• Registrarse
  • Iniciar sesión


  • Página 2 de 3 PrimeroPrimero 123 ÚltimoÚltimo
    Resultados 11 al 20 de 26

    ads not by this site (Solucionado)

    Resumen del tema: ads not by this site (Solucionado) - Hola fajalecool Antes de seguir, realiza los siguientes pasos para actualizar. Desinstala con Revo Unistaller seleccionando su Modo avanzado <<< Ver Manual, lo siguiente: Java Adobe Reader Y luego de reiniciar descargas y ejecutas sus ...

      
    1. #11
      Moderadora
      Avatar de @Daniela
      Registrado
      abr 2011
      Ubicación
      España
      Mensajes
      9.408

      Re: ads not by this site

      Hola fajalecool

      Antes de seguir, realiza los siguientes pasos para actualizar.

      Desinstala con Revo Unistaller seleccionando su Modo avanzado <<< Ver Manual, lo siguiente:

      • Java
      • Adobe Reader


      Y luego de reiniciar descargas y ejecutas sus versiones actualizadas:

      Descarga gratuita de software de Java

      Adobe - Descarga de Adobe Reader - Todas las versiones

      Actaliza Mozilla Firefox > Ayuda > Acerca de Firefox

      Comenta como sigue el problema.

      Un saludo
      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.

    2. #12
      Usuario Avatar de fajalecool
      Registrado
      mar 2013
      Ubicación
      Argentina
      Mensajes
      23

      Re: ads not by this site

      Hola Daniela. te paso a explicar: hice todo lo que me pediste, instalé el Revo, luego desisnstalé Java y Adobe Reader, reinicié e instalé de nuevo estos programas actualizados, fui a Mozilla Firefox y actualicé como me dijiste, en el Explorer, los ads no aparecen más en la página de inicio pero si en las páginas que abro con el buscador, y Mozilla sigue igual que siempre y los dos muy lentos para abrir páginas, nada que ver con el Chrome que es el que estoy usando ahora. saludos.

    3. #13
      Moderadora
      Avatar de @Daniela
      Registrado
      abr 2011
      Ubicación
      España
      Mensajes
      9.408

      Re: ads not by this site

      Hola fajalecool

      Descarga >> OTL By OldTimer a tu escritorio.

      Para Ejecutar OTL sigue estos pasos :

      • Cerrar todos programas que tengas abiertos y hacer doble click en el ícono de OTL para ejecutarlo.
      • Dejarlo correr y esperar a que aparezca el menú de OTL..
      • Cuando salga el menú de OTL, debes cambiar debajo de: "Tipo de Análisis" poniendo Resultado Mínimo.
      • Marcar la casilla Analizar Todos.
      • Marcar las opciones:Buscar LOP y Buscar Purity
      • Marcar las Opciones: Omitir Archivos De Microsoft y Usar Listado de Compañías Reconocidas.
      • Copiar y Pegar las líneas del siguiente script bajo la casilla Análisis Personalizados/Código de Reparación:

        NOTA: No copiar la palabra Código:
        Código:
        netsvcs
        msconfig
        %SYSTEMDRIVE%\*.*
        CREATERESTOREPOINT


      • Por favor No cambies el resto de la configuración a menos que te lo solicitemos.


      • Presionar el botón .
      • Una vez que termine, se abrirán dos (2) archivos, OTL.Txt y Extras.Txt. Éstos archivos estarán grabados en el mismo lugar donde OTL.exe fue descargado.
      • Copiar y pegar el contenido del archivo OTL.txt en tu próxima respuesta.


      Un saludo
      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.

    4. #14
      Usuario Avatar de fajalecool
      Registrado
      mar 2013
      Ubicación
      Argentina
      Mensajes
      23

      Re: ads not by this site

      Hola Daniela, acá te mando el reporte de OTL saludos.

      OTL logfile created on: 26/06/2013 11:26:39 p.m. - Run 1
      OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Usuario\Downloads\Programs
      Professional Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
      Internet Explorer (Version = 9.0.8112.16421)
      Locale: 00002c0a | Country: Argentina | Language: ESS | Date Format: dd/MM/yyyy

      1011,87 Mb Total Physical Memory | 488,87 Mb Available Physical Memory | 48,31% Memory free
      1,99 Gb Paging File | 1,22 Gb Available in Paging File | 61,27% Paging File free
      Paging file location(s): ?:\pagefile.sys [binary data]

      %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
      Drive C: | 232,79 Gb Total Space | 151,74 Gb Free Space | 65,18% Space Free | Partition Type: NTFS
      Drive D: | 3,03 Gb Total Space | 0,00 Gb Free Space | 0,00% Space Free | Partition Type: UDF

      Computer Name: USUARIO-PC | User Name: Usuario | Logged in as Administrator.
      Boot Mode: Normal | Scan Mode: All users
      Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

      ========== Processes (SafeList) ==========

      PRC - C:\Users\Usuario\Downloads\Programs\OTL.exe (OldTimer Tools)
      PRC - C:\Archivos de programa\Common Files\Adobe\ARM\1.0\armsvc.exe (Adobe Systems Incorporated)
      PRC - C:\Archivos de programa\Alwil Software\Avast5\AvastUI.exe (AVAST Software)
      PRC - C:\Archivos de programa\Alwil Software\Avast5\AvastSvc.exe (AVAST Software)
      PRC - C:\Archivos de programa\Internet Download Manager\IDMan.exe (Tonec Inc.)
      PRC - C:\Archivos de programa\Internet Download Manager\IEMonitor.exe (Tonec Inc.)
      PRC - C:\Archivos de programa\Kodak\KODAK Share Button App\Listener.exe (Eastman Kodak Company)
      PRC - C:\Archivos de programa\Winstep\Nexus.exe (Winstep Software Technologies)
      PRC - C:\Archivos de programa\Ares\Ares.exe (Ares Development Group)
      PRC - C:\Archivos de programa\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe (Hewlett-Packard Development Company, L.P.)
      PRC - C:\Archivos de programa\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe (Hewlett-Packard Development Company, L.P.)
      PRC - C:\Archivos de programa\Common Files\microsoft shared\Windows Live\WLIDSVCM.EXE (Microsoft Corp.)
      PRC - C:\Archivos de programa\Common Files\microsoft shared\Windows Live\WLIDSVC.EXE (Microsoft Corp.)
      PRC - C:\Archivos de programa\Winstep\WsxService.exe (Winstep Software Technologies)
      PRC - C:\Archivos de programa\Windows Media Player\wmpnetwk.exe (Microsoft Corporation)
      PRC - C:\Windows\explorer.exe (Microsoft Corporation)
      PRC - C:\Windows\System32\taskhost.exe (Microsoft Corporation)
      PRC - C:\Archivos de programa\Microsoft Office\Office14\ONENOTEM.EXE (Microsoft Corporation)
      PRC - C:\Archivos de programa\Microsoft Office\Office14\MSOSYNC.EXE (Microsoft Corporation)


      ========== Modules (No Company Name) ==========

      MOD - C:\Archivos de programa\Winstep\wodTelnetDLX.dll ()
      MOD - C:\Archivos de programa\Common Files\microsoft shared\OFFICE14\Cultures\OFFICE.ODF ()


      ========== Services (SafeList) ==========

      SRV - (MozillaMaintenance) -- C:\Archivos de programa\Mozilla Maintenance Service\maintenanceservice.exe (Mozilla Foundation)
      SRV - (AdobeFlashPlayerUpdateSvc) -- C:\Windows\System32\Macromed\Flash\FlashPlayerUpdateService.exe (Adobe Systems Incorporated)
      SRV - (AdobeARMservice) -- C:\Archivos de programa\Common Files\Adobe\ARM\1.0\armsvc.exe (Adobe Systems Incorporated)
      SRV - (avast! Antivirus) -- C:\Archivos de programa\Alwil Software\Avast5\AvastSvc.exe (AVAST Software)
      SRV - (WatAdminSvc) -- C:\Windows\System32\Wat\WatAdminSvc.exe (Microsoft Corporation)
      SRV - (SkypeUpdate) -- C:\Archivos de programa\Skype\Updater\Updater.exe (Skype Technologies)
      SRV - (HPWMISVC) -- C:\Archivos de programa\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe (Hewlett-Packard Development Company, L.P.)
      SRV - (wlidsvc) -- C:\Archivos de programa\Common Files\microsoft shared\Windows Live\WLIDSVC.EXE (Microsoft Corp.)
      SRV - (Winstep Xtreme Service) -- C:\Program Files\Winstep\WsxService.exe (Winstep Software Technologies)
      SRV - (WMPNetworkSvc) -- C:\Archivos de programa\Windows Media Player\wmpnetwk.exe (Microsoft Corporation)
      SRV - (Microsoft SharePoint Workspace Audit Service) -- C:\Program Files\Microsoft Office\Office14\GROOVE.EXE (Microsoft Corporation)
      SRV - (ACDaemon) -- C:\Archivos de programa\Common Files\ArcSoft\Connection Service\Bin\ACService.exe (ArcSoft Inc.)
      SRV - (osppsvc) -- C:\Archivos de programa\Common Files\microsoft shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE (Microsoft Corporation)
      SRV - (ose) -- C:\Archivos de programa\Common Files\microsoft shared\Source Engine\OSE.EXE (Microsoft Corporation)
      SRV - (StorSvc) -- C:\Windows\System32\StorSvc.dll (Microsoft Corporation)
      SRV - (SensrSvc) -- C:\Windows\System32\sensrsvc.dll (Microsoft Corporation)
      SRV - (PeerDistSvc) -- C:\Windows\System32\PeerDistSvc.dll (Microsoft Corporation)
      SRV - (WinDefend) -- C:\Archivos de programa\Windows Defender\MpSvc.dll (Microsoft Corporation)


      ========== Driver Services (SafeList) ==========

      DRV - (aswSnx) -- C:\Windows\System32\drivers\aswSnx.sys (AVAST Software)
      DRV - (aswSP) -- C:\Windows\System32\drivers\aswSP.sys (AVAST Software)
      DRV - (aswVmm) -- C:\Windows\System32\drivers\aswVmm.sys ()
      DRV - (aswRdr) -- C:\Windows\System32\drivers\aswRdr2.sys (AVAST Software)
      DRV - (aswTdi) -- C:\Windows\System32\drivers\aswTdi.sys (AVAST Software)
      DRV - (aswRvrt) -- C:\Windows\System32\drivers\aswRvrt.sys ()
      DRV - (aswMonFlt) -- C:\Windows\System32\drivers\aswMonFlt.sys (AVAST Software)
      DRV - (aswFsBlk) -- C:\Windows\System32\drivers\aswFsBlk.sys (AVAST Software)
      DRV - (avgtp) -- C:\Windows\System32\drivers\avgtpx86.sys (AVG Technologies)
      DRV - (dtsoftbus01) -- C:\Windows\System32\drivers\dtsoftbus01.sys (DT Soft Ltd)
      DRV - (IDMWFP) -- C:\Windows\System32\drivers\idmwfp.sys (Tonec Inc.)
      DRV - (TsUsbFlt) -- C:\Windows\System32\drivers\TsUsbFlt.sys (Microsoft Corporation)
      DRV - (vmbus) -- C:\Windows\System32\drivers\vmbus.sys (Microsoft Corporation)
      DRV - (dmvsc) -- C:\Windows\System32\drivers\dmvsc.sys (Microsoft Corporation)
      DRV - (storflt) -- C:\Windows\System32\drivers\vmstorfl.sys (Microsoft Corporation)
      DRV - (WinUsb) -- C:\Windows\System32\drivers\winusb.sys (Microsoft Corporation)
      DRV - (storvsc) -- C:\Windows\System32\drivers\storvsc.sys (Microsoft Corporation)
      DRV - (TsUsbGD) -- C:\Windows\System32\drivers\TsUsbGD.sys (Microsoft Corporation)
      DRV - (VMBusHID) -- C:\Windows\System32\drivers\VMBusHID.sys (Microsoft Corporation)
      DRV - (s3cap) -- C:\Windows\System32\drivers\vms3cap.sys (Microsoft Corporation)
      DRV - (vwifimp) -- C:\Windows\System32\drivers\vwifimp.sys (Microsoft Corporation)
      DRV - (sfvfs02) -- C:\Windows\System32\drivers\sfvfs02.sys (Protection Technology)
      DRV - (sfsync02) -- C:\Windows\System32\drivers\sfsync02.sys (Protection Technology)
      DRV - (sfdrv01) -- C:\Windows\System32\drivers\sfdrv01.sys (Protection Technology)
      DRV - (sfhlp02) -- C:\Windows\System32\drivers\sfhlp02.sys (Protection Technology)


      ========== Standard Registry (SafeList) ==========


      ========== Internet Explorer ==========

      IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = Google
      IE - HKLM\..\SearchScopes,DefaultScope =


      IE - HKU\.DEFAULT\..\SearchScopes,DefaultScope =
      IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

      IE - HKU\S-1-5-18\..\SearchScopes,DefaultScope =
      IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

      IE - HKU\S-1-5-19\..\SearchScopes,DefaultScope =

      IE - HKU\S-1-5-20\..\SearchScopes,DefaultScope =

      IE - HKU\S-1-5-21-2021241018-1846666833-3646265627-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = http://feed.snapdo.com/?publisher=SnapdoGOblidooYB&dpid=SnapdoGOblidooYB&co=TJ&userid=ea262bc6-224f-4f30-9f95-739d24740b3a&searchtype=ds&q={searchTerms}&installDate=17/06/2013
      IE - HKU\S-1-5-21-2021241018-1846666833-3646265627-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://feed.snapdo.com/?publisher=SnapdoGOblidooYB&dpid=SnapdoGOblidooYB&co=TJ&userid=ea262bc6-224f-4f30-9f95-739d24740b3a&searchtype=ds&q={searchTerms}&installDate=17/06/2013
      IE - HKU\S-1-5-21-2021241018-1846666833-3646265627-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = Google
      IE - HKU\S-1-5-21-2021241018-1846666833-3646265627-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = MSN Argentina: Skype, Outlook, Noticias, Entretenimiento, Videos y más
      IE - HKU\S-1-5-21-2021241018-1846666833-3646265627-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = es-AR
      IE - HKU\S-1-5-21-2021241018-1846666833-3646265627-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 96 95 DF F8 07 3E CE 01 [binary data]
      IE - HKU\S-1-5-21-2021241018-1846666833-3646265627-1000\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://feed.snapdo.com/?publisher=SnapdoGOblidooYB&dpid=SnapdoGOblidooYB&co=TJ&userid=ea262bc6-224f-4f30-9f95-739d24740b3a&searchtype=ds&q={searchTerms}&installDate=17/06/2013
      IE - HKU\S-1-5-21-2021241018-1846666833-3646265627-1000\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://feed.snapdo.com/?publisher=SnapdoGOblidooYB&dpid=SnapdoGOblidooYB&co=TJ&userid=ea262bc6-224f-4f30-9f95-739d24740b3a&searchtype=ds&q={searchTerms}&installDate=17/06/2013
      IE - HKU\S-1-5-21-2021241018-1846666833-3646265627-1000\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
      IE - HKU\S-1-5-21-2021241018-1846666833-3646265627-1000\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC
      IE - HKU\S-1-5-21-2021241018-1846666833-3646265627-1000\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
      IE - HKU\S-1-5-21-2021241018-1846666833-3646265627-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

      ========== FireFox ==========

      FF - prefs.js..browser.search.defaultenginename: "(Google)"
      FF - prefs.js..browser.search.defaulturl: "www.Google.com"
      FF - prefs.js..browser.search.order.1: "(Google)"
      FF - prefs.js..browser.search.selectedEngine: "Google"
      FF - prefs.js..browser.search.useDBForOrder: "false"
      FF - prefs.js..browser.startup.homepage: "http://google.com"
      FF - prefs.js..extensions.enabledAddons: wrc%40avast.com:8.0.1489
      FF - prefs.js..extensions.enabledAddons: coollrcs%40coolzone.co:1.114
      FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:21.0
      FF - prefs.js..keyword.URL: "https://www.google.com/search?q="
      FF - user.js - File not found

      FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF32_11_7_700_224.dll ()
      FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.25.2: C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
      FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.25.2: C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
      FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
      FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\4.0.50401.0\npctrl.dll ( Microsoft Corporation)
      FF - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation)
      FF - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\PROGRA~1\MICROS~2\Office14\NPSPWRAP.DLL (Microsoft Corporation)
      FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.145\npGoogleUpdate3.dll (Google Inc.)
      FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.145\npGoogleUpdate3.dll (Google Inc.)
      FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.0.1: C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
      FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
      FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Users\Usuario\AppData\Local\Google\Update\1.3.21.145\npGoogleUpdate3.dll (Google Inc.)
      FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Users\Usuario\AppData\Local\Google\Update\1.3.21.145\npGoogleUpdate3.dll (Google Inc.)
      FF - HKCU\Software\MozillaPlugins\@unity3d.com/UnityPlayer,version=1.0: C:\Users\Usuario\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)

      FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\[email protected]: C:\Program Files\Alwil Software\Avast5\WebRep\FF [2013/05/21 21:52:39 | 000,000,000 | ---D | M]
      FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 21.0\extensions\\Components: C:\Program Files\Mozilla Firefox\components
      FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 21.0\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2013/06/24 00:59:37 | 000,000,000 | ---D | M]
      FF - HKEY_LOCAL_MACHINE\software\mozilla\Thunderbird\Extensions\\[email protected]: C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird
      FF - HKEY_CURRENT_USER\software\mozilla\Firefox\Extensions\\[email protected]: C:\Users\Usuario\AppData\Roaming\IDM\idmmzcc5 [2013/04/15 08:55:47 | 000,000,000 | ---D | M]
      FF - HKEY_CURRENT_USER\software\mozilla\Firefox\Extensions\\[email protected]: C:\Program Files\CoolLyrics\FF\ [2013/06/17 08:46:37 | 000,000,000 | ---D | M]
      FF - HKEY_CURRENT_USER\software\mozilla\SeaMonkey\Extensions\\[email protected]: C:\Users\Usuario\AppData\Roaming\IDM\idmmzcc5 [2013/04/15 08:55:47 | 000,000,000 | ---D | M]

      [2012/05/18 18:15:23 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Usuario\AppData\Roaming\mozilla\Extensions
      [2013/06/17 10:05:04 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Usuario\AppData\Roaming\mozilla\Firefox\Profiles\bf7qdx80.default\extensions
      [2013/06/24 00:59:33 | 000,000,000 | ---D | M] (No name found) -- C:\Archivos de programa\Mozilla Firefox\extensions
      [2013/06/24 01:00:23 | 000,000,000 | ---D | M] (No name found) -- C:\Archivos de programa\Mozilla Firefox\browser\extensions
      [2013/06/24 01:00:23 | 000,000,000 | ---D | M] (Default) -- C:\Archivos de programa\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
      [2013/05/21 21:52:39 | 000,000,000 | ---D | M] (avast! Online Security) -- C:\PROGRAM FILES\ALWIL SOFTWARE\AVAST5\WEBREP\FF
      [2013/06/17 08:46:37 | 000,000,000 | ---D | M] ("Cool Lyrics") -- C:\PROGRAM FILES\COOLLYRICS\FF
      [2011/12/09 14:23:32 | 000,012,800 | ---- | M] (Nullsoft, Inc.) -- C:\Program Files\mozilla firefox\plugins\npwachk.dll

      ========== Chrome ==========

      CHR - default_search_provider: Google (Enabled)
      CHR - default_search_provider: search_url = {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}{google:searchClient}{google:sourceId}{google:instantExtendedEnabledParameter}ie={inputEncoding}
      CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client=chrome&q={searchTerms}&{google:cursorPosition}sugkey={google:suggestAPIKeyParameter}
      CHR - homepage: Google
      CHR - plugin: Shockwave Flash (Enabled) = C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\PepperFlash\11.7.700.225\pepflashplayer.dll
      CHR - plugin: Chrome Remote Desktop Viewer (Enabled) = internal-remoting-viewer
      CHR - plugin: Native Client (Enabled) = C:\Users\Usuario\AppData\Local\Google\Chrome\Application\27.0.1453.116\ppGoogleNaClPluginChrome.dll
      CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Users\Usuario\AppData\Local\Google\Chrome\Application\27.0.1453.116\pdf.dll
      CHR - plugin: Adobe Acrobat (Enabled) = C:\Program Files\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll
      CHR - plugin: Microsoft\u00AE Windows Media Player Firefox Plugin (Enabled) = C:\Program Files\Mozilla Firefox\plugins\np-mswmp.dll
      CHR - plugin: Winamp Application Detector (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npwachk.dll
      CHR - plugin: Microsoft Office 2010 (Enabled) = C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL
      CHR - plugin: Microsoft Office 2010 (Enabled) = C:\PROGRA~1\MICROS~2\Office14\NPSPWRAP.DLL
      CHR - plugin: Google Update (Enabled) = C:\Program Files\Google\Update\1.3.21.145\npGoogleUpdate3.dll
      CHR - plugin: Java(TM) Platform SE 7 U21 (Enabled) = C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll
      CHR - plugin: VLC Web Plugin (Enabled) = C:\Program Files\VideoLAN\VLC\npvlc.dll
      CHR - plugin: Unity Player (Enabled) = C:\Users\Usuario\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll
      CHR - plugin: Shockwave Flash (Enabled) = C:\Windows\system32\Macromed\Flash\NPSWF32_11_7_700_224.dll
      CHR - plugin: Java Deployment Toolkit 7.0.210.11 (Enabled) = C:\Windows\system32\npDeployJava1.dll
      CHR - plugin: Silverlight Plug-In (Enabled) = c:\Program Files\Microsoft Silverlight\4.0.50401.0\npctrl.dll
      CHR - Extension: Cool Lyrics = C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\clffglkbddffcdnehidjiimmoiphomid\1.114_0\
      CHR - Extension: IDM Integration = C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\jmolcgpienlcieaajfkkdamlngancncm\6.15.5_0\

      O1 HOSTS File: ([2013/03/12 00:17:12 | 000,000,864 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
      O1 - Hosts: 127.0.0.1 validation.sls.microsoft.com
      O2 - BHO: (IDM integration (IDMIEHlprObj Class)) - {0055C089-8582-441B-A0BF-17B458C2A3A8} - C:\Archivos de programa\Internet Download Manager\IDMIECC.dll (Internet Download Manager, Tonec Inc.)
      O2 - BHO: (Groove GFS Browser Helper) - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Archivos de programa\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
      O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Archivos de programa\Java\jre7\bin\ssv.dll (Oracle Corporation)
      O2 - BHO: (Cool Lyrics) - {7C5D7930-FACC-4A25-AE26-51DDA83F3D75} - C:\Archivos de programa\CoolLyrics\coolrcs.dll (CoolZone)
      O2 - BHO: (avast! Online Security) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Archivos de programa\Alwil Software\Avast5\aswWebRepIE.dll (AVAST Software)
      O2 - BHO: (Windows Live ID Sign-in Helper) - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Archivos de programa\Common Files\microsoft shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
      O2 - BHO: (Office Document Cache Handler) - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Archivos de programa\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
      O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Archivos de programa\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
      O3 - HKLM\..\Toolbar: (avast! Online Security) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Archivos de programa\Alwil Software\Avast5\aswWebRepIE.dll (AVAST Software)
      O3 - HKU\S-1-5-21-2021241018-1846666833-3646265627-1000\..\Toolbar\WebBrowser: (no name) - {DB131C55-60C8-4ADC-84DC-9E76AB06E2DC} - No CLSID value found.
      O4 - HKLM..\Run: [avast5] C:\Program Files\Alwil Software\Avast5\avastUI.exe (AVAST Software)
      O4 - HKLM..\Run: [HP Quick Launch] C:\Archivos de programa\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe (Hewlett-Packard Development Company, L.P.)
      O4 - HKU\S-1-5-21-2021241018-1846666833-3646265627-1000..\Run: [ares] C:\Program Files\Ares\Ares.exe (Ares Development Group)
      O4 - HKU\S-1-5-21-2021241018-1846666833-3646265627-1000..\Run: [DAEMON Tools Lite] C:\Program Files\DAEMON Tools Lite\DTLite.exe (DT Soft Ltd)
      O4 - HKU\S-1-5-21-2021241018-1846666833-3646265627-1000..\Run: [IDMan] C:\Program Files\Internet Download Manager\IDMan.exe (Tonec Inc.)
      O4 - HKU\S-1-5-21-2021241018-1846666833-3646265627-1000..\Run: [KGShareApp] C:\Archivos de programa\Kodak\KODAK Share Button App\KGShare_App.exe (Eastman Kodak Company)
      O4 - HKU\S-1-5-21-2021241018-1846666833-3646265627-1000..\Run: [Nexus] C:\Program Files\Winstep\Nexus.exe (Winstep Software Technologies)
      O4 - HKU\S-1-5-21-2021241018-1846666833-3646265627-1000..\Run: [OfficeSyncProcess] C:\Program Files\Microsoft Office\Office14\MSOSYNC.EXE (Microsoft Corporation)
      O4 - HKU\S-1-5-19..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (Microsoft Corporation)
      O4 - HKU\S-1-5-20..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (Microsoft Corporation)
      O4 - Startup: C:\Users\Usuario\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Recorte de pantalla y Selector de OneNote 2010.lnk = C:\Archivos de programa\Microsoft Office\Office14\ONENOTEM.EXE (Microsoft Corporation)
      O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 0
      O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
      O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0
      O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 0
      O7 - HKU\S-1-5-21-2021241018-1846666833-3646265627-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
      O8 - Extra context menu item: &Enviar a OneNote - C:\Archivos de programa\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation)
      O8 - Extra context menu item: Descargar con IDM - C:\Archivos de programa\Internet Download Manager\IEExt.htm ()
      O8 - Extra context menu item: Descargar con IDM todos los enlaces - C:\Archivos de programa\Internet Download Manager\IEGetAll.htm ()
      O8 - Extra context menu item: E&xportar a Microsoft Excel - C:\Archivos de programa\Microsoft Office\Office14\EXCEL.EXE (Microsoft Corporation)
      O9 - Extra Button: Enviar a OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Archivos de programa\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation)
      O9 - Extra 'Tools' menuitem : &Enviar a OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Archivos de programa\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation)
      O9 - Extra Button: Notas &vinculadas de OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Archivos de programa\Microsoft Office\Office14\ONBttnIELinkedNotes.dll (Microsoft Corporation)
      O9 - Extra 'Tools' menuitem : Notas &vinculadas de OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Archivos de programa\Microsoft Office\Office14\ONBttnIELinkedNotes.dll (Microsoft Corporation)
      O10 - NameSpace_Catalog5\Catalog_Entries\000000000008 [] - C:\Archivos de programa\Common Files\microsoft shared\Windows Live\WLIDNSP.DLL (Microsoft Corp.)
      O10 - NameSpace_Catalog5\Catalog_Entries\000000000009 [] - C:\Archivos de programa\Common Files\microsoft shared\Windows Live\WLIDNSP.DLL (Microsoft Corp.)
      O13 - gopher Prefix: missing
      O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 200.91.48.2 200.91.48.3
      O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{29A841ED-93F7-4771-9FB2-F1820DFD52B8}: DhcpNameServer = 200.91.48.2 200.91.48.3
      O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{8022B1C0-3D64-4363-BD60-4B9137B1C317}: DhcpNameServer = 200.91.48.3 200.91.48.2
      O18 - Protocol\Handler\livecall {828030A1-22C1-4009-854F-8E305202313F} - C:\Archivos de programa\Windows Live\Messenger\msgrapp.dll (Microsoft Corporation)
      O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Archivos de programa\Common Files\microsoft shared\Help\hxds.dll (Microsoft Corporation)
      O18 - Protocol\Handler\msnim {828030A1-22C1-4009-854F-8E305202313F} - C:\Archivos de programa\Windows Live\Messenger\msgrapp.dll (Microsoft Corporation)
      O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Archivos de programa\Common Files\Skype\Skype4COM.dll (Skype Technologies)
      O18 - Protocol\Handler\wlmailhtml {03C514A3-1EFB-4856-9F99-10D7BE1653C0} - C:\Archivos de programa\Windows Live\Mail\mailcomm.dll (Microsoft Corporation)
      O18 - Protocol\Filter\text/xml {807573E5-5146-11D5-A672-00B0D022E945} - C:\Archivos de programa\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL (Microsoft Corporation)
      O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
      O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\System32\userinit.exe (Microsoft Corporation)
      O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\System32\SystemPropertiesPerformance.exe (Microsoft Corporation)
      O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
      O28 - HKLM ShellExecuteHooks: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Archivos de programa\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
      O32 - HKLM CDRom: AutoRun - 1
      O32 - AutoRun File - [2009/06/10 18:42:20 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
      O32 - AutoRun File - [2011/04/12 07:50:50 | 000,000,122 | R--- | M] () - D:\autorun.inf -- [ UDF ]
      O33 - MountPoints2\{614e13f9-5cf2-11e2-8d48-2c768adf207c}\Shell - "" = AutoRun
      O33 - MountPoints2\{614e13f9-5cf2-11e2-8d48-2c768adf207c}\Shell\AutoRun\command - "" = D:\sources\sperr32.exe -- [2011/04/12 07:50:50 | 000,123,472 | R--- | M] (Microsoft Corporation)
      O34 - HKLM BootExecute: (autocheck autochk *)
      O35 - HKLM\..comfile [open] -- "%1" %*
      O35 - HKLM\..exefile [open] -- "%1" %*
      O37 - HKLM\...com [@ = comfile] -- "%1" %*
      O37 - HKLM\...exe [@ = exefile] -- "%1" %*
      O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
      O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
      O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)

      NetSvcs: FastUserSwitchingCompatibility - File not found
      NetSvcs: Ias - C:\Windows\System32\ias.dll (Microsoft Corporation)
      NetSvcs: Nla - File not found
      NetSvcs: Ntmssvc - File not found
      NetSvcs: NWCWorkstation - File not found
      NetSvcs: Nwsapagent - File not found
      NetSvcs: SRService - File not found
      NetSvcs: WmdmPmSp - File not found
      NetSvcs: LogonHours - File not found
      NetSvcs: PCAudit - File not found
      NetSvcs: helpsvc - File not found
      NetSvcs: uploadmgr - File not found

      MsConfig - StartUpReg: Adobe ARM - hkey= - key= - C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe (Adobe Systems Incorporated)
      MsConfig - StartUpReg: BCSSync - hkey= - key= - C:\Program Files\Microsoft Office\Office14\BCSSync.exe (Microsoft Corporation)
      MsConfig - StartUpReg: PlusService - hkey= - key= - C:\Archivos de programa\Yuna Software\Messenger Plus!\PlusService.exe (Yuna Software)
      MsConfig - StartUpReg: Skype - hkey= - key= - C:\Program Files\Skype\Phone\Skype.exe (Skype Technologies S.A.)
      MsConfig - StartUpReg: SunJavaUpdateSched - hkey= - key= - C:\Program Files\Common Files\Java\Java Update\jusched.exe (Oracle Corporation)
      MsConfig - StartUpReg: WinampAgent - hkey= - key= - C:\Program Files\Winamp\winampa.exe (Nullsoft, Inc.)
      MsConfig - State: "startup" - 2
      MsConfig - State: "bootini" - 2

      CREATERESTOREPOINT
      Restore point Set: OTL Restore Point

      ========== Files/Folders - Created Within 30 Days ==========

      [2013/06/26 07:53:26 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ubisoft
      [2013/06/26 00:00:52 | 000,000,000 | ---D | C] -- C:\Program Files\Ubisoft
      [2013/06/24 00:59:29 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Firefox
      [2013/06/24 00:20:16 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Adobe
      [2013/06/24 00:20:16 | 000,000,000 | ---D | C] -- C:\Program Files\Adobe
      [2013/06/24 00:08:37 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Java
      [2013/06/23 17:41:35 | 000,000,000 | ---D | C] -- C:\Users\Usuario\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller
      [2013/06/23 17:41:34 | 000,000,000 | ---D | C] -- C:\Program Files\VS Revo Group
      [2013/06/23 01:59:32 | 000,000,000 | ---D | C] -- C:\ProgramData\Media Get LLC
      [2013/06/23 00:09:37 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes' Anti-Malware (portable)
      [2013/06/23 00:04:04 | 000,000,000 | ---D | C] -- C:\Users\Usuario\Desktop\mbar
      [2013/06/17 08:46:36 | 000,000,000 | ---D | C] -- C:\Program Files\CoolLyrics
      [2013/06/16 15:12:57 | 000,695,296 | ---- | C] (AnjoCaido) -- C:\Users\Usuario\Desktop\Minecraft.exe
      [2013/06/16 00:33:12 | 000,000,000 | ---D | C] -- C:\Users\Usuario\AppData\Roaming\.minecraft
      [2013/06/03 22:31:14 | 000,000,000 | ---D | C] -- C:\Users\Usuario\Documents\Número incidente cirugía_archivos
      [2013/06/02 13:03:40 | 000,000,000 | ---D | C] -- C:\Users\Usuario\AppData\Local\{41362354-8C4E-4576-A44F-8D3790D1BB30}
      [1 C:\Program Files\*.tmp files -> C:\Program Files\*.tmp -> ]

      ========== Files - Modified Within 30 Days ==========

      [2013/06/26 23:31:01 | 000,000,838 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
      [2013/06/26 23:16:10 | 000,031,280 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
      [2013/06/26 23:16:10 | 000,031,280 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
      [2013/06/26 23:11:04 | 000,000,380 | ---- | M] () -- C:\Windows\tasks\Cool Lyrics Update.job
      [2013/06/26 2348 | 000,000,316 | ---- | M] () -- C:\Windows\tasks\GlaryInitialize.job
      [2013/06/26 2344 | 000,001,022 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
      [2013/06/26 2340 | 000,000,266 | ---- | M] () -- C:\Windows\tasks\AutoKMS.job
      [2013/06/26 2322 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
      [2013/06/26 2307 | 795,762,688 | -HS- | M] () -- C:\hiberfil.sys
      [2013/06/26 21:44:11 | 000,001,026 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
      [2013/06/26 21:42:06 | 000,001,054 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2021241018-1846666833-3646265627-1000UA.job
      [2013/06/26 14:04:27 | 000,770,344 | ---- | M] (AVAST Software) -- C:\Windows\System32\drivers\aswSnx.sys
      [2013/06/26 14:04:27 | 000,369,456 | ---- | M] (AVAST Software) -- C:\Windows\System32\drivers\aswSP.sys
      [2013/06/26 14:04:27 | 000,000,175 | ---- | M] () -- C:\Windows\System32\drivers\aswSP.sys.sum
      [2013/06/26 14:04:27 | 000,000,175 | ---- | M] () -- C:\Windows\System32\drivers\aswSnx.sys.sum
      [2013/06/25 23:42:56 | 000,001,002 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2021241018-1846666833-3646265627-1000Core.job
      [2013/06/25 07:32:34 | 000,748,584 | ---- | M] () -- C:\Windows\System32\perfh00A.dat
      [2013/06/25 07:32:34 | 000,654,552 | ---- | M] () -- C:\Windows\System32\perfh009.dat
      [2013/06/25 07:32:34 | 000,158,622 | ---- | M] () -- C:\Windows\System32\perfc00A.dat
      [2013/06/25 07:32:34 | 000,121,424 | ---- | M] () -- C:\Windows\System32\perfc009.dat
      [2013/06/24 00:21:26 | 000,001,989 | ---- | M] () -- C:\Users\Public\Desktop\Adobe Reader XI.lnk
      [2013/06/23 17:41:35 | 000,001,226 | ---- | M] () -- C:\Users\Usuario\Desktop\Revo Uninstaller.lnk
      [2013/06/19 14:56:47 | 000,002,380 | ---- | M] () -- C:\Users\Usuario\Desktop\Google Chrome.lnk
      [2013/06/17 23:04:55 | 000,018,312 | ---- | M] () -- C:\Users\Usuario\Documents\cc_20130617_230415.reg
      [2013/06/17 14:09:24 | 000,000,032 | ---- | M] () -- C:\Users\Usuario\Desktop\quitar anuncios.css
      [2013/06/16 02:31:48 | 000,001,486 | ---- | M] () -- C:\Users\Usuario\Desktop\.minecraft - Acceso directo.lnk
      [2013/06/03 22:31:15 | 000,009,764 | ---- | M] () -- C:\Users\Usuario\Documents\Número incidente cirugía.htm
      [2013/05/29 00:27:13 | 000,001,071 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
      [1 C:\Program Files\*.tmp files -> C:\Program Files\*.tmp -> ]

      ========== Files Created - No Company Name ==========

      [2013/06/26 14:04:28 | 000,000,175 | ---- | C] () -- C:\Windows\System32\drivers\aswSnx.sys.sum
      [2013/06/26 14:04:27 | 000,000,175 | ---- | C] () -- C:\Windows\System32\drivers\aswSP.sys.sum
      [2013/06/24 00:21:25 | 000,002,441 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk
      [2013/06/24 00:21:25 | 000,001,989 | ---- | C] () -- C:\Users\Public\Desktop\Adobe Reader XI.lnk
      [2013/06/23 17:41:35 | 000,001,226 | ---- | C] () -- C:\Users\Usuario\Desktop\Revo Uninstaller.lnk
      [2013/06/17 23:04:33 | 000,018,312 | ---- | C] () -- C:\Users\Usuario\Documents\cc_20130617_230415.reg
      [2013/06/17 14:09:24 | 000,000,032 | ---- | C] () -- C:\Users\Usuario\Desktop\quitar anuncios.css
      [2013/06/17 08:46:44 | 000,000,380 | ---- | C] () -- C:\Windows\tasks\Cool Lyrics Update.job
      [2013/06/16 02:31:48 | 000,001,486 | ---- | C] () -- C:\Users\Usuario\Desktop\.minecraft - Acceso directo.lnk
      [2013/06/03 22:31:10 | 000,009,764 | ---- | C] () -- C:\Users\Usuario\Documents\Número incidente cirugía.htm
      [2013/05/21 21:52:45 | 000,174,664 | ---- | C] () -- C:\Windows\System32\drivers\aswVmm.sys
      [2013/05/21 21:52:43 | 000,049,376 | ---- | C] () -- C:\Windows\System32\drivers\aswRvrt.sys
      [2005/08/07 07:01:40 | 000,001,415 | -H-- | C] () -- C:\Users\Usuario\AppData\Roaming\Usuariov1.18.0 - Trial versionlog.dat

      ========== ZeroAccess Check ==========

      [2009/07/14 01:42:31 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini

      [HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

      [HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

      [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
      "" = %SystemRoot%\system32\shell32.dll -- [2012/01/04 05:59:38 | 012,872,704 | ---- | M] (Microsoft Corporation)
      "ThreadingModel" = Apartment

      [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
      "" = %systemroot%\system32\wbem\fastprox.dll -- [2010/11/20 18:29:20 | 000,606,208 | ---- | M] (Microsoft Corporation)
      "ThreadingModel" = Free

      [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
      "" = %systemroot%\system32\wbem\wbemess.dll -- [2009/07/13 22:16:17 | 000,342,528 | ---- | M] (Microsoft Corporation)
      "ThreadingModel" = Both

      ========== LOP Check ==========

      [2013/06/26 21:31:36 | 000,000,000 | ---D | M] -- C:\Users\Usuario\AppData\Roaming\.minecraft
      [2013/04/21 18:16:22 | 000,000,000 | ---D | M] -- C:\Users\Usuario\AppData\Roaming\DAEMON Tools Lite
      [2013/06/26 22:24:25 | 000,000,000 | ---D | M] -- C:\Users\Usuario\AppData\Roaming\DMCache
      [2013/04/22 0048 | 000,000,000 | ---D | M] -- C:\Users\Usuario\AppData\Roaming\GlarySoft
      [2013/06/18 13:52:00 | 000,000,000 | ---D | M] -- C:\Users\Usuario\AppData\Roaming\IDM
      [2013/05/09 10:19:29 | 000,000,000 | ---D | M] -- C:\Users\Usuario\AppData\Roaming\Rainmeter
      [2013/03/10 17:59:40 | 000,000,000 | ---D | M] -- C:\Users\Usuario\AppData\Roaming\TuneUp Software
      [2012/12/12 18:41:26 | 000,000,000 | ---D | M] -- C:\Users\Usuario\AppData\Roaming\Unity
      [2013/06/26 16:40:10 | 000,000,000 | ---D | M] -- C:\Users\Usuario\AppData\Roaming\uTorrent
      [2012/09/03 08:16:17 | 000,000,000 | ---D | M] -- C:\Users\Usuario\AppData\Roaming\Windows Live Writer

      ========== Purity Check ==========



      ========== Custom Scans ==========

      < %SYSTEMDRIVE%\*.* >
      [2013/04/21 23:32:06 | 000,023,272 | ---- | M] () -- C:\AdwCleaner[R1].txt
      [2013/04/21 23:34:32 | 000,000,360 | ---- | M] () -- C:\AdwCleaner[S1].txt
      [2013/04/21 23:37:15 | 000,023,630 | ---- | M] () -- C:\AdwCleaner[S2].txt
      [2013/06/19 08:32:23 | 000,000,919 | ---- | M] () -- C:\AdwCleaner[S3].txt
      [2013/06/18 13:41:04 | 000,016,106 | ---- | M] () -- C:\AT-Destroyer.txt
      [2009/06/10 18:42:20 | 000,000,024 | ---- | M] () -- C:\autoexec.bat
      [2009/06/10 18:42:20 | 000,000,010 | ---- | M] () -- C:\config.sys
      [2013/06/26 2307 | 795,762,688 | -HS- | M] () -- C:\hiberfil.sys
      [2012/12/14 00:00:15 | 000,000,000 | RHS- | M] () -- C:\IO.SYS
      [2012/12/14 00:00:15 | 000,000,000 | RHS- | M] () -- C:\MSDOS.SYS
      [2013/06/26 2314 | 1073,741,824 | -HS- | M] () -- C:\pagefile.sys
      [2013/06/17 23:42:24 | 000,131,556 | ---- | M] () -- C:\TDSSKiller.2.8.16.0_17.06.2013_23.41.23_log.txt
      [2013/03/25 08:04:07 | 000,132,596 | ---- | M] () -- C:\TDSSKiller.2.8.16.0_25.03.2013_08.01.36_log.txt
      [2013/05/27 01:30:40 | 000,003,620 | ---- | M] () -- C:\TDSSKiller.2.8.16.0_27.05.2013_01.30.13_log.txt

      < End of report >

    5. #15
      Moderadora
      Avatar de @Daniela
      Registrado
      abr 2011
      Ubicación
      España
      Mensajes
      9.408

      Re: ads not by this site

      Hola fajalecool

      Espera a que analicemos el problema y venga con una respuesta.

      Por Favor, en la medida de lo posible :

      No descargues nada
      No ejecutes otros programas de seguridad (antivirus, antimalware...)
      No realices por tu cuenta otros procedimientos, hasta nuevo aviso.

      Un saludo
      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.

    6. #16
      Moderadora
      Avatar de @Daniela
      Registrado
      abr 2011
      Ubicación
      España
      Mensajes
      9.408

      Re: ads not by this site

      Hola fajalecool

      Realiza los siguientes pasos:

      MUY Importante ~ Realiza una copia de seguridad del registro con >> Erunt.

      Después ejecuta de nuevo OTL.exe

      Copia y Pega el código que está dentro del recuadro de abajo en la sección Análisis Personalizado / Código de Reparación.

      Código:
      :OTL
      IE - HKU\S-1-5-21-2021241018-1846666833-3646265627-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = http://feed.snapdo.com/?publisher=SnapdoGOblidooYB&dpid=SnapdoGOblidooYB&co=TJ&userid=ea262bc6-224f-4f30-9f95-739d24740b3a&searchtype=ds&q={searchTerms}&installDate=17/06/2013
      IE - HKU\S-1-5-21-2021241018-1846666833-3646265627-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://feed.snapdo.com/?publisher=SnapdoGOblidooYB&dpid=SnapdoGOblidooYB&co=TJ&userid=ea262bc6-224f-4f30-9f95-739d24740b3a&searchtype=ds&q={searchTerms}&installDate=17/06/2013
      IE - HKU\S-1-5-21-2021241018-1846666833-3646265627-1000\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://feed.snapdo.com/?publisher=SnapdoGOblidooYB&dpid=SnapdoGOblidooYB&co=TJ&userid=ea262bc6-224f-4f30-9f95-739d24740b3a&searchtype=ds&q={searchTerms}&installDate=17/06/2013
      IE - HKU\S-1-5-21-2021241018-1846666833-3646265627-1000\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://feed.snapdo.com/?publisher=SnapdoGOblidooYB&dpid=SnapdoGOblidooYB&co=TJ&userid=ea262bc6-224f-4f30-9f95-739d24740b3a&searchtype=ds&q={searchTerms}&installDate=17/06/2013
      FF - prefs.js..browser.search.useDBForOrder: "false"
      FF - user.js - File not found
      FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.25.2: C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
      FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.25.2: C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
      FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
      CHR - plugin: Java(TM) Platform SE 7 U21 (Enabled) = C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll
      CHR - plugin: Java Deployment Toolkit 7.0.210.11 (Enabled) = C:\Windows\system32\npDeployJava1.dll
      O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Archivos de programa\Java\jre7\bin\ssv.dll (Oracle Corporation)
      O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Archivos de programa\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
      O2 - BHO: (Cool Lyrics) - {7C5D7930-FACC-4A25-AE26-51DDA83F3D75} - C:\Archivos de programa\CoolLyrics\coolrcs.dll (CoolZone)
      O3 - HKU\S-1-5-21-2021241018-1846666833-3646265627-1000\..\Toolbar\WebBrowser: (no name) - {DB131C55-60C8-4ADC-84DC-9E76AB06E2DC} - No CLSID value found.
      O13 - gopher Prefix: missing
      O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
      O33 - MountPoints2\{614e13f9-5cf2-11e2-8d48-2c768adf207c}\Shell - "" = AutoRun
      O33 - MountPoints2\{614e13f9-5cf2-11e2-8d48-2c768adf207c}\Shell\AutoRun\command - "" = D:\sources\sperr32.exe -- [2011/04/12 07:50:50 | 000,123,472 | R--- | M] (Microsoft Corporation)
      MsConfig - StartUpReg: SunJavaUpdateSched - hkey= - key= - C:\Program Files\Common Files\Java\Java Update\jusched.exe (Oracle Corporation)
      [1 C:\Program Files\*.tmp files -> C:\Program Files\*.tmp -> ]
      
      :Files
      ipconfig /flushdns /c
      ipconfig /renew /c
      
      :Commands
      [PURITY]
      [EMPTYFLASH]
      [EMPTYTEMP]
      [RESETHOSTS]
      Presiona el Botón Reparar para lanzar la eliminación. Después presionas en OK.

      OTL va a Reiniciar el ordenador para completar la eliminación.

      Guardas el nuevo reporte generado, y lo copias y pegas en tu próxima respuesta.

      Si el proceso de OTL(Reparar) te da problemas en modo normal de windows, lo pasas en modo seguro, pero primero en modo normal.

      Después de pasar OTL, realiza lo siguiente:

      Descarga e instala Java Update

      Y cuando nos contestes dinos que versión de Java se ha quedado instalada >> ¿Cómo puedo comprobar si Java funciona en mi equipo?

      Compruébalo en todos los navegadores.

      Pega el log de OTL y comenta como sigue el problema.

      Un saludo
      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.

    7. #17
      Usuario Avatar de fajalecool
      Registrado
      mar 2013
      Ubicación
      Argentina
      Mensajes
      23

      Re: ads not by this site

      Hola Daniela, el Java que se me instaló es el Java 7 Update 25, que es el que ya tenía anteriormente (lo reinstalé) después te comento si funciona en todos los navegadores.
      Acá te paso el informe de OTL

      All processes killed
      ========== OTL ==========
      HKU\S-1-5-21-2021241018-1846666833-3646265627-1000\SOFTWARE\Microsoft\Internet Explorer\Main\\Search Bar| /E : value set successfully!
      HKU\S-1-5-21-2021241018-1846666833-3646265627-1000\SOFTWARE\Microsoft\Internet Explorer\Main\\Search Page| /E : value set successfully!
      HKU\S-1-5-21-2021241018-1846666833-3646265627-1000\SOFTWARE\Microsoft\Internet Explorer\Search\\Default_Search_URL| /E : value set successfully!
      HKU\S-1-5-21-2021241018-1846666833-3646265627-1000\SOFTWARE\Microsoft\Internet Explorer\Search\\SearchAssistant| /E : value set successfully!
      Prefs.js: "false" removed from browser.search.useDBForOrder
      Registry key HKEY_LOCAL_MACHINE\Software\MozillaPlugins\@java.com/DTPlugin,version=10.25.2\ deleted successfully.
      C:\Windows\system32\npDeployJava1.dll moved successfully.
      Registry key HKEY_LOCAL_MACHINE\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.25.2\ deleted successfully.
      C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll moved successfully.
      Registry key HKEY_LOCAL_MACHINE\Software\MozillaPlugins\@microsoft.com/GENUINE\ deleted successfully.
      File C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll not found.
      File C:\Windows\system32\npDeployJava1.dll not found.
      Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}\ deleted successfully.
      Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}\ deleted successfully.
      C:\Archivos de programa\Java\jre7\bin\ssv.dll moved successfully.
      Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}\ deleted successfully.
      Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{DBC80044-A445-435b-BC74-9C25C1C588A9}\ deleted successfully.
      C:\Archivos de programa\Java\jre7\bin\jp2ssv.dll moved successfully.
      Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7C5D7930-FACC-4A25-AE26-51DDA83F3D75}\ not found.
      Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{7C5D7930-FACC-4A25-AE26-51DDA83F3D75}\ not found.
      File C:\Archivos de programa\CoolLyrics\coolrcs.dll not found.
      Registry value HKEY_USERS\S-1-5-21-2021241018-1846666833-3646265627-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{DB131C55-60C8-4ADC-84DC-9E76AB06E2DC} deleted successfully.
      Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{DB131C55-60C8-4ADC-84DC-9E76AB06E2DC}\ not found.
      HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\URL\Prefixes\\gopher|:gopher:// /E : value set successfully!
      Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad\\WebCheck deleted successfully.
      Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{E6FB5E20-DE35-11CF-9C87-00AA005127ED}\ not found.
      Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{614e13f9-5cf2-11e2-8d48-2c768adf207c}\ deleted successfully.
      Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{614e13f9-5cf2-11e2-8d48-2c768adf207c}\ not found.
      Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{614e13f9-5cf2-11e2-8d48-2c768adf207c}\ not found.
      Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{614e13f9-5cf2-11e2-8d48-2c768adf207c}\ not found.
      File move failed. D:\sources\sperr32.exe scheduled to be moved on reboot.
      Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\StartUpReg\SunJavaUpdateSched\ deleted successfully.
      C:\Program Files\GUMD0DA.tmp\GoogleCrashHandler.exe deleted successfully.
      C:\Program Files\GUMD0DA.tmp\GoogleCrashHandler64.exe deleted successfully.
      C:\Program Files\GUMD0DA.tmp\GoogleUpdate.exe deleted successfully.
      C:\Program Files\GUMD0DA.tmp\GoogleUpdateBroker.exe deleted successfully.
      C:\Program Files\GUMD0DA.tmp\GoogleUpdateHelper.msi deleted successfully.
      C:\Program Files\GUMD0DA.tmp\GoogleUpdateOnDemand.exe deleted successfully.
      C:\Program Files\GUMD0DA.tmp\GoogleUpdateSetup.exe deleted successfully.
      C:\Program Files\GUMD0DA.tmp\goopdate.dll deleted successfully.
      C:\Program Files\GUMD0DA.tmp\goopdateres_am.dll deleted successfully.
      C:\Program Files\GUMD0DA.tmp\goopdateres_ar.dll deleted successfully.
      C:\Program Files\GUMD0DA.tmp\goopdateres_bg.dll deleted successfully.
      C:\Program Files\GUMD0DA.tmp\goopdateres_bn.dll deleted successfully.
      C:\Program Files\GUMD0DA.tmp\goopdateres_ca.dll deleted successfully.
      C:\Program Files\GUMD0DA.tmp\goopdateres_cs.dll deleted successfully.
      C:\Program Files\GUMD0DA.tmp\goopdateres_da.dll deleted successfully.
      C:\Program Files\GUMD0DA.tmp\goopdateres_de.dll deleted successfully.
      C:\Program Files\GUMD0DA.tmp\goopdateres_el.dll deleted successfully.
      C:\Program Files\GUMD0DA.tmp\goopdateres_en-GB.dll deleted successfully.
      C:\Program Files\GUMD0DA.tmp\goopdateres_en.dll deleted successfully.
      C:\Program Files\GUMD0DA.tmp\goopdateres_es-419.dll deleted successfully.
      C:\Program Files\GUMD0DA.tmp\goopdateres_es.dll deleted successfully.
      C:\Program Files\GUMD0DA.tmp\goopdateres_et.dll deleted successfully.
      C:\Program Files\GUMD0DA.tmp\goopdateres_fa.dll deleted successfully.
      C:\Program Files\GUMD0DA.tmp\goopdateres_fi.dll deleted successfully.
      C:\Program Files\GUMD0DA.tmp\goopdateres_fil.dll deleted successfully.
      C:\Program Files\GUMD0DA.tmp\goopdateres_fr.dll deleted successfully.
      C:\Program Files\GUMD0DA.tmp\goopdateres_gu.dll deleted successfully.
      C:\Program Files\GUMD0DA.tmp\goopdateres_hi.dll deleted successfully.
      C:\Program Files\GUMD0DA.tmp\goopdateres_hr.dll deleted successfully.
      C:\Program Files\GUMD0DA.tmp\goopdateres_hu.dll deleted successfully.
      C:\Program Files\GUMD0DA.tmp\goopdateres_id.dll deleted successfully.
      C:\Program Files\GUMD0DA.tmp\goopdateres_is.dll deleted successfully.
      C:\Program Files\GUMD0DA.tmp\goopdateres_it.dll deleted successfully.
      C:\Program Files\GUMD0DA.tmp\goopdateres_iw.dll deleted successfully.
      C:\Program Files\GUMD0DA.tmp\goopdateres_ja.dll deleted successfully.
      C:\Program Files\GUMD0DA.tmp\goopdateres_kn.dll deleted successfully.
      C:\Program Files\GUMD0DA.tmp\goopdateres_ko.dll deleted successfully.
      C:\Program Files\GUMD0DA.tmp\goopdateres_lt.dll deleted successfully.
      C:\Program Files\GUMD0DA.tmp\goopdateres_lv.dll deleted successfully.
      C:\Program Files\GUMD0DA.tmp\goopdateres_ml.dll deleted successfully.
      C:\Program Files\GUMD0DA.tmp\goopdateres_mr.dll deleted successfully.
      C:\Program Files\GUMD0DA.tmp\goopdateres_ms.dll deleted successfully.
      C:\Program Files\GUMD0DA.tmp\goopdateres_nl.dll deleted successfully.
      C:\Program Files\GUMD0DA.tmp\goopdateres_no.dll deleted successfully.
      C:\Program Files\GUMD0DA.tmp\goopdateres_pl.dll deleted successfully.
      C:\Program Files\GUMD0DA.tmp\goopdateres_pt-BR.dll deleted successfully.
      C:\Program Files\GUMD0DA.tmp\goopdateres_pt-PT.dll deleted successfully.
      C:\Program Files\GUMD0DA.tmp\goopdateres_ro.dll deleted successfully.
      C:\Program Files\GUMD0DA.tmp\goopdateres_ru.dll deleted successfully.
      C:\Program Files\GUMD0DA.tmp\goopdateres_sk.dll deleted successfully.
      C:\Program Files\GUMD0DA.tmp\goopdateres_sl.dll deleted successfully.
      C:\Program Files\GUMD0DA.tmp\goopdateres_sr.dll deleted successfully.
      C:\Program Files\GUMD0DA.tmp\goopdateres_sv.dll deleted successfully.
      C:\Program Files\GUMD0DA.tmp\goopdateres_sw.dll deleted successfully.
      C:\Program Files\GUMD0DA.tmp\goopdateres_ta.dll deleted successfully.
      C:\Program Files\GUMD0DA.tmp\goopdateres_te.dll deleted successfully.
      C:\Program Files\GUMD0DA.tmp\goopdateres_th.dll deleted successfully.
      C:\Program Files\GUMD0DA.tmp\goopdateres_tr.dll deleted successfully.
      C:\Program Files\GUMD0DA.tmp\goopdateres_uk.dll deleted successfully.
      C:\Program Files\GUMD0DA.tmp\goopdateres_ur.dll deleted successfully.
      C:\Program Files\GUMD0DA.tmp\goopdateres_vi.dll deleted successfully.
      C:\Program Files\GUMD0DA.tmp\goopdateres_zh-CN.dll deleted successfully.
      C:\Program Files\GUMD0DA.tmp\goopdateres_zh-TW.dll deleted successfully.
      C:\Program Files\GUMD0DA.tmp\npGoogleUpdate3.dll deleted successfully.
      C:\Program Files\GUMD0DA.tmp\psmachine.dll deleted successfully.
      C:\Program Files\GUMD0DA.tmp\psuser.dll deleted successfully.
      C:\Program Files\GUMD0DA.tmp folder deleted successfully.
      ========== FILES ==========
      < ipconfig /flushdns /c >
      Configuraci¢n IP de Windows
      Se vaci¢ correctamente la cach‚ de resoluci¢n de DNS.
      C:\Users\Usuario\Downloads\Programs\cmd.bat deleted successfully.
      C:\Users\Usuario\Downloads\Programs\cmd.txt deleted successfully.
      < ipconfig /renew /c >
      Configuraci¢n IP de Windows
      No se puede realizar ninguna operaci¢n en Conexi¢n de red inal*mbrica 2 mientras los medios
      est‚n desconectados.
      No se puede realizar ninguna operaci¢n en Conexi¢n de *rea local mientras los medios
      est‚n desconectados.
      No se puede realizar ninguna operaci¢n en Conexi¢n de red Bluetooth mientras los medios
      est‚n desconectados.
      Adaptador de LAN inal*mbrica Conexi¢n de red inal*mbrica 2:
      Estado de los medios. . . . . . . . . . . : medios desconectados
      Sufijo DNS espec¡fico para la conexi¢n. . :
      Adaptador de Ethernet Conexi¢n de *rea local:
      Estado de los medios. . . . . . . . . . . : medios desconectados
      Sufijo DNS espec¡fico para la conexi¢n. . :
      Adaptador de Ethernet Conexi¢n de red Bluetooth:
      Estado de los medios. . . . . . . . . . . : medios desconectados
      Sufijo DNS espec¡fico para la conexi¢n. . :
      Adaptador de LAN inal*mbrica Conexi¢n de red inal*mbrica:
      Sufijo DNS espec¡fico para la conexi¢n. . :
      V¡nculo: direcci¢n IPv6 local. . . : fe80::dc81:c1ad:5901:3c8%11
      Direcci¢n IPv4. . . . . . . . . . . . . . : 192.168.1.102
      M*scara de subred . . . . . . . . . . . . : 255.255.255.0
      Puerta de enlace predeterminada . . . . . : 192.168.1.1
      Adaptador de t£nel isatap.{29A841ED-93F7-4771-9FB2-F1820DFD52B8}:
      Estado de los medios. . . . . . . . . . . : medios desconectados
      Sufijo DNS espec¡fico para la conexi¢n. . :
      Adaptador de t£nel Teredo Tunneling Pseudo-Interface:
      Sufijo DNS espec¡fico para la conexi¢n. . :
      Direcci¢n IPv6 . . . . . . . . . . : 2001:0:9d38:6ab8:3c27:96f7:37a4:cd91
      V¡nculo: direcci¢n IPv6 local. . . : fe80::3c27:96f7:37a4:cd91%14
      Puerta de enlace predeterminada . . . . . : ::
      Adaptador de t£nel 6TO4 Adapter:
      Estado de los medios. . . . . . . . . . . : medios desconectados
      Sufijo DNS espec¡fico para la conexi¢n. . :
      C:\Users\Usuario\Downloads\Programs\cmd.bat deleted successfully.
      C:\Users\Usuario\Downloads\Programs\cmd.txt deleted successfully.
      ========== COMMANDS ==========

      [EMPTYFLASH]

      User: All Users

      User: Default

      User: Default User

      User: Public

      User: Usuario
      ->Flash cache emptied: 1978 bytes

      Total Flash Files Cleaned = 0,00 mb


      [EMPTYTEMP]

      User: All Users

      User: Default
      ->Temp folder emptied: 0 bytes
      ->Temporary Internet Files folder emptied: 0 bytes

      User: Default User
      ->Temp folder emptied: 0 bytes
      ->Temporary Internet Files folder emptied: 0 bytes

      User: Public

      User: Usuario
      ->Temp folder emptied: 177642433 bytes
      ->Temporary Internet Files folder emptied: 95434842 bytes
      ->Java cache emptied: 66185 bytes
      ->FireFox cache emptied: 94190270 bytes
      ->Google Chrome cache emptied: 398291101 bytes
      ->Flash cache emptied: 0 bytes

      %systemdrive% .tmp files removed: 0 bytes
      %systemroot% .tmp files removed: 0 bytes
      %systemroot%\System32 .tmp files removed: 0 bytes
      %systemroot%\System32\drivers .tmp files removed: 0 bytes
      Windows Temp folder emptied: 798676 bytes
      RecycleBin emptied: 14632328773 bytes

      Total Files Cleaned = 14.685,00 mb

      C:\Windows\System32\drivers\etc\Hosts moved successfully.
      HOSTS file reset successfully
      Error: Unable to interpret <Presiona el Botón Reparar para lanzar la eliminación.> in the current context!

      OTL by OldTimer - Version 3.2.69.0 log created on 06292013_024826

      Files\Folders moved on Reboot...
      File\Folder D:\sources\sperr32.exe not found!
      C:\Windows\temp\_avast_\Webshlock.txt moved successfully.

      PendingFileRenameOperations files...

      Registry entries deleted on Reboot...

      Saludos.

    8. #18
      Usuario Avatar de fajalecool
      Registrado
      mar 2013
      Ubicación
      Argentina
      Mensajes
      23

      Re: ads not by this site

      Hola Daniela, te comento que Java funciona bien en todos los navegadores, hice la prueba en todos, pero el problema persiste.

    9. #19
      Moderadora
      Avatar de @Daniela
      Registrado
      abr 2011
      Ubicación
      España
      Mensajes
      9.408

      Re: ads not by this site

      Hola fajalecool

      Vas a volver a ejecutar OTL como te indiqué aquí pero que no se te olvide realizarlo desde el escritorio y me traes el nuevo reporte.

      Un saludo
      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.

    10. #20
      Usuario Avatar de fajalecool
      Registrado
      mar 2013
      Ubicación
      Argentina
      Mensajes
      23

      Re: ads not by this site

      Hola Daniela, acá está el informe como me lo pediste.

      OTL logfile created on: 01/07/2013 09:41:06 a.m. - Run 2
      OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Usuario\Downloads\Programs
      Professional Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
      Internet Explorer (Version = 9.0.8112.16421)
      Locale: 00002c0a | Country: Argentina | Language: ESS | Date Format: dd/MM/yyyy

      1011,87 Mb Total Physical Memory | 114,29 Mb Available Physical Memory | 11,29% Memory free
      1,99 Gb Paging File | 0,74 Gb Available in Paging File | 37,21% Paging File free
      Paging file location(s): ?:\pagefile.sys [binary data]

      %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
      Drive C: | 232,79 Gb Total Space | 160,81 Gb Free Space | 69,08% Space Free | Partition Type: NTFS
      Drive D: | 3,03 Gb Total Space | 0,00 Gb Free Space | 0,00% Space Free | Partition Type: UDF

      Computer Name: USUARIO-PC | User Name: Usuario | Logged in as Administrator.
      Boot Mode: Normal | Scan Mode: All users
      Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

      ========== Processes (SafeList) ==========

      PRC - C:\Users\Usuario\Downloads\Programs\OTL.exe (OldTimer Tools)
      PRC - C:\Archivos de programa\Common Files\Adobe\ARM\1.0\armsvc.exe (Adobe Systems Incorporated)
      PRC - C:\Archivos de programa\Alwil Software\Avast5\AvastUI.exe (AVAST Software)
      PRC - C:\Archivos de programa\Alwil Software\Avast5\AvastSvc.exe (AVAST Software)
      PRC - C:\Archivos de programa\Internet Download Manager\IDMan.exe (Tonec Inc.)
      PRC - C:\Archivos de programa\Internet Download Manager\IEMonitor.exe (Tonec Inc.)
      PRC - C:\Archivos de programa\Kodak\KODAK Share Button App\Listener.exe (Eastman Kodak Company)
      PRC - C:\Archivos de programa\Winstep\Nexus.exe (Winstep Software Technologies)
      PRC - C:\Archivos de programa\Ares\Ares.exe (Ares Development Group)
      PRC - C:\Archivos de programa\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe (Hewlett-Packard Development Company, L.P.)
      PRC - C:\Archivos de programa\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe (Hewlett-Packard Development Company, L.P.)
      PRC - C:\Archivos de programa\Common Files\microsoft shared\Windows Live\WLIDSVCM.EXE (Microsoft Corp.)
      PRC - C:\Archivos de programa\Common Files\microsoft shared\Windows Live\WLIDSVC.EXE (Microsoft Corp.)
      PRC - C:\Archivos de programa\Winstep\WsxService.exe (Winstep Software Technologies)
      PRC - C:\Archivos de programa\Windows Media Player\wmpnetwk.exe (Microsoft Corporation)
      PRC - C:\Windows\explorer.exe (Microsoft Corporation)
      PRC - C:\Windows\System32\taskhost.exe (Microsoft Corporation)
      PRC - C:\Archivos de programa\Microsoft Office\Office14\ONENOTEM.EXE (Microsoft Corporation)
      PRC - C:\Archivos de programa\Microsoft Office\Office14\MSOSYNC.EXE (Microsoft Corporation)


      ========== Modules (No Company Name) ==========

      MOD - C:\Users\Usuario\AppData\Local\Google\Chrome\Application\27.0.1453.116\ppGoogleNaClPluginChrome.dll ()
      MOD - C:\Users\Usuario\AppData\Local\Google\Chrome\Application\27.0.1453.116\PepperFlash\pepflashplayer.dll ()
      MOD - C:\Users\Usuario\AppData\Local\Google\Chrome\Application\27.0.1453.116\pdf.dll ()
      MOD - C:\Users\Usuario\AppData\Local\Google\Chrome\Application\27.0.1453.116\libglesv2.dll ()
      MOD - C:\Users\Usuario\AppData\Local\Google\Chrome\Application\27.0.1453.116\libegl.dll ()
      MOD - C:\Users\Usuario\AppData\Local\Google\Chrome\Application\27.0.1453.116\ffmpegsumo.dll ()
      MOD - C:\Archivos de programa\Winstep\wodTelnetDLX.dll ()
      MOD - C:\Archivos de programa\Common Files\microsoft shared\OFFICE14\Cultures\OFFICE.ODF ()


      ========== Services (SafeList) ==========

      SRV - (MozillaMaintenance) -- C:\Archivos de programa\Mozilla Maintenance Service\maintenanceservice.exe (Mozilla Foundation)
      SRV - (AdobeFlashPlayerUpdateSvc) -- C:\Windows\System32\Macromed\Flash\FlashPlayerUpdateService.exe (Adobe Systems Incorporated)
      SRV - (AdobeARMservice) -- C:\Archivos de programa\Common Files\Adobe\ARM\1.0\armsvc.exe (Adobe Systems Incorporated)
      SRV - (avast! Antivirus) -- C:\Archivos de programa\Alwil Software\Avast5\AvastSvc.exe (AVAST Software)
      SRV - (WatAdminSvc) -- C:\Windows\System32\Wat\WatAdminSvc.exe (Microsoft Corporation)
      SRV - (SkypeUpdate) -- C:\Archivos de programa\Skype\Updater\Updater.exe (Skype Technologies)
      SRV - (HPWMISVC) -- C:\Archivos de programa\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe (Hewlett-Packard Development Company, L.P.)
      SRV - (wlidsvc) -- C:\Archivos de programa\Common Files\microsoft shared\Windows Live\WLIDSVC.EXE (Microsoft Corp.)
      SRV - (Winstep Xtreme Service) -- C:\Program Files\Winstep\WsxService.exe (Winstep Software Technologies)
      SRV - (WMPNetworkSvc) -- C:\Archivos de programa\Windows Media Player\wmpnetwk.exe (Microsoft Corporation)
      SRV - (Microsoft SharePoint Workspace Audit Service) -- C:\Program Files\Microsoft Office\Office14\GROOVE.EXE (Microsoft Corporation)
      SRV - (ACDaemon) -- C:\Archivos de programa\Common Files\ArcSoft\Connection Service\Bin\ACService.exe (ArcSoft Inc.)
      SRV - (osppsvc) -- C:\Archivos de programa\Common Files\microsoft shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE (Microsoft Corporation)
      SRV - (ose) -- C:\Archivos de programa\Common Files\microsoft shared\Source Engine\OSE.EXE (Microsoft Corporation)
      SRV - (StorSvc) -- C:\Windows\System32\StorSvc.dll (Microsoft Corporation)
      SRV - (SensrSvc) -- C:\Windows\System32\sensrsvc.dll (Microsoft Corporation)
      SRV - (PeerDistSvc) -- C:\Windows\System32\PeerDistSvc.dll (Microsoft Corporation)
      SRV - (WinDefend) -- C:\Archivos de programa\Windows Defender\MpSvc.dll (Microsoft Corporation)


      ========== Driver Services (SafeList) ==========

      DRV - (aswSP) -- C:\Windows\System32\drivers\aswSP.sys (AVAST Software)
      DRV - (aswVmm) -- C:\Windows\System32\drivers\aswVmm.sys ()
      DRV - (aswSnx) -- C:\Windows\System32\drivers\aswSnx.sys (AVAST Software)
      DRV - (aswRdr) -- C:\Windows\System32\drivers\aswRdr2.sys (AVAST Software)
      DRV - (aswTdi) -- C:\Windows\System32\drivers\aswTdi.sys (AVAST Software)
      DRV - (aswRvrt) -- C:\Windows\System32\drivers\aswRvrt.sys ()
      DRV - (aswMonFlt) -- C:\Windows\System32\drivers\aswMonFlt.sys (AVAST Software)
      DRV - (aswFsBlk) -- C:\Windows\System32\drivers\aswFsBlk.sys (AVAST Software)
      DRV - (avgtp) -- C:\Windows\System32\drivers\avgtpx86.sys (AVG Technologies)
      DRV - (dtsoftbus01) -- C:\Windows\System32\drivers\dtsoftbus01.sys (DT Soft Ltd)
      DRV - (IDMWFP) -- C:\Windows\System32\drivers\idmwfp.sys (Tonec Inc.)
      DRV - (TsUsbFlt) -- C:\Windows\System32\drivers\TsUsbFlt.sys (Microsoft Corporation)
      DRV - (vmbus) -- C:\Windows\System32\drivers\vmbus.sys (Microsoft Corporation)
      DRV - (dmvsc) -- C:\Windows\System32\drivers\dmvsc.sys (Microsoft Corporation)
      DRV - (storflt) -- C:\Windows\System32\drivers\vmstorfl.sys (Microsoft Corporation)
      DRV - (WinUsb) -- C:\Windows\System32\drivers\winusb.sys (Microsoft Corporation)
      DRV - (storvsc) -- C:\Windows\System32\drivers\storvsc.sys (Microsoft Corporation)
      DRV - (TsUsbGD) -- C:\Windows\System32\drivers\TsUsbGD.sys (Microsoft Corporation)
      DRV - (VMBusHID) -- C:\Windows\System32\drivers\VMBusHID.sys (Microsoft Corporation)
      DRV - (s3cap) -- C:\Windows\System32\drivers\vms3cap.sys (Microsoft Corporation)
      DRV - (vwifimp) -- C:\Windows\System32\drivers\vwifimp.sys (Microsoft Corporation)
      DRV - (vmm) -- C:\Windows\System32\drivers\VMM.sys (Microsoft Corporation)
      DRV - (VPCNetS2) -- C:\Windows\System32\drivers\VMNetSrv.sys (Microsoft Corporation)
      DRV - (sfvfs02) -- C:\Windows\System32\drivers\sfvfs02.sys (Protection Technology)
      DRV - (sfsync02) -- C:\Windows\System32\drivers\sfsync02.sys (Protection Technology)
      DRV - (sfdrv01) -- C:\Windows\System32\drivers\sfdrv01.sys (Protection Technology)
      DRV - (sfhlp02) -- C:\Windows\System32\drivers\sfhlp02.sys (Protection Technology)


      ========== Standard Registry (SafeList) ==========


      ========== Internet Explorer ==========

      IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = Google
      IE - HKLM\..\SearchScopes,DefaultScope =


      IE - HKU\.DEFAULT\..\SearchScopes,DefaultScope =
      IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

      IE - HKU\S-1-5-18\..\SearchScopes,DefaultScope =
      IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

      IE - HKU\S-1-5-19\..\SearchScopes,DefaultScope =

      IE - HKU\S-1-5-20\..\SearchScopes,DefaultScope =

      IE - HKU\S-1-5-21-2021241018-1846666833-3646265627-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar =
      IE - HKU\S-1-5-21-2021241018-1846666833-3646265627-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page =
      IE - HKU\S-1-5-21-2021241018-1846666833-3646265627-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = Google
      IE - HKU\S-1-5-21-2021241018-1846666833-3646265627-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = MSN Argentina: Skype, Outlook, Noticias, Entretenimiento, Videos y más
      IE - HKU\S-1-5-21-2021241018-1846666833-3646265627-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = es-AR
      IE - HKU\S-1-5-21-2021241018-1846666833-3646265627-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 96 95 DF F8 07 3E CE 01 [binary data]
      IE - HKU\S-1-5-21-2021241018-1846666833-3646265627-1000\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL =
      IE - HKU\S-1-5-21-2021241018-1846666833-3646265627-1000\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant =
      IE - HKU\S-1-5-21-2021241018-1846666833-3646265627-1000\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
      IE - HKU\S-1-5-21-2021241018-1846666833-3646265627-1000\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC
      IE - HKU\S-1-5-21-2021241018-1846666833-3646265627-1000\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
      IE - HKU\S-1-5-21-2021241018-1846666833-3646265627-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

      ========== FireFox ==========

      FF - prefs.js..browser.search.defaultenginename: "(Google)"
      FF - prefs.js..browser.search.defaulturl: "www.Google.com"
      FF - prefs.js..browser.search.order.1: "(Google)"
      FF - prefs.js..browser.search.selectedEngine: "Google"
      FF - prefs.js..browser.search.useDBForOrder: ""
      FF - prefs.js..browser.startup.homepage: "http://google.com"
      FF - prefs.js..extensions.enabledAddons: wrc%40avast.com:8.0.1489
      FF - prefs.js..extensions.enabledAddons: Lyrics%40LyricsContainer.co:1.116
      FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:21.0
      FF - prefs.js..keyword.URL: "https://www.google.com/search?q="


      FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF32_11_7_700_224.dll ()
      FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.25.2: C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
      FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.25.2: C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
      FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\4.0.50401.0\npctrl.dll ( Microsoft Corporation)
      FF - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation)
      FF - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\PROGRA~1\MICROS~2\Office14\NPSPWRAP.DLL (Microsoft Corporation)
      FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.145\npGoogleUpdate3.dll (Google Inc.)
      FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.145\npGoogleUpdate3.dll (Google Inc.)
      FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.0.1: C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
      FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
      FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Users\Usuario\AppData\Local\Google\Update\1.3.21.145\npGoogleUpdate3.dll (Google Inc.)
      FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Users\Usuario\AppData\Local\Google\Update\1.3.21.145\npGoogleUpdate3.dll (Google Inc.)
      FF - HKCU\Software\MozillaPlugins\@unity3d.com/UnityPlayer,version=1.0: C:\Users\Usuario\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)

      FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\[email protected]: C:\Program Files\Alwil Software\Avast5\WebRep\FF [2013/05/21 21:52:39 | 000,000,000 | ---D | M]
      FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 21.0\extensions\\Components: C:\Program Files\Mozilla Firefox\components
      FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 21.0\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2013/06/24 00:59:37 | 000,000,000 | ---D | M]
      FF - HKEY_LOCAL_MACHINE\software\mozilla\Thunderbird\Extensions\\[email protected]: C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird
      FF - HKEY_CURRENT_USER\software\mozilla\Firefox\Extensions\\[email protected]: C:\Users\Usuario\AppData\Roaming\IDM\idmmzcc5 [2013/04/15 08:55:47 | 000,000,000 | ---D | M]
      FF - HKEY_CURRENT_USER\software\mozilla\Firefox\Extensions\\[email protected]: C:\Program Files\LyricsContainer\116.xpi [2013/06/28 08:14:26 | 000,005,593 | ---- | M] ()
      FF - HKEY_CURRENT_USER\software\mozilla\SeaMonkey\Extensions\\[email protected]: C:\Users\Usuario\AppData\Roaming\IDM\idmmzcc5 [2013/04/15 08:55:47 | 000,000,000 | ---D | M]

      [2012/05/18 18:15:23 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Usuario\AppData\Roaming\mozilla\Extensions
      [2013/06/17 10:05:04 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Usuario\AppData\Roaming\mozilla\Firefox\Profiles\bf7qdx80.default\extensions
      [2013/06/24 00:59:33 | 000,000,000 | ---D | M] (No name found) -- C:\Archivos de programa\Mozilla Firefox\extensions
      [2013/06/24 01:00:23 | 000,000,000 | ---D | M] (No name found) -- C:\Archivos de programa\Mozilla Firefox\browser\extensions
      [2013/06/24 01:00:23 | 000,000,000 | ---D | M] (Default) -- C:\Archivos de programa\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
      [2013/05/21 21:52:39 | 000,000,000 | ---D | M] (avast! Online Security) -- C:\PROGRAM FILES\ALWIL SOFTWARE\AVAST5\WEBREP\FF
      [2013/06/28 08:14:26 | 000,005,593 | ---- | M] () (No name found) -- C:\PROGRAM FILES\LYRICSCONTAINER\116.XPI
      [2011/12/09 14:23:32 | 000,012,800 | ---- | M] (Nullsoft, Inc.) -- C:\Program Files\mozilla firefox\plugins\npwachk.dll

      ========== Chrome ==========

      CHR - default_search_provider: Google (Enabled)
      CHR - default_search_provider: search_url = {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}{google:searchClient}{google:sourceId}{google:instantExtendedEnabledParameter}ie={inputEncoding}
      CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client=chrome&q={searchTerms}&{google:cursorPosition}sugkey={google:suggestAPIKeyParameter}
      CHR - homepage: Google
      CHR - plugin: Shockwave Flash (Enabled) = C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\PepperFlash\11.7.700.225\pepflashplayer.dll
      CHR - plugin: Chrome Remote Desktop Viewer (Enabled) = internal-remoting-viewer
      CHR - plugin: Native Client (Enabled) = C:\Users\Usuario\AppData\Local\Google\Chrome\Application\27.0.1453.116\ppGoogleNaClPluginChrome.dll
      CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Users\Usuario\AppData\Local\Google\Chrome\Application\27.0.1453.116\pdf.dll
      CHR - plugin: Adobe Acrobat (Enabled) = C:\Program Files\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll
      CHR - plugin: Microsoft\u00AE Windows Media Player Firefox Plugin (Enabled) = C:\Program Files\Mozilla Firefox\plugins\np-mswmp.dll
      CHR - plugin: Winamp Application Detector (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npwachk.dll
      CHR - plugin: Microsoft Office 2010 (Enabled) = C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL
      CHR - plugin: Microsoft Office 2010 (Enabled) = C:\PROGRA~1\MICROS~2\Office14\NPSPWRAP.DLL
      CHR - plugin: Google Update (Enabled) = C:\Program Files\Google\Update\1.3.21.145\npGoogleUpdate3.dll
      CHR - plugin: Java(TM) Platform SE 7 U21 (Enabled) = C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll
      CHR - plugin: VLC Web Plugin (Enabled) = C:\Program Files\VideoLAN\VLC\npvlc.dll
      CHR - plugin: Unity Player (Enabled) = C:\Users\Usuario\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll
      CHR - plugin: Shockwave Flash (Enabled) = C:\Windows\system32\Macromed\Flash\NPSWF32_11_7_700_224.dll
      CHR - plugin: Java Deployment Toolkit 7.0.210.11 (Enabled) = C:\Windows\system32\npDeployJava1.dll
      CHR - plugin: Silverlight Plug-In (Enabled) = c:\Program Files\Microsoft Silverlight\4.0.50401.0\npctrl.dll
      CHR - Extension: LyricsContainer = C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\abfmigjiaapipflmopkaaooigcjjdojh\1.116_0\
      CHR - Extension: IDM Integration = C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\jmolcgpienlcieaajfkkdamlngancncm\6.15.5_0\

      O1 HOSTS File: ([2013/06/29 02:50:30 | 000,000,098 | ---- | M]) - C:\Windows\System32\drivers\etc\Hosts
      O1 - Hosts: 127.0.0.1 localhost
      O1 - Hosts: ::1 localhost
      O2 - BHO: (IDM integration (IDMIEHlprObj Class)) - {0055C089-8582-441B-A0BF-17B458C2A3A8} - C:\Archivos de programa\Internet Download Manager\IDMIECC.dll (Internet Download Manager, Tonec Inc.)
      O2 - BHO: (LyricsContainer) - {463B0ED4-8AFA-404B-90E7-4063A0708050} - C:\Archivos de programa\LyricsContainer\116.dll (RYD Software)
      O2 - BHO: (Groove GFS Browser Helper) - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Archivos de programa\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
      O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Archivos de programa\Java\jre7\bin\ssv.dll (Oracle Corporation)
      O2 - BHO: (avast! Online Security) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Archivos de programa\Alwil Software\Avast5\aswWebRepIE.dll (AVAST Software)
      O2 - BHO: (Windows Live ID Sign-in Helper) - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Archivos de programa\Common Files\microsoft shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
      O2 - BHO: (Office Document Cache Handler) - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Archivos de programa\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
      O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Archivos de programa\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
      O3 - HKLM\..\Toolbar: (avast! Online Security) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Archivos de programa\Alwil Software\Avast5\aswWebRepIE.dll (AVAST Software)
      O4 - HKLM..\Run: [avast5] C:\Program Files\Alwil Software\Avast5\avastUI.exe (AVAST Software)
      O4 - HKLM..\Run: [HP Quick Launch] C:\Archivos de programa\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe (Hewlett-Packard Development Company, L.P.)
      O4 - HKU\S-1-5-21-2021241018-1846666833-3646265627-1000..\Run: [ares] C:\Program Files\Ares\Ares.exe (Ares Development Group)
      O4 - HKU\S-1-5-21-2021241018-1846666833-3646265627-1000..\Run: [DAEMON Tools Lite] C:\Program Files\DAEMON Tools Lite\DTLite.exe (DT Soft Ltd)
      O4 - HKU\S-1-5-21-2021241018-1846666833-3646265627-1000..\Run: [IDMan] C:\Program Files\Internet Download Manager\IDMan.exe (Tonec Inc.)
      O4 - HKU\S-1-5-21-2021241018-1846666833-3646265627-1000..\Run: [KGShareApp] C:\Archivos de programa\Kodak\KODAK Share Button App\KGShare_App.exe (Eastman Kodak Company)
      O4 - HKU\S-1-5-21-2021241018-1846666833-3646265627-1000..\Run: [Nexus] C:\Program Files\Winstep\Nexus.exe (Winstep Software Technologies)
      O4 - HKU\S-1-5-21-2021241018-1846666833-3646265627-1000..\Run: [OfficeSyncProcess] C:\Program Files\Microsoft Office\Office14\MSOSYNC.EXE (Microsoft Corporation)
      O4 - HKU\S-1-5-19..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (Microsoft Corporation)
      O4 - HKU\S-1-5-20..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (Microsoft Corporation)
      O4 - Startup: C:\Users\Usuario\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\ERUNT AutoBackup.lnk = C:\Archivos de programa\ERUNT\AUTOBACK.EXE ()
      O4 - Startup: C:\Users\Usuario\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Recorte de pantalla y Selector de OneNote 2010.lnk = C:\Archivos de programa\Microsoft Office\Office14\ONENOTEM.EXE (Microsoft Corporation)
      O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 0
      O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
      O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0
      O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 0
      O7 - HKU\S-1-5-21-2021241018-1846666833-3646265627-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
      O8 - Extra context menu item: &Enviar a OneNote - C:\Archivos de programa\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation)
      O8 - Extra context menu item: Descargar con IDM - C:\Archivos de programa\Internet Download Manager\IEExt.htm ()
      O8 - Extra context menu item: Descargar con IDM todos los enlaces - C:\Archivos de programa\Internet Download Manager\IEGetAll.htm ()
      O8 - Extra context menu item: E&xportar a Microsoft Excel - C:\Archivos de programa\Microsoft Office\Office14\EXCEL.EXE (Microsoft Corporation)
      O9 - Extra Button: Enviar a OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Archivos de programa\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation)
      O9 - Extra 'Tools' menuitem : &Enviar a OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Archivos de programa\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation)
      O9 - Extra Button: Notas &vinculadas de OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Archivos de programa\Microsoft Office\Office14\ONBttnIELinkedNotes.dll (Microsoft Corporation)
      O9 - Extra 'Tools' menuitem : Notas &vinculadas de OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Archivos de programa\Microsoft Office\Office14\ONBttnIELinkedNotes.dll (Microsoft Corporation)
      O10 - NameSpace_Catalog5\Catalog_Entries\000000000008 [] - C:\Archivos de programa\Common Files\microsoft shared\Windows Live\WLIDNSP.DLL (Microsoft Corp.)
      O10 - NameSpace_Catalog5\Catalog_Entries\000000000009 [] - C:\Archivos de programa\Common Files\microsoft shared\Windows Live\WLIDNSP.DLL (Microsoft Corp.)
      O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 200.91.48.2 200.91.48.3
      O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{29A841ED-93F7-4771-9FB2-F1820DFD52B8}: DhcpNameServer = 200.91.48.2 200.91.48.3
      O18 - Protocol\Handler\livecall {828030A1-22C1-4009-854F-8E305202313F} - C:\Archivos de programa\Windows Live\Messenger\msgrapp.dll (Microsoft Corporation)
      O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Archivos de programa\Common Files\microsoft shared\Help\hxds.dll (Microsoft Corporation)
      O18 - Protocol\Handler\msnim {828030A1-22C1-4009-854F-8E305202313F} - C:\Archivos de programa\Windows Live\Messenger\msgrapp.dll (Microsoft Corporation)
      O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Archivos de programa\Common Files\Skype\Skype4COM.dll (Skype Technologies)
      O18 - Protocol\Handler\wlmailhtml {03C514A3-1EFB-4856-9F99-10D7BE1653C0} - C:\Archivos de programa\Windows Live\Mail\mailcomm.dll (Microsoft Corporation)
      O18 - Protocol\Filter\text/xml {807573E5-5146-11D5-A672-00B0D022E945} - C:\Archivos de programa\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL (Microsoft Corporation)
      O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
      O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\System32\userinit.exe (Microsoft Corporation)
      O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\System32\SystemPropertiesPerformance.exe (Microsoft Corporation)
      O28 - HKLM ShellExecuteHooks: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Archivos de programa\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
      O32 - HKLM CDRom: AutoRun - 1
      O32 - AutoRun File - [2009/06/10 18:42:20 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
      O32 - AutoRun File - [2011/04/12 07:50:50 | 000,000,122 | R--- | M] () - D:\autorun.inf -- [ UDF ]
      O33 - MountPoints2\{614e13f9-5cf2-11e2-8d48-2c768adf207c}\Shell - "" = AutoRun
      O33 - MountPoints2\{614e13f9-5cf2-11e2-8d48-2c768adf207c}\Shell\AutoRun\command - "" = D:\sources\sperr32.exe -- [2011/04/12 07:50:50 | 000,123,472 | R--- | M] (Microsoft Corporation)
      O34 - HKLM BootExecute: (autocheck autochk *)
      O35 - HKLM\..comfile [open] -- "%1" %*
      O35 - HKLM\..exefile [open] -- "%1" %*
      O37 - HKLM\...com [@ = comfile] -- "%1" %*
      O37 - HKLM\...exe [@ = exefile] -- "%1" %*
      O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
      O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
      O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)

      NetSvcs: FastUserSwitchingCompatibility - File not found
      NetSvcs: Ias - C:\Windows\System32\ias.dll (Microsoft Corporation)
      NetSvcs: Nla - File not found
      NetSvcs: Ntmssvc - File not found
      NetSvcs: NWCWorkstation - File not found
      NetSvcs: Nwsapagent - File not found
      NetSvcs: SRService - File not found
      NetSvcs: WmdmPmSp - File not found
      NetSvcs: LogonHours - File not found
      NetSvcs: PCAudit - File not found
      NetSvcs: helpsvc - File not found
      NetSvcs: uploadmgr - File not found

      MsConfig - StartUpReg: Adobe ARM - hkey= - key= - C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe (Adobe Systems Incorporated)
      MsConfig - StartUpReg: BCSSync - hkey= - key= - C:\Program Files\Microsoft Office\Office14\BCSSync.exe (Microsoft Corporation)
      MsConfig - StartUpReg: PlusService - hkey= - key= - C:\Archivos de programa\Yuna Software\Messenger Plus!\PlusService.exe (Yuna Software)
      MsConfig - StartUpReg: Skype - hkey= - key= - C:\Program Files\Skype\Phone\Skype.exe (Skype Technologies S.A.)
      MsConfig - StartUpReg: WinampAgent - hkey= - key= - C:\Program Files\Winamp\winampa.exe (Nullsoft, Inc.)
      MsConfig - State: "startup" - 2
      MsConfig - State: "bootini" - 2

      CREATERESTOREPOINT
      Restore point Set: OTL Restore Point

      ========== Files/Folders - Created Within 30 Days ==========

      [2013/06/29 03:06:52 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Java
      [2013/06/29 03:05:26 | 000,000,000 | ---D | C] -- C:\Program Files\Java
      [2013/06/29 02:48:26 | 000,000,000 | ---D | C] -- C:\_OTL
      [2013/06/29 02:35:20 | 000,000,000 | ---D | C] -- C:\Windows\ERDNT
      [2013/06/29 02:30:31 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ERUNT
      [2013/06/29 02:30:30 | 000,000,000 | ---D | C] -- C:\Program Files\ERUNT
      [2013/06/28 08:14:26 | 000,000,000 | ---D | C] -- C:\Program Files\LyricsContainer
      [2013/06/27 09:47:05 | 000,000,000 | ---D | C] -- C:\Users\Usuario\Documents\Mis equipos virtuales
      [2013/06/27 09:42:27 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Virtual PC
      [2013/06/26 07:53:26 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ubisoft
      [2013/06/26 00:00:52 | 000,000,000 | ---D | C] -- C:\Program Files\Ubisoft
      [2013/06/24 00:59:29 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Firefox
      [2013/06/24 00:20:16 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Adobe
      [2013/06/24 00:20:16 | 000,000,000 | ---D | C] -- C:\Program Files\Adobe
      [2013/06/23 17:41:35 | 000,000,000 | ---D | C] -- C:\Users\Usuario\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller
      [2013/06/23 17:41:34 | 000,000,000 | ---D | C] -- C:\Program Files\VS Revo Group
      [2013/06/23 01:59:32 | 000,000,000 | ---D | C] -- C:\ProgramData\Media Get LLC
      [2013/06/23 00:09:37 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes' Anti-Malware (portable)
      [2013/06/23 00:04:04 | 000,000,000 | ---D | C] -- C:\Users\Usuario\Desktop\mbar
      [2013/06/17 08:46:36 | 000,000,000 | ---D | C] -- C:\Program Files\CoolLyrics
      [2013/06/16 15:12:57 | 000,695,296 | ---- | C] (AnjoCaido) -- C:\Users\Usuario\Desktop\Minecraft.exe
      [2013/06/16 00:33:12 | 000,000,000 | ---D | C] -- C:\Users\Usuario\AppData\Roaming\.minecraft
      [2013/06/03 22:31:14 | 000,000,000 | ---D | C] -- C:\Users\Usuario\Documents\Número incidente cirugía_archivos
      [2013/06/02 13:03:40 | 000,000,000 | ---D | C] -- C:\Users\Usuario\AppData\Local\{41362354-8C4E-4576-A44F-8D3790D1BB30}

      ========== Files - Modified Within 30 Days ==========

      [2013/07/01 09:44:03 | 000,001,026 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
      [2013/07/01 09:42:03 | 000,001,054 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2021241018-1846666833-3646265627-1000UA.job
      [2013/07/01 09:37:30 | 000,001,589 | ---- | M] () -- C:\Users\Usuario\Desktop\OTL - Acceso directo.lnk
      [2013/07/01 09:31:01 | 000,000,838 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
      [2013/07/01 09:24:36 | 000,750,260 | ---- | M] () -- C:\Windows\System32\perfh00A.dat
      [2013/07/01 09:24:36 | 000,655,226 | ---- | M] () -- C:\Windows\System32\perfh009.dat
      [2013/07/01 09:24:36 | 000,159,338 | ---- | M] () -- C:\Windows\System32\perfc00A.dat
      [2013/07/01 09:24:36 | 000,122,098 | ---- | M] () -- C:\Windows\System32\perfc009.dat
      [2013/07/01 09:22:50 | 000,031,280 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
      [2013/07/01 09:22:50 | 000,031,280 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
      [2013/07/01 09:18:01 | 000,000,388 | ---- | M] () -- C:\Windows\tasks\LyricsContainer Update.job
      [2013/07/01 09:17:34 | 000,000,316 | ---- | M] () -- C:\Windows\tasks\GlaryInitialize.job
      [2013/07/01 09:17:30 | 000,001,022 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
      [2013/07/01 09:17:22 | 000,000,266 | ---- | M] () -- C:\Windows\tasks\AutoKMS.job
      [2013/07/01 09:17:06 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
      [2013/07/01 09:16:59 | 795,762,688 | -HS- | M] () -- C:\hiberfil.sys
      [2013/06/30 23:42:03 | 000,001,002 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2021241018-1846666833-3646265627-1000Core.job
      [2013/06/29 02:50:30 | 000,000,098 | ---- | M] () -- C:\Windows\System32\drivers\etc\Hosts
      [2013/06/29 02:30:41 | 000,001,078 | ---- | M] () -- C:\Users\Usuario\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\ERUNT AutoBackup.lnk
      [2013/06/29 02:30:32 | 000,000,898 | ---- | M] () -- C:\Users\Usuario\Desktop\NTREGOPT.lnk
      [2013/06/29 02:30:32 | 000,000,879 | ---- | M] () -- C:\Users\Usuario\Desktop\ERUNT.lnk
      [2013/06/27 20:33:06 | 000,369,584 | ---- | M] (AVAST Software) -- C:\Windows\System32\drivers\aswSP.sys
      [2013/06/27 20:33:06 | 000,175,176 | ---- | M] () -- C:\Windows\System32\drivers\aswVmm.sys
      [2013/06/27 20:33:06 | 000,000,175 | ---- | M] () -- C:\Windows\System32\drivers\aswVmm.sys.sum
      [2013/06/27 20:33:06 | 000,000,175 | ---- | M] () -- C:\Windows\System32\drivers\aswSP.sys.sum
      [2013/06/27 20:33:05 | 000,770,344 | ---- | M] (AVAST Software) -- C:\Windows\System32\drivers\aswSnx.sys
      [2013/06/27 20:33:05 | 000,000,175 | ---- | M] () -- C:\Windows\System32\drivers\aswSnx.sys.sum
      [2013/06/24 00:21:26 | 000,001,989 | ---- | M] () -- C:\Users\Public\Desktop\Adobe Reader XI.lnk
      [2013/06/23 17:41:35 | 000,001,226 | ---- | M] () -- C:\Users\Usuario\Desktop\Revo Uninstaller.lnk
      [2013/06/19 14:56:47 | 000,002,380 | ---- | M] () -- C:\Users\Usuario\Desktop\Google Chrome.lnk
      [2013/06/17 23:04:55 | 000,018,312 | ---- | M] () -- C:\Users\Usuario\Documents\cc_20130617_230415.reg
      [2013/06/17 14:09:24 | 000,000,032 | ---- | M] () -- C:\Users\Usuario\Desktop\quitar anuncios.css
      [2013/06/16 02:31:48 | 000,001,486 | ---- | M] () -- C:\Users\Usuario\Desktop\.minecraft - Acceso directo.lnk
      [2013/06/03 22:31:15 | 000,009,764 | ---- | M] () -- C:\Users\Usuario\Documents\Número incidente cirugía.htm

      ========== Files Created - No Company Name ==========

      [2013/07/01 09:37:30 | 000,001,589 | ---- | C] () -- C:\Users\Usuario\Desktop\OTL - Acceso directo.lnk
      [2013/06/29 02:30:41 | 000,001,078 | ---- | C] () -- C:\Users\Usuario\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\ERUNT AutoBackup.lnk
      [2013/06/29 02:30:32 | 000,000,898 | ---- | C] () -- C:\Users\Usuario\Desktop\NTREGOPT.lnk
      [2013/06/29 02:30:32 | 000,000,879 | ---- | C] () -- C:\Users\Usuario\Desktop\ERUNT.lnk
      [2013/06/28 08:14:26 | 000,000,388 | ---- | C] () -- C:\Windows\tasks\LyricsContainer Update.job
      [2013/06/27 20:33:06 | 000,000,175 | ---- | C] () -- C:\Windows\System32\drivers\aswVmm.sys.sum
      [2013/06/27 09:42:42 | 000,001,847 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Virtual PC.lnk
      [2013/06/26 14:04:28 | 000,000,175 | ---- | C] () -- C:\Windows\System32\drivers\aswSnx.sys.sum
      [2013/06/26 14:04:27 | 000,000,175 | ---- | C] () -- C:\Windows\System32\drivers\aswSP.sys.sum
      [2013/06/24 00:21:25 | 000,002,441 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk
      [2013/06/24 00:21:25 | 000,001,989 | ---- | C] () -- C:\Users\Public\Desktop\Adobe Reader XI.lnk
      [2013/06/23 17:41:35 | 000,001,226 | ---- | C] () -- C:\Users\Usuario\Desktop\Revo Uninstaller.lnk
      [2013/06/17 23:04:33 | 000,018,312 | ---- | C] () -- C:\Users\Usuario\Documents\cc_20130617_230415.reg
      [2013/06/17 14:09:24 | 000,000,032 | ---- | C] () -- C:\Users\Usuario\Desktop\quitar anuncios.css
      [2013/06/16 02:31:48 | 000,001,486 | ---- | C] () -- C:\Users\Usuario\Desktop\.minecraft - Acceso directo.lnk
      [2013/06/03 22:31:10 | 000,009,764 | ---- | C] () -- C:\Users\Usuario\Documents\Número incidente cirugía.htm
      [2013/05/21 21:52:45 | 000,175,176 | ---- | C] () -- C:\Windows\System32\drivers\aswVmm.sys
      [2013/05/21 21:52:43 | 000,049,376 | ---- | C] () -- C:\Windows\System32\drivers\aswRvrt.sys
      [2005/08/07 07:01:40 | 000,001,415 | -H-- | C] () -- C:\Users\Usuario\AppData\Roaming\Usuariov1.18.0 - Trial versionlog.dat

      ========== ZeroAccess Check ==========

      [2009/07/14 01:42:31 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini

      [HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

      [HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

      [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
      "" = %SystemRoot%\system32\shell32.dll -- [2012/01/04 05:59:38 | 012,872,704 | ---- | M] (Microsoft Corporation)
      "ThreadingModel" = Apartment

      [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
      "" = %systemroot%\system32\wbem\fastprox.dll -- [2010/11/20 18:29:20 | 000,606,208 | ---- | M] (Microsoft Corporation)
      "ThreadingModel" = Free

      [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
      "" = %systemroot%\system32\wbem\wbemess.dll -- [2009/07/13 22:16:17 | 000,342,528 | ---- | M] (Microsoft Corporation)
      "ThreadingModel" = Both

      ========== LOP Check ==========

      [2013/06/30 20:42:02 | 000,000,000 | ---D | M] -- C:\Users\Usuario\AppData\Roaming\.minecraft
      [2013/04/21 18:16:22 | 000,000,000 | ---D | M] -- C:\Users\Usuario\AppData\Roaming\DAEMON Tools Lite
      [2013/07/01 09:37:53 | 000,000,000 | ---D | M] -- C:\Users\Usuario\AppData\Roaming\DMCache
      [2013/04/22 0048 | 000,000,000 | ---D | M] -- C:\Users\Usuario\AppData\Roaming\GlarySoft
      [2013/06/18 13:52:00 | 000,000,000 | ---D | M] -- C:\Users\Usuario\AppData\Roaming\IDM
      [2013/05/09 10:19:29 | 000,000,000 | ---D | M] -- C:\Users\Usuario\AppData\Roaming\Rainmeter
      [2013/03/10 17:59:40 | 000,000,000 | ---D | M] -- C:\Users\Usuario\AppData\Roaming\TuneUp Software
      [2012/12/12 18:41:26 | 000,000,000 | ---D | M] -- C:\Users\Usuario\AppData\Roaming\Unity
      [2013/06/27 09:36:25 | 000,000,000 | ---D | M] -- C:\Users\Usuario\AppData\Roaming\uTorrent
      [2012/09/03 08:16:17 | 000,000,000 | ---D | M] -- C:\Users\Usuario\AppData\Roaming\Windows Live Writer

      ========== Purity Check ==========



      ========== Custom Scans ==========

      < %SYSTEMDRIVE%\*.* >
      [2013/04/21 23:32:06 | 000,023,272 | ---- | M] () -- C:\AdwCleaner[R1].txt
      [2013/04/21 23:34:32 | 000,000,360 | ---- | M] () -- C:\AdwCleaner[S1].txt
      [2013/04/21 23:37:15 | 000,023,630 | ---- | M] () -- C:\AdwCleaner[S2].txt
      [2013/06/19 08:32:23 | 000,000,919 | ---- | M] () -- C:\AdwCleaner[S3].txt
      [2013/06/18 13:41:04 | 000,016,106 | ---- | M] () -- C:\AT-Destroyer.txt
      [2009/06/10 18:42:20 | 000,000,024 | ---- | M] () -- C:\autoexec.bat
      [2009/06/10 18:42:20 | 000,000,010 | ---- | M] () -- C:\config.sys
      [2013/07/01 09:16:59 | 795,762,688 | -HS- | M] () -- C:\hiberfil.sys
      [2012/12/14 00:00:15 | 000,000,000 | RHS- | M] () -- C:\IO.SYS
      [2012/12/14 00:00:15 | 000,000,000 | RHS- | M] () -- C:\MSDOS.SYS
      [2013/07/01 09:17:01 | 1073,741,824 | -HS- | M] () -- C:\pagefile.sys
      [2013/06/17 23:42:24 | 000,131,556 | ---- | M] () -- C:\TDSSKiller.2.8.16.0_17.06.2013_23.41.23_log.txt
      [2013/03/25 08:04:07 | 000,132,596 | ---- | M] () -- C:\TDSSKiller.2.8.16.0_25.03.2013_08.01.36_log.txt
      [2013/05/27 01:30:40 | 000,003,620 | ---- | M] () -- C:\TDSSKiller.2.8.16.0_27.05.2013_01.30.13_log.txt

      < End of report >