Eliminar 22 find portal de internet de mi ordenata

Cerrado
pitiris Mensajes enviados 4 Fecha de inscripción domingo, 31 de mayo de 2009 Estatus Miembro Última intervención sábado, 16 de febrero de 2013 - 12 feb 2013 a las 18:07
 URGENTE - 22 abr 2014 a las 03:10
Hola, hace unos dias se me coló en el pc el "portal de internet 22 find..." ahora no soy capaz de eliminarlo.He intentado casi de todo ,pero el Internet explorer sigue
abriendose con este "coñazo de portalito" PODRIAIS AYUDARME ?.Por favor si puede ser con instrucciones sencillas ,está claro que no soy un as de la informatica .GRACIAS POR VUESTRA AYUDA.
Consulta también:

4 respuestas

jaferx Mensajes enviados 1 Fecha de inscripción viernes, 8 de marzo de 2013 Estatus Miembro Última intervención viernes, 8 de marzo de 2013 2
8 mar 2013 a las 04:29
OTL logfile created on: 07/03/2013 10:13:48 p.m. - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Familia\Downloads
Ultimate Edition (Version = 6.1.7600) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 0000280a | Country: Perú | Language: ESR | Date Format: dd/MM/yyyy

2.00 Gb Total Physical Memory | 1.30 Gb Available Physical Memory | 64.92% Memory free
4.00 Gb Paging File | 2.78 Gb Available in Paging File | 69.46% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 135.13 Gb Total Space | 49.55 Gb Free Space | 36.67% Space Free | Partition Type: NTFS
Drive D: | 97.66 Gb Total Space | 51.98 Gb Free Space | 53.22% Space Free | Partition Type: NTFS

Computer Name: FAMILIA-PC | User Name: Familia | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 360 Days

[color=#E56717]========== Processes (SafeList) ==========/color

PRC - C:\Users\Familia\Downloads\OTL.exe (OldTimer Tools)
PRC - C:\Archivos de programa\Google\Update\1.3.21.135\GoogleCrashHandler.exe (Google Inc.)
PRC - C:\Archivos de programa\Malwarebytes' Anti-Malware\mbamservice.exe (Malwarebytes Corporation)
PRC - C:\Archivos de programa\Malwarebytes' Anti-Malware\mbamgui.exe (Malwarebytes Corporation)
PRC - C:\Archivos de programa\Malwarebytes' Anti-Malware\mbamscheduler.exe (Malwarebytes Corporation)
PRC - C:\Archivos de programa\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe (NVIDIA Corporation)
PRC - C:\Archivos de programa\NVIDIA Corporation\Display\nvxdsync.exe (NVIDIA Corporation)
PRC - C:\Archivos de programa\NVIDIA Corporation\Display\nvtray.exe (NVIDIA Corporation)
PRC - C:\Archivos de programa\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe (NVIDIA Corporation)
PRC - C:\Archivos de programa\Common Files\Java\Java Update\jucheck.exe (Sun Microsystems, Inc.)
PRC - C:\Archivos de programa\Retrogamer_4w\bar\1.bin\4wbarsvc.exe (COMPANYVERS_NAME)
PRC - C:\Archivos de programa\Retrogamer_4w\bar\1.bin\4wbrmon.exe (VER_COMPANY_NAME)
PRC - C:\ProgramData\DatacardService\HWDeviceService.exe ()
PRC - C:\ProgramData\DatacardService\DCSHelper.exe (Huawei Technologies Co., Ltd.)
PRC - C:\Windows\explorer.exe (Microsoft Corporation)
PRC - C:\Archivos de programa\Windows Media Player\wmpnetwk.exe (Microsoft Corporation)
PRC - C:\Windows\System32\taskhost.exe (Microsoft Corporation)
PRC - C:\Windows\System32\audiodg.exe (Microsoft Corporation)
PRC - C:\Archivos de programa\Adobe\Acrobat 9.0\Acrobat\acrotray.exe (Adobe Systems Inc.)
PRC - C:\Archivos de programa\Alwil Software\Avast4\ashDisp.exe (ALWIL Software)
PRC - C:\Archivos de programa\Alwil Software\Avast4\ashServ.exe (ALWIL Software)
PRC - C:\Archivos de programa\Alwil Software\Avast4\ashMaiSv.exe (ALWIL Software)
PRC - C:\Archivos de programa\Alwil Software\Avast4\ashWebSv.exe (ALWIL Software)
PRC - C:\Archivos de programa\Alwil Software\Avast4\aswUpdSv.exe (ALWIL Software)
PRC - C:\Archivos de programa\Microsoft Office\Office12\GrooveMonitor.exe (Microsoft Corporation)


[color=#E56717]========== Modules (No Company Name) ==========/color

MOD - C:\Archivos de programa\Common Files\Apple\Apple Application Support\zlib1.dll ()
MOD - C:\Archivos de programa\Common Files\Apple\Apple Application Support\libxml2.dll ()
MOD - C:\Archivos de programa\Common Files\LightScribe\QtGui4.dll ()
MOD - C:\Archivos de programa\Common Files\LightScribe\QtCore4.dll ()
MOD - C:\Archivos de programa\Common Files\LightScribe\plugins\imageformats\qjpeg4.dll ()


[color=#E56717]========== Services (SafeList) ==========/color

SRV - (RichVideo) -- C:\Program Files\CyberLink\Shared Files\RichVideo.exe File not found
SRV - (AdobeFlashPlayerUpdateSvc) -- C:\Windows\System32\Macromed\Flash\FlashPlayerUpdateService.exe (Adobe Systems Incorporated)
SRV - (SkypeUpdate) -- C:\Archivos de programa\Skype\Updater\Updater.exe (Skype Technologies)
SRV - (MBAMService) -- C:\Archivos de programa\Malwarebytes' Anti-Malware\mbamservice.exe (Malwarebytes Corporation)
SRV - (MBAMScheduler) -- C:\Archivos de programa\Malwarebytes' Anti-Malware\mbamscheduler.exe (Malwarebytes Corporation)
SRV - (nvUpdatusService) -- C:\Archivos de programa\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe (NVIDIA Corporation)
SRV - (Stereo Service) -- C:\Archivos de programa\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe (NVIDIA Corporation)
SRV - (FLEXnet Licensing Service) -- C:\Archivos de programa\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe (Acresso Software Inc.)
SRV - (Retrogamer_4wService) -- C:\Archivos de programa\Retrogamer_4w\bar\1.bin\4wbarsvc.exe (COMPANYVERS_NAME)
SRV - (MozillaMaintenance) -- C:\Archivos de programa\Mozilla Maintenance Service\maintenanceservice.exe (Mozilla Foundation)
SRV - (WatAdminSvc) -- C:\Windows\System32\Wat\WatAdminSvc.exe (Microsoft Corporation)
SRV - (HWDeviceService.exe) -- C:\ProgramData\DatacardService\HWDeviceService.exe ()
SRV - (SensrSvc) -- C:\Windows\System32\sensrsvc.dll (Microsoft Corporation)
SRV - (PeerDistSvc) -- C:\Windows\System32\PeerDistSvc.dll (Microsoft Corporation)
SRV - (WinDefend) -- C:\Archivos de programa\Windows Defender\MpSvc.dll (Microsoft Corporation)
SRV - (WMPNetworkSvc) -- C:\Archivos de programa\Windows Media Player\wmpnetwk.exe (Microsoft Corporation)
SRV - (Adobe Version Cue CS4) -- C:\Archivos de programa\Common Files\Adobe\Adobe Version Cue CS4\Server\bin\VersionCueCS4.exe (Adobe Systems Incorporated)
SRV - (avast! Antivirus) -- C:\Archivos de programa\Alwil Software\Avast4\ashServ.exe (ALWIL Software)
SRV - (avast! Mail Scanner) -- C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe (ALWIL Software)
SRV - (avast! Web Scanner) -- C:\Program Files\Alwil Software\Avast4\ashWebSv.exe (ALWIL Software)
SRV - (aswUpdSv) -- C:\Archivos de programa\Alwil Software\Avast4\aswUpdSv.exe (ALWIL Software)
SRV - (Microsoft Office Groove Audit Service) -- C:\Archivos de programa\Microsoft Office\Office12\GrooveAuditService.exe (Microsoft Corporation)
SRV - (odserv) -- C:\Archivos de programa\Common Files\microsoft shared\OFFICE12\ODSERV.EXE (Microsoft Corporation)
SRV - (ose) -- C:\Archivos de programa\Common Files\microsoft shared\Source Engine\OSE.EXE (Microsoft Corporation)


[color=#E56717]========== Driver Services (SafeList) ==========/color

DRV - (vvftav323) -- system32\drivers\vvftav323.sys File not found
DRV - (vmcam325av) -- System32\Drivers\vmcam323av.sys File not found
DRV - (huawei_wwanecm) -- system32\DRIVERS\ew_juwwanecm.sys File not found
DRV - (huawei_ext_ctrl) -- system32\DRIVERS\ew_juextctrl.sys File not found
DRV - (huawei_enumerator) -- system32\DRIVERS\ew_jubusenum.sys File not found
DRV - (huawei_cdcacm) -- system32\DRIVERS\ew_jucdcacm.sys File not found
DRV - (ew_usbenumfilter) -- system32\DRIVERS\ew_usbenumfilter.sys File not found
DRV - (ew_hwusbdev) -- system32\DRIVERS\ew_hwusbdev.sys File not found
DRV - (MBAMProtector) -- C:\Windows\System32\drivers\mbam.sys (Malwarebytes Corporation)
DRV - (nvlddmkm) -- C:\Windows\System32\drivers\nvlddmkm.sys (NVIDIA Corporation)
DRV - (vmbus) -- C:\Windows\System32\drivers\vmbus.sys (Microsoft Corporation)
DRV - (storflt) -- C:\Windows\System32\drivers\vmstorfl.sys (Microsoft Corporation)
DRV - (storvsc) -- C:\Windows\System32\drivers\storvsc.sys (Microsoft Corporation)
DRV - (WinUsb) -- C:\Windows\System32\drivers\winusb.sys (Microsoft Corporation)
DRV - (s3cap) -- C:\Windows\System32\drivers\vms3cap.sys (Microsoft Corporation)
DRV - (VMBusHID) -- C:\Windows\System32\drivers\VMBusHID.sys (Microsoft Corporation)
DRV - (e1express) -- C:\Windows\System32\drivers\e1e6032.sys (Intel Corporation)
DRV - (aswSP) -- C:\Windows\System32\drivers\aswSP.sys (ALWIL Software)
DRV - (aswMonFlt) -- C:\Windows\System32\drivers\aswMonFlt.sys (ALWIL Software)
DRV - (aswFsBlk) -- C:\Windows\System32\drivers\aswFsBlk.sys (ALWIL Software)
DRV - (aswRdr) -- C:\Windows\System32\drivers\aswRdr.sys (ALWIL Software)
DRV - (aswTdi) -- C:\Windows\System32\drivers\aswTdi.sys (ALWIL Software)


[color=#E56717]========== Standard Registry (SafeList) ==========/color


[color=#E56717]========== Internet Explorer ==========/color

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.istart123.com/newtab?utm_source=b&utm_medium=mlv&from=mlv&uid=ST3250318AS_9VME31BZXXXX9VME31BZ&ts=1361207757
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.istart123.com/newtab?utm_source=b&utm_medium=mlv&from=mlv&uid=ST3250318AS_9VME31BZXXXX9VME31BZ&ts=1361207757
IE - HKLM\..\URLSearchHook: - No CLSID value found
IE - HKLM\..\URLSearchHook: {FE69C007-C452-4d3e-86D2-1730DF8BC871} - SOFTWARE\Classes\CLSID\{FE69C007-C452-4d3e-86D2-1730DF8BC871}\InprocServer32 File not found
IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = https://www.bing.com/?scope=web&mkt=fr-FR{searchTerms}&FORM=IE8SRC


IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0



IE - HKU\S-1-5-21-3798790297-2478269454-3874696145-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.istart123.com/newtab?utm_source=b&utm_medium=mlv&from=mlv&uid=ST3250318AS_9VME31BZXXXX9VME31BZ&ts=1361207757
IE - HKU\S-1-5-21-3798790297-2478269454-3874696145-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com/toolbar/ie8/sidebar.html
IE - HKU\S-1-5-21-3798790297-2478269454-3874696145-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = http://www.google.com/toolbar/ie8/sidebar.html
IE - HKU\S-1-5-21-3798790297-2478269454-3874696145-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = https://www.google.com/?gws_rd=ssl
IE - HKU\S-1-5-21-3798790297-2478269454-3874696145-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = https://www.google.com.pe/?gws_rd=ssl
IE - HKU\S-1-5-21-3798790297-2478269454-3874696145-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = https://www.msn.com/es-xl?ocid=iehp
IE - HKU\S-1-5-21-3798790297-2478269454-3874696145-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = es-PE
IE - HKU\S-1-5-21-3798790297-2478269454-3874696145-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 8D 0D FD D1 83 25 CD 01 [binary data]
IE - HKU\S-1-5-21-3798790297-2478269454-3874696145-1000\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://www.google.com/toolbar/ie8/sidebar.html
IE - HKU\S-1-5-21-3798790297-2478269454-3874696145-1000\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com/toolbar/ie8/sidebar.html
IE - HKU\S-1-5-21-3798790297-2478269454-3874696145-1000\..\URLSearchHook: - No CLSID value found
IE - HKU\S-1-5-21-3798790297-2478269454-3874696145-1000\..\URLSearchHook: {4cff1016-c2e2-4fdd-9c67-e32200c25ff9} - No CLSID value found
IE - HKU\S-1-5-21-3798790297-2478269454-3874696145-1000\..\URLSearchHook: {FE69C007-C452-4d3e-86D2-1730DF8BC871} - SOFTWARE\Classes\CLSID\{FE69C007-C452-4d3e-86D2-1730DF8BC871}\InprocServer32 File not found
IE - HKU\S-1-5-21-3798790297-2478269454-3874696145-1000\..\SearchScopes,bProtectorDefaultScope = {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}
IE - HKU\S-1-5-21-3798790297-2478269454-3874696145-1000\..\SearchScopes,DefaultScope = {A958C6C4-A2F4-4529-8AEF-3DDD026A7FDC}
IE - HKU\S-1-5-21-3798790297-2478269454-3874696145-1000\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = https://www.bing.com/?scope=web&mkt=fr-FR{searchTerms}&src=IE-SearchBox&FORM=IE8SRC
IE - HKU\S-1-5-21-3798790297-2478269454-3874696145-1000\..\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}: "URL" = http://search.babylon.com/?q={searchTerms}&affID=116986&tt=4912_8&babsrc=SP_ss&mntrId=3c1d90a8000000000000001cc06c23e4
IE - HKU\S-1-5-21-3798790297-2478269454-3874696145-1000\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = https://www.google.com/webhp?gws_rd=ssl{searcerms}&src=IE-SearchBox&FORM=IE8SRC
IE - HKU\S-1-5-21-3798790297-2478269454-3874696145-1000\..\SearchScopes\{A958C6C4-A2F4-4529-8AEF-3DDD026A7FDC}: "URL" = https://www.google.com/webhp?gws_rd=ssl{searchTerms}&sourceid=ie7&rls=com.microsoft:en-US&ie=utf8&oe=utf8&rlz=
IE - HKU\S-1-5-21-3798790297-2478269454-3874696145-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-3798790297-2478269454-3874696145-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local


[color=#E56717]========== FireFox ==========/color

FF - prefs.js..browser.search.defaultenginename: "22find"
FF - prefs.js..browser.search.order.1: "22find"
FF - prefs.js..browser.search.selectedEngine: "22find"
FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..browser.startup.homepage: "http://www.istart123.com/?utm_source=b&utm_medium=mlv&from=mlv&uid=ST3250318AS_9VME31BZXXXX9VME31BZ&ts=1361207749"
FF - prefs.js..extensions.enabledAddons: {000F1EA4-5E08-4564-A29B-29076F63A37A}:1.0.3.171
FF - prefs.js..extensions.enabledAddons: {E71B541F-5E72-5555-A47C-E47863195841}:1.0.26
FF - prefs.js..extensions.enabledAddons: {14323AEE-F6B8-4DC8-BCE3-E62645830585}:1.0.1
FF - prefs.js..network.proxy.type: 0


FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\Windows\system32\Adobe\Director\np32dsw_1168638.dll (Adobe Systems, Inc.)
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()
FF - HKLM\Software\MozillaPlugins\@google.com/npPicasa3,version=3.0.0: C:\Program Files\Google\Picasa3\npPicasa3.dll (Google, Inc.)
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.9.2: C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVision: C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVisionStreaming: C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF - HKLM\Software\MozillaPlugins\@pandonetworks.com/PandoWebPlugin: C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll File not found
FF - HKLM\Software\MozillaPlugins\@Retrogamer_4w.com/Plugin: C:\Program Files\Retrogamer_4w\bar\1.bin\NP4wStub.dll (MindSpark)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.135\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.135\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.0.1: C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF - HKCU\Software\MozillaPlugins\@Skype Limited.com/Facebook Video Calling Plugin: C:\Users\Familia\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll (Skype Limited)
FF - HKCU\Software\MozillaPlugins\@soe.sony.com/installer,version=1.0.3: C:\Users\Familia\AppData\Roaming\Mozilla\Firefox\Profiles\i1r6ghxd.default\extensions\{000F1EA4-5E08-4564-A29B-29076F63A37A}\plugins\npsoe.dll ()
FF - HKCU\Software\MozillaPlugins\@unity3d.com/UnityPlayer,version=1.0: C:\Users\Familia\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\smartwebprinting@hp.com: C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2012/01/18 21:41:11 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\4wffxtbr@Retrogamer_4w.com: C:\Program Files\Retrogamer_4w\bar\1.bin [2012/06/28 21:21:10 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 12.0\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2012/08/09 10:21:28 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 12.0\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins
FF - HKEY_CURRENT_USER\software\mozilla\Firefox\Extensions\\smartwebprinting@hp.com: C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2012/01/18 21:41:11 | 000,000,000 | ---D | M]

[2012/01/18 20:41:12 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Familia\AppData\Roaming\mozilla\Extensions
[2013/02/18 12:15:58 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Familia\AppData\Roaming\mozilla\Firefox\Profiles\i1r6ghxd.default\extensions
[2012/06/18 19:18:07 | 000,000,000 | ---D | M] () -- C:\Users\Familia\AppData\Roaming\mozilla\Firefox\Profiles\i1r6ghxd.default\extensions\{000F1EA4-5E08-4564-A29B-29076F63A37A}
[2012/12/04 10:17:41 | 000,000,000 | ---D | M] ("SimilarSites") -- C:\Users\Familia\AppData\Roaming\mozilla\Firefox\Profiles\i1r6ghxd.default\extensions\{E71B541F-5E72-5555-A47C-E47863195841}
[2013/02/18 12:15:58 | 000,002,110 | ---- | M] () (No name found) -- C:\Users\Familia\AppData\Roaming\mozilla\firefox\profiles\i1r6ghxd.default\extensions\{14323AEE-F6B8-4DC8-BCE3-E62645830585}.xpi
[2012/12/03 19:09:46 | 000,002,432 | ---- | M] () -- C:\Users\Familia\AppData\Roaming\mozilla\firefox\profiles\i1r6ghxd.default\searchplugins\babylon1.xml
[2012/12/03 19:12:05 | 000,002,536 | ---- | M] () -- C:\Users\Familia\AppData\Roaming\mozilla\firefox\profiles\i1r6ghxd.default\searchplugins\mngr.xml
[2012/06/29 12:40:06 | 000,009,650 | ---- | M] () -- C:\Users\Familia\AppData\Roaming\mozilla\firefox\profiles\i1r6ghxd.default\searchplugins\my-web-search.xml
[2012/08/09 10:21:28 | 000,000,000 | ---D | M] (No name found) -- C:\Archivos de programa\Mozilla Firefox\extensions
[2012/08/09 10:21:28 | 000,000,000 | ---D | M] (No name found) -- C:\Archivos de programa\Mozilla Firefox\extensions\{CAFEEFAC-0015-0000-0017-ABCDEFFEDCBA}
[2012/05/29 22:24:44 | 000,097,208 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll
[2013/02/18 12:16:00 | 000,000,747 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\22find.xml
[2012/12/03 19:08:45 | 000,002,349 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\babylon.xml
[2012/05/29 22:24:42 | 000,002,252 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\bing.xml
[2012/05/29 22:24:42 | 000,003,996 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\drae.xml
[2012/05/29 22:24:42 | 000,001,143 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\eBay-es.xml
[2012/05/29 22:24:42 | 000,002,040 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\twitter.xml
[2012/05/29 22:24:42 | 000,001,178 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia-es.xml
[2012/05/29 22:24:42 | 000,001,102 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\yahoo-es.xml

[color=#E56717]========== Chrome ==========/color

CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}{google:searchClient}{google:sourceId}{google:instantExtendedEnabledParameter}ie={inputEncoding}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client=chrome&q={searchTerms}&{google:cursorPosition}sugkey={google:suggestAPIKeyParameter}
CHR - homepage: https://www.google.com/?gws_rd=ssl
CHR - plugin: Remoting Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = C:\Program Files\Google\Chrome\Application\25.0.1364.160\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Program Files\Google\Chrome\Application\25.0.1364.160\pdf.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Program Files\Google\Chrome\Application\25.0.1364.160\gcswf32.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Windows\system32\Macromed\Flash\NPSWF32.dll
CHR - plugin: Adobe Acrobat (Enabled) = C:\Program Files\Adobe\Reader 8.0\Reader\Browser\nppdf32.dll
CHR - plugin: Picasa (Enabled) = C:\Program Files\Google\Picasa3\npPicasa3.dll
CHR - plugin: Google Update (Enabled) = C:\Program Files\Google\Update\1.3.21.111\npGoogleUpdate3.dll
CHR - plugin: Java(TM) Platform SE 7 U5 (Enabled) = C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\plugin2\npjp2.dll
CHR - plugin: Java Deployment Toolkit 7.0.50.255 (Enabled) = C:\Windows\system32\npDeployJava1.dll
CHR - plugin: Pando Web Plugin (Enabled) = C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll
CHR - plugin: MindSpark Toolbar Platform Plugin Stub (Enabled) = C:\Program Files\Retrogamer_4w\bar\1.bin\NP4wStub.dll
CHR - plugin: MindSpark Toolbar Platform Plugin Stub (Enabled) = C:\Program Files\RobotBoom_60\bar\1.bin\NP60Stub.dll
CHR - plugin: VLC Web Plugin (Enabled) = C:\Program Files\VideoLAN\VLC\npvlc.dll
CHR - plugin: iTunes Application Detector (Enabled) = C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll
CHR - plugin: Power Challenge Loader (Enabled) = C:\Users\Familia\AppData\LocalLow\POWERC~1\nppowerloader.dll
CHR - plugin: Unity Player (Enabled) = C:\Users\Familia\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll
CHR - plugin: SOE Web Installer (Enabled) = C:\Users\Familia\AppData\Roaming\Mozilla\Firefox\Profiles\i1r6ghxd.default\extensions\{000F1EA4-5E08-4564-A29B-29076F63A37A}\plugins\npsoe.dll
CHR - plugin: Shockwave for Director (Enabled) = C:\Windows\system32\Adobe\Director\np32dsw.dll
CHR - Extension: TankiOnline = C:\Users\Familia\AppData\Local\Google\Chrome\User Data\Default\Extensions\chnamgoimgnbgkabfjkikldbfdhhfhdo\1.0.6_0\

O1 HOSTS File: ([2012/03/04 23:22:47 | 000,000,923 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 genuine.microsoft.com
O1 - Hosts: 127.0.0.1 mpa.one.microsoft.com
O1 - Hosts: 127.0.0.1 sls.microsoft.com
O2 - BHO: (no name) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - No CLSID value found.
O2 - BHO: (Toolbar BHO) - {03123bb6-a811-407e-b323-66cf0be510b1} - C:\Archivos de programa\Retrogamer_4w\bar\1.bin\4wbar.dll (MindSpark)
O2 - BHO: (Aplicación auxiliar de vínculos de Adobe PDF Reader) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Archivos de programa\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
O2 - BHO: (ContributeBHO Class) - {074C1DC5-9320-4A9A-947D-C042949C6216} - C:\Program Files\Adobe\/Adobe Contribute CS4/contributeieplugin.dll ()
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - No CLSID value found.
O2 - BHO: (Groove GFS Browser Helper) - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Archivos de programa\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Archivos de programa\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (Windows Live Aplicación auxiliar de inicio de sesión) - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Archivos de programa\Common Files\microsoft shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
O2 - BHO: (Adobe PDF Conversion Toolbar Helper) - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Archivos de programa\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O2 - BHO: (Search Assistant BHO) - {d757dbfc-1494-4647-a8b3-abd654988dd8} - C:\Archivos de programa\Retrogamer_4w\bar\1.bin\4wSrcAs.dll (MindSpark)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Archivos de programa\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O2 - BHO: (SmartSelect Class) - {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Archivos de programa\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O3 - HKLM\..\Toolbar: (Retrogamer) - {3392cfec-56f8-41ee-bdb4-4e301efd2c93} - C:\Archivos de programa\Retrogamer_4w\bar\1.bin\4wbar.dll (MindSpark)
O3 - HKLM\..\Toolbar: (Adobe PDF) - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Archivos de programa\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O3 - HKLM\..\Toolbar: (Contribute Toolbar) - {517BDDE4-E3A7-4570-B21E-2B52B6139FC7} - C:\Program Files\Adobe\/Adobe Contribute CS4/contributeieplugin.dll ()
O3 - HKU\S-1-5-21-3798790297-2478269454-3874696145-1000\..\Toolbar\WebBrowser: (Adobe PDF) - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Archivos de programa\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O4 - HKLM..\Run: [] File not found
O4 - HKLM..\Run: [Acrobat Assistant 8.0] C:\Program Files\Adobe\Acrobat 9.0\Acrobat\Acrotray.exe (Adobe Systems Inc.)
O4 - HKLM..\Run: [Adobe Acrobat Speed Launcher] C:\Program Files\Adobe\Acrobat 9.0\Acrobat\Acrobat_sl.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [Adobe_ID0ENQBO] C:\Archivos de programa\Common Files\Adobe\Adobe Version Cue CS4\Server\bin\VersionCueCS4Tray.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [AdobeCS4ServiceManager] C:\Program Files\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [APSDaemon] C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc.)
O4 - HKLM..\Run: [avast!] C:\Program Files\Alwil Software\Avast4\ashDisp.exe (ALWIL Software)
O4 - HKLM..\Run: [NeroFilterCheck] C:\Archivos de programa\Common Files\Ahead\Lib\NeroCheck.exe (Nero AG)
O4 - HKLM..\Run: [Retrogamer Search Scope Monitor] C:\Archivos de programa\Retrogamer_4w\bar\1.bin\4wSrchMn.exe (MindSpark)
O4 - HKLM..\Run: [Retrogamer_4w Browser Plugin Loader] C:\Archivos de programa\Retrogamer_4w\bar\1.bin\4wbrmon.exe (VER_COMPANY_NAME)
O4 - HKLM..\Run: [UpdateLBPShortCut] C:\Program Files\CyberLink\LabelPrint\MUITransfer\MUIStartMenu.exe (CyberLink Corp.)
O4 - HKLM..\Run: [UpdatePSTShortCut] C:\Program Files\CyberLink\DVD Suite\MUITransfer\MUIStartMenu.exe (CyberLink Corp.)
O4 - HKU\S-1-5-21-3798790297-2478269454-3874696145-1000..\Run: [EA Core] "C:\Program Files\Electronic Arts\EADM\Core.exe" -silent File not found
O4 - HKU\S-1-5-21-3798790297-2478269454-3874696145-1000..\Run: [Facebook Update] C:\Users\Familia\AppData\Local\Facebook\Update\FacebookUpdate.exe (Facebook Inc.)
O4 - HKU\S-1-5-21-3798790297-2478269454-3874696145-1000..\Run: [Qqdidy] C:\Users\Familia\AppData\Roaming\Qqdidy.exe File not found
O4 - HKU\S-1-5-21-3798790297-2478269454-3874696145-1000..\Run: [uTorrent] "D:\backup\Tami\uTorrent.exe" /MINIMIZED File not found
O4 - HKLM..\RunOnce: [Malwarebytes Anti-Malware] C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe (Malwarebytes Corporation)
O4 - HKU\S-1-5-19..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (Microsoft Corporation)
O4 - HKU\S-1-5-20..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (Microsoft Corporation)
O4 - HKU\S-1-5-21-3798790297-2478269454-3874696145-1004..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (Microsoft Corporation)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O7 - HKU\S-1-5-21-3798790297-2478269454-3874696145-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-3798790297-2478269454-3874696145-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: LogonHoursAction = 2
O7 - HKU\S-1-5-21-3798790297-2478269454-3874696145-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DontDisplayLogonHoursWarnings = 1
O8 - Extra context menu item: Add to Google Photos Screensa&ver - C:\Windows\System32\GPhotos.scr (Google Inc.)
O8 - Extra context menu item: Anexar a PDF existente - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Anexar destino de vínculo a PDF existente - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Convertir a Adobe PDF - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Convertir destino de vínculo a Adobe PDF - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: E&xportar a Microsoft Excel - C:\Archivos de programa\Microsoft Office\Office12\EXCEL.EXE (Microsoft Corporation)
O9 - Extra Button: Enviar a OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Archivos de programa\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : &Enviar a OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Archivos de programa\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\Archivos de programa\Microsoft Office\Office12\REFIEBAR.DLL (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Archivos de programa\Bonjour\mdnsNSP.dll (Apple Inc.)
O13 - gopher Prefix: missing
O15 - HKU\S-1-5-21-3798790297-2478269454-3874696145-1000\..Trusted Domains: clonewarsadventures.com ([]* in Trusted sites)
O15 - HKU\S-1-5-21-3798790297-2478269454-3874696145-1000\..Trusted Domains: freerealms.com ([]* in Trusted sites)
O15 - HKU\S-1-5-21-3798790297-2478269454-3874696145-1000\..Trusted Domains: soe.com ([]* in Trusted sites)
O15 - HKU\S-1-5-21-3798790297-2478269454-3874696145-1000\..Trusted Domains: sony.com ([]* in Trusted sites)
O16 - DPF: {166B1BCA-3F9C-11CF-8075-444553540000} http://download.macromedia.com/pub/shockwave/cabs/director/sw.cab (Shockwave ActiveX Control)
O16 - DPF: {233C1507-6A77-46A4-9443-F871F945D258} http://download.macromedia.com/pub/shockwave/cabs/director/sw.cab (Shockwave ActiveX Control)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.7.0/jinstall-1_7_0_05-windows-i586.cab (Reg Error: Value error.)
O16 - DPF: {CAFEEFAC-0015-0000-0017-ABCDEFFEDCBA} http://java.sun.com/update/1.5.0/jinstall-1_5_0_17-windows-i586.cab (Java Plug-in 1.5.0_17)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.7.0/jinstall-1_7_0_05-windows-i586.cab (Java Plug-in 10.9.2)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{8E88E682-030E-4FA8-A394-4317764A416E}: NameServer = 200.48.225.130,200.48.25.146
O18 - Protocol\Handler\grooveLocalGWS {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Archivos de programa\Microsoft Office\Office12\GrooveSystemServices.dll (Microsoft Corporation)
O18 - Protocol\Handler\livecall {828030A1-22C1-4009-854F-8E305202313F} - C:\Archivos de programa\Windows Live\Messenger\msgrapp.14.0.8117.0416.dll (Microsoft Corporation)
O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Archivos de programa\Common Files\microsoft shared\Help\hxds.dll (Microsoft Corporation)
O18 - Protocol\Handler\msnim {828030A1-22C1-4009-854F-8E305202313F} - C:\Archivos de programa\Windows Live\Messenger\msgrapp.14.0.8117.0416.dll (Microsoft Corporation)
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Archivos de programa\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\Archivos de programa\Common Files\microsoft shared\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)
O20 - AppInit_DLLs: (c:\progra~2\browse~1\25911~1.18\{c16c1~1\mngr.dll) - File not found
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\System32\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\System32\SystemPropertiesPerformance.exe (Microsoft Corporation)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O28 - HKLM ShellExecuteHooks: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Archivos de programa\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009/06/10 16:42:20 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O33 - MountPoints2\{9cf89a3d-1c53-11e2-83d3-001cc06c23e4}\Shell - "" = AutoRun
O33 - MountPoints2\{9cf89a3d-1c53-11e2-83d3-001cc06c23e4}\Shell\AutoRun\command - "" = K:\AutoRun.exe
O33 - MountPoints2\{c078c4f4-6711-11e2-986d-001cc06c23e4}\Shell - "" = AutoRun
O33 - MountPoints2\{c078c4f4-6711-11e2-986d-001cc06c23e4}\Shell\AutoRun\command - "" = K:\AutoRun.exe
O33 - MountPoints2\{d70bcaf1-783c-11e2-9c63-001cc06c23e4}\Shell - "" = AutoRun
O33 - MountPoints2\{d70bcaf1-783c-11e2-9c63-001cc06c23e4}\Shell\AutoRun\command - "" = K:\AutoRun.exe
O33 - MountPoints2\{fd85b255-09d0-11e2-b7ce-001cc06c23e4}\Shell - "" = AutoRun
O33 - MountPoints2\{fd85b255-09d0-11e2-b7ce-001cc06c23e4}\Shell\AutoRun\command - "" = E:\AutoRun.exe
O33 - MountPoints2\{fd85b26b-09d0-11e2-b7ce-001cc06c23e4}\Shell - "" = AutoRun
O33 - MountPoints2\{fd85b26b-09d0-11e2-b7ce-001cc06c23e4}\Shell\AutoRun\command - "" = K:\AutoRun.exe
O33 - MountPoints2\J\Shell - "" = AutoRun
O33 - MountPoints2\J\Shell\AutoRun\command - "" = J:\autorun.exe
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)

NetSvcs: FastUserSwitchingCompatibility - File not found
NetSvcs: Ias - C:\Windows\System32\ias.dll (Microsoft Corporation)
NetSvcs: Nla - File not found
NetSvcs: Ntmssvc - File not found
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: SRService - File not found
NetSvcs: WmdmPmSp - File not found
NetSvcs: LogonHours - File not found
NetSvcs: PCAudit - File not found
NetSvcs: helpsvc - File not found
NetSvcs: uploadmgr - File not found


SafeBootMin: Base - Driver Group
SafeBootMin: Boot Bus Extender - Driver Group
SafeBootMin: Boot file system - Driver Group
SafeBootMin: File system - Driver Group
SafeBootMin: Filter - Driver Group
SafeBootMin: HelpSvc - Service
SafeBootMin: NTDS - File not found
SafeBootMin: PCI Configuration - Driver Group
SafeBootMin: PNP Filter - Driver Group
SafeBootMin: Primary disk - Driver Group
SafeBootMin: sacsvr - Service
SafeBootMin: SCSI Class - Driver Group
SafeBootMin: System Bus Extender - Driver Group
SafeBootMin: vmms - Service
SafeBootMin: WinDefend - C:\Archivos de programa\Windows Defender\MpSvc.dll (Microsoft Corporation)
SafeBootMin: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers
SafeBootMin: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive
SafeBootMin: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive
SafeBootMin: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller
SafeBootMin: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc
SafeBootMin: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard
SafeBootMin: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse
SafeBootMin: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters
SafeBootMin: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter
SafeBootMin: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System
SafeBootMin: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive
SafeBootMin: {533C5B84-EC70-11D2-9505-00C04F79DEAF} - Volume shadow copy
SafeBootMin: {6BDD1FC1-810F-11D0-BEC7-08002BE2092F} - IEEE 1394 Bus host controllers
SafeBootMin: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume
SafeBootMin: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices
SafeBootMin: {D48179BE-EC20-11D1-B6B8-00C04FA372A7} - SBP2 IEEE 1394 Devices
SafeBootMin: {D94EE5D8-D189-4994-83D2-F68D7D41B0E6} - SecurityDevices

[color=#E56717]========== Files/Folders - Created Within 360 Days ==========/color

[2013/03/07 22:05:19 | 000,000,000 | ---D | C] -- C:\Users\Familia\AppData\Roaming\Malwarebytes
[2013/03/07 22:05:17 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware
[2013/03/07 22:05:16 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
[2013/03/07 22:05:15 | 000,021,104 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbam.sys
[2013/03/07 22:05:15 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware
[2013/03/07 22:05:01 | 000,000,000 | ---D | C] -- C:\Users\Familia\AppData\Local\Programs
[2013/03/07 17:10:37 | 000,000,000 | ---D | C] -- C:\Users\Familia\AppData\Roaming\Skype
[2013/03/07 17:10:24 | 000,000,000 | R--D | C] -- C:\Program Files\Skype
[2013/03/07 17:10:24 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
[2013/03/07 17:10:24 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Skype
[2013/03/07 17:10:16 | 000,000,000 | ---D | C] -- C:\ProgramData\Skype
[2013/03/07 09:10:59 | 000,000,000 | ---D | C] -- C:\Users\Familia\Documents\Heroes of Newerth (Latin America)
[2013/03/04 09:57:23 | 000,000,000 | ---D | C] -- C:\ProgramData\LightScribe
[2013/02/18 12:19:14 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\337
[2013/02/18 12:17:43 | 000,000,000 | ---D | C] -- C:\Program Files\Desk 365
[2013/02/18 12:16:05 | 000,000,000 | ---D | C] -- C:\Users\Familia\AppData\Roaming\Desk 365
[2013/02/16 12:34:54 | 000,000,000 | ---D | C] -- C:\Users\Familia\Documents\KONAMI
[2013/02/16 12:22:50 | 000,000,000 | ---D | C] -- C:\ProgramData\KONAMI
[2013/02/04 10:15:24 | 000,000,000 | ---D | C] -- C:\Program Files\KONAMI
[2013/02/04 09:59:11 | 000,000,000 | ---D | C] -- C:\PES
[2013/01/31 09:38:08 | 000,000,000 | ---D | C] -- C:\Crash
[2013/01/31 09:27:11 | 000,000,000 | ---D | C] -- C:\Windows\System32\directx
[2013/01/24 10:07:05 | 000,000,000 | ---D | C] -- C:\Windows\San Andreas Mod Installer
[2013/01/24 10:07:05 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\San Andreas Mod Installer
[2013/01/24 10:07:05 | 000,000,000 | ---D | C] -- C:\Program Files\San Andreas Mod Installer
[2013/01/24 08:51:58 | 000,000,000 | ---D | C] -- C:\ProgramData\Google
[2013/01/24 08:51:46 | 000,000,000 | ---D | C] -- C:\Windows\System32\Adobe
[2013/01/17 22:50:35 | 000,000,000 | ---D | C] -- C:\Users\Familia\Application Data
[2013/01/17 21:18:20 | 000,000,000 | ---D | C] -- C:\Users\Familia\AppData\Local\ElevatedDiagnostics
[2013/01/07 12:42:27 | 000,000,000 | ---D | C] -- C:\Windows\EffectResources
[2013/01/02 09:37:48 | 000,000,000 | ---D | C] -- C:\Users\Familia\AppData\Local\Chromium
[2013/01/01 21:41:29 | 000,000,000 | ---D | C] -- C:\Users\Familia\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Heroes of Newerth (Latin America)
[2013/01/01 21:41:29 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Heroes of Newerth (Latin America)
[2013/01/01 21:38:26 | 000,000,000 | ---D | C] -- C:\Program Files\Heroes of Newerth (Latin America)
[2012/12/15 10:50:59 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Master Collection CS4
[2012/12/11 19:15:50 | 000,000,000 | ---D | C] -- C:\Users\Familia\AppData\Local\Facebook
[2012/12/08 15:37:06 | 000,000,000 | ---D | C] -- C:\Users\Familia\AppData\Roaming\.minecraft
[2012/12/08 15:37:05 | 000,000,000 | ---D | C] -- C:\Users\Familia\AppData\Roaming\NVIDIA
[2012/12/06 00:00:28 | 000,000,000 | ---D | C] -- C:\Users\Familia\AppData\Local\WMTools Downloaded Files
[2012/12/05 23:49:43 | 000,000,000 | ---D | C] -- C:\Program Files\Movie Maker 2.6
[2012/12/04 09:51:23 | 000,000,000 | ---D | C] -- C:\Windows\System32\appmgmt
[2012/12/03 19:10:54 | 000,000,000 | ---D | C] -- C:\ProgramData\SimilarSites
[2012/12/03 19:10:39 | 000,000,000 | ---D | C] -- C:\Users\Familia\AppData\Roaming\SimilarSites
[2012/12/03 19:08:06 | 000,000,000 | ---D | C] -- C:\Users\Familia\AppData\Roaming\Babylon
[2012/12/03 19:08:06 | 000,000,000 | ---D | C] -- C:\ProgramData\Babylon
[2012/12/03 17:51:42 | 000,000,000 | ---D | C] -- C:\Users\Familia\Desktop\video amarus
[2012/12/03 17:24:27 | 000,000,000 | ---D | C] -- C:\Users\Familia\AppData\Roaming\WindSolutions
[2012/12/03 17:24:27 | 000,000,000 | ---D | C] -- C:\ProgramData\WindSolutions
[2012/12/03 17:10:58 | 000,000,000 | ---D | C] -- C:\Users\Familia\fotos ipad
[2012/12/03 15:13:10 | 000,000,000 | ---D | C] -- C:\Users\Familia\Desktop\TAMARA GOMEZ TENORIO
[2012/11/24 23:44:41 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\PC Tools
[2012/11/19 15:39:51 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
[2012/11/19 15:38:48 | 000,000,000 | ---D | C] -- C:\Program Files\iPod
[2012/11/19 15:38:47 | 000,000,000 | ---D | C] -- C:\Program Files\iTunes
[2012/11/19 15:38:47 | 000,000,000 | ---D | C] -- C:\ProgramData\188F1432-103A-4ffb-80F1-36B633C5C9E1
[2012/11/19 07:48:24 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
[2012/11/18 12:48:03 | 000,000,000 | ---D | C] -- C:\ProgramData\NVIDIA
[2012/11/18 12:47:22 | 000,052,584 | ---- | C] (Khronos Group) -- C:\Windows\System32\OpenCL.dll
[2012/11/18 12:46:37 | 000,000,000 | ---D | C] -- C:\ProgramData\NVIDIA Corporation
[2012/11/18 12:46:23 | 000,000,000 | ---D | C] -- C:\Program Files\NVIDIA Corporation
[2012/10/28 23:38:57 | 000,000,000 | ---D | C] -- C:\Users\Familia\Desktop\Trabajo Victor
[2012/10/28 23:14:06 | 000,000,000 | ---D | C] -- C:\Users\Familia\Fotos camara 2012
[2012/10/13 19:15:33 | 000,000,000 | ---D | C] -- C:\Users\Familia\AppData\Roaming\Unity
[2012/09/28 20:16:50 | 000,000,000 | ---D | C] -- C:\Users\Familia\AppData\Roaming\TGCMLog
[2012/09/28 20:16:50 | 000,000,000 | ---D | C] -- C:\Users\Familia\AppData\Roaming\Telefónica
[2012/09/28 20:15:46 | 000,000,000 | ---D | C] -- C:\Program Files\HUAWEI Modem Driver
[2012/09/28 20:15:01 | 000,000,000 | ---D | C] -- C:\ProgramData\DatacardService
[2012/09/26 20:04:31 | 000,000,000 | ---D | C] -- C:\Program Files\QuickTime
[2012/09/26 19:57:28 | 000,000,000 | ---D | C] -- C:\Users\Familia\Desktop\tamara premiacion
[2012/09/26 19:54:58 | 000,000,000 | ---D | C] -- C:\Users\Familia\Desktop\Adobe CS3
[2012/09/22 19:12:19 | 000,000,000 | ---D | C] -- C:\Users\Familia\AppData\Roaming\WinRAR
[2012/08/27 18:14:07 | 000,000,000 | ---D | C] -- C:\ProgramData\FLEXnet
[2012/08/17 21:49:22 | 000,000,000 | ---D | C] -- C:\ProgramData\ALM
[2012/08/17 21:47:30 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\PX Storage Engine
[2012/08/17 21:36:55 | 000,000,000 | ---D | C] -- C:\Program Files\Adobe Media Player
[2012/08/17 21:36:55 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe
[2012/08/17 21:35:17 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Adobe AIR
[2012/08/17 21:32:30 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Macrovision Shared
[2012/08/17 21:15:26 | 000,000,000 | ---D | C] -- C:\CS4
[2012/08/09 21:14:43 | 000,000,000 | ---D | C] -- C:\Users\Familia\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PIPO
[2012/08/09 21:14:35 | 000,000,000 | ---D | C] -- C:\PIPOMATE
[2012/08/04 20:25:26 | 000,000,000 | ---D | C] -- C:\Users\Familia\AppData\Local\Retrogamer_4w
[2012/07/14 11:46:45 | 000,000,000 | ---D | C] -- C:\Users\Familia\AppData\Local\Roblox
[2012/07/13 21:08:19 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Symantec Shared
[2012/06/28 21:29:37 | 000,000,000 | ---D | C] -- C:\ProgramData\Sun
[2012/06/28 21:29:36 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Java
[2012/06/28 21:29:11 | 000,000,000 | ---D | C] -- C:\Program Files\Oracle
[2012/06/28 21:28:02 | 000,000,000 | ---D | C] -- C:\Program Files\Java
[2012/06/28 21:23:07 | 000,000,000 | ---D | C] -- C:\ProgramData\GameTap Web Player
[2012/06/28 21:23:07 | 000,000,000 | ---D | C] -- C:\Program Files\GameTap Web Player
[2012/06/28 21:21:08 | 000,000,000 | ---D | C] -- C:\Program Files\Retrogamer_4w
[2012/06/20 22:11:28 | 000,000,000 | ---D | C] -- C:\ProgramData\Symantec
[2012/06/20 22:11:24 | 000,000,000 | R--D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Norton Security Scan
[2012/06/20 22:11:24 | 000,000,000 | ---D | C] -- C:\Windows\System32\drivers\NSS
[2012/06/20 22:11:24 | 000,000,000 | ---D | C] -- C:\Program Files\Norton Security Scan
[2012/06/20 22:11:24 | 000,000,000 | ---D | C] -- C:\Windows\System32\drivers\NSS\0307020.005
[2012/06/20 22:11:23 | 000,000,000 | ---D | C] -- C:\ProgramData\Norton
[2012/06/18 19:32:18 | 000,000,000 | ---D | C] -- C:\Users\Familia\AppData\Local\SCE
[2012/06/18 19:32:14 | 000,000,000 | ---D | C] -- C:\Users\Familia\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
[2012/06/01 19:36:49 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
[2012/05/29 22:24:45 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Maintenance Service
[2012/05/29 22:24:45 | 000,000,000 | ---D | C] -- C:\ProgramData\Mozilla
[2012/05/14 22:20:19 | 000,000,000 | ---D | C] -- C:\Users\Familia\Desktop\Video Promo
[2012/05/05 13:19:35 | 000,000,000 | ---D | C] -- C:\Users\Familia\AppData\Roaming\vlc
[2012/05/05 13:19:18 | 000,000,000 | ---D | C] -- C:\Program Files\VideoLAN
[2012/04/29 19:07:27 | 000,000,000 | ---D | C] -- C:\nDoors
[2012/04/27 21:49:54 | 000,000,000 | ---D | C] -- C:\Users\Familia\AppData\Roaming\uTorrent
[2012/04/26 18:57:30 | 000,000,000 | ---D | C] -- C:\Users\Familia\Documents\Electronic Arts
[2012/04/26 18:56:32 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft WSE
[2012/04/26 18:48:03 | 000,000,000 | ---D | C] -- C:\Program Files\Electronic Arts
[2012/04/22 13:47:48 | 000,000,000 | ---D | C] -- C:\Users\Familia\AppData\Local\PowerChallenge
[2012/04/01 19:30:57 | 000,000,000 | ---D | C] -- C:\Users\Familia\Documents\yanick
[2012/03/13 22:25:48 | 000,000,000 | ---D | C] -- C:\Program Files\Pando Networks
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]

[color=#E56717]========== Files - Modified Within 360 Days ==========/color

[2013/03/07 22:05:17 | 000,001,071 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
[2013/03/07 22:03:00 | 000,001,026 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2013/03/07 22:00:52 | 000,001,022 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2013/03/07 22:00:39 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2013/03/07 22:00:35 | 1608,671,232 | -HS- | M] () -- C:\hiberfil.sys
[2013/03/07 21:59:51 | 000,010,000 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2013/03/07 21:59:51 | 000,010,000 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2013/03/07 17:22:02 | 000,000,838 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2013/03/07 17:10:24 | 000,002,503 | ---- | M] () -- C:\Users\Public\Desktop\Skype.lnk
[2013/03/07 16:20:03 | 000,000,936 | ---- | M] () -- C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-3798790297-2478269454-3874696145-1000UA.job
[2013/03/07 09:11:00 | 000,002,019 | ---- | M] () -- C:\Users\Familia\Desktop\Heroes of Newerth.lnk
[2013/03/06 22:09:09 | 000,001,326 | ---- | M] () -- C:\Users\Familia\Desktop\Windows DVD Maker.lnk
[2013/02/28 19:20:00 | 000,000,914 | ---- | M] () -- C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-3798790297-2478269454-3874696145-1000Core.job
[2013/02/25 15:28:09 | 000,000,067 | ---- | M] () -- C:\Users\Familia\Desktop\Mostrar el contenido.url
[2013/02/24 19:25:45 | 000,001,242 | ---- | M] () -- C:\Users\Familia\Desktop\Paint (2).lnk
[2013/02/24 19:25:44 | 000,002,262 | ---- | M] () -- C:\Users\Familia\Desktop\Galería fotográfica de Windows Live.lnk
[2013/02/24 19:25:44 | 000,002,036 | ---- | M] () -- C:\Users\Familia\Desktop\The Sims(TM) 3.lnk
[2013/02/24 19:25:44 | 000,002,018 | ---- | M] () -- C:\Users\Familia\Desktop\avast! Antivirus.lnk
[2013/02/24 19:25:44 | 000,001,993 | ---- | M] () -- C:\Users\Familia\Desktop\PowerDVD.lnk
[2013/02/24 19:25:44 | 000,001,991 | ---- | M] () -- C:\Users\Familia\Desktop\Adobe Acrobat 9 Pro.lnk
[2013/02/24 19:25:44 | 000,001,984 | ---- | M] () -- C:\Users\Familia\Desktop\Adobe Reader 8.lnk
[2013/02/24 19:25:44 | 000,001,753 | ---- | M] () -- C:\Users\Familia\Desktop\iTunes.lnk
[2013/02/24 19:25:44 | 000,000,990 | ---- | M] () -- C:\Users\Familia\Desktop\amcap.lnk
[2013/02/24 19:25:44 | 000,000,819 | ---- | M] () -- C:\Users\Familia\Desktop\Adobe CS3 - Acceso directo.lnk
[2013/02/22 19:21:46 | 000,000,440 | -H-- | M] () -- C:\Windows\tasks\Norton Security Scan for Familia.job
[2013/02/18 12:15:54 | 000,002,546 | ---- | M] () -- C:\Users\Familia\Desktop\Google Chrome.lnk
[2013/02/18 12:15:54 | 000,001,593 | ---- | M] () -- C:\Users\Familia\Desktop\Internet Explorer.lnk
[2013/02/17 23:12:10 | 000,703,602 | ---- | M] () -- C:\Windows\System32\perfh00A.dat
[2013/02/17 23:12:10 | 000,615,810 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2013/02/17 23:12:10 | 000,137,600 | ---- | M] () -- C:\Windows\System32\perfc00A.dat
[2013/02/17 23:12:10 | 000,106,190 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2013/02/13 19:26:38 | 002,341,792 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT
[2012/12/14 16:49:28 | 000,021,104 | ---- | M] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbam.sys
[2012/12/12 07:26:01 | 000,663,861 | ---- | M] () -- C:\Users\Familia\Desktop\Tarifario Escolar 2012 AGV Alto Mayo y Tarapoto PG.pdf
[2012/12/05 23:50:41 | 000,003,584 | ---- | M] () -- C:\Users\Familia\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2012/11/06 12:33:40 | 000,005,484 | ---- | M] () -- C:\Users\Familia\GetAttachment 5.jpg
[2012/11/06 12:30:23 | 000,005,879 | ---- | M] () -- C:\Users\Familia\GetAttachment 4.jpg
[2012/11/06 11:43:33 | 000,009,515 | ---- | M] () -- C:\Users\Familia\GetAttachment 2.jpg
[2012/11/06 11:43:16 | 000,010,170 | ---- | M] () -- C:\Users\Familia\foto 1.jpg
[2012/11/06 11:42:48 | 000,008,239 | ---- | M] () -- C:\Users\Familia\GetAttachment.jpg
[2012/10/10 21:14:40 | 000,052,584 | ---- | M] (Khronos Group) -- C:\Windows\System32\OpenCL.dll
[2012/10/10 21:14:28 | 000,012,865 | ---- | M] () -- C:\Windows\System32\nvinfo.pb
[2012/09/28 20:17:07 | 000,000,000 | -H-- | M] () -- C:\Windows\System32\drivers\Msft_Kernel_ew_juextctrl_01007.Wdf
[2012/09/28 20:17:03 | 000,000,000 | -H-- | M] () -- C:\Windows\System32\drivers\Msft_Kernel_ew_jucdcacm_01007.Wdf
[2012/09/28 20:16:22 | 000,000,000 | -H-- | M] () -- C:\Windows\System32\drivers\Msft_Kernel_ew_jubusenum_01007.Wdf
[2012/09/22 17:30:10 | 000,224,429 | ---- | M] () -- C:\Windows\hphins34.dat
[2012/09/12 20:41:48 | 000,000,000 | -H-- | M] () -- C:\Windows\System32\drivers\Msft_User_WpdMtpDr_01_09_00.Wdf
[2012/08/12 17:09:33 | 179,662,400 | ---- | M] () -- C:\Windows\MEMORY.DMP
[2012/08/09 21:14:43 | 000,000,079 | ---- | M] () -- C:\Windows\MTB40.INI
[2012/08/09 21:14:43 | 000,000,061 | ---- | M] () -- C:\Windows\ASYM.INI
[2012/08/09 21:12:50 | 000,000,000 | RHS- | M] () -- C:\MSDOS.SYS
[2012/08/09 21:12:50 | 000,000,000 | RHS- | M] () -- C:\IO.SYS
[2012/08/09 15:37:07 | 000,040,960 | ---- | M] () -- C:\Windows\System32\nwsftUninstall.exe
[2012/04/29 19:19:52 | 000,001,631 | ---- | M] () -- C:\Users\Familia\Atlantica Online.lnk
[2012/04/18 19:50:53 | 000,000,172 | ---- | M] () -- C:\Windows\System32\drivers\NSS\0307020.005\isolate.ini
[2012/03/14 18:42:49 | 000,000,656 | RHS- | M] () -- C:\Users\Familia\ntuser.pol
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]

[color=#E56717]========== Files Created - No Company Name ==========/color

[2013/03/07 22:05:17 | 000,001,071 | ---- | C] () -- C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
[2013/03/07 17:10:24 | 000,002,503 | ---- | C] () -- C:\Users\Public\Desktop\Skype.lnk
[2013/03/07 09:11:00 | 000,002,019 | ---- | C] () -- C:\Users\Familia\Desktop\Heroes of Newerth.lnk
[2013/03/06 22:09:09 | 000,001,326 | ---- | C] () -- C:\Users\Familia\Desktop\Windows DVD Maker.lnk
[2013/02/25 15:28:09 | 000,000,067 | ---- | C] () -- C:\Users\Familia\Desktop\Mostrar el contenido.url
[2013/02/24 19:25:45 | 000,001,242 | ---- | C] () -- C:\Users\Familia\Desktop\Paint (2).lnk
[2013/02/24 19:25:44 | 000,002,262 | ---- | C] () -- C:\Users\Familia\Desktop\Galería fotográfica de Windows Live.lnk
[2013/02/24 19:25:44 | 000,002,036 | ---- | C] () -- C:\Users\Familia\Desktop\The Sims(TM) 3.lnk
[2013/02/24 19:25:44 | 000,002,018 | ---- | C] () -- C:\Users\Familia\Desktop\avast! Antivirus.lnk
[2013/02/24 19:25:44 | 000,001,993 | ---- | C] () -- C:\Users\Familia\Desktop\PowerDVD.lnk
[2013/02/24 19:25:44 | 000,001,991 | ---- | C] () -- C:\Users\Familia\Desktop\Adobe Acrobat 9 Pro.lnk
[2013/02/24 19:25:44 | 000,001,984 | ---- | C] () -- C:\Users\Familia\Desktop\Adobe Reader 8.lnk
[2013/02/24 19:25:44 | 000,001,753 | ---- | C] () -- C:\Users\Familia\Desktop\iTunes.lnk
[2013/02/24 19:25:44 | 000,000,990 | ---- | C] () -- C:\Users\Familia\Desktop\amcap.lnk
[2013/02/24 19:25:44 | 000,000,819 | ---- | C] () -- C:\Users\Familia\Desktop\Adobe CS3 - Acceso directo.lnk
[2013/01/31 09:27:11 | 000,002,538 | ---- | C] () -- C:\Users\Familia\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\DC Universe Online Live.lnk
[2012/12/11 19:15:58 | 000,000,936 | ---- | C] () -- C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-3798790297-2478269454-3874696145-1000UA.job
[2012/12/11 19:15:57 | 000,000,914 | ---- | C] () -- C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-3798790297-2478269454-3874696145-1000Core.job
[2012/12/05 23:49:43 | 000,002,495 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Movie Maker 2.6.lnk
[2012/12/05 23:30:54 | 000,000,838 | ---- | C] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2012/11/28 18:49:42 | 000,663,861 | ---- | C] () -- C:\Users\Familia\Desktop\Tarifario Escolar 2012 AGV Alto Mayo y Tarapoto PG.pdf
[2012/11/06 12:02:59 | 000,005,484 | ---- | C] () -- C:\Users\Familia\GetAttachment 5.jpg
[2012/11/06 12:02:48 | 000,005,879 | ---- | C] () -- C:\Users\Familia\GetAttachment 4.jpg
[2012/11/06 11:43:42 | 000,009,515 | ---- | C] () -- C:\Users\Familia\GetAttachment 2.jpg
[2012/11/06 11:43:31 | 000,010,170 | ---- | C] () -- C:\Users\Familia\foto 1.jpg
[2012/11/06 11:43:14 | 000,008,239 | ---- | C] () -- C:\Users\Familia\GetAttachment.jpg
[2012/10/20 00:16:43 | 001,006,134 | ---- | C] () -- C:\Users\Familia\Imagen0016.jpg
[2012/10/20 00:16:42 | 001,305,432 | ---- | C] () -- C:\Users\Familia\Desktop\Imagen0010.jpg
[2012/10/20 00:16:42 | 001,249,710 | ---- | C] () -- C:\Users\Familia\Desktop\Imagen0009.jpg
[2012/10/20 00:16:42 | 001,197,005 | ---- | C] () -- C:\Users\Familia\Desktop\Imagen0011.jpg
[2012/10/20 00:16:42 | 000,790,372 | ---- | C] () -- C:\Users\Familia\Desktop\Imagen0008.jpg
[2012/10/20 00:16:42 | 000,725,518 | ---- | C] () -- C:\Users\Familia\Desktop\Imagen0007.jpg
[2012/10/10 21:14:28 | 000,012,865 | ---- | C] () -- C:\Windows\System32\nvinfo.pb
[2012/09/28 20:17:07 | 000,000,000 | -H-- | C] () -- C:\Windows\System32\drivers\Msft_Kernel_ew_juextctrl_01007.Wdf
[2012/09/28 20:17:03 | 000,000,000 | -H-- | C] () -- C:\Windows\System32\drivers\Msft_Kernel_ew_jucdcacm_01007.Wdf
[2012/09/28 20:16:22 | 000,000,000 | -H-- | C] () -- C:\Windows\System32\drivers\Msft_Kernel_ew_jubusenum_01007.Wdf
[2012/09/26 20:04:17 | 002,463,976 | ---- | C] () -- C:\Windows\System32\NPSWF32.dll
[2012/09/22 17:30:10 | 000,000,606 | ---- | C] () -- C:\Windows\hphmdl34.dat.temp
[2012/09/12 20:41:48 | 000,000,000 | -H-- | C] () -- C:\Windows\System32\drivers\Msft_User_WpdMtpDr_01_09_00.Wdf
[2012/08/17 21:38:19 | 000,000,979 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat.com.lnk
[2012/08/09 21:14:43 | 000,000,478 | ---- | C] () -- C:\Windows\WIN._IN
[2012/08/09 21:14:43 | 000,000,079 | ---- | C] () -- C:\Windows\MTB40.INI
[2012/08/09 21:14:43 | 000,000,061 | ---- | C] () -- C:\Windows\ASYM.INI
[2012/08/09 21:12:50 | 000,000,000 | RHS- | C] () -- C:\MSDOS.SYS
[2012/08/09 21:12:50 | 000,000,000 | RHS- | C] () -- C:\IO.SYS
[2012/08/09 15:37:07 | 000,040,960 | ---- | C] () -- C:\Windows\System32\nwsftUninstall.exe
[2012/06/20 22:11:28 | 000,000,440 | -H-- | C] () -- C:\Windows\tasks\Norton Security Scan for Familia.job
[2012/06/20 22:11:24 | 000,000,172 | ---- | C] () -- C:\Windows\System32\drivers\NSS\0307020.005\isolate.ini
[2012/06/01 19:36:49 | 000,002,546 | ---- | C] () -- C:\Users\Familia\Desktop\Google Chrome.lnk
[2012/06/01 19:36:35 | 000,001,026 | ---- | C] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2012/06/01 19:36:33 | 000,001,022 | ---- | C] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2012/05/14 22:32:38 | 000,003,584 | ---- | C] () -- C:\Users\Familia\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2012/04/29 19:19:52 | 000,001,631 | ---- | C] () -- C:\Users\Familia\Atlantica Online.lnk
[2012/03/05 19:31:18 | 000,000,656 | RHS- | C] () -- C:\Users\Familia\ntuser.pol
[2012/01/18 21:33:35 | 000,224,429 | ---- | C] () -- C:\Windows\hphins34.dat
[2012/01/18 21:22:35 | 000,131,072 | ---- | C] () -- C:\Windows\System32\vmcoinst_vc0323.dll
[2012/01/18 20:54:48 | 000,000,000 | ---- | C] () -- C:\Windows\lgfwup.ini
[2012/01/18 20:20:27 | 000,000,017 | ---- | C] () -- C:\Users\Familia\AppData\Local\resmon.resmoncfg

[color=#E56717]========== ZeroAccess Check ==========/color

[2009/07/13 23:42:31 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]
2
Estan sencillo...Vas a internet explore haces clic en propiedades y donde dice Destino borras todo y pones: "C:\Program Files\Internet Explorer\iexplore.exe"
Y YA ESTA...NO APARECE MAS
0
eso me funciono con explorer y con chrome? no puedo :(
0
quisiera saber como hacerlo para chrome.. porfavoooooor!!! URGE
0
usuario anónimo
13 feb 2013 a las 03:22
Ingresa al Siguiente Link:Se encuentra completamente explicado paso por paso,si necesita ayuda utilize Google Traductor:

http://22find.com/static/22find/uninstall.html <---Ingles


http://translate.google.com.mx/translate?hl=es-419&sl=en&tl=es&u=http%3A%2F%2F22find.com%2Fstatic%2F22find%2Funinstall.html <--Español

Una vez que haya Finalizado lo de arriba,descarga e instala Malwarebytes:

http://www.filehippo.com/es/download_malwarebytes_anti_malware/

1-Ejecuta el archivo setup,realiza la instalacion y antes de finalizar asegurate de dejar activadas las casillas de "Actualizar Malwarebytes y la de ejecutarse
ver Imagen:
https://malwaretips.com/blogs/wp-content/uploads/2013/01/malwarebytes-installation.jpg

2.-Ejecuta o selecciona "Perform Full Scan(Scan Completo)
Ver Imagen:
https://malwaretips.com/blogs/wp-content/uploads/2013/01/malwarebytes-quick-scan.jpg

3.-Se iniciara el Analisis o scan,durante ese proceso se Mostrara la cantidad de malware Detectado.
Ver Imagen:
https://malwaretips.com/blogs/wp-content/uploads/2013/01/malwarebytes-scan.jpg

4.-Una vez Finalizado,seleccionamos Ok y clic en Mostrar Resultados(Show results).
Ver Imagen:
https://malwaretips.com/blogs/wp-content/uploads/2013/01/malwarebytes-scan-results.jpg

5.-En la siguiene Ventana Apareceran todos los archivos,carpetas y registros Infectados asi como tambien el Nombre de la Variante Virus(Color Rojo) a su lado izquierdo apareceran unas casillas "Las cuales deberas de asegurarte que todos! se encuentran seleccionados,una vez que se hayaa asegurado que todas las infecciones se encuentren seleccionadas,hacemos click en Remover seleccionado(Remove Selected).
Ver Imagen:
https://malwaretips.com/blogs/wp-content/uploads/2013/01/malwarebytes-virus-removal.jpg

Una vez removidas las infecciones se te pedira reiniciar,Aceptamos y listo.


Instalar Hitman Pro:
1.-De acuerdo a la version de tu sistema operativo 32 o 64 bits descarga e instala Hitman Pro:

https://www.hitmanpro.com/en-us/downloads.aspx

2.-Durante la Instalacion solo hazemos click en siguiente(Next).
Ver Imagen:
https://malwaretips.com/blogs/wp-content/uploads/2012/11/hitmapro-start-scan.jpg

3.-Se iniciara el scan o analisis,durante ese procesos Hitman pro mostrara c/u de las infecciones Detectadas,Nombres y Ubicacion dentro de nuestro sistema
Ver Imagen:
https://malwaretips.com/blogs/wp-content/uploads/2012/11/hitmanpro-scan.jpg

4.-Al finalizar el scan,hacemos clic en la Pestaña de "Todas y C/u de las Infecciones y escogemos ---> Borrar/Eliminar(Delete),una vez que se haya asegurado que todas Infecciones tengan seleccionada la accion de Eliminar o borrar,hacemos click en Siguiente(Next).
Ver Imagen:
https://malwaretips.com/blogs/wp-content/uploads/2012/11/hitmanpro-scan-results.jpg

5.-En la siguiente ventana hacemos Click en "Activacion de Licencia Gratis" clic en siguiente(Next).
Ver Imagen:
https://malwaretips.com/blogs/wp-content/uploads/2012/11/hitmanpro-activation.jpg


Con esto 22 find sera removido de tu Sistema.


Saludos
0
pitiris Mensajes enviados 4 Fecha de inscripción domingo, 31 de mayo de 2009 Estatus Miembro Última intervención sábado, 16 de febrero de 2013
16 feb 2013 a las 13:37
NO HA FUNCIONADO,pese a seguir tus pasos que por cierto te agradezco, estaban muy claros,cuando he reiniciado el ordenador alli estaba la (con perdón) P... página 22 find. Si teneis otro sistema para solucionarlo ,bien, sino tendre que llevar el PC a un "especialista de pago" ja ja ja .. GRACIAS POR VUESTRA AYUDA,
0
Guillermo arturo Mensajes enviados 1 Fecha de inscripción jueves, 21 de febrero de 2013 Estatus Miembro Última intervención jueves, 21 de febrero de 2013
21 feb 2013 a las 00:42
No ha funcionado, compré el programa, baje el adicional, mas de dos horas en esto y nada..22find continua en mi PC..que lata!
0
Descarga y arrastra el archivo de OTL.exe a tu escritorio
http://www.geekstogo.com/forum/files/file/398-otl-oldtimers-list-it/

Para Ejecutar OTL sigue estos pasos :

Cerrar todos programas que tengas abiertos y hacer doble click en el ícono de OTL para ejecutarlo.
Dejarlo correr y esperar a que aparezca el menú de OTL..
Cuando salga el menú de OTL, debes cambiar debajo de: "Tipo de Análisis" poniendo Resultado Mínimo.
Marcar la casilla Analizar Todos.
Marcar las opciones: Buscar LOP y Buscar Purity.
Marcar las Opciones Omitir Archivos De Microsoft y Usar Listado de Compañías Reconocidas.
Copiar y Pegar las lineas del siguiente script bajo la casilla Análisis Personalizados/Código de Reparación:

NOTA: No copiar la palabra Codigo:
Código:
-----------------------------------------------------------------------------------------------------------------------
netsvcs
msconfig
safebootminimal
%systemdrive%\*.*
%windir%\Minidump\*.*
%appdata%\*.exe /ncn /s
%windir%\System32\*.sys /lockedfiles
--------------------------------------------------------------------------------------------------------------------

Presionar el botón "Analizar".
Una vez que termine, se abrirán dos (2) archivos, OTL.Txt y Extras.Txt. Éstos archivos estarán grabados en el mismo lugar donde OTL.exe fue descargado.
Copiar y pegar el contenido del archivo OTL.txt (Completo)en tu próxima respuesta.


Saludos.
0
Desde mi primer Respuesta deje el link donde se explica como intentar eliminarlo:

http://22find.com/static/22find/uninstall.html <---Ingles


http://translate.google.com.mx/translate?hl=es-419&sl=en&tl=es&u=http%3A%2F%2F22find.com%2Fstatic%2F22find%2Funinstall.html

Realizar Scans con Malwarebytes,etc.




Y jaferx 8 mar 2013, 04:29 ---->Que no quizo creear un post nuevo con su pregunta----->como inicio esta era la solucion,aunque sigue siendo necesario realizar un scan (Antispyware y Antivirus)en su equipo:

-Ejecutar OTL.exe
-Pega el siguiente script bajo la casilla Análisis Personalizados/Código de Reparación:



------------------------------------------------------------------------------------------------------------------------
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.istart123.com/newtab?utm_source=b&utm_medium=mlv&from=mlv&uid=ST3250318AS_9VME31BZXXXX9VME31BZ&ts=1361207757
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.istart123.com/newtab?utm_source=b&utm_medium=mlv&from=mlv&uid=ST3250318AS_9VME31BZXXXX9VME31BZ&ts=1361207757
IE - HKU\S-1-5-21-3798790297-2478269454-3874696145-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.istart123.com/newtab?utm_source=b&utm_medium=mlv&from=mlv&uid=ST3250318AS_9VME31BZXXXX9VME31BZ&ts=1361207757
FF - prefs.js..browser.search.defaultenginename: "22find"
FF - prefs.js..browser.search.order.1: "22find"
FF - prefs.js..browser.search.selectedEngine: "22find"
FF - prefs.js..browser.startup.homepage: "http://www.istart123.com/?utm_source=b&utm_medium=mlv&from=mlv&uid=ST3250318AS_9VME31BZXXXX9VME31BZ&ts=1361207749"
O20 - AppInit_DLLs: (c:\progra~2\browse~1\25911~1.18\{c16c1~1\mngr.dll) - File not found
[2012/12/03 19:08:06 | 000,000,000 | ---D | C] -- C:\Users\Familia\AppData\Roaming\Babylon
[2012/12/03 19:08:06 | 000,000,000 | ---D | C] -- C:\ProgramData\Babylon



:files
ipconfig /flushdns /c
ipconfig /renew /c

:commands
[resethosts]
[emptyflash]
[emptytemp]
[emptyjava]
[Reboot]
--------------------------------------------------------------------------------------------------------------------------

No es que sea facil o sencillo(Maria - 13 mar 2013, 12:43 y gustavo 18 mar 2013, 02:16 ) ,lo que sucede que en algunas ocasiones esto tipo de toolbars se encuentra acompañados por otras infecciones,de tal forma que muchos pueden tener la suerte de poderlo solucionar y otros posiblemente no,siempre es importante realizar scans y de acuerdo a los resultados de dichos scans,determinar cuales pasos seguir o herramientas utilizar para poder solucionar el problema.



Suerte.
0
vayan a inicio, ayuda y soporte técnico y restauren su sisterma a una fecha anterior y listo desaparece el 22find.
0
Hola jaferx

Primeramente te envio un saludo:

*Es importante que cuando se necesite ayuda Creear tu propio Post,independientemente si la causa o falla en tu equipo tenga algo de similitud con lo que se esta tratando en este post..

*Comentar o en su caso explicar cual es la falla que presenta tu sistema,el reporte que pegaste ''no explica del todo''cual es el problema que presenta tu equipo,en algunas ocasiones los usuarios leen los post para intententar resolver sus fallas, en algunos casos ayuda en otros no,el mal uso de algunas herramientas puede empeorar le falla o en su caso no podran solucionarlo.

Guillermo arturo - 21 feb 2013, 00:42
No ha funcionado, compré el programa, baje el adicional, mas de dos horas en esto y nada..22find continua en mi PC..que lata!

los sintomas pueden ser algo parecido,pero la solucion posiblemente no podra ser la misma,te invito a creear tu propio post y explica detalladamente la falla que presenta tu equipo.

Saludos.
0
Mucho mas simple...1ro desde "propiedades de internet" ahi borras la pagina de inicio 22find........ pone www."la pagina q quieras", despues de esto cerra el explorador, anda al "ICONO" del explorer y click derecho, "PROPIEDADES" nota q donde dice "DESTINO" aparece 22find q es lo q vas a borrar para solucionar completamente tu problema.
Espero q les haya servido, abrazo
0
yaaa, pero resulta que a mi en destino no me aparece ninguna extensión, es más sólo pone Internet y no me deja editarlo...Toy chiflando ya.AYUdaaa
0
me re sirvio. muchas gracias
0
esta es la solución, la pego de otro foro, funcionaaaaaaaaaaaaaaaaaaaaa HAY MUCHOS PORTALES Y MUCHOS POST CON RESPECTO A ESTA BASURA DEL 22FIND
ELIMINAS TODO, EXTENCIONES, REGISTRO, Y TODO LO NOMBRADO 22FIND Y SIGUE APARECIENDO EN TUS NAVEGADORES.
YO LA SOLUCIONE A LO CRIOLLO.
AL ICONO DE ACCESO DIRECTO DE GOOGLE CHROME LE DAS CON EL BOTON SECUNDARIO, EN PROPIEDADES, ACCESO DIRECTO.. Y EN LA DIRECCION DE "DESTINO" E "INICIAR EN" BORRAS TODO LO QUE SIGUE DESPUES DE CHROME.EXE .. VAS A VER QUE FIGURA 22FIND Y VARIOS NUMEROS.. BORRA TODO, APLICA. Y CHAU!.
ah! . lo último que tiene que poner es " ( las 2 comillas) porque yo no lo ponía y me daba error. para el que no le haya funcionado nada como a mi , esto siiiiiiiiiiiiiiiii
0