menu item: Create PDF file from the content of the link - C:\Program Files (x86)\Nuance\PDF Professional 7\Bin\ZeonIEFavClient.dll (Zeon Corporation)
      O8:64bit: - Extra context menu item: Create PDF files from the selected links - C:\Program Files (x86)\Nuance\PDF Professional 7\Bin\ZeonIEFavClient.dll (Zeon Corporation)
      O8:64bit: - Extra context menu item: E&xportar a Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000 File not found
      O8:64bit: - Extra context menu item: Enviar imagen al dispositivo &Bluetooth... - C:\Archivos de programa\Lenovo\Bluetooth Software\btsendto_ie_ctx.htm ()
      O8:64bit: - Extra context menu item: Enviar página al dispositivo &Bluetooth... - C:\Archivos de programa\Lenovo\Bluetooth Software\btsendto_ie.htm ()
      O8:64bit: - Extra context menu item: Open with Nuance PDF Converter 7 - C:\Program Files (x86)\Nuance\PDF Professional 7\cnvres_eng.dll (Nuance Communications, Inc.)
      O8 - Extra context menu item: Append the content of the link to existing PDF file - C:\Program Files (x86)\Nuance\PDF Professional 7\Bin\ZeonIEFavClient.dll (Zeon Corporation)
      O8 - Extra context menu item: Append the content of the selected links to existing PDF file - C:\Program Files (x86)\Nuance\PDF Professional 7\Bin\ZeonIEFavClient.dll (Zeon Corporation)
      O8 - Extra context menu item: Append to existing PDF file - C:\Program Files (x86)\Nuance\PDF Professional 7\Bin\ZeonIEFavClient.dll (Zeon Corporation)
      O8 - Extra context menu item: Create PDF file - C:\Program Files (x86)\Nuance\PDF Professional 7\Bin\ZeonIEFavClient.dll (Zeon Corporation)
      O8 - Extra context menu item: Create PDF file from the content of the link - C:\Program Files (x86)\Nuance\PDF Professional 7\Bin\ZeonIEFavClient.dll (Zeon Corporation)
      O8 - Extra context menu item: Create PDF files from the selected links - C:\Program Files (x86)\Nuance\PDF Professional 7\Bin\ZeonIEFavClient.dll (Zeon Corporation)
      O8 - Extra context menu item: E&xportar a Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000 File not found
      O8 - Extra context menu item: Enviar imagen al dispositivo &Bluetooth... - C:\Archivos de programa\Lenovo\Bluetooth Software\btsendto_ie_ctx.htm ()
      O8 - Extra context menu item: Enviar página al dispositivo &Bluetooth... - C:\Archivos de programa\Lenovo\Bluetooth Software\btsendto_ie.htm ()
      O8 - Extra context menu item: Open with Nuance PDF Converter 7 - C:\Program Files (x86)\Nuance\PDF Professional 7\cnvres_eng.dll (Nuance Communications, Inc.)
      O9:64bit: - Extra Button: @C:\Program Files\Lenovo\Bluetooth Software\btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Archivos de programa\Lenovo\Bluetooth Software\btsendto_ie.htm ()
      O9:64bit: - Extra 'Tools' menuitem : @C:\Program Files\Lenovo\Bluetooth Software\btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Archivos de programa\Lenovo\Bluetooth Software\btsendto_ie.htm ()
      O9 - Extra Button: Enviar a OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll (Microsoft Corporation)
      O9 - Extra 'Tools' menuitem : &Enviar a OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll (Microsoft Corporation)
      O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL (Microsoft Corporation)
      O9 - Extra Button: Enviar a Bluetooth - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Archivos de programa\Lenovo\Bluetooth Software\btsendto_ie.htm ()
      O9 - Extra 'Tools' menuitem : Enviar a &Bluetooth - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Archivos de programa\Lenovo\Bluetooth Software\btsendto_ie.htm ()
      O9 - Extra 'Tools' menuitem : Spybot - Search && Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDHelper.dll (Safer-Networking Ltd.)
      O10:64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000008 [] - C:\Archivos de programa\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL (Microsoft Corp.)
      O10:64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000009 [] - C:\Archivos de programa\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL (Microsoft Corp.)
      O1364bit: - gopher Prefix: missing
      O13 - gopher Prefix: missing
      O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 128.86.163.243 128.86.163.242
      O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{FF6DC758-C3A4-4C7C-9ECB-B6724366B0DE}: DhcpNameServer = 128.86.163.243 128.86.163.242
      O18:64bit: - Protocol\Handler\dssrequest {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\PROGRA~2\mcafee\SITEAD~1\x64\mcieplg.dll (McAfee, Inc.)
      O18:64bit: - Protocol\Handler\livecall - No CLSID value found
      O18:64bit: - Protocol\Handler\ms-help - No CLSID value found
      O18:64bit: - Protocol\Handler\msnim - No CLSID value found
      O18:64bit: - Protocol\Handler\sacore {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\PROGRA~2\mcafee\SITEAD~1\x64\mcieplg.dll (McAfee, Inc.)
      O18:64bit: - Protocol\Handler\skype4com - No CLSID value found
      O18:64bit: - Protocol\Handler\wlmailhtml - No CLSID value found
      O18:64bit: - Protocol\Handler\wlpg - No CLSID value found
      O18 - Protocol\Handler\dssrequest {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll (McAfee, Inc.)
      O18 - Protocol\Handler\sacore {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll (McAfee, Inc.)
      O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL (Skype Technologies)
      O18:64bit: - Protocol\Filter\application/x-mfe-ipt {3EF5086B-5478-4598-A054-786C45D75692} - c:\Archivos de programa\mcafee\msc\McSnIePl64.dll (McAfee, Inc.)
      O18:64bit: - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\Archivos de programa\Common Files\Microsoft Shared\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)
      O18 - Protocol\Filter\application/x-mfe-ipt {3EF5086B-5478-4598-A054-786C45D75692} - c:\PROGRA~2\mcafee\msc\mcsniepl.dll (McAfee, Inc.)
      O18 - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\PROGRA~2\COMMON~1\MICROS~1\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)
      O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\windows\explorer.exe (Microsoft Corporation)
      O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
      O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\windows\SysWow64\explorer.exe (Microsoft Corporation)
      O20 - HKLM Winlogon: UserInit - (userinit.exe) - C:\windows\SysWow64\userinit.exe (Microsoft Corporation)
      O20:64bit: - Winlogon\Notify\igfxcui: DllName - (igfxdev.dll) - C:\windows\SysNative\igfxdev.dll (Intel Corporation)
      O20 - Winlogon\Notify\SDWinLogon: DllName - (SDWinLogon.dll) - File not found
      O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
      O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
      O32 - HKLM CDRom: AutoRun - 1
      O33 - MountPoints2\{f87fbff4-0368-11e2-9126-7ce9d3c37273}\Shell - "" = AutoRun
      O33 - MountPoints2\{f87fbff4-0368-11e2-9126-7ce9d3c37273}\Shell\AutoRun\command - "" = G:\LaunchU3.exe
      O33 - MountPoints2\E\Shell - "" = AutoRun
      O33 - MountPoints2\E\Shell\AutoRun\command - "" = E:\autorun.exe
      O34 - HKLM BootExecute: (autocheck autochk *)
      O35:64bit: - HKLM\..comfile [open] -- "%1" %*
      O35:64bit: - HKLM\..exefile [open] -- "%1" %*
      O35 - HKLM\..comfile [open] -- "%1" %*
      O35 - HKLM\..exefile [open] -- "%1" %*
      O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
      O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
      O37 - HKLM\...com [@ = comfile] -- "%1" %*
      O37 - HKLM\...exe [@ = exefile] -- "%1" %*
      O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
      O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
      O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)


      MsConfig:64bit - StartUpFolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^HP Digital Imaging Monitor.lnk - C:\PROGRA~2\HP\DIGITA~1\bin\hpqtra08.exe - (Hewlett-Packard Co.)
      MsConfig:64bit - StartUpReg: Best Codec Pack803661.exe - hkey= - key= - File not found
      MsConfig:64bit - StartUpReg: Fritz 8 - hkey= - key= - C:\Program Files (x86)\Ajedrez Premium\Inicio del juego.exe (Macromedia, Inc.)
      MsConfig:64bit - State: "startup" - Reg Error: Key error.

      ========== Files/Folders - Created Within 90 Days ==========

      [2013-04-06 12:28:41 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee
      [2013-03-30 08:00:34 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Java
      [2013-03-28 20:05:05 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
      [2013-03-28 19:14:19 | 000,000,000 | ---D | C] -- C:\_OTL
      [2013-03-28 16:50:19 | 000,024,176 | ---- | C] (Malwarebytes Corporation) -- C:\windows\SysNative\drivers\mbam.sys
      [2013-03-28 16:50:18 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware
      [2013-03-24 11:30:30 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Users\Juan Ignacio\Desktop\OTL.exe
      [2013-03-24 08:54:53 | 000,000,000 | ---D | C] -- C:\Users\Juan Ignacio\AppData\Roaming\Malwarebytes
      [2013-03-24 08:54:44 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
      [2013-03-13 23:40:37 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
      [2013-03-13 23:39:44 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Silverlight
      [2013-03-13 23:39:44 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Silverlight
      [2013-03-09 14:59:33 | 000,000,000 | ---D | C] -- C:\ProgramData\Spybot - Search & Destroy
      [2013-03-09 14:59:27 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot - Search & Destroy 2
      [2013-03-09 14:59:21 | 000,017,272 | ---- | C] (Safer Networking Limited) -- C:\windows\SysNative\sdnclean64.exe
      [2013-03-09 14:59:15 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Spybot - Search & Destroy 2
      [2013-03-09 14:58:53 | 000,000,000 | ---D | C] -- C:\Users\Juan Ignacio\AppData\Local\Programs
      [2013-03-05 17:34:47 | 000,000,000 | ---D | C] -- C:\Users\Juan Ignacio\Documents\Telltale Games
      [2013-02-12 11:56:07 | 000,000,000 | ---D | C] -- C:\Users\Juan Ignacio\AppData\Local\{8C9F247C-24F1-4622-9599-D52571C42C57}
      [2013-02-10 11:16:10 | 000,000,000 | ---D | C] -- C:\Users\Juan Ignacio\AppData\Roaming\Softplicity
      [2013-02-10 11:16:03 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Total Audio Converter
      [2013-02-10 11:15:58 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\TotalAudioConverter
      [2013-01-23 11:33:39 | 000,000,000 | R--D | C] -- C:\Program Files (x86)\Skype
      [2013-01-23 11:33:39 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
      [2013-01-23 11:33:39 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Skype
      [2013-01-08 16:35:13 | 000,000,000 | ---D | C] -- C:\Users\Juan Ignacio\AppData\Roaming\FLEXnet
      [2013-01-08 16:34:31 | 000,000,000 | ---D | C] -- C:\Users\Juan Ignacio\AppData\Roaming\Zeon
      [2013-01-08 16:34:17 | 000,000,000 | ---D | C] -- C:\Users\Juan Ignacio\AppData\Roaming\Nuance
      [2013-01-08 16:32:45 | 000,000,000 | ---D | C] -- C:\ProgramData\Nuance
      [2013-01-08 16:32:35 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nuance PDF Converter Professional 7
      [2013-01-08 16:32:31 | 000,000,000 | ---D | C] -- C:\windows\PIXTRAN
      [2013-01-08 16:32:01 | 000,000,000 | ---D | C] -- C:\ProgramData\zeon
      [2013-01-08 16:32:01 | 000,000,000 | ---D | C] -- C:\windows\SysWow64\spool
      [2013-01-08 16:32:00 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\ScanSoft Shared
      [2013-01-08 16:31:55 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Nuance
      [2013-01-08 16:31:55 | 000,000,000 | ---D | C] -- C:\ProgramData\FLEXnet

      ========== Files - Modified Within 90 Days ==========

      [2013-04-06 12:31:10 | 001,555,646 | ---- | M] () -- C:\windows\SysNative\PerfStringBackup.INI
      [2013-04-06 12:31:10 | 000,616,008 | ---- | M] () -- C:\windows\SysNative\perfh009.dat
      [2013-04-06 12:31:10 | 000,106,388 | ---- | M] () -- C:\windows\SysNative\perfc009.dat
      [2013-04-06 12:23:59 | 000,001,046 | ---- | M] () -- C:\windows\tasks\GoogleUpdateTaskMachineCore.job
      [2013-04-06 12:23:53 | 000,067,584 | --S- | M] () -- C:\windows\bootstat.dat
      [2013-04-06 12:23:51 | 3177,074,688 | -HS- | M] () -- C:\hiberfil.sys
      [2013-04-06 12:23:50 | 000,470,155 | ---- | M] () -- C:\windows\SysNative\fastboot.set
      [2013-04-01 08:12:00 | 000,001,050 | ---- | M] () -- C:\windows\tasks\GoogleUpdateTaskMachineUA.job
      [2013-04-01 08:06:00 | 000,000,838 | ---- | M] () -- C:\windows\tasks\Adobe Flash Player Updater.job
      [2013-04-01 06:47:42 | 000,021,072 | -H-- | M] () -- C:\windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
      [2013-04-01 06:47:42 | 000,021,072 | -H-- | M] () -- C:\windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
      [2013-04-01 06:45:10 | 000,001,828 | ---- | M] () -- C:\Users\Public\Desktop\McAfee AntiVirus Plus.lnk
      [2013-03-31 22:58:13 | 000,703,840 | ---- | M] () -- C:\windows\SysNative\perfh00A.dat
      [2013-03-31 22:58:13 | 000,137,806 | ---- | M] () -- C:\windows\SysNative\perfc00A.dat
      [2013-03-28 16:47:25 | 005,006,944 | ---- | M] () -- C:\windows\SysNative\FNTCACHE.DAT
      [2013-03-26 13:54:32 | 018,560,896 | ---- | M] () -- C:\Users\Juan Ignacio\Documents\The Law and Economics of Article 82.pdf
      [2013-03-24 16:35:41 | 000,179,008 | ---- | M] () -- C:\Users\Juan Ignacio\Documents\Key Legal Issues Under the New EU Regulatory Framework.pdf
      [2013-03-24 13:48:10 | 000,002,239 | ---- | M] () -- C:\Users\Juan Ignacio\Desktop\OneKey Recovery.lnk
      [2013-03-24 11:30:32 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Juan Ignacio\Desktop\OTL.exe
      [2013-03-10 09:30:23 | 000,800,229 | ---- | M] () -- C:\Users\Juan Ignacio\Documents\bookmarks_10_03_13.html
      [2013-03-09 16:11:45 | 000,001,402 | ---- | M] () -- C:\Users\Juan Ignacio\Desktop\CCleaner64.lnk
      [2013-03-09 14:59:27 | 000,002,173 | ---- | M] () -- C:\Users\Public\Desktop\Spybot-S&D Start Center.lnk
      [2013-02-19 14:59:06 | 000,070,112 | ---- | M] (McAfee, Inc.) -- C:\windows\SysNative\drivers\cfwids.sys
      [2013-02-19 14:56:26 | 000,340,216 | ---- | M] (McAfee, Inc.) -- C:\windows\SysNative\drivers\mfewfpk.sys
      [2013-02-19 14:56:14 | 000,182,752 | ---- | M] (McAfee, Inc.) -- C:\windows\SysNative\mfevtps.exe
      [2013-02-19 14:55:26 | 000,010,728 | ---- | M] (McAfee, Inc.) -- C:\windows\SysNative\drivers\mfeclnk.sys
      [2013-02-19 14:55:14 | 000,106,552 | ---- | M] (McAfee, Inc.) -- C:\windows\SysNative\drivers\mferkdet.sys
      [2013-02-19 14:54:32 | 000,771,536 | ---- | M] (McAfee, Inc.) -- C:\windows\SysNative\drivers\mfehidk.sys
      [2013-02-19 14:53:42 | 000,515,968 | ---- | M] (McAfee, Inc.) -- C:\windows\SysNative\drivers\mfefirek.sys
      [2013-02-19 14:53:02 | 000,309,840 | ---- | M] (McAfee, Inc.) -- C:\windows\SysNative\drivers\mfeavfk.sys
      [2013-02-19 14:52:44 | 000,179,280 | ---- | M] (McAfee, Inc.) -- C:\windows\SysNative\drivers\mfeapfk.sys
      [2013-02-14 2335 | 000,196,381 | ---- | M] () -- C:\Users\Juan Ignacio\Documents\CAT judgment on liability in Argos and Littlewoods appeal.pdf
      [2013-02-14 23:09:49 | 000,208,496 | ---- | M] () -- C:\Users\Juan Ignacio\Documents\Allsports and JJB judgment on liability.pdf
      [2013-02-14 23:08:59 | 000,215,448 | ---- | M] () -- C:\Users\Juan Ignacio\Documents\Court of Appeal dismisses Argos.pdf
      [2013-02-14 23:04:41 | 000,328,691 | ---- | M] () -- C:\Users\Juan Ignacio\Documents\Dairy Tesco CAT.pdf
      [2013-02-14 23:04:17 | 000,536,044 | ---- | M] () -- C:\Users\Juan Ignacio\Documents\UK2.pdf
      [2013-02-14 22:46:11 | 002,621,395 | R--- | M] () -- C:\Users\Juan Ignacio\Documents\escanear0001.JPG
      [2013-02-13 10:19:12 | 000,236,248 | ---- | M] (Trusteer Ltd.) -- C:\windows\SysNative\drivers\RapportKE64.sys
      [2013-02-11 15:04:57 | 001,037,849 | ---- | M] () -- C:\Users\Juan Ignacio\Documents\SAP_3029502_sept_11v2_Finale.pdf
      [2013-01-24 22:53:26 | 002,874,793 | ---- | M] () -- C:\Users\Juan Ignacio\Documents\Mazarin.epub
      [2013-01-23 11:33:39 | 000,002,515 | ---- | M] () -- C:\Users\Public\Desktop\Skype.lnk
      [2013-01-18 19:12:32 | 000,181,312 | ---- | M] () -- C:\Users\Juan Ignacio\Documents\edimburgo.pdf
      [2013-01-09 09:26:14 | 000,001,558 | ---- | M] () -- C:\Users\Juan Ignacio\Desktop\Advanced Grammar in Use.lnk
      [2013-01-08 23:38:59 | 056,743,561 | ---- | M] () -- C:\Users\Juan Ignacio\Desktop\Advanced Grammar in Use.pdf
      [2013-01-08 16:32:35 | 000,001,097 | ---- | M] () -- C:\Users\Public\Desktop\PDF Converter Professional.lnk

      ========== Files Created - No Company Name ==========

      [2013-03-28 16:47:04 | 005,006,944 | ---- | C] () -- C:\windows\SysNative\FNTCACHE.DAT
      [2013-03-26 13:54:31 | 018,560,896 | ---- | C] () -- C:\Users\Juan Ignacio\Documents\The Law and Economics of Article 82.pdf
      [2013-03-24 16:35:38 | 000,179,008 | ---- | C] () -- C:\Users\Juan Ignacio\Documents\Key Legal Issues Under the New EU Regulatory Framework.pdf
      [2013-03-10 09:30:23 | 000,800,229 | ---- | C] () -- C:\Users\Juan Ignacio\Documents\bookmarks_10_03_13.html
      [2013-03-09 16:11:45 | 000,001,402 | ---- | C] () -- C:\Users\Juan Ignacio\Desktop\CCleaner64.lnk
      [2013-03-09 14:59:27 | 000,002,185 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot-S&D Start Center.lnk
      [2013-03-09 14:59:27 | 000,002,173 | ---- | C] () -- C:\Users\Public\Desktop\Spybot-S&D Start Center.lnk
      [2013-02-14 2334 | 000,196,381 | ---- | C] () -- C:\Users\Juan Ignacio\Documents\CAT judgment on liability in Argos and Littlewoods appeal.pdf
      [2013-02-14 23:09:48 | 000,208,496 | ---- | C] () -- C:\Users\Juan Ignacio\Documents\Allsports and JJB judgment on liability.pdf
      [2013-02-14 23:08:58 | 000,215,448 | ---- | C] () -- C:\Users\Juan Ignacio\Documents\Court of Appeal dismisses Argos.pdf
      [2013-02-14 23:04:41 | 000,328,691 | ---- | C] () -- C:\Users\Juan Ignacio\Documents\Dairy Tesco CAT.pdf
      [2013-02-14 22:46:10 | 002,621,395 | R--- | C] () -- C:\Users\Juan Ignacio\Documents\escanear0001.JPG
      [2013-02-14 1847 | 000,536,044 | ---- | C] () -- C:\Users\Juan Ignacio\Documents\UK2.pdf
      [2013-02-11 15:04:56 | 001,037,849 | ---- | C] () -- C:\Users\Juan Ignacio\Documents\SAP_3029502_sept_11v2_Finale.pdf
      [2013-01-24 22:53:26 | 002,874,793 | ---- | C] () -- C:\Users\Juan Ignacio\Documents\Mazarin.epub
      [2013-01-18 19:12:30 | 000,181,312 | ---- | C] () -- C:\Users\Juan Ignacio\Documents\edimburgo.pdf
      [2013-01-10 13:40:53 | 056,743,561 | ---- | C] () -- C:\Users\Juan Ignacio\Desktop\Advanced Grammar in Use.pdf
      [2013-01-09 09:26:14 | 000,001,558 | ---- | C] () -- C:\Users\Juan Ignacio\Desktop\Advanced Grammar in Use.lnk
      [2013-01-08 16:32:35 | 000,001,097 | ---- | C] () -- C:\Users\Public\Desktop\PDF Converter Professional.lnk
      [2012-12-27 11:15:11 | 000,000,132 | ---- | C] () -- C:\Users\Juan Ignacio\AppData\Roaming\Adobe PNG Format CS6 Prefs
      [2012-12-21 16:25:36 | 000,195,071 | ---- | C] () -- C:\windows\hppins13.dat
      [2012-12-21 16:25:36 | 000,006,760 | ---- | C] () -- C:\windows\hppmdl13.dat
      [2012-09-17 13:27:44 | 000,181,190 | ---- | C] () -- C:\windows\hpoins28.dat
      [2012-09-17 13:27:44 | 000,000,442 | ---- | C] () -- C:\windows\hpomdl28.dat
      [2012-08-03 01:09:52 | 000,000,129 | ---- | C] () -- C:\windows\ChssBase.ini
      [2012-06-08 11:44:04 | 000,060,304 | ---- | C] () -- C:\Users\Juan Ignacio\g2mdlhlpx.exe
      [2012-03-19 23:31:16 | 000,963,912 | ---- | C] () -- C:\windows\SysWow64\igkrng600.bin
      [2012-03-19 23:31:16 | 000,261,208 | ---- | C] () -- C:\windows\SysWow64\igfcg600m.bin
      [2012-03-19 23:25:58 | 000,058,880 | ---- | C] () -- C:\windows\SysWow64\igdde32.dll
      [2012-03-19 22:21:14 | 013,212,672 | ---- | C] () -- C:\windows\SysWow64\ig4icd32.dll
      [2012-03-11 21:52:07 | 000,000,512 | ---- | C] () -- C:\windows\previous.bin
      [2012-03-11 21:52:07 | 000,000,512 | ---- | C] () -- C:\windows\current.bin
      [2012-03-11 21:36:13 | 002,086,240 | ---- | C] () -- C:\windows\SysWow64\LenovoVeriface.Interface.dll
      [2012-03-11 21:36:13 | 001,500,512 | ---- | C] () -- C:\windows\SysWow64\Apblend.dll
      [2012-03-11 21:36:13 | 001,171,456 | ---- | C] () -- C:\windows\SysWow64\PicNotify.dll
      [2012-03-11 21:36:13 | 000,472,416 | ---- | C] () -- C:\windows\SysWow64\Lenovo.VerifaceStub.dll
      [2012-03-11 21:36:09 | 001,044,480 | ---- | C] () -- C:\windows\SysWow64\3DImageRenderer.dll
      [2012-03-11 21:26:08 | 000,001,803 | ---- | C] () -- C:\windows\vm331Rmv.ini
      [2012-03-11 21:26:08 | 000,001,803 | ---- | C] () -- C:\windows\SysWow64\vm331Rmv.ini
      [2012-03-11 21:21:05 | 000,066,856 | ---- | C] () -- C:\windows\SysWow64\SynTPEnhPS.dll
      [2012-03-11 21:08:27 | 000,145,804 | ---- | C] () -- C:\windows\SysWow64\igcompkrng600.bin

      ========== ZeroAccess Check ==========

      [2009-07-14 05:55:00 | 000,000,227 | RHS- | M] () -- C:\windows\assembly\Desktop.ini

      [HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64

      [HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

      [HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64

      [HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

      [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
      "" = C:\Windows\SysNative\shell32.dll -- [2012-06-09 06:43:10 | 014,172,672 | ---- | M] (Microsoft Corporation)
      "ThreadingModel" = Apartment

      [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
      "" = %SystemRoot%\system32\shell32.dll -- [2012-06-09 05:41:00 | 012,873,728 | ---- | M] (Microsoft Corporation)
      "ThreadingModel" = Apartment

      [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
      "" = C:\Windows\SysNative\wbem\fastprox.dll -- [2009-07-14 02:40:51 | 000,909,312 | ---- | M] (Microsoft Corporation)
      "ThreadingModel" = Free

      [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
      "" = %systemroot%\system32\wbem\fastprox.dll -- [2010-11-21 04:24:25 | 000,606,208 | ---- | M] (Microsoft Corporation)
      "ThreadingModel" = Free

      [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
      "" = C:\Windows\SysNative\wbem\wbemess.dll -- [2009-07-14 02:41:56 | 000,505,856 | ---- | M] (Microsoft Corporation)
      "ThreadingModel" = Both

      [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]

      ========== LOP Check ==========

      [2013-03-28 16:41:35 | 000,000,000 | ---D | M] -- C:\Users\Juan Ignacio\AppData\Roaming\Azureus
      [2012-06-17 23:22:26 | 000,000,000 | ---D | M] -- C:\Users\Juan Ignacio\AppData\Roaming\BSplayer PRO
      [2012-10-13 19:29:31 | 000,000,000 | ---D | M] -- C:\Users\Juan Ignacio\AppData\Roaming\calibre
      [2012-08-03 00:41:15 | 000,000,000 | ---D | M] -- C:\Users\Juan Ignacio\AppData\Roaming\ChessBase
      [2012-11-27 16:05:19 | 000,000,000 | ---D | M] -- C:\Users\Juan Ignacio\AppData\Roaming\eBookConverter
      [2012-10-12 20:00:57 | 000,000,000 | ---D | M] -- C:\Users\Juan Ignacio\AppData\Roaming\Epubsoft
      [2012-05-27 00:30:17 | 000,000,000 | ---D | M] -- C:\Users\Juan Ignacio\AppData\Roaming\Lenovo
      [2012-12-27 08:53:01 | 000,000,000 | ---D | M] -- C:\Users\Juan Ignacio\AppData\Roaming\MajorWare
      [2013-01-10 15:27:03 | 000,000,000 | ---D | M] -- C:\Users\Juan Ignacio\AppData\Roaming\Nuance
      [2012-05-26 23:20:55 | 000,000,000 | ---D | M] -- C:\Users\Juan Ignacio\AppData\Roaming\PowerISO
      [2013-02-10 11:16:10 | 000,000,000 | ---D | M] -- C:\Users\Juan Ignacio\AppData\Roaming\Softplicity
      [2013-01-08 16:34:31 | 000,000,000 | ---D | M] -- C:\Users\Juan Ignacio\AppData\Roaming\Zeon

      ========== Custom Scans ==========

      < %systemdrive%\*.* >
      [2013-03-24 08:50:42 | 000,004,790 | ---- | M] () -- C:\AdwCleaner[S1].txt
      [2013-03-24 08:54:16 | 000,000,361 | ---- | M] () -- C:\AdwCleaner[S2].txt
      [2013-03-24 13:25:24 | 000,000,834 | ---- | M] () -- C:\AdwCleaner[S3].txt
      [2013-03-24 13:35:42 | 000,000,893 | ---- | M] () -- C:\AdwCleaner[S4].txt
      [2013-03-28 16:45:49 | 000,000,994 | ---- | M] () -- C:\AdwCleaner[S5].txt
      [2013-04-06 12:24:05 | 002,070,525 | ---- | M] () -- C:\FaceProv.log
      [2013-04-06 12:23:51 | 3177,074,688 | -HS- | M] () -- C:\hiberfil.sys
      [2013-04-06 12:23:51 | 4236,099,584 | -HS- | M] () -- C:\pagefile.sys
      Invalid Environment Variable: programefiles

      < %appdata%\*.exe /ncn /s >
      [2012-08-26 20:54:45 | 000,310,208 | ---- | M] (Georgia Institute of Technology) -- C:\Users\Juan Ignacio\AppData\Roaming\Azureus\plugins\mlab\ShaperProbeC.exe
      [2009-08-12 02:21:26 | 000,087,552 | ---- | M] () -- C:\Users\Juan Ignacio\AppData\Roaming\BSplayer PRO\AC3 Filter\ac3config.exe
      [2009-08-12 02:21:30 | 000,090,112 | ---- | M] () -- C:\Users\Juan Ignacio\AppData\Roaming\BSplayer PRO\AC3 Filter\spdif_test.exe
      [2010-03-22 19:52:04 | 000,697,690 | ---- | M] () -- C:\Users\Juan Ignacio\AppData\Roaming\BSplayer PRO\AC3 Filter\unins000.exe
      [2010-02-23 22:01:52 | 001,185,871 | ---- | M] () -- C:\Users\Juan Ignacio\AppData\Roaming\BSplayer PRO\FFDShow\unins000.exe
      [2010-08-14 15:42:54 | 000,113,152 | ---- | M] () -- C:\Users\Juan Ignacio\AppData\Roaming\BSplayer PRO\Haali media splitter\dsmux.exe
      [2010-08-14 15:45:10 | 000,358,400 | ---- | M] () -- C:\Users\Juan Ignacio\AppData\Roaming\BSplayer PRO\Haali media splitter\gdsmux.exe
      [2010-08-14 15:42:06 | 000,137,728 | ---- | M] () -- C:\Users\Juan Ignacio\AppData\Roaming\BSplayer PRO\Haali media splitter\mkv2vfr.exe
      [2010-09-30 20:30:22 | 000,042,305 | ---- | M] () -- C:\Users\Juan Ignacio\AppData\Roaming\BSplayer PRO\Haali media splitter\uninstall.exe
      [2012-12-27 09:30:37 | 001,974,120 | ---- | M] () -- C:\Users\Juan Ignacio\AppData\Roaming\MajorWare\PDF To Word Converter\ppp\pdfccc.exe

      < %windir%\system32\*.sys /lockedfiles >

      < CREATERESTOREPOIN >
      [2009-07-14 06:08:49 | 000,000,006 | -H-- | C] () -- C:\windows\Tasks\SA.DAT
      [2009-07-14 06:08:49 | 000,032,622 | ---- | C] () -- C:\windows\Tasks\SCHEDLGU.TXT
      [2012-03-11 21:42:34 | 000,001,046 | ---- | C] () -- C:\windows\Tasks\GoogleUpdateTaskMachineCore.job
      [2012-03-11 21:42:35 | 000,001,050 | ---- | C] () -- C:\windows\Tasks\GoogleUpdateTaskMachineUA.job
      [2012-08-03 21:39:57 | 000,000,838 | ---- | C] () -- C:\windows\Tasks\Adobe Flash Player Updater.job

      < End of report >
      Última edición por jidonoso fecha: 06/04/13 a las 09:27:59

    3. #13
      Usuario Avatar de jidonoso
      Registrado
      mar 2013
      Ubicación
      Chile
      Mensajes
      10

      Re: adware en chrome??

      El reporte de malware

      # AdwCleaner v2.200 - Fichero creado el 06/04/2013 a 14:02:32
      # Actualizado el 02/04/2013 por Xplode
      # Sistema operativo : Windows 7 Home Basic Service Pack 1 (64 bits)
      # Usuario : Juan Ignacio - JUANIGNACIO-PC
      # Modo de inicio : Normal
      # Ejecutado desde : C:\Users\Juan Ignacio\Desktop\adwcleaner.exe
      # Opción [Supresión]


      ***** [Servicios] *****


      ***** [Ficheros / Carpetas] *****


      ***** [Registro] *****

      Clave Supprimida : HKCU\Software\Conduit

      ***** [Navegadores] *****

      -\\ Internet Explorer v9.0.8112.16470

      [OK] El registro no contiene ninguna entrada ilegítima.

      -\\ Google Chrome v26.0.1410.43

      Fichero : C:\Users\Juan Ignacio\AppData\Local\Google\Chrome\User Data\Default\Preferences

      [OK] El fichero no contiene ninguna entrada ilegítima.

      *************************

      AdwCleaner[R1].txt - [1237 octets] - [06/04/2013 14:01:37]
      AdwCleaner[S1].txt - [4790 octets] - [24/03/2013 08:50:22]
      AdwCleaner[S2].txt - [361 octets] - [24/03/2013 08:54:16]
      AdwCleaner[S3].txt - [834 octets] - [24/03/2013 13:25:09]
      AdwCleaner[S4].txt - [893 octets] - [24/03/2013 13:35:31]
      AdwCleaner[S5].txt - [994 octets] - [28/03/2013 16:45:31]
      AdwCleaner[S6].txt - [1172 octets] - [06/04/2013 14:02:32]

      ########## EOF - C:\AdwCleaner[S6].txt - [1232 octets] ##########

    4. #14
      Usuario Avatar de jidonoso
      Registrado
      mar 2013
      Ubicación
      Chile
      Mensajes
      10

      Re: adware en chrome??

      mbar-log:

      Malwarebytes Anti-Rootkit BETA 1.01.0.1022
      Malwarebytes : Free anti-malware download

      Database version: v2013.04.06.04

      Windows 7 Service Pack 1 x64 NTFS
      Internet Explorer 9.0.8112.16421
      Juan Ignacio :: JUANIGNACIO-PC [administrator]

      06-04-2013 14:23:36
      mbar-log-2013-04-06 (14-23-36).txt

      Scan type: Quick scan
      Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM | P2P
      Scan options disabled:
      Objects scanned: 30323
      Time elapsed: 14 minute(s), 25 second(s)

      Memory Processes Detected: 0
      (No malicious items detected)

      Memory Modules Detected: 0
      (No malicious items detected)

      Registry Keys Detected: 0
      (No malicious items detected)

      Registry Values Detected: 0
      (No malicious items detected)

      Registry Data Items Detected: 0
      (No malicious items detected)

      Folders Detected: 0
      (No malicious items detected)

      Files Detected: 0
      (No malicious items detected)

      (end)


      System log

      Malwarebytes Anti-Rootkit BETA 1.01.0.1022

      (c) Malwarebytes Corporation 2011-2012

      OS version: 6.1.7601 Windows 7 Service Pack 1 x64

      Account is Administrative

      Internet Explorer version: 9.0.8112.16421

      File system is: NTFS
      Disk drives: C:\ DRIVE_FIXED, D:\ DRIVE_FIXED
      CPU speed: 2.494000 GHz
      Memory total: 4236099584, free: 2192945152

      ------------ Kernel report ------------
      04/06/2013 14:08:40
      ------------ Loaded modules -----------
      \SystemRoot\system32\ntoskrnl.exe
      \SystemRoot\system32\hal.dll
      \SystemRoot\system32\kdcom.dll
      \SystemRoot\system32\mcupdate_GenuineIntel.dll
      \SystemRoot\system32\PSHED.dll
      \SystemRoot\system32\CLFS.SYS
      \SystemRoot\system32\CI.dll
      \SystemRoot\system32\drivers\Wdf01000.sys
      \SystemRoot\system32\drivers\WDFLDR.SYS
      \SystemRoot\system32\drivers\ACPI.sys
      \SystemRoot\system32\drivers\WMILIB.SYS
      \SystemRoot\system32\drivers\msisadrv.sys
      \SystemRoot\system32\drivers\pci.sys
      \SystemRoot\system32\drivers\vdrvroot.sys
      \SystemRoot\System32\drivers\partmgr.sys
      \SystemRoot\system32\drivers\compbatt.sys
      \SystemRoot\system32\drivers\BATTC.SYS
      \SystemRoot\system32\drivers\volmgr.sys
      \SystemRoot\System32\drivers\volmgrx.sys
      \SystemRoot\System32\drivers\mountmgr.sys
      \SystemRoot\system32\DRIVERS\iaStor.sys
      \SystemRoot\system32\drivers\atapi.sys
      \SystemRoot\system32\drivers\ataport.SYS
      \SystemRoot\system32\drivers\msahci.sys
      \SystemRoot\system32\drivers\PCIIDEX.SYS
      \SystemRoot\system32\drivers\amdxata.sys
      \SystemRoot\system32\drivers\fltmgr.sys
      \SystemRoot\system32\drivers\fileinfo.sys
      \SystemRoot\system32\drivers\mfehidk.sys
      \SystemRoot\System32\Drivers\Ntfs.sys
      \SystemRoot\System32\Drivers\msrpc.sys
      \SystemRoot\System32\Drivers\ksecdd.sys
      \SystemRoot\System32\Drivers\cng.sys
      \SystemRoot\System32\drivers\pcw.sys
      \SystemRoot\System32\Drivers\Fs_Rec.sys
      \SystemRoot\system32\drivers\ndis.sys
      \SystemRoot\system32\drivers\NETIO.SYS
      \SystemRoot\System32\Drivers\ksecpkg.sys
      \SystemRoot\System32\drivers\tcpip.sys
      \SystemRoot\System32\drivers\fwpkclnt.sys
      \SystemRoot\system32\drivers\mfewfpk.sys
      \SystemRoot\system32\drivers\wd.sys
      \SystemRoot\system32\drivers\volsnap.sys
      \SystemRoot\System32\Drivers\spldr.sys
      \SystemRoot\System32\drivers\rdyboost.sys
      \SystemRoot\System32\Drivers\RapportKE64.sys
      \SystemRoot\System32\Drivers\mup.sys
      \SystemRoot\System32\DRIVERS\LhdX64.sys
      \SystemRoot\System32\drivers\hwpolicy.sys
      \SystemRoot\System32\DRIVERS\fvevol.sys
      \SystemRoot\system32\drivers\fbfmon.sys
      \SystemRoot\system32\drivers\disk.sys
      \SystemRoot\system32\drivers\CLASSPNP.SYS
      \SystemRoot\system32\DRIVERS\cdrom.sys
      \??\C:\ProgramData\Trusteer\Rapport\store\exts\RapportCerberus\baseline\RapportCerberus64_50414.sys
      \??\C:\Program Files (x86)\Trusteer\Rapport\bin\x64\RapportPG64.sys
      \SystemRoot\System32\Drivers\Null.SYS
      \SystemRoot\System32\Drivers\Beep.SYS
      \SystemRoot\System32\drivers\vga.sys
      \SystemRoot\System32\drivers\VIDEOPRT.SYS
      \SystemRoot\System32\drivers\watchdog.sys
      \SystemRoot\System32\DRIVERS\RDPCDD.sys
      \SystemRoot\system32\drivers\rdpencdd.sys
      \SystemRoot\system32\drivers\rdprefmp.sys
      \SystemRoot\System32\Drivers\Msfs.SYS
      \SystemRoot\System32\Drivers\Npfs.SYS
      \SystemRoot\system32\DRIVERS\tdx.sys
      \SystemRoot\system32\DRIVERS\TDI.SYS
      \SystemRoot\System32\DRIVERS\netbt.sys
      \SystemRoot\system32\drivers\afd.sys
      \SystemRoot\system32\DRIVERS\wfplwf.sys
      \SystemRoot\system32\DRIVERS\pacer.sys
      \SystemRoot\system32\DRIVERS\vwififlt.sys
      \SystemRoot\system32\DRIVERS\netbios.sys
      \SystemRoot\system32\DRIVERS\wanarp.sys
      \SystemRoot\system32\DRIVERS\termdd.sys
      \SystemRoot\System32\Drivers\SCDEmu.SYS
      \SystemRoot\system32\DRIVERS\rdbss.sys
      \??\C:\Program Files (x86)\Trusteer\Rapport\bin\x64\RapportEI64.sys
      \SystemRoot\system32\drivers\nsiproxy.sys
      \SystemRoot\system32\DRIVERS\mssmbios.sys
      \SystemRoot\System32\drivers\discache.sys
      \SystemRoot\System32\Drivers\dfsc.sys
      \SystemRoot\system32\drivers\BPntDrv.sys
      \SystemRoot\system32\drivers\BOOTVID.dll
      \SystemRoot\system32\DRIVERS\blbdrive.sys
      \SystemRoot\system32\DRIVERS\tunnel.sys
      \SystemRoot\system32\DRIVERS\igdkmd64.sys
      \SystemRoot\System32\drivers\dxgkrnl.sys
      \SystemRoot\System32\drivers\dxgmms1.sys
      \SystemRoot\system32\DRIVERS\HECIx64.sys
      \SystemRoot\system32\DRIVERS\usbehci.sys
      \SystemRoot\system32\DRIVERS\USBPORT.SYS
      \SystemRoot\system32\DRIVERS\HDAudBus.sys
      \SystemRoot\system32\DRIVERS\L1C62x64.sys
      \SystemRoot\system32\DRIVERS\bcmwl664.sys
      \SystemRoot\system32\DRIVERS\vwifibus.sys
      \SystemRoot\system32\DRIVERS\AcpiVpc.sys
      \SystemRoot\system32\DRIVERS\CmBatt.sys
      \SystemRoot\system32\DRIVERS\i8042prt.sys
      \SystemRoot\system32\DRIVERS\SynTP.sys
      \SystemRoot\system32\DRIVERS\USBD.SYS
      \SystemRoot\system32\DRIVERS\mouclass.sys
      \SystemRoot\system32\DRIVERS\kbdclass.sys
      \SystemRoot\system32\DRIVERS\intelppm.sys
      \SystemRoot\system32\DRIVERS\CompositeBus.sys
      \SystemRoot\system32\DRIVERS\clwvd.sys
      \SystemRoot\system32\DRIVERS\ks.sys
      \SystemRoot\system32\drivers\ksthunk.sys
      \SystemRoot\system32\DRIVERS\AgileVpn.sys
      \SystemRoot\system32\DRIVERS\rasl2tp.sys
      \SystemRoot\system32\DRIVERS\ndistapi.sys
      \SystemRoot\system32\DRIVERS\ndiswan.sys
      \SystemRoot\system32\DRIVERS\raspppoe.sys
      \SystemRoot\system32\DRIVERS\raspptp.sys
      \SystemRoot\system32\DRIVERS\rassstp.sys
      \SystemRoot\system32\DRIVERS\swenum.sys
      \SystemRoot\system32\DRIVERS\umbus.sys
      \SystemRoot\system32\DRIVERS\usbhub.sys
      \SystemRoot\System32\Drivers\NDProxy.SYS
      \SystemRoot\system32\drivers\CHDRT64.sys
      \SystemRoot\system32\drivers\portcls.sys
      \SystemRoot\system32\drivers\drmk.sys
      \SystemRoot\system32\DRIVERS\IntcDAud.sys
      \SystemRoot\system32\drivers\mfeavfk.sys
      \SystemRoot\system32\drivers\mfefirek.sys
      \SystemRoot\system32\DRIVERS\btwampfl.sys
      \SystemRoot\System32\Drivers\BTHUSB.sys
      \SystemRoot\System32\Drivers\bthport.sys
      \SystemRoot\system32\DRIVERS\hidusb.sys
      \SystemRoot\system32\DRIVERS\HIDCLASS.SYS
      \SystemRoot\system32\DRIVERS\HIDPARSE.SYS
      \SystemRoot\system32\DRIVERS\usbccgp.sys
      \SystemRoot\system32\DRIVERS\mouhid.sys
      \SystemRoot\System32\Drivers\vm331avs.sys
      \SystemRoot\System32\Drivers\STREAM.SYS
      \SystemRoot\System32\Drivers\vmuvcflt.sys
      \SystemRoot\system32\DRIVERS\rfcomm.sys
      \SystemRoot\system32\drivers\BthEnum.sys
      \SystemRoot\system32\DRIVERS\bthpan.sys
      \SystemRoot\system32\drivers\btwavdt.sys
      \SystemRoot\system32\drivers\btwaudio.sys
      \SystemRoot\system32\DRIVERS\btwl2cap.sys
      \SystemRoot\system32\DRIVERS\btwrchid.sys
      \SystemRoot\System32\Drivers\crashdmp.sys
      \SystemRoot\System32\Drivers\dump_iaStor.sys
      \SystemRoot\System32\Drivers\dump_dumpfve.sys
      \SystemRoot\System32\win32k.sys
      \SystemRoot\System32\drivers\Dxapi.sys
      \SystemRoot\system32\DRIVERS\monitor.sys
      \SystemRoot\System32\TSDDD.dll
      \SystemRoot\System32\cdd.dll
      \SystemRoot\System32\ATMFD.DLL
      \SystemRoot\system32\drivers\luafv.sys
      \SystemRoot\system32\DRIVERS\lltdio.sys
      \SystemRoot\system32\DRIVERS\nwifi.sys
      \SystemRoot\system32\DRIVERS\ndisuio.sys
      \SystemRoot\system32\DRIVERS\rspndr.sys
      \SystemRoot\system32\drivers\HTTP.sys
      \SystemRoot\system32\DRIVERS\bowser.sys
      \SystemRoot\System32\drivers\mpsdrv.sys
      \SystemRoot\system32\DRIVERS\mrxsmb.sys
      \SystemRoot\system32\DRIVERS\mrxsmb10.sys
      \SystemRoot\system32\DRIVERS\mrxsmb20.sys
      \SystemRoot\system32\drivers\peauth.sys
      \SystemRoot\System32\Drivers\secdrv.SYS
      \SystemRoot\System32\DRIVERS\srvnet.sys
      \SystemRoot\System32\drivers\tcpipreg.sys
      \SystemRoot\System32\DRIVERS\srv2.sys
      \SystemRoot\System32\DRIVERS\srv.sys
      \??\c:\programdata\trusteer\rapport\store\exts\rapportms\46125\rapportiaso64.sys
      \SystemRoot\system32\drivers\cfwids.sys
      \SystemRoot\system32\drivers\mfeapfk.sys
      \SystemRoot\system32\DRIVERS\asyncmac.sys
      \SystemRoot\system32\drivers\spsys.sys
      \??\C:\windows\system32\drivers\mbamchameleon.sys
      \??\C:\windows\system32\drivers\mbamswissarmy.sys
      \Windows\System32\ntdll.dll
      \Windows\System32\smss.exe
      \Windows\System32\apisetschema.dll
      ----------- End -----------
      <<<1>>>
      Upper Device Name: \Device\Harddisk0\DR0
      Upper Device Object: 0xfffffa800661d060
      Upper Device Driver Name: \Driver\Disk\
      Lower Device Name: \Device\Ide\IAAStorageDevice-1\
      Lower Device Object: 0xfffffa8004714050
      Lower Device Driver Name: \Driver\iaStor\
      Driver name found: iaStor
      Initialization returned 0x0
      Load Function returned 0x0
      Downloaded database version: v2013.04.06.04
      Downloaded database version: v2013.03.25.01
      Initializing...
      Done!
      <<<2>>>
      Device number: 0, partition: 2
      Physical Sector Size: 512
      Drive: 0, DevicePointer: 0xfffffa800661d060, DeviceName: \Device\Harddisk0\DR0\, DriverName: \Driver\Disk\
      --------- Disk Stack ------
      DevicePointer: 0xfffffa80064b8b90, DeviceName: Unknown, DriverName: \Driver\partmgr\
      DevicePointer: 0xfffffa800661e040, DeviceName: Unknown, DriverName: \Driver\LHDmgr\
      DevicePointer: 0xfffffa800661d060, DeviceName: \Device\Harddisk0\DR0\, DriverName: \Driver\Disk\
      DevicePointer: 0xfffffa8004714050, DeviceName: \Device\Ide\IAAStorageDevice-1\, DriverName: \Driver\iaStor\
      ------------ End ----------
      Alternate DeviceName: Unknown, DriverName: \Driver\LHDmgr\
      Upper DeviceData: 0xfffff8a00da6b830, 0xfffffa800661d060, 0xfffffa8003e49090
      Lower DeviceData: 0xfffff8a00a0aeb40, 0xfffffa8004714050, 0xfffffa800813e090
      <<<3>>>
      Volume: C:
      File system type: NTFS
      SectorSize = 512, ClusterSize = 4096, MFTRecordSize = 1024, MFTIndexSize = 4096 bytes
      Scanning directory: C:\windows\system32\drivers...
      <<<2>>>
      Device number: 0, partition: 2
      <<<3>>>
      Volume: C:
      File system type: NTFS
      SectorSize = 512, ClusterSize = 4096, MFTRecordSize = 1024, MFTIndexSize = 4096 bytes
      Done!
      Drive 0
      Scanning MBR on drive 0...
      Inspecting partition table:
      MBR Signature: 55AA
      Disk Signature: 1ECA13BE

      Partition information:

      Partition 0 type is Primary (0x7)
      Partition is ACTIVE.
      Partition starts at LBA: 2048 Numsec = 409600
      Partition file system is NTFS
      Partition is bootable

      Partition 1 type is Primary (0x7)
      Partition is NOT ACTIVE.
      Partition starts at LBA: 411648 Numsec = 884609024

      Partition 2 type is Extended with LBA (0xf)
      Partition is NOT ACTIVE.
      Partition starts at LBA: 885020672 Numsec = 60809216

      Partition 3 type is Other (0x12)
      Partition is NOT ACTIVE.
      Partition starts at LBA: 945829888 Numsec = 30943280

      Disk Size: 500107862016 bytes
      Sector size: 512 bytes

      Scanning physical sectors of unpartitioned space on drive 0 (1-2047-976753168-976773168)...
      Done!
      Performing system, memory and registry scan...
      Done!
      Scan finished
      =======================================

    5. #15
      Ex-Colaboradora Avatar de @SanMar
      Registrado
      jun 2008
      Ubicación
      Argentina
      Mensajes
      22.290

      Re: adware en chrome??

      Hola jidonoso:


      Puedes tomar una imagen y subirla cuando tienes el problema en Chrome?


      ¿Cómo subir imágenes al Foro? *TUTORIAL*


      Salu2.

      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.

    6. #16
      Usuario Avatar de jidonoso
      Registrado
      mar 2013
      Ubicación
      Chile
      Mensajes
      10

      Re: adware en chrome??

      Estimado:

      El fin de semana me apareció de nuevo y googleando encontré una solución en vuestra página web que aparentemente funcionó. Este es el foro Virus No me deja hacer clik en ningun link.(Solucionado)
      Lo que hice como se señala en ese foro fue ejecutar regedit y borré el registro HKEY_CURRENT_USER\Software\Policies\Google
      Hasta el momento no me ha vuelto a aparecer, aunque tampoco quiero cantar victoria todavía.
      Voy a ver si durante la semana me aparece (porque ya he creido en el pasado que estaba todo solucionado) y si es así subiré la foto al Foro.

    7. #17
      Ex-Colaboradora Avatar de @SanMar
      Registrado
      jun 2008
      Ubicación
      Argentina
      Mensajes
      22.290

      Re: adware en chrome??

      Hola:


      Perfecto por acá esperamos tus comentarios para dar por resuelto el tema o continuar.


      Salu2.

      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.

    Página 2 de 2 PrimeroPrimero 12