• Registrarse
  • Iniciar sesión


  • Página 1 de 3 123 ÚltimoÚltimo
    Resultados 1 al 10 de 23

    Virus de la doble tilde

    Buenas tardes a todos, Me imagino que he sido infectado con el virus de la doble tilde. Ese que cuando apretas la tilde, te pone dos. Ejemplo: cami´´on He seguido todos los pasos de vuestra ...

    1. #1
      Usuario Avatar de vanway
      Registrado
      dic 2005
      Ubicación
      España
      Mensajes
      48

      Atención Virus de la doble tilde

      Buenas tardes a todos,

      Me imagino que he sido infectado con el virus de la doble tilde. Ese que cuando apretas la tilde, te pone dos. Ejemplo: cami´´on

      He seguido todos los pasos de vuestra guia, pero ni dt-kill, ni malwarebytes me encuentran nada, y ccleaner me dice que tengo el registro limpisimo. Me podriais echar una mano?

      Muchas gracias

    2. #2
      Moderador
      Avatar de @JonathanM
      Registrado
      may 2006
      Ubicación
      Chile
      Mensajes
      11.741

      Re: Virus de la doble tilde

      Hola

      Descarga DelFix en el escritorio de windows.
      • Haz doble clic para ejecutarlo.
      • Ventana principal, marca solamente la casilla Remove disinfection tools
      • Clic en Run.

      Al terminar Se abrirá un reporte llamado DelFix.txt, pega el reporte en este mismo tema.

      Saludos
      <¡D3vIL!>

      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.

    3. #3
      Usuario Avatar de vanway
      Registrado
      dic 2005
      Ubicación
      España
      Mensajes
      48

      Re: Virus de la doble tilde

      # DelFix v1.011 - Logfile created 22/11/2017 at 22:26:13
      # Updated 18/08/2015 by Xplode
      # Username : USUARIO - USUARIO-PC
      # Operating System : Windows 7 Professional Service Pack 1 (64 bits)

      ~ Removing disinfection tools ...


      ########## - EOF - ##########

    4. #4
      Moderador
      Avatar de @JonathanM
      Registrado
      may 2006
      Ubicación
      Chile
      Mensajes
      11.741

      Re: Virus de la doble tilde

      Hola

      Realiza estos pasos por favor...

      - Descarga la herramienta ComboFix.exe y guárdala en el escritorio.
      • Desactiva temporalmente el Antivirus y/o Antispyware.
      • Cierra todas las ventanas abiertas.
      • Hacele doble clic al archivo ComboFix.exe y seguí las instrucciones.
      • Cuando termine, generara un registro en C:\ComboFix.txt.
        • *Nota* Mientras CF este trabajando no mover el mouse ya que pararía su proceso.
        • *Nota* ComboFix puede reiniciar automáticamente el PC para completar el proceso de eliminación.
      Atención!! No use ComboFix a menos que se le haya indicado específicamente en su mensaje por un integrante de nuestro Staff. Es una herramienta de gran alcance destinada por su creador a ser usada bajo la orientación y supervisión de un experto, no para uso privado. El uso de ComboFix incorrectamente podría generar problemas en su sistema. Por favor, lea las "Negaciones de la Garantía" de ComboFix.
      • Reinicia y pega el reporte de C:\ComboFix.txt en este mismo mensaje.


      NOTA IMPORTANTE

      NO Pongas los Reportes Dentro de Etiquetas Code ni HTML.
      NO descargues o instales mas programas mientras terminamos la desinfección.

      Salu2
      Recuerda volver y nos comentas los resultados
      <¡D3vIL!>

      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.

    5. #5
      Usuario Avatar de vanway
      Registrado
      dic 2005
      Ubicación
      España
      Mensajes
      48

      Re: Virus de la doble tilde

      Aquí os lo pego:

      ComboFix 17-11-14.01 - USUARIO 23/11/2017 19:15:21.1.4 - x64
      Microsoft Windows 7 Professional 6.1.7601.1.1252.34.3082.18.16294.12093 [GMT 1:00]
      Running from: c:\users\USUARIO\Desktop\ComboFix.exe
      AV: Malwarebytes *Enabled/Updated* {23007AD3-69FE-687C-2629-D584AFFAF72B}
      AV: Microsoft Security Essentials *Disabled/Updated* {71A27EC9-3DA6-45FC-60A7-004F623C6189}
      SP: Malwarebytes *Enabled/Updated* {98619B37-4FC4-67F2-1C99-EEF6D47DBD96}
      SP: Microsoft Security Essentials *Disabled/Updated* {CAC39F2D-1B9C-4A72-5A17-3B3D19BB2B34}
      SP: Windows Defender *Disabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
      * Created a new restore point
      .
      .
      ((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
      .
      .
      c:\windows\system32\IVTCredentialProvider.dll
      .
      .
      ((((((((((((((((((((((((( Files Created from 2017-10-23 to 2017-11-23 )))))))))))))))))))))))))))))))
      .
      .
      2017-11-23 18:20 . 2017-11-23 18:20 -------- d-----w- c:\users\Default\AppData\Local\temp
      2017-11-23 18:08 . 2017-11-23 18:08 193464 ----a-w- c:\windows\system32\drivers\MbamChameleon.sys
      2017-11-23 18:08 . 2017-11-23 18:21 110016 ----a-w- c:\windows\system32\drivers\farflt.sys
      2017-11-23 18:08 . 2017-11-23 18:21 84256 ----a-w- c:\windows\system32\drivers\mwac.sys
      2017-11-23 18:08 . 2017-11-23 18:21 46008 ----a-w- c:\windows\system32\drivers\mbam.sys
      2017-11-23 18:08 . 2017-11-23 18:21 253880 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys
      2017-11-22 19:38 . 2017-11-22 19:38 -------- d-----w- C:\_DT-Kill
      2017-11-22 19:30 . 2017-11-01 07:54 77432 ----a-w- c:\windows\system32\drivers\mbae64.sys
      2017-11-22 19:30 . 2017-11-22 19:30 -------- d-----w- c:\programdata\Malwarebytes
      2017-11-22 19:30 . 2017-11-22 19:30 -------- d-----w- c:\program files\Malwarebytes
      2017-11-22 17:47 . 2017-10-30 09:27 13771264 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{F65E686A-FB33-4DA6-BFD5-CE2D0F25AA0B}\mpengine.dll
      2017-11-21 20:27 . 2017-11-21 20:27 -------- d-----w- c:\users\USUARIO\.PokerClient
      2017-11-21 19:26 . 2017-11-21 20:27 -------- d-----w- c:\users\USUARIO\AppData\Local\PokerClient
      2017-11-21 17:40 . 2017-10-30 09:27 13771264 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\Backup\mpengine.dll
      2017-11-20 10:41 . 2017-10-18 02:30 605184 ----a-w- c:\windows\system32\aeinv.dll
      2017-11-20 10:41 . 2017-10-04 13:04 2023936 ----a-w- c:\windows\system32\aitstatic.exe
      2017-11-20 10:41 . 2017-10-04 13:04 181760 ----a-w- c:\windows\system32\acmigration.dll
      2017-11-20 10:41 . 2017-10-04 13:04 1570304 ----a-w- c:\windows\system32\appraiser.dll
      2017-11-20 10:41 . 2017-10-18 02:34 134376 ----a-w- c:\windows\system32\CompatTelRunner.exe
      2017-11-20 10:41 . 2017-10-15 22:04 407392 ----a-w- c:\windows\system32\centel.dll
      2017-11-20 10:41 . 2017-10-04 13:04 670208 ----a-w- c:\windows\system32\generaltel.dll
      2017-11-20 10:41 . 2017-10-04 13:04 603648 ----a-w- c:\windows\system32\devinv.dll
      2017-11-20 10:41 . 2017-10-04 13:04 370688 ----a-w- c:\windows\system32\invagent.dll
      2017-11-20 10:41 . 2017-10-04 13:04 241664 ----a-w- c:\windows\system32\aepic.dll
      2017-11-18 11:09 . 2017-10-01 09:40 1057976 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{D92879C5-1D8D-4084-90EA-E9979BC99BF6}\gapaengine.dll
      2017-10-27 16:07 . 2017-11-19 21:58 18384 ----a-w- c:\program files (x86)\Mozilla Firefox\qipcap64.dll
      2017-10-27 14:59 . 2017-10-27 14:59 -------- d-----w- c:\programdata\Gyazo
      .
      .
      .
      (((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
      .
      2017-11-20 20:32 . 2010-11-21 03:27 545440 ------w- c:\windows\system32\MpSigStub.exe
      2017-11-20 10:41 . 2017-10-12 12:25 127017032 -c--a-w- c:\windows\system32\MRT-KB890830.exe
      2017-11-20 10:41 . 2013-04-10 12:53 127017032 -c--a-w- c:\windows\system32\MRT.exe
      2017-11-14 12:40 . 2015-05-27 14:39 803328 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe
      2017-11-14 12:40 . 2015-05-27 14:39 144896 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
      2017-10-20 19:40 . 2015-05-27 14:50 97856 ----a-w- c:\windows\SysWow64\WindowsAccessBridge-32.dll
      2017-10-11 01:05 . 2017-04-11 16:42 1796032 ----a-w- c:\windows\system32\nvspcap64.dll
      2017-10-11 01:05 . 2017-04-11 16:42 1577920 ----a-w- c:\windows\SysWow64\nvspcap.dll
      2017-10-11 01:05 . 2017-04-11 16:42 918976 ----a-w- c:\windows\system32\NvRtmpStreamer64.dll
      2017-10-11 01:05 . 2017-10-23 16:43 50624 ----a-w- c:\windows\system32\drivers\nvvad64v.sys
      2017-10-11 01:05 . 2017-06-25 12:20 186304 ----a-w- c:\windows\system32\nvaudcap64v.dll
      2017-10-11 01:05 . 2017-06-25 12:20 152512 ----a-w- c:\windows\SysWow64\nvaudcap32v.dll
      2017-10-10 23:26 . 2017-04-11 16:42 1951 ----a-w- c:\windows\NvTelemetryContainerRecovery.bat
      2017-10-01 09:40 . 2016-01-30 13:15 1057976 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\NISBackup\gapaengine.dll
      2017-09-18 06:55 . 2017-04-11 16:28 1951 ----a-w- c:\windows\NvContainerRecovery.bat
      2017-09-16 19:23 . 2017-10-01 15:04 972920 ----a-w- c:\windows\system32\NvIFR64.dll
      2017-09-16 19:23 . 2017-10-01 15:04 924096 ----a-w- c:\windows\SysWow64\NvIFR.dll
      2017-09-16 19:23 . 2017-10-01 15:04 690504 ----a-w- c:\windows\system32\nvfatbinaryLoader.dll
      2017-09-16 19:23 . 2017-10-01 15:04 609912 ----a-w- c:\windows\system32\NvIFROpenGL.dll
      2017-09-16 19:23 . 2017-10-01 15:04 578056 ----a-w- c:\windows\SysWow64\nvfatbinaryLoader.dll
      2017-09-16 19:23 . 2017-10-01 15:04 512672 ----a-w- c:\windows\system32\nvEncodeAPI64.dll
      2017-09-16 19:23 . 2017-10-01 15:04 499136 ----a-w- c:\windows\SysWow64\NvIFROpenGL.dll
      2017-09-16 19:23 . 2017-10-01 15:04 429920 ----a-w- c:\windows\SysWow64\nvEncodeAPI.dll
      2017-09-16 19:23 . 2017-10-01 15:04 407064 ----a-w- c:\windows\SysWow64\nvumdshim.dll
      2017-09-16 19:23 . 2017-10-01 15:04 40240064 ----a-w- c:\windows\system32\nvcompiler.dll
      2017-09-16 19:23 . 2017-10-01 15:04 3793016 ----a-w- c:\windows\system32\nvcuvid.dll
      2017-09-16 19:23 . 2017-10-01 15:04 35883640 ----a-w- c:\windows\system32\nvoglv64.dll
      2017-09-16 19:23 . 2017-10-01 15:04 35314112 ----a-w- c:\windows\SysWow64\nvcompiler.dll
      2017-09-16 19:23 . 2017-10-01 15:04 3346368 ----a-w- c:\windows\SysWow64\nvcuvid.dll
      2017-09-16 19:23 . 2017-10-01 15:04 28987512 ----a-w- c:\windows\SysWow64\nvoglv32.dll
      2017-09-16 19:23 . 2017-10-01 15:04 23132720 ----a-w- c:\windows\system32\nvopencl.dll
      2017-09-16 19:23 . 2017-10-01 15:04 1988216 ----a-w- c:\windows\system32\nvdispco6438569.dll
      2017-09-16 19:23 . 2017-10-01 15:04 18849968 ----a-w- c:\windows\SysWow64\nvopencl.dll
      2017-09-16 19:23 . 2017-10-01 15:04 17808120 ----a-w- c:\windows\system32\nvd3dumx.dll
      2017-09-16 19:23 . 2017-10-01 15:04 171384 ----a-w- c:\windows\system32\nvinitx.dll
      2017-09-16 19:23 . 2017-10-01 15:04 1606592 ----a-w- c:\windows\system32\nvdispgenco6438569.dll
      2017-09-16 19:23 . 2017-10-01 15:04 154392 ----a-w- c:\windows\system32\nvoglshim64.dll
      2017-09-16 19:23 . 2017-10-01 15:04 15427520 ----a-w- c:\windows\system32\drivers\nvlddmkm.sys
      2017-09-16 19:23 . 2017-10-01 15:04 149040 ----a-w- c:\windows\SysWow64\nvinit.dll
      2017-09-16 19:23 . 2017-10-01 15:04 13782720 ----a-w- c:\windows\system32\nvcuda.dll
      2017-09-16 19:23 . 2017-10-01 15:04 132256 ----a-w- c:\windows\SysWow64\nvoglshim32.dll
      2017-09-16 19:23 . 2017-10-01 15:04 12241792 ----a-w- c:\windows\system32\nvptxJitCompiler.dll
      2017-09-16 19:23 . 2017-10-01 15:04 11692856 ----a-w- c:\windows\SysWow64\nvcuda.dll
      2017-09-16 19:23 . 2017-10-01 15:04 1067456 ----a-w- c:\windows\system32\NvFBC64.dll
      2017-09-16 19:23 . 2017-10-01 15:04 10087504 ----a-w- c:\windows\SysWow64\nvptxJitCompiler.dll
      2017-09-16 19:23 . 2017-10-01 15:04 1005176 ----a-w- c:\windows\SysWow64\NvFBC.dll
      2017-09-16 19:23 . 2017-07-08 09:12 18706120 ----a-w- c:\windows\SysWow64\nvwgf2um.dll
      2017-09-16 19:23 . 2016-09-21 20:10 491720 ----a-w- c:\windows\system32\nvumdshimx.dll
      2017-09-16 19:23 . 2016-01-22 22:49 21407000 ----a-w- c:\windows\system32\nvwgf2umx.dll
      2017-09-16 19:23 . 2016-01-22 22:49 14688256 ----a-w- c:\windows\SysWow64\nvd3dum.dll
      2017-09-16 19:23 . 2016-01-22 22:49 4188872 ----a-w- c:\windows\system32\nvapi64.dll
      2017-09-16 19:23 . 2016-01-22 22:49 3692216 ----a-w- c:\windows\SysWow64\nvapi.dll
      2017-09-16 17:34 . 2016-01-22 22:51 6463424 ----a-w- c:\windows\system32\nvcpl.dll
      2017-09-16 17:34 . 2016-01-22 22:51 2478528 ----a-w- c:\windows\system32\nvsvc64.dll
      2017-09-16 17:34 . 2016-05-13 18:29 82040 ----a-w- c:\windows\system32\nv3dappshextr.dll
      2017-09-16 17:34 . 2016-05-13 18:29 548472 ----a-w- c:\windows\system32\nv3dappshext.dll
      2017-09-16 17:34 . 2016-01-22 22:51 69752 ----a-w- c:\windows\system32\nvshext.dll
      2017-09-16 17:34 . 2016-01-22 22:51 392312 ----a-w- c:\windows\system32\nvmctray.dll
      2017-09-16 17:34 . 2016-01-22 22:51 1762752 ----a-w- c:\windows\system32\nvsvcr.dll
      2017-09-16 17:17 . 2017-10-01 15:06 135800 ----a-w- c:\windows\SysWow64\nvStreaming.exe
      2017-09-15 15:03 . 2016-01-22 22:51 8248071 ----a-w- c:\windows\system32\nvcoproc.bin
      2017-09-13 15:33 . 2017-10-12 12:23 631176 ----a-w- c:\windows\system32\winresume.efi
      2017-09-13 15:32 . 2017-10-12 12:23 706792 ----a-w- c:\windows\system32\winload.efi
      2017-09-13 15:32 . 2017-10-12 12:23 5547752 ----a-w- c:\windows\system32\ntoskrnl.exe
      2017-09-13 15:32 . 2017-10-12 12:23 95464 ----a-w- c:\windows\system32\drivers\ksecdd.sys
      2017-09-13 15:32 . 2017-10-12 12:23 154856 ----a-w- c:\windows\system32\drivers\ksecpkg.sys
      2017-09-13 15:31 . 2017-10-12 12:23 1732864 ----a-w- c:\windows\system32\ntdll.dll
      2017-09-13 15:28 . 2017-10-12 12:23 886272 ----a-w- c:\windows\system32\wlansvc.dll
      2017-09-13 15:28 . 2017-10-12 12:23 448512 ----a-w- c:\windows\system32\wlansec.dll
      2017-09-13 15:28 . 2017-10-12 12:23 414208 ----a-w- c:\windows\system32\wlanmsm.dll
      2017-09-13 15:28 . 2017-10-12 12:23 118784 ----a-w- c:\windows\system32\wlanhlp.dll
      2017-09-13 15:28 . 2017-10-12 12:23 113664 ----a-w- c:\windows\system32\wlanapi.dll
      2017-09-13 15:28 . 2017-10-12 12:23 362496 ----a-w- c:\windows\system32\wow64win.dll
      2017-09-13 15:28 . 2017-10-12 12:23 243712 ----a-w- c:\windows\system32\wow64.dll
      2017-09-13 15:28 . 2017-10-12 12:23 215552 ----a-w- c:\windows\system32\winsrv.dll
      2017-09-13 15:28 . 2017-10-12 12:23 13312 ----a-w- c:\windows\system32\wow64cpu.dll
      2017-09-13 15:28 . 2017-10-12 12:23 86528 ----a-w- c:\windows\system32\TSpkg.dll
      2017-09-13 15:28 . 2017-10-12 12:23 210432 ----a-w- c:\windows\system32\wdigest.dll
      2017-09-13 15:28 . 2017-10-12 12:23 503808 ----a-w- c:\windows\system32\srcore.dll
      2017-09-13 15:28 . 2017-10-12 12:23 50176 ----a-w- c:\windows\system32\srclient.dll
      2017-09-13 15:28 . 2017-10-12 12:23 28672 ----a-w- c:\windows\system32\sspisrv.dll
      2017-09-13 15:28 . 2017-10-12 12:23 135680 ----a-w- c:\windows\system32\sspicli.dll
      2017-09-13 15:28 . 2017-10-12 12:23 63488 ----a-w- c:\windows\system32\setbcdlocale.dll
      2017-09-13 15:28 . 2017-10-12 12:23 345600 ----a-w- c:\windows\system32\schannel.dll
      2017-09-13 15:28 . 2017-10-12 12:23 28160 ----a-w- c:\windows\system32\secur32.dll
      2017-09-13 15:28 . 2017-10-12 12:23 190464 ----a-w- c:\windows\system32\rpchttp.dll
      2017-09-13 15:28 . 2017-10-12 12:23 1212928 ----a-w- c:\windows\system32\rpcrt4.dll
      2017-09-13 15:28 . 2017-10-12 12:23 16384 ----a-w- c:\windows\system32\ntvdm64.dll
      2017-09-13 15:28 . 2017-10-12 12:23 312320 ----a-w- c:\windows\system32\ncrypt.dll
      2017-09-13 15:28 . 2017-10-12 12:23 1068544 ----a-w- c:\windows\system32\msctf.dll
      2017-09-13 15:28 . 2017-10-12 12:23 316928 ----a-w- c:\windows\system32\msv1_0.dll
      2017-09-13 15:28 . 2017-10-12 12:23 60416 ----a-w- c:\windows\system32\msobjs.dll
      2017-09-13 15:28 . 2017-10-12 12:23 146432 ----a-w- c:\windows\system32\msaudite.dll
      2017-09-13 15:27 . 2017-10-12 12:23 731648 ----a-w- c:\windows\system32\kerberos.dll
      2017-09-13 15:27 . 2017-10-12 12:23 419840 ----a-w- c:\windows\system32\KernelBase.dll
      2017-09-13 15:27 . 2017-10-12 12:23 1460736 ----a-w- c:\windows\system32\lsasrv.dll
      2017-09-13 15:27 . 2017-10-12 12:23 1163264 ----a-w- c:\windows\system32\kernel32.dll
      2017-09-13 15:27 . 2017-10-12 12:23 44032 ----a-w- c:\windows\system32\csrsrv.dll
      2017-09-13 15:27 . 2017-10-12 12:23 43520 ----a-w- c:\windows\system32\cryptbase.dll
      2017-09-13 15:27 . 2017-10-12 12:23 22016 ----a-w- c:\windows\system32\credssp.dll
      .
      .
      ((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
      .
      .
      *Note* empty entries & legit default entries are not shown
      REGEDIT4
      .
      [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrivePro1 (ErrorConflict)]
      @="{8BA85C75-763B-4103-94EB-9470F12FE0F7}"
      [HKEY_CLASSES_ROOT\CLSID\{8BA85C75-763B-4103-94EB-9470F12FE0F7}]
      2017-02-23 06:29 1743664 ----a-w- c:\progra~2\MICROS~1\Office15\GROOVEEX.DLL
      .
      [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrivePro2 (SyncInProgress)]
      @="{CD55129A-B1A1-438E-A425-CEBC7DC684EE}"
      [HKEY_CLASSES_ROOT\CLSID\{CD55129A-B1A1-438E-A425-CEBC7DC684EE}]
      2017-02-23 06:29 1743664 ----a-w- c:\progra~2\MICROS~1\Office15\GROOVEEX.DLL
      .
      [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrivePro3 (InSync)]
      @="{E768CD3B-BDDC-436D-9C13-E1B39CA257B1}"
      [HKEY_CLASSES_ROOT\CLSID\{E768CD3B-BDDC-436D-9C13-E1B39CA257B1}]
      2017-02-23 06:29 1743664 ----a-w- c:\progra~2\MICROS~1\Office15\GROOVEEX.DLL
      .
      [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
      "Steam"="c:\program files (x86)\Steam\steam.exe" [2017-10-31 3102496]
      "SUPERAntiSpyware"="c:\program files\SUPERAntiSpyware\SUPERAntiSpyware.exe" [2017-10-20 7964576]
      "Skype"="c:\program files (x86)\Skype\Phone\Skype.exe" [2017-08-25 27832272]
      "Gyazo"="c:\program files (x86)\Gyazo\GyStation.exe" [2017-11-09 5345672]
      "Spotify Web Helper"="c:\users\USUARIO\AppData\Roaming\Spotify\SpotifyWebHelper.exe" [2017-11-20 777840]
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
      "Acrobat Assistant 8.0"="c:\program files (x86)\Adobe\Acrobat 11.0\Acrobat\Acrotray.exe" [2013-05-11 3478600]
      "IMSS"="c:\program files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PIconStartup.exe" [2014-04-29 134616]
      "USB3MON"="c:\program files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe" [2014-08-25 293872]
      "SwitchBoard"="c:\program files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe" [2010-02-19 517096]
      "AdobeCS6ServiceManager"="c:\program files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe" [2012-03-09 1073312]
      "PowerDVD15Agent"="c:\program files (x86)\CyberLink\PowerDVD15\PowerDVD15Agent.exe" [2015-05-27 949960]
      "LWS"="c:\program files (x86)\Logitech\LWS\Webcam Software\LWS.exe" [2012-09-12 204136]
      "Wondershare Helper Compact.exe"="c:\program files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe" [2012-02-28 1679360]
      "BtTray"="c:\program files (x86)\IVT Corporation\BlueSoleil\BtTray.exe" [2014-03-03 461048]
      "SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe" [2017-09-05 587288]
      .
      c:\users\USUARIO\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
      Enviar a OneNote.lnk - c:\program files (x86)\Microsoft Office\Office15\ONENOTEM.EXE /tsr [2016-5-17 194736]
      .
      c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
      321.show.lnk - c:\program files (x86)\SplitmediaLabs\321.show\321.show.exe FROM_STARTUP [2017-7-21 90424]
      .
      [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
      "ConsentPromptBehaviorAdmin"= 5 (0x5)
      "ConsentPromptBehaviorUser"= 3 (0x3)
      "EnableUIADesktopToggle"= 0 (0x0)
      "PromptOnSecureDesktop"= 0 (0x0)
      .
      [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\!SASCORE]
      @=""
      .
      [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService]
      @="Service"
      .
      [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]
      @="Service"
      .
      R1 MpKsl55c286fe;MpKsl55c286fe;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{F65E686A-FB33-4DA6-BFD5-CE2D0F25AA0B}\MpKsl55c286fe.sys;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{F65E686A-FB33-4DA6-BFD5-CE2D0F25AA0B}\MpKsl55c286fe.sys [x]
      R1 VBoxNetAdp;VirtualBox NDIS 6.0 Miniport Service;c:\windows\system32\DRIVERS\VBoxNetAdp6.sys;c:\windows\SYSNATIVE\DRIVERS\VBoxNetAdp6.sys [x]
      R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]
      R2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology;c:\program files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe;c:\program files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [x]
      R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe;c:\program files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [x]
      R2 NAUpdate;Nero Update;c:\program files (x86)\Nero\Update\NASvc.exe;c:\program files (x86)\Nero\Update\NASvc.exe [x]
      R2 Origin Web Helper Service;Origin Web Helper Service;c:\program files (x86)\Origin\OriginWebHelperService.exe;c:\program files (x86)\Origin\OriginWebHelperService.exe [x]
      R3 BTCOM;Bluetooth Serial port driver;c:\windows\system32\DRIVERS\btcomport.sys;c:\windows\SYSNATIVE\DRIVERS\btcomport.sys [x]
      R3 dmvsc;dmvsc;c:\windows\system32\drivers\dmvsc.sys;c:\windows\SYSNATIVE\drivers\dmvsc.sys [x]
      R3 e1rexpress;Intel(R) PCI Express Network Connection Driver R;c:\windows\system32\DRIVERS\e1r62x64.sys;c:\windows\SYSNATIVE\DRIVERS\e1r62x64.sys [x]
      R3 IEEtwCollectorService;Internet Explorer ETW Collector Service;c:\windows\system32\IEEtwCollector.exe;c:\windows\SYSNATIVE\IEEtwCollector.exe [x]
      R3 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface;c:\program files\Intel\iCLS Client\SocketHeciServer.exe;c:\program files\Intel\iCLS Client\SocketHeciServer.exe [x]
      R3 l6SonicPortVX;Service Line 6 Sonic Port VX;c:\windows\system32\Drivers\l6SonicPortVX.sys;c:\windows\SYSNATIVE\Drivers\l6SonicPortVX.sys [x]
      R3 l6SonicPortVX_AvsFilter;Line 6 Sonic Port VX AVStream Mini Driver;c:\windows\system32\DRIVERS\l6SonicPortVX_AvsFilter.sys;c:\windows\SYSNATIVE\DRIVERS\l6SonicPortVX_AvsFilter.sys [x]
      R3 NisDrv;Microsoft Network Inspection System;c:\windows\system32\DRIVERS\NisDrvWFP.sys;c:\windows\SYSNATIVE\DRIVERS\NisDrvWFP.sys [x]
      R3 NisSrv;Inspección de red de Microsoft;c:\program files\Microsoft Security Client\NisSrv.exe;c:\program files\Microsoft Security Client\NisSrv.exe [x]
      R3 NvContainerNetworkService;NVIDIA NetworkService Container;c:\program files\NVIDIA Corporation\NvContainer\nvcontainer.exe;c:\program files\NVIDIA Corporation\NvContainer\nvcontainer.exe [x]
      R3 NvStreamKms;NVIDIA KMS;c:\program files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys;c:\program files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [x]
      R3 Origin Client Service;Origin Client Service;c:\program files (x86)\Origin\OriginClientService.exe;c:\program files (x86)\Origin\OriginClientService.exe [x]
      R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys;c:\windows\SYSNATIVE\drivers\rdpvideominiport.sys [x]
      R3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys;c:\windows\SYSNATIVE\DRIVERS\Rt64win7.sys [x]
      R3 SandraAgentSrv;SiSoftware Deployment Agent Service;c:\program files\SiSoftware\SiSoftware Sandra Lite Platinum.SP2\RpcAgentSrv.exe;c:\program files\SiSoftware\SiSoftware Sandra Lite Platinum.SP2\RpcAgentSrv.exe [x]
      R3 SwitchBoard;SwitchBoard;c:\program files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe;c:\program files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [x]
      R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x]
      R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys;c:\windows\SYSNATIVE\drivers\TsUsbGD.sys [x]
      R3 WsAudioDevice_383S(1);WsAudioDevice_383S(1);c:\windows\system32\drivers\WsAudioDevice_383S(1).sys;c:\windows\SYSNATIVE\drivers\WsAudioDevice_383S(1).sys [x]
      S0 iaStorA;iaStorA;c:\windows\system32\DRIVERS\iaStorA.sys;c:\windows\SYSNATIVE\DRIVERS\iaStorA.sys [x]
      S0 iaStorF;iaStorF;c:\windows\system32\DRIVERS\iaStorF.sys;c:\windows\SYSNATIVE\DRIVERS\iaStorF.sys [x]
      S0 iusb3hcs;Controlador del conmutador de la controladora de host Intel(R) USB 3.0;c:\windows\system32\DRIVERS\iusb3hcs.sys;c:\windows\SYSNATIVE\DRIVERS\iusb3hcs.sys [x]
      S0 PxHlpa64;PxHlpa64;c:\windows\System32\Drivers\PxHlpa64.sys;c:\windows\SYSNATIVE\Drivers\PxHlpa64.sys [x]
      S1 ESProtectionDriver;Malwarebytes Anti-Exploit;c:\windows\system32\drivers\mbae64.sys;c:\windows\SYSNATIVE\drivers\mbae64.sys [x]
      S1 SASDIFSV;SASDIFSV;c:\program files\SUPERAntiSpyware\SASDIFSV64.SYS;c:\program files\SUPERAntiSpyware\SASDIFSV64.SYS [x]
      S1 SASKUTIL;SASKUTIL;c:\program files\SUPERAntiSpyware\SASKUTIL64.SYS;c:\program files\SUPERAntiSpyware\SASKUTIL64.SYS [x]
      S2 !SASCORE;SAS Core Service;c:\program files\SUPERAntiSpyware\SASCORE64.EXE;c:\program files\SUPERAntiSpyware\SASCORE64.EXE [x]
      S2 {687703DE-DC6D-4649-892B-B8497854A6AB};Power Control [2015/09/16 19:13];c:\program files (x86)\CyberLink\PowerDVD15\Common\NavFilter\000.fcl;c:\program files (x86)\CyberLink\PowerDVD15\Common\NavFilter\000.fcl [x]
      S2 asComSvc;ASUS Com Service;c:\program files (x86)\ASUS\AXSP\1.02.00\atkexComSvc.exe;c:\program files (x86)\ASUS\AXSP\1.02.00\atkexComSvc.exe [x]
      S2 BsMobileCS;BsMobileCS;c:\program files (x86)\IVT Corporation\BlueSoleil\BsMobileCS.exe;c:\program files (x86)\IVT Corporation\BlueSoleil\BsMobileCS.exe [x]
      S2 DiagTrack;Diagnostics Tracking Service;c:\windows\System32\svchost.exe;c:\windows\SYSNATIVE\svchost.exe [x]
      S2 Intel(R) PROSet Monitoring Service;Intel(R) PROSet Monitoring Service;c:\windows\system32\IProsetMonitor.exe;c:\windows\SYSNATIVE\IProsetMonitor.exe [x]
      S2 MBAMChameleon;MBAMChameleon;c:\windows\System32\Drivers\MbamChameleon.sys;c:\windows\SYSNATIVE\Drivers\MbamChameleon.sys [x]
      S2 MBAMService;Malwarebytes Service;c:\program files\Malwarebytes\Anti-Malware\mbamservice.exe;c:\program files\Malwarebytes\Anti-Malware\mbamservice.exe [x]
      S2 NvContainerLocalSystem;NVIDIA LocalSystem Container;c:\program files\NVIDIA Corporation\NvContainer\nvcontainer.exe;c:\program files\NVIDIA Corporation\NvContainer\nvcontainer.exe [x]
      S2 NVDisplay.ContainerLocalSystem;NVIDIA Display Container LS;c:\program files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe;c:\program files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [x]
      S2 NvTelemetryContainer;NVIDIA Telemetry Container;c:\program files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe;c:\program files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe [x]
      S2 postgresql-x64-9.3;postgresql-x64-9.3 - PostgreSQL Server 9.3;c:\program files\PostgreSQL\9.3\bin\pg_ctl.exe runservice -N postgresql-x64-9.3 -D C:/Program Files/PostgreSQL/9.3/data -w;c:\program files\PostgreSQL\9.3\bin\pg_ctl.exe runservice -N postgresql-x64-9.3 -D C:/Program Files/PostgreSQL/9.3/data -w [x]
      S2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe;c:\program files (x86)\Skype\Updater\Updater.exe [x]
      S2 Update service;Update service;c:\program files (x86)\Popcorn Time\Updater.exe;c:\program files (x86)\Popcorn Time\Updater.exe [x]
      S3 BtHidBus;BtHidBus;c:\windows\system32\Drivers\BtHidBus.sys;c:\windows\SYSNATIVE\Drivers\BtHidBus.sys [x]
      S3 e1dexpress;Intel(R) PRO/1000 PCI Express Network Connection Driver D;c:\windows\system32\DRIVERS\e1d62x64.sys;c:\windows\SYSNATIVE\DRIVERS\e1d62x64.sys [x]
      S3 iusb3hub;Controlador del concentrador Intel(R) USB 3.0;c:\windows\system32\DRIVERS\iusb3hub.sys;c:\windows\SYSNATIVE\DRIVERS\iusb3hub.sys [x]
      S3 iusb3xhc;Controlador de la controladora de host Intel(R) USB 3.0 eXtensible;c:\windows\system32\DRIVERS\iusb3xhc.sys;c:\windows\SYSNATIVE\DRIVERS\iusb3xhc.sys [x]
      S3 IvtAudioBusSrv;IvtAudioBusSrv;c:\windows\system32\Drivers\IvtBtBus.sys;c:\windows\SYSNATIVE\Drivers\IvtBtBus.sys [x]
      S3 IvtComBusSrv;IvtComBusSrv;c:\windows\system32\Drivers\btcombus.sys;c:\windows\SYSNATIVE\Drivers\btcombus.sys [x]
      S3 IvtPanBusSrv;IvtPanBusSrv;c:\windows\system32\Drivers\btnetBus.sys;c:\windows\SYSNATIVE\Drivers\btnetBus.sys [x]
      S3 LVRS64;Logitech RightSound Filter Driver;c:\windows\system32\DRIVERS\lvrs64.sys;c:\windows\SYSNATIVE\DRIVERS\lvrs64.sys [x]
      S3 LVUVC64;Logitech HD Webcam C270(UVC);c:\windows\system32\DRIVERS\lvuvc64.sys;c:\windows\SYSNATIVE\DRIVERS\lvuvc64.sys [x]
      S3 MBAMFarflt;MBAMFarflt;c:\windows\system32\DRIVERS\farflt.sys;c:\windows\SYSNATIVE\DRIVERS\farflt.sys [x]
      S3 MBAMProtection;MBAMProtection;c:\windows\system32\DRIVERS\mbam.sys;c:\windows\SYSNATIVE\DRIVERS\mbam.sys [x]
      S3 MBAMSwissArmy;MBAMSwissArmy;c:\windows\System32\Drivers\mbamswissarmy.sys;c:\windows\SYSNATIVE\Drivers\mbamswissarmy.sys [x]
      S3 MBAMWebProtection;MBAMWebProtection;c:\windows\system32\DRIVERS\mwac.sys;c:\windows\SYSNATIVE\DRIVERS\mwac.sys [x]
      S3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM);c:\windows\system32\drivers\nvvad64v.sys;c:\windows\SYSNATIVE\drivers\nvvad64v.sys [x]
      S3 nvvhci;NVVHCI Enumerator Service;c:\windows\system32\DRIVERS\nvvhci.sys;c:\windows\SYSNATIVE\DRIVERS\nvvhci.sys [x]
      S3 XSplit_Dummy;XSplit Stream Audio Renderer;c:\windows\system32\drivers\xspltspk.sys;c:\windows\SYSNATIVE\drivers\xspltspk.sys [x]
      .
      .
      --- Other Services/Drivers In Memory ---
      .
      *NewlyCreated* - NAL
      *NewlyCreated* - WS2IFSL
      .
      [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\svchost]
      LocalServiceAndNoImpersonation REG_MULTI_SZ SSDPSRV upnphost SCardSvr QWAVE wcncsvc
      .
      .
      --------- X64 Entries -----------
      .
      .
      [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrivePro1 (ErrorConflict)]
      @="{8BA85C75-763B-4103-94EB-9470F12FE0F7}"
      [HKEY_CLASSES_ROOT\CLSID\{8BA85C75-763B-4103-94EB-9470F12FE0F7}]
      2017-02-23 06:34 2351920 ----a-w- c:\progra~1\MICROS~1\Office15\GROOVEEX.DLL
      .
      [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrivePro2 (SyncInProgress)]
      @="{CD55129A-B1A1-438E-A425-CEBC7DC684EE}"
      [HKEY_CLASSES_ROOT\CLSID\{CD55129A-B1A1-438E-A425-CEBC7DC684EE}]
      2017-02-23 06:34 2351920 ----a-w- c:\progra~1\MICROS~1\Office15\GROOVEEX.DLL
      .
      [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrivePro3 (InSync)]
      @="{E768CD3B-BDDC-436D-9C13-E1B39CA257B1}"
      [HKEY_CLASSES_ROOT\CLSID\{E768CD3B-BDDC-436D-9C13-E1B39CA257B1}]
      2017-02-23 06:34 2351920 ----a-w- c:\progra~1\MICROS~1\Office15\GROOVEEX.DLL
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
      "RTHDVCPL"="c:\program files\Realtek\Audio\HDA\RtkNGUI64.exe" [2014-09-02 7636696]
      "IAStorIcon"="c:\program files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe" [2014-05-28 36352]
      "AdobeAAMUpdater-1.0"="c:\program files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" [2012-09-20 444904]
      "MSC"="c:\program files\Microsoft Security Client\msseces.exe" [2016-11-14 1353680]
      "ShadowPlay"="c:\windows\system32\nvspcap64.dll" [2017-10-11 1796032]
      "XboxStat"="c:\program files\Microsoft Xbox 360 Accessories\XboxStat.exe" [2009-10-01 825184]
      .
      ------- Supplementary Scan -------
      .
      uLocal Page = c:\windows\system32\blank.htm
      uStart Page = https://www.google.es/
      mLocal Page = c:\windows\SysWOW64\blank.htm
      IE: &Enviar a OneNote - c:\progra~2\MICROS~1\Office15\ONBttnIE.dll/105
      IE: E&xportar a Microsoft Excel - c:\progra~2\MICROS~1\Office15\EXCEL.EXE/3000
      IE: Enviar por Bluetooth - c:\program files (x86)\IVT Corporation\BlueSoleil\TransSend\IE\tsinfo.htm
      IE: Enviar por Mensaje (&M)... - c:\program files (x86)\IVT Corporation\BlueSoleil\TransSend\IE\tssms.htm
      TCP: DhcpNameServer = 80.58.61.250 80.58.61.254
      Filter: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - c:\program files (x86)\Common Files\microsoft shared\OFFICE15\MSOXMLMF.DLL
      FF - ProfilePath - c:\users\USUARIO\AppData\Roaming\Mozilla\Firefox\Profiles\bs5nwj9m.default\
      .
      - - - - ORPHANS REMOVED - - - -
      .
      Toolbar-Locked - (no file)
      Wow6432Node-HKCU-Run-AdobeBridge - (no file)
      Wow6432Node-HKLM-Run-<NO NAME> - (no file)
      Wow6432Node-HKU-Default-Run-script_fcbd - d:\far cry bd\Far Cry 3 Blood Dragon\fcbd.bat
      HKLM_Wow6432Node-ActiveSetup-{2D46B6DC-2207-486B-B523-A557E6D54B47} - start
      Toolbar-Locked - (no file)
      AddRemove-Kodi - c:\program files (x86)\Kodi\uninstall.exe
      .
      .
      .
      [HKEY_LOCAL_MACHINE\system\ControlSet001\services\postgresql-x64-9.3]
      "ImagePath"="\"c:\program files\PostgreSQL\9.3\bin\pg_ctl.exe\" runservice -N \"postgresql-x64-9.3\" -D \"C:/Program Files/PostgreSQL/9.3/data\" -w"
      .
      [HKEY_LOCAL_MACHINE\system\ControlSet001\services\{687703DE-DC6D-4649-892B-B8497854A6AB}]
      "ImagePath"="\??\c:\program files (x86)\CyberLink\PowerDVD15\Common\NavFilter\000.fcl"
      .
      --------------------- LOCKED REGISTRY KEYS ---------------------
      .
      [HKEY_USERS\S-1-5-21-2056879219-1812261096-1528344004-1000\Software\SecuROM\License information*]
      "datasecu"=hex:72,2f,b9,57,d0,a9,46,9c,bf,25,77,5a,76,42,3b,2c,ab,7d,6d,27,28,
      51,61,2a,f0,f7,31,b3,1a,08,f9,c0,ea,cb,b4,0e,be,f9,1a,d7,68,87,97,b4,6c,f0,\
      "rkeysecu"=hex:d9,67,d8,e6,85,7d,8a,39,9c,4f,11,ee,db,b7,af,d5
      .
      [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}]
      @Denied: (A 2) (Everyone)
      @="FlashBroker"
      "LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_27_0_0_187_ActiveX.exe,-101"
      .
      [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\Elevation]
      "Enabled"=dword:00000001
      .
      [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\LocalServer32]
      @="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_27_0_0_187_ActiveX.exe"
      .
      [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\TypeLib]
      @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
      .
      [HKEY_LOCAL_MACHINE\software\Classes\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}]
      @Denied: (A 2) (Everyone)
      @="IFlashBroker6"
      .
      [HKEY_LOCAL_MACHINE\software\Classes\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}\ProxyStubClsid32]
      @="{00020424-0000-0000-C000-000000000046}"
      .
      [HKEY_LOCAL_MACHINE\software\Classes\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}\TypeLib]
      @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
      "Version"="1.0"
      .
      [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}]
      @Denied: (A 2) (Everyone)
      @="FlashBroker"
      "LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_27_0_0_187_ActiveX.exe,-101"
      .
      [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\Elevation]
      "Enabled"=dword:00000001
      .
      [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\LocalServer32]
      @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_27_0_0_187_ActiveX.exe"
      .
      [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\TypeLib]
      @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
      .
      [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
      @Denied: (A 2) (Everyone)
      @="Shockwave Flash Object"
      .
      [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
      @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_27_0_0_187.ocx"
      "ThreadingModel"="Apartment"
      .
      [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
      @="0"
      .
      [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
      @="ShockwaveFlash.ShockwaveFlash.27"
      .
      [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
      @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_27_0_0_187.ocx, 1"
      .
      [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
      @="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
      .
      [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
      @="1.0"
      .
      [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
      @="ShockwaveFlash.ShockwaveFlash"
      .
      [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
      @Denied: (A 2) (Everyone)
      @="Macromedia Flash Factory Object"
      .
      [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
      @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_27_0_0_187.ocx"
      "ThreadingModel"="Apartment"
      .
      [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
      @="FlashFactory.FlashFactory.1"
      .
      [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
      @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_27_0_0_187.ocx, 1"
      .
      [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
      @="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
      .
      [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
      @="1.0"
      .
      [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
      @="FlashFactory.FlashFactory"
      .
      [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}]
      @Denied: (A 2) (Everyone)
      @="IFlashBroker6"
      .
      [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}\ProxyStubClsid32]
      @="{00020424-0000-0000-C000-000000000046}"
      .
      [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}\TypeLib]
      @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
      "Version"="1.0"
      .
      [HKEY_LOCAL_MACHINE\software\Wow6432Node\Microsoft\Office\Common\Smart Tag\Actions\{B7EFF951-E52F-45CC-9EF7-57124F2177CC}]
      @Denied: (A) (Everyone)
      "Solution"="{15727DE6-F92D-4E46-ACB4-0E2C58B31A18}"
      .
      [HKEY_LOCAL_MACHINE\software\Wow6432Node\Microsoft\Schema Library\ActionsPane3]
      @Denied: (A) (Everyone)
      .
      [HKEY_LOCAL_MACHINE\software\Wow6432Node\Microsoft\Schema Library\ActionsPane3\0]
      "Key"="ActionsPane3"
      "Location"="c:\\Program Files (x86)\\Common Files\\Microsoft Shared\\VSTO\\ActionsPane3.xsd"
      .
      [HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security]
      @Denied: (Full) (Everyone)
      .
      ------------------------ Other Running Processes ------------------------
      .
      c:\program files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
      c:\program files (x86)\Google\Update\GoogleUpdate.exe
      c:\program files (x86)\IVT Corporation\BlueSoleil\BlueSoleilCS.exe
      c:\program files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
      c:\program files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
      c:\windows\SysWOW64\PnkBstrA.exe
      c:\program files (x86)\TeamViewer\TeamViewer_Service.exe
      c:\program files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
      .
      **************************************************************************
      .
      Completion time: 2017-11-23 19:24:06 - machine was rebooted
      ComboFix-quarantined-files.txt 2017-11-23 18:24
      .
      Pre-Run: 34.920.497.152 bytes libres
      Post-Run: 34.035.802.112 bytes libres
      .
      - - End Of File - - 6EE1FA643B9C4FC0113085C202D5DF91
      A36C5E4F47E84449FF07ED3517B43A31

    6. #6
      Usuario Avatar de vanway
      Registrado
      dic 2005
      Ubicación
      España
      Mensajes
      48

      Re: Virus de la doble tilde

      no me había dado cuenta! Como podéis ver en este mensaje, ya me funcionan los acentos! Supongo que estará arreglado ya, entonces?

      Gracias!

    7. #7
      Moderador
      Avatar de @JonathanM
      Registrado
      may 2006
      Ubicación
      Chile
      Mensajes
      11.741

      Re: Virus de la doble tilde

      Hola

      no me había dado cuenta! Como podéis ver en este mensaje, ya me funcionan los acentos! Supongo que estará arreglado ya, entonces?

      Gracias!
      Realiza estos pasos, asi estar seguro que este todo bien.

      1. Descarga y lo guardas en el Escritorio


      • Ejecuta Junkware Removal Tool utility (en Windows 7 u 8 ejecutar como "Administrador")
        • Presiona cualquier tecla para continuar y espera pacientemente a que termine su proceso.
        • Al finalizar, un registro (JRT.txt) se guardara en el escritorio y se abrirá automáticamente.
        • Copia y pega el contenido de JRT.txt en tu próximo mensaje de respuesta

      • Ejecuta AdwCleaner a tu escritorio (En Windows Vista o 7, presiona clic derecho sobre el ícono y elige Ejecutar como Administrador)
        • Presiona Escanear, luego que termine el análisis, presiona el botón limpiar.
        • El programa te pedira qué reinicies el sistema, dile
        • Al reinicio se te abrira el informe (reporte).
        • Nos pones el informe de AdwCleaner en este mismo tema.



      • Nos pegas los reporte en este orden:
        • JRT
        • AdwCleaner
      NOTA IMPORTANTE

      NO Pongas los Reportes Dentro de Etiquetas Code ni HTML.
      NO descargues o instales mas programas mientras terminamos la desinfección.

      Salu2
      Recuerda volver y nos comentas los resultados
      <¡D3vIL!>

      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.

    8. #8
      Usuario Avatar de vanway
      Registrado
      dic 2005
      Ubicación
      España
      Mensajes
      48

      Re: Virus de la doble tilde

      ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
      Junkware Removal Tool (JRT) by Malwarebytes
      Version: 8.1.4 (07.09.2017)
      Operating System: Windows 7 Professional x64
      Ran by USUARIO (Administrator) on 24/11/2017 at 16:20:05,04
      ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




      File System: 35

      Successfully deleted: C:\ProgramData\mntemp (File)
      Successfully deleted: C:\Users\USUARIO\AppData\Local\2012 (Folder)
      Successfully deleted: C:\Users\USUARIO\AppData\Roaming\out of the park developments (Folder)
      Successfully deleted: C:\Users\USUARIO\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\0PS72R2M (Temporary Internet Files Folder)
      Successfully deleted: C:\Users\USUARIO\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\19NIH7UE (Temporary Internet Files Folder)
      Successfully deleted: C:\Users\USUARIO\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\1CV59NG1 (Temporary Internet Files Folder)
      Successfully deleted: C:\Users\USUARIO\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\1S6BNM80 (Temporary Internet Files Folder)
      Successfully deleted: C:\Users\USUARIO\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\62AXOPQ5 (Temporary Internet Files Folder)
      Successfully deleted: C:\Users\USUARIO\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\6XX44SB2 (Temporary Internet Files Folder)
      Successfully deleted: C:\Users\USUARIO\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\9HD14W83 (Temporary Internet Files Folder)
      Successfully deleted: C:\Users\USUARIO\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\A0ITV3X9 (Temporary Internet Files Folder)
      Successfully deleted: C:\Users\USUARIO\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\FTYEYZL4 (Temporary Internet Files Folder)
      Successfully deleted: C:\Users\USUARIO\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\FZG8CKJ5 (Temporary Internet Files Folder)
      Successfully deleted: C:\Users\USUARIO\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\J0PYTL3Y (Temporary Internet Files Folder)
      Successfully deleted: C:\Users\USUARIO\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\JC78ZICH (Temporary Internet Files Folder)
      Successfully deleted: C:\Users\USUARIO\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\KMYALYAO (Temporary Internet Files Folder)
      Successfully deleted: C:\Users\USUARIO\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\LIXMVQOA (Temporary Internet Files Folder)
      Successfully deleted: C:\Users\USUARIO\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\MVYA1HCM (Temporary Internet Files Folder)
      Successfully deleted: C:\Users\USUARIO\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\TI3WEL1F (Temporary Internet Files Folder)
      Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\0PS72R2M (Temporary Internet Files Folder)
      Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\19NIH7UE (Temporary Internet Files Folder)
      Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\1CV59NG1 (Temporary Internet Files Folder)
      Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\1S6BNM80 (Temporary Internet Files Folder)
      Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\62AXOPQ5 (Temporary Internet Files Folder)
      Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\6XX44SB2 (Temporary Internet Files Folder)
      Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\9HD14W83 (Temporary Internet Files Folder)
      Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\A0ITV3X9 (Temporary Internet Files Folder)
      Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\FTYEYZL4 (Temporary Internet Files Folder)
      Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\FZG8CKJ5 (Temporary Internet Files Folder)
      Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\J0PYTL3Y (Temporary Internet Files Folder)
      Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\JC78ZICH (Temporary Internet Files Folder)
      Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\KMYALYAO (Temporary Internet Files Folder)
      Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\LIXMVQOA (Temporary Internet Files Folder)
      Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\MVYA1HCM (Temporary Internet Files Folder)
      Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\TI3WEL1F (Temporary Internet Files Folder)



      Registry: 1

      Successfully deleted: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} (Registry Key)




      ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
      Scan was completed on 24/11/2017 at 16:21:19,41
      End of JRT log
      ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~


















      # AdwCleaner 7.0.4.0 - Logfile created on Fri Nov 24 15:23:32 2017
      # Updated on 2017/27/10 by Malwarebytes
      # Database: 11-23-2017.1
      # Running on Windows 7 Professional (X64)
      # Mode: scan
      # Support: https://www.malwarebytes.com/support

      ***** [ Services ] *****

      PUP.Optional.Legacy, Update service


      ***** [ Folders ] *****

      PUP.Optional.Legacy, C:\Users\USUARIO\AppData\Roaming\acestream
      PUP.Optional.Legacy, C:\Users\USUARIO\AppData\LocalLow\.acestream
      PUP.Optional.Legacy, C:\Users\USUARIO\AppData\Roaming\.acestream
      PUP.Optional.Legacy, C:\_acestream_cache_
      PUP.Optional.Legacy, C:\Users\USUARIO\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ace Stream Media


      ***** [ Files ] *****

      No malicious files found.

      ***** [ DLL ] *****

      No malicious DLLs found.

      ***** [ WMI ] *****

      No malicious WMI found.

      ***** [ Shortcuts ] *****

      No malicious shortcuts found.

      ***** [ Tasks ] *****

      No malicious tasks found.

      ***** [ Registry ] *****

      PUP.Optional.Legacy, [Value] - HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules | TCP Query User{65211D92-4C56-4EF5-8BE8-0DD7F0715BD3}C:\users\usuario\appdata\roaming\acestream\engine\ace_engine.exe
      PUP.Optional.Legacy, [Value] - HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules | UDP Query User{76479E61-CB27-4D3F-B8F1-3B8D44444278}C:\users\usuario\appdata\roaming\acestream\engine\ace_engine.exe
      PUP.Optional.Legacy, [Value] - HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules | TCP Query User{36DCF24A-E3CD-451A-B7D6-2D6E072E0608}C:\users\usuario\appdata\local\popcorn time offical\node-webkit\popcorn time.exe
      PUP.Optional.Legacy, [Value] - HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules | UDP Query User{8CBEC24A-525A-4844-A589-84FD07263102}C:\users\usuario\appdata\local\popcorn time offical\node-webkit\popcorn time.exe
      PUP.Optional.Legacy, [Value] - HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules | TCP Query User{E03B0E48-9BE2-46E3-BCCA-8B423B72EAF7}C:\users\usuario\appdata\roaming\acestream\player\ace_player.exe
      PUP.Optional.Legacy, [Value] - HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules | UDP Query User{127B4FC8-E161-4CB4-9E3A-8A0B4140AF2A}C:\users\usuario\appdata\roaming\acestream\player\ace_player.exe
      PUP.Optional.Legacy, [Key] - HKU\S-1-5-21-2056879219-1812261096-1528344004-1000\Software\AceStream
      PUP.Optional.Legacy, [Key] - HKU\S-1-5-21-2056879219-1812261096-1528344004-1000\Software\Microsoft\Windows\CurrentVersion\Uninstall\AceStream
      PUP.Optional.Legacy, [Key] - HKCU\Software\AceStream
      PUP.Optional.Legacy, [Key] - HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\AceStream
      PUP.Optional.Legacy, [Key] - HKCU\Software\Classes\CLSID\{79690976-ED6E-403C-BBBA-F8928B5EDE17}
      PUP.Optional.Legacy, [Key] - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.acelive
      PUP.Optional.Legacy, [Key] - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.acemedia
      PUP.Optional.Legacy, [Key] - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.acestream
      PUP.Optional.Legacy, [Key] - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.tslive
      PUP.Optional.Legacy, [Key] - HKCU\SOFTWARE\Classes\Applications\ace_player.exe
      PUP.Optional.Legacy, [Key] - HKCU\SOFTWARE\Classes\MIME\Database\Content Type\application\x-acestream-plugin
      PUP.Optional.Legacy, [Key] - HKCU\Software\Classes\Applications\ace_player.exe
      PUP.Optional.Legacy, [Key] - HKCU\Software\Classes\MIME\Database\Content Type\application\x-acestream-plugin
      PUP.Optional.Legacy, [Key] - HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.acelive
      PUP.Optional.Legacy, [Key] - HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.acemedia
      PUP.Optional.Legacy, [Key] - HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.acestream
      PUP.Optional.Legacy, [Key] - HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.tslive
      PUP.Optional.Legacy, [Key] - HKCU\Software\MozillaPlugins\@acestream.net\acestreamplugin,version=3.1.2
      PUP.Optional.AceStream, [Value] - HKCU\Software\RegisteredApplications | AceStream


      ***** [ Firefox (and derivatives) ] *****

      No malicious Firefox entries.

      ***** [ Chromium (and derivatives) ] *****

      No malicious Chromium entries.

      *************************



      ########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt ##########

    9. #9
      Moderador
      Avatar de @JonathanM
      Registrado
      may 2006
      Ubicación
      Chile
      Mensajes
      11.741

      Re: Virus de la doble tilde

      Hola

      Ejecuta nuevamente DelFix, nos traes el reporte y nos debes indicar como va todo tras los paso...



      Saludos
      <¡D3vIL!>

      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.

    10. #10
      Usuario Avatar de vanway
      Registrado
      dic 2005
      Ubicación
      España
      Mensajes
      48

      Re: Virus de la doble tilde

      aquí os dejo el report:

      # DelFix v1.011 - Logfile created 24/11/2017 at 22:04:39
      # Updated 18/08/2015 by Xplode
      # Username : USUARIO - USUARIO-PC
      # Operating System : Windows 7 Professional Service Pack 1 (64 bits)

      ~ Removing disinfection tools ...

      Deleted : C:\Qoobox
      Deleted : C:\AdwCleaner
      Deleted : C:\ComboFix.txt
      Deleted : C:\Users\USUARIO\Desktop\AdwCleaner.exe
      Deleted : C:\Users\USUARIO\Desktop\ComboFix.exe
      Deleted : C:\Users\USUARIO\Desktop\JRT.txt
      Deleted : C:\Users\USUARIO\Downloads\ComboFix.exe
      Deleted : C:\Users\USUARIO\Downloads\JRT.exe
      Deleted : C:\Windows\grep.exe
      Deleted : C:\Windows\PEV.exe
      Deleted : C:\Windows\NIRCMD.exe
      Deleted : C:\Windows\MBR.exe
      Deleted : C:\Windows\SED.exe
      Deleted : C:\Windows\SWREG.exe
      Deleted : C:\Windows\SWSC.exe
      Deleted : C:\Windows\SWXCACLS.exe
      Deleted : C:\Windows\Zip.exe
      Deleted : HKLM\SOFTWARE\Swearware
      Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\combofix.exe

      ########## - EOF - ##########

    Página 1 de 3 123 ÚltimoÚltimo