• Registrarse
  • Iniciar sesi髇


  • P醙ina 1 de 2 12 趌timo趌timo
    Resultados 1 al 10 de 16

    Error: Virus Detectado

    Resumen del tema: Error: Virus Detectado - Hola, quisiera saber como solucionar el siguiente problema. El problema es en Windows Vista, no me deja bajar archivos de internet (subtitulos, torrents, rar, etc) y los clasifica como 创error: virus detectado创. Tampoco puedo acceder ...

    1. #1
      Usuario Avatar de titulin
      Registrado
      mar 2013
      Ubicaci髇
      Argentina
      Mensajes
      6

      Error: Virus Detectado

      Hola, quisiera saber como solucionar el siguiente problema.
      El problema es en Windows Vista, no me deja bajar archivos de internet (subtitulos, torrents, rar, etc) y los clasifica como 创error: virus detectado创. Tampoco puedo acceder a los adjuntos de los mails.
      Al iniciar Windows me da este mensaje: 创Error al iniciar la aplicacion porque no se encontro BHO.DLL创 y luego dice 创IE3SH Application dejo de funcionar创.
      Como puedo resolverlo?
      Gracias!!

    2. #2
      Moderador Gral.
      Avatar de Leosolari
      Registrado
      jun 2007
      Ubicaci髇
      Argentina
      Mensajes
      54.896

      Re: Error: Virus Detectado

      Hola



      Descarg ESET Smart Installer

      Lo ejecut醩, Aceptas los T閞minos de Uso y le das a Iniciar.

      Marcas las casillas Eliminar las amenazas detectadas y analizar archivos.

      Haces clic en Configuraci髇 adicional y ahi marcas las casillas:

      Analizar en busca de aplicaciones potencialmente indeseables,
      Analizar en busca de aplicaciones potencialmente peligrosas
      Activar la tecnolig韆 Anti-Stealth.

      Pulsas en Iniciar para que empiece a descargar la base firmas de virus y posteriormente empiece a analizar tu sistema.

      Cuandotermine, hac clic en Finalizar

      El reporte generado se localiza en C:\Archivos de programa\ESET\ESET Online Scanner\log


      En tu pr髕ima respuesta, pones el reporte generado.






      Descarg OTL By OldTimer





      >>> Ejecut OTL
      • Cerr todos programas que tengas abiertos y Hac doble click en el 韈ono de OTL para ejecutarlo.
      • Dejalo correr sin interrumpirlo asta que termine el An醠isis.
      • Cuando la interfaz aparesca, solo debes cambiar Abajo de: "Tipo de An醠isis" poniendo Resultado Minimo.
      • Marc las opciones: Buscar LOP y Buscar Purity.
      • Marc las Opciones Omitir Archivos De Microsoft y Usar Listado de Compa駃as Reconocidas.
      • Peg el siguiente script bajo la casilla An醠isis Personalizados/Codigo de Reparaci髇:

        NOTA: No copiar la palabra Cita.
        msconfig
        netsvcs
        %SYSTEMDRIVE%\*.*
        CREATERESTOREPOINT
      • Por favor No cambies el resto de la configuraci髇 a menos que te lo solicitemos.


      • Presion el boton .
      • Una vez que termine, se abrir醤 dos (2) archivos, OTL.Txt y Extras.Txt. 蓅tos aparecer醤 grabados en el mismo lugar OTL.exe fue descargado.
      • Copi y peg el contenido del archivo OTL.txt en tu pr髕ima respuesta.




      Saludos

      `.父.反疮`贩._. .父.反疮`贩._. No Desesperes.....Segu Luchando `.父.反疮`贩._. .父.反疮`贩._.

      * S韌uenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Inf髍mate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.

    3. #3
      Usuario Avatar de titulin
      Registrado
      mar 2013
      Ubicaci髇
      Argentina
      Mensajes
      6

      Re: Error: Virus Detectado

      Aca va el log de ESET...

      ESETSmartInstaller@High as downloader log:
      all ok
      # version=8
      # OnlineScannerApp.exe=1.0.0.1
      # OnlineScanner.ocx=1.0.0.6920
      # api_version=3.0.2
      # EOSSerial=213d92b701663d4eaa2d9aa4c7e6f15f
      # engine=13495
      # end=finished
      # remove_checked=true
      # archives_checked=true
      # unwanted_checked=true
      # unsafe_checked=true
      # antistealth_checked=true
      # utc_time=2013-03-27 05:53:08
      # local_time=2013-03-27 02:53:08 (-0300, Hora est醤dar de Argentina)
      # country="Argentina"
      # lang=3082
      # osver=6.0.6002 NT Service Pack 2
      # compatibility_mode=1039 16777213 100 92 0 50604772 0 0
      # compatibility_mode=5892 16776574 100 100 0 201014360 0 0
      # scanned=277350
      # found=14
      # cleaned=11
      # scan_time=17121
      sh=7E62180FACE40F98FA015CE5DDA25728CCDECBC5 ft=1 fh=020823327ce5bc47 vn="Win32/Adware.MultiPlug.A aplicaci髇" ac=I fn="C:\Users\All Users\ADDICT-THING\bhoclass.dll"
      sh=5B0CCA662149240D1FD4354BEAC1338E97E334EA ft=1 fh=45b9659c78b9b894 vn="Win32/Adware.MultiPlug.A aplicaci髇" ac=I fn="C:\Users\All Users\ADDICT-THING\uninstall.exe"
      sh=7DE60A3AEAC96F7FA559D468D852FBDDA731391F ft=1 fh=3d20769bd48072ca vn="una variante de Win32/Bundled.Toolbar.Ask aplicaci髇" ac=I fn="C:\Users\All Users\Ask\APN-Stub\PCD\APNIC.dll"
      sh=6B09DC775768B993F0E857612AB5E01F3685D9C9 ft=1 fh=d492b1c81eb65461 vn="una variante de Win32/Packed.Enigma.AAF Troyano (no se ha podido desinfectar - archivo eliminado - puesto en Cuarentena)" ac=C fn="C:\Program Files\SlySoft\AnyDVD\ElbyCDIO.dll"
      sh=7E62180FACE40F98FA015CE5DDA25728CCDECBC5 ft=1 fh=020823327ce5bc47 vn="Win32/Adware.MultiPlug.A aplicaci髇 (no se ha podido desinfectar - archivo eliminado - puesto en Cuarentena)" ac=C fn="C:\ProgramData\ADDICT-THING\bhoclass.dll"
      sh=5B0CCA662149240D1FD4354BEAC1338E97E334EA ft=1 fh=45b9659c78b9b894 vn="Win32/Adware.MultiPlug.A aplicaci髇 (no se ha podido desinfectar - archivo eliminado - puesto en Cuarentena)" ac=C fn="C:\ProgramData\ADDICT-THING\uninstall.exe"
      sh=7DE60A3AEAC96F7FA559D468D852FBDDA731391F ft=1 fh=3d20769bd48072ca vn="una variante de Win32/Bundled.Toolbar.Ask aplicaci髇 (no se ha podido desinfectar - archivo eliminado - puesto en Cuarentena)" ac=C fn="C:\ProgramData\Ask\APN-Stub\PCD\APNIC.dll"
      sh=43A205985790C47A7E611FA2D3CAB9B4EB59121F ft=1 fh=5bd497922ffc5928 vn="una variante de Win32/Toolbar.Babylon.C aplicaci髇 (no se ha podido desinfectar - archivo eliminado - puesto en Cuarentena)" ac=C fn="C:\Users\Valeria Neme\AppData\Local\Babylon\Setup\BExternal.dll"
      sh=DBA4D7540C69C6492D48E688A00B51387685F8A6 ft=1 fh=fb092140bceb8039 vn="una variante de Win32/Bundled.Toolbar.Ask aplicaci髇 (no se ha podido desinfectar - archivo eliminado - puesto en Cuarentena)" ac=C fn="C:\Users\Valeria Neme\AppData\Local\Microsoft\Windows\Temporary Internet Files\ApnStub.exe"
      sh=A837272A4BE5FAB85473BF0E30E4676E22F78AE5 ft=1 fh=811fcfd014444e80 vn="una variante de Win32/InstallCore.Q aplicaci髇 (no se ha podido desinfectar - archivo eliminado - puesto en Cuarentena)" ac=C fn="C:\Users\Valeria Neme\AppData\Local\Temp\1725480.Uninstall\Uninstall.exe"
      sh=027DF2D2944EA506A71D61928674C2CC42A8FE69 ft=1 fh=4c97c45eed1dce37 vn="Win32/Toolbar.Babylon aplicaci髇 (no se ha podido desinfectar - archivo eliminado - puesto en Cuarentena)" ac=C fn="C:\Users\Valeria Neme\AppData\Local\Temp\BabylonToolbar\BabylonToolbar\1.5.3.17\BabylonToolbar4ie.exe"
      sh=AC14323193F6D8D55BFF2570A9E405BCC332BBD3 ft=1 fh=bb1f3b8fa6dbc3a9 vn="una variante de Win32/InstallCore.D aplicaci髇 (no se ha podido desinfectar - archivo eliminado - puesto en Cuarentena)" ac=C fn="C:\Users\Valeria Neme\AppData\Local\Temp\ICReinstall\cnet_Restoration_zip.exe"
      sh=EB6AA6E142A33CEE2C2B47C3C201BDF6B28FA846 ft=1 fh=fc79af95b58d1e11 vn="Win32/Toolbar.Babylon aplicaci髇 (no se ha podido desinfectar - archivo eliminado - puesto en Cuarentena)" ac=C fn="C:\Users\Valeria Neme\AppData\Local\Temp\is1373634743\MyBabylonTB.exe"
      sh=F71C1D863934E6290680B35CCC83B8DE22EE6D4C ft=1 fh=20234aa455d9e2d5 vn="probablemente una variante de Win32/Bundled.Toolbar.Ask aplicaci髇 (no se ha podido desinfectar - archivo eliminado - puesto en Cuarentena)" ac=C fn="C:\Users\Valeria Neme\AppData\Local\Temp\NeroInstallFiles\NERO20110421130503368\ISSetupPrerequisites\{BF80A1C0-C3FF-4B1C-ABEF-22CD4F97A0AB}\Toolbar.exe"

    4. #4
      Moderador Gral.
      Avatar de Leosolari
      Registrado
      jun 2007
      Ubicaci髇
      Argentina
      Mensajes
      54.896

      Re: Error: Virus Detectado

      Hola


      Falta el reporte OTL ...

      `.父.反疮`贩._. .父.反疮`贩._. No Desesperes.....Segu Luchando `.父.反疮`贩._. .父.反疮`贩._.

      * S韌uenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Inf髍mate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.

    5. #5
      Usuario Avatar de titulin
      Registrado
      mar 2013
      Ubicaci髇
      Argentina
      Mensajes
      6

      Re: Error: Virus Detectado

      Aca va...
      Gracias por la ayuda!!

      OTL logfile created on: 27/03/2013 06:39:21 p.m. - Run 1
      OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Valeria Neme\Desktop
      Windows Vista Home Basic Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation
      Internet Explorer (Version = 8.0.6001.19401)
      Locale: 00002C0A | Country: Argentina | Language: ESS | Date Format: dd/MM/yyyy

      1,99 Gb Total Physical Memory | 0,96 Gb Available Physical Memory | 48,20% Memory free
      4,21 Gb Paging File | 2,50 Gb Available in Paging File | 59,43% Paging File free
      Paging file location(s): ?:\pagefile.sys [binary data]

      %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
      Drive C: | 102,63 Gb Total Space | 11,12 Gb Free Space | 10,83% Space Free | Partition Type: NTFS
      Drive D: | 9,15 Gb Total Space | 2,83 Gb Free Space | 30,88% Space Free | Partition Type: NTFS

      Computer Name: VALERIANEME | User Name: Valeria Neme | Logged in as Administrator.
      Boot Mode: Normal | Scan Mode: Current user
      Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

      ========== Processes (SafeList) ==========

      PRC - C:\Users\Valeria Neme\Desktop\OTL.exe (OldTimer Tools)
      PRC - C:\Program Files\AVG\AVG2013\avgui.exe (AVG Technologies CZ, s.r.o.)
      PRC - C:\Windows\System32\dmwu.exe ()
      PRC - C:\Program Files\AVG\AVG2013\avgidsagent.exe (AVG Technologies CZ, s.r.o.)
      PRC - C:\Program Files\AVG\AVG2013\avgrsx.exe (AVG Technologies CZ, s.r.o.)
      PRC - C:\Program Files\AVG\AVG2013\avgwdsvc.exe (AVG Technologies CZ, s.r.o.)
      PRC - C:\Program Files\AVG\AVG2013\avgnsx.exe (AVG Technologies CZ, s.r.o.)
      PRC - C:\Program Files\AVG\AVG2013\avgemcx.exe (AVG Technologies CZ, s.r.o.)
      PRC - C:\Program Files\AVG\AVG2013\avgcsrvx.exe (AVG Technologies CZ, s.r.o.)
      PRC - C:\Program Files\Trusteer\Rapport\bin\RapportService.exe (Trusteer Ltd.)
      PRC - C:\Program Files\Trusteer\Rapport\bin\RapportMgmtService.exe (Trusteer Ltd.)
      PRC - C:\Program Files\Web Assistant\ExtensionUpdaterService.exe ()
      PRC - C:\Program Files\uTorrent\uTorrent.exe (BitTorrent, Inc.)
      PRC - C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50ST7.EXE (SEIKO EPSON CORPORATION)
      PRC - C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50RP7.EXE (SEIKO EPSON CORPORATION)
      PRC - C:\Program Files\epson\EpsonCustomerParticipation\EPCP.exe (SEIKO EPSON CORPORATION)
      PRC - C:\Program Files\Epson Software\Event Manager\EEventManager.exe (SEIKO EPSON CORPORATION)
      PRC - C:\Program Files\Flip Video\FlipShare\FlipShareService.exe ()
      PRC - C:\Program Files\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe (ABBYY)
      PRC - C:\Windows\explorer.exe (Microsoft Corporation)
      PRC - C:\Windows\System32\conime.exe (Microsoft Corporation)
      PRC - C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTmon.exe (Intel Corporation)
      PRC - C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe (Intel Corporation)


      ========== Modules (No Company Name) ==========

      MOD - C:\ProgramData\Trusteer\Rapport\store\exts\RapportMS\baseline\RapportMS.dll ()
      MOD - C:\Program Files\Trusteer\Rapport\bin\js32.dll ()
      MOD - C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll ()
      MOD - C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll ()
      MOD - C:\Program Files\WinRAR\RarExt.dll ()
      MOD - C:\Windows\System32\igfxTMM.dll ()


      ========== Services (SafeList) ==========

      SRV - (AdobeFlashPlayerUpdateSvc) -- C:\Windows\System32\Macromed\Flash\FlashPlayerUpdateService.exe (Adobe Systems Incorporated)
      SRV - (MozillaMaintenance) -- C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe (Mozilla Foundation)
      SRV - (IBUpdaterService) -- C:\Windows\System32\dmwu.exe ()
      SRV - (AVGIDSAgent) -- C:\Program Files\AVG\AVG2013\avgidsagent.exe (AVG Technologies CZ, s.r.o.)
      SRV - (avgwd) -- C:\Program Files\AVG\AVG2013\avgwdsvc.exe (AVG Technologies CZ, s.r.o.)
      SRV - (RapportMgmtService) -- C:\Program Files\Trusteer\Rapport\bin\RapportMgmtService.exe (Trusteer Ltd.)
      SRV - (Web Assistant Updater) -- C:\Program Files\Web Assistant\ExtensionUpdaterService.exe ()
      SRV - (SkypeUpdate) -- C:\Program Files\Skype\Updater\Updater.exe (Skype Technologies)
      SRV - (EPSON_EB_RPCV4_04) -- C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50ST7.EXE (SEIKO EPSON CORPORATION)
      SRV - (EPSON_PM_RPCV4_04) -- C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50RP7.EXE (SEIKO EPSON CORPORATION)
      SRV - (EpsonCustomerParticipation) -- C:\Program Files\epson\EpsonCustomerParticipation\EPCP.exe (SEIKO EPSON CORPORATION)
      SRV - (FlipShare Service) -- C:\Program Files\Flip Video\FlipShare\FlipShareService.exe ()
      SRV - (ABBYY.Licensing.FineReader.Sprint.9.0) -- C:\Program Files\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe (ABBYY)
      SRV - (WinDefend) -- C:\Program Files\Windows Defender\MpSvc.dll (Microsoft Corporation)
      SRV - (IAANTMON) -- C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTmon.exe (Intel Corporation)
      SRV - (Com4Qlb) -- C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\Com4Qlb.exe (Hewlett-Packard Development Company, L.P.)


      ========== Driver Services (SafeList) ==========

      DRV - (SymIMMP) -- system32\DRIVERS\SymIM.sys File not found
      DRV - (NwlnkFwd) -- system32\DRIVERS\nwlnkfwd.sys File not found
      DRV - (NwlnkFlt) -- system32\DRIVERS\nwlnkflt.sys File not found
      DRV - (IpInIp) -- system32\DRIVERS\ipinip.sys File not found
      DRV - (AVGIDSShim) -- C:\Windows\System32\drivers\avgidsshimx.sys (AVG Technologies CZ, s.r.o.)
      DRV - (AVGIDSDriver) -- C:\Windows\System32\drivers\avgidsdriverx.sys (AVG Technologies CZ, s.r.o.)
      DRV - (RapportIaso) -- c:\ProgramData\Trusteer\Rapport\store\exts\RapportMS\baseline\RapportIaso.sys (Trusteer Ltd.)
      DRV - (RapportCerberus_50414) -- C:\ProgramData\Trusteer\Rapport\store\exts\RapportCerberus\baseline\RapportCerberus32_50414.sys ()
      DRV - (Avgtdix) -- C:\Windows\System32\drivers\avgtdix.sys (AVG Technologies CZ, s.r.o.)
      DRV - (RapportPG) -- C:\Program Files\Trusteer\Rapport\bin\RapportPG.sys (Trusteer Ltd.)
      DRV - (RapportEI) -- C:\Program Files\Trusteer\Rapport\bin\RapportEI.sys (Trusteer Ltd.)
      DRV - (RapportKELL) -- C:\Windows\System32\drivers\RapportKELL.sys (Trusteer Ltd.)
      DRV - (Avgmfx86) -- C:\Windows\System32\drivers\avgmfx86.sys (AVG Technologies CZ, s.r.o.)
      DRV - (Avglogx) -- C:\Windows\System32\drivers\avglogx.sys (AVG Technologies CZ, s.r.o.)
      DRV - (AVGIDSHX) -- C:\Windows\System32\drivers\avgidshx.sys (AVG Technologies CZ, s.r.o.)
      DRV - (Avgldx86) -- C:\Windows\System32\drivers\avgldx86.sys (AVG Technologies CZ, s.r.o.)
      DRV - (Avgrkx86) -- C:\Windows\System32\drivers\avgrkx86.sys (AVG Technologies CZ, s.r.o.)
      DRV - (AnyDVD) -- C:\Windows\System32\drivers\AnyDVD.sys (SlySoft, Inc.)
      DRV - (NETw3v32) -- C:\Windows\System32\drivers\NETw3v32.sys (Intel Corporation)
      DRV - (HdAudAddService) -- C:\Windows\System32\drivers\CHDART.sys (Conexant Systems Inc.)
      DRV - (XAudio) -- C:\Windows\System32\drivers\XAudio.sys (Conexant Systems, Inc.)
      DRV - (ApfiltrService) -- C:\Windows\System32\drivers\Apfiltr.sys (Alps Electric Co., Ltd.)
      DRV - (HpqKbFiltr) -- C:\Windows\System32\drivers\HpqKbFiltr.sys (Hewlett-Packard Development Company, L.P.)
      DRV - (athr) -- C:\Windows\System32\drivers\athr.sys (Atheros Communications, Inc.)
      DRV - (RTL8023xp) -- C:\Windows\System32\drivers\Rtnicxp.sys (Realtek Semiconductor Corporation )
      DRV - (NVENETFD) -- C:\Windows\System32\drivers\nvm60x32.sys (NVIDIA Corporation)
      DRV - (HBtnKey) -- C:\Windows\System32\drivers\CPQBttn.sys (Hewlett-Packard Development Company, L.P.)


      ========== Standard Registry (SafeList) ==========


      ========== Internet Explorer ==========

      IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN Argentina: Hotmail, Messenger, Skype, Noticias, Entretenimiento, Videos
      IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = MSN Argentina: Hotmail, Messenger, Skype, Noticias, Entretenimiento, Videos
      IE - HKLM\..\URLSearchHook: {db131c55-60c8-4adc-84dc-9e76ab06e2dc} - C:\Program Files\uTorrentBar_ES\prxtbuTor.dll (Conduit Ltd.)
      IE - HKLM\..\URLSearchHook: {fed66dc5-1b74-4a04-8f5c-15c5ace2b9a5} - C:\Program Files\BS_Player\tbBS_P.dll (Conduit Ltd.)
      IE - HKLM\..\SearchScopes,DefaultScope = {afdbddaa-5d3f-42ee-b79c-185a7020515b}
      IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.live.com/results.aspx?q={searchTerms}&src={referrer:source?}
      IE - HKLM\..\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}: "URL" = http://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT2851619

      IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN Argentina: Hotmail, Messenger, Skype, Noticias, Entretenimiento, Videos
      IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = Upgrade to Google Chrome
      IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = Upgrade to Google Chrome
      IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = Google
      IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = MyStart by IncrediBar.com
      IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,StartPageCache = 1
      IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = Upgrade to Google Chrome
      IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = Upgrade to Google Chrome
      IE - HKCU\..\URLSearchHook: {91C18ED5-5E1C-4AE5-A148-A861DE8C8E16} - No CLSID value found
      IE - HKCU\..\URLSearchHook: {db131c55-60c8-4adc-84dc-9e76ab06e2dc} - C:\Program Files\uTorrentBar_ES\prxtbuTor.dll (Conduit Ltd.)
      IE - HKCU\..\URLSearchHook: {fed66dc5-1b74-4a04-8f5c-15c5ace2b9a5} - C:\Program Files\BS_Player\tbBS_P.dll (Conduit Ltd.)
      IE - HKCU\..\SearchScopes,DefaultScope = {02D263E8-DB60-4BF9-B155-AA2618998624}
      IE - HKCU\..\SearchScopes\{02D263E8-DB60-4BF9-B155-AA2618998624}: "URL" = http://www.fastbrowsersearch.com/results/results.aspx?q={searchTerms}&c=web&s=DSP&v=18&tid={9AE530B6-FD1A-4897-8B0E-CFE35C669135}
      IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.live.com/results.aspx?q={searchTerms}&src=IE-SearchBox&Form=IE8SRC
      IE - HKCU\..\SearchScopes\{095D6853-791F-452F-8EA5-122E0D985A5F}: "URL" = http://www.google.com/search?q={searchTerms}&sourceid=ie7&rls=com.microsoft:en-US&ie=utf8&oe=utf8
      IE - HKCU\..\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}: "URL" = http://search.babylon.com/?q={searchTerms}&affID=110819&babsrc=SP_ss&mntrId=58d2dc4300000000000000234e58a1e8
      IE - HKCU\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.com/search?q={sear
      IE - HKCU\..\SearchScopes\{75B25218-DED1-46d3-8057-26E134191D82}: "URL" = http://www.weather.com/searchq={sear
      IE - HKCU\..\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}: "URL" = http://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT2851619
      IE - HKCU\..\SearchScopes\{CFF4DB9B-135F-47c0-9269-B4C6572FD61A}: "URL" = http://mystart.incredibar.com/mb139/?search={searchTerms}&loc=IB_DS&a=6PQAYhxeUH&i=26
      IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
      IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local

      ========== FireFox ==========

      FF - prefs.js..browser.startup.homepage: "www.google.com"
      FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:19.0.2
      FF - user.js - File not found

      FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF32_11_6_602_180.dll ()
      FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\Windows\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
      FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found
      FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()
      FF - HKLM\Software\MozillaPlugins\@Google.com/GoogleEarthPlugin: C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
      FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.9.2: C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
      FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
      FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\5.1.20125.0\npctrl.dll ( Microsoft Corporation)
      FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
      FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.135\npGoogleUpdate3.dll (Google Inc.)
      FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.135\npGoogleUpdate3.dll (Google Inc.)
      FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Users\Valeria Neme\AppData\Local\Google\Update\1.3.21.135\npGoogleUpdate3.dll (Google Inc.)
      FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Users\Valeria Neme\AppData\Local\Google\Update\1.3.21.135\npGoogleUpdate3.dll (Google Inc.)

      FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{336D0C35-8A85-403a-B9D2-65C292C39087}: C:\Program Files\Web Assistant\Firefox [2013/02/27 10:34:21 | 000,000,000 | ---D | M]
      FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{FE1DEEEA-DB6D-44b8-83F0-34FC0F9D1052}: C:\Program Files\Web Assistant\Firefox [2013/02/27 10:34:21 | 000,000,000 | ---D | M]
      FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 19.0.2\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2013/03/26 14:37:54 | 000,000,000 | ---D | M]
      FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 19.0.2\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins

      [2013/03/26 14:40:06 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Valeria Neme\AppData\Roaming\mozilla\Extensions
      [2013/03/26 14:37:53 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
      [2013/03/07 11:30:04 | 000,263,064 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll
      [2013/03/07 1434 | 000,004,293 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\drae.xml
      [2013/03/07 1434 | 000,002,683 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\mercadolibre-ar.xml
      [2013/03/07 1434 | 000,001,391 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia-es.xml
      [2013/03/07 1434 | 000,001,037 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\yahoo-ar.xml

      ========== Chrome ==========

      CHR - default_search_provider: Google (Enabled)
      CHR - default_search_provider: search_url = {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}{google:searchClient}{google:sourceId}{google:instantExtendedEnabledParameter}ie={inputEncoding}
      CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client=chrome&q={searchTerms}&{google:cursorPosition}sugkey={google:suggestAPIKeyParameter}
      CHR - homepage: Google
      CHR - plugin: Shockwave Flash (Enabled) = C:\Users\Valeria Neme\AppData\Local\Google\Chrome\Application\25.0.1364.172\PepperFlash\pepflashplayer.dll
      CHR - plugin: Chrome Remote Desktop Viewer (Enabled) = internal-remoting-viewer
      CHR - plugin: Native Client (Enabled) = C:\Users\Valeria Neme\AppData\Local\Google\Chrome\Application\25.0.1364.172\ppGoogleNaClPluginChrome.dll
      CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Users\Valeria Neme\AppData\Local\Google\Chrome\Application\25.0.1364.172\pdf.dll
      CHR - plugin: Injovo Extension Plugin (Enabled) = C:\Users\Valeria Neme\AppData\Local\Google\Chrome\User Data\Default\Extensions\dlnembnfbcpjnepmfjmngjenhhajpdfd\2.0.0.572_0\npbrowserext.dll
      CHR - plugin: Adobe Acrobat (Disabled) = C:\Program Files\Adobe\Reader 8.0\Reader\Browser\nppdf32.dll
      CHR - plugin: Java(TM) Platform SE 6 U26 (Enabled) = C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll
      CHR - plugin: QuickTime Plug-in 7.7.2 (Enabled) = C:\Program Files\QuickTime\plugins\npqtplugin.dll
      CHR - plugin: QuickTime Plug-in 7.7.2 (Enabled) = C:\Program Files\QuickTime\plugins\npqtplugin2.dll
      CHR - plugin: QuickTime Plug-in 7.7.2 (Enabled) = C:\Program Files\QuickTime\plugins\npqtplugin3.dll
      CHR - plugin: QuickTime Plug-in 7.7.2 (Enabled) = C:\Program Files\QuickTime\plugins\npqtplugin4.dll
      CHR - plugin: QuickTime Plug-in 7.7.2 (Enabled) = C:\Program Files\QuickTime\plugins\npqtplugin5.dll
      CHR - plugin: QuickTime Plug-in 7.7.2 (Enabled) = C:\Program Files\QuickTime\plugins\npqtplugin6.dll
      CHR - plugin: QuickTime Plug-in 7.7.2 (Enabled) = C:\Program Files\QuickTime\plugins\npqtplugin7.dll
      CHR - plugin: Google Earth Plugin (Enabled) = C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll
      CHR - plugin: Google Update (Enabled) = C:\Program Files\Google\Update\1.3.21.135\npGoogleUpdate3.dll
      CHR - plugin: iTunes Application Detector (Enabled) = C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll
      CHR - plugin: Shockwave for Director (Enabled) = C:\Windows\system32\Adobe\Director\np32dsw.dll
      CHR - plugin: Java Deployment Toolkit 7.0.90.5 (Enabled) = C:\Windows\system32\npDeployJava1.dll
      CHR - plugin: Silverlight Plug-In (Enabled) = c:\Program Files\Microsoft Silverlight\4.1.10329.0\npctrl.dll
      CHR - plugin: Windows Presentation Foundation (Enabled) = c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll
      CHR - Extension: YouTube = C:\Users\Valeria Neme\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_1\
      CHR - Extension: B\u00FAsqueda de Google = C:\Users\Valeria Neme\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_1\
      CHR - Extension: Web Assistant = C:\Users\Valeria Neme\AppData\Local\Google\Chrome\User Data\Default\Extensions\dlnembnfbcpjnepmfjmngjenhhajpdfd\2.0.0.572_0\
      CHR - Extension: Links Premium = C:\Users\Valeria Neme\AppData\Local\Google\Chrome\User Data\Default\Extensions\jmkpdliieahbponkhefeofijfbiggfbc\0.0.1_1\
      CHR - Extension: ADDICT-THING = C:\Users\Valeria Neme\AppData\Local\Google\Chrome\User Data\Default\Extensions\mfacianclgmbegcpnocbgoefbphbfffn\1.0_0\
      CHR - Extension: uTorrentBar_ES = C:\Users\Valeria Neme\AppData\Local\Google\Chrome\User Data\Default\Extensions\npiecjlhkngdinoeekmccdbjdgclmnbk\2.3.19.11_0\
      CHR - Extension: Gmail = C:\Users\Valeria Neme\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_1\

      O1 HOSTS File: ([2006/09/18 18:41:30 | 000,000,736 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
      O1 - Hosts: ::1 localhost
      O2 - BHO: (Aplicaci髇 auxiliar de v韓culos de Adobe PDF Reader) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
      O2 - BHO: (Conduit Engine ) - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files\ConduitEngine\prxConduitEngine.dll (Conduit Ltd.)
      O2 - BHO: (Web Assistant) - {336D0C35-8A85-403a-B9D2-65C292C39087} - C:\Program Files\Web Assistant\Extension32.dll ()
      O2 - BHO: (AVG Safe Search) - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG8\avgssie.dll (AVG Technologies CZ, s.r.o.)
      O2 - BHO: (ADDICT-THING Class) - {53BA6AE5-2238-3C7B-B469-4D88B12C92C9} - Reg Error: Value error. File not found
      O2 - BHO: (no name) - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - No CLSID value found.
      O2 - BHO: (Incredibar.com Helper Object) - {6E13DDE1-2B6E-46CE-8B66-DC8BF36F6B99} - C:\Program Files\Incredibar.com\incredibar\1.5.11.14\bh\incredibar.dll (Montera Technologeis LTD)
      O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll (Sun Microsystems, Inc.)
      O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - No CLSID value found.
      O2 - BHO: (Easy Photo Print) - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll (SEIKO EPSON CORPORATION / CyCom Technology Corp.)
      O2 - BHO: (Skype Browser Helper) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
      O2 - BHO: (uTorrentBar_ES Toolbar) - {db131c55-60c8-4adc-84dc-9e76ab06e2dc} - C:\Program Files\uTorrentBar_ES\prxtbuTor.dll (Conduit Ltd.)
      O2 - BHO: (no name) - {F0626A63-410B-45E2-99A1-3F2475B2D695} - No CLSID value found.
      O2 - BHO: (Fast Browser Search Toolbar Helper) - {FCBCCB87-9224-4B8D-B117-F56D924BEB18} - C:\Program Files\Fast Browser Search\IE\FBStoolbar.dll ()
      O2 - BHO: (BS Player Toolbar) - {fed66dc5-1b74-4a04-8f5c-15c5ace2b9a5} - C:\Program Files\BS_Player\tbBS_P.dll (Conduit Ltd.)
      O3 - HKLM\..\Toolbar: (Fast Browser Search Toolbar) - {1BB22D38-A411-4B13-A746-C2A4F4EC7344} - C:\Program Files\Fast Browser Search\IE\FBStoolbar.dll ()
      O3 - HKLM\..\Toolbar: (The Weather Channel Toolbar) - {2E5E800E-6AC0-411E-940A-369530A35E43} - C:\Windows\System32\TwcToolbarIe7.dll ()
      O3 - HKLM\..\Toolbar: (Conduit Engine ) - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files\ConduitEngine\prxConduitEngine.dll (Conduit Ltd.)
      O3 - HKLM\..\Toolbar: (no name) - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - No CLSID value found.
      O3 - HKLM\..\Toolbar: (Easy Photo Print) - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll (SEIKO EPSON CORPORATION / CyCom Technology Corp.)
      O3 - HKLM\..\Toolbar: (uTorrentBar_ES Toolbar) - {db131c55-60c8-4adc-84dc-9e76ab06e2dc} - C:\Program Files\uTorrentBar_ES\prxtbuTor.dll (Conduit Ltd.)
      O3 - HKLM\..\Toolbar: (Incredibar Toolbar) - {F9639E4A-801B-4843-AEE3-03D9DA199E77} - C:\Program Files\Incredibar.com\incredibar\1.5.11.14\incredibarTlbr.dll (Montera Technologeis LTD)
      O3 - HKLM\..\Toolbar: (BS Player Toolbar) - {fed66dc5-1b74-4a04-8f5c-15c5ace2b9a5} - C:\Program Files\BS_Player\tbBS_P.dll (Conduit Ltd.)
      O3 - HKCU\..\Toolbar\WebBrowser: (Fast Browser Search Toolbar) - {1BB22D38-A411-4B13-A746-C2A4F4EC7344} - C:\Program Files\Fast Browser Search\IE\FBStoolbar.dll ()
      O3 - HKCU\..\Toolbar\WebBrowser: (Conduit Engine ) - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files\ConduitEngine\prxConduitEngine.dll (Conduit Ltd.)
      O3 - HKCU\..\Toolbar\WebBrowser: (uTorrentBar_ES Toolbar) - {DB131C55-60C8-4ADC-84DC-9E76AB06E2DC} - C:\Program Files\uTorrentBar_ES\prxtbuTor.dll (Conduit Ltd.)
      O3 - HKCU\..\Toolbar\WebBrowser: (BS Player Toolbar) - {FED66DC5-1B74-4A04-8F5C-15C5ACE2B9A5} - C:\Program Files\BS_Player\tbBS_P.dll (Conduit Ltd.)
      O4 - HKLM..\Run: [] File not found
      O4 - HKLM..\Run: [APSDaemon] C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc.)
      O4 - HKLM..\Run: [AVG_UI] C:\Program Files\AVG\AVG2013\avgui.exe (AVG Technologies CZ, s.r.o.)
      O4 - HKLM..\Run: [EEventManager] C:\Program Files\Epson Software\Event Manager\EEventManager.exe (SEIKO EPSON CORPORATION)
      O4 - HKLM..\Run: [FBSSA] C:\Program Files\SGPSA\ie3sh.exe ()
      O4 - HKLM..\Run: [HP Health Check Scheduler] [ProgramFilesFolder]Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe File not found
      O4 - HKLM..\Run: [IAAnotif] C:\Program Files\Intel\Intel Matrix Storage Manager\Iaanotif.exe (Intel Corporation)
      O4 - HKLM..\Run: [Windows Defender] C:\Program Files\Windows Defender\MSASCui.exe (Microsoft Corporation)
      O4 - HKCU..\Run: [ABBYY Screenshot Reader Bonus] File not found
      O4 - HKCU..\Run: [DW6] File not found
      O4 - HKCU..\Run: [MSIDLL] rundll32.exe msikju32.dll,PZjwTasYBVq File not found
      O4 - HKCU..\Run: [uTorrent] C:\Program Files\uTorrent\uTorrent.exe (BitTorrent, Inc.)
      O9 - Extra Button: The Weather Channel - {2E5E800E-6AC0-411E-940A-369530A35E43} - Reg Error: Key error. File not found
      O9 - Extra 'Tools' menuitem : The Weather Channel - {2E5E800E-6AC0-411E-940A-369530A35E43} - Reg Error: Value error. File not found
      O9 - Extra Button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
      O9 - Extra 'Tools' menuitem : Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
      O10 - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
      O13 - gopher Prefix: missing
      O15 - HKCU\..Trusted Domains: subdivx.com ([www] https in Sitios de confianza)
      O16 - DPF: {05CA9FB0-3E3E-4B36-BF41-0E3A5CAA8CD8} http://download.microsoft.com/downlo...OGAControl.cab (Office Genuine Advantage Validation Tool)
      O16 - DPF: {233C1507-6A77-46A4-9443-F871F945D258} http://download.macromedia.com/pub/s...irector/sw.cab (Shockwave ActiveX Control)
      O16 - DPF: {238F6F83-B8B4-11CF-8771-00A024541EE3} http://a516.g.akamai.net/f/516/25175...b-20070115.cab (Reg Error: Key error.)
      O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jin...ndows-i586.cab (Java Plug-in 1.6.0_26)
      O16 - DPF: {CAFEEFAC-0016-0000-0002-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jin...ndows-i586.cab (Java Plug-in 1.6.0_02)
      O16 - DPF: {CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jin...ndows-i586.cab (Java Plug-in 1.6.0_26)
      O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jin...ndows-i586.cab (Java Plug-in 10.7.2)
      O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab (Reg Error: Key error.)
      O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.0.1
      O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{694B0068-F1DC-4400-A88B-91E4174A570C}: DhcpNameServer = 192.168.0.1
      O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{7696C21D-F513-484C-9C3B-9D09A7EC8A1F}: DhcpNameServer = 200.49.130.25 200.49.130.24 200.49.130.33 172.20.2.24
      O18 - Protocol\Handler\linkscanner {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG8\avgpp.dll (AVG Technologies CZ, s.r.o.)
      O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
      O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
      O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
      O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\System32\userinit.exe (Microsoft Corporation)
      O32 - HKLM CDRom: AutoRun - 1
      O32 - AutoRun File - [2008/03/10 01:16:19 | 000,000,074 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
      O32 - AutoRun File - [2005/09/11 12:18:54 | 000,000,340 | -HS- | M] () - D:\AUTOMODE -- [ NTFS ]
      O33 - MountPoints2\{1063f997-3826-11df-b2d3-001eeceb966e}\Shell\AutoRun\command - "" = novir/novir32.exe
      O33 - MountPoints2\{1063f997-3826-11df-b2d3-001eeceb966e}\Shell\explore\command - "" = novir/novir32.exe
      O33 - MountPoints2\{1063f997-3826-11df-b2d3-001eeceb966e}\Shell\open\command - "" = .\novir/novir32.exe
      O34 - HKLM BootExecute: (autocheck autochk *)
      O35 - HKLM\..comfile [open] -- "%1" %*
      O35 - HKLM\..exefile [open] -- "%1" %*
      O37 - HKLM\...com [@ = comfile] -- "%1" %*
      O37 - HKLM\...exe [@ = exefile] -- "%1" %*
      O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
      O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)


      NetSvcs: FastUserSwitchingCompatibility - File not found
      NetSvcs: Ias - C:\Windows\System32\ias.dll (Microsoft Corporation)
      NetSvcs: Nla - File not found
      NetSvcs: Ntmssvc - File not found
      NetSvcs: NWCWorkstation - File not found
      NetSvcs: Nwsapagent - File not found
      NetSvcs: SRService - File not found
      NetSvcs: WmdmPmSp - File not found
      NetSvcs: LogonHours - File not found
      NetSvcs: PCAudit - File not found
      NetSvcs: helpsvc - File not found
      NetSvcs: uploadmgr - File not found

      CREATERESTOREPOINT
      Restore point Set: OTL Restore Point

      ========== Files/Folders - Created Within 30 Days ==========

      [2013/03/27 1024 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Users\Valeria Neme\Desktop\OTL.exe
      [2013/03/27 09:54:52 | 000,000,000 | ---D | C] -- C:\Program Files\ESET
      [2013/03/27 09:54:24 | 002,347,384 | ---- | C] (ESET) -- C:\Users\Valeria Neme\Desktop\esetsmartinstaller_esn.exe
      [2013/03/26 14:48:47 | 000,000,000 | ---D | C] -- C:\Users\Valeria Neme\AppData\Local\Macromedia
      [2013/03/26 14:39:29 | 000,000,000 | ---D | C] -- C:\Users\Valeria Neme\AppData\Local\Mozilla
      [2013/03/26 14:39:09 | 000,000,000 | ---D | C] -- C:\Users\Valeria Neme\AppData\Roaming\Mozilla
      [2013/03/26 14:38:54 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG
      [2013/03/26 14:37:59 | 000,000,000 | ---D | C] -- C:\ProgramData\Mozilla
      [2013/03/26 14:37:58 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Maintenance Service
      [2013/03/25 19:37:35 | 000,000,000 | ---D | C] -- C:\Users\Valeria Neme\AppData\Roaming\AVG2013
      [2013/03/25 19:36:50 | 000,000,000 | ---D | C] -- C:\Users\Valeria Neme\AppData\Roaming\TuneUp Software
      [2013/03/25 19:33:29 | 000,000,000 | -H-D | C] -- C:\$AVG
      [2013/03/25 19:33:28 | 000,000,000 | ---D | C] -- C:\ProgramData\AVG2013
      [2013/03/25 19:30:58 | 000,000,000 | -H-D | C] -- C:\ProgramData\Common Files
      [2013/03/25 19:30:58 | 000,000,000 | ---D | C] -- C:\Users\Valeria Neme\AppData\Local\MFAData
      [2013/03/25 19:30:58 | 000,000,000 | ---D | C] -- C:\ProgramData\MFAData
      [2013/03/25 19:30:58 | 000,000,000 | ---D | C] -- C:\Users\Valeria Neme\AppData\Local\Avg2013
      [2013/03/25 17:34:43 | 000,000,000 | ---D | C] -- C:\ProgramData\AVG8UPG
      [2013/03/24 15:28:29 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Earth
      [2013/03/01 10:32:20 | 000,022,328 | ---- | C] (AVG Technologies CZ, s.r.o.) -- C:\Windows\System32\drivers\avgidsshimx.sys
      [2013/02/26 23:40:46 | 000,208,184 | ---- | C] (AVG Technologies CZ, s.r.o.) -- C:\Windows\System32\drivers\avgidsdriverx.sys
      [2012/06/06 01:06:50 | 002,174,976 | ---- | C] (Advanced Micro Devices Inc.) -- C:\Program Files\Common Files\atimpenc.dll
      [1 C:\Windows\System32\*.tmp files -> C:\Windows\System32\*.tmp -> ]
      [1 C:\*.tmp files -> C:\*.tmp -> ]

      ========== Files - Modified Within 30 Days ==========

      [2013/03/27 18:26:00 | 000,001,036 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
      [2013/03/27 18:15:00 | 000,001,074 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-1978079110-4207443074-1742349750-1000UA.job
      [2013/03/27 18:03:15 | 000,000,838 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
      [2013/03/27 16:57:55 | 000,003,216 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
      [2013/03/27 16:57:55 | 000,003,216 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
      [2013/03/27 1048 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Valeria Neme\Desktop\OTL.exe
      [2013/03/27 09:54:59 | 002,347,384 | ---- | M] (ESET) -- C:\Users\Valeria Neme\Desktop\esetsmartinstaller_esn.exe
      [2013/03/27 09:26:00 | 000,001,032 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
      [2013/03/27 09:15:01 | 000,001,022 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-1978079110-4207443074-1742349750-1000Core.job
      [2013/03/26 14:59:35 | 000,000,281 | ---- | M] () -- C:\Users\Public\Documents\hpqp.ini
      [2013/03/26 14:57:15 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
      [2013/03/26 14:57:12 | 2137,014,272 | -HS- | M] () -- C:\hiberfil.sys
      [2013/03/26 09:41:07 | 000,044,544 | ---- | M] () -- C:\Users\Valeria Neme\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
      [2013/03/25 10:26:38 | 000,876,870 | ---- | M] () -- C:\Windows\System32\perfh00A.dat
      [2013/03/25 10:26:38 | 000,659,816 | ---- | M] () -- C:\Windows\System32\perfh009.dat
      [2013/03/25 10:26:38 | 000,203,876 | ---- | M] () -- C:\Windows\System32\perfc00A.dat
      [2013/03/25 10:26:38 | 000,165,394 | ---- | M] () -- C:\Windows\System32\perfc009.dat
      [2013/03/04 06:00:56 | 001,052,976 | ---- | M] () -- C:\Windows\System32\dmwu.exe
      [2013/03/04 05:58:40 | 000,028,160 | ---- | M] () -- C:\Windows\System32\ImHttpComm.dll
      [2013/03/01 10:32:20 | 000,022,328 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Windows\System32\drivers\avgidsshimx.sys
      [2013/02/26 23:40:46 | 000,208,184 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Windows\System32\drivers\avgidsdriverx.sys
      [1 C:\Windows\System32\*.tmp files -> C:\Windows\System32\*.tmp -> ]
      [1 C:\*.tmp files -> C:\*.tmp -> ]

      ========== Files Created - No Company Name ==========

      [2013/03/26 14:38:04 | 000,000,818 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
      [2013/03/26 12:36:45 | 000,000,838 | ---- | C] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
      [2012/09/13 09:19:26 | 001,052,976 | ---- | C] () -- C:\Windows\System32\dmwu.exe
      [2012/09/13 09:19:26 | 000,028,160 | ---- | C] () -- C:\Windows\System32\ImHttpComm.dll
      [2012/07/19 15:36:35 | 000,000,080 | -HS- | C] () -- C:\ProgramData\.zreglib
      [2012/06/04 14:45:20 | 000,000,248 | ---- | C] () -- C:\Users\Valeria Neme\AppData\Roaming\wklnhst.dat
      [2012/05/14 07:38:32 | 000,043,976 | ---- | C] () -- C:\Users\Valeria Neme\AppData\Local\save_en.bmp
      [2012/05/14 07:38:08 | 000,043,976 | ---- | C] () -- C:\Users\Valeria Neme\AppData\Local\save_es.bmp
      [2012/04/10 14:12:47 | 000,000,071 | ---- | C] () -- C:\Windows\TX235W.ini
      [2011/08/23 19:08:13 | 000,000,069 | ---- | C] () -- C:\Windows\NeroDigital.ini
      [2011/06/28 2255 | 000,253,952 | ---- | C] () -- C:\Windows\JxIni.dll
      [2011/06/28 2255 | 000,213,065 | ---- | C] () -- C:\Windows\GV_GeoPTZini.dll
      [2011/06/28 2255 | 000,028,759 | ---- | C] ( ) -- C:\Windows\GV_AccessIni_Memory.dll
      [2011/06/28 2246 | 000,000,110 | ---- | C] () -- C:\Windows\multiview.ini
      [2011/06/26 18:00:02 | 000,147,583 | ---- | C] () -- C:\Windows\hphins33.dat.temp
      [2011/06/26 18:00:02 | 000,000,512 | ---- | C] () -- C:\Windows\hphmdl33.dat.temp
      [2011/06/26 17:30:37 | 000,147,749 | ---- | C] () -- C:\Windows\hphins33.dat
      [2011/06/26 17:30:37 | 000,000,512 | ---- | C] () -- C:\Windows\hphmdl33.dat
      [2009/06/10 11:42:12 | 000,005,648 | ---- | C] () -- C:\Users\Valeria Neme\AppData\Local\d3d9caps.dat
      [2009/03/02 07:31:23 | 000,038,995 | ---- | C] () -- C:\Users\Valeria Neme\AppData\Roaming\Valores separados por comas (Windows).ADR
      [2009/03/02 07:29:35 | 000,038,973 | ---- | C] () -- C:\Users\Valeria Neme\AppData\Roaming\Microsoft Excel.ADR
      [2009/02/26 23:22:17 | 000,044,544 | ---- | C] () -- C:\Users\Valeria Neme\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini

      ========== ZeroAccess Check ==========

      [2006/11/02 09:51:16 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini

      [HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

      [HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

      [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
      "" = %SystemRoot%\system32\shell32.dll -- [2012/06/08 14:47:00 | 011,586,048 | ---- | M] (Microsoft Corporation)
      "ThreadingModel" = Apartment

      [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
      "" = %systemroot%\system32\wbem\fastprox.dll -- [2009/04/11 03:28:19 | 000,614,912 | ---- | M] (Microsoft Corporation)
      "ThreadingModel" = Free

      [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
      "" = %systemroot%\system32\wbem\wbemess.dll -- [2009/04/11 03:28:25 | 000,347,648 | ---- | M] (Microsoft Corporation)
      "ThreadingModel" = Both

      ========== LOP Check ==========

      [2012/09/01 13:04:20 | 000,000,000 | ---D | M] -- C:\Users\Valeria Neme\AppData\Roaming\AnvSoft
      [2013/03/25 19:37:35 | 000,000,000 | ---D | M] -- C:\Users\Valeria Neme\AppData\Roaming\AVG2013
      [2012/04/24 18:26:13 | 000,000,000 | ---D | M] -- C:\Users\Valeria Neme\AppData\Roaming\Babylon
      [2010/08/11 13:52:23 | 000,000,000 | ---D | M] -- C:\Users\Valeria Neme\AppData\Roaming\BSplayer
      [2010/08/11 09:01:21 | 000,000,000 | ---D | M] -- C:\Users\Valeria Neme\AppData\Roaming\BSplayer Pro
      [2012/08/27 16:06:32 | 000,000,000 | ---D | M] -- C:\Users\Valeria Neme\AppData\Roaming\com.essexreddevelopment.mergepdfmac
      [2013/02/20 10:49:09 | 000,000,000 | ---D | M] -- C:\Users\Valeria Neme\AppData\Roaming\EPSON
      [2012/10/20 20:23:04 | 000,000,000 | ---D | M] -- C:\Users\Valeria Neme\AppData\Roaming\HandBrake
      [2009/02/27 07:30:23 | 000,000,000 | ---D | M] -- C:\Users\Valeria Neme\AppData\Roaming\ICAClient
      [2009/09/09 18:17:09 | 000,000,000 | ---D | M] -- C:\Users\Valeria Neme\AppData\Roaming\kidoz.52BCFEE1FEAB03D960EAF75B15C2A56D33E8320D.1
      [2012/04/10 14:24:41 | 000,000,000 | ---D | M] -- C:\Users\Valeria Neme\AppData\Roaming\Leadertech
      [2009/02/26 23:38:39 | 000,000,000 | ---D | M] -- C:\Users\Valeria Neme\AppData\Roaming\muvee Technologies
      [2011/09/27 18:28:05 | 000,000,000 | ---D | M] -- C:\Users\Valeria Neme\AppData\Roaming\OwnRooms
      [2012/08/27 14:54:14 | 000,000,000 | ---D | M] -- C:\Users\Valeria Neme\AppData\Roaming\pdfforge
      [2012/04/24 18:27:23 | 000,000,000 | ---D | M] -- C:\Users\Valeria Neme\AppData\Roaming\SumatraPDF
      [2012/06/04 14:45:24 | 000,000,000 | ---D | M] -- C:\Users\Valeria Neme\AppData\Roaming\Template
      [2013/03/25 19:36:50 | 000,000,000 | ---D | M] -- C:\Users\Valeria Neme\AppData\Roaming\TuneUp Software
      [2013/03/27 18:54:54 | 000,000,000 | ---D | M] -- C:\Users\Valeria Neme\AppData\Roaming\uTorrent
      [2012/07/19 15:55:23 | 000,000,000 | ---D | M] -- C:\Users\Valeria Neme\AppData\Roaming\Xilisoft

      ========== Purity Check ==========



      ========== Custom Scans ==========

      < %SYSTEMDRIVE%\*.* >
      [2008/03/10 01:16:19 | 000,000,074 | ---- | M] () -- C:\autoexec.bat
      [2009/04/11 03:36:36 | 000,333,257 | RHS- | M] () -- C:\bootmgr
      [2006/09/18 18:43:37 | 000,000,010 | ---- | M] () -- C:\config.sys
      [2013/03/26 14:57:12 | 2137,014,272 | -HS- | M] () -- C:\hiberfil.sys
      [2013/03/26 14:57:10 | 2450,804,736 | -HS- | M] () -- C:\pagefile.sys
      [2012/03/15 12:12:44 | 000,000,510 | ---- | M] () -- C:\settings.ini
      [2009/10/01 11:26:16 | 000,000,909 | ---- | M] () -- C:\updatedatfix.log
      [2012/06/19 15:29:15 | 000,001,944 | ---- | M] () -- C:\user.js
      [1 C:\*.tmp files -> C:\*.tmp -> ]

      ========== Alternate Data Streams ==========

      @Alternate Data Stream - 24 bytes -> C:\Windows:A2D73FFA0DB5D776
      @Alternate Data Stream - 118 bytes -> C:\ProgramData\TEMP:FB1B13D8

      < End of report >

    6. #6
      Moderador Gral.
      Avatar de Leosolari
      Registrado
      jun 2007
      Ubicaci髇
      Argentina
      Mensajes
      54.896

      Re: Error: Virus Detectado

      Hola de Nuevo




      Descarg a Tu escritorio la Herramienta Adwcleaner

      • Cerr Todos los programas que tengas abiertos.
      • Clic derecho sobre su 韈ono y elegis Ejecutar Como Administrador.
      • Pulsas el Boton Supresi髇.
      • Segu las Instrucciones. La Herramienta va a pedir Reiniciar el sistema, lo cual debes aceptar.
      • Guardas el reporte generado en el Escritorio, para pegarlo en Tu pr髕ima respuesta.







      Ejecut OTL.exe


      Copi y Peg el c骴igo que est dentro del recuadro de abajo en la secci髇 An醠isis Personalizado / C骴igo de Reparaci髇



      :OTL
      PRC - C:\Program Files\Web Assistant\ExtensionUpdaterService.exe ()
      PRC - C:\Program Files\Flip Video\FlipShare\FlipShareService.exe ()
      SRV - (IBUpdaterService) -- C:\Windows\System32\dmwu.exe ()
      SRV - (Web Assistant Updater) -- C:\Program Files\Web Assistant\ExtensionUpdaterService.exe ()
      SRV - (FlipShare Service) -- C:\Program Files\Flip Video\FlipShare\FlipShareService.exe ()
      O2 - BHO: (Conduit Engine ) - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files\ConduitEngine\prxConduitEngine.dll (Conduit Ltd.)
      O2 - BHO: (Web Assistant) - {336D0C35-8A85-403a-B9D2-65C292C39087} - C:\Program Files\Web Assistant\Extension32.dll ()
      O2 - BHO: (ADDICT-THING Class) - {53BA6AE5-2238-3C7B-B469-4D88B12C92C9} - Reg Error: Value error. File not found
      O2 - BHO: (no name) - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - No CLSID value found.
      O2 - BHO: (Incredibar.com Helper Object) - {6E13DDE1-2B6E-46CE-8B66-DC8BF36F6B99} - C:\Program Files\Incredibar.com\incredibar\1.5.11.14\bh\incredibar.dll (Montera Technologeis LTD)
      O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - No CLSID value found.
      O2 - BHO: (uTorrentBar_ES Toolbar) - {db131c55-60c8-4adc-84dc-9e76ab06e2dc} - C:\Program Files\uTorrentBar_ES\prxtbuTor.dll (Conduit Ltd.)
      O2 - BHO: (no name) - {F0626A63-410B-45E2-99A1-3F2475B2D695} - No CLSID value found.
      O2 - BHO: (Fast Browser Search Toolbar Helper) - {FCBCCB87-9224-4B8D-B117-F56D924BEB18} - C:\Program Files\Fast Browser Search\IE\FBStoolbar.dll ()
      O2 - BHO: (BS Player Toolbar) - {fed66dc5-1b74-4a04-8f5c-15c5ace2b9a5} - C:\Program Files\BS_Player\tbBS_P.dll (Conduit Ltd.)
      O3 - HKLM\..\Toolbar: (Fast Browser Search Toolbar) - {1BB22D38-A411-4B13-A746-C2A4F4EC7344} - C:\Program Files\Fast Browser Search\IE\FBStoolbar.dll ()
      O3 - HKLM\..\Toolbar: (The Weather Channel Toolbar) - {2E5E800E-6AC0-411E-940A-369530A35E43} - C:\Windows\System32\TwcToolbarIe7.dll ()
      O3 - HKLM\..\Toolbar: (Conduit Engine ) - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files\ConduitEngine\prxConduitEngine.dll (Conduit Ltd.)
      O3 - HKLM\..\Toolbar: (no name) - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - No CLSID value found.
      O3 - HKLM\..\Toolbar: (uTorrentBar_ES Toolbar) - {db131c55-60c8-4adc-84dc-9e76ab06e2dc} - C:\Program Files\uTorrentBar_ES\prxtbuTor.dll (Conduit Ltd.)
      O3 - HKLM\..\Toolbar: (Incredibar Toolbar) - {F9639E4A-801B-4843-AEE3-03D9DA199E77} - C:\Program Files\Incredibar.com\incredibar\1.5.11.14\incredibarTlbr.dll (Montera Technologeis LTD)
      O3 - HKLM\..\Toolbar: (BS Player Toolbar) - {fed66dc5-1b74-4a04-8f5c-15c5ace2b9a5} - C:\Program Files\BS_Player\tbBS_P.dll (Conduit Ltd.)
      O3 - HKCU\..\Toolbar\WebBrowser: (Fast Browser Search Toolbar) - {1BB22D38-A411-4B13-A746-C2A4F4EC7344} - C:\Program Files\Fast Browser Search\IE\FBStoolbar.dll ()
      O3 - HKCU\..\Toolbar\WebBrowser: (Conduit Engine ) - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files\ConduitEngine\prxConduitEngine.dll (Conduit Ltd.)
      O3 - HKCU\..\Toolbar\WebBrowser: (uTorrentBar_ES Toolbar) - {DB131C55-60C8-4ADC-84DC-9E76AB06E2DC} - C:\Program Files\uTorrentBar_ES\prxtbuTor.dll (Conduit Ltd.)
      O3 - HKCU\..\Toolbar\WebBrowser: (BS Player Toolbar) - {FED66DC5-1B74-4A04-8F5C-15C5ACE2B9A5} - C:\Program Files\BS_Player\tbBS_P.dll (Conduit Ltd.)
      O4 - HKLM..\Run: [] File not found
      O4 - HKLM..\Run: [FBSSA] C:\Program Files\SGPSA\ie3sh.exe ()
      O4 - HKCU..\Run: [ABBYY Screenshot Reader Bonus] File not found
      O4 - HKCU..\Run: [DW6] File not found
      O4 - HKCU..\Run: [MSIDLL] rundll32.exe msikju32.dll,PZjwTasYBVq File not found
      O33 - MountPoints2\{1063f997-3826-11df-b2d3-001eeceb966e}\Shell\AutoRun\command - "" = novir/novir32.exe
      O33 - MountPoints2\{1063f997-3826-11df-b2d3-001eeceb966e}\Shell\explore\command - "" = novir/novir32.exe
      O33 - MountPoints2\{1063f997-3826-11df-b2d3-001eeceb966e}\Shell\open\command - "" = .\novir/novir32.exe
      @Alternate Data Stream - 24 bytes -> C:\Windows:A2D73FFA0DB5D776
      @Alternate Data Stream - 118 bytes -> C:\ProgramData\TEMP:FB1B13D8
      :Files
      ipconfig /flushdns /c
      C:\Program Files\Web Assistant\ExtensionUpdaterService.exe
      C:\Program Files\Flip Video\FlipShare\FlipShareService.exe
      C:\Program Files\ConduitEngine
      C:\Program Files\SGPSA
      :Commands
      [PURITY]
      [EMPTYTEMP]
      [EMPTYFLASH]
      [RESETHOSTS]

      Presion el Boton Reparar para lanzar la eliminaci髇. Presionas OK.

      OTL va a Reiniciar el ordenador para completar la eliminaci髇.


      Guardas el nuevo reporte generado. Lo copias y pegas en Tu pr髕ima respuesta y nos comentas como sigue el ordenador ahora.





      Saludos

      `.父.反疮`贩._. .父.反疮`贩._. No Desesperes.....Segu Luchando `.父.反疮`贩._. .父.反疮`贩._.

      * S韌uenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Inf髍mate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.

    7. #7
      Usuario Avatar de titulin
      Registrado
      mar 2013
      Ubicaci髇
      Argentina
      Mensajes
      6

      Re: Error: Virus Detectado

      Hola,
      ejecute el Adwcleaner, reinicie la maquina como solicito, pero luego no aparece ningun reporte en el escritorio. Lo guarda en alguna carpeta?

      Al ejecutar el OTL.exe con el codigo de reparacion, el programa deja de funcionar y la maquina se cuelga.

      Que me recomiendas hacer?
      Gracias

    8. #8
      Moderador Gral.
      Avatar de Leosolari
      Registrado
      jun 2007
      Ubicaci髇
      Argentina
      Mensajes
      54.896

      Re: Error: Virus Detectado

      Hola


      Hac el Trabajo de reaparaci髇 con OTL, iniciando el ordenador en Modo Seguro.



      Saludos

      `.父.反疮`贩._. .父.反疮`贩._. No Desesperes.....Segu Luchando `.父.反疮`贩._. .父.反疮`贩._.

      * S韌uenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Inf髍mate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.

    9. #9
      Usuario Avatar de titulin
      Registrado
      mar 2013
      Ubicaci髇
      Argentina
      Mensajes
      6

      Re: Error: Virus Detectado

      Tambien se cuelga en Modo Seguro.
      ??

    10. #10
      Moderador Gral.
      Avatar de Leosolari
      Registrado
      jun 2007
      Ubicaci髇
      Argentina
      Mensajes
      54.896

      Re: Error: Virus Detectado

      Hola de Nuevo




      Ejecut OTL.exe


      Copi y Peg el c骴igo que est dentro del recuadro de abajo en la secci髇 An醠isis Personalizado / C骴igo de Reparaci髇


      :services
      IBUpdaterService
      Web Assistant Updater
      FlipShare Service
      :processes
      ExtensionUpdaterService.exe
      FlipShareService.exe
      :OTL
      O2 - BHO: (Conduit Engine ) - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files\ConduitEngine\prxConduitEngine.dll (Conduit Ltd.)
      O2 - BHO: (Web Assistant) - {336D0C35-8A85-403a-B9D2-65C292C39087} - C:\Program Files\Web Assistant\Extension32.dll ()
      O2 - BHO: (ADDICT-THING Class) - {53BA6AE5-2238-3C7B-B469-4D88B12C92C9} - Reg Error: Value error. File not found
      O2 - BHO: (no name) - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - No CLSID value found.
      O2 - BHO: (Incredibar.com Helper Object) - {6E13DDE1-2B6E-46CE-8B66-DC8BF36F6B99} - C:\Program Files\Incredibar.com\incredibar\1.5.11.14\bh\incredibar.dll (Montera Technologeis LTD)
      O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - No CLSID value found.
      O2 - BHO: (uTorrentBar_ES Toolbar) - {db131c55-60c8-4adc-84dc-9e76ab06e2dc} - C:\Program Files\uTorrentBar_ES\prxtbuTor.dll (Conduit Ltd.)
      O2 - BHO: (no name) - {F0626A63-410B-45E2-99A1-3F2475B2D695} - No CLSID value found.
      O2 - BHO: (Fast Browser Search Toolbar Helper) - {FCBCCB87-9224-4B8D-B117-F56D924BEB18} - C:\Program Files\Fast Browser Search\IE\FBStoolbar.dll ()
      O2 - BHO: (BS Player Toolbar) - {fed66dc5-1b74-4a04-8f5c-15c5ace2b9a5} - C:\Program Files\BS_Player\tbBS_P.dll (Conduit Ltd.)
      O3 - HKLM\..\Toolbar: (Fast Browser Search Toolbar) - {1BB22D38-A411-4B13-A746-C2A4F4EC7344} - C:\Program Files\Fast Browser Search\IE\FBStoolbar.dll ()
      O3 - HKLM\..\Toolbar: (The Weather Channel Toolbar) - {2E5E800E-6AC0-411E-940A-369530A35E43} - C:\Windows\System32\TwcToolbarIe7.dll ()
      O3 - HKLM\..\Toolbar: (Conduit Engine ) - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files\ConduitEngine\prxConduitEngine.dll (Conduit Ltd.)
      O3 - HKLM\..\Toolbar: (no name) - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - No CLSID value found.
      O3 - HKLM\..\Toolbar: (uTorrentBar_ES Toolbar) - {db131c55-60c8-4adc-84dc-9e76ab06e2dc} - C:\Program Files\uTorrentBar_ES\prxtbuTor.dll (Conduit Ltd.)
      O3 - HKLM\..\Toolbar: (Incredibar Toolbar) - {F9639E4A-801B-4843-AEE3-03D9DA199E77} - C:\Program Files\Incredibar.com\incredibar\1.5.11.14\incredibarTlbr.dll (Montera Technologeis LTD)
      O3 - HKLM\..\Toolbar: (BS Player Toolbar) - {fed66dc5-1b74-4a04-8f5c-15c5ace2b9a5} - C:\Program Files\BS_Player\tbBS_P.dll (Conduit Ltd.)
      O3 - HKCU\..\Toolbar\WebBrowser: (Fast Browser Search Toolbar) - {1BB22D38-A411-4B13-A746-C2A4F4EC7344} - C:\Program Files\Fast Browser Search\IE\FBStoolbar.dll ()
      O3 - HKCU\..\Toolbar\WebBrowser: (Conduit Engine ) - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files\ConduitEngine\prxConduitEngine.dll (Conduit Ltd.)
      O3 - HKCU\..\Toolbar\WebBrowser: (uTorrentBar_ES Toolbar) - {DB131C55-60C8-4ADC-84DC-9E76AB06E2DC} - C:\Program Files\uTorrentBar_ES\prxtbuTor.dll (Conduit Ltd.)
      O3 - HKCU\..\Toolbar\WebBrowser: (BS Player Toolbar) - {FED66DC5-1B74-4A04-8F5C-15C5ACE2B9A5} - C:\Program Files\BS_Player\tbBS_P.dll (Conduit Ltd.)
      O4 - HKLM..\Run: [] File not found
      O4 - HKLM..\Run: [FBSSA] C:\Program Files\SGPSA\ie3sh.exe ()
      O4 - HKCU..\Run: [ABBYY Screenshot Reader Bonus] File not found
      O4 - HKCU..\Run: [DW6] File not found
      O4 - HKCU..\Run: [MSIDLL] rundll32.exe msikju32.dll,PZjwTasYBVq File not found
      O33 - MountPoints2\{1063f997-3826-11df-b2d3-001eeceb966e}\Shell\AutoRun\command - "" = novir/novir32.exe
      O33 - MountPoints2\{1063f997-3826-11df-b2d3-001eeceb966e}\Shell\explore\command - "" = novir/novir32.exe
      O33 - MountPoints2\{1063f997-3826-11df-b2d3-001eeceb966e}\Shell\open\command - "" = .\novir/novir32.exe
      @Alternate Data Stream - 24 bytes -> C:\Windows:A2D73FFA0DB5D776
      @Alternate Data Stream - 118 bytes -> C:\ProgramData\TEMP:FB1B13D8
      :Files
      C:\Windows\System32\dmwu.exe
      C:\Program Files\Web Assistant\ExtensionUpdaterService.exe
      C:\Program Files\Flip Video\FlipShare\FlipShareService.exe
      C:\Program Files\Web Assistant\ExtensionUpdaterService.exe
      C:\Program Files\Flip Video\FlipShare\FlipShareService.exe
      C:\Program Files\ConduitEngine
      C:\Program Files\SGPSA
      ipconfig /flushdns /c
      :Commands
      [Reboot]

      Presion el Boton Reparar para lanzar la eliminaci髇. Presionas OK.

      OTL va a Reiniciar el ordenador para completar la eliminaci髇.


      Guardas el nuevo reporte generado. Lo copias y pegas en Tu pr髕ima respuesta y nos comentas como sigue el ordenador ahora.





      Saludos

      `.父.反疮`贩._. .父.反疮`贩._. No Desesperes.....Segu Luchando `.父.反疮`贩._. .父.反疮`贩._.

      * S韌uenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Inf髍mate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.

    P醙ina 1 de 2 12 趌timo趌timo