BSOD Windows 7

El Malwarebytes continúa analizando de momento. No probé lo de sacar los otros discos porque ni bien vi que la pc andaba, puse el Malwarebytes a correr, sentí que tenia que aprovechar la oportunidad. En cuanto a la limpieza del equipo, está mucho más limpio que antes. Hay un ventilador que no sé cómo limpiarlo (el que diseñó el gabinete…), porque no puedo acceder a él, los demás, excepto el de la fuente, estan limpios. Mismo están limpios los discos (muy limpios). Todavía queda algo de polvo como te había dicho, aunque poco, y ese ventilador del gabinete al que no llego (tiene 3 ventiladores el gabinete).

Luego en algún momento te podría pasar una foto de ese ventilador y de donde está , a ver si se te ocurre cómo sacarlo (y volverlo a poner). Pero quizás esto debería se otro tema pienso… Nunca en 7 años lo pude limpiar, pero a la vez nunca tuve problemas por ello.

Me la juego a que el sonido a “cortocircuito” proviene de:

1. Levemente de uno de los 3 discos rígidos que no son el C, quizá provenga del más viejo de esos 3.
2. Mayoritariamente del disco C

Recuerda que ayer te comenté que cuando el disco C no estaba puesto, el sonido estaba más bajo de volumen… si cuando luego lo conecté nuevamente, el sonido se hizo más fuerte… entonces el sonido en su “mayor potencia” corresponde quizás al disco C, y el otro, dado que era igual pero más leve, tal vez sea otro disco…

Un detalle que se me ha pasado por alto, y lo he escrito más arriba, pero no había reparado en ello: el sonido recién comienza a escucharse una vez pasó el logo del mother, o sea: cuando comienza a leerse internamente el disco C…

Malwarebytes ok. Todos los archivos los envié a Cuarentena.

Adwcleaner ok, aunque en el reinicio no se abrió solo el programa para mostrarme el informe. Todos los archivos los envié a Cuarentena.

Estoy de momento con el FRT. Ha marcado un error y luego se ha puesto a trabajar: “Requesting restore point… FAILED 0x8007043C”

Hoy seguramente ya tenga todo finalizado como para enviar los logs, esperemos que así sea.

Malwarebytes
www.malwarebytes.com

-Detalles del registro-
Fecha del análisis: 22/1/20
Hora del análisis: 11:20
Archivo de registro: 45f8e162-3d22-11ea-b579-00ff76aa66bd.json

-Información del software-
Versión: 4.0.4.49
Versión de los componentes: 1.0.793
Versión del paquete de actualización: 1.0.18004
Licencia: Prueba

-Información del sistema-
SO: Windows 7 Service Pack 1
CPU: x64
Sistema de archivos: NTFS
Usuario: System

-Resumen del análisis-
Tipo de análisis: Análisis personalizado
Análisis iniciado por:: Programador de tareas
Resultado: Completado
Objetos analizados: 725204
Amenazas detectadas: 32
Amenazas en cuarentena: 32
Tiempo transcurrido: 3 hr, 37 min, 23 seg

-Opciones de análisis-
Memoria: Activado
Inicio: Activado
Sistema de archivos: Activado
Archivo: Activado
Rootkits: Desactivado
Heurística: Activado
PUP: Detectar
PUM: Detectar

-Detalles del análisis-
Proceso: 0
(No hay elementos maliciosos detectados)

Módulo: 0
(No hay elementos maliciosos detectados)

Clave del registro: 2
PUP.Optional.DriverToolkit, HKU\S-1-5-21-1557413109-1875796577-672599849-1000\SOFTWARE\DriverToolkit, En cuarentena, 1078, 512874, 1.0.18004, , ame, 
PUP.Optional.DriverToolkit, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\{D66BF89F-B0A2-48F5-A2E4-242EB645AB76}_IS1, En cuarentena, 1078, 512878, 1.0.18004, , ame, 

Valor del registro: 1
PUP.Optional.DriverToolkit, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\{D66BF89F-B0A2-48F5-A2E4-242EB645AB76}_IS1|DISPLAYNAME, En cuarentena, 1078, 512878, 1.0.18004, , ame, 

Datos del registro: 0
(No hay elementos maliciosos detectados)

Secuencia de datos: 0
(No hay elementos maliciosos detectados)

Carpeta: 2
PUP.Optional.DriverToolkit, C:\Program Files (x86)\DriverToolkit\Download, En cuarentena, 1078, 512876, , , , 
PUP.Optional.DriverToolkit, C:\Program Files (x86)\DriverToolkit\Backup, En cuarentena, 1078, 512876, , , , 

Archivo: 27
PUP.Optional.DriverToolkit, C:\Program Files (x86)\DriverToolkit\Download\21d25f81824db27613bdcb5ee5977657.zip.tmp, En cuarentena, 1078, 512876, , , , 
PUP.Optional.DriverToolkit, C:\Program Files (x86)\DriverToolkit\Download\750cd2cdd41230781ef1200b715923ab.zip.tmp, En cuarentena, 1078, 512876, , , , 
PUP.Optional.DriverToolkit, C:\Program Files (x86)\DriverToolkit\7z.dll, En cuarentena, 1078, 512876, , , , 
PUP.Optional.DriverToolkit, C:\Program Files (x86)\DriverToolkit\DriverToolkit.exe, En cuarentena, 1078, 512876, , , , 
PUP.Optional.DriverToolkit, C:\Program Files (x86)\DriverToolkit\extract.exe, En cuarentena, 1078, 512876, , , , 
PUP.Optional.DriverToolkit, C:\Program Files (x86)\DriverToolkit\network.dll, En cuarentena, 1078, 512876, , , , 
PUP.Optional.DriverToolkit, C:\Program Files (x86)\DriverToolkit\RemoveDT.exe, En cuarentena, 1078, 512876, , , , 
PUP.Optional.DriverToolkit, C:\Program Files (x86)\DriverToolkit\unins000.dat, En cuarentena, 1078, 512876, , , , 
PUP.Optional.DriverToolkit, C:\Program Files (x86)\DriverToolkit\unins000.exe, En cuarentena, 1078, 512876, , , , 
PUP.Optional.DriverToolkit, C:\Program Files (x86)\DriverToolkit\zlibwapi.dll, En cuarentena, 1078, 512876, , , , 
PUP.Optional.DriverToolkit, C:\DOCUMENTS AND SETTINGS\PUBLIC\Desktop\DriverToolkit.lnk, En cuarentena, 1078, 512876, , , , 
PUP.Optional.DriverToolkit, C:\USERS\PUBLIC\Desktop\DriverToolkit.lnk, En cuarentena, 1078, 512876, , , , 
HackTool.Patcher, C:\PROGRAM FILES\ADOBE\ADOBE AUDITION CC 2018\ADOBE.SNR.PATCH.V2.0-PAINTER.EXE, En cuarentena, 7608, 473286, 1.0.18004, 000000000000000000000003, dds, 00553974
HackTool.FilePatch, C:\PROGRAM FILES\ADOBE\ADOBE PREMIERE PRO CC\ADOBE.PHOTOSHOP.CC-PATCH-PAINTER.EXE, En cuarentena, 7581, 281135, 1.0.18004, B9DEB6E23485D376DA271ECD, dds, 00553974
HackTool.FilePatch, C:\PROGRAM FILES\MAGIX\SAMPLITUDE PRO X2 SUITE\ONLINEACTIVATOR.EXE, En cuarentena, 7581, 281135, 1.0.18004, , ame, 
PUP.Optional.GameHack, C:\PROGRAM FILES (X86)\CHEAT ENGINE 6.5\STANDALONEPHASE1.DAT, En cuarentena, 7921, 393793, 1.0.18004, , ame, 
HackTool.FilePatch, C:\PROGRAM FILES (X86)\VSO\CONVERTX\5\VSO.CONVERTERS.V2.1-CERBERUS.EXE, En cuarentena, 7581, 281135, 1.0.18004, , ame, 
Generic.Malware/Suspicious, C:\PROGRAM FILES (X86)\WB GAMES\BATMAN ARKHAM CITY GOTY\BINARIES\WIN32\BATMANAC.EXE, En cuarentena, 0, 392686, 1.0.18004, , shuriken, 
RiskWare.Tool.CK, C:\USERS\MAR\APPDATA\ROAMING\IDM\DWNLDATA\MAR\CRACK_592\CRACK.RAR, En cuarentena, 7422, 313163, 1.0.18004, , ame, 
CrackTool.Agent.Keygen, C:\USERS\MAR\DROPBOX\IRINA\AIDA64_ENGINEER_5.97.4600\KEYGEN.EXE, En cuarentena, 7643, 767883, 1.0.18004, 000000000000000000000003, dds, 00553974
HackTool.WinActivator, C:\USERS\MAR\DROPBOX\IRINA\LOADER OFFICE\TUSOFTPC R6-LO8D6RV.2.6\RE-LOADERBYR@1N\[email protected], En cuarentena, 7956, 595564, 1.0.18004, DCC794A30250D2DA1CC37ACA, dds, 00553974
PUP.Optional.DriverReviver, C:\USERS\MAR\DROPBOX\MARIANO - ESTUDIO IMAGEN\DRIVERS FERRARI 1000\BUSCADORES\REVIVER\CRACK UZ1\X64\DRIVERREVIVER.EXE, En cuarentena, 4223, 462815, 1.0.18004, , ame, 
PUP.Optional.DriverReviver, C:\USERS\MAR\DROPBOX\MARIANO - ESTUDIO IMAGEN\DRIVERS FERRARI 1000\BUSCADORES\REVIVER\CRACK UZ1\X86\DRIVERREVIVER.EXE, En cuarentena, 4223, 462815, 1.0.18004, , ame, 
PUP.Optional.DriverReviver, C:\USERS\MAR\DROPBOX\MARIANO - ESTUDIO IMAGEN\DRIVERS FERRARI 1000\BUSCADORES\REVIVER\DRIVERREVIVERSETUP.EXE, En cuarentena, 4223, 462815, 1.0.18004, , ame, 
PUP.Optional.DriverPack, C:\USERS\MAR\DROPBOX\MARIANO - ESTUDIO IMAGEN\DRIVERS FERRARI 1000\RIESGOSO\AMD-FORCED-SMBUS-NTX86-DRP.EXE, En cuarentena, 598, 354275, 1.0.18004, , ame, 
PUP.Optional.DriverPack, C:\USERS\MAR\DROPBOX\MARIANO - ESTUDIO IMAGEN\DRIVERS FERRARI 1000\RIESGOSO\ORBICAM-LOGITECH-ALLX86-10.5.1.1145-DRP.EXE, En cuarentena, 598, 354275, 1.0.18004, , ame, 
PUP.Optional.DriverPack, C:\USERS\MAR\DROPBOX\MARIANO - ESTUDIO IMAGEN\DRIVERS FERRARI 1000\RIESGOSO\PROLIFIC-ALLNT-3.3.11.152-DRP.EXE, En cuarentena, 598, 354275, 1.0.18004, , ame, 

Sector físico: 0
(No hay elementos maliciosos detectados)

WMI: 0
(No hay elementos maliciosos detectados)


(end)

# -------------------------------
# Malwarebytes AdwCleaner 8.0.1.0
# -------------------------------
# Build:    12-17-2019
# Database: 2020-01-21.1 (Cloud)
# Support:  https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start:    01-22-2020
# Duration: 00:00:08
# OS:       Windows 7 Home Premium
# Cleaned:  53
# Failed:   0


***** [ Services ] *****

No malicious services cleaned.

***** [ Folders ] *****

Deleted       C:\Program Files (x86)\Common Files\AVG Secure Search
Deleted       C:\Program Files (x86)\DriverToolkit
Deleted       C:\Program Files (x86)\mipony
Deleted       C:\Program Files (x86)\orbitdownloader
Deleted       C:\ProgramData\IObit\Advanced SystemCare
Deleted       C:\ProgramData\Microsoft\Windows\Start Menu\Programs\mipony
Deleted       C:\Users\Mar\AppData\LocalLow\.acestream
Deleted       C:\Users\Mar\AppData\LocalLow\download Manager
Deleted       C:\Users\Mar\AppData\Local\DriverToolkit
Deleted       C:\Users\Mar\AppData\Roaming\.acestream
Deleted       C:\Users\Mar\AppData\Roaming\IObit\Advanced SystemCare
Deleted       C:\Users\Mar\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\mipony
Deleted       C:\Users\Mar\AppData\Roaming\ProgSense
Deleted       C:\Users\Mar\AppData\Roaming\mipony
Deleted       C:\_acestream_cache_

***** [ Files ] *****

Deleted       C:\Users\Mar\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\MiPony.lnk
Deleted       C:\Users\Mar\AppData\Roaming\Mozilla\Firefox\Profiles\0fxeyjny.default\invalidprefs.js
Deleted       C:\Users\Mar\Desktop\MiPony.lnk
Deleted       C:\Users\Mar\daemonprocess.txt

***** [ DLL ] *****

No malicious DLLs cleaned.

***** [ WMI ] *****

No malicious WMI cleaned.

***** [ Shortcuts ] *****

No malicious shortcuts cleaned.

***** [ Tasks ] *****

No malicious tasks cleaned.

***** [ Registry ] *****

Deleted       HKCU\Software\Conduit
Deleted       HKCU\Software\Microsoft\Internet Explorer\MenuExt\&Download by Orbit
Deleted       HKCU\Software\Microsoft\Internet Explorer\MenuExt\&Grab video by Orbit
Deleted       HKCU\Software\Microsoft\Internet Explorer\MenuExt\Do&wnload selected by Orbit
Deleted       HKCU\Software\Microsoft\Internet Explorer\MenuExt\Down&load all by Orbit
Deleted       HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{000123B4-9B42-4900-B3F7-F4B073EFC214}
Deleted       HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{000123B4-9B42-4900-B3F7-F4B073EFC214}
Deleted       HKCU\Software\Orbit
Deleted       HKCU\Software\ProgSense
Deleted       HKCU\Software\RegisteredApplications|AceStream
Deleted       HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\MiPony.exe
Deleted       HKLM\Software\Classes\TypeLib\{A0880527-DC28-4EBB-BA27-D22102F22A9F}
Deleted       HKLM\Software\Classes\TypeLib\{BCDDE143-FAE3-4C57-B22B-C4E8678CFDC0}
Deleted       HKLM\Software\Classes\mipony
Deleted       HKLM\Software\Classes\mpybrowser
Deleted       HKLM\Software\DivX\Install\Setup\WizardLayout\SystweakRegCleaner
Deleted       HKLM\Software\Microsoft\Shared Tools\MSConfig\services\Popcorn Time Updater
Deleted       HKLM\Software\Wow6432Node\Conduit
Deleted       HKLM\Software\Wow6432Node\Orbit
Deleted       HKLM\Software\Wow6432Node\\Classes\CLSID\{000123B4-9B42-4900-B3F7-F4B073EFC214}
Deleted       HKLM\Software\Wow6432Node\\Classes\CLSID\{3F1D494B-0CEF-4468-96C9-386E2E4DEC90}
Deleted       HKLM\Software\Wow6432Node\\Classes\CLSID\{7854F00C-DC77-477E-A10E-603F48442D3B}
Deleted       HKLM\Software\Wow6432Node\\Classes\CLSID\{8BF0126F-A5B7-4720-ABB2-2414A0AF5474}
Deleted       HKLM\Software\Wow6432Node\\Classes\TypeLib\{A0880527-DC28-4EBB-BA27-D22102F22A9F}
Deleted       HKLM\Software\Wow6432Node\\Classes\TypeLib\{BCDDE143-FAE3-4C57-B22B-C4E8678CFDC0}
Deleted       HKLM\Software\Wow6432Node\\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{4250488A-CB24-0893-C066-B1AEA57BCFF2}
Deleted       HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\App Paths\MiPony.exe
Deleted       HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{000123B4-9B42-4900-B3F7-F4B073EFC214}
Deleted       HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\MiPony
Deleted       HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\Orbit_is1

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries cleaned.

***** [ Chromium URLs ] *****

Deleted       AVG Secure Search
Deleted       AVG Secure Search
Deleted       AVG Secure Search
Deleted       AVG Secure Search

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries cleaned.

***** [ Firefox URLs ] *****

No malicious Firefox URLs cleaned.

***** [ Preinstalled Software ] *****

No Preinstalled Software cleaned.


*************************

[+] Delete Tracing Keys
[+] Reset Winsock

*************************

AdwCleaner_Debug.log - [1081 octets] - [22/01/2020 15:07:55]
AdwCleaner[S00].txt - [6022 octets] - [22/01/2020 15:09:16]

########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C00].txt ##########

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Malwarebytes
Version: 8.1.4 (07.09.2017)
Operating System: Windows 7 Home Premium x64 
Ran by Mar (Limited) on 22/01/2020 at 15:30:48,77
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




File System: 19 

Successfully deleted: C:\ProgramData\drivergenius (Folder) 
Successfully deleted: C:\ProgramData\esellerate (Folder) 
Successfully deleted: C:\ProgramData\productdata (Folder) 
Successfully deleted: C:\Users\Mar\AppData\Roaming\Mozilla\Firefox\Profiles\0fxeyjny.default\user.js (File) 
Successfully deleted: C:\Users\Mar\AppData\Roaming\productdata (Folder) 
Successfully deleted: C:\Users\Mar\Documents\add-in express (Folder) 
Successfully deleted: C:\Windows\system32\Tasks\Uninstaller_SkipUac_Mar (Task)
Successfully deleted: C:\Windows\wininit.ini (File) 
Successfully deleted: C:\Program Files (x86)\Common Files\innovative solutions (Folder) 
Successfully deleted: C:\Users\Mar\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\0PS72R2M (Temporary Internet Files Folder) 
Successfully deleted: C:\Users\Mar\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\4V7FF3ZF (Temporary Internet Files Folder) 
Successfully deleted: C:\Users\Mar\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\H9KU1H40 (Temporary Internet Files Folder) 
Successfully deleted: C:\Users\Mar\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\TOMRIUQK (Temporary Internet Files Folder) 
Successfully deleted: C:\Users\Mar\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\X99KF4MA (Temporary Internet Files Folder) 
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\0PS72R2M (Temporary Internet Files Folder) 
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\4V7FF3ZF (Temporary Internet Files Folder) 
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\H9KU1H40 (Temporary Internet Files Folder) 
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\TOMRIUQK (Temporary Internet Files Folder) 
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\X99KF4MA (Temporary Internet Files Folder) 



Registry: 3 

Successfully deleted: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233} (Registry Key)
Successfully deleted: HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2AE7471D-5150-48CF-8498-4CB9E8FAEA90} (Registry Key)
Successfully deleted: HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2AE7471D-5150-48CF-8498-4CB9E8FAEA90} (Registry Key)




~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 22/01/2020 at 16:09:59,26
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

Resultado del análisis realizado por Farbar Recovery Scan Tool (FRST) (x64) Versión: 22-01-2020 01
Ejecutado por Mar (administrador) sobre MAR-PC (Gigabyte Technology Co., Ltd. GA-890GPA-UD3H) (22-01-2020 16:14:06)
Ejecutado desde I:\BACKUP 22-1-2020\AUXILIOOOOOOOOOOOOOO
Perfiles cargados: Mar (Perfiles disponibles: Mar)
Platform: Windows 7 Home Premium Service Pack 1 (X64) Idioma: Español (España, internacional)
Internet Explorer Versión 8 (Navegador predeterminado: Chrome)
Modo de Inicio: Safe Mode (with Networking)
Tutorial para Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Procesos (Lista blanca) =================

(Si una entrada es incluida en el fixlist, el proceso será cerrado. El archivo no será movido.)

(DT Soft Ltd -> DT Soft Ltd) C:\Program Files (x86)\DAEMON Tools Pro\DTShellHlp.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Microsoft Corporation) [Archivo no firmado] C:\Windows\explorer.exe
(Microsoft Corporation) [Archivo no firmado] C:\Windows\explorer.exe
(Microsoft Corporation) [Archivo no firmado] C:\Windows\System32\lsass.exe
(Microsoft Corporation) [Archivo no firmado] C:\Windows\System32\lsm.exe
(Microsoft Corporation) [Archivo no firmado] C:\Windows\System32\services.exe
(Microsoft Corporation) [Archivo no firmado] C:\Windows\System32\smss.exe
(Microsoft Corporation) [Archivo no firmado] C:\Windows\System32\svchost.exe
(Microsoft Corporation) [Archivo no firmado] C:\Windows\System32\svchost.exe
(Microsoft Corporation) [Archivo no firmado] C:\Windows\System32\svchost.exe
(Microsoft Corporation) [Archivo no firmado] C:\Windows\System32\svchost.exe
(Microsoft Corporation) [Archivo no firmado] C:\Windows\System32\svchost.exe
(Microsoft Corporation) [Archivo no firmado] C:\Windows\System32\svchost.exe
(Microsoft Corporation) [Archivo no firmado] C:\Windows\System32\svchost.exe
(Microsoft Corporation) [Archivo no firmado] C:\Windows\System32\svchost.exe
(Microsoft Corporation) [Archivo no firmado] C:\Windows\System32\winlogon.exe

==================== Registro (Lista blanca) ===================

(Si una entrada es incluida en el fixlist, el elemento del registro será restaurado a su valor predeterminado o será eliminado. El archivo no será movido.)

HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13213840 2012-10-26] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [268680 2019-10-02] (AVAST Software s.r.o. -> AVAST Software)
HKLM-x32\...\Run: [NUSB3MON] => C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe [113288 2010-11-16] (Renesas Electronics Corporation -> Renesas Electronics Corporation)
HKLM-x32\...\Run: [JMB36X IDE Setup] => C:\Windows\RaidTool\xInsIDE.exe [43632 2010-01-18] (JMicron Technology Corp. -> )
HKLM\...\Winlogon: [Shell] C:\Windows\explorer.exe [3230720 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
HKLM-x32\...\Winlogon: [Shell] C:\Windows\SysWOW64\explorer.exe [2973184 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restricción <==== ATENCIÓN
HKU\S-1-5-21-1557413109-1875796577-672599849-1000\...\Run: [DAEMON Tools Pro Agent] => C:\Program Files (x86)\DAEMON Tools Pro\DTAgent.exe [4527424 2011-08-17] (DT Soft Ltd -> DT Soft Ltd)
HKU\S-1-5-21-1557413109-1875796577-672599849-1000\...\Run: [launchOnStartup] => C:\Program Files (x86)\GOG Galaxy\GalaxyClient.exe [7937608 2019-12-04] (GOG Sp. z o.o. -> GOG.com)
HKU\S-1-5-21-1557413109-1875796577-672599849-1000\...\MountPoints2: {03501e56-8a80-11e3-b42e-1c6f65c83bb0} - K:\iStudio.exe
HKU\S-1-5-21-1557413109-1875796577-672599849-1000\...\MountPoints2: {2ec8abce-9ee8-11e8-910a-1c6f65c83bb0} - K:\HiSuiteDownLoader.exe
HKU\S-1-5-21-1557413109-1875796577-672599849-1000\...\MountPoints2: {59f5a032-4b68-11e9-a3a8-1c6f65c83bb0} - K:\startme.exe
HKU\S-1-5-21-1557413109-1875796577-672599849-1000\...\Winlogon: [Shell] 
HKLM\...\Providers\Internet Print Provider: C:\Windows\system32\inetpp.dll [166400 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
HKLM\...\Providers\LanMan Print Services: C:\Windows\system32\win32spl.dll [756736 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
HKLM\Software\...\AppCompatFlags\Custom\wmplayer.exe: [{00a8ce68-cb2e-4652-aecd-c05c0d9d53a7}.sdb] -> WMPx64PluginFix
HKLM\Software\...\AppCompatFlags\InstalledSDB\{00a8ce68-cb2e-4652-aecd-c05c0d9d53a7}: [DatabasePath] -> C:\Windows\AppPatch\Custom\{00a8ce68-cb2e-4652-aecd-c05c0d9d53a7}.sdb [2010-05-17]
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\79.0.3945.130\Installer\chrmstp.exe [2020-01-16] (Google LLC -> Google LLC)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{2179C5D3-EBFF-11CF-B6FD-00AA00B4E220}] -> 
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{22d6f312-b0f6-11d0-94ab-0080c74c7e95}] -> C:\Windows\SysWOW64\advpack.dll [2016-03-25] (Microsoft Corporation) [Archivo no firmado]
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{73FA19D0-2D75-11D2-995D-00C04F98BBC9}] -> 
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> "C:\Program Files (x86)\Google\Chrome\Application\58.0.3029.81\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level
HKLM\Software\...\Authentication\Credential Providers: [{F8A0B131-5F68-486c-8040-7E8FC3C85BB6}] -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDCREDPROV.DLL [2011-03-28] (Microsoft Corporation -> Microsoft Corp.)
IFEO\LogTransport2.exe: [Debugger] 0
Startup: C:\Users\Mar\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\PenAttention.lnk [2019-09-25]
ShortcutTarget: PenAttention.lnk -> C:\Program Files (x86)\PenAttention\PenAttention.exe (Kenrick Mock) [Archivo no firmado]
GroupPolicy: Restricción ? <==== ATENCIÓN
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restricción <==== ATENCIÓN

==================== Tareas programadas (Lista blanca) ============

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)

Task: {048727A9-BBD8-4E9F-876B-B00C8337D5E3} - System32\Tasks\AVG\Overseer => C:\Program Files\Common Files\AVG\Overseer\overseer.exe [2070592 2018-10-29] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
Task: {19EF85F7-6F1B-4F62-A457-32BB63E30295} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [3933576 2019-10-02] (AVAST Software s.r.o. -> AVAST Software)
Task: {1BA5D23C-9690-4A5B-94EC-FC316734B833} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2019-04-11] (Adobe Inc. -> Adobe)
Task: {1C672533-E659-48BA-823E-A43659C0BF50} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe [1873288 2019-09-19] (AVAST Software s.r.o. -> AVAST Software)
Task: {1EFEE5F1-6E85-4297-BFA0-CF6226F877EB} - System32\Tasks\HardDiskSentinel\Hard Disk Sentinel_Mar => C:\Program Files (x86)\Hard Disk Sentinel\HDSentinel.exe [5794328 2020-01-09] (Janos Mathe -> H.D.S. Hungary)
Task: {1F7B7221-AE8F-44F3-BA82-F7D260F51964} - System32\Tasks\Microsoft\Windows\Task Manager\Interactive => {855fec53-d2e4-4999-9e87-3414e9cf0ff4} C:\Windows\system32\wdc.dll [1363456 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
Task: {21436D95-E336-40F3-9F2A-3E52D1D77D73} - System32\Tasks\{79DF7FFA-30B8-4983-8F81-470946B4DAB8} => C:\Program Files (x86)\NewBlue\Video Essentials III for Windows\ManageActivation64.exe
Task: {26D2E2A8-4308-4ABB-81B8-FB2F25F220BA} - System32\Tasks\Uninstaller_SkipUac_Mar => C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe [5900560 2019-08-27] (IObit Information Technology -> IObit)
Task: {28011108-68DF-4C73-B91B-57427D501BBA} - System32\Tasks\Microsoft\Windows\Active Directory Rights Management Services Client\AD RMS Rights Policy Template Management (Manual) => {BF5CB148-7C77-4d8a-A53E-D81C70CF743C} C:\Windows\system32\msdrm.dll [528384 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
Task: {2C319085-1282-489E-92AE-EE1C90C8598F} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1236048 2019-07-24] (Adobe Inc. -> Adobe Systems)
Task: {2EA839FB-D3DD-406C-AEF2-2AEFA0380DE3} - System32\Tasks\{734042AF-495E-4558-92CD-54F70B02F06C} => F:\DRIVER PEN CRITIAN (EL QUE ES A PILA)\MStorage_PCDRV_LB_1_07_00_250.exe
Task: {314F8266-848A-47CA-B6CB-8A915D635540} - System32\Tasks\{CC60ECF0-3320-4C40-89B3-9916BE4268FD} => F:\DRIVER PEN CRITIAN (EL QUE ES A PILA)\MStorage_PCDRV_LB_1_07_00_250.exe
Task: {3163E9DB-B711-418F-BA27-85A792BCB5A5} - System32\Tasks\GlaryUpdate => C:\Program Files (x86)\Glary Utilities\webupdate.exe [93472 2013-04-28] (Glarysoft Ltd -> Glarysoft Ltd)
Task: {31F1D882-7BE2-4D3D-B31C-F37D7B4255E4} - System32\Tasks\MEGA\MEGAsync Update Task S-1-5-21-1557413109-1875796577-672599849-1000 => C:\Users\Mar\AppData\Local\MEGAsync\MEGAupdater.exe [760696 2018-01-15] (Mega Limited -> Mega Limited)
Task: {34900697-CE9F-4AC0-8B3D-0C111FD4EFA8} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-08-28] (Google Inc -> Google Inc.)
Task: {3B702D7F-A10F-40C0-BFD8-2BEA85874778} - System32\Tasks\{81BC49E6-4353-4B23-B0C0-97B60AE4CD42} => C:\Program Files (x86)\Undisker\Undisker.exe
Task: {3CBF48BD-7457-43C5-AA19-7B578BFA7B7D} - System32\Tasks\DropboxUpdateTaskUserS-1-5-21-1557413109-1875796577-672599849-1000UA => C:\Users\Mar\AppData\Local\Dropbox\Update\DropboxUpdate.exe [143144 2016-11-04] (Dropbox, Inc -> Dropbox, Inc.)
Task: {3F799FA1-7292-49FF-AC25-B0E88FC9BD9E} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [12762872 2018-10-23] (Piriform Ltd -> Piriform Ltd)
Task: {3FF11654-900C-40E1-9C81-0B9D48EDF29F} - System32\Tasks\{F3F0AF5D-C459-4019-8202-369FE5277068} => F:\DRIVER PEN CRITIAN (EL QUE ES A PILA)\MStorage_PCDRV_LB_1_07_00_250.exe
Task: {450AD6E5-33DB-4EFD-BD2A-349840F30443} - System32\Tasks\{BC261460-673B-4761-80F3-46A567E9A514} => C:\Installation Files\Adobe Premiere 6.0\Adobe_Premiere_6.0\SETUP.EXE
Task: {4614784F-7122-47B7-9C5A-49C5874E6168} - System32\Tasks\{EE852404-E65F-4633-91D1-294A9A48DED7} => C:\Program Files (x86)\Dxtory Software\Dxtory2.0\Dxtory.exe [573952 2012-09-16] (Dxtory Software) [Archivo no firmado]
Task: {4B650C3F-2978-420F-91ED-7E4F51ED4E4E} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [520736 2018-10-23] (Piriform Ltd -> Piriform Ltd)
Task: {4DC06165-0E4C-4634-80E1-4BA7F0F40D35} - System32\Tasks\{B19FAF25-A253-4904-92A8-2270DF015C6A} => G:\Programas para hacer mantenimiento a una Pc cualquiera\BsPlayer Pro 2.51 Build 1022  Final  ML  Full  para todos los Windows (32 y 64 bits)\BS.Player Pro 2.51.1022\CORE10k.EXE
Task: {509C5310-CA11-423B-8ED3-42E3780FC485} - System32\Tasks\ModifyLinkUpdate => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [468992 2019-09-10] (Advanced Micro Devices, Inc.) [Archivo no firmado]
Task: {57690477-97B1-4260-B799-DF76E4B97D59} - System32\Tasks\{F7FF7208-DEB3-4C3B-9D21-414230248AC9} => C:\Program Files (x86)\NewBlue\Video Essentials III for Windows\ManageActivation64.exe
Task: {578F81F0-8264-4BB0-8FA1-1D7B4DD28828} - System32\Tasks\Java Update Scheduler => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [595480 2016-03-20] (Oracle America, Inc. -> Oracle Corporation)
Task: {5B064AE6-6F6B-4EDD-978D-51080354B6C7} - System32\Tasks\{E80B2CA9-45E3-4397-903B-AAE389828E23} => C:\Program Files (x86)\Southpark Stick of Truth\South Park - The Stick of Truth.exe
Task: {5D1CC531-DECF-423A-AFBD-07F92E813FDC} - System32\Tasks\StartDVR => C:\Program Files\AMD\CNext\CNext\RSServCmd.exe [68280 2019-09-10] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {5F5A18EB-DC73-4E45-A11C-B59043598412} - System32\Tasks\Microsoft\Windows\CertificateServicesClient\SystemTask => {58fb76b9-ac85-4e55-ac04-427593b1d060} C:\Windows\system32\dimsjob.dll [40448 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
Task: {613612BA-897D-44CE-8DC1-8FC283F9FD51} - System32\Tasks\Microsoft\Windows\Active Directory Rights Management Services Client\AD RMS Rights Policy Template Management (Automated) => {CF2CF428-325B-48D3-8CA8-7633E36E5A32} C:\Windows\system32\msdrm.dll [528384 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
Task: {663974B6-7274-4FF9-9487-A753DB5FFD57} - System32\Tasks\AMDLinkUpdate => C:\Program Files\AMD\CIM\BIN64\InstallManagerApp.exe [468992 2019-09-10] (Advanced Micro Devices, Inc.) [Archivo no firmado]
Task: {6835A247-BA92-460E-9081-6745B843756A} - System32\Tasks\AdobeAAMUpdater-1.0-Mar-PC-Mar => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [509936 2018-04-11] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
Task: {6BEE6266-97C6-4715-BF60-F9DE8B6A0EB9} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-08-28] (Google Inc -> Google Inc.)
Task: {6E4F179C-C686-4C39-A964-1570C285439E} - System32\Tasks\DropboxUpdateTaskUserS-1-5-21-1557413109-1875796577-672599849-1000Core => C:\Users\Mar\AppData\Local\Dropbox\Update\DropboxUpdate.exe [143144 2016-11-04] (Dropbox, Inc -> Dropbox, Inc.)
Task: {72DB7465-BC54-491B-A92A-4637A28C9BBF} - System32\Tasks\Microsoft\Windows\AppID\VerifiedPublisherCertStoreCheck => C:\Windows\system32\appidcertstorecheck.exe [17920 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
Task: {7AFCC0CA-7121-422A-AB45-B0E8D599FF08} - System32\Tasks\Microsoft\Windows\CertificateServicesClient\UserTask => {58fb76b9-ac85-4e55-ac04-427593b1d060} C:\Windows\system32\dimsjob.dll [40448 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
Task: {8804FEB3-52A7-4FF8-A350-4687C29C0388} - System32\Tasks\PandaUSBVaccine => C:\Program Files (x86)\Panda USB Vaccine\RunInteractiveWin.exe [116480 2009-06-16] (Panda Security S.L -> )
Task: {9435F817-FED2-454E-88CD-7F78FDA62C48} - System32\Tasks\Microsoft\Windows\WDI\ResolutionHost => {900be39d-6be8-461a-bc4d-b0fa71f5ecb1} C:\Windows\System32\wdi.dll [90112 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
Task: {96D0C064-BA70-4816-AFEF-04C78081DB4E} - System32\Tasks\{FD1FCBE1-D695-471B-A991-189234F579B0} => C:\Program Files (x86)\CAPCOM\Resident Evil 2\launcher.exe [2431488 2009-08-01] (CAPCOM) [Archivo no firmado]
Task: {9979CB83-103A-4105-9E5D-C74B0AF6D198} - System32\Tasks\Microsoft\Windows\CertificateServicesClient\UserTask-Roam => {58fb76b9-ac85-4e55-ac04-427593b1d060} C:\Windows\system32\dimsjob.dll [40448 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
Task: {9ADEA450-5F0F-4B1A-9770-B2B80F8B5993} - System32\Tasks\{DF3E6FEB-F1C1-469D-ADDA-FBF95D8749DF} => I:\MMHERALD\HERALDIC.EXE
Task: {9E0019F2-7F9A-44AC-A410-CD31979A88BB} - System32\Tasks\StartCN => C:\Program Files\AMD\CNext\CNext\cncmd.exe [61112 2019-09-10] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {A48CABBF-24C8-4B87-B00F-9261807C3B43} - System32\Tasks\Microsoft\Windows\AppID\PolicyConverter => C:\Windows\system32\appidpolicyconverter.exe [148480 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
Task: {A6F96EA1-7C6A-423F-A421-C671201C2883} - System32\Tasks\AdobeGCInvoker-1.0-Mar-PC-Mar => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [2675176 2018-12-13] (Adobe Systems Incorporated -> Adobe Systems, Incorporated)
Task: {AFE4983B-43B6-4F5E-883E-AF3102343C81} - System32\Tasks\{8112103E-7486-448B-89AF-9689A73858A0} => I:\MMHERALD\HERALDIC.EXE
Task: {B0CBAB43-44FC-469B-A4CE-87426761FDCE} - System32\Tasks\Microsoft\Windows\PerfTrack\BackgroundConfigSurveyor => {EA9155A3-8A39-40b4-8963-D3C761B18371} C:\Windows\System32\perftrack.dll [867840 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
Task: {B7F6F170-141B-494D-BD4C-0A5C574A9C56} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(1): schtasks.exe -> /Change /TN "\Adobe Flash Player NPAPI Notifier" /ENABLE
Task: {B7F6F170-141B-494D-BD4C-0A5C574A9C56} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(2): schtasks.exe -> /Change /TN "\AMDLinkUpdate" /ENABLE
Task: {B7F6F170-141B-494D-BD4C-0A5C574A9C56} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(3): schtasks.exe -> /Change /TN "\GoogleUpdateTaskMachineCore" /ENABLE
Task: {B7F6F170-141B-494D-BD4C-0A5C574A9C56} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(4): schtasks.exe -> /Change /TN "\GoogleUpdateTaskMachineUA" /ENABLE
Task: {B7F6F170-141B-494D-BD4C-0A5C574A9C56} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(5): schtasks.exe -> /Change /TN "\ModifyLinkUpdate" /ENABLE
Task: {B7F6F170-141B-494D-BD4C-0A5C574A9C56} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(6): schtasks.exe -> /Change /TN "\StartCN" /ENABLE
Task: {B7F6F170-141B-494D-BD4C-0A5C574A9C56} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(7): schtasks.exe -> /Change /TN "\StartDVR" /ENABLE
Task: {B7F6F170-141B-494D-BD4C-0A5C574A9C56} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(8): schtasks.exe -> /Change /TN "\Uninstaller_SkipUac_Mar" /ENABLE
Task: {B7F6F170-141B-494D-BD4C-0A5C574A9C56} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(9): schtasks.exe -> /Change /TN "\AVAST Software\Gaming mode Task Scheduler recovery" /DISABLE
Task: {B8CA64C7-9BC2-4542-9833-C0B27A4EBE31} - System32\Tasks\{26A4337B-5727-4760-A2A9-AE1567BABF7A} => C:\Installation Files\Adobe Premiere 6.0\Adobe_Premiere_6.0\SETUP.EXE
Task: {C45AA345-4B5A-48A0-AE6A-AB09719BC4DC} - System32\Tasks\{8DCBBE39-C01F-4F4C-8CF0-799870145D27} => C:\Program Files (x86)\Devil May Cry HD Collection\dmc1.exe
Task: {C7D400C3-A7B6-4946-AE09-B1A7ED5AE8D8} - System32\Tasks\{FE2C241B-75EC-4611-87E2-E3A2AFF52178} => C:\Program Files (x86)\Xirrus\Xirrus Wi-Fi Inspector\Xirrus Wi-Fi Inspector.exe
Task: {CB3D64BF-C0C9-45FF-BFB0-FF1A8F680186} - System32\Tasks\Microsoft\Windows\RemoteAssistance\RemoteAssistanceTask => C:\Windows\system32\RAServer.exe [125440 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
Task: {D0250F3F-6480-484F-B719-42F659AC64D5} - System32\Tasks\Microsoft\Windows\Windows Error Reporting\QueueReporting => C:\Windows\system32\wermgr.exe [50688 2016-03-25] (Microsoft Corporation) [Archivo no firmado] <==== ATENCIÓN
Task: {D2F14C14-13DA-4A8D-919F-7B3723880FDA} - System32\Tasks\GlaryInitialize => C:\Program Files (x86)\Glary Utilities\initialize.exe [91936 2013-04-28] (Glarysoft Ltd -> Glarysoft Ltd)
Task: {D35DD7A4-BE8F-4458-A961-EEE1711BC2B5} - System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task => {3519154C-227E-47F3-9CC9-12C3F05817F1}
Task: {D5A1E4D5-0DA3-4419-84C5-D5B84F74F94A} - System32\Tasks\{A57B5B97-911C-460E-8906-C67798512ADB} => C:\Program Files (x86)\Adobe Premiere 6.5\%ProgramFilesDir%\Adobe\Premiere 6.5\premiere.exe
Task: {D8B27010-7F10-4B98-ABC5-1721041B9FF0} - System32\Tasks\Microsoft_Hardware_Launch_IPoint_exe => c:\Program Files\Microsoft IntelliPoint\IPoint.exe [2417032 2011-08-01] (Microsoft Corporation -> Microsoft Corporation)
Task: {DA41DE71-8431-42FB-9DB0-EB64A961DEAD} - System32\Tasks\Microsoft\Windows\Maintenance\WinSAT => {A9A33436-678B-4C9C-A211-7CC38785E79D} C:\Windows\system32\WinSATAPI.dll [501248 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
Task: {DC76F64F-0F6D-4570-94D4-280ECC25420F} - System32\Tasks\{31AAFE0C-CC4B-44B1-8FCF-4D1F12CF7682} => C:\Installation Files\Adobe Premiere 6.0\Adobe_Premiere_6.0\SETUP.EXE
Task: {DD8BA425-3BEA-4D7E-89A7-7A1BB971692D} - System32\Tasks\{D3855B14-47D0-411E-B695-A59EFB6C2EC1} => J:\autorun.exe
Task: {DF8DE024-AEAA-400D-9C29-5607C356292D} - System32\Tasks\{B026AA7C-9A91-4D57-AA31-5D7495DDD002} => C:\Installation Files\Adobe Premiere 6.0\Adobe_Premiere_6.0\SETUP.EXE
Task: {E6AACFF1-0F0C-49CE-BD24-5F8912C7AFA0} - System32\Tasks\{AB33E7F7-5D5A-4742-A54C-686FA76E9272} => C:\Program Files (x86)\CAPCOM\Resident Evil 2\launcher_claire.exe [634880 2009-07-31] () [Archivo no firmado]
Task: {EC89B068-8CBF-42D8-B56E-DEADDEB3672A} - System32\Tasks\{7A648C10-ABC6-4024-954F-591E32641843} => I:\MMHERALD\HERALDIC.EXE
Task: {ED143F98-B6AC-40BB-A90D-FDAD410DFDDB} - System32\Tasks\{0C79CE3B-34CC-4F3D-9AF0-1BB717A71452} => C:\Installation Files\Adobe Premiere 6.0\Adobe_Premiere_6.0\SETUP.EXE
Task: {F38AFA29-9206-4377-BA0B-C7C35D51CA94} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_171_Plugin.exe [1456696 2019-04-11] (Adobe Inc. -> Adobe)
Task: {F4AA21FA-A016-4BDF-AF0C-07AA6A9985E5} - System32\Tasks\{4BF48049-88E7-4C5A-8874-8A5C91CCF797} => C:\Program Files (x86)\CAPCOM\ResidentEvil3\ResidentEvil3_menu.exe
Task: {F6A8E98D-70CE-47D2-B3D4-972462244D25} - System32\Tasks\{D0279A66-839D-4378-A24D-A8E9B6503F94} => C:\Program Files (x86)\GenArts\SapphireEdgeOFX\preset-browser\preset_browser.exe [2767473 2013-06-02] () [Archivo no firmado]

(Si una entrada es incluida en el fixlist, el archivo de tarea (.job) será movido. El archivo que está siendo ejecutado por la tarea no será movido.)

Task: C:\Windows\Tasks\AdwCleaner_onReboot.job => I:\BACKUP 22-1-2020\AUXILIOOOOOOOOOOOOOO\adwcleaner_8.0.1.exe
Task: C:\Windows\Tasks\DropboxUpdateTaskUserS-1-5-21-1557413109-1875796577-672599849-1000Core.job => C:\Users\Mar\AppData\Local\Dropbox\Update\DropboxUpdate.exe
Task: C:\Windows\Tasks\DropboxUpdateTaskUserS-1-5-21-1557413109-1875796577-672599849-1000UA.job => C:\Users\Mar\AppData\Local\Dropbox\Update\DropboxUpdate.exe
Task: C:\Windows\Tasks\GlaryInitialize.job => C:\Program Files (x86)\Glary Utilities\initialize.exe
Task: C:\Windows\Tasks\GlaryUpdate.job => C:\Program Files (x86)\Glary Utilities\webupdate.exe

==================== Internet (Lista blanca) ====================

(Si un elemento es incluido en el fixlist, y éste pertenece al registro, será eliminado o restaurado a su valor predeterminado.)

Winsock: Catalog5 01 C:\Windows\SysWOW64\NLAapi.dll [52224 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
Winsock: Catalog5 05 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280 2011-03-28] (Microsoft Corporation -> Microsoft Corp.)
Winsock: Catalog5 06 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280 2011-03-28] (Microsoft Corporation -> Microsoft Corp.)
Winsock: Catalog5 07 C:\Windows\SysWOW64\mswsock.dll [231424 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
Winsock: Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [231424 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
Winsock: Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [231424 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
Winsock: Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [231424 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
Winsock: Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [231424 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
Winsock: Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [231424 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
Winsock: Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [231424 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
Winsock: Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [231424 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
Winsock: Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [231424 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
Winsock: Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [231424 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
Winsock: Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [231424 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
Winsock: Catalog5-x64 01 C:\Windows\system32\NLAapi.dll [70656 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
Winsock: Catalog5-x64 05 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [171392 2011-03-28] (Microsoft Corporation -> Microsoft Corp.)
Winsock: Catalog5-x64 06 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [171392 2011-03-28] (Microsoft Corporation -> Microsoft Corp.)
Winsock: Catalog5-x64 07 C:\Windows\System32\mswsock.dll [327168 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
Winsock: Catalog9-x64 01 C:\Windows\system32\mswsock.dll [327168 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
Winsock: Catalog9-x64 02 C:\Windows\system32\mswsock.dll [327168 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
Winsock: Catalog9-x64 03 C:\Windows\system32\mswsock.dll [327168 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
Winsock: Catalog9-x64 04 C:\Windows\system32\mswsock.dll [327168 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
Winsock: Catalog9-x64 05 C:\Windows\system32\mswsock.dll [327168 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
Winsock: Catalog9-x64 06 C:\Windows\system32\mswsock.dll [327168 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
Winsock: Catalog9-x64 07 C:\Windows\system32\mswsock.dll [327168 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
Winsock: Catalog9-x64 08 C:\Windows\system32\mswsock.dll [327168 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
Winsock: Catalog9-x64 09 C:\Windows\system32\mswsock.dll [327168 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
Winsock: Catalog9-x64 10 C:\Windows\system32\mswsock.dll [327168 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
Hosts: Hay más de una entrada en Hosts. Consulte la sección Hosts de Addition.txt
Tcpip\Parameters: [DhcpNameServer] 200.49.130.44 200.42.4.210 200.42.4.210
Tcpip\..\Interfaces\{AF02E0A0-2A77-4325-BD0F-F43DD57FB39B}: [DhcpNameServer] 200.49.130.44 200.42.4.210 200.42.4.210
HKLM\System\...\Parameters\PersistentRoutes: [0.0.0.0,0.0.0.0,192.168.1.100,-1]

Internet Explorer:
==================
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restricción <==== ATENCIÓN
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = 
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Local Page = 
HKU\S-1-5-21-1557413109-1875796577-672599849-1000\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\S-1-5-21-1557413109-1875796577-672599849-1000\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-21-1557413109-1875796577-672599849-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://ar.msn.com/?ocid=iehp
BHO: IDM integration (IDMIEHlprObj Class) -> {0055C089-8582-441B-A0BF-17B458C2A3A8} -> C:\Program Files (x86)\Internet Download Manager\IDMIECC64.dll [2015-12-08] (Tonec Inc. -> Internet Download Manager, Tonec Inc.)
BHO: ExplorerWnd Helper -> {10921475-03CE-4E04-90CE-E2E7EF20C814} -> C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallExplorer.dll [2019-06-20] (IObit Information Technology -> IObit)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-28] (Microsoft Corporation -> Microsoft Corp.)
BHO: Adobe Acrobat Create PDF Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2019-02-18] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
BHO: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2019-02-18] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
BHO-x32: IDM integration (IDMIEHlprObj Class) -> {0055C089-8582-441B-A0BF-17B458C2A3A8} -> C:\Program Files (x86)\Internet Download Manager\IDMIECC.dll [2015-12-08] (Tonec Inc. -> Internet Download Manager, Tonec Inc.)
BHO-x32: EGet Class -> {1E871FF8-029C-4732-8AA7-39E3D3872057} -> C:\Program Files (x86)\EagleGet\eagleSniffer.dll [2017-07-04] (EagleGet.com) [Archivo no firmado]
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_77\bin\ssv.dll [2016-04-01] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Aplicación auxiliar de inicio de sesión de Windows Live ID -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-28] (Microsoft Corporation -> Microsoft Corp.)
BHO-x32: Adobe Acrobat Create PDF Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2019-02-18] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_77\bin\jp2ssv.dll [2016-04-01] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2019-02-18] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
Toolbar: HKLM - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2019-02-18] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
Toolbar: HKLM-x32 - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2019-02-18] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
Toolbar: HKU\S-1-5-21-1557413109-1875796577-672599849-1000 -> Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2019-02-18] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
DPF: HKLM-x32 {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
Handler: dvd - {12D51199-0DB5-46FE-A120-47A3D7D937CC} - C:\Windows\System32\msvidctl.dll [2016-03-25] (Microsoft Corporation) [Archivo no firmado]
Handler-x32: dvd - {12D51199-0DB5-46FE-A120-47A3D7D937CC} - C:\Windows\SysWOW64\msvidctl.dll [2016-03-25] (Microsoft Corporation) [Archivo no firmado]
Handler: mhtml - {05300401-BCBC-11d0-85E3-00C04FD85AB4} - C:\Windows\system32\inetcomm.dll [2016-03-25] (Microsoft Corporation) [Archivo no firmado]
Handler-x32: mhtml - {05300401-BCBC-11d0-85E3-00C04FD85AB4} - C:\Windows\SysWOW64\inetcomm.dll [2016-03-25] (Microsoft Corporation) [Archivo no firmado]
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll [2013-02-26] (Skype Technologies SA -> Skype Technologies)
Handler: tv - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} - C:\Windows\System32\msvidctl.dll [2016-03-25] (Microsoft Corporation) [Archivo no firmado]
Handler-x32: tv - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} - C:\Windows\SysWOW64\msvidctl.dll [2016-03-25] (Microsoft Corporation) [Archivo no firmado]
Filter: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\system32\urlmon.dll [2010-11-21] (Microsoft Windows -> Microsoft Corporation)
Filter-x32: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\SysWOW64\urlmon.dll [2010-11-21] (Microsoft Windows -> Microsoft Corporation)
Filter: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\system32\urlmon.dll [2010-11-21] (Microsoft Windows -> Microsoft Corporation)
Filter-x32: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\SysWOW64\urlmon.dll [2010-11-21] (Microsoft Windows -> Microsoft Corporation)

FireFox:
========
FF ProfilePath: C:\Users\Mar\AppData\Roaming\Mozilla\Firefox\Profiles\0fxeyjny.default [2020-01-22]
FF Homepage: Mozilla\Firefox\Profiles\0fxeyjny.default -> hxxps://www.google.com
FF NewTab: Mozilla\Firefox\Profiles\0fxeyjny.default -> www.google.com.ar
FF Extension: (Cookie Importer) - C:\Users\Mar\AppData\Roaming\Mozilla\Firefox\Profiles\0fxeyjny.default\Extensions\[email protected] [2016-06-01] [Heredado]
FF Extension: (Firefox Lightbeam) - C:\Users\Mar\AppData\Roaming\Mozilla\Firefox\Profiles\0fxeyjny.default\Extensions\[email protected] [2018-02-18]
FF Extension: (Avast SafePrice | Comparaciones, ofertas y cupones) - C:\Users\Mar\AppData\Roaming\Mozilla\Firefox\Profiles\0fxeyjny.default\Extensions\[email protected] [2019-01-02] [UpdateUrl:hxxps://firefoxext.avcdn.net/firefoxext/avast/sp/update.json]
FF Extension: (Avast Online Security) - C:\Users\Mar\AppData\Roaming\Mozilla\Firefox\Profiles\0fxeyjny.default\Extensions\[email protected] [2018-11-25]
FF Extension: (Video DownloadHelper) - C:\Users\Mar\AppData\Roaming\Mozilla\Firefox\Profiles\0fxeyjny.default\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi [2019-06-02]
FF SearchPlugin: C:\Users\Mar\AppData\Roaming\Mozilla\Firefox\Profiles\0fxeyjny.default\searchplugins\google-default.xml [2015-05-09]
FF HKLM\...\Firefox\Extensions: [[email protected]] - C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi
FF Extension: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi [2019-07-31]
FF HKLM-x32\...\Firefox\Extensions: [[email protected]] - C:\Program Files (x86)\EagleGet\addon\[email protected]
FF Extension: (EagleGet Free Downloader) - C:\Program Files (x86)\EagleGet\addon\[email protected] [2017-06-27]
FF HKLM-x32\...\Firefox\Extensions: [[email protected]] - C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi
FF HKLM-x32\...\Mozilla Firefox 53.0.3\Extensions: [[email protected]] - C:\Program Files (x86)\EagleGet\addon\[email protected]
FF HKU\S-1-5-21-1557413109-1875796577-672599849-1000\...\Firefox\Extensions: [[email protected]] - C:\Program Files (x86)\Internet Download Manager\idmmzcc2.xpi
FF Extension: (IDM integration) - C:\Program Files (x86)\Internet Download Manager\idmmzcc2.xpi [2016-03-10] [Heredado]
FF HKU\S-1-5-21-1557413109-1875796577-672599849-1000\...\Firefox\Extensions: [[email protected]] - C:\Program Files (x86)\EagleGet\addon\[email protected]
FF HKU\S-1-5-21-1557413109-1875796577-672599849-1000\...\Firefox\Extensions: [[email protected]] - C:\Users\Mar\AppData\Roaming\ACEStream\extensions\awe\firefox\acewebextension_unlisted.xpi => no encontrado
FF HKU\S-1-5-21-1557413109-1875796577-672599849-1000\...\SeaMonkey\Extensions: [[email protected]] - C:\Users\Mar\AppData\Roaming\IDM\idmmzcc5
FF Extension: (IDM CC) - C:\Users\Mar\AppData\Roaming\IDM\idmmzcc5 [2020-01-16] [Heredado] [no firmado]
FF HKU\S-1-5-21-1557413109-1875796577-672599849-1000\...\SeaMonkey\Extensions: [[email protected]] - C:\Program Files (x86)\Internet Download Manager\idmmzcc2.xpi
FF HKU\S-1-5-21-1557413109-1875796577-672599849-1000\...\SeaMonkey\Extensions: [[email protected]] - C:\Program Files (x86)\EagleGet\addon\[email protected]
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_32_0_0_171.dll [2019-04-11] (Adobe Inc. -> )
FF Plugin: @divx.com/DivX VOD Helper,version=1.0.0 -> C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll [2014-05-22] (DivX, LLC -> DivX, LLC.)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll [2014-05-13] (Microsoft Corporation ->  Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=3.0.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-06-11] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.7.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-06-11] (VideoLAN -> VideoLAN)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2018-04-24] (Adobe Systems Incorporated -> Adobe Systems)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_171.dll [2019-04-11] (Adobe Inc. -> )
FF Plugin-x32: @divx.com/DivX VOD Helper,version=1.0.0 -> C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll [2014-05-22] (DivX, LLC -> DivX, LLC.)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2017-12-01] (Foxit Software Incorporated -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2017-12-01] (Foxit Software Incorporated -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2017-12-01] (Foxit Software Incorporated -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2017-12-01] (Foxit Software Incorporated -> Foxit Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.77.2 -> C:\Program Files (x86)\Java\jre1.8.0_77\bin\dtplugin\npDeployJava1.dll [2016-04-01] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.77.2 -> C:\Program Files (x86)\Java\jre1.8.0_77\bin\plugin2\npjp2.dll [2016-04-01] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll [2014-05-13] (Microsoft Corporation ->  Microsoft Corporation)
FF Plugin-x32: @real.com/nppl3260;version=6.0.12.69 -> C:\Program Files (x86)\Real Alternative\browser\plugins\nppl3260.dll [2008-09-10] (RealNetworks, Inc. -> RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprpjplug;version=6.0.12.69 -> C:\Program Files (x86)\Real Alternative\browser\plugins\nprpjplug.dll [2008-09-10] (RealNetworks, Inc.) [Archivo no firmado]
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.35.422\npGoogleUpdate3.dll [2019-12-14] (Google LLC -> Google LLC)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.35.422\npGoogleUpdate3.dll [2019-12-14] (Google LLC -> Google LLC)
FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [Ningún archivo]
FF Plugin-x32: @videolan.org/vlc,version=2.2.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [Ningún archivo]
FF Plugin-x32: Adobe Acrobat -> C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2019-07-31] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2018-02-02] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2018-04-24] (Adobe Systems Incorporated -> Adobe Systems)
FF Plugin HKU\S-1-5-21-1557413109-1875796577-672599849-1000: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Mar\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2014-05-26] (Unity Technologies ApS -> Unity Technologies ApS)
FF Plugin HKU\S-1-5-21-1557413109-1875796577-672599849-1000: eagleget.com/EagleGet32 -> C:\Program Files (x86)\EagleGet\npEagleget.dll [2016-08-01] (Beijing Jiupu Technology Co., Ltd. -> EagleGet)

Chrome: 
=======
CHR DefaultProfile: Default
CHR StartupUrls: Default -> "hxxp://www.google.com.ar/"
CHR Notifications: Default -> hxxps://forospyware.com
CHR Profile: C:\Users\Mar\AppData\Local\Google\Chrome\User Data\Default [2020-01-20]
CHR Extension: (Avast SafePrice | Comparaciones, ofertas y cupones) - C:\Users\Mar\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2019-12-18]
CHR Extension: (MyJDownloader Browser Extension) - C:\Users\Mar\AppData\Local\Google\Chrome\User Data\Default\Extensions\fbcohnmimjicjdomonkcbcpbpnhggkip [2018-11-25]
CHR Extension: (Video Downloader PLUS) - C:\Users\Mar\AppData\Local\Google\Chrome\User Data\Default\Extensions\fhplmmllnpjjlncfjpbbpjadoeijkogc [2020-01-04]
CHR Extension: (Complemento inhabilitación Google Analytics) - C:\Users\Mar\AppData\Local\Google\Chrome\User Data\Default\Extensions\fllaojicojecljbmefodhfapmkghcbnh [2017-07-15]
CHR Extension: (EditThisCookie) - C:\Users\Mar\AppData\Local\Google\Chrome\User Data\Default\Extensions\fngmhnnpilhplaeedifhccceomclgfbg [2018-12-01]
CHR Extension: (El Camelizer) - C:\Users\Mar\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghnomdcacenbmilgjigehppbamfndblo [2018-06-23]
CHR Extension: (AdBlock: el mejor bloqueador de anuncios) - C:\Users\Mar\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2019-12-18]
CHR Extension: (Avast Online Security) - C:\Users\Mar\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2020-01-16]
CHR Extension: (GoodTwitter) - C:\Users\Mar\AppData\Local\Google\Chrome\User Data\Default\Extensions\jbanhionoclikdjnjlcmefiofgjimgca [2019-12-16]
CHR Extension: (EagleGet Free Downloader) - C:\Users\Mar\AppData\Local\Google\Chrome\User Data\Default\Extensions\kaebhgioafceeldhgjmendlfhbfjefmo [2018-06-23]
CHR Extension: (Video DownloadHelper) - C:\Users\Mar\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjnegcaeklhafolokijcfjliaokphfk [2019-06-27]
CHR Extension: (Ace Script) - C:\Users\Mar\AppData\Local\Google\Chrome\User Data\Default\Extensions\mjbepbhonbojpoaenhckjocchgfiaofo [2018-12-14]
CHR Extension: (IDM Integration Module) - C:\Users\Mar\AppData\Local\Google\Chrome\User Data\Default\Extensions\ngpampappnmepgilojfohadhhmbhlaek [2020-01-15]
CHR Extension: (Sistema de pagos de Chrome Web Store) - C:\Users\Mar\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-09-30]
CHR Extension: (Hover Zoom+) - C:\Users\Mar\AppData\Local\Google\Chrome\User Data\Default\Extensions\pccckmaobkjjboncdfnnofkonhgpceea [2019-10-04]
CHR Extension: (Speedtest by Ookla) - C:\Users\Mar\AppData\Local\Google\Chrome\User Data\Default\Extensions\pgjjikdiikihdfpoppgaidccahalehjh [2019-04-06]
CHR Extension: (Chrome Media Router) - C:\Users\Mar\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-12-13]
CHR Profile: C:\Users\Mar\AppData\Local\Google\Chrome\User Data\Guest Profile [2020-01-20]
CHR Profile: C:\Users\Mar\AppData\Local\Google\Chrome\User Data\Profile 1 [2020-01-20]
CHR Extension: (Presentaciones) - C:\Users\Mar\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2018-10-19]
CHR Extension: (Documentos) - C:\Users\Mar\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aohghmighlieiainnegkcijnfilokake [2018-10-19]
CHR Extension: (Google Drive) - C:\Users\Mar\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-02-06]
CHR Extension: (YouTube) - C:\Users\Mar\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-02-06]
CHR Extension: (Adblock Plus) - C:\Users\Mar\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2019-01-16]
CHR Extension: (Búsqueda de Google) - C:\Users\Mar\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2016-02-06]
CHR Extension: (Avast SafePrice | Comparaciones, ofertas y cupones) - C:\Users\Mar\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2019-01-16]
CHR Extension: (Hojas de cálculo) - C:\Users\Mar\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2018-10-19]
CHR Extension: (Documentos de Google sin conexión) - C:\Users\Mar\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-10-19]
CHR Extension: (Avast Online Security) - C:\Users\Mar\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\gomekmidlodglbbmalcneegieacbdmki [2019-01-16]
CHR Extension: (EagleGet Free Downloader) - C:\Users\Mar\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\kaebhgioafceeldhgjmendlfhbfjefmo [2018-10-19]
CHR Extension: (Ace Script) - C:\Users\Mar\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\mjbepbhonbojpoaenhckjocchgfiaofo [2019-01-16]
CHR Extension: (IDM Integration Module) - C:\Users\Mar\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ngpampappnmepgilojfohadhhmbhlaek [2019-01-16]
CHR Extension: (Sistema de pagos de Chrome Web Store) - C:\Users\Mar\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-10-19]
CHR Extension: (Gmail) - C:\Users\Mar\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-08-23]
CHR Extension: (Chrome Media Router) - C:\Users\Mar\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-01-16]
CHR Profile: C:\Users\Mar\AppData\Local\Google\Chrome\User Data\System Profile [2020-01-20]
CHR HKLM\...\Chrome\Extension: [jeaohhlajejodfjadcponpnjgkiikocn] - C:\Program Files (x86)\Internet Download Manager\IDMGCExt.crx [2016-03-11]
CHR HKLM\...\Chrome\Extension: [kaebhgioafceeldhgjmendlfhbfjefmo] - C:\Program Files (x86)\EagleGet\addon\[email protected] [2017-08-16]
CHR HKLM\...\Chrome\Extension: [ngpampappnmepgilojfohadhhmbhlaek] - C:\Program Files (x86)\Internet Download Manager\IDMGCExt.crx [2016-03-11]
CHR HKU\S-1-5-21-1557413109-1875796577-672599849-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [kaebhgioafceeldhgjmendlfhbfjefmo] - C:\Program Files (x86)\EagleGet\addon\[email protected] [2017-08-16]
CHR HKU\S-1-5-21-1557413109-1875796577-672599849-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [mjbepbhonbojpoaenhckjocchgfiaofo]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki]
CHR HKLM-x32\...\Chrome\Extension: [kaebhgioafceeldhgjmendlfhbfjefmo] - C:\Program Files (x86)\EagleGet\addon\[email protected] [2017-08-16]
CHR HKLM-x32\...\Chrome\Extension: [ngpampappnmepgilojfohadhhmbhlaek] - C:\Program Files (x86)\Internet Download Manager\IDMGCExt.crx [2016-03-11]

==================== Servicios (Lista blanca) ===================

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)

S4 Abrosoft: Abrosoft FantaMorph update permissions manager. 12810.; C:\Program Files (x86)\Abrosoft\FantaMorph5\FantaUp.exe [224176 2010-11-18] (Abrosoft Co. -> )
S4 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [818128 2018-04-24] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
S3 AeLookupSvc; C:\Windows\System32\aelupsvc.dll [71680 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
S4 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [2917864 2018-12-13] (Adobe Systems Incorporated -> Adobe Systems, Incorporated)
S4 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2709480 2018-12-13] (Adobe Systems Incorporated -> Adobe Systems, Incorporated)
S3 AppIDSvc; C:\Windows\System32\appidsvc.dll [34816 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
S3 Appinfo; C:\Windows\System32\appinfo.dll [70144 2016-03-25] (Microsoft 

Corporation) [Archivo no firmado]
S4 AppleChargerSrv; C:\Windows\System32\AppleChargerSrv.exe [31272 2010-04-06] (Giga-Byte Technology -> )
S3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [6259592 2019-12-19] (AVAST Software s.r.o. -> AVAST Software)
S2 AudioEndpointBuilder; C:\Windows\System32\Audiosrv.dll [680448 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
S2 AudioSrv; C:\Windows\System32\Audiosrv.dll [680448 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
S2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [996880 2019-10-02] (AVAST Software s.r.o. -> AVAST Software)
S2 avast! Firewall; C:\Program Files\AVAST Software\Avast\afwServ.exe [417536 2019-10-02] (AVAST Software s.r.o. -> AVAST Software)
S4 Avid DMF Service; C:\Program Files\Avid\Editor Transcode\Dynamic Media Files\DMFService.exe [464712 2013-06-24] (Avid Technology, Inc. -> Avid Technology, Inc.)
S4 Avid Editor Broker; C:\Program Files\Avid\Editor Transcode\TranscodeService\AvidEditorMSE.exe [465224 2013-06-24] (Avid Technology, Inc. -> Avid Technology, Inc.)
S4 Avid Editor Db Engine; C:\Program Files\Avid\Editor Transcode\TranscodeService\AvidEditorDbEngine.exe [464712 2013-06-24] (Avid Technology, Inc. -> Avid Technology, Inc.)
S4 Avid Editor Transcode Service; C:\Program Files\Avid\Editor Transcode\TranscodeService\AvidEditorTranscode.exe [465224 2013-06-24] (Avid Technology, Inc. -> Avid Technology, Inc.)
S4 Avid Editor Transcode Status; C:\Program Files\Avid\Editor Transcode\TranscodeService\rnc-central\AvidEditorTranscodeStatus.exe [100680 2013-06-24] (Avid Technology, Inc. -> Avid Technology, Inc.)
S3 AxInstSV; C:\Windows\System32\AxInstSV.dll [114688 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
S4 BDESVC; C:\Windows\System32\bdesvc.dll [100864 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
R2 BFE; C:\Windows\System32\bfe.dll [705024 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
S2 BITS; C:\Windows\System32\qmgr.dll [849920 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
S3 Browser; C:\Windows\System32\browser.dll [135680 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
S4 CertPropSvc; C:\Windows\System32\certprop.dll [80384 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
R2 CryptSvc; C:\Windows\system32\cryptsvc.dll [190976 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
R2 CryptSvc; C:\Windows\SysWOW64\cryptsvc.dll [145920 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
S4 CyberLink PowerDVD 13 Media Server Monitor Service; C:\Program Files (x86)\CyberLink\PowerDVD13\Kernel\DMS\CLMSMonitorServicePDVD13.exe [77576 2013-07-05] (CyberLink Corp. -> CyberLink)
S4 CyberLink PowerDVD 13 Media Server Service; C:\Program Files (x86)\CyberLink\PowerDVD13\Kernel\DMS\CLMSServerPDVD13.exe [327432 2013-07-05] (CyberLink Corp. -> CyberLink)
R2 DcomLaunch; C:\Windows\system32\rpcss.dll [512000 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
R2 Dhcp; C:\Windows\system32\dhcpcore.dll [318976 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
R2 Dhcp; C:\Windows\SysWOW64\dhcpcore.dll [256512 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
S2 DiagTrack; C:\Windows\system32\diagtrack.dll [1390080 2015-07-22] (Microsoft Corporation) [Archivo no firmado]
R2 Dnscache; C:\Windows\System32\dnsrslvr.dll [182272 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
S3 dot3svc; C:\Windows\System32\dot3svc.dll [253952 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
S4 EFS; C:\Windows\System32\lsass.exe [30720 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
S4 ehRecvr; C:\Windows\ehome\ehRecvr.exe [696832 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
S4 ES lite Service; C:\Program Files (x86)\Gigabyte\EasySaver\ESSVR.EXE [68136 2009-08-24] (Giga-Byte Technology -> )
R2 eventlog; C:\Windows\System32\wevtsvc.dll [1659904 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
S2 FontCache; C:\Windows\system32\FntCache.dll [1180160 2015-11-10] (Microsoft Corporation) [Archivo no firmado]
S3 GalaxyClientService; C:\Program Files (x86)\GOG Galaxy\GalaxyClientService.exe [1208392 2019-12-04] (GOG Sp. z o.o. -> GOG.com)
S3 GalaxyCommunication; C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe [6617160 2019-12-04] (GOG Sp. z o.o. -> GOG.com)
S2 gpsvc; C:\Windows\System32\gpsvc.dll [791040 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
S4 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [Archivo no firmado]
R2 IKEEXT; C:\Windows\System32\ikeext.dll [863232 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
S4 IObitUnSvr; C:\Program Files (x86)\IObit\IObit Uninstaller\IUService.exe [156944 2019-08-23] (IObit Information Technology -> IObit)
S2 iphlpsvc; C:\Windows\System32\iphlpsvc.dll [571904 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
S2 JMB36X; C:\Windows\SysWOW64\XSrvSetup.exe [72304 2010-01-18] (JMicron Technology Corp. -> )
S3 KeyIso; C:\Windows\system32\lsass.exe [30720 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
S2 LanmanServer; C:\Windows\system32\srvsvc.dll [235520 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
R2 LanmanWorkstation; C:\Windows\System32\wkssvc.dll [118784 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
S4 LiveUpdateSvc; C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [3046688 2016-07-29] (IObit Information Technology -> IObit)
R2 lmhosts; C:\Windows\System32\lmhsvc.dll [23040 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
S4 MaConfigAgent; C:\Program Files\ma-config.com\MaConfigAgent.exe [2818896 2014-01-20] (Cybelsoft -> CybelSoft)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [6960640 2020-01-20] (Malwarebytes Inc -> Malwarebytes)
S4 MpsSvc; C:\Windows\system32\mpssvc.dll [828416 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
S4 Netlogon; C:\Windows\system32\lsass.exe [30720 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
R3 netprofm; C:\Windows\System32\netprofm.dll [459264 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
R3 netprofm; C:\Windows\SysWOW64\netprofm.dll [359936 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
R2 NlaSvc; C:\Windows\System32\nlasvc.dll [303104 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
R2 nsi; C:\Windows\system32\nsisvc.dll [26112 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
S3 p2pimsvc; C:\Windows\system32\pnrpsvc.dll [327168 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
S3 p2psvc; C:\Windows\system32\p2psvc.dll [439296 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
S2 PcaSvc; C:\Windows\System32\pcasvc.dll [187904 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
S3 pla; C:\Windows\system32\pla.dll [1389056 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
S3 pla; C:\Windows\SysWOW64\pla.dll [1508352 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
R2 PlugPlay; C:\Windows\system32\umpnpmgr.dll [402944 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
S3 PNRPsvc; C:\Windows\system32\pnrpsvc.dll [327168 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
R2 Power; C:\Windows\system32\umpo.dll [164864 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
R2 ProfSvc; C:\Windows\system32\profsvc.dll [225280 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
S3 ProtectedStorage; C:\Windows\system32\lsass.exe [30720 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
S4 RadeonPro Support Service; C:\Program Files (x86)\RadeonPro\RadeonProSupport.exe [20608 2013-11-04] (JOHN MAUTARI -> Mr. John aka japamd) [Archivo no firmado]
S4 RasMan; C:\Windows\System32\rasmans.dll [344576 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
S4 RemoteAccess; C:\Windows\System32\mprdim.dll [97792 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
S4 RemoteAccess; C:\Windows\SysWOW64\mprdim.dll [75264 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
S4 RemoteRegistry; C:\Windows\system32\regsvc.dll [161280 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
S4 rpcapd; C:\Program Files (x86)\WinPcap\rpcapd.exe [118520 2013-02-28] (Riverbed Technology, Inc. -> Riverbed Technology, Inc.)
R2 RpcSs; C:\Windows\system32\rpcss.dll [512000 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
S2 SamSs; C:\Windows\system32\lsass.exe [30720 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
S4 SCardSvr; C:\Windows\System32\SCardSvr.dll [195584 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
S2 Schedule; C:\Windows\system32\schedsvc.dll [1110528 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
S4 SCPolicySvc; C:\Windows\System32\certprop.dll [80384 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
S3 seclogon; C:\Windows\system32\seclogon.dll [30720 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
S2 SentinelKeysServer; C:\Program Files (x86)\Common Files\SafeNet Sentinel\Sentinel Keys Server\sntlkeyssrvr.exe [376832 2013-01-09] (SafeNet, Inc.) [Archivo no firmado]
S2 SentinelProtectionServer; C:\Program Files (x86)\Common Files\SafeNet Sentinel\Sentinel Protection Server\WinNT\spnsrvnt.exe [1259872 2013-01-09] (SafeNet, Inc. -> SafeNet, Inc)
S2 SentinelSecurityRuntime; C:\Program Files (x86)\Common Files\SafeNet Sentinel\Sentinel Security Runtime\sntlsrtsrvr.exe [293216 2013-01-09] (SafeNet, Inc. -> SafeNet, Inc.)
S4 SessionEnv; C:\Windows\system32\sessenv.dll [128000 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
S4 SessionEnv; C:\Windows\SysWOW64\sessenv.dll [119296 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
S3 SharedAccess; C:\Windows\System32\ipnathlp.dll [358912 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
S2 ShellHWDetection; C:\Windows\System32\shsvcs.dll [371712 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
S2 ShellHWDetection; C:\Windows\SysWOW64\shsvcs.dll [328704 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
S3 Spooler; C:\Windows\System32\spoolsv.exe [559616 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
S2 sppsvc; C:\Windows\system32\sppsvc.exe [4425728 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
S2 stisvc; C:\Windows\System32\wiaservc.dll [582656 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
S4 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Test Signing Certificate -> Adobe Systems Incorporated) [Archivo no firmado]
S3 swprv; C:\Windows\System32\swprv.dll [523776 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
S4 SysMain; C:\Windows\system32\sysmain.dll [1742848 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
S4 TabletInputService; C:\Windows\System32\TabSvc.dll [92160 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
S3 TapiSrv; C:\Windows\System32\tapisrv.dll [316416 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
S3 TapiSrv; C:\Windows\SysWOW64\tapisrv.dll [242176 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
S4 TeamViewer7; C:\Program Files (x86)\TeamViewer\Version7\TeamViewer_Service.exe [2754984 2012-09-13] (TeamViewer -> TeamViewer GmbH) [Archivo no firmado]
S4 TermService; C:\Windows\System32\termsrv.dll [687104 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
S2 UxSms; C:\Windows\System32\uxsms.dll [38912 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
S3 VaultSvc; C:\Windows\system32\lsass.exe [30720 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
S3 vds; C:\Windows\System32\vds.exe [532992 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
S3 VSS; C:\Windows\system32\vssvc.exe [1601536 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
S3 W32Time; C:\Windows\system32\w32time.dll [381440 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
S3 wbengine; C:\Windows\system32\wbengine.exe [1504768 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
S4 WbioSrvc; C:\Windows\System32\wbiosrvc.dll [201216 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
S3 WdiServiceHost; C:\Windows\system32\wdi.dll [90112 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
S3 WdiServiceHost; C:\Windows\SysWOW64\wdi.dll [75776 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
S3 WdiSystemHost; C:\Windows\system32\wdi.dll [90112 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
S3 WdiSystemHost; C:\Windows\SysWOW64\wdi.dll [75776 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
S3 WebClient; C:\Windows\System32\webclnt.dll [263680 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
S3 WebClient; C:\Windows\SysWOW64\webclnt.dll [208896 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
S3 Wecsvc; C:\Windows\system32\wecsvc.dll [237568 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
S3 WiaRpc; C:\Windows\System32\wiarpc.dll [66560 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
S4 WinRM; C:\Windows\system32\WsmSvc.dll [2022912 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
S4 WinRM; C:\Windows\SysWOW64\WsmSvc.dll [1177600 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
S3 Wlansvc; C:\Windows\System32\wlansvc.dll [886272 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
S2 wlidsvc; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2292096 2011-03-28] (Microsoft Corporation -> Microsoft Corp.)
S3 WPDBusEnum; C:\Windows\system32\wpdbusenum.dll [121344 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
S2 WsAppService3; C:\Program Files (x86)\Wondershare\WAF3\3.0.0.308\WsAppService3.exe [83232 2019-07-09] (Wondershare Technology Co.,Ltd -> Wondershare)
S2 WSearch; C:\Windows\system32\SearchIndexer.exe [591872 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
S2 WSearch; C:\Windows\SysWOW64\SearchIndexer.exe [427520 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
S2 wuauserv; C:\Windows\system32\wuaueng.dll [2610688 2016-04-22] (Microsoft Corporation) [Archivo no firmado]
S3 wudfsvc; C:\Windows\System32\WUDFSvc.dll [84992 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
S3 WwanSvc; C:\Windows\System32\wwansvc.dll [228864 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
S4 XperiaCompanionService; C:\Program Files\Sony\Xperia Companion\Service\XperiaCompanionService.exe [2548224 2019-10-22] (Sony) [Archivo no firmado]
S2 msiserver; %systemroot%\system32\msiexec /V [X]
S4 PaceLicenseDServices; "C:\Program Files (x86)\Common Files\PACE\Services\LicenseServices\LDSvc.exe" -u https://activation.paceap.com/InitiateActivation [X]

===================== Controladores (Lista blanca) ===================

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)

R3 1394ohci; C:\Windows\system32\drivers\1394ohci.sys [229888 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
S3 61883; C:\Windows\System32\DRIVERS\61883.sys [60288 2009-07-13] (Microsoft Windows -> Microsoft Corporation)
R1 AFD; C:\Windows\system32\drivers\afd.sys [496128 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
S3 amdkmdag; C:\Windows\System32\DRIVERS\atikmdag.sys [60625592 2019-09-10] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
S3 amdkmdap; C:\Windows\System32\DRIVERS\atikmpag.sys [588984 2019-09-10] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
S3 anvsnddrv; C:\Windows\System32\drivers\anvsnddrv.sys [34416 2016-03-24] (Anvsoft Inc. -> AnvSoft Inc.)
S3 AODDriver; C:\Program Files (x86)\Gigabyte\ET6\amd64\AODDriver.sys [52280 2010-03-12] (Advanced Micro Devices, Inc. -> Advanced Micro Devices)
S3 AppID; C:\Windows\system32\drivers\appid.sys [62464 2016-03-25] (Microsoft Windows) [Archivo no firmado]
S1 AppleCharger; C:\Windows\System32\DRIVERS\AppleCharger.sys [21104 2011-01-10] (Giga-Byte Technology -> )
S1 aswArPot; C:\Windows\System32\drivers\aswArPot.sys [204824 2019-10-02] (AVAST Software s.r.o. -> AVAST Software)
S1 aswbidsdriver; C:\Windows\System32\drivers\aswbidsdriver.sys [274456 2019-10-02] (AVAST Software s.r.o. -> AVAST Software)
S0 aswbidsh; C:\Windows\System32\drivers\aswbidsh.sys [209552 2019-10-02] (AVAST Software s.r.o. -> AVAST Software)
S0 aswbuniv; C:\Windows\System32\drivers\aswbuniv.sys [65120 2019-10-02] (AVAST Software s.r.o. -> AVAST Software)
R1 aswKbd; C:\Windows\System32\drivers\aswKbd.sys [42736 2019-10-02] (AVAST Software s.r.o. -> AVAST Software)
S2 aswMonFlt; C:\Windows\System32\drivers\aswMonFlt.sys [171520 2019-10-02] (AVAST Software s.r.o. -> AVAST Software)
R3 aswNetNd6; C:\Windows\System32\DRIVERS\aswNetNd6.sys [38152 2019-10-02] (AVAST Software s.r.o. -> AVAST Software)
R1 aswNetSec; C:\Windows\System32\drivers\aswNetSec.sys [552848 2019-10-02] (AVAST Software s.r.o. -> AVAST Software)
R1 aswRdr; C:\Windows\System32\drivers\aswRdr2.sys [110320 2019-10-02] (AVAST Software s.r.o. -> AVAST Software)
S0 aswRvrt; C:\Windows\System32\drivers\aswRvrt.sys [83792 2019-10-02] (AVAST Software s.r.o. -> AVAST Software)
S1 aswSnx; C:\Windows\System32\drivers\aswSnx.sys [848432 2019-10-02] (AVAST Software s.r.o. -> AVAST Software)
S1 aswSP; C:\Windows\System32\drivers\aswSP.sys [460448 2019-10-02] (AVAST Software s.r.o. -> AVAST Software)
S2 aswStm; C:\Windows\System32\drivers\aswStm.sys [236024 2019-10-02] (AVAST Software s.r.o. -> AVAST Software)
S0 aswVmm; C:\Windows\System32\drivers\aswVmm.sys [316528 2019-10-02] (AVAST Software s.r.o. -> AVAST Software)
S3 AtiHDAudioService; C:\Windows\System32\drivers\AtihdW76.sys [96256 2017-09-01] (Advanced Micro Devices) [Archivo no firmado]
S2 atksgt; C:\Windows\System32\DRIVERS\atksgt.sys [312480 2015-07-18] (Tages SA -> )
S3 BazisPortableCDBus; C:\Windows\System32\drivers\BazisPortableCDBus.sys [291160 2015-04-01] (Sysprogs OU -> Sysprogs OU)
R1 Beep; C:\Windows\System32\Drivers\Beep.sys [6656 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
R3 bowser; C:\Windows\System32\DRIVERS\bowser.sys [90624 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
R1 cdrom; C:\Windows\system32\drivers\cdrom.sys [150016 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
R1 DfsC; C:\Windows\System32\Drivers\dfsc.sys [105472 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
S1 discache; C:\Windows\System32\drivers\discache.sys [40960 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
S3 drmkaud; C:\Windows\system32\drivers\drmkaud.sys [5632 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [271424 2013-11-28] (DT Soft Ltd -> DT Soft Ltd)
S1 ElRawDisk; C:\Windows\system32\drivers\rsdrvx64.sys [26024 2009-02-12] (EldoS Corporation -> EldoS Corporation)
S3 ErrDev; C:\Windows\system32\drivers\errdev.sys [9728 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
S3 etdrv; C:\Windows\etdrv.sys [25640 2015-08-09] (Giga-Byte Technology -> Windows (R) Server 2003 DDK provider)
S3 GVTDrv64; C:\Windows\GVTDrv64.sys [30528 2015-08-09] (GIGA-BYTE TECHNOLOGY CO., LTD -> )
S2 Hardlock; C:\Windows\system32\drivers\hardlock.sys [296448 2005-06-14] (Aladdin Knowledge Systems Ltd.) [Archivo no firmado]
S3 HdAudAddService; C:\Windows\system32\drivers\HdAudio.sys [350208 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
R3 HDAudBus; C:\Windows\system32\drivers\HDAudBus.sys [122368 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
S3 HidBth; C:\Windows\system32\drivers\hidbth.sys [100864 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
R3 HidUsb; C:\Windows\System32\DRIVERS\hidusb.sys [30208 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
S3 HTTP; C:\Windows\System32\drivers\HTTP.sys [754688 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
S3 i8042prt; C:\Windows\system32\drivers\i8042prt.sys [105472 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
S3 IPMIDRV; C:\Windows\system32\drivers\IPMIDrv.sys [78848 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
S3 IPNAT; C:\Windows\System32\drivers\ipnat.sys [116224 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
S3 IUFileFilter; C:\Program Files (x86)\IObit\IObit Uninstaller\drivers\win7_amd64\IUFileFilter.sys [25992 2019-07-30] (IObit CO., LTD -> IObit)
S3 IUProcessFilter; C:\Program Files (x86)\IObit\IObit Uninstaller\drivers\win7_amd64\IUProcessFilter.sys [19280 2019-07-30] (IObit CO., LTD -> IObit)
S3 IURegistryFilter; C:\Program Files (x86)\IObit\IObit Uninstaller\drivers\win7_amd64\IURegistryFilter.sys [31648 2019-07-30] (IObit CO., LTD -> IObit)
R3 kbdhid; C:\Windows\System32\DRIVERS\kbdhid.sys [33280 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
S2 lirsgt; C:\Windows\System32\DRIVERS\lirsgt.sys [43168 2015-07-18] (Tages SA -> )
S3 ma-config_amd64; C:\Program Files\ma-config.com\Drivers\ma-config_amd64.sys [17568 2013-10-23] (Cybelsoft -> CybelSoft)
S2 MBAMChameleon; C:\Windows\System32\Drivers\MbamChameleon.sys [218288 2020-01-20] (Malwarebytes Inc -> Malwarebytes)
R3 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [248968 2020-01-22] (Malwarebytes Inc -> Malwarebytes)
S3 mlkumidi; C:\Windows\System32\drivers\mlkumidi.sys [57408 2012-08-29] (MusicLab, Inc. -> MusicLab, Inc.)
S3 Modem; C:\Windows\System32\drivers\modem.sys [40448 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
S3 monitor; C:\Windows\system32\drivers\monitor.sys [30208 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
S3 mpsdrv; C:\Windows\System32\drivers\mpsdrv.sys [77312 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
S3 MRxDAV; C:\Windows\system32\drivers\mrxdav.sys [142336 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
R3 mrxsmb; C:\Windows\System32\DRIVERS\mrxsmb.sys [159744 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
R3 mrxsmb10; C:\Windows\System32\DRIVERS\mrxsmb10.sys [291328 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
R3 mrxsmb20; C:\Windows\System32\DRIVERS\mrxsmb20.sys [129536 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
S3 NativeWifiP; C:\Windows\System32\DRIVERS\nwifi.sys [324096 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
R3 NdisTapi; C:\Windows\System32\DRIVERS\ndistapi.sys [24064 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
S3 Ndisuio; C:\Windows\System32\DRIVERS\ndisuio.sys [56832 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
R3 NDProxy; C:\Windows\System32\Drivers\NDProxy.sys [58368 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
R1 NetBIOS; C:\Windows\System32\DRIVERS\netbios.sys [44544 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
R1 NetBT; C:\Windows\System32\DRIVERS\netbt.sys [261632 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
S3 NPF; C:\Windows\System32\drivers\npf.sys [36600 2013-02-28] (Riverbed Technology, Inc. -> Riverbed Technology, Inc.)
S3 NPF; C:\Windows\SysWOW64\drivers\npf.sys [32512 2005-08-03] (CACE Technologies) [Archivo no firmado]
R1 nsiproxy; C:\Windows\System32\drivers\nsiproxy.sys [24576 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
R3 nusb3hub; C:\Windows\System32\DRIVERS\nusb3hub.sys [80384 2010-11-18] (Renesas Electronics Corporation) [Archivo no firmado]
R3 nusb3xhc; C:\Windows\System32\DRIVERS\nusb3xhc.sys [181248 2010-11-18] (Renesas Electronics Corporation) [Archivo no firmado]
S3 ohci1394; C:\Windows\system32\drivers\ohci1394.sys [72832 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
S3 Parport; C:\Windows\system32\drivers\parport.sys [97280 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
S2 PEAUTH; C:\Windows\System32\drivers\peauth.sys [663552 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
S3 pfc; C:\Windows\SysWOW64\drivers\pfc.sys [10368 2004-04-01] (Padus, Inc.) [Archivo no firmado]
R3 PptpMiniport; C:\Windows\System32\DRIVERS\raspptp.sys [111104 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
S3 PSKMAD; C:\Windows\System32\DRIVERS\PSKMAD.sys [50320 2015-01-29] (Panda Security S.L. -> Panda Security, S.L.)
R0 PxHlpa64; C:\Windows\System32\Drivers\PxHlpa64.sys [56336 2012-06-22] (Corel Corporation -> Corel Corporation)
R3 RasAgileVpn; C:\Windows\System32\DRIVERS\AgileVpn.sys [60416 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
R3 RasPppoe; C:\Windows\System32\DRIVERS\raspppoe.sys [92672 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
R1 rdbss; C:\Windows\System32\DRIVERS\rdbss.sys [316928 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
S3 RDPWD; C:\Windows\System32\Drivers\RDPWD.sys [212992 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
S3 RTCore64; C:\Program Files (x86)\MSI Afterburner\RTCore64.sys [14024 2017-08-27] (MICRO-STAR INTERNATIONAL CO., LTD. -> )
S3 scfilter; C:\Windows\System32\DRIVERS\scfilter.sys [29696 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
S2 Sentinel64; C:\Windows\System32\Drivers\Sentinel64.sys [145448 2009-09-17] (SafeNet, Inc. -> SafeNet, Inc.)
S3 Ser2pl; C:\Windows\SysWOW64\DRIVERS\ser2pl.sys [43136 2010-06-23] (Prolific Technology Inc.) [Archivo no firmado]
S3 Serenum; C:\Windows\system32\drivers\serenum.sys [23552 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
S1 Serial; C:\Windows\system32\drivers\serial.sys [94208 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
S3 sffdisk; C:\Windows\system32\drivers\sffdisk.sys [14848 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
S3 sffp_mmc; C:\Windows\system32\drivers\sffp_mmc.sys [13824 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
S3 sffp_sd; C:\Windows\system32\drivers\sffp_sd.sys [14336 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
S2 speedfan; C:\Windows\SysWOW64\speedfan.sys [28664 2012-12-29] (SOKNO S.R.L. -> Almico Software)
S3 srv; C:\Windows\System32\DRIVERS\srv.sys [466944 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
S3 srv2; C:\Windows\System32\DRIVERS\srv2.sys [406016 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
S3 srvnet; C:\Windows\System32\DRIVERS\srvnet.sys [167936 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
R3 tap0901; C:\Windows\System32\DRIVERS\tap0901.sys [27136 2016-04-21] (The OpenVPN Project) [Archivo no firmado]
S2 tcpipreg; C:\Windows\System32\drivers\tcpipreg.sys [45568 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
S3 TDPIPE; C:\Windows\System32\drivers\tdpipe.sys [16384 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
S3 TDTCP; C:\Windows\System32\drivers\tdtcp.sys [23552 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
R1 tdx; C:\Windows\System32\DRIVERS\tdx.sys [117760 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
S3 tssecsrv; C:\Windows\System32\DRIVERS\tssecsrv.sys [39936 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
R3 tunnel; C:\Windows\System32\DRIVERS\tunnel.sys [125440 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
S4 udfs; C:\Windows\System32\DRIVERS\udfs.sys [328192 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
R3 umbus; C:\Windows\system32\drivers\umbus.sys [48640 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
U5 UnlockerDriver5; C:\Program Files\Unlocker\UnlockerDriver5.sys [12352 2010-07-01] (Empty Loop -> )
S3 usbaudio; C:\Windows\system32\drivers\usbaudio.sys [109952 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
R3 usbccgp; C:\Windows\System32\DRIVERS\usbccgp.sys [99840 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
S3 usbcir; C:\Windows\system32\drivers\usbcir.sys [100864 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
R3 usbehci; C:\Windows\system32\drivers\usbehci.sys [56320 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
R3 usbfilter; C:\Windows\System32\DRIVERS\usbfilter.sys [60640 2014-02-16] (Advanced Micro Devices, Inc. -> Advanced Micro Devices)
R3 usbhub; C:\Windows\system32\drivers\usbhub.sys [343552 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
R3 usbohci; C:\Windows\system32\drivers\usbohci.sys [25600 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
S3 USBSTOR; C:\Windows\System32\DRIVERS\USBSTOR.SYS [91648 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
S3 usbuhci; C:\Windows\system32\drivers\usbuhci.sys [30720 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
S3 vhidmini; C:\Windows\System32\DRIVERS\vjoy.sys [57976 2017-04-06] (Shaul Eizikovich -> Shaul Eizikovich)
S3 vjoy; C:\Windows\System32\DRIVERS\vjoy.sys [57976 2017-04-06] (Shaul Eizikovich -> Shaul Eizikovich)
S3 vwifibus; C:\Windows\System32\drivers\vwifibus.sys [25088 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
S3 WANARP; C:\Windows\System32\DRIVERS\wanarp.sys [88576 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
S1 Wanarpv6; C:\Windows\System32\DRIVERS\wanarp.sys [88576 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
R0 Wdf01000; C:\Windows\SysWOW64\drivers\Wdf01000.sys [492000 2006-11-02] (Microsoft Windows Component Publisher -> Microsoft Corporation)
S3 WinRing0_1_2_0; C:\ProgramData\AwesomeVideoPlayer\lib64\libohm.sys [14544 2017-03-30] (Noriyuki MIYAZAKI -> OpenLibSys.org)
S3 WinUsb; C:\Windows\system32\drivers\WinUsb.sys [42496 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
R3 WmiAcpi; C:\Windows\system32\drivers\wmiacpi.sys [14336 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
S3 WudfPf; C:\Windows\System32\drivers\WudfPf.sys [87040 2015-06-03] (Microsoft Corporation) [Archivo no firmado]
S3 WUDFRd; C:\Windows\System32\DRIVERS\WUDFRd.sys [198656 2015-06-03] (Microsoft Corporation) [Archivo no firmado]
S2 {09F57980-3432-4AFC-957D-27AC45FAE1F5}; C:\Program Files (x86)\CyberLink\PowerDVD13\Common\NavFilter\000.fcl [130320 2013-07-06] (CyberLink Corp. -> CyberLink Corp.)
S1 ArcCtrl; system32\drivers\ArcCtrl.sys [X]
S4 archlp; system32\drivers\archlp.sys [X]
S3 gHidPnp; System32\Drivers\gHidPnp.Sys [X]
S3 gMouUsb; system32\DRIVERS\gMouUsb.sys [X]
S3 taphss6; system32\DRIVERS\taphss6.sys [X]

==================== NetSvcs (Lista blanca) ===================

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)


==================== Un mes (creado) ===================

(Si una entrada es incluida en el fixlist, el archivo/carpeta será eliminado/a.)

2020-01-22 16:13 - 2020-01-22 16:15 - 000000000 ____D C:\FRST
2020-01-22 16:09 - 2020-01-22 16:09 - 000003292 _____ C:\Users\Mar\desktop\JRT.txt
2020-01-22 15:29 - 2020-01-22 15:29 - 000248968 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamswissarmy.sys
2020-01-22 15:16 - 2020-01-22 15:16 - 000280840 _____ C:\Users\Mar\AppData\Local\GDIPFONTCACHEV1.DAT
2020-01-22 15:10 - 2020-01-22 15:10 - 000000320 _____ C:\Windows\Tasks\AdwCleaner_onReboot.job
2020-01-22 15:07 - 2020-01-22 15:09 - 000000000 ____D C:\AdwCleaner
2020-01-22 10:06 - 2020-01-22 15:19 - 000000000 ____D C:\Users\Mar\AppData\LocalLow\IGDump
2020-01-22 09:44 - 2020-01-22 09:47 - 005775560 _____ C:\Windows\system32\FNTCACHE.DAT
2020-01-22 09:44 - 2020-01-22 09:44 - 000272016 _____ C:\Windows\Minidump\012220-42338-01.dmp
2020-01-20 15:56 - 2020-01-20 15:56 - 000000000 ____D C:\Users\Mar\AppData\Local\mbam
2020-01-20 15:54 - 2020-01-22 15:29 - 000223480 _____ C:\Windows\ntbtlog.txt
2020-01-20 15:54 - 2020-01-20 15:54 - 000218288 _____ (Malwarebytes) C:\Windows\system32\Drivers\MbamChameleon.sys
2020-01-20 15:54 - 2020-01-20 15:54 - 000000000 ____D C:\Users\Mar\AppData\Local\mbamtray
2020-01-20 15:53 - 2020-01-20 15:53 - 000153312 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbae64.sys
2020-01-20 15:52 - 2020-01-20 15:52 - 000000000 ____D C:\Program Files\Malwarebytes
2020-01-20 14:34 - 2020-01-20 14:34 - 000003240 ____N C:\bootsqm.dat
2020-01-19 10:09 - 2020-01-22 09:50 - 000000000 ____D C:\Program Files (x86)\Hard Disk Sentinel
2020-01-19 10:09 - 2020-01-19 10:09 - 000000000 ____D C:\Windows\system32\Tasks\HardDiskSentinel
2020-01-19 10:09 - 2020-01-19 10:09 - 000000000 ____D C:\Users\Mar\AppData\Roaming\Hard Disk Sentinel
2020-01-18 08:10 - 2020-01-22 15:12 - 000003094 _____ C:\Windows\system32\Tasks\AMDLinkUpdate
2020-01-16 14:11 - 2020-01-16 14:11 - 000000000 ____D C:\Program Files (x86)\NirSoft
2020-01-16 10:01 - 2020-01-19 23:04 - 000000000 ____D C:\Users\Mar\desktop\PANTALLA AZUL
2020-01-16 09:54 - 2020-01-16 09:54 - 000000000 ____D C:\Users\Mar\Documents\AIDA64 Reports
2020-01-15 23:46 - 2020-01-15 23:46 - 000000000 ____D C:\Program Files\CrystalDiskInfo
2020-01-02 23:45 - 2020-01-06 19:26 - 000000000 ____D C:\Users\Mar\AppData\Roaming\Telegram Desktop
2020-01-02 23:45 - 2020-01-02 23:45 - 000000979 _____ C:\Users\Mar\desktop\Telegram.lnk

==================== Un mes (modificado) ==================

(Si una entrada es incluida en el fixlist, el archivo/carpeta será eliminado/a.)

2020-01-22 15:27 - 2018-01-02 19:23 - 000065536 _____ C:\Windows\system32\spu_storage.bin
2020-01-22 15:26 - 2009-07-14 02:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2020-01-22 15:25 - 2009-07-14 01:45 - 000021072 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2020-01-22 15:25 - 2009-07-14 01:45 - 000021072 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2020-01-22 15:21 - 2018-11-25 16:18 - 000004168 _____ C:\Windows\system32\Tasks\Avast Emergency Update
2020-01-22 15:16 - 2018-11-25 16:19 - 000000000 ____D C:\Users\Mar\AppData\Local\AVAST Software
2020-01-22 15:13 - 2016-11-15 14:04 - 002766848 ___SH C:\Users\Mar\desktop\Thumbs.db
2020-01-22 15:09 - 2013-11-28 10:45 - 000000000 ____D C:\Users\Mar
2020-01-22 14:57 - 2016-04-15 18:59 - 000000000 ____D C:\Program Files (x86)\Cheat Engine 6.5
2020-01-22 09:54 - 2013-11-28 12:00 - 000000000 ____D C:\Users\Mar\desktop\Mantenimiento
2020-01-22 09:44 - 2014-10-25 13:20 - 000000000 ____D C:\Windows\Minidump
2020-01-20 15:56 - 2013-11-28 14:04 - 000000000 ____D C:\Users\Mar\AppData\Local\cache
2020-01-20 15:53 - 2009-07-14 00:20 - 000000000 ____D C:\Windows\inf
2020-01-20 15:23 - 2014-09-08 22:15 - 000000000 ____D C:\Users\Mar\AppData\Roaming\IDM
2020-01-20 15:13 - 2019-09-26 20:05 - 000000000 ____D C:\Users\Mar\AppData\Local\CrashDumps
2020-01-20 10:11 - 2019-09-24 10:52 - 000003122 _____ C:\Windows\system32\Tasks\ModifyLinkUpdate
2020-01-20 10:11 - 2019-09-24 10:52 - 000003072 _____ C:\Windows\system32\Tasks\StartDVR
2020-01-20 10:11 - 2019-09-24 10:51 - 000003152 _____ C:\Windows\system32\Tasks\StartCN
2020-01-20 10:11 - 2019-04-08 15:23 - 000004484 _____ C:\Windows\system32\Tasks\Adobe Flash Player NPAPI Notifier
2020-01-20 10:11 - 2016-11-01 22:04 - 000002844 _____ C:\Windows\system32\Tasks\Uninstaller_SkipUac_Mar
2020-01-20 10:11 - 2013-11-28 12:21 - 000003472 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA
2020-01-20 10:11 - 2013-11-28 12:21 - 000003344 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore
2020-01-20 10:01 - 2018-10-23 19:30 - 000000000 ____D C:\Windows\system32\Tasks\AVAST Software
2020-01-19 22:08 - 2017-06-11 22:37 - 000000000 ____D C:\Users\Mar\AppData\LocalLow\Mozilla
2020-01-19 14:58 - 2010-11-21 00:24 - 000006656 _____ C:\Windows\system32\lpcio.dll
2020-01-16 15:20 - 2013-11-28 13:34 - 000000000 ____D C:\Users\Mar\AppData\Roaming\DMCache
2020-01-16 01:28 - 2016-06-19 16:43 - 000000000 ____D C:\Program Files (x86)\RivaTuner Statistics Server
2020-01-15 23:19 - 2015-07-15 01:31 - 000000000 ____D C:\Program Files (x86)\SpeedFan
2020-01-15 23:03 - 2013-11-28 19:55 - 000000000 ____D C:\Users\Mar\AppData\Local\ElevatedDiagnostics
2020-01-15 21:05 - 2013-11-28 18:09 - 000000000 ____D C:\Users\Mar\desktop\G
2020-01-08 00:56 - 2019-06-23 08:52 - 000000000 ____D C:\Users\Mar\AppData\Roaming\vlc
2020-01-07 23:25 - 2010-11-21 04:09 - 000750994 _____ C:\Windows\system32\perfh00A.dat
2020-01-07 23:25 - 2010-11-21 04:09 - 000160036 _____ C:\Windows\system32\perfc00A.dat
2020-01-07 23:25 - 2009-07-14 02:13 - 001685992 _____ C:\Windows\system32\PerfStringBackup.INI
2020-01-05 07:53 - 2016-06-19 16:42 - 000000000 ____D C:\Program Files (x86)\MSI Afterburner
2020-01-01 13:43 - 2019-09-22 10:44 - 000000000 ____D C:\Program Files\Epic Games
2019-12-30 23:21 - 2015-01-29 09:21 - 000000000 ____D C:\Users\Mar\AppData\Local\JDownloader v2.0
2019-12-29 17:36 - 2013-11-28 12:21 - 000000000 ____D C:\Program Files (x86)\Google
2019-12-28 00:01 - 2014-02-08 18:44 - 000000000 ____D C:\Program Files\Recuva
2019-12-27 20:10 - 2009-07-14 02:08 - 000032630 _____ C:\Windows\Tasks\SCHEDLGU.TXT

==================== Archivos en la raíz de algunos directorios ========

2013-11-28 12:00 - 2010-01-19 19:47 - 000505642 ____R () C:\Program Files (x86)\CPU-Z 1.40 Portable.exe
2017-08-15 19:04 - 2017-08-16 11:08 - 000000213 _____ () C:\Program Files (x86)\EagleGetfirefox.json
2013-11-28 12:00 - 2010-01-19 19:47 - 000444229 ____R () C:\Program Files (x86)\GPU-Z 0.1 Portable.exe
2013-12-17 18:14 - 2013-12-17 18:15 - 000081329 _____ () C:\Program Files (x86)\Uninstal.exe
2017-10-26 19:16 - 2017-10-26 19:17 - 000354518 _____ () C:\Users\Mar\AppData\Roaming\CodecsLE_Install.log
2014-08-15 15:38 - 2014-08-15 15:39 - 004943722 _____ () C:\Users\Mar\AppData\Roaming\EditorTranscode_Install.log
2015-08-26 22:56 - 2015-09-06 14:56 - 000099384 _____ () C:\Users\Mar\AppData\Roaming\inst.exe
2015-08-26 22:56 - 2015-09-06 14:56 - 000007859 _____ () C:\Users\Mar\AppData\Roaming\pcouffin.cat
2015-08-26 22:56 - 2015-09-06 14:56 - 000001167 _____ () C:\Users\Mar\AppData\Roaming\pcouffin.inf
2015-08-26 22:56 - 2015-09-06 14:56 - 000000055 _____ () C:\Users\Mar\AppData\Roaming\pcouffin.log
2015-08-26 22:56 - 2015-09-06 14:56 - 000082816 _____ (VSO Software) C:\Users\Mar\AppData\Roaming\pcouffin.sys
2014-05-26 02:16 - 2014-05-26 02:16 - 000000132 _____ () C:\Users\Mar\AppData\Roaming\Prefs. de filtro IllExport de Adobe CS6
2014-06-23 04:08 - 2017-12-15 14:29 - 000000132 _____ () C:\Users\Mar\AppData\Roaming\Prefs. de formato PNG de Adobe CS6
2018-09-04 00:12 - 2018-09-04 00:12 - 000000048 _____ () C:\Users\Mar\AppData\Roaming\~SiMPLEX.ini
2019-04-11 20:26 - 2019-04-11 20:26 - 000000000 _____ () C:\Users\Mar\AppData\Local\oobelibMkey.log
2015-08-02 22:10 - 2015-08-02 22:10 - 004093575 _____ () C:\Users\Mar\AppData\Local\package.nw.new
2019-03-20 20:37 - 2019-11-15 23:35 - 051672928 _____ (Sony) C:\Users\Mar\AppData\Local\pcc.exe
2014-06-10 23:03 - 2014-06-10 23:03 - 000000218 _____ () C:\Users\Mar\AppData\Local\recently-used.xbel
2014-06-28 15:12 - 2017-08-14 20:45 - 000007635 _____ () C:\Users\Mar\AppData\Local\Resmon.ResmonCfg

==================== SigCheck ============================

(No existe una corrección automática para los archivos que no pasan la verificación.)

C:\Windows\system32\winlogon.exe => MD5 es legítimo
C:\Windows\explorer.exe => MD5 es legítimo
C:\Windows\SysWOW64\explorer.exe => MD5 es legítimo
C:\Windows\system32\svchost.exe => MD5 es legítimo
C:\Windows\SysWOW64\svchost.exe => MD5 es legítimo
C:\Windows\system32\services.exe => MD5 es legítimo
C:\Windows\system32\User32.dll => MD5 es legítimo
C:\Windows\SysWOW64\User32.dll => MD5 es legítimo
C:\Windows\system32\rpcss.dll => MD5 es legítimo
C:\Windows\system32\dnsapi.dll => MD5 es legítimo
C:\Windows\SysWOW64\dnsapi.dll => MD5 es legítimo

LastRegBack: 2020-01-18 00:24
==================== Final de FRST.txt ========================

Resultados del Análisis Adicional de Farbar Recovery Scan Tool (x64) Versión: 22-01-2020 01
Ejecutado por Mar (22-01-2020 16:15:56)
Ejecutado desde I:\BACKUP 22-1-2020\AUXILIOOOOOOOOOOOOOO
Windows 7 Home Premium Service Pack 1 (X64) (2013-11-28 13:45:04)
Modo de Inicio: Safe Mode (with Networking)
==========================================================


==================== Cuentas: =============================

4F03132614624CED9DEB (S-1-5-21-1557413109-1875796577-672599849-1008 - Limited - Enabled)
Administrador (S-1-5-21-1557413109-1875796577-672599849-500 - Administrator - Disabled)
HomeGroupUser$ (S-1-5-21-1557413109-1875796577-672599849-1006 - Limited - Enabled)
Invitado (S-1-5-21-1557413109-1875796577-672599849-501 - Limited - Disabled)
Mar (S-1-5-21-1557413109-1875796577-672599849-1000 - Administrator - Enabled) => C:\Users\Mar

==================== Centro de Seguridad ========================

(Si una entrada es incluida en el fixlist, será eliminada.)

AV: Avast Antivirus (Enabled - Up to date) {8EA8924E-BC81-DC44-8BB0-8BAE75D86EBF}
AV: Malwarebytes (Disabled - Up to date) {23007AD3-69FE-687C-2629-D584AFFAF72B}
AS: Malwarebytes (Disabled - Up to date) {98619B37-4FC4-67F2-1C99-EEF6D47DBD96}
AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Enabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402}
FW: Avast Antivirus (Enabled) {B693136B-F6EE-DD1C-A0EF-229B8B0B29C4}

==================== Programas instalados ======================

(Solo los programas de adware con indicador "Oculto", pueden ser añadidos al fixlist para hacerlos visibles. Los programas adware deben ser desinstalados manualmente.)

@BIOS (HKLM-x32\...\{B2DC3F08-2EB2-49A5-AA24-15DFC8B1CB83}) (Version: 2.11 - GIGABYTE)
µTorrent (HKU\S-1-5-21-1557413109-1875796577-672599849-1000\...\uTorrent) (Version: 3.5.5.45291 - BitTorrent Inc.)
7-Zip 18.05 (x64) (HKLM\...\7-Zip) (Version: 18.05 - Igor Pavlov)
Abrosoft FantaMorph 5.4.0 (HKLM-x32\...\Abrosoft FantaMorph 5_is1) (Version: 5.4.0 - Abrosoft)
AC3Filter 1.62b (HKLM-x32\...\AC3Filter_is1) (Version: 1.62b - Alexander Vigovsky)
adobe (HKLM\...\{94ED5A92-8B93-48A2-BEA6-8FB4C2EAF08F}) (Version: 1.0.0000 - Adobe Systems Incorporated) Hidden
Adobe Acrobat DC (HKLM-x32\...\{AC76BA86-1033-FFFF-7760-0C0F074E4100}) (Version: 19.012.20036 - Adobe Systems Incorporated)
Adobe Acrobat Reader DC - Español (HKLM-x32\...\{AC76BA86-7AD7-1034-7B44-AC0F074E4100}) (Version: 18.011.20035 - Adobe Systems Incorporated)
Adobe After Effects CS6 (HKLM-x32\...\{4817D846-700B-474E-A31B-80892B3E92E3}) (Version: 11 - Adobe Systems Incorporated)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 18.0.0.144 - Adobe Systems Incorporated)
Adobe Animate CC 2018 (HKLM-x32\...\FLPR_18_0) (Version: 18.0 - Adobe Systems Incorporated)
Adobe Audition 1.5 (HKLM-x32\...\{86EF9FC4-F209-4520-B7E1-C7FF0EEBDFFF}) (Version: 1.5 - Adobe Systems)
Adobe Audition CC 2015 (HKLM-x32\...\{839A3566-AED6-4787-A849-5CBE2B1DC6AE}) (Version: 8.0 - Adobe Systems Incorporated)
Adobe Audition CC 2018 (HKLM-x32\...\AUDT_11_1_1) (Version: 11.1.1 - Adobe Systems Incorporated)
Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 4.5.0.331 - Adobe Systems Incorporated)
Adobe Encore CS6 (HKLM-x32\...\{46251F95-B2F8-484A-9B5B-8C0E5A43A202}) (Version: 6.0.0 - Adobe Systems Incorporated)
Adobe Flash Player 30 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 30.0.0.113 - Adobe Systems Incorporated)
Adobe Flash Player 32 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 32.0.0.171 - Adobe)
Adobe Help Manager (HKLM-x32\...\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 4.0.244 - Adobe Systems Incorporated)
Adobe Media Encoder CC 2015 (HKLM-x32\...\{0FAC7130-BEC5-47A5-8813-1D339B8326ED}) (Version: 9.0.0 - Adobe Systems Incorporated)
Adobe Photoshop CS6 (HKLM-x32\...\{74EB3499-8B95-4B5C-96EB-7B342F3FD0C6}) (Version: 13.0 - Adobe Systems Incorporated)
Adobe Premiere Pro CC 2018 (HKLM-x32\...\PPRO_12_1_2) (Version: 12.1.2 - Adobe Systems Incorporated)
Advanced RAR Password Recovery (remove only) (HKLM-x32\...\Advanced RAR Password Recovery) (Version:  - )
AIDA64 Engineer v5.97 (HKLM-x32\...\AIDA64 Engineer_is1) (Version: 5.97 - FinalWire Ltd.)
Aiseesoft Blu-ray Player 6.6.10 (HKLM-x32\...\{3E1A13C3-E458-4995-BEA6-4B9BE279D502}_is1) (Version: 6.6.10 - Aiseesoft Studio)
AmazingMIDI (HKLM-x32\...\AmazingMIDI) (Version:  - )
AMD Software (HKLM\...\AMD Catalyst Install Manager) (Version: 19.9.2 - Advanced Micro Devices, Inc.)
Any Video Converter Ultimate 6.0.0 (HKLM-x32\...\Any Video Converter Ultimate_is1) (Version:  - Any-Video-Converter.com)
Aplicación para detectar Winamp (HKU\S-1-5-21-1557413109-1875796577-672599849-1000\...\Winamp Detect) (Version: 1.0.0.1 - Nullsoft, Inc)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
Application Verifier (x64) (HKLM\...\{361A49FA-59B3-49FB-8C3E-08AF3EA5791A}) (Version: 4.0.917 - Microsoft Corporation)
Ashampoo Burning Studio 11 v.11.0.2 (HKLM-x32\...\Ashampoo Burning Studio 11_is1) (Version: 11.0.2 - Ashampoo GmbH & Co. KG)
Ashampoo Photo Optimizer 6 v.6.0.13 (HKLM-x32\...\{91B33C97-546E-E89A-9F44-0BB2D57DBE96}_is1) (Version: 6.0.13 - Ashampoo GmbH & Co. KG)
ASIO4ALL (HKLM-x32\...\ASIO4ALL) (Version: 2.10 - Michael Tippach)
Audacity 2.1.1 (HKLM-x32\...\Audacity®_is1) (Version: 2.1.1 - Audacity Team)
Autodesk Backburner 2014 (HKLM-x32\...\{3D347E6D-5A03-4342-B5BA-6A771885F379}) (Version: 14.0.0.0 - Autodesk, Inc.)
Autodesk Composite 2014 (HKLM\...\{5AAB972C-FF31-4B01-8445-50C42860EC02}) (Version: 9.0.0.0 - Autodesk) Hidden
Autodesk Composite 2014 (HKLM\...\Autodesk Composite 2014) (Version: 9.0.0.0 - Autodesk)
Autodesk DirectConnect 2014 64-bit (HKLM\...\{8FC7C2B2-0F64-4B35-AA3D-2B051D009243}) (Version: 8.0.56.1 - Autodesk) Hidden
Autodesk DirectConnect 2014 64-bit (HKLM\...\Autodesk DirectConnect 2014 64-bit) (Version: 8.0.56.1 - Autodesk)
Autodesk MatchMover 2014 (HKLM\...\{B151ECD3-2DBE-45E9-816E-F8AA6238F6A8}) (Version: 14.00.0000 - Autodesk)
Autodesk Maya 2014 (HKLM\...\{7FA8BC5D-7CE4-42F3-8EAE-32DF5BAB53A7}) (Version: 16.0.0.0 - Autodesk) Hidden
Autodesk Maya 2014 (HKLM\...\Autodesk Maya 2014) (Version: 16.0.0.0 - Autodesk)
AutoGreen B10.1021.1 (HKLM-x32\...\{C75FAD21-EC08-42F3-92D6-C9C0AB355345}) (Version: 1.00.0000 - GIGABYTE) Hidden
AutoGreen B10.1021.1 (HKLM-x32\...\InstallShield_{C75FAD21-EC08-42F3-92D6-C9C0AB355345}) (Version: 1.00.0000 - GIGABYTE)
Avast Premium Security (HKLM-x32\...\Avast Antivirus) (Version: 19.8.2393 - AVAST Software)
Avid Codecs LE (HKLM-x32\...\{C8867EDE-69E9-422C-9E88-80CF5B897C4F}) (Version: 2.7.3.39175 - Avid Technology)
Avid Editor Transcode (HKLM\...\{C38FD4F6-62AD-445B-83CE-3CAF2E9AD918}) (Version: 3.0.0 - Avid Technology, Inc.)
Avid License Control (HKLM-x32\...\{F187D064-F101-4E95-8D05-4027809AA0F8}) (Version: 3.0.1 - Avid Technology, Inc.)
Avid Media Composer (HKLM\...\{F56EA69D-81E2-4810-81FE-CC5F9C8DC18F}) (Version: 7.0.0 - Avid Technology, Inc.)
Awesome Video Player (HKLM-x32\...\{2D59BD6E-35E1-48B5-B052-54979FA21462}_is1) (Version: 1.2.0.1 - Enigma Studio LLC)
BCC 8 OFX 64Bit (HKLM\...\{24D38864-527F-4688-B831-A1A4CC60CD54}) (Version: 8.0.1 - Boris FX, Inc.)
bl (HKLM-x32\...\{2A075BB4-E976-4278-BF3F-E5C6945D84C0}) (Version: 1.0.0 - Your Company Name) Hidden
Blair Witch (HKU\S-1-5-21-1557413109-1875796577-672599849-1000\...\Blair Witch) (Version:  - HOODLUM)
Blender (HKLM\...\Blender) (Version: 2.71 - Blender Foundation)
Branding64 (HKLM\...\{EE2AFCE4-0238-4DE0-A140-1647021627C1}) (Version: 1.00.0001 - Advanced Micro Devices, Inc.) Hidden
BS.Player PRO (HKLM-x32\...\BSPlayerp) (Version: 2.51.1022 - Webteh, d.o.o.)
Camtasia 2019 (HKLM\...\{02E89B69-B66F-4350-8616-ACEA19C57493}) (Version: 19.0.4.4929 - TechSmith Corporation) Hidden
Camtasia 2019 (HKLM-x32\...\{df3c1185-e1fd-4625-b6ec-0a10258e4cff}) (Version: 19.0.4.4929 - TechSmith Corporation)
Canopus Codec Option (HKLM-x32\...\{772E9146-D676-4869-A298-047FF2A2B92D}) (Version: 3.01 - )
Catalyst Browse 2017.2 (HKLM\...\{362AFF70-9286-11E7-AA7E-5CF9DD6B5184}) (Version: 2017.2.1.267 - Sony)
Catalyst Prepare 2017.1 (HKLM\...\{BBA5FBA1-0807-11E7-A1F2-5CF9DD6B5184}) (Version: 2017.1.0.163 - Sony)
CCleaner (HKLM\...\CCleaner) (Version: 5.41 - Piriform)
CDisplayEx 1.10.29 (HKLM\...\CDisplayEx_is1) (Version:  - Progdigy Software S.A.R.L.)
Cheat Engine 6.5 (HKLM-x32\...\Cheat Engine 6.5_is1) (Version:  - Cheat Engine)
Citra (HKU\S-1-5-21-1557413109-1875796577-672599849-1000\...\{a09c2385-968f-4efb-9001-80b3eb6d2af0}) (Version: 1.0.0 - Citra Team)
Compatibilidad con Aplicaciones de Apple (HKLM-x32\...\{46F044A5-CE8B-4196-984E-5BD6525E361D}) (Version: 2.3.6 - Apple Inc.)
Construct 2 r269 (HKLM\...\Construct 2_is1) (Version: 1.0.269.0 - Scirra)
ConvertHelper 3.2 (HKLM\...\{27CC6AB1-E72B-4179-AF1A-EAE507EBAF52}}_is1) (Version:  - DownloadHelper)
Cool Edit Pro 2.1 (HKLM-x32\...\Cool Edit Pro 2.1) (Version:  - )
CPUID HWMonitor Pro 1.20 (HKLM\...\CPUID HWMonitorPro_is1) (Version:  - )
Creative ALchemy Universal (HKLM-x32\...\ALchemy) (Version:  - )
CrystalDiskInfo 8.3.2 (HKLM\...\CrystalDiskInfo_is1) (Version: 8.3.2 - Crystal Dew World)
CyberLink PowerDVD 13 (HKLM-x32\...\InstallShield_{3CFDF154-7E60-4E98-A8DF-C693A4F8E6B6}) (Version: 13.0.3105.58 - CyberLink Corp.)
D3DX10 (HKLM-x32\...\{E09C4DB7-630C-4F06-A631-8EA7239923AF}) (Version: 15.4.2368.0902 - Microsoft) Hidden
DAEMON Tools Pro (HKLM-x32\...\DAEMON Tools Pro) (Version: 4.41.0315.0262 - DT Soft Ltd)
DARK SOULS REMASTERED (HKLM-x32\...\DARK SOULS REMASTERED_is1) (Version:  - )
Darksiders III Keepers of the Void (HKLM-x32\...\Darksiders III Keepers of the Void_is1) (Version:  - )
Data Lifeguard Diagnostic for Windows 1.22 (HKLM-x32\...\{519C4DB6-B53B-4F5C-8297-89B2BE949FA5}_is1) (Version:  - Western Digital Corporation)
Debugging Tools for Windows (x64) (HKLM\...\{7F2E5C3B-DBDF-469D-AD8D-F686D3B71176}) (Version: 6.11.1.404 - Microsoft Corporation)
Defraggler (HKLM\...\Defraggler) (Version: 2.19 - Piriform)
Diablo Gold Repack (HKLM-x32\...\Diablo Gold Repack) (Version:  - )
DISTRAINT: Deluxe Edition (HKLM-x32\...\1180040534_is1) (Version: 1.0 - GOG.com)
Dolphin (HKLM-x32\...\Dolphin) (Version: 5.0 - Dolphin Team)
Driver Fusion (HKLM-x32\...\Driver Fusion) (Version: 3.2.0.0 - Treexy)
Dropbox (HKU\S-1-5-21-1557413109-1875796577-672599849-1000\...\Dropbox) (Version: 87.4.138 - Dropbox, Inc.)
DVD Architect Pro 5.2 (HKLM-x32\...\{C754A661-C275-11DF-B952-0013D3D69929}) (Version: 5.2.124 - Sony)
DVD Shrink 3.2 (HKLM-x32\...\DVD Shrink_is1) (Version:  - DVD Shrink)
DVDFab Player 5 5.0.1.8 (02/08/2018) (HKLM-x32\...\DVDFab_Player_5) (Version: 5.0.1.8 - DVDFab.cn)
Dxtory version 2.0.119 (HKLM-x32\...\Dxtory2.0_is1) (Version: 2.0.119 - Dxtory Software)
EagleGet version 2.0.4.25 (HKLM-x32\...\{F6D8142A-B30B-454B-9EE0-08A7B997DFE4}_is1) (Version: 2.0.4.25 - EagleGet)
EASEUS Data Recovery Wizard Professional 5.0.1 (HKLM-x32\...\EASEUS Data Recovery Wizard Professional 5.0.1_is1) (Version:  - EASEUS)
Easy BitTorrent Client (HKLM-x32\...\Easy BitTorrent Client) (Version:  - )
Easy Drive Data Recovery (HKLM-x32\...\Easy Drive Data Recovery) (Version: 3.0 - MunSoft)
Easy Tune 6 B11.0120.1 (HKLM-x32\...\{457D7505-D665-4F95-91C3-ECB8C56E9ACA}) (Version: 1.00.0000 - GIGABYTE) Hidden
Easy Tune 6 B11.0120.1 (HKLM-x32\...\InstallShield_{457D7505-D665-4F95-91C3-ECB8C56E9ACA}) (Version: 1.00.0000 - GIGABYTE)
EasySaver B9.1214.1  (HKLM-x32\...\{07300F01-89CA-4CF8-92BD-2A605EB83C95}) (Version: 1.00.0000 - Gigabyte)
Effects Suite 64-bit (HKLM\...\{A9462025-681A-44C7-9F6F-70C96320F4C2}) (Version: 11.0.0 - Red Giant Software) Hidden
Effects Suite 64-bit (HKLM-x32\...\InstallShield_{A9462025-681A-44C7-9F6F-70C96320F4C2}) (Version: 11.0.0 - Red Giant Software)
Epic Games Launcher (HKLM-x32\...\{5D2C53C5-AA9C-493F-99B6-A8F458A62EAB}) (Version: 1.1.229.0 - Epic Games, Inc.)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{66C5838F-B854-4A55-89E6-A6138747A4DF}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
ESET Online Scanner v3 (HKLM-x32\...\ESET Online Scanner) (Version:  - )
EVEREST Ultimate Edition v5.50 (HKLM-x32\...\EVEREST Ultimate Edition_is1) (Version: 5.50 - Lavalys, Inc.)
Faasoft Video Converter 5.4.23.6956 (HKLM-x32\...\{C6FE6897-0A65-4474-8EF7-E7AF11F8F239}_is1) (Version:  - Faasoft Corporation)
Fallout 4, âåðñèÿ 1.0 (HKLM-x32\...\Fallout 4_is1) (Version: 1.0 - )
File Repair (HKLM-x32\...\File Repair_is1) (Version:  - File Repair)
FILEminimizer Pictures (HKLM-x32\...\FILEminimizer Pictures_is1) (Version:  - balesio AG)
FILEminimizer Suite (HKLM-x32\...\FILEminimizer Suite_is1) (Version:  - balesio AG)
FilmConvert Pro OFX (HKLM\...\{615BE648-F144-4F0A-B561-6533E03ACBC3}) (Version: 2.20 - Rubber Monkey Software)
FL Studio 11 (HKLM-x32\...\FL Studio 11) (Version:  - Image-Line)
Flawless Widescreen version 1.0.15 (HKLM-x32\...\{7348D82E-8C68-48FF-BA2D-8C97B5B4B3D8}_is1) (Version: 1.0.15 - Flawless Widescreen)
FlowStone FL 3.0 (HKLM-x32\...\FlowStone) (Version:  - )
FormatFactory 3.9.5.0 (HKLM-x32\...\FormatFactory) (Version: 3.9.5.0 - Free Time)
Foxit PDF Editor (HKLM-x32\...\Foxit PDF Editor) (Version: 2.2.1.1119 - Foxit Corporation)
Foxit Reader (HKLM-x32\...\Foxit Reader_is1) (Version: 9.0.1.1049 - Foxit Software Inc.)
Fraps (remove only) (HKLM-x32\...\Fraps) (Version:  - )
Full Throttle Remastered (HKLM-x32\...\1325415523_is1) (Version: 1.1.891868 - GOG.com)
GenArts SapphireEdge Plug-ins 2.03 for OFX (HKLM\...\GenArts SapphireEdge Plug-ins for OFX_is1) (Version:  - )
GetDataBack for FAT (HKLM-x32\...\{2EEEC858-21F8-419B-8FE2-820621BFFCD7}) (Version: 4.32.000 - Runtime Software)
GetFLV 9.3.1.8 (HKLM-x32\...\GetFLV_is1) (Version:  - GetFLV, Inc.)
Ghostbusters The Video Game Remastered (HKU\S-1-5-21-1557413109-1875796577-672599849-1000\...\Ghostbusters The Video Game Remastered) (Version:  - HOODLUM)
Gigabyte Raid Configurer (HKLM-x32\...\{3A1B5D40-41E9-43FA-8C7B-A8667F5586EF}) (Version: 1.00.0001 - GIGABYTE Technologies, Inc.)
Glary Utilities Pro 2.55.0.1790 (HKLM-x32\...\Glary Utilities_is1) (Version: 2.55.0.1790 - Glarysoft Ltd)
GLInterceptx64 1.3.3 (HKLM\...\GLInterceptx64_is1) (Version: 1.3.3 - Damian Trebilco)
GOG Galaxy (HKLM-x32\...\{7258BA11-600C-430E-A759-27E2C691A335}_is1) (Version:  - GOG.com)
GOM Player Plus (HKLM-x32\...\GOM Player Plus) (Version: 2.3.47.5309 - GOM & Company)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 79.0.3945.130 - Google LLC)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.35.421 - Google LLC) Hidden
Google Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.25.11 - Google Inc.) Hidden
GoPro Studio 2.0.1 (HKLM-x32\...\GoPro Studio) (Version: 2.0.1 - WoodmanLabs Inc. d.b.a. GoPro)
GPL Ghostscript (HKLM\...\GPL Ghostscript 9.10) (Version: 9.10 - Artifex Software Inc.)
Grim Dawn (HKLM\...\Grim Dawn_is1) (Version: 1.0.6.0 - Crate Entertainment)
Grim Dawn Forgotten Gods (HKLM-x32\...\Grim Dawn Forgotten Gods_is1) (Version:  - )
Gwent (HKLM-x32\...\1971477531_is1) (Version: 5.0.9 - GOG.com)
Hard Disk Sentinel PRO (HKLM-x32\...\Hard Disk Sentinel_is1) (Version: 5.50 - Janos Mathe)
HD Tune Pro 4.01 (HKLM-x32\...\HD Tune Pro_is1) (Version:  - EFD Software)
HxD Hex Editor version 1.7.7.0 (HKLM-x32\...\HxD Hex Editor_is1) (Version: 1.7.7.0 - Maël Hörz)
IL Download Manager (HKLM-x32\...\IL Download Manager) (Version:  - Image-Line)
IL Shared Libraries (HKLM-x32\...\IL Shared Libraries) (Version:  - Image-Line)
Image Resizer for Windows (64 bit) (HKLM\...\{2A1F3759-5792-469B-B895-7E29680F02F1}) (Version: 3.1.1.0 - Brice Lambson) Hidden
Image Resizer for Windows (HKLM-x32\...\{92916BDF-74CB-479C-B69E-32EACB074FFE}) (Version: 3.1.1.0 - Brice Lambson) Hidden
Image Resizer for Windows (HKLM-x32\...\{c624f5da-779e-4ccb-9ce1-34bc5ef0a6b9}) (Version: 3.1.1.0 - Brice Lambson)
ImgBurn (HKLM-x32\...\ImgBurn) (Version: 2.5.8.0 - LIGHTNING UK!)
Inpaint 7.1 (HKLM\...\{5808866F-D115-46B2-8123-BB6801968101}_is1) (Version:  - Teorex)
Instalación de DivX (HKLM-x32\...\DivX Setup) (Version: 2.6.3.88 - DivX, LLC)
Internet Download Manager (HKLM-x32\...\Internet Download Manager) (Version:  - Tonec Inc.)
IObit Uninstaller 9 (HKLM-x32\...\IObitUninstall) (Version: 9.0.2.38 - IObit)
IsoBuster 3.0 (HKLM-x32\...\IsoBuster_is1) (Version: 3.0 - Smart Projects)
Java 8 Update 77 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218077F0}) (Version: 8.0.770.3 - Oracle Corporation)
JDownloader 2 (HKLM\...\jdownloader2) (Version: 2.0 - AppWork GmbH)
Jihosoft File Recovery versión 7.3 (HKLM-x32\...\{D2374CA9-88C6-42C9-A4D7-245D5D06D909}_is1) (Version: 7.3 - HONGKONG JIHO CO., LIMITED)
LAME v3.99.3 (for Windows) (HKLM-x32\...\LAME_is1) (Version:  - )
Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Livestreamer 1.12.2 (HKLM-x32\...\Livestreamer) (Version:  - )
LockHunter 3.2, 32/64 bit (HKLM\...\LockHunter_is1) (Version:  - Crystal Rich Ltd)
Ma-Config.com (64 bits) (HKLM\...\{2E571480-E619-487B-B571-2F486E7A157A}) (Version: 7.1.2.4 - Cybelsoft)
Magic Bullet Suite 64-bit (HKLM\...\{3C09DE13-867C-4289-9F95-4510BB3A5F57}) (Version: 11.4.1 - Red Giant Software) Hidden
Magic Bullet Suite 64-bit (HKLM-x32\...\InstallShield_{3C09DE13-867C-4289-9F95-4510BB3A5F57}) (Version: 11.4.1 - Red Giant Software)
MAGIX Speed burnR (HKLM\...\{370FD2B5-6A2F-4BB9-8B5F-F5CE6F0C01E5}) (Version: 7.0.2.6 - MAGIX Software GmbH) Hidden
Malwarebytes version 4.0.4.49 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.0.4.49 - Malwarebytes)
Media Preview (HKLM\...\{9EE88DE0-9E1C-43E5-9827-4C3EEB0DDE5E}) (Version: 1.3.1.343 - BabelSoft)
MediaInfo 0.7.96 (HKLM\...\MediaInfo) (Version: 0.7.96 - MediaArea.net)
MegaDownloader 1.7 (HKLM\...\{C12C2297-65A4-4E64-9AE1-29F0D947FDA0}}_is1) (Version: 1.7 - AppsForMega.info)
MEGAsync (HKLM-x32\...\MEGAsync) (Version:  - Mega Limited)
Memory Cleaner 2.00 (HKLM-x32\...\MemClean) (Version: 2.00 - KoshyJohn.com)
mental ray renderer for Autodesk Maya 2014 (HKLM\...\{8057481C-0CFC-43BB-8EEC-C6A0E1C82E19}) (Version: 13.0.1.0 - mental ray)
Metal Gear Rising Revengeance (HKLM-x32\...\Metal Gear Rising Revengeance_is1) (Version: 1.0u2 - Konami)
Metal Gear Solid V Ground Zeroes (HKLM-x32\...\Metal Gear Solid V Ground Zeroes_is1) (Version:  - )
Metal Gear Solid V: The Phantom Pain (HKLM-x32\...\{48397BFF-7C01-4B64-8F1A-0D468DDE5D73}_is1) (Version:  - Kojima Productions)
MetalGearSolid2 Substance (HKLM-x32\...\{2184D9EA-4E5B-43FD-914E-4563CF028C94}) (Version: 1.00.000 - )
Microsoft .NET Framework 4.6.2 (español) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 3082) (Version: 4.6.01590 - Microsoft Corporation)
Microsoft .NET Framework 4.6.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.6.01590 - Microsoft Corporation)
Microsoft Document Explorer 2008 (HKLM-x32\...\Microsoft Document Explorer 2008) (Version:  - Microsoft Corporation)
Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{832D9DE0-8AFC-4689-9819-4DBBDEBD3E4F}) (Version: 3.5.92.0 - Microsoft Corporation)
Microsoft Games for Windows Marketplace (HKLM-x32\...\{67F42018-F647-4D3C-BE62-F8CB4FE2FCD5}) (Version: 3.5.67.0 - Microsoft Corporation)
Microsoft IntelliPoint 8.2 (HKLM\...\Microsoft IntelliPoint 8.2) (Version: 8.20.468.0 - Microsoft Corporation)
Microsoft Office Professional Edition 2003 (HKLM-x32\...\{90110C0A-6000-11D3-8CFE-0150048383C9}) (Version: 11.0.8173.0 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable - x64 8.0.61000 (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable - x86 8.0.61001 (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729 (HKLM\...\{4FFA2088-8317-3B14-93CD-4C699DB37843}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{3C3D696B-0DB7-3C6D-A356-3DB8CE541918}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 Redistributable - x64 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 Redistributable - x86 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{a2199617-3609-410f-a8e8-e8806c73545b}) (Version: 11.0.61030.0 - Корпорация Майкрософт)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{f0080ca2-80ae-4958-b6eb-e8fa916d744a}) (Version: 11.0.61030.0 - Корпорация Майкрософт)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.22.27821 (HKLM-x32\...\{6361b579-2795-4886-b2a8-53d5239b6452}) (Version: 14.22.27821.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.22.27821 (HKLM-x32\...\{5bfc1380-fd35-4b85-9715-7351535d077e}) (Version: 14.22.27821.0 - Microsoft Corporation)
Microsoft Visual C++ Compilers 2008 Standard Edition - enu - x64 (HKLM\...\{965DF723-5688-359E-84D2-417CAFE644B5}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ Compilers 2008 Standard Edition - enu - x86 (HKLM-x32\...\{44D9A2CB-0692-3180-B5E2-26F4E807D067}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual F# 2.0 Runtime (HKLM-x32\...\{85467CBC-7A39-33C9-8940-D72D9269B84F}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Windows SDK for Windows 7 (7.0) (HKLM\...\SDKSetup_7.0.7600.16385.40715) (Version: 7.0.7600.16385.40715 - Microsoft Corporation)
Microsoft Xbox One Controller for Windows (HKLM\...\{DC2CB48C-FD96-48EB-A36A-7D995BB587EB}) (Version: 1.0.2 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 4.0 Refresh (HKLM-x32\...\{D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F}) (Version: 4.0.30901.0 - Microsoft Corporation)
MightyUninstaller (HKLM-x32\...\{91A02C6C-1FAA-49FA-957F-6ACF30D6B47D}_is1) (Version: 2.5.0.0 - MightyUninstaller.com)
Mozilla Firefox 53.0.3 (x86 es-AR) (HKLM-x32\...\Mozilla Firefox 53.0.3 (x86 es-AR)) (Version: 53.0.3 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 53.0.3.6347 - Mozilla)
MP3 Player Utilities 4.18 (HKLM-x32\...\{8B9852AF-B0B0-47B7-9BC5-89A95D77B6C9}) (Version: 4.18 -  )
MPC-HC 1.7.10 (64-bit) (HKLM\...\{2ACBF1FA-F5C3-4B19-A774-B22A31F231B9}_is1) (Version: 1.7.10 - MPC-HC Team)
MSI Afterburner 4.6.1 (HKLM-x32\...\Afterburner) (Version: 4.6.1 - MSI Co., LTD)
MSXML 4.0 SP3 Parser (HKLM-x32\...\{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB2721691) (HKLM-x32\...\{355B5AC0-CEEE-42C5-AD4D-7F3CFD806C36}) (Version: 4.30.2114.0 - Microsoft Corporation)
MusicLab RealGuitar (HKLM\...\{1864B4F0-8888-5A57-9930-C2B307597966}) (Version: 3.0 - MusicLab, Inc.)
Neat Video v3.1.0 Pro plug-in for Sony Vegas (64-bit) (HKLM\...\Neat Video for Sony Vegas_is1) (Version:  - Neat Video team, ABSoft)
NECROTECH FMV-Extractor V 1.2 (HKLM-x32\...\FMV-Extractor V 1.2_is1) (Version:  - )
Nero 7 Micro 7.9.6.0 (HKLM-x32\...\Nero 7 Micro_is1) (Version:  - Updatepack.nl)
NewBlue 3D Explosions for Windows (HKLM-x32\...\NewBlue 3D Explosions for Windows) (Version:  - )
NewBlue 3D Transformations for Windows (HKLM-x32\...\NewBlue 3D Transformations for Windows) (Version:  - )
NewBlue Art Blends for Windows (HKLM-x32\...\NewBlue Art Blends for Windows) (Version:  - )
NewBlue Art Effects for Windows (HKLM-x32\...\NewBlue Art Effects for Windows) (Version:  - )
NewBlue Film Effects for Windows (HKLM-x32\...\NewBlue Film Effects for Windows) (Version:  - )
NewBlue Motion Blends for Windows (HKLM-x32\...\NewBlue Motion Blends for Windows) (Version:  - )
NewBlue Motion Effects for Windows (HKLM-x32\...\NewBlue Motion Effects for Windows) (Version:  - )
NewBlue Vegas Pro Complete (HKLM-x32\...\NewBlue Vegas Pro Complete) (Version: 1.0 - NewBlue)
NewBlue Vegas Pro Suite Complete (HKLM-x32\...\NewBlue Vegas Pro Suite Complete) (Version: 1.0 - NewBlue)
NewBlue Video Essentials for Windows (HKLM-x32\...\NewBlue Video Essentials for Windows) (Version:  - )
NewBlue Video Essentials II  for Windows (HKLM-x32\...\NewBlue Video Essentials II  for Windows) (Version:  - )
NirSoft BlueScreenView (HKLM-x32\...\NirSoft BlueScreenView) (Version:  - )
Notepad++ (64-bit x64) (HKLM\...\Notepad++) (Version: 7.5.4 - Notepad++ Team)
NVIDIA PhysX (HKLM-x32\...\{80407BA7-7763-4395-AB98-5233F1B34E65}) (Version: 9.13.1220 - NVIDIA Corporation)
OGG to MP3 Converter (HKLM-x32\...\{4809DDAE-110C-4CF8-B383-706BB5B3D5B6}_is1) (Version:  - www.oggtomp3converter.com)
ON_OFF Charge B11.0110.1 (HKLM-x32\...\{3DECD372-76A1-4483-BF10-B547790A3261}) (Version: 1.00.0001 - GIGABYTE)
OpenAL (HKLM-x32\...\OpenAL) (Version:  - )
OpenOffice.org 3.4.1 (HKLM-x32\...\{7A5B4D34-7FB3-44E6-9DCC-4AF507700A1E}) (Version: 3.41.9593 - Apache Software Foundation)
PACE License Support Win64 (HKLM\...\{72ad9d51-0903-4fe7-af5d-33b3185fa6e9}) (Version: 2.4.2.0737 - PACE Anti-Piracy, Inc.) Hidden
PACE License Support Win64 (HKLM-x32\...\InstallShield_{72ad9d51-0903-4fe7-af5d-33b3185fa6e9}) (Version: 2.4.2.0737 - PACE Anti-Piracy, Inc.)
Panda Cloud Cleaner (HKLM-x32\...\{92B2B132-C7F0-43DC-921A-4493C04F78A4}_is1) (Version: 1.1.9 - Panda Security)
Panda USB Vaccine 1.0.0.50a (HKLM-x32\...\{55A41219-9B22-4098-BAE7-AE289B3C569A}_is1) (Version:  - Panda Security)
Password Recovery Bundle 2013 (HKLM-x32\...\Password Recovery Bundle 2013_is1) (Version:  - Top Password Software, Inc.)
Path of Exile (HKLM-x32\...\{90A4562F-D4A1-4B65-906D-41F236CF6902}) (Version: 3.1.1.24350 - Grinding Gear Games) Hidden
Path of Exile (HKLM-x32\...\{b0eb6d80-dfba-4146-8b49-6227a403eb84}) (Version: 3.1.1.24350 - Grinding Gear Games)
Pavtube Video Converter Ultimate Ver 4.8.6.7 (HKLM-x32\...\Pavtube Video Converter Ultimate_is1) (Version:  - )
PCSX2 - Playstation 2 Emulator (HKLM-x32\...\pcsx2) (Version:  - )
PDF Settings CS6 (HKLM-x32\...\{BFEAAE77-BD7F-4534-B286-9C5CB4697EB1}) (Version: 11.0 - Adobe Systems Incorporated) Hidden
PenAttention (HKLM-x32\...\PenAttention) (Version:  - )
Perfect Uninstaller v6.3.3.9 (HKLM\...\Perfect Uninstaller_is1) (Version:  - www.PerfectUninstaller.com)
ph (HKLM-x32\...\{185F9795-9663-4F13-9EF9-307A282ADB5A}) (Version: 1.0.0 - Your Company Name) Hidden
PhotoScape (HKLM-x32\...\PhotoScape) (Version:  - )
PL-2303 USB-to-Serial (HKLM-x32\...\{ECC3713C-08A4-40E3-95F1-7D0704F1CE5E}) (Version:  - )
PPSSPP version 1.5.4 (HKLM-x32\...\PPSSPP_is1) (Version: 1.5.4 - )
Preset Manager 2.0 (HKLM-x32\...\{FCFE3F81-C977-4D31-877B-2778BB2A02DE}) (Version: 2.0.114 - Sony)
ProCoder 3 (HKLM-x32\...\{07D97136-A219-41FE-9FF9-E18C8A312A7E}) (Version: 3.00.50 - Grass Valley)
proDAD Mercalli NLE 4.0 (64bit) (HKLM\...\proDAD-MercalliPlugins-4.0) (Version: 4.0.470.1 - proDAD GmbH)
Product Support (HKLM-x32\...\test) (Version: {VERSION} - Product Support)
Project64 1.6 (HKLM-x32\...\{9559F7CA-5E34-4237-A2D9-D856464AD727}) (Version: 1.6 - Project64)
QuickSFV (HKLM-x32\...\{DBDCD3AF-20E4-4E5E-80E8-B14109FE5DD9}) (Version: 3.0.0 - Totally Useful Software, Inc.)
QuickTime 7 (HKLM-x32\...\{FF59BD75-466A-4D5A-AD23-AAD87C5FD44C}) (Version: 7.79.80.95 - Apple Inc.)
RadeonPro 1.0 (Build 1.1.1.0) (HKLM-x32\...\RadeonPro_is1) (Version:  - )
RAM Saver 15.0 Professional (HKLM-x32\...\{04FCFB2F-FEC3-4D9A-81FB-A18858CF52DB}_is1) (Version:  - WinTools Software Engineering, Ltd.)
Real Alternative 1.9.0 (HKLM-x32\...\RealAlt_is1) (Version: 1.9.0 - )
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.38.113.2011 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6767 - Realtek Semiconductor Corp.)
Recuva (HKLM\...\Recuva) (Version: 1.50 - Piriform)
Remo Recover 4.0 (HKLM\...\{A573D759-F894-448D-A420-3A9C31879F88}_is1) (Version: 4.0.0.34 - Remo Software)
Renesas Electronics USB 3.0 Host Controller Driver (HKLM-x32\...\{5442DAB8-7177-49E1-8B22-09A049EA5996}) (Version: 2.0.30.0 - Renesas Electronics Corporation) Hidden
Renesas Electronics USB 3.0 Host Controller Driver (HKLM-x32\...\InstallShield_{5442DAB8-7177-49E1-8B22-09A049EA5996}) (Version: 2.0.30.0 - Renesas Electronics Corporation)
RescuePRO Deluxe 6.0.1.2 (HKLM-x32\...\{38D9AAB8-116B-40BB-A801-50B71DF82D24}_is1) (Version: 6.0.1.2 - LC Technology International, Inc.)
Resident Evil 2 (Claire) (HKLM-x32\...\{A873140F-0B03-40A4-9E02-7D0E356645F6}_is1) (Version:  - )
Resident Evil 2 (HKLM-x32\...\Resident Evil 2_is1) (Version:  - )
Resident Evil 2 (Leon) (HKLM-x32\...\{9BCFE3C2-58BD-4778-B11A-0862A6FFBF24}_is1) (Version:  - )
Resident Evil 3 PC (HKLM-x32\...\Resident Evil 3_is1) (Version:  - BlizzBoyGames - hxxp://www.blizzboygames.com)
Resident Evil HD Remaster (HKLM-x32\...\Resident Evil HD Remaster_is1) (Version:  - )
Resident Evil Revelations Complete (HKLM\...\Resident Evil Revelations Complete_is1) (Version: 1.0.0.0 - Capcom)
ResidentEvil3 (HKLM-x32\...\{DE15F0C0-108D-11D4-AF73-0000E21444C5}) (Version:  - )
Restorer Ultimate 7.8 (HKLM-x32\...\Restorer Ultimate 7.8NSIS) (Version: 7.8.708689 - Bitmart Inc.)
Revo Uninstaller 1.95 (HKLM-x32\...\Revo Uninstaller) (Version: 1.95 - VS Revo Group)
RivaTuner Statistics Server 7.2.2 (HKLM-x32\...\RTSS) (Version: 7.2.2 - Unwinder)
R-Studio 8.3 (HKLM-x32\...\R-Studio 8.3NSIS) (Version: 8.3.169775 - R-Tools Technology Inc.)
Samplitude Pro X2 Suite (HKLM\...\{29A32472-3D65-447F-B892-0201F6FA49E0}) (Version: 13.1.0.131 - MAGIX Software GmbH) Hidden
Samplitude Pro X2 Suite (HKLM\...\MX.{29A32472-3D65-447F-B892-0201F6FA49E0}) (Version: 13.1.0.131 - MAGIX Software GmbH)
Samplitude Pro X2 Suite Update (HKLM\...\{37DD13AA-B3DA-4A9F-95F2-AE489DD723B3}) (Version: 13.1.3.176 - MAGIX Software GmbH) Hidden
SAMSUNG Intelli-studio (HKLM-x32\...\Intelli-studio) (Version:  - )
Screensaver Factory 6.8 (HKLM-x32\...\Screensaver Factory 6_is1) (Version: 6.8 - Karlis Blumentals)
Sentinel Protection Installer 7.6.6 (HKLM-x32\...\{8C2218AC-D1B1-4530-9E67-15164E0E52AB}) (Version: 7.6.6 - SafeNet, Inc.)
Servicio Xperia Companion (HKLM\...\{E41065E8-67E2-448F-940C-FF9D7C51E4E3}) (Version: 2.8.3.0 - Sony) Hidden
Setup (HKLM-x32\...\{8C0302AB-28E3-43F4-8414-10B8E0954ED9}) (Version: 2.01.01 - Default Company Name) Hidden
Silent Hill 2 Director's Cut Repack (HKLM-x32\...\Silent Hill 2 Director's Cut Repack) (Version:  - )
Skype™ 6.18 (HKLM-x32\...\{7A3C7E05-EE37-47D6-99E1-2EB05A3DA3F7}) (Version: 6.18.105 - Skype Technologies S.A.)
SOMA (HKLM-x32\...\1439487606_is1) (Version: 1.510 - GOG.com)
Sony Noise Reduction Plug-In 2.0h (HKLM-x32\...\{06A1BE8A-4CA4-4A39-B9E4-E815AA8FE05C}) (Version: 2.0.451 - Sony)
Sound Forge Pro 10.0 (HKLM-x32\...\{3F9170C9-A7C2-408F-A4D8-EC77250040BF}) (Version: 10.0.368 - Sony)
SpeedFan (remove only) (HKLM-x32\...\SpeedFan) (Version:  - )
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Stellar Phoenix Photo Recovery (HKLM-x32\...\Stellar Phoenix Photo Recovery_is1) (Version: 7.0.0.0 - Stellar Information Technology Pvt Ltd.)
Stellarium 0.12.4 (HKLM\...\Stellarium_is1) (Version: 0.12.4 - Stellarium team)
Subtitle Workshop 6.0b (HKLM-x32\...\SubtitleWorkshop) (Version:  - )
Subtitles Plugin for RealPlayer 2005.03.21 (HKLM-x32\...\Subtitles Plugin for RealPlayer_is1) (Version:  - )
System Explorer 2.6.4 (HKLM-x32\...\System Explorer_is1) (Version:  - Mister Group)
TAP-Windows 9.21.2 (HKLM\...\TAP-Windows) (Version: 9.21.2 - )
TeamViewer 7 (HKLM-x32\...\TeamViewer 7) (Version: 7.0.14563 - TeamViewer)
Telegram Desktop versión 1.9.3 (HKU\S-1-5-21-1557413109-1875796577-672599849-1000\...\{53F49750-6209-4FBF-9CA8-7A333C87D1ED}_is1) (Version: 1.9.3 - Telegram FZ-LLC)
Terminator Resistance (HKU\S-1-5-21-1557413109-1875796577-672599849-1000\...\Terminator Resistance) (Version:  - HOODLUM)
The Witcher 3 Wild Hunt MULTi13 - ElAmigos versión 1.31 (HKLM-x32\...\{BF679CAD-FE6D-4CBE-9E99-D7193809207A}_is1) (Version: 1.31 - CD PROJEKT RED)
The Witcher Enhanced Edition Director's Cut (HKLM-x32\...\1207658924_is1) (Version: 2.1.0.15 - GOG.com)
TMPGEnc Video Mastering Works (HKLM-x32\...\TMPGEnc Video Mastering Works) (Version:  - )
Total Video Converter 3.60 100127 (HKLM-x32\...\Total Video Converter 3.60_is1) (Version:  - EffectMatrix Inc.)
Twixtor 5 for Vegas (HKLM-x32\...\Twixtor 5 for Vegas) (Version:  - )
UE4 Prerequisites (x64) (HKLM-x32\...\{2890ae6b-90e9-448d-b3e6-97e43c21e2fd}) (Version: 1.0.13.0 - Epic Games, Inc.) Hidden
UltraISO Premium V9.7 (HKLM-x32\...\UltraISO_is1) (Version:  - )
Unity (HKLM-x32\...\Unity) (Version: 4.5.0f6 - Unity Technologies ApS)
Unity Web Player (HKU\S-1-5-21-1557413109-1875796577-672599849-1000\...\UnityWebPlayer) (Version: 4.5.0f6 - Unity Technologies ApS)
Universal Extractor 1.6.1 (HKLM-x32\...\Universal Extractor_is1) (Version: 1.6.1 - Jared Breland)
Unlocker 1.9.2 (HKLM\...\Unlocker) (Version: 1.9.2 - Cedrick Collomb)
URL Snooper v2.39.01 (HKLM-x32\...\URLSnooper 2_is1) (Version:  - DonationCoder.com)
VC80CRTRedist - 8.0.50727.6195 (HKLM-x32\...\{933B4015-4618-4716-A828-5289FC03165F}) (Version: 1.2.0 - DivX, Inc) Hidden
VdhCoApp 1.2.4 (HKLM\...\weh-iss-net.downloadhelper.coapp_is1) (Version:  - DownloadHelper)
Vector Magic (HKLM-x32\...\Vector Magic) (Version: 1.15 - Vector Magic, Inc.)
Vegas Pro 12.0 (64-bit) (HKLM\...\{BFA34E80-5232-11E3-9954-F04DA23A5C58}) (Version: 12.0.770 - Sony)
Vegas Pro 13.0 (64-bit) (HKLM\...\{CFB5504F-BFBC-11E3-8794-F04DA23A5C58}) (Version: 13.0.290 - Sony)
VEGAS Pro 14.0 (64-bit) (HKLM\...\{F921D440-1A27-11E7-8557-C2A106E0D44C}) (Version: 14.0.252 - VEGAS)
VEGAS Pro 15.0 (HKLM\...\{4A1E2B9E-2094-11E8-BF03-B1014689BFCC}) (Version: 15.0.321 - VEGAS)
VEGAS Pro 17.0 (HKLM\...\{E69D2D1E-B27C-11E9-BDDE-A5146957F833}) (Version: 17.0.284 - VEGAS)
Video4YouTube 1.4 (HKLM\...\Video4YouTube_is1) (Version:  - )
Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - )
Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - )
VLC media player (HKLM\...\VLC media player) (Version: 3.0.7.1 - VideoLAN)
VSO ConvertXToDVD (HKLM-x32\...\{CE1F93C0-4353-4C9D-84DA-AB4E7C63ED32}_is1) (Version: 5.3.0.21 - VSO Software)
VSO ConvertXtoHD (HKLM-x32\...\{E1B628C6-2086-478D-BF09-533CC9587315}_is1) (Version: 1.0.0.23 - VSO Software)
Vulkan Run Time Libraries 1.0.65.0 (HKLM\...\VulkanRT1.0.65.0) (Version: 1.0.65.0 - LunarG, Inc.) Hidden
Winamp (HKLM-x32\...\Winamp) (Version: 5.581  - Nullsoft, Inc)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3538.0513 - Microsoft Corporation)
Windows Media Player Plus! 1.0 (HKLM-x32\...\{67E4EF06-E0D6-42E0-A2BA-67199B0143FB}_is1) (Version: 1.0 - BM-productions)
WinPcap 4.1.3 (HKLM-x32\...\WinPcapInst) (Version: 4.1.0.2980 - Riverbed Technology, Inc.)
WinRAR 5.70 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.70.0 - win.rar GmbH)
WinX DVD Ripper Platinum 6.9.2 (HKLM-x32\...\WinX DVD Ripper Platinum_is1) (Version:  - Digiarty Software, Inc.)
WMPx64PluginFix (HKLM\...\{00a8ce68-cb2e-4652-aecd-c05c0d9d53a7}.sdb) (Version:  - )
Wondershare Data Recovery(Build 6.5.1.5) (HKLM-x32\...\{FEA3976F-D621-45F3-AFBD-E812A1F2F00D}_is1) (Version: 6.5.1.5 - Wondershare Software Co.,Ltd.)
Wondershare Helper Compact 2.5.2 (HKLM-x32\...\{5363CE84-5F09-48A1-8B6C-6BB590FFEDF2}_is1) (Version: 2.5.2 - Wondershare)
x264vfw - H.264/MPEG-4 AVC codec for x64 (remove only) (HKLM-x32\...\x264vfw64) (Version:  - )
Xilisoft Video Convertidor Ultimate (HKLM-x32\...\Xilisoft Video Convertidor Ultimate) (Version: 7.7.2.20130217 - Xilisoft)
Xperia Companion (HKLM-x32\...\{5b7c1b25-5fb6-442c-a1b5-cb8dfc2267bf}) (Version: 2.8.3.0 - Sony)
Xperia Companion (HKLM-x32\...\{66EABD35-6233-4926-9AB1-AB31CC6BC7D9}) (Version: 2.8.3.0 - Sony) Hidden
Yodot Recovery Software (HKLM\...\{CCCD7431-153D-42A2-A248-B50B0B4AB31D}_is1) (Version: 3.0.0.114 - Yodot Software)
Your Uninstaller! Version 6.3 (HKLM-x32\...\Your Uninstaller!_is1) (Version: 6.3 - URSoft, Inc.)

==================== Personalizado CLSID (Lista blanca): ==============

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)

CustomCLSID: HKU\S-1-5-21-1557413109-1875796577-672599849-1000_Classes\CLSID\{005A3A96-BAC4-4B0A-94EA-C0CE100EA736}\localserver32 -> C:\Users\Mar\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc -> Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1557413109-1875796577-672599849-1000_Classes\CLSID\{869C14C8-1830-491F-B575-5F9AB40D2B42}\InprocServer32 -> C:\Program Files\MediaInfo\MediaInfo_InfoTip.dll (MediaArea.net -> MediaArea.net)
CustomCLSID: HKU\S-1-5-21-1557413109-1875796577-672599849-1000_Classes\CLSID\{D45F043D-F17F-4e8a-8435-70971D9FA46D}\InprocServer32 -> C:\Program Files\Blender Foundation\Blender\BlendThumb64.dll () [Archivo no firmado]
CustomCLSID: HKU\S-1-5-21-1557413109-1875796577-672599849-1000_Classes\CLSID\{e8c77137-e224-5791-b6e9-ff0305797a13}\InprocServer32 -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Systems Incorporated -> Adobe Systems)
CustomCLSID: HKU\S-1-5-21-1557413109-1875796577-672599849-1000_Classes\CLSID\{ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C}\InprocServer32 -> C:\Users\Mar\AppData\Roaming\Dropbox\bin\DropboxExt64.27.0.dll (Dropbox, Inc -> Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1557413109-1875796577-672599849-1000_Classes\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Mar\AppData\Roaming\Dropbox\bin\DropboxExt64.27.0.dll (Dropbox, Inc -> Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1557413109-1875796577-672599849-1000_Classes\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Mar\AppData\Roaming\Dropbox\bin\DropboxExt64.27.0.dll (Dropbox, Inc -> Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1557413109-1875796577-672599849-1000_Classes\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Mar\AppData\Roaming\Dropbox\bin\DropboxExt64.27.0.dll (Dropbox, Inc -> Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1557413109-1875796577-672599849-1000_Classes\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Mar\AppData\Roaming\Dropbox\bin\DropboxExt64.27.0.dll (Dropbox, Inc -> Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1557413109-1875796577-672599849-1000_Classes\CLSID\{FB314EDD-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Mar\AppData\Roaming\Dropbox\bin\DropboxExt64.27.0.dll (Dropbox, Inc -> Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1557413109-1875796577-672599849-1000_Classes\CLSID\{FB314EDE-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Mar\AppData\Roaming\Dropbox\bin\DropboxExt64.27.0.dll (Dropbox, Inc -> Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1557413109-1875796577-672599849-1000_Classes\CLSID\{FB314EDF-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Mar\AppData\Roaming\Dropbox\bin\DropboxExt64.27.0.dll (Dropbox, Inc -> Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1557413109-1875796577-672599849-1000_Classes\CLSID\{FB314EE0-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Mar\AppData\Roaming\Dropbox\bin\DropboxExt64.27.0.dll (Dropbox, Inc -> Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1557413109-1875796577-672599849-1000_Classes\CLSID\{FB314EE1-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Mar\AppData\Roaming\Dropbox\bin\DropboxExt64.27.0.dll (Dropbox, Inc -> Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1557413109-1875796577-672599849-1000_Classes\CLSID\{FB314EE2-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Mar\AppData\Roaming\Dropbox\bin\DropboxExt64.27.0.dll (Dropbox, Inc -> Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1557413109-1875796577-672599849-1000_Classes\CLSID\{FBC9D74C-AF55-4309-9FB2-C426E071637F}\InprocServer32 -> C:\Users\Mar\AppData\Roaming\Dropbox\bin\DropboxExt64.27.0.dll (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ MEGA (Pending)] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => C:\Users\Mar\AppData\Local\MEGAsync\ShellExtX64.dll [2017-10-18] () [Archivo no firmado]
ShellIconOverlayIdentifiers: [ MEGA (Synced)] -> {05B38830-F4E9-4329-978B-1DD28605D202} => C:\Users\Mar\AppData\Local\MEGAsync\ShellExtX64.dll [2017-10-18] () [Archivo no firmado]
ShellIconOverlayIdentifiers: [ MEGA (Syncing)] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => C:\Users\Mar\AppData\Local\MEGAsync\ShellExtX64.dll [2017-10-18] () [Archivo no firmado]
ShellIconOverlayIdentifiers: [   AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-02-10] (Adobe Systems Incorporated -> )
ShellIconOverlayIdentifiers: [   AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-02-10] (Adobe Systems Incorporated -> )
ShellIconOverlayIdentifiers: [   AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-02-10] (Adobe Systems Incorporated -> )
ShellIconOverlayIdentifiers: [   IDM Shell Extension] -> {CDC95B92-E27C-4745-A8C5-64A52A78855D} => C:\Program Files (x86)\Internet Download Manager\IDMShellExt64.dll [2015-08-14] (Tonec Inc. -> Tonec Inc.)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-10-02] (AVAST Software s.r.o. -> AVAST Software)
ShellIconOverlayIdentifiers: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Mar\AppData\Roaming\Dropbox\bin\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Mar\AppData\Roaming\Dropbox\bin\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Mar\AppData\Roaming\Dropbox\bin\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt4] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Mar\AppData\Roaming\Dropbox\bin\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ MEGA (Pending)] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => C:\Users\Mar\AppData\Local\MEGAsync\ShellExtX64.dll [2017-10-18] () [Archivo no firmado]
ShellIconOverlayIdentifiers-x32: [ MEGA (Synced)] -> {05B38830-F4E9-4329-978B-1DD28605D202} => C:\Users\Mar\AppData\Local\MEGAsync\ShellExtX64.dll [2017-10-18] () [Archivo no firmado]
ShellIconOverlayIdentifiers-x32: [ MEGA (Syncing)] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => C:\Users\Mar\AppData\Local\MEGAsync\ShellExtX64.dll [2017-10-18] () [Archivo no firmado]
ShellIconOverlayIdentifiers-x32: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Mar\AppData\Roaming\Dropbox\bin\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Mar\AppData\Roaming\Dropbox\bin\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Mar\AppData\Roaming\Dropbox\bin\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2018-04-30] (Igor Pavlov) [Archivo no firmado]
ContextMenuHandlers1: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-02-10] (Adobe Systems Incorporated -> )
ContextMenuHandlers1: [Adobe.Acrobat.ContextMenu] -> {A6595CD1-BF77-430A-A452-18696685F7C7} => C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat Elements\ContextMenuShim64.dll [2015-03-17] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => C:\Program Files\Notepad++\NppShell_06.dll [2017-12-31] (Notepad++ -> )
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-10-02] (AVAST Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [DaemonShellExtImage] -> {40966797-8FFE-46C8-9EF8-7003F33CCF0F} => C:\Program Files (x86)\DAEMON Tools Pro\DTShl64.dll [2011-08-17] (DT Soft Ltd -> DT Soft Ltd)
ContextMenuHandlers1: [Foxit_ConvertToPDF_Reader] -> {A94757A0-0226-426F-B4F1-4DF381C630D3} => C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\ConvertToPDFShellExtension_x64.dll [2017-12-11] (Foxit Software Incorporated -> Foxit Software Inc.)
ContextMenuHandlers1-x32: [Glary Utilities] -> {72923739-5A47-40A3-9895-25AF0DFBB9E4} => C:\Program Files (x86)\Glary Utilities\ContextHandler.dll [2013-04-28] (Glarysoft Ltd -> Glarysoft Ltd)
ContextMenuHandlers1: [Image Resizer] -> {51B4D7E5-7568-4234-B4BB-47FB3C016A69} => C:\Program Files\Image Resizer for Windows\ShellExtensions.dll [2018-05-26] (Open Source Developer, Brice Lambson -> Brice Lambson)
ContextMenuHandlers1: [IObitUnstaler] -> {836AB26C-2DE4-41D3-AC24-4C6C2699B960} => C:\Program Files (x86)\IObit\IObit Uninstaller\IUMenuRight.dll [2019-07-30] (IObit Information Technology -> IObit)
ContextMenuHandlers1: [LockHunterShellExt] -> {0BB27CDA-7029-4C0E-9C56-D922B229F0EB} => C:\Program Files\LockHunter\LHShellExt64.dll [2017-07-20] (Crystal Rich Ltd -> Crystal Rich Ltd)
ContextMenuHandlers1: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\Mar\AppData\Local\MEGAsync\ShellExtX64.dll [2017-10-18] () [Archivo no firmado]
ContextMenuHandlers1-x32: [Uninstall] -> {84058084-7609-44D1-B3CC-7A9436CB6D92} => C:\Program Files\Perfect Uninstaller\Contextmenu.dll [2011-11-02] (Guangxi Nanning Qiwang Co. Ltd. -> )
ContextMenuHandlers1: [WinCDEmu] -> {D0E37FD2-F675-426F-B09A-2CF37BA46FD5} => C:\Program Files (x86)\WinCDEmu\x64\WinCDEmuContextMenu.dll [2014-11-25] (Sysprogs OU) [Archivo no firmado]
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers2: [DaemonShellExtDrive] -> {A5415364-784A-41A5-B47A-D452909CA8FF} => C:\Program Files (x86)\DAEMON Tools Pro\DTShl64.dll [2011-08-17] (DT Soft Ltd -> DT Soft Ltd)
ContextMenuHandlers2-x32: [Glary Utilities] -> {72923739-5A47-40A3-9895-25AF0DFBB9E4} => C:\Program Files (x86)\Glary Utilities\ContextHandler.dll [2013-04-28] (Glarysoft Ltd -> Glarysoft Ltd)
ContextMenuHandlers2: [LockHunterShellExt] -> {0BB27CDA-7029-4C0E-9C56-D922B229F0EB} => C:\Program Files\LockHunter\LHShellExt64.dll [2017-07-20] (Crystal Rich Ltd -> Crystal Rich Ltd)
ContextMenuHandlers2: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\Mar\AppData\Local\MEGAsync\ShellExtX64.dll [2017-10-18] () [Archivo no firmado]
ContextMenuHandlers2: [UltraISO] -> {AD392E40-428C-459F-961E-9B147782D099} => C:\Program Files (x86)\UltraISO\isoshl64.dll [2015-10-08] (SHENZHEN YIBO DIGITAL SYSTEMS DEVELOPMENT CO. LTD. -> EZB Systems, Inc.)
ContextMenuHandlers2: [WinCDEmu] -> {A9901FCD-B4DF-43A1-BD5D-6C9F88679497} => C:\Program Files (x86)\WinCDEmu\x64\WinCDEmuContextMenu.dll [2014-11-25] (Sysprogs OU) [Archivo no firmado]
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-10-02] (AVAST Software s.r.o. -> AVAST Software)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2020-01-20] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers3: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\Mar\AppData\Local\MEGAsync\ShellExtX64.dll [2017-10-18] () [Archivo no firmado]
ContextMenuHandlers3: [UnlockerShellExtension] -> {DDE4BEEB-DDE6-48fd-8EB5-035C09923F83} => C:\Program Files\Unlocker\UnlockerCOM.dll [2010-07-15] (Empty Loop -> )
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2018-04-30] (Igor Pavlov) [Archivo no firmado]
ContextMenuHandlers4: [IObitUnstaler] -> {836AB26C-2DE4-41D3-AC24-4C6C2699B960} => C:\Program Files (x86)\IObit\IObit Uninstaller\IUMenuRight.dll [2019-07-30] (IObit Information Technology -> IObit)
ContextMenuHandlers4: [LockHunterShellExt] -> {0BB27CDA-7029-4C0E-9C56-D922B229F0EB} => C:\Program Files\LockHunter\LHShellExt64.dll [2017-07-20] (Crystal Rich Ltd -> Crystal Rich Ltd)
ContextMenuHandlers4: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\Mar\AppData\Local\MEGAsync\ShellExtX64.dll [2017-10-18] () [Archivo no firmado]
ContextMenuHandlers4: [RecuvaShellExt] -> {435E5DF5-2510-463C-B223-BDA47006D002} => C:\Program Files\Recuva\RecuvaShell64.dll [2014-01-02] (Piriform Ltd -> Piriform Ltd)
ContextMenuHandlers4: [UltraISO] -> {AD392E40-428C-459F-961E-9B147782D099} => C:\Program Files (x86)\UltraISO\isoshl64.dll [2015-10-08] (SHENZHEN YIBO DIGITAL SYSTEMS DEVELOPMENT CO. LTD. -> EZB Systems, Inc.)
ContextMenuHandlers4-x32: [Uninstall] -> {84058084-7609-44D1-B3CC-7A9436CB6D92} => C:\Program Files\Perfect Uninstaller\Contextmenu.dll [2011-11-02] (Guangxi Nanning Qiwang Co. Ltd. -> )
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\Program Files\AMD\CNext\CNext\atiacm64.dll [2019-09-10] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2018-04-30] (Igor Pavlov) [Archivo no firmado]
ContextMenuHandlers6: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-02-10] (Adobe Systems Incorporated -> )
ContextMenuHandlers6: [Adobe.Acrobat.ContextMenu] -> {A6595CD1-BF77-430A-A452-18696685F7C7} => C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat Elements\ContextMenuShim64.dll [2015-03-17] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-10-02] (AVAST Software s.r.o. -> AVAST Software)
ContextMenuHandlers6: [Foxit_ConvertToPDF_Reader] -> {A94757A0-0226-426F-B4F1-4DF381C630D3} => C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\ConvertToPDFShellExtension_x64.dll [2017-12-11] (Foxit Software Incorporated -> Foxit Software Inc.)
ContextMenuHandlers6-x32: [Glary Utilities] -> {72923739-5A47-40A3-9895-25AF0DFBB9E4} => C:\Program Files (x86)\Glary Utilities\ContextHandler.dll [2013-04-28] (Glarysoft Ltd -> Glarysoft Ltd)
ContextMenuHandlers6: [IObitUnstaler] -> {836AB26C-2DE4-41D3-AC24-4C6C2699B960} => C:\Program Files (x86)\IObit\IObit Uninstaller\IUMenuRight.dll [2019-07-30] (IObit Information Technology -> IObit)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2020-01-20] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers6: [RecuvaShellExt] -> {435E5DF5-2510-463C-B223-BDA47006D002} => C:\Program Files\Recuva\RecuvaShell64.dll [2014-01-02] (Piriform Ltd -> Piriform Ltd)
ContextMenuHandlers6: [UltraISO] -> {AD392E40-428C-459F-961E-9B147782D099} => C:\Program Files (x86)\UltraISO\isoshl64.dll [2015-10-08] (SHENZHEN YIBO DIGITAL SYSTEMS DEVELOPMENT CO. LTD. -> EZB Systems, Inc.)
ContextMenuHandlers6: [WinCDEmu] -> {A9901FCD-B4DF-43A1-BD5D-6C9F88679497} => C:\Program Files (x86)\WinCDEmu\x64\WinCDEmuContextMenu.dll [2014-11-25] (Sysprogs OU) [Archivo no firmado]
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1_S-1-5-21-1557413109-1875796577-672599849-1000: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Users\Mar\AppData\Roaming\Dropbox\bin\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers1_S-1-5-21-1557413109-1875796577-672599849-1000-x32: [VIDEOTRANS] -> {C8CA0A66-AF32-4D5E-879E-F0809ACEDC55} => C:\Program Files (x86)\MP3 Player Utilities 4.18\AMVConverter\AmvTransform.dll [2007-06-16] () [Archivo no firmado]
ContextMenuHandlers4_S-1-5-21-1557413109-1875796577-672599849-1000: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Users\Mar\AppData\Roaming\Dropbox\bin\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers5_S-1-5-21-1557413109-1875796577-672599849-1000: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Users\Mar\AppData\Roaming\Dropbox\bin\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)

==================== Codecs (Lista blanca) ====================

(Si una entrada es incluida en el fixlist, el elemento del registro será restaurado a su valor predeterminado o será eliminado. El archivo no será movido.)

HKLM\...\Drivers32: [VIDC.FPS1] => C:\Windows\system32\frapsv64.dll [71680 2013-02-26] (Beepa P/L) [Archivo no firmado]
HKLM\...\Drivers32: [msacm.ac3filter] => C:\Windows\system32\ac3filter64.acm [580096 2009-07-19] () [Archivo no firmado]
HKLM\...\Drivers32: [vidc.xtor] => C:\Windows\system32\DxtoryCodec64.dll [3673600 2011-05-23] (Dxtory Software) [Archivo no firmado]
HKLM\...\Drivers32: [vidc.x264] => C:\Program Files\x264vfw64\x264vfw64.dll [3502080 2014-07-22] (x264vfw project) [Archivo no firmado]
HKLM\...\Drivers32: [VIDC.CFHD] => C:\Windows\system32\CFHD.dll [1443328 2014-01-29] (CineForm Inc.) [Archivo no firmado]
HKLM\...\Drivers32: [VIDC.RTV1] => C:\Windows\system32\rtvcvfw64.dll [246272 2012-09-28] () [Archivo no firmado]
HKLM\...\Drivers32: [VIDC.FPS1] => C:\Windows\SysWOW64\frapsvid.dll [65536 2013-02-26] (Beepa P/L) [Archivo no firmado]
HKLM\...\Drivers32: [msacm.vorbis] => C:\Windows\SysWOW64\vorbis.acm [1554944 2009-09-15] (HMS hxxp://hp.vector.co.jp/authors/VA012897/) [Archivo no firmado]
HKLM\...\Drivers32: [vidc.CDVC] => C:\Windows\SysWOW64\cdvccodc.dll [69632 2006-11-01] (Canopus Co., Ltd.) [Archivo no firmado]
HKLM\...\Drivers32: [vidc.CDVH] => C:\Windows\SysWOW64\cdvhcodc.dll [65536 2006-09-21] (Canopus Co., Ltd.) [Archivo no firmado]
HKLM\...\Drivers32: [vidc.CUVC] => C:\Windows\SysWOW64\cuvccodc.dll [69632 2006-10-30] (Canopus Co., Ltd.) [Archivo no firmado]
HKLM\...\Drivers32: [vidc.CLLC] => C:\Windows\SysWOW64\cllccodc.dll [258048 2006-10-30] (Canopus Co., Ltd.) [Archivo no firmado]
HKLM\...\Drivers32: [vidc.CDV5] => C:\Windows\SysWOW64\cdv5codc.dll [69632 2006-09-21] (Canopus Co., Ltd.) [Archivo no firmado]
HKLM\...\Drivers32: [msacm.ac3filter] => C:\Windows\SysWOW64\ac3filter.acm [497664 2009-07-19] () [Archivo no firmado]
HKLM\...\Drivers32: [vidc.xtor] => C:\Windows\SysWOW64\DxtoryCodec.dll [3166720 2011-05-23] (Dxtory Software) [Archivo no firmado]
HKLM\...\Drivers32: [VIDC.CFHD] => C:\Windows\SysWOW64\CFHD.DLL [1474560 2014-01-29] (CineForm Inc.) [Archivo no firmado]
HKLM\...\Drivers32: [VIDC.RTV1] => C:\Windows\SysWOW64\rtvcvfw32.dll [247296 2012-09-28] () [Archivo no firmado]

==================== Accesos directos & WMI ========================

(Las entradas pueden ser listadas para ser restauradas o eliminadas.)

WMI:subscription\__FilterToConsumerBinding->CommandLineEventConsumer.Name=\"BVTConsumer\"",Filter="__EventFilter.Name=\"BVTFilter\"::
WMI:subscription\__EventFilter->BVTFilter::[Query => SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99]
WMI:subscription\CommandLineEventConsumer->BVTConsumer::[CommandLineTemplate => cscript KernCap.vbs][WorkingDirectory => C:\\tools\\kernrate]
Shortcut: C:\Users\Mar\desktop\G\Sillent Hill 2 Directors Cut Enhanced Edition\sh2pc.bat - Acceso directo.lnk -> C:\Program Files (x86)\Silent Hill 2 Director's Cut Repack\sh2pc.bat ()
Shortcut: C:\Users\Mar\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\DVDFab Player 5\DVDFab En línea.lnk -> hxxp://www.dvdfab.com/?s=player5&v=5.0.1.8

==================== Módulos cargados (Lista blanca) =============

2017-10-18 18:51 - 2017-10-18 18:51 - 000598528 _____ () [Archivo no firmado] C:\Users\Mar\AppData\Local\MEGAsync\ShellExtX64.dll
2015-03-17 01:34 - 2015-03-17 01:34 - 000013824 _____ (Adobe Systems Inc.) [Archivo no firmado] C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\locale\es_es\Acrobat Elements\ContextMenuShim64.esp
2011-08-17 04:27 - 2013-11-28 15:53 - 004344896 _____ (DT Soft Ltd) [Archivo no firmado] C:\Program Files (x86)\DAEMON Tools Pro\DTCommonRes.dll
2018-07-26 23:47 - 2018-04-30 09:00 - 000075776 _____ (Igor Pavlov) [Archivo no firmado] C:\Program Files\7-Zip\7-zip.dll
2019-10-04 05:26 - 2016-03-25 16:03 - 000503296 _____ (Microsoft Corporation) [Archivo no firmado] C:\Program Files\Common Files\microsoft shared\ink\tiptsf.dll
2019-10-04 05:30 - 2016-03-25 15:59 - 000052224 _____ (Microsoft Corporation) [Archivo no firmado] C:\Program Files\Windows Defender\MpOav.dll
2019-10-04 05:26 - 2016-03-25 15:54 - 000961024 _____ (Microsoft Corporation) [Archivo no firmado] C:\Windows\system32\actxprxy.dll
2019-10-04 05:26 - 2016-03-25 15:54 - 000880640 _____ (Microsoft Corporation) [Archivo no firmado] C:\Windows\system32\ADVAPI32.dll
2019-10-04 05:27 - 2016-03-25 15:54 - 000342016 _____ (Microsoft Corporation) [Archivo no firmado] C:\Windows\system32\apphelp.dll
2019-10-04 05:28 - 2016-03-25 15:55 - 001941504 _____ (Microsoft Corporation) [Archivo no firmado] C:\Windows\system32\authui.dll
2019-10-04 05:32 - 2016-03-25 15:55 - 000052736 _____ (Microsoft Corporation) [Archivo no firmado] C:\Windows\system32\basesrv.DLL
2019-10-04 05:27 - 2016-03-25 15:55 - 000705024 _____ (Microsoft Corporation) [Archivo no firmado] c:\windows\system32\bfe.dll
2019-10-04 05:28 - 2016-03-25 15:55 - 000207872 _____ (Microsoft Corporation) [Archivo no firmado] C:\Windows\system32\CFGMGR32.dll
2019-10-04 05:27 - 2016-03-25 15:55 - 000607744 _____ (Microsoft Corporation) [Archivo no firmado] C:\Windows\system32\CLBCatQ.DLL
2019-10-04 05:31 - 2016-03-25 15:55 - 000594432 _____ (Microsoft Corporation) [Archivo no firmado] C:\Windows\system32\COMDLG32.dll
2019-10-04 05:30 - 2016-03-25 15:55 - 000022016 _____ (Microsoft Corporation) [Archivo no firmado] C:\Windows\system32\credssp.dll
2019-10-04 05:27 - 2016-03-25 15:55 - 001480704 _____ (Microsoft Corporation) [Archivo no firmado] C:\Windows\system32\CRYPT32.dll
2019-10-04 05:32 - 2016-03-25 15:55 - 000043520 _____ (Microsoft Corporation) [Archivo no firmado] C:\Windows\system32\CRYPTBASE.dll
2019-10-04 05:31 - 2016-03-25 15:55 - 000065536 _____ (Microsoft Corporation) [Archivo no firmado] C:\Windows\system32\cryptdll.dll
2019-10-04 05:29 - 2016-03-25 15:55 - 000141824 _____ (Microsoft Corporation) [Archivo no firmado] c:\windows\system32\CRYPTNET.dll
2019-10-04 05:31 - 2016-03-25 15:55 - 000081920 _____ (Microsoft Corporation) [Archivo no firmado] C:\Windows\system32\CRYPTSP.dll
2019-10-04 05:29 - 2016-03-25 15:55 - 000190976 _____ (Microsoft Corporation) [Archivo no firmado] c:\windows\system32\cryptsvc.dll
2019-10-04 05:28 - 2016-03-25 15:55 - 001068544 _____ (Microsoft Corporation) [Archivo no firmado] C:\Windows\system32\CRYPTUI.dll
2019-10-04 05:28 - 2016-03-25 15:55 - 000045568 _____ (Microsoft Corporation) [Archivo no firmado] C:\Windows\system32\cscapi.dll
2019-10-04 05:27 - 2016-03-25 15:55 - 000043520 _____ (Microsoft Corporation) [Archivo no firmado] C:\Windows\system32\CSRSRV.dll
2019-10-04 05:32 - 2016-03-25 15:55 - 000108544 _____ (Microsoft Corporation) [Archivo no firmado] C:\Windows\System32\davclnt.dll
2019-10-04 05:29 - 2016-03-25 15:57 - 000092672 _____ (Microsoft Corporation) [Archivo no firmado] C:\Windows\system32\DEVOBJ.dll
2019-10-04 05:29 - 2016-03-25 15:57 - 000057856 _____ (Microsoft Corporation) [Archivo no firmado] c:\windows\system32\DEVRTL.dll
2019-10-04 05:26 - 2016-03-25 15:57 - 000318976 _____ (Microsoft Corporation) [Archivo no firmado] c:\windows\system32\dhcpcore.dll
2019-10-04 05:26 - 2016-03-25 15:57 - 000226304 _____ (Microsoft Corporation) [Archivo no firmado] C:\Windows\System32\dhcpcore6.dll
2019-10-04 05:31 - 2016-03-25 15:57 - 000086528 _____ (Microsoft Corporation) [Archivo no firmado] C:\Windows\System32\dhcpcsvc.DLL
2019-10-04 05:26 - 2016-03-25 15:57 - 000054784 _____ (Microsoft Corporation) [Archivo no firmado] C:\Windows\System32\dhcpcsvc6.DLL
2019-10-04 05:26 - 2016-03-25 15:57 - 000357376 _____ (Microsoft Corporation) [Archivo no firmado] C:\Windows\system32\DNSAPI.dll
2019-10-04 05:26 - 2016-03-25 15:57 - 000182272 _____ (Microsoft Corporation) [Archivo no firmado] c:\windows\system32\dnsrslvr.dll
2019-10-04 05:26 - 2016-03-25 15:57 - 000977408 _____ (Microsoft Corporation) [Archivo no firmado] C:\Windows\system32\DUI70.dll
2019-10-04 05:26 - 2016-03-25 15:57 - 000082944 _____ (Microsoft Corporation) [Archivo no firmado] C:\Windows\system32\dwmapi.dll
2019-10-04 05:25 - 2015-11-10 11:08 - 001648128 _____ (Microsoft Corporation) [Archivo no firmado] C:\Windows\system32\dwrite.dll
2019-10-04 05:29 - 2016-03-25 15:57 - 000056832 _____ (Microsoft Corporation) [Archivo no firmado] C:\Windows\system32\efslsaext.dll
2019-10-04 05:25 - 2016-03-25 15:57 - 002566656 _____ (Microsoft Corporation) [Archivo no firmado] C:\Windows\system32\ESENT.dll
2019-10-04 05:25 - 2016-03-25 15:57 - 001867776 _____ (Microsoft Corporation) [Archivo no firmado] C:\Windows\system32\EXPLORERFRAME.dll
2019-10-04 05:28 - 2016-03-25 15:57 - 000750592 _____ (Microsoft Corporation) [Archivo no firmado] C:\Windows\system32\FirewallAPI.dll
2019-10-04 05:27 - 2016-03-25 15:58 - 000324096 _____ (Microsoft Corporation) [Archivo no firmado] C:\Windows\system32\fwpuclnt.dll
2019-10-04 05:26 - 2016-03-25 15:58 - 000623104 _____ (Microsoft Corporation) [Archivo no firmado] C:\Windows\system32\FXSAPI.dll
2019-10-04 05:26 - 2016-03-25 15:58 - 000925184 _____ (Microsoft Corporation) [Archivo no firmado] C:\Windows\system32\FXSRESM.DLL
2019-10-04 05:25 - 2016-03-25 15:58 - 002745856 _____ (Microsoft Corporation) [Archivo no firmado] C:\Windows\System32\gameux.dll
2019-10-04 05:27 - 2016-03-25 15:58 - 000404992 _____ (Microsoft Corporation) [Archivo no firmado] C:\Windows\system32\GDI32.dll
2019-10-04 05:26 - 2016-03-25 15:58 - 000096256 _____ (Microsoft Corporation) [Archivo no firmado] C:\Windows\system32\GPAPI.dll
2019-10-04 05:27 - 2016-03-25 15:58 - 000863232 _____ (Microsoft Corporation) [Archivo no firmado] c:\windows\system32\ikeext.dll
2019-10-04 05:30 - 2016-03-25 15:58 - 000081408 _____ (Microsoft Corporation) [Archivo no firmado] C:\Windows\system32\imagehlp.dll
2019-10-04 05:28 - 2016-03-25 15:58 - 000503808 _____ (Microsoft Corporation) [Archivo no firmado] C:\Windows\system32\imapi2.dll
2019-10-04 05:29 - 2016-03-25 15:58 - 000168448 _____ (Microsoft Corporation) [Archivo no firmado] C:\Windows\system32\IMM32.DLL
2019-10-04 05:27 - 2016-03-25 15:58 - 000145408 _____ (Microsoft Corporation) [Archivo no firmado] C:\Windows\system32\IPHLPAPI.DLL
2019-10-04 05:27 - 2016-03-25 15:58 - 000731136 _____ (Microsoft Corporation) [Archivo no firmado] C:\Windows\system32\kerberos.DLL
2019-10-04 05:27 - 2016-03-25 15:59 - 001163264 _____ (Microsoft Corporation) [Archivo no firmado] C:\Windows\SYSTEM32\kernel32.dll
2019-10-04 05:27 - 2016-03-25 15:59 - 000419840 _____ (Microsoft Corporation) [Archivo no firmado] C:\Windows\system32\KERNELBASE.dll
2019-10-04 05:32 - 2016-03-25 15:59 - 000005120 _____ (Microsoft Corporation) [Archivo no firmado] C:\Windows\system32\ksuser.dll
2019-10-04 05:32 - 2016-03-25 15:59 - 000029696 _____ (Microsoft Corporation) [Archivo no firmado] C:\Windows\system32\LINKINFO.dll
2019-10-04 05:29 - 2016-03-25 15:59 - 000023040 _____ (Microsoft Corporation) [Archivo no firmado] c:\windows\system32\lmhsvc.dll
2019-10-04 05:26 - 2016-03-25 15:59 - 000186880 _____ (Microsoft Corporation) [Archivo no firmado] C:\Windows\system32\logoncli.dll
2019-10-04 05:32 - 2016-03-25 15:59 - 000041472 _____ (Microsoft Corporation) [Archivo no firmado] C:\Windows\system32\LPK.dll
2019-10-04 05:26 - 2016-03-25 15:59 - 001464320 _____ (Microsoft Corporation) [Archivo no firmado] C:\Windows\system32\lsasrv.dll
2019-10-04 05:29 - 2016-03-25 15:59 - 000046080 _____ (Microsoft Corporation) [Archivo no firmado] C:\Windows\system32\MSASN1.dll
2019-10-04 05:27 - 2016-03-25 15:59 - 001068544 _____ (Microsoft Corporation) [Archivo no firmado] C:\Windows\system32\MSCTF.dll
2019-10-04 05:28 - 2016-03-25 15:59 - 000799744 _____ (Microsoft Corporation) [Archivo no firmado] C:\Windows\system32\MsftEdit.dll
2019-10-04 05:25 - 2016-03-25 15:59 - 003243520 _____ (Microsoft Corporation) [Archivo no firmado] C:\Windows\system32\msi.dll
2019-10-04 05:27 - 2016-03-25 16:00 - 000316416 _____ (Microsoft Corporation) [Archivo no firmado] C:\Windows\system32\msv1_0.DLL
2019-10-04 05:25 - 2016-03-25 16:00 - 000633856 _____ (Microsoft Corporation) [Archivo no firmado] C:\Windows\system32\msvcrt.dll
2019-10-04 05:26 - 2016-03-25 16:00 - 000327168 _____ (Microsoft Corporation) [Archivo no firmado] C:\Windows\system32\mswsock.dll
2019-10-04 05:25 - 2016-03-25 16:00 - 001885696 _____ (Microsoft Corporation) [Archivo no firmado] C:\Windows\System32\msxml3.dll
2019-10-04 05:25 - 2016-03-25 16:00 - 002003456 _____ (Microsoft Corporation) [Archivo no firmado] C:\Windows\System32\msxml6.dll
2019-10-04 05:27 - 2016-03-25 16:00 - 000312320 _____ (Microsoft Corporation) [Archivo no firmado] C:\Windows\system32\ncrypt.dll
2019-10-04 05:26 - 2016-03-25 16:00 - 000223232 _____ (Microsoft Corporation) [Archivo no firmado] c:\windows\system32\ncsi.dll
2019-10-04 05:26 - 2016-03-25 16:00 - 000072704 _____ (Microsoft Corporation) [Archivo no firmado] C:\Windows\system32\NETAPI32.dll
2019-10-04 05:25 - 2016-03-25 16:00 - 000517632 _____ (Microsoft Corporation) [Archivo no firmado] C:\Windows\system32\netcfgx.dll
2019-10-04 05:29 - 2016-03-25 16:00 - 000188416 _____ (Microsoft Corporation) [Archivo no firmado] C:\Windows\system32\netjoin.dll
2019-10-04 05:26 - 2016-03-25 16:00 - 000706560 _____ (Microsoft Corporation) [Archivo no firmado] C:\Windows\system32\netlogon.DLL
2019-10-04 05:26 - 2016-03-25 16:00 - 000459264 _____ (Microsoft Corporation) [Archivo no firmado] c:\windows\system32\netprofm.dll
2019-10-04 05:25 - 2016-03-25 16:00 - 002651648 _____ (Microsoft Corporation) [Archivo no firmado] C:\Windows\System32\netshell.dll
2019-10-04 05:25 - 2016-03-25 16:00 - 001672704 _____ (Microsoft Corporation) [Archivo no firmado] C:\Windows\system32\NetworkExplorer.dll
2019-10-04 05:29 - 2016-03-25 16:00 - 000070656 _____ (Microsoft Corporation) [Archivo no firmado] C:\Windows\system32\NLAapi.dll
2019-10-04 05:28 - 2016-03-25 16:00 - 000303104 _____ (Microsoft Corporation) [Archivo no firmado] c:\windows\system32\nlasvc.dll
2019-10-04 05:25 - 2016-03-25 16:01 - 000031744 _____ (Microsoft Corporation) [Archivo no firmado] C:\Windows\System32\npmproxy.dll
2019-10-04 05:26 - 2016-03-25 16:01 - 000014848 _____ (Microsoft Corporation) [Archivo no firmado] c:\windows\system32\nrpsrv.DLL
2019-10-04 05:30 - 2016-03-25 16:01 - 000013312 _____ (Microsoft Corporation) [Archivo no firmado] C:\Windows\system32\NSI.dll
2019-10-04 05:27 - 2016-03-25 16:01 - 000026112 _____ (Microsoft Corporation) [Archivo no firmado] c:\windows\system32\nsisvc.dll
2019-10-04 05:27 - 2016-03-25 16:01 - 000510464 _____ (Microsoft Corporation) [Archivo no firmado] C:\Windows\system32\ntshrui.dll
2019-10-04 05:25 - 2016-03-25 16:01 - 002084864 _____ (Microsoft Corporation) [Archivo no firmado] C:\Windows\system32\ole32.dll
2019-10-04 05:28 - 2016-03-25 16:01 - 000331264 _____ (Microsoft Corporation) [Archivo no firmado] C:\Windows\System32\OLEACC.dll
2019-10-04 05:28 - 2016-03-25 16:01 - 000862208 _____ (Microsoft Corporation) [Archivo no firmado] C:\Windows\system32\OLEAUT32.dll
2019-10-04 05:27 - 2016-03-25 16:01 - 000300544 _____ (Microsoft Corporation) [Archivo no firmado] C:\Windows\system32\pdh.dll
2019-10-04 05:27 - 2016-03-25 16:01 - 000241152 _____ (Microsoft Corporation) [Archivo no firmado] C:\Windows\system32\pku2u.DLL
2019-10-04 05:26 - 2016-03-25 16:01 - 001808384 _____ (Microsoft Corporation) [Archivo no firmado] C:\Windows\System32\pnidui.dll
2019-10-04 05:29 - 2016-03-25 16:01 - 000166912 _____ (Microsoft Corporation) [Archivo no firmado] C:\Windows\system32\POWRPROF.dll
2019-10-04 05:28 - 2016-03-25 16:02 - 000225280 _____ (Microsoft Corporation) [Archivo no firmado] c:\windows\system32\profsvc.dll
2019-10-04 05:27 - 2016-03-25 16:02 - 001212416 _____ (Microsoft Corporation) [Archivo no firmado] C:\Windows\system32\PROPSYS.dll
2019-10-04 05:26 - 2016-03-25 16:02 - 000384000 _____ (Microsoft Corporation) [Archivo no firmado] C:\Windows\System32\RASAPI32.dll
2019-10-04 05:26 - 2016-03-25 16:02 - 000859648 _____ (Microsoft Corporation) [Archivo no firmado] C:\Windows\System32\RASDLG.dll
2019-10-04 05:29 - 2016-03-25 16:02 - 001212928 _____ (Microsoft Corporation) [Archivo no firmado] C:\Windows\system32\RPCRT4.dll
2019-10-04 05:28 - 2016-03-25 16:02 - 000512000 _____ (Microsoft Corporation) [Archivo no firmado] c:\windows\system32\rpcss.dll
2019-10-04 05:29 - 2016-03-25 16:02 - 000106496 _____ (Microsoft Corporation) [Archivo no firmado] C:\Windows\system32\SAMLIB.dll
2019-10-04 05:25 - 2016-03-25 16:02 - 000760320 _____ (Microsoft Corporation) [Archivo no firmado] C:\Windows\system32\SAMSRV.dll
2019-10-04 05:28 - 2016-03-25 16:02 - 000232960 _____ (Microsoft Corporation) [Archivo no firmado] C:\Windows\system32\scecli.DLL
2019-10-04 05:28 - 2016-03-25 16:02 - 000407040 _____ (Microsoft Corporation) [Archivo no firmado] C:\Windows\system32\SCESRV.dll
2019-10-04 05:27 - 2016-03-25 16:02 - 000344064 _____ (Microsoft Corporation) [Archivo no firmado] C:\Windows\system32\schannel.DLL
2019-10-04 05:28 - 2016-03-25 16:02 - 000230400 _____ (Microsoft Corporation) [Archivo no firmado] C:\Windows\system32\scrobj.dll
2019-10-04 05:28 - 2016-03-25 16:02 - 000202752 _____ (Microsoft Corporation) [Archivo no firmado] C:\Windows\system32\scrrun.dll
2019-10-04 05:29 - 2016-03-25 16:02 - 000113152 _____ (Microsoft Corporation) [Archivo no firmado] C:\Windows\SYSTEM32\sechost.dll
2019-10-04 05:29 - 2016-03-25 16:02 - 000028160 _____ (Microsoft Corporation) [Archivo no firmado] C:\Windows\system32\secur32.dll
2019-10-04 05:25 - 2016-03-25 16:03 - 001901056 _____ (Microsoft Corporation) [Archivo no firmado] C:\Windows\system32\SETUPAPI.dll
2019-10-04 05:28 - 2016-03-25 16:03 - 000197120 _____ (Microsoft Corporation) [Archivo no firmado] C:\Windows\System32\shdocvw.dll
2019-10-04 05:25 - 2016-03-25 16:03 - 014185472 _____ (Microsoft Corporation) [Archivo no firmado] C:\Windows\system32\SHELL32.dll
2019-10-04 05:27 - 2016-03-25 16:03 - 000450048 _____ (Microsoft Corporation) [Archivo no firmado] C:\Windows\system32\SHLWAPI.dll
2019-10-04 05:29 - 2016-03-25 16:03 - 000135680 _____ (Microsoft Corporation) [Archivo no firmado] C:\Windows\system32\SSPICLI.DLL
2019-10-04 05:30 - 2016-03-25 16:03 - 000028672 _____ (Microsoft Corporation) [Archivo no firmado] C:\Windows\system32\SspiSrv.dll
2019-10-04 05:29 - 2016-03-25 16:03 - 000256512 _____ (Microsoft Corporation) [Archivo no firmado] C:\Windows\system32\stobject.dll
2019-10-04 05:28 - 2016-03-25 16:03 - 000581632 _____ (Microsoft Corporation) [Archivo no firmado] C:\Windows\system32\sxs.dll
2019-10-04 05:30 - 2016-03-25 16:03 - 000095744 _____ (Microsoft Corporation) [Archivo no firmado] C:\Windows\system32\SYNCENG.dll
2019-10-04 05:25 - 2016-03-25 16:03 - 000878592 _____ (Microsoft Corporation) [Archivo no firmado] C:\Windows\system32\tdh.dll
2019-10-04 05:25 - 2016-03-25 16:03 - 000515072 _____ (Microsoft Corporation) [Archivo no firmado] C:\Windows\system32\timedate.cpl
2019-10-04 05:30 - 2016-03-25 16:03 - 000086528 _____ (Microsoft Corporation) [Archivo no firmado] C:\Windows\system32\tspkg.DLL
2019-10-04 05:27 - 2016-03-25 16:03 - 000173056 _____ (Microsoft Corporation) [Archivo no firmado] C:\Windows\system32\twext.dll
2019-10-04 05:27 - 2016-03-25 16:03 - 000215040 _____ (Microsoft Corporation) [Archivo no firmado] C:\Windows\system32\UBPM.dll
2017-11-14 07:27 - 2013-01-13 16:24 - 000221184 _____ (Microsoft Corporation) [Archivo no firmado] C:\Windows\System32\UIAnimation.dll
2019-10-04 05:28 - 2016-03-25 16:03 - 000402944 _____ (Microsoft Corporation) [Archivo no firmado] c:\windows\system32\umpnpmgr.dll
2019-10-04 05:28 - 2016-03-25 16:03 - 000164864 _____ (Microsoft Corporation) [Archivo no firmado] c:\windows\system32\umpo.dll
2019-10-04 05:25 - 2016-03-25 16:03 - 001009152 _____ (Microsoft Corporation) [Archivo no firmado] C:\Windows\system32\USER32.dll
2019-10-04 05:30 - 2016-03-25 16:03 - 000110592 _____ (Microsoft Corporation) [Archivo no firmado] C:\Windows\system32\USERENV.dll
2019-10-04 05:25 - 2016-03-25 16:03 - 000802304 _____ (Microsoft Corporation) [Archivo no firmado] C:\Windows\system32\USP10.dll
2019-10-04 05:29 - 2016-03-25 16:03 - 000332288 _____ (Microsoft Corporation) [Archivo no firmado] C:\Windows\system32\UxTheme.dll
2019-10-04 05:31 - 2016-03-25 16:03 - 000029184 _____ (Microsoft Corporation) [Archivo no firmado] C:\Windows\system32\VERSION.dll
2019-10-04 05:26 - 2016-03-25 16:03 - 001752576 _____ (Microsoft Corporation) [Archivo no firmado] C:\Windows\system32\VSSAPI.DLL
2019-10-04 05:27 - 2016-03-25 16:03 - 000076288 _____ (Microsoft Corporation) [Archivo no firmado] C:\Windows\system32\VssTrace.DLL
2019-10-04 05:26 - 2016-03-25 16:02 - 000453632 _____ (Microsoft Corporation) [Archivo no firmado] C:\Windows\system32\wbem\repdrvfs.dll
2019-10-04 05:31 - 2016-03-25 16:04 - 000136192 _____ (Microsoft Corporation) [Archivo no firmado] C:\Windows\system32\wbem\WmiPerfClass.dll
2019-10-04 05:27 - 2016-03-25 16:04 - 000210432 _____ (Microsoft Corporation) [Archivo no firmado] C:\Windows\system32\wdigest.DLL
2019-10-04 05:30 - 2016-03-25 16:04 - 000217088 _____ (Microsoft Corporation) [Archivo no firmado] C:\Windows\system32\wdmaud.drv
2019-10-04 05:30 - 2016-03-25 16:04 - 000396800 _____ (Microsoft Corporation) [Archivo no firmado] c:\windows\system32\webio.dll
2019-10-04 05:28 - 2016-03-25 16:04 - 000484352 _____ (Microsoft Corporation) [Archivo no firmado] C:\Windows\System32\wer.dll
2019-10-04 05:25 - 2016-03-25 16:04 - 001659904 _____ (Microsoft Corporation) [Archivo no firmado] c:\windows\system32\wevtsvc.dll
2019-10-04 05:27 - 2015-06-03 17:23 - 001424896 _____ (Microsoft Corporation) [Archivo no firmado] C:\Windows\system32\WindowsCodecs.dll
2019-10-04 05:29 - 2016-03-25 16:04 - 000217600 _____ (Microsoft Corporation) [Archivo no firmado] C:\Windows\system32\WINMM.dll
2019-10-04 05:27 - 2016-03-25 16:04 - 000025600 _____ (Microsoft Corporation) [Archivo no firmado] C:\Windows\system32\WINNSI.DLL
2019-10-04 05:26 - 2016-03-25 16:04 - 000442880 _____ (Microsoft Corporation) [Archivo no firmado] C:\Windows\system32\WINSPOOL.DRV
2019-10-04 05:29 - 2016-03-25 16:04 - 000215552 _____ (Microsoft Corporation) [Archivo no firmado] C:\Windows\system32\winsrv.DLL
2019-10-04 05:29 - 2016-03-25 16:04 - 000236032 _____ (Microsoft Corporation) [Archivo no firmado] C:\Windows\system32\WINSTA.dll
2019-10-04 05:32 - 2016-03-25 16:04 - 000228864 _____ (Microsoft Corporation) [Archivo no firmado] C:\Windows\system32\WINTRUST.dll
2019-10-04 05:28 - 2016-03-25 16:04 - 000118784 _____ (Microsoft Corporation) [Archivo no firmado] c:\windows\system32\wkssvc.dll
2019-10-04 05:27 - 2016-03-25 16:04 - 000113664 _____ (Microsoft Corporation) [Archivo no firmado] C:\Windows\system32\Wlanapi.dll
2019-10-04 05:27 - 2016-03-25 16:04 - 000313344 _____ (Microsoft Corporation) [Archivo no firmado] C:\Windows\system32\WLDAP32.dll
2019-10-04 05:32 - 2016-03-25 16:04 - 000243712 _____ (Microsoft Corporation) [Archivo no firmado] C:\Windows\SYSTEM32\wow64.dll
2019-10-04 05:32 - 2016-03-25 16:04 - 000013312 _____ (Microsoft Corporation) [Archivo no firmado] C:\Windows\SYSTEM32\wow64cpu.dll
2019-10-04 05:32 - 2016-03-25 16:04 - 000362496 _____ (Microsoft Corporation) [Archivo no firmado] C:\Windows\SYSTEM32\wow64win.dll
2019-10-04 05:30 - 2016-03-25 16:04 - 000441856 _____ (Microsoft Corporation) [Archivo no firmado] C:\Windows\System32\Wpc.dll
2019-10-04 05:29 - 2016-03-25 16:04 - 000115200 _____ (Microsoft Corporation) [Archivo no firmado] C:\Windows\system32\wpdshserviceobj.dll
2019-10-04 05:29 - 2016-03-25 16:04 - 000198656 _____ (Microsoft Corporation) [Archivo no firmado] C:\Windows\System32\XmlLite.dll
2019-10-04 05:25 - 2016-03-25 16:04 - 000369664 _____ (Microsoft Corporation) [Archivo no firmado] C:\Windows\system32\zipfldr.dll
2019-10-04 05:26 - 2016-03-25 15:25 - 000644096 _____ (Microsoft Corporation) [Archivo no firmado] C:\Windows\syswow64\ADVAPI32.dll
2019-10-04 05:29 - 2016-03-25 15:26 - 000145920 _____ (Microsoft Corporation) [Archivo no firmado] C:\Windows\syswow64\CFGMGR32.dll
2019-10-04 05:31 - 2016-03-25 15:26 - 000486400 _____ (Microsoft Corporation) [Archivo no firmado] C:\Windows\syswow64\COMDLG32.dll
2019-10-04 05:27 - 2016-03-25 15:26 - 001175040 _____ (Microsoft Corporation) [Archivo no firmado] C:\Windows\syswow64\CRYPT32.dll
2019-10-04 05:32 - 2016-03-25 14:27 - 000036352 _____ (Microsoft Corporation) [Archivo no firmado] C:\Windows\syswow64\CRYPTBASE.dll
2019-10-04 05:29 - 2016-03-25 15:26 - 000064000 _____ (Microsoft Corporation) [Archivo no firmado] C:\Windows\syswow64\DEVOBJ.dll
2019-10-04 05:27 - 2016-03-25 15:33 - 000312320 _____ (Microsoft Corporation) [Archivo no firmado] C:\Windows\syswow64\GDI32.dll
2019-10-04 05:29 - 2016-03-25 15:33 - 000119808 _____ (Microsoft Corporation) [Archivo no firmado] C:\Windows\syswow64\IMM32.dll
2019-10-04 05:27 - 2016-03-25 15:33 - 001114112 _____ (Microsoft Corporation) [Archivo no firmado] C:\Windows\syswow64\kernel32.dll
2019-10-04 05:27 - 2016-03-25 15:33 - 000275456 _____ (Microsoft Corporation) [Archivo no firmado] C:\Windows\syswow64\KERNELBASE.dll
2019-10-04 05:32 - 2016-03-25 15:33 - 000025600 _____ (Microsoft Corporation) [Archivo no firmado] C:\Windows\syswow64\LPK.dll
2019-10-04 05:29 - 2016-03-25 15:28 - 000033792 _____ (Microsoft Corporation) [Archivo no firmado] C:\Windows\syswow64\MSASN1.dll
2019-10-04 05:27 - 2016-03-25 15:28 - 000829952 _____ (Microsoft Corporation) [Archivo no firmado] C:\Windows\syswow64\MSCTF.dll
2019-10-04 05:25 - 2016-03-25 15:29 - 000689664 _____ (Microsoft Corporation) [Archivo no firmado] C:\Windows\syswow64\msvcrt.dll
2019-10-04 05:26 - 2016-03-25 15:30 - 001414144 _____ (Microsoft Corporation) [Archivo no firmado] C:\Windows\syswow64\ole32.dll
2019-10-04 05:28 - 2016-03-25 15:30 - 000572416 _____ (Microsoft Corporation) [Archivo no firmado] C:\Windows\syswow64\OLEAUT32.dll
2019-10-04 05:29 - 2016-03-25 15:33 - 000666112 _____ (Microsoft Corporation) [Archivo no firmado] C:\Windows\syswow64\RPCRT4.dll
2019-10-04 05:32 - 2016-03-25 15:32 - 000091648 _____ (Microsoft Corporation) [Archivo no firmado] C:\Windows\SysWOW64\sechost.dll
2019-10-04 05:25 - 2016-03-25 15:32 - 001668096 _____ (Microsoft Corporation) [Archivo no firmado] C:\Windows\syswow64\SETUPAPI.dll
2019-10-04 05:25 - 2016-03-25 15:32 - 012881408 _____ (Microsoft Corporation) [Archivo no firmado] C:\Windows\syswow64\SHELL32.dll
2019-10-04 05:27 - 2016-03-25 15:32 - 000350720 _____ (Microsoft Corporation) [Archivo no firmado] C:\Windows\syswow64\SHLWAPI.dll
2019-10-04 05:29 - 2016-03-25 15:33 - 000096768 _____ (Microsoft Corporation) [Archivo no firmado] C:\Windows\syswow64\SspiCli.dll
2019-10-04 05:25 - 2016-03-25 15:33 - 000833024 _____ (Microsoft Corporation) [Archivo no firmado] C:\Windows\syswow64\USER32.dll
2019-10-04 05:25 - 2016-03-25 15:33 - 000627712 _____ (Microsoft Corporation) [Archivo no firmado] C:\Windows\syswow64\USP10.dll
2019-10-04 05:32 - 2016-03-25 15:33 - 000179200 _____ (Microsoft Corporation) [Archivo no firmado] C:\Windows\syswow64\WINTRUST.dll
2019-10-04 05:27 - 2016-03-25 15:33 - 000270848 _____ (Microsoft Corporation) [Archivo no firmado] C:\Windows\syswow64\WLDAP32.dll
2019-10-04 05:26 - 2016-03-25 15:55 - 002030592 _____ (Microsoft Corporation) [Archivo no firmado] C:\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.23403_none_e36ad4593102f066\comctl32.dll
2019-10-04 05:25 - 2016-03-29 15:58 - 002167808 _____ (Microsoft Corporation) [Archivo no firmado] C:\Windows\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.23407_none_14556c1e8b95d0b8\gdiplus.dll
2019-10-04 05:26 - 2016-03-25 15:25 - 001680896 _____ (Microsoft Corporation) [Archivo no firmado] C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.23403_none_2b180b30457f196c\COMCTL32.dll
2019-10-04 05:25 - 2016-03-29 15:25 - 001627648 _____ (Microsoft Corporation) [Archivo no firmado] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.23407_none_5c02a2f5a011f9be\gdiplus.dll
2014-11-21 21:37 - 2014-11-25 17:18 - 000254976 _____ (Sysprogs OU) [Archivo no firmado] C:\Program Files (x86)\WinCDEmu\x64\WinCDEmuContextMenu.dll

==================== Alternate Data Streams (Lista blanca) ========

(Si una entrada es incluida en el fixlist, solamente los ADS serán eliminados.)

AlternateDataStreams: C:\Users\Mar\Configuración local:zSk371RdEaA87cdwHupTr8 [665]
AlternateDataStreams: C:\Users\Mar\AppData\Local:zSk371RdEaA87cdwHupTr8 [665]
AlternateDataStreams: C:\Users\Mar\AppData\Local\Archivos temporales de Internet:NmP2TF8AbNVKf13wGolg76 [2866]
AlternateDataStreams: C:\Users\Mar\AppData\Local\Datos de programa:zSk371RdEaA87cdwHupTr8 [665]
AlternateDataStreams: C:\Users\Mar\AppData\Local\Temp:fX0i0jHabp36egZa4srEMbpkZr [2680]

==================== Modo Seguro (Lista blanca) ==================

(Si una entrada es incluida en el fixlist, será eliminada del registro. El "AlternateShell" será restaurado.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mbamchameleon => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMSwissArmy => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mbamchameleon => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMSwissArmy => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Option => "OptionValue"="2"

==================== Asociación (Lista blanca) =================

==================== Internet Explorer sitios de confianza/restringidos ==========

==================== Hosts contenido: =========================

(Si es necesario, la directiva Hosts: puede ser incluida en el fixlist para restablecer Hosts.)

2009-07-13 23:34 - 2019-01-04 07:16 - 000001110 _____ C:\Windows\system32\drivers\etc\hosts
127.0.0.1                   75.126.120.203
127.0.0.1                   46.4.58.71
127.0.0.1                   46.4.62.150
127.0.0.1                   46.4.28.80

==================== Otras Áreas ===========================

(Actualmente no existe una corrección automática para esta sección.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\ProgramData\Oracle\Java\javapath;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files\Common Files\Microsoft Shared\Windows Live;C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static;C:\Program Files (x86)\Smart Projects\IsoBuster;C:\Program Files (x86)\Autodesk\Backburner\;C:\Program Files (x86)\Windows Live\Shared;C:\Program Files (x86)\AMD\ATI.ACE\Core-Static;C:\Program Files (x86)\Livestreamer;C:\Program Files (x86)\QuickTime\QTSystem\
HKU\S-1-5-21-1557413109-1875796577-672599849-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Mar\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 200.49.130.44 - 200.42.4.210
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)

==================== MSCONFIG/TASK MANAGER elementos deshabilitados ==

(Si una entrada es incluida en el fixlist, será eliminada.)

MSCONFIG\Services: !SASCORE => 2
MSCONFIG\Services: Abrosoft: Abrosoft FantaMorph update permissions manager. 12810. => 2
MSCONFIG\Services: AdobeARMservice => 2
MSCONFIG\Services: AdobeFlashPlayerUpdateSvc => 3
MSCONFIG\Services: AdobeUpdateService => 3
MSCONFIG\Services: AGMService => 2
MSCONFIG\Services: AGSService => 2
MSCONFIG\Services: Avid DMF Service => 3
MSCONFIG\Services: Avid Editor Broker => 3
MSCONFIG\Services: Avid Editor Db Engine => 3
MSCONFIG\Services: Avid Editor Transcode Service => 3
MSCONFIG\Services: Avid Editor Transcode Status => 3
MSCONFIG\Services: BDESVC => 3
MSCONFIG\Services: Bonjour Service => 2
MSCONFIG\Services: bthserv => 3
MSCONFIG\Services: CertPropSvc => 3
MSCONFIG\Services: CyberLink PowerDVD 13 Media Server Monitor Service => 2
MSCONFIG\Services: CyberLink PowerDVD 13 Media Server Service => 2
MSCONFIG\Services: EFS => 3
MSCONFIG\Services: ehRecvr => 3
MSCONFIG\Services: ehSched => 3
MSCONFIG\Services: ES lite Service => 2
MSCONFIG\Services: Fax => 3
MSCONFIG\Services: FlexNet Licensing Service 64 => 3
MSCONFIG\Services: hmevpnsvc => 2
MSCONFIG\Services: hshld => 3
MSCONFIG\Services: HssTrayService => 3
MSCONFIG\Services: IDriverT => 3
MSCONFIG\Services: idsvc => 3
MSCONFIG\Services: IObitUnSvr => 2
MSCONFIG\Services: LiveUpdateSvc => 3
MSCONFIG\Services: MaConfigAgent => 2
MSCONFIG\Services: MBAMService => 3
MSCONFIG\Services: MozillaMaintenance => 3
MSCONFIG\Services: MpsSvc => 2
MSCONFIG\Services: MSiSCSI => 3
MSCONFIG\Services: Netlogon => 3
MSCONFIG\Services: PaceLicenseDServices => 2
MSCONFIG\Services: RasMan => 3
MSCONFIG\Services: rpcapd => 3
MSCONFIG\Services: RpcLocator => 3
MSCONFIG\Services: SCardSvr => 3
MSCONFIG\Services: SCPolicySvc => 3
MSCONFIG\Services: SessionEnv => 3
MSCONFIG\Services: SkypeUpdate => 2
MSCONFIG\Services: Steam Client Service => 3
MSCONFIG\Services: SwitchBoard => 3
MSCONFIG\Services: SysMain => 2
MSCONFIG\Services: TabletInputService => 3
MSCONFIG\Services: TeamViewer7 => 2
MSCONFIG\Services: TermService => 3
MSCONFIG\Services: WbioSrvc => 3
MSCONFIG\Services: WinHttpAutoProxySvc => 3
MSCONFIG\Services: WinRM => 3
MSCONFIG\Services: wmiApSrv => 3
MSCONFIG\Services: WMPNetworkSvc => 3
MSCONFIG\Services: WPCSvc => 3
MSCONFIG\Services: XperiaCompanionService => 2
MSCONFIG\startupreg: Acrobat Assistant 8.0 => "C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Acrotray.exe"
MSCONFIG\startupreg: Adobe Creative Cloud => "C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe" --showwindow=false --onOSstartup=true
MSCONFIG\startupreg: AdobeAAMUpdater-1.0 => "C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe"
MSCONFIG\startupreg: AdobeCS6ServiceManager => "C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe" -launchedbylogin
MSCONFIG\startupreg: AdobeGCInvoker-1.0 => "C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe"
MSCONFIG\startupreg: amd_dc_opt => C:\Program Files (x86)\AMD\Dual-Core Optimizer\amd_dc_opt.exe
MSCONFIG\startupreg: APSDaemon => "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
MSCONFIG\startupreg: D3DOverrider => "F:\Juegos\MODS THE WITCHER 1\Poner v-sync\D3DOverrider\D3DOverrider\D3DOverriderWrapper.exe" /s
MSCONFIG\startupreg: DAEMON Tools Pro Agent => "C:\Program Files (x86)\DAEMON Tools Pro\DTAgent.exe" -autorun
MSCONFIG\startupreg: Dropbox Update => "C:\Users\Mar\AppData\Local\Dropbox\Update\DropboxUpdate.exe" /c
MSCONFIG\startupreg: EpicGamesLauncher => "C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe" -silent
MSCONFIG\startupreg: IDMan => C:\Program Files (x86)\Internet Download Manager\IDMan.exe /onboot
MSCONFIG\startupreg: IntelliPoint => "c:\Program Files\Microsoft IntelliPoint\ipoint.exe"
MSCONFIG\startupreg: ioCentre => C:\Genius\ioCentre\gTaskBar.exe
MSCONFIG\startupreg: Malwarebytes Anti-Malware (cleanup) => "C:\ProgramData\Malwarebytes\Malwarebytes Anti-Malware\mbamdor.exe" "C:\ProgramData\Malwarebytes\Malwarebytes Anti-Malware"
MSCONFIG\startupreg: NeroFilterCheck => C:\Windows\system32\NeroCheck.exe
MSCONFIG\startupreg: NexusServer => "C:\Program Files (x86)\Common Files\Grass Valley\ProCoder 3\Kernel\PNXSERVR.exe" -SelfLaunch
MSCONFIG\startupreg: PowerDVD13Agent => "C:\Program Files (x86)\CyberLink\PowerDVD13\PowerDVD13Agent.exe"
MSCONFIG\startupreg: PowerDVD14Agent => "C:\Program Files (x86)\CyberLink\PowerDVD14\PowerDVD14Agent.exe"
MSCONFIG\startupreg: Raptr => "C:\Program Files (x86)\Raptr\raptrstub.exe" --startup
MSCONFIG\startupreg: SpybotSD TeaTimer => C:\Program Files (x86)\Spybot - Search & Destroy\TeaTimer.exe
MSCONFIG\startupreg: Steam => "C:\Program Files (x86)\Steam\steam.exe" -silent
MSCONFIG\startupreg: SunJavaUpdateSched => "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
MSCONFIG\startupreg: vProt => 

==================== Reglas de firewall (Lista blanca) ================

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)

FirewallRules: [TCP Query User{AC897248-7EA2-479E-9095-ABF3C07A7133}C:\program files\sony\vegas pro 12.0\vegas120.exe] => (Block) C:\program files\sony\vegas pro 12.0\vegas120.exe (Sony Creative Software Inc -> Sony Creative Software Inc.) [Archivo no firmado]
FirewallRules: [UDP Query User{D8803A0C-8188-419E-8E1D-CEEA9ADCC9DF}C:\program files\sony\vegas pro 12.0\vegas120.exe] => (Block) C:\program files\sony\vegas pro 12.0\vegas120.exe (Sony Creative Software Inc -> Sony Creative Software Inc.) [Archivo no firmado]
FirewallRules: [{DCB5F9CD-938F-4FDE-B903-33A23D737395}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [TCP Query User{D40A3820-4C31-469E-8D0C-80064F460ED5}C:\users\mar\appdata\roaming\dropbox\bin\dropbox.exe] => (Allow) C:\users\mar\appdata\roaming\dropbox\bin\dropbox.exe (Dropbox, Inc -> Dropbox, Inc.)
FirewallRules: [UDP Query User{D86A1B8E-E129-446C-955B-C473C4CACF24}C:\users\mar\appdata\roaming\dropbox\bin\dropbox.exe] => (Allow) C:\users\mar\appdata\roaming\dropbox\bin\dropbox.exe (Dropbox, Inc -> Dropbox, Inc.)
FirewallRules: [{7309F89E-F071-4F8B-9EB0-7411F26E5B76}] => (Allow) C:\Program Files (x86)\Common Files\SafeNet Sentinel\Sentinel Protection Server\WinNT\spnsrvnt.exe (SafeNet, Inc. -> SafeNet, Inc)
FirewallRules: [{720A5731-E2DA-4386-9034-6549EE90E67F}] => (Allow) C:\Program Files (x86)\Common Files\SafeNet Sentinel\Sentinel Protection Server\WinNT\spnsrvnt.exe (SafeNet, Inc. -> SafeNet, Inc)
FirewallRules: [{935BCAE3-AECF-4891-99FB-032D1950AB82}] => (Allow) C:\Program Files (x86)\Common Files\SafeNet Sentinel\Sentinel Keys Server\sntlkeyssrvr.exe (SafeNet, Inc.) [Archivo no firmado]
FirewallRules: [{B65A70B0-ACCC-4802-AF41-5F2F289D0A51}] => (Allow) C:\Program Files (x86)\Common Files\SafeNet Sentinel\Sentinel Keys Server\sntlkeyssrvr.exe (SafeNet, Inc.) [Archivo no firmado]
FirewallRules: [{B88FEED2-62A6-4F0B-A5B3-BF48E62D09B7}] => (Allow) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\WebKit2WebProcess.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [TCP Query User{39F4F580-CE7E-4043-82D0-C9F8D176C69A}C:\program files (x86)\orbitdownloader\orbitnet.exe] => (Block) C:\program files (x86)\orbitdownloader\orbitnet.exe Ningún archivo
FirewallRules: [UDP Query User{28F92CB4-5219-4361-B5E2-C2FFE913F88F}C:\program files (x86)\orbitdownloader\orbitnet.exe] => (Block) C:\program files (x86)\orbitdownloader\orbitnet.exe Ningún archivo
FirewallRules: [{9D002A57-CD33-4FBD-835D-C0B444D9ABE1}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{501408C3-98D8-42D5-8709-F479EC780A3E}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{5E760E84-508C-4EBF-A0F2-997060820564}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD13\PowerDVD13.exe (CyberLink Corp. -> CyberLink Corp.)
FirewallRules: [{785A6DAD-E6C2-4CC8-A033-CF8B9E1A1593}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD13\Kernel\DMS\CLMSServerPDVD13.exe (CyberLink Corp. -> CyberLink)
FirewallRules: [{3FC00433-801B-41DA-98C5-AB6196D0AB12}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD13\PowerDVD13Agent.exe (CyberLink Corp. -> CyberLink Corp.)
FirewallRules: [{6A0CBF44-165E-4ABB-814F-81B038B46FD7}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD13\PowerDVD13ML.exe (CyberLink Corp. -> CyberLink Corp.)
FirewallRules: [{4F083673-294B-43F5-A4AF-1AD0B06278F1}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD13\Movie\PowerDVD.exe (CyberLink Corp. -> CyberLink Corp.)
FirewallRules: [{AE3592DE-193F-43CF-ADCC-B92B88340257}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD13\Movie\PowerDVD Cinema\PowerDVDCinema13.exe (CyberLink Corp. -> CyberLink Corp.)
FirewallRules: [{ABAE2194-0BCC-4A22-8D51-9A6684836700}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{FD746B40-4DC7-4244-B574-35B9E411F25D}] => (Allow) C:\Program Files (x86)\WB Games\Batman Arkham City GOTY\Binaries\Win32\BatmanAC.exe Ningún archivo
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Orbitdownloader\orbitdm.exe] => Enabled:Orbit
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Orbitdownloader\orbitnet.exe] => Enabled:Orbit

==================== Puntos de Restauración =========================

03-01-2020 10:48:41 Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030
03-01-2020 10:49:44 Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030
03-01-2020 10:50:28 Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501
03-01-2020 10:51:11 Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501
15-01-2020 21:55:44 Punto de control programado
20-01-2020 09:34:54 Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030
20-01-2020 09:35:44 Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030
20-01-2020 09:36:19 Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501
20-01-2020 09:36:58 Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501

==================== Dispositivos defectuosos en el Administrador de dispositivos ============

Name: Security Processor Loader Driver
Description: Security Processor Loader Driver
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer: 
Service: spldr
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.

Name: aswRvrt
Description: aswRvrt
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer: 
Service: aswRvrt
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.

Name: aswVmm
Description: aswVmm
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer: 
Service: aswVmm
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.


==================== Errores del registro de eventos: ========================

Errores de aplicación:
==================
Error: (01/22/2020 03:30:49 PM) (Source: System Restore) (EventID: 8193) (User: )
Description: No se pudo crear el punto de restauración (proceso = C:\Users\Mar\AppData\Local\Temp\jrt\CreateRestorePoint.exe  "JRT Pre-Junkware Removal"; descripción = JRT Pre-Junkware Removal; error = 0x8007043c).

Error: (01/22/2020 03:30:25 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: No se pudo reactivar el filtro de eventos con la consulta "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" en el espacio de nombres "//./root/CIMV2" por el error 0x80041003. Los eventos no se podrán entregar a través de este filtro hasta que se corrija este problema.

Error: (01/22/2020 03:14:01 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: No se pudo reactivar el filtro de eventos con la consulta "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" en el espacio de nombres "//./root/CIMV2" por el error 0x80041003. Los eventos no se podrán entregar a través de este filtro hasta que se corrija este problema.

Error: (01/22/2020 03:07:07 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: No se pudo reactivar el filtro de eventos con la consulta "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" en el espacio de nombres "//./root/CIMV2" por el error 0x80041003. Los eventos no se podrán entregar a través de este filtro hasta que se corrija este problema.

Error: (01/22/2020 09:45:56 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: No se pudo reactivar el filtro de eventos con la consulta "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" en el espacio de nombres "//./root/CIMV2" por el error 0x80041003. Los eventos no se podrán entregar a través de este filtro hasta que se corrija este problema.

Error: (01/20/2020 03:32:50 PM) (Source: PerfNet) (EventID: 2004) (User: )
Description: No se puede abrir el objeto de rendimiento del servicio del servidor. Los primeros cuatro bytes (DWORD) de la sección de datos contienen el código de estado.

Error: (01/20/2020 03:26:50 PM) (Source: PerfNet) (EventID: 2004) (User: )
Description: No se puede abrir el objeto de rendimiento del servicio del servidor. Los primeros cuatro bytes (DWORD) de la sección de datos contienen el código de estado.

Error: (01/20/2020 03:26:50 PM) (Source: PerfNet) (EventID: 2004) (User: )
Description: No se puede abrir el objeto de rendimiento del servicio del servidor. Los primeros cuatro bytes (DWORD) de la sección de datos contienen el código de estado.


Errores del sistema:
=============
Error: (01/22/2020 04:13:08 PM) (Source: DCOM) (EventID: 10005) (User: )
Description: Error de DCOM "1084" al intentar iniciar el servicio VSS con argumentos "" para ejecutar el servidor:
{E579AB5F-1CC4-44B4-BED9-DE0991FF0623}

Error: (01/22/2020 03:29:40 PM) (Source: DCOM) (EventID: 10005) (User: )
Description: Error de DCOM "1084" al intentar iniciar el servicio WSearch con argumentos "" para ejecutar el servidor:
{9E175B6D-F52A-11D8-B9A5-505054503030}

Error: (01/22/2020 03:29:38 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: El servicio MBAMChameleon no pudo iniciarse debido al siguiente error: 
El controlador no se cargó porque el sistema se está arrancando en modo a prueba de errores.

Error: (01/22/2020 03:29:38 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: El servicio MBAMChameleon no pudo iniciarse debido al siguiente error: 
El controlador no se cargó porque el sistema se está arrancando en modo a prueba de errores.

Error: (01/22/2020 03:29:39 PM) (Source: DCOM) (EventID: 10005) (User: )
Description: Error de DCOM "1084" al intentar iniciar el servicio WSearch con argumentos "" para ejecutar el servidor:
{7D096C5F-AC08-4F1F-BEB7-5C22C517CE39}

Error: (01/22/2020 03:29:32 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: El servicio MBAMChameleon no pudo iniciarse debido al siguiente error: 
El controlador no se cargó porque el sistema se está arrancando en modo a prueba de errores.

Error: (01/22/2020 03:29:28 PM) (Source: DCOM) (EventID: 10005) (User: )
Description: Error de DCOM "1084" al intentar iniciar el servicio EventSystem con argumentos "" para ejecutar el servidor:
{1BE1F766-5536-11D1-B726-00C04FB926AF}

Error: (01/22/2020 03:29:14 PM) (Source: DCOM) (EventID: 10005) (User: )
Description: Error de DCOM "1084" al intentar iniciar el servicio ShellHWDetection con argumentos "" para ejecutar el servidor:
{DD522ACC-F821-461A-A407-50B198B896DC}


CodeIntegrity:
===================================

Date: 2020-01-22 15:13:54.632
Description: 
Windows no puede comprobar la integridad de imagen del archivo \Device\HarddiskVolume2\Windows\System32\drivers\hardlock.sys porque el hash del archivo no se encuentra en el sistema. Puede que un cambio reciente de hardware o software haya instalado un archivo dañado o con una firma incorrecta, o que exista un software malintencionado de origen desconocido.

Date: 2020-01-22 15:13:54.444
Description: 
Windows no puede comprobar la integridad de imagen del archivo \Device\HarddiskVolume2\Windows\System32\drivers\hardlock.sys porque el hash del archivo no se encuentra en el sistema. Puede que un cambio reciente de hardware o software haya instalado un archivo dañado o con una firma incorrecta, o que exista un software malintencionado de origen desconocido.

Date: 2020-01-20 14:38:00.634
Description: 
Windows no puede comprobar la integridad de imagen del archivo \Device\HarddiskVolume2\Windows\System32\drivers\hardlock.sys porque el hash del archivo no se encuentra en el sistema. Puede que un cambio reciente de hardware o software haya instalado un archivo dañado o con una firma incorrecta, o que exista un software malintencionado de origen desconocido.

Date: 2020-01-20 14:38:00.478
Description: 
Windows no puede comprobar la integridad de imagen del archivo \Device\HarddiskVolume2\Windows\System32\drivers\hardlock.sys porque el hash del archivo no se encuentra en el sistema. Puede que un cambio reciente de hardware o software haya instalado un archivo dañado o con una firma incorrecta, o que exista un software malintencionado de origen desconocido.

Date: 2020-01-20 13:09:14.800
Description: 
Windows no puede comprobar la integridad de imagen del archivo \Device\HarddiskVolume2\Windows\System32\drivers\hardlock.sys porque el hash del archivo no se encuentra en el sistema. Puede que un cambio reciente de hardware o software haya instalado un archivo dañado o con una firma incorrecta, o que exista un software malintencionado de origen desconocido.

Date: 2020-01-20 13:09:14.675
Description: 
Windows no puede comprobar la integridad de imagen del archivo \Device\HarddiskVolume2\Windows\System32\drivers\hardlock.sys porque el hash del archivo no se encuentra en el sistema. Puede que un cambio reciente de hardware o software haya instalado un archivo dañado o con una firma incorrecta, o que exista un software malintencionado de origen desconocido.

Date: 2020-01-20 10:12:18.008
Description: 
Windows no puede comprobar la integridad de imagen del archivo \Device\HarddiskVolume2\Windows\System32\drivers\hardlock.sys porque el hash del archivo no se encuentra en el sistema. Puede que un cambio reciente de hardware o software haya instalado un archivo dañado o con una firma incorrecta, o que exista un software malintencionado de origen desconocido.

Date: 2020-01-20 10:12:17.883
Description: 
Windows no puede comprobar la integridad de imagen del archivo \Device\HarddiskVolume2\Windows\System32\drivers\hardlock.sys porque el hash del archivo no se encuentra en el sistema. Puede que un cambio reciente de hardware o software haya instalado un archivo dañado o con una firma incorrecta, o que exista un software malintencionado de origen desconocido.

==================== Información de la memoria =========================== 

BIOS: Award Software International, Inc. F2 02/11/2011
Placa base: Gigabyte Technology Co., Ltd. GA-890GPA-UD3H
Procesador: AMD Phenom(tm) II X4 965 Processor
Porcentaje de memoria en uso: 23%
RAM física total: 8189.55 MB
RAM física disponible: 6273.93 MB
Virtual total: 40943.3 MB
Virtual disponible: 39158.59 MB

==================== Unidades ================================

Drive c: () (Fixed) (Total:931.41 GB) (Free:274.75 GB) NTFS
Drive d: (Reservado para el sistema) (Fixed) (Total:0.1 GB) (Free:0.06 GB) NTFS ==>[sistema con componentes de arranque (obtenido de unidad)]
Drive e: (Edición (Disco nuevo)) (Fixed) (Total:931.51 GB) (Free:195.63 GB) NTFS
Drive f: (Datos (ex disco win principal)) (Fixed) (Total:931.41 GB) (Free:6.56 GB) NTFS
Drive i: (Edición 2018) (Fixed) (Total:1863.01 GB) (Free:579.71 GB) NTFS

\\?\Volume{78de8286-5832-11e3-83b1-806e6f6e6963}\ (Reservado para el sistema) (Fixed) (Total:0.1 GB) (Free:0.06 GB) NTFS

==================== MBR & Tabla de particiones ====================

==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 931.5 GB) (Disk ID: 43E70555)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=931.4 GB) - (Type=07 NTFS)

==========================================================
Disk: 1 (MBR Code: Windows 7/8/10) (Size: 1863 GB) (Disk ID: 182F0044)
Partition 1: (Not Active) - (Size=1863 GB) - (Type=07 NTFS)

==========================================================
Disk: 2 (MBR Code: Windows 7/8/10) (Size: 931.5 GB) (Disk ID: DBD523FE)
Partition 1: (Not Active) - (Size=931.5 GB) - (Type=07 NTFS)

==========================================================
Disk: 3 (MBR Code: Windows 7/8/10) (Size: 931.5 GB) (Disk ID: 5F7135B8)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=931.4 GB) - (Type=07 NTFS)

==================== Final de Addition.txt =======================

Todos los Logs listos. espero (yo) haya hecho todo bien.

Bien… y ahora sigue estos pasos, MUY Importante Realiza una copia de seguridad del registro :

• Para hacerlo descarga DelFix.exe(en tu escritorio).

• Doble clic para ejecutarlo.(Si usas Windows Vista/7/8 o 10 presiona clic derecho y selecciona -Ejecutar como Administrador-).

• Atención, ahora marca/selecciona únicamente la casilla Create registry backup, las demás casillas NO.

• Pulsar en Run.

Se abrirá el informe (DelFix.txt), guárdalo por si fuera necesario y cierra la herramienta.

Con los demás programas cerrados ve a Inicio Ejecutar y escribe Notepad.exe.

• Ahora debes copiar y pegar los códigos/líneas que están en el interior del recuadro de más abajo, dentro del Notepad.

START
CREATERESTOREPOINT:
CLOSEPROCESSES:
AlternateDataStreams: C:\Users\Mar\Configuración local:zSk371RdEaA87cdwHupTr8 [665]
AlternateDataStreams: C:\Users\Mar\AppData\Local:zSk371RdEaA87cdwHupTr8 [665]
AlternateDataStreams: C:\Users\Mar\AppData\Local\Archivos temporales de Internet:NmP2TF8AbNVKf13wGolg76 [2866]
AlternateDataStreams: C:\Users\Mar\AppData\Local\Datos de programa:zSk371RdEaA87cdwHupTr8 [665]
AlternateDataStreams: C:\Users\Mar\AppData\Local\Temp:fX0i0jHabp36egZa4srEMbpkZr [2680]
MSCONFIG\Services: !SASCORE => 2
MSCONFIG\startupreg: SpybotSD TeaTimer => C:\Program Files (x86)\Spybot - Search & Destroy\TeaTimer.exe
MSCONFIG\startupreg: vProt =>
HKLM\...\Winlogon: [Shell] C:\Windows\explorer.exe [3230720 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
HKLM-x32\...\Winlogon: [Shell] C:\Windows\SysWOW64\explorer.exe [2973184 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
HKU\S-1-5-21-1557413109-1875796577-672599849-1000\...\MountPoints2: {03501e56-8a80-11e3-b42e-1c6f65c83bb0} - K:\iStudio.exe
HKU\S-1-5-21-1557413109-1875796577-672599849-1000\...\MountPoints2: {2ec8abce-9ee8-11e8-910a-1c6f65c83bb0} - K:\HiSuiteDownLoader.exe
HKU\S-1-5-21-1557413109-1875796577-672599849-1000\...\MountPoints2: {59f5a032-4b68-11e9-a3a8-1c6f65c83bb0} - K:\startme.exe
HKU\S-1-5-21-1557413109-1875796577-672599849-1000\...\Winlogon: [Shell]
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{2179C5D3-EBFF-11CF-B6FD-00AA00B4E220}] ->
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{22d6f312-b0f6-11d0-94ab-0080c74c7e95}] -> C:\Windows\SysWOW64\advpack.dll [2016-03-25] (Microsoft Corporation) [Archivo no firmado]
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{73FA19D0-2D75-11D2-995D-00C04F98BBC9}] ->
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> "C:\Program Files (x86)\Google\Chrome\Application\58.0.3029.81\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level
HKLM\Software\...\Authentication\Credential Providers: [{F8A0B131-5F68-486c-8040-7E8FC3C85BB6}] -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDCREDPROV.DLL [2011-03-28] (Microsoft Corporation -> Microsoft Corp.)
IFEO\LogTransport2.exe: [Debugger] 0
Startup: C:\Users\Mar\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\PenAttention.lnk [2019-09-25]
ShortcutTarget: PenAttention.lnk -> C:\Program Files (x86)\PenAttention\PenAttention.exe (Kenrick Mock) [Archivo no firmado]
GroupPolicy: Restricción ? <==== ATENCIÓN
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restricción <==== ATENCIÓN
Task: {048727A9-BBD8-4E9F-876B-B00C8337D5E3} - System32\Tasks\AVG\Overseer => C:\Program Files\Common Files\AVG\Overseer\overseer.exe [2070592 2018-10-29] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
Task: {26D2E2A8-4308-4ABB-81B8-FB2F25F220BA} - System32\Tasks\Uninstaller_SkipUac_Mar => C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe [5900560 2019-08-27] (IObit Information Technology -> IObit)
Task: {2EA839FB-D3DD-406C-AEF2-2AEFA0380DE3} - System32\Tasks\{734042AF-495E-4558-92CD-54F70B02F06C} => F:\DRIVER PEN CRITIAN (EL QUE ES A PILA)\MStorage_PCDRV_LB_1_07_00_250.exe
Task: {314F8266-848A-47CA-B6CB-8A915D635540} - System32\Tasks\{CC60ECF0-3320-4C40-89B3-9916BE4268FD} => F:\DRIVER PEN CRITIAN (EL QUE ES A PILA)\MStorage_PCDRV_LB_1_07_00_250.exe
Task: {3163E9DB-B711-418F-BA27-85A792BCB5A5} - System32\Tasks\GlaryUpdate => C:\Program Files (x86)\Glary Utilities\webupdate.exe [93472 2013-04-28] (Glarysoft Ltd -> Glarysoft Ltd)
Task: {31F1D882-7BE2-4D3D-B31C-F37D7B4255E4} - System32\Tasks\MEGA\MEGAsync Update Task S-1-5-21-1557413109-1875796577-672599849-1000 => C:\Users\Mar\AppData\Local\MEGAsync\MEGAupdater.exe [760696 2018-01-15] (Mega Limited -> Mega Limited)
Task: {3F799FA1-7292-49FF-AC25-B0E88FC9BD9E} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [12762872 2018-10-23] (Piriform Ltd -> Piriform Ltd)
Task: {3FF11654-900C-40E1-9C81-0B9D48EDF29F} - System32\Tasks\{F3F0AF5D-C459-4019-8202-369FE5277068} => F:\DRIVER PEN CRITIAN (EL QUE ES A PILA)\MStorage_PCDRV_LB_1_07_00_250.exe
Task: {4B650C3F-2978-420F-91ED-7E4F51ED4E4E} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [520736 2018-10-23] (Piriform Ltd -> Piriform Ltd)
Task: {4DC06165-0E4C-4634-80E1-4BA7F0F40D35} - System32\Tasks\{B19FAF25-A253-4904-92A8-2270DF015C6A} => G:\Programas para hacer mantenimiento a una Pc cualquiera\BsPlayer Pro 2.51 Build 1022 Final ML Full para todos los Windows (32 y 64 bits)\BS.Player Pro 2.51.1022\CORE10k.EXE
Task: {9ADEA450-5F0F-4B1A-9770-B2B80F8B5993} - System32\Tasks\{DF3E6FEB-F1C1-469D-ADDA-FBF95D8749DF} => I:\MMHERALD\HERALDIC.EXE
Task: {AFE4983B-43B6-4F5E-883E-AF3102343C81} - System32\Tasks\{8112103E-7486-448B-89AF-9689A73858A0} => I:\MMHERALD\HERALDIC.EXE
Task: {D0250F3F-6480-484F-B719-42F659AC64D5} - System32\Tasks\Microsoft\Windows\Windows Error Reporting\QueueReporting => C:\Windows\system32\wermgr.exe [50688 2016-03-25] (Microsoft Corporation) [Archivo no firmado] <==== ATENCIÓN
Task: {D2F14C14-13DA-4A8D-919F-7B3723880FDA} - System32\Tasks\GlaryInitialize => C:\Program Files (x86)\Glary Utilities\initialize.exe [91936 2013-04-28] (Glarysoft Ltd -> Glarysoft Ltd)
Task: {DD8BA425-3BEA-4D7E-89A7-7A1BB971692D} - System32\Tasks\{D3855B14-47D0-411E-B695-A59EFB6C2EC1} => J:\autorun.exe
Task: {EC89B068-8CBF-42D8-B56E-DEADDEB3672A} - System32\Tasks\{7A648C10-ABC6-4024-954F-591E32641843} => I:\MMHERALD\HERALDIC.EXE
Task: C:\Windows\Tasks\GlaryInitialize.job => C:\Program Files (x86)\Glary Utilities\initialize.exe
Task: C:\Windows\Tasks\GlaryUpdate.job => C:\Program Files (x86)\Glary Utilities\webupdate.exe
Winsock: Catalog5 01 C:\Windows\SysWOW64\NLAapi.dll [52224 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
Winsock: Catalog5 07 C:\Windows\SysWOW64\mswsock.dll [231424 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
Winsock: Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [231424 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
Winsock: Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [231424 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
Winsock: Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [231424 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
Winsock: Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [231424 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
Winsock: Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [231424 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
Winsock: Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [231424 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
Winsock: Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [231424 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
Winsock: Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [231424 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
Winsock: Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [231424 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
Winsock: Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [231424 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
Winsock: Catalog5-x64 01 C:\Windows\system32\NLAapi.dll [70656 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
Winsock: Catalog5-x64 07 C:\Windows\System32\mswsock.dll [327168 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
Winsock: Catalog9-x64 01 C:\Windows\system32\mswsock.dll [327168 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
Winsock: Catalog9-x64 02 C:\Windows\system32\mswsock.dll [327168 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
Winsock: Catalog9-x64 03 C:\Windows\system32\mswsock.dll [327168 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
Winsock: Catalog9-x64 04 C:\Windows\system32\mswsock.dll [327168 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
Winsock: Catalog9-x64 05 C:\Windows\system32\mswsock.dll [327168 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
Winsock: Catalog9-x64 06 C:\Windows\system32\mswsock.dll [327168 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
Winsock: Catalog9-x64 07 C:\Windows\system32\mswsock.dll [327168 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
Winsock: Catalog9-x64 08 C:\Windows\system32\mswsock.dll [327168 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
Winsock: Catalog9-x64 09 C:\Windows\system32\mswsock.dll [327168 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
Winsock: Catalog9-x64 10 C:\Windows\system32\mswsock.dll [327168 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
Tcpip\Parameters: [DhcpNameServer] 200.49.130.44 200.42.4.210 200.42.4.210
Tcpip\..\Interfaces\{AF02E0A0-2A77-4325-BD0F-F43DD57FB39B}: [DhcpNameServer] 200.49.130.44 200.42.4.210 200.42.4.210
HKLM\System\...\Parameters\PersistentRoutes: [0.0.0.0,0.0.0.0,192.168.1.100,-1]
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restricción <==== ATENCIÓN
BHO: ExplorerWnd Helper -> {10921475-03CE-4E04-90CE-E2E7EF20C814} -> C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallExplorer.dll [2019-06-20] (IObit Information Technology -> IObit)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_77\bin\ssv.dll [2016-04-01] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_77\bin\jp2ssv.dll [2016-04-01] (Oracle America, Inc. -> Oracle Corporation)
FF HKU\S-1-5-21-1557413109-1875796577-672599849-1000\...\Firefox\Extensions: [[email protected]] - C:\Users\Mar\AppData\Roaming\ACEStream\extensions\awe\firefox\acewebextension_unlisted.xpi => no encontrado
FF Plugin: @videolan.org/vlc,version=3.0.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-06-11] (VideoLAN -> VideoLAN)
FF Plugin-x32: @java.com/DTPlugin,version=11.77.2 -> C:\Program Files (x86)\Java\jre1.8.0_77\bin\dtplugin\npDeployJava1.dll [2016-04-01] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.77.2 -> C:\Program Files (x86)\Java\jre1.8.0_77\bin\plugin2\npjp2.dll [2016-04-01] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.35.422\npGoogleUpdate3.dll [2019-12-14] (Google LLC -> Google LLC)
FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [Ningún archivo]
FF Plugin-x32: @videolan.org/vlc,version=2.2.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [Ningún archivo]
CHR Extension: (Ace Script) - C:\Users\Mar\AppData\Local\Google\Chrome\User Data\Default\Extensions\mjbepbhonbojpoaenhckjocchgfiaofo [2018-12-14]
CHR Extension: (Ace Script) - C:\Users\Mar\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\mjbepbhonbojpoaenhckjocchgfiaofo [2019-01-16]
CHR HKU\S-1-5-21-1557413109-1875796577-672599849-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [kaebhgioafceeldhgjmendlfhbfjefmo] - C:\Program Files (x86)\EagleGet\addon\[email protected] [2017-08-16]
CHR HKU\S-1-5-21-1557413109-1875796577-672599849-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [mjbepbhonbojpoaenhckjocchgfiaofo]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki]
CHR HKLM-x32\...\Chrome\Extension: [kaebhgioafceeldhgjmendlfhbfjefmo] - C:\Program Files (x86)\EagleGet\addon\[email protected] [2017-08-16]
S4 IObitUnSvr; C:\Program Files (x86)\IObit\IObit Uninstaller\IUService.exe [156944 2019-08-23] (IObit Information Technology -> IObit)
S4 LiveUpdateSvc; C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [3046688 2016-07-29] (IObit Information Technology -> IObit)
S2 SentinelProtectionServer; C:\Program Files (x86)\Common Files\SafeNet Sentinel\Sentinel Protection Server\WinNT\spnsrvnt.exe [1259872 2013-01-09] (SafeNet, Inc. -> SafeNet, Inc)
S2 SentinelSecurityRuntime; C:\Program Files (x86)\Common Files\SafeNet Sentinel\Sentinel Security Runtime\sntlsrtsrvr.exe [293216 2013-01-09] (SafeNet, Inc. -> SafeNet, Inc.)
S3 IUFileFilter; C:\Program Files (x86)\IObit\IObit Uninstaller\drivers\win7_amd64\IUFileFilter.sys [25992 2019-07-30] (IObit CO., LTD -> IObit)
S3 IUProcessFilter; C:\Program Files (x86)\IObit\IObit Uninstaller\drivers\win7_amd64\IUProcessFilter.sys [19280 2019-07-30] (IObit CO., LTD -> IObit)
S3 IURegistryFilter; C:\Program Files (x86)\IObit\IObit Uninstaller\drivers\win7_amd64\IURegistryFilter.sys [31648 2019-07-30] (IObit CO., LTD -> IObit)
S2 Sentinel64; C:\Windows\System32\Drivers\Sentinel64.sys [145448 2009-09-17] (SafeNet, Inc. -> SafeNet, Inc.)
S1 ArcCtrl; system32\drivers\ArcCtrl.sys [X]
S4 archlp; system32\drivers\archlp.sys [X]
S3 gHidPnp; System32\Drivers\gHidPnp.Sys [X]
S3 gMouUsb; system32\DRIVERS\gMouUsb.sys [X]
S3 taphss6; system32\DRIVERS\taphss6.sys [X]
HOSTS:
REMOVEPROXY:
EMPTYTEMP:
CMD: netsh winsock reset
CMD: ipconfig /renew
CMD: ipconfig /flushdns
CMD: bitsadmin /reset /allusers
CMD: netsh advfirewall reset
CMD: netsh advfirewall set allprofiles state ON
CMD: netsh int ipv4 reset
CMD: netsh int ipv6 reset
END

Guárdalo bajo el nombre de FIXLIST.TXT en el escritorio Esto es muy importante.

Nota Es importante que la herramienta FRST.exe(Farbar Recovery Scanner Tool) y FIXLIST.TXT se encuentren en la misma ubicación (escritorio) o si no, no trabajara.

Y ahora inicia tu equipo desde el Modo Seguro – con funciones de Red, de Windows

• Ejecuta FRST.exe.(Si usas Windows Vista/7/8 o 10, presiona clic derecho y seleccionas -Ejecutar como Administrador-).

• Presionar el botón FIX/Corregir y aguardar a que termine.

• La Herramienta guardara el reporte de reparación en el escritorio (FIXLOG.TXT).

Pegar el contenido de este fichero en tu próxima respuesta.

Reiniciar el equipo y comprobar su funcionamiento en relación al problema planteado y comentarlo.

Saludos.

Luego de haber realizado las últimas intrucciones, y de encontrarme en el escritorio de windows (sin modo seguro):

1. De momento no volvió a haber pantallazos azules, pero no sé si es producto de todo lo que hicimos, o no, porque no los hubo desde que comenzó a analizar el Malwarebytes… que fue lo primero que hice.

2. La Pc está HIPER lenta. Supongo del vamos no ayuda que haya 2 antivirus corriendo al mismo tiempo (el AVAST que yo usaba, más el Malwarebytes)

3. Veo que algunos programas que antes tenía no están más en el escritorio. No sé si habrá otros que no estén más…

4. La Performance del disco C, según Hard Disk Sentinel, ahora es de 98%, siendo que la última vez era de 99%.

Dejo el log solicitado.

Resultados de la corrección de Farbar Recovery Scan Tool (x64) Versión: 22-01-2020 01
Ejecutado por Mar (22-01-2020 21:19:35) Run:1
Ejecutado desde C:\Users\Mar\desktop
Perfiles cargados: Mar (Perfiles disponibles: Mar)
Modo de Inicio: Safe Mode (with Networking)
==============================================

fixlist contenido:
*****************
START
CREATERESTOREPOINT:
CLOSEPROCESSES:
AlternateDataStreams: C:\Users\Mar\Configuraci�n local:zSk371RdEaA87cdwHupTr8 [665]
AlternateDataStreams: C:\Users\Mar\AppData\Local:zSk371RdEaA87cdwHupTr8 [665]
AlternateDataStreams: C:\Users\Mar\AppData\Local\Archivos temporales de Internet:NmP2TF8AbNVKf13wGolg76 [2866]
AlternateDataStreams: C:\Users\Mar\AppData\Local\Datos de programa:zSk371RdEaA87cdwHupTr8 [665]
AlternateDataStreams: C:\Users\Mar\AppData\Local\Temp:fX0i0jHabp36egZa4srEMbpkZr [2680]
MSCONFIG\Services: !SASCORE => 2
MSCONFIG\startupreg: SpybotSD TeaTimer => C:\Program Files (x86)\Spybot - Search & Destroy\TeaTimer.exe
MSCONFIG\startupreg: vProt =>
HKLM\...\Winlogon: [Shell] C:\Windows\explorer.exe [3230720 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
HKLM-x32\...\Winlogon: [Shell] C:\Windows\SysWOW64\explorer.exe [2973184 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
HKU\S-1-5-21-1557413109-1875796577-672599849-1000\...\MountPoints2: {03501e56-8a80-11e3-b42e-1c6f65c83bb0} - K:\iStudio.exe
HKU\S-1-5-21-1557413109-1875796577-672599849-1000\...\MountPoints2: {2ec8abce-9ee8-11e8-910a-1c6f65c83bb0} - K:\HiSuiteDownLoader.exe
HKU\S-1-5-21-1557413109-1875796577-672599849-1000\...\MountPoints2: {59f5a032-4b68-11e9-a3a8-1c6f65c83bb0} - K:\startme.exe
HKU\S-1-5-21-1557413109-1875796577-672599849-1000\...\Winlogon: [Shell]
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{2179C5D3-EBFF-11CF-B6FD-00AA00B4E220}] ->
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{22d6f312-b0f6-11d0-94ab-0080c74c7e95}] -> C:\Windows\SysWOW64\advpack.dll [2016-03-25] (Microsoft Corporation) [Archivo no firmado]
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{73FA19D0-2D75-11D2-995D-00C04F98BBC9}] ->
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> "C:\Program Files (x86)\Google\Chrome\Application\58.0.3029.81\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level
HKLM\Software\...\Authentication\Credential Providers: [{F8A0B131-5F68-486c-8040-7E8FC3C85BB6}] -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDCREDPROV.DLL [2011-03-28] (Microsoft Corporation -> Microsoft Corp.)
IFEO\LogTransport2.exe: [Debugger] 0
Startup: C:\Users\Mar\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\PenAttention.lnk [2019-09-25]
ShortcutTarget: PenAttention.lnk -> C:\Program Files (x86)\PenAttention\PenAttention.exe (Kenrick Mock) [Archivo no firmado]
GroupPolicy: Restricci�n ? <==== ATENCI�N
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restricci�n <==== ATENCI�N
Task: {048727A9-BBD8-4E9F-876B-B00C8337D5E3} - System32\Tasks\AVG\Overseer => C:\Program Files\Common Files\AVG\Overseer\overseer.exe [2070592 2018-10-29] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
Task: {26D2E2A8-4308-4ABB-81B8-FB2F25F220BA} - System32\Tasks\Uninstaller_SkipUac_Mar => C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe [5900560 2019-08-27] (IObit Information Technology -> IObit)
Task: {2EA839FB-D3DD-406C-AEF2-2AEFA0380DE3} - System32\Tasks\{734042AF-495E-4558-92CD-54F70B02F06C} => F:\DRIVER PEN CRITIAN (EL QUE ES A PILA)\MStorage_PCDRV_LB_1_07_00_250.exe
Task: {314F8266-848A-47CA-B6CB-8A915D635540} - System32\Tasks\{CC60ECF0-3320-4C40-89B3-9916BE4268FD} => F:\DRIVER PEN CRITIAN (EL QUE ES A PILA)\MStorage_PCDRV_LB_1_07_00_250.exe
Task: {3163E9DB-B711-418F-BA27-85A792BCB5A5} - System32\Tasks\GlaryUpdate => C:\Program Files (x86)\Glary Utilities\webupdate.exe [93472 2013-04-28] (Glarysoft Ltd -> Glarysoft Ltd)
Task: {31F1D882-7BE2-4D3D-B31C-F37D7B4255E4} - System32\Tasks\MEGA\MEGAsync Update Task S-1-5-21-1557413109-1875796577-672599849-1000 => C:\Users\Mar\AppData\Local\MEGAsync\MEGAupdater.exe [760696 2018-01-15] (Mega Limited -> Mega Limited)
Task: {3F799FA1-7292-49FF-AC25-B0E88FC9BD9E} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [12762872 2018-10-23] (Piriform Ltd -> Piriform Ltd)
Task: {3FF11654-900C-40E1-9C81-0B9D48EDF29F} - System32\Tasks\{F3F0AF5D-C459-4019-8202-369FE5277068} => F:\DRIVER PEN CRITIAN (EL QUE ES A PILA)\MStorage_PCDRV_LB_1_07_00_250.exe
Task: {4B650C3F-2978-420F-91ED-7E4F51ED4E4E} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [520736 2018-10-23] (Piriform Ltd -> Piriform Ltd)
Task: {4DC06165-0E4C-4634-80E1-4BA7F0F40D35} - System32\Tasks\{B19FAF25-A253-4904-92A8-2270DF015C6A} => G:\Programas para hacer mantenimiento a una Pc cualquiera\BsPlayer Pro 2.51 Build 1022 Final ML Full para todos los Windows (32 y 64 bits)\BS.Player Pro 2.51.1022\CORE10k.EXE
Task: {9ADEA450-5F0F-4B1A-9770-B2B80F8B5993} - System32\Tasks\{DF3E6FEB-F1C1-469D-ADDA-FBF95D8749DF} => I:\MMHERALD\HERALDIC.EXE
Task: {AFE4983B-43B6-4F5E-883E-AF3102343C81} - System32\Tasks\{8112103E-7486-448B-89AF-9689A73858A0} => I:\MMHERALD\HERALDIC.EXE
Task: {D0250F3F-6480-484F-B719-42F659AC64D5} - System32\Tasks\Microsoft\Windows\Windows Error Reporting\QueueReporting => C:\Windows\system32\wermgr.exe [50688 2016-03-25] (Microsoft Corporation) [Archivo no firmado] <==== ATENCI�N
Task: {D2F14C14-13DA-4A8D-919F-7B3723880FDA} - System32\Tasks\GlaryInitialize => C:\Program Files (x86)\Glary Utilities\initialize.exe [91936 2013-04-28] (Glarysoft Ltd -> Glarysoft Ltd)
Task: {DD8BA425-3BEA-4D7E-89A7-7A1BB971692D} - System32\Tasks\{D3855B14-47D0-411E-B695-A59EFB6C2EC1} => J:\autorun.exe
Task: {EC89B068-8CBF-42D8-B56E-DEADDEB3672A} - System32\Tasks\{7A648C10-ABC6-4024-954F-591E32641843} => I:\MMHERALD\HERALDIC.EXE
Task: C:\Windows\Tasks\GlaryInitialize.job => C:\Program Files (x86)\Glary Utilities\initialize.exe
Task: C:\Windows\Tasks\GlaryUpdate.job => C:\Program Files (x86)\Glary Utilities\webupdate.exe
Winsock: Catalog5 01 C:\Windows\SysWOW64\NLAapi.dll [52224 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
Winsock: Catalog5 07 C:\Windows\SysWOW64\mswsock.dll [231424 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
Winsock: Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [231424 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
Winsock: Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [231424 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
Winsock: Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [231424 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
Winsock: Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [231424 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
Winsock: Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [231424 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
Winsock: Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [231424 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
Winsock: Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [231424 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
Winsock: Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [231424 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
Winsock: Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [231424 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
Winsock: Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [231424 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
Winsock: Catalog5-x64 01 C:\Windows\system32\NLAapi.dll [70656 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
Winsock: Catalog5-x64 07 C:\Windows\System32\mswsock.dll [327168 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
Winsock: Catalog9-x64 01 C:\Windows\system32\mswsock.dll [327168 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
Winsock: Catalog9-x64 02 C:\Windows\system32\mswsock.dll [327168 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
Winsock: Catalog9-x64 03 C:\Windows\system32\mswsock.dll [327168 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
Winsock: Catalog9-x64 04 C:\Windows\system32\mswsock.dll [327168 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
Winsock: Catalog9-x64 05 C:\Windows\system32\mswsock.dll [327168 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
Winsock: Catalog9-x64 06 C:\Windows\system32\mswsock.dll [327168 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
Winsock: Catalog9-x64 07 C:\Windows\system32\mswsock.dll [327168 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
Winsock: Catalog9-x64 08 C:\Windows\system32\mswsock.dll [327168 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
Winsock: Catalog9-x64 09 C:\Windows\system32\mswsock.dll [327168 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
Winsock: Catalog9-x64 10 C:\Windows\system32\mswsock.dll [327168 2016-03-25] (Microsoft Corporation) [Archivo no firmado]
Tcpip\Parameters: [DhcpNameServer] 200.49.130.44 200.42.4.210 200.42.4.210
Tcpip\..\Interfaces\{AF02E0A0-2A77-4325-BD0F-F43DD57FB39B}: [DhcpNameServer] 200.49.130.44 200.42.4.210 200.42.4.210
HKLM\System\...\Parameters\PersistentRoutes: [0.0.0.0,0.0.0.0,192.168.1.100,-1]
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restricci�n <==== ATENCI�N
BHO: ExplorerWnd Helper -> {10921475-03CE-4E04-90CE-E2E7EF20C814} -> C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallExplorer.dll [2019-06-20] (IObit Information Technology -> IObit)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_77\bin\ssv.dll [2016-04-01] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_77\bin\jp2ssv.dll [2016-04-01] (Oracle America, Inc. -> Oracle Corporation)
FF HKU\S-1-5-21-1557413109-1875796577-672599849-1000\...\Firefox\Extensions: [[email protected]] - C:\Users\Mar\AppData\Roaming\ACEStream\extensions\awe\firefox\acewebextension_unlisted.xpi => no encontrado
FF Plugin: @videolan.org/vlc,version=3.0.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-06-11] (VideoLAN -> VideoLAN)
FF Plugin-x32: @java.com/DTPlugin,version=11.77.2 -> C:\Program Files (x86)\Java\jre1.8.0_77\bin\dtplugin\npDeployJava1.dll [2016-04-01] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.77.2 -> C:\Program Files (x86)\Java\jre1.8.0_77\bin\plugin2\npjp2.dll [2016-04-01] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.35.422\npGoogleUpdate3.dll [2019-12-14] (Google LLC -> Google LLC)
FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [Ning�n archivo]
FF Plugin-x32: @videolan.org/vlc,version=2.2.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [Ning�n archivo]
CHR Extension: (Ace Script) - C:\Users\Mar\AppData\Local\Google\Chrome\User Data\Default\Extensions\mjbepbhonbojpoaenhckjocchgfiaofo [2018-12-14]
CHR Extension: (Ace Script) - C:\Users\Mar\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\mjbepbhonbojpoaenhckjocchgfiaofo [2019-01-16]
CHR HKU\S-1-5-21-1557413109-1875796577-672599849-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [kaebhgioafceeldhgjmendlfhbfjefmo] - C:\Program Files (x86)\EagleGet\addon\[email protected] [2017-08-16]
CHR HKU\S-1-5-21-1557413109-1875796577-672599849-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [mjbepbhonbojpoaenhckjocchgfiaofo]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki]
CHR HKLM-x32\...\Chrome\Extension: [kaebhgioafceeldhgjmendlfhbfjefmo] - C:\Program Files (x86)\EagleGet\addon\[email protected] [2017-08-16]
S4 IObitUnSvr; C:\Program Files (x86)\IObit\IObit Uninstaller\IUService.exe [156944 2019-08-23] (IObit Information Technology -> IObit)
S4 LiveUpdateSvc; C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [3046688 2016-07-29] (IObit Information Technology -> IObit)
S2 SentinelProtectionServer; C:\Program Files (x86)\Common Files\SafeNet Sentinel\Sentinel Protection Server\WinNT\spnsrvnt.exe [1259872 2013-01-09] (SafeNet, Inc. -> SafeNet, Inc)
S2 SentinelSecurityRuntime; C:\Program Files (x86)\Common Files\SafeNet Sentinel\Sentinel Security Runtime\sntlsrtsrvr.exe [293216 2013-01-09] (SafeNet, Inc. -> SafeNet, Inc.)
S3 IUFileFilter; C:\Program Files (x86)\IObit\IObit Uninstaller\drivers\win7_amd64\IUFileFilter.sys [25992 2019-07-30] (IObit CO., LTD -> IObit)
S3 IUProcessFilter; C:\Program Files (x86)\IObit\IObit Uninstaller\drivers\win7_amd64\IUProcessFilter.sys [19280 2019-07-30] (IObit CO., LTD -> IObit)
S3 IURegistryFilter; C:\Program Files (x86)\IObit\IObit Uninstaller\drivers\win7_amd64\IURegistryFilter.sys [31648 2019-07-30] (IObit CO., LTD -> IObit)
S2 Sentinel64; C:\Windows\System32\Drivers\Sentinel64.sys [145448 2009-09-17] (SafeNet, Inc. -> SafeNet, Inc.)
S1 ArcCtrl; system32\drivers\ArcCtrl.sys [X]
S4 archlp; system32\drivers\archlp.sys [X]
S3 gHidPnp; System32\Drivers\gHidPnp.Sys [X]
S3 gMouUsb; system32\DRIVERS\gMouUsb.sys [X]
S3 taphss6; system32\DRIVERS\taphss6.sys [X]
HOSTS:
REMOVEPROXY:
EMPTYTEMP:
CMD: netsh winsock reset
CMD: ipconfig /renew
CMD: ipconfig /flushdns
CMD: bitsadmin /reset /allusers
CMD: netsh advfirewall reset
CMD: netsh advfirewall set allprofiles state ON
CMD: netsh int ipv4 reset
CMD: netsh int ipv6 reset
END
*****************

Error: El punto de restauración solamente puede ser creado en modo normal.
Procesos cerrados correctamente.
"C:\Users\Mar\Configuraci�n local" => ":zSk371RdEaA87cdwHupTr8" ADS no encontrado.
C:\Users\Mar\AppData\Local => ":zSk371RdEaA87cdwHupTr8" ADS eliminado correctamente
C:\Users\Mar\AppData\Local\Archivos temporales de Internet => ":NmP2TF8AbNVKf13wGolg76" ADS eliminado correctamente
"C:\Users\Mar\AppData\Local\Datos de programa" => ":zSk371RdEaA87cdwHupTr8" ADS no encontrado.
C:\Users\Mar\AppData\Local\Temp => ":fX0i0jHabp36egZa4srEMbpkZr" ADS eliminado correctamente
HKLM\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\!SASCORE => eliminado correctamente
HKLM\System\CurrentControlSet\Services\!SASCORE => no encontrado
HKLM\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\SpybotSD TeaTimer => eliminado correctamente
"HKLM\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\MSCONFIG\startupreg: vProt =>" => no encontrado
HKLM\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\\"Shell"="Explorer.exe" => valor restaurado correctamente
HKLM\Software\WOW6432Node\Microsoft\Windows NT\CurrentVersion\Winlogon\\"Shell"="Explorer.exe" => valor restaurado correctamente
HKU\S-1-5-21-1557413109-1875796577-672599849-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{03501e56-8a80-11e3-b42e-1c6f65c83bb0} => eliminado correctamente
HKU\S-1-5-21-1557413109-1875796577-672599849-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{2ec8abce-9ee8-11e8-910a-1c6f65c83bb0} => eliminado correctamente
HKU\S-1-5-21-1557413109-1875796577-672599849-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{59f5a032-4b68-11e9-a3a8-1c6f65c83bb0} => eliminado correctamente
"HKU\S-1-5-21-1557413109-1875796577-672599849-1000\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\\Shell" => eliminado correctamente
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components\{2179C5D3-EBFF-11CF-B6FD-00AA00B4E220} => eliminado correctamente
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components\{22d6f312-b0f6-11d0-94ab-0080c74c7e95} => eliminado correctamente
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components\{73FA19D0-2D75-11D2-995D-00C04F98BBC9} => eliminado correctamente
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components\{8A69D345-D564-463c-AFF1-A69D9E530F96} => eliminado correctamente
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Authentication\Credential Providers\{F8A0B131-5F68-486c-8040-7E8FC3C85BB6} => eliminado correctamente
HKLM\Software\Classes\CLSID\{F8A0B131-5F68-486c-8040-7E8FC3C85BB6} => eliminado correctamente
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\LogTransport2.exe => eliminado correctamente
C:\Users\Mar\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\PenAttention.lnk => movido correctamente
C:\Program Files (x86)\PenAttention\PenAttention.exe => movido correctamente
C:\Windows\system32\GroupPolicy\Machine => movido correctamente
C:\Windows\system32\GroupPolicy\GPT.ini => movido correctamente
C:\Windows\SysWOW64\GroupPolicy\GPT.ini => movido correctamente
HKLM\SOFTWARE\Policies\Mozilla => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Boot\{048727A9-BBD8-4E9F-876B-B00C8337D5E3}" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{048727A9-BBD8-4E9F-876B-B00C8337D5E3}" => eliminado correctamente
C:\Windows\System32\Tasks\AVG\Overseer => movido correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\AVG\Overseer" => no encontrado
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{26D2E2A8-4308-4ABB-81B8-FB2F25F220BA}" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{26D2E2A8-4308-4ABB-81B8-FB2F25F220BA}" => eliminado correctamente
C:\Windows\System32\Tasks\Uninstaller_SkipUac_Mar => movido correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Uninstaller_SkipUac_Mar" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{2EA839FB-D3DD-406C-AEF2-2AEFA0380DE3}" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{2EA839FB-D3DD-406C-AEF2-2AEFA0380DE3}" => eliminado correctamente
C:\Windows\System32\Tasks\{734042AF-495E-4558-92CD-54F70B02F06C} => movido correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{734042AF-495E-4558-92CD-54F70B02F06C}" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{314F8266-848A-47CA-B6CB-8A915D635540}" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{314F8266-848A-47CA-B6CB-8A915D635540}" => eliminado correctamente
C:\Windows\System32\Tasks\{CC60ECF0-3320-4C40-89B3-9916BE4268FD} => movido correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{CC60ECF0-3320-4C40-89B3-9916BE4268FD}" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{3163E9DB-B711-418F-BA27-85A792BCB5A5}" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{3163E9DB-B711-418F-BA27-85A792BCB5A5}" => eliminado correctamente
C:\Windows\System32\Tasks\GlaryUpdate => movido correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GlaryUpdate" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{31F1D882-7BE2-4D3D-B31C-F37D7B4255E4}" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{31F1D882-7BE2-4D3D-B31C-F37D7B4255E4}" => eliminado correctamente
C:\Windows\System32\Tasks\MEGA\MEGAsync Update Task S-1-5-21-1557413109-1875796577-672599849-1000 => movido correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\MEGA\MEGAsync Update Task S-1-5-21-1557413109-1875796577-672599849-1000" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{3F799FA1-7292-49FF-AC25-B0E88FC9BD9E}" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{3F799FA1-7292-49FF-AC25-B0E88FC9BD9E}" => eliminado correctamente
C:\Windows\System32\Tasks\CCleanerSkipUAC => movido correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\CCleanerSkipUAC" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{3FF11654-900C-40E1-9C81-0B9D48EDF29F}" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{3FF11654-900C-40E1-9C81-0B9D48EDF29F}" => eliminado correctamente
C:\Windows\System32\Tasks\{F3F0AF5D-C459-4019-8202-369FE5277068} => movido correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{F3F0AF5D-C459-4019-8202-369FE5277068}" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Boot\{4B650C3F-2978-420F-91ED-7E4F51ED4E4E}" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{4B650C3F-2978-420F-91ED-7E4F51ED4E4E}" => eliminado correctamente
C:\Windows\System32\Tasks\CCleaner Update => movido correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\CCleaner Update" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{4DC06165-0E4C-4634-80E1-4BA7F0F40D35}" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{4DC06165-0E4C-4634-80E1-4BA7F0F40D35}" => eliminado correctamente
C:\Windows\System32\Tasks\{B19FAF25-A253-4904-92A8-2270DF015C6A} => movido correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{B19FAF25-A253-4904-92A8-2270DF015C6A}" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{9ADEA450-5F0F-4B1A-9770-B2B80F8B5993}" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{9ADEA450-5F0F-4B1A-9770-B2B80F8B5993}" => eliminado correctamente
C:\Windows\System32\Tasks\{DF3E6FEB-F1C1-469D-ADDA-FBF95D8749DF} => movido correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{DF3E6FEB-F1C1-469D-ADDA-FBF95D8749DF}" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{AFE4983B-43B6-4F5E-883E-AF3102343C81}" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{AFE4983B-43B6-4F5E-883E-AF3102343C81}" => eliminado correctamente
C:\Windows\System32\Tasks\{8112103E-7486-448B-89AF-9689A73858A0} => movido correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{8112103E-7486-448B-89AF-9689A73858A0}" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{D0250F3F-6480-484F-B719-42F659AC64D5}" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{D0250F3F-6480-484F-B719-42F659AC64D5}" => eliminado correctamente
C:\Windows\System32\Tasks\Microsoft\Windows\Windows Error Reporting\QueueReporting => movido correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Windows Error Reporting\QueueReporting" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{D2F14C14-13DA-4A8D-919F-7B3723880FDA}" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{D2F14C14-13DA-4A8D-919F-7B3723880FDA}" => eliminado correctamente
C:\Windows\System32\Tasks\GlaryInitialize => movido correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GlaryInitialize" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{DD8BA425-3BEA-4D7E-89A7-7A1BB971692D}" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{DD8BA425-3BEA-4D7E-89A7-7A1BB971692D}" => eliminado correctamente
C:\Windows\System32\Tasks\{D3855B14-47D0-411E-B695-A59EFB6C2EC1} => movido correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{D3855B14-47D0-411E-B695-A59EFB6C2EC1}" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{EC89B068-8CBF-42D8-B56E-DEADDEB3672A}" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{EC89B068-8CBF-42D8-B56E-DEADDEB3672A}" => eliminado correctamente
C:\Windows\System32\Tasks\{7A648C10-ABC6-4024-954F-591E32641843} => movido correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{7A648C10-ABC6-4024-954F-591E32641843}" => eliminado correctamente
C:\Windows\Tasks\GlaryInitialize.job => movido correctamente
C:\Windows\Tasks\GlaryUpdate.job => movido correctamente
Winsock: Catalog5 000000000001\\LibraryPath => restaurado correctamente (%SystemRoot%\system32\NLAapi.dll)
Winsock: Catalog5 000000000007\\LibraryPath => restaurado correctamente (%SystemRoot%\System32\mswsock.dll)
La posible entrada de Catálogo legítima "000000000001" no será eliminada con FRST. En su lugar, puede utilizar "netsh winsock reset".
La posible entrada de Catálogo legítima "000000000002" no será eliminada con FRST. En su lugar, puede utilizar "netsh winsock reset".
La posible entrada de Catálogo legítima "000000000003" no será eliminada con FRST. En su lugar, puede utilizar "netsh winsock reset".
La posible entrada de Catálogo legítima "000000000004" no será eliminada con FRST. En su lugar, puede utilizar "netsh winsock reset".
La posible entrada de Catálogo legítima "000000000005" no será eliminada con FRST. En su lugar, puede utilizar "netsh winsock reset".
La posible entrada de Catálogo legítima "000000000006" no será eliminada con FRST. En su lugar, puede utilizar "netsh winsock reset".
La posible entrada de Catálogo legítima "000000000007" no será eliminada con FRST. En su lugar, puede utilizar "netsh winsock reset".
La posible entrada de Catálogo legítima "000000000008" no será eliminada con FRST. En su lugar, puede utilizar "netsh winsock reset".
La posible entrada de Catálogo legítima "000000000009" no será eliminada con FRST. En su lugar, puede utilizar "netsh winsock reset".
La posible entrada de Catálogo legítima "000000000010" no será eliminada con FRST. En su lugar, puede utilizar "netsh winsock reset".
Winsock: Catalog5-x64 000000000001\\LibraryPath => restaurado correctamente (%SystemRoot%\system32\NLAapi.dll)
Winsock: Catalog5-x64 000000000007\\LibraryPath => restaurado correctamente (%SystemRoot%\System32\mswsock.dll)
La posible entrada de Catálogo legítima "000000000001" no será eliminada con FRST. En su lugar, puede utilizar "netsh winsock reset".
La posible entrada de Catálogo legítima "000000000002" no será eliminada con FRST. En su lugar, puede utilizar "netsh winsock reset".
La posible entrada de Catálogo legítima "000000000003" no será eliminada con FRST. En su lugar, puede utilizar "netsh winsock reset".
La posible entrada de Catálogo legítima "000000000004" no será eliminada con FRST. En su lugar, puede utilizar "netsh winsock reset".
La posible entrada de Catálogo legítima "000000000005" no será eliminada con FRST. En su lugar, puede utilizar "netsh winsock reset".
La posible entrada de Catálogo legítima "000000000006" no será eliminada con FRST. En su lugar, puede utilizar "netsh winsock reset".
La posible entrada de Catálogo legítima "000000000007" no será eliminada con FRST. En su lugar, puede utilizar "netsh winsock reset".
La posible entrada de Catálogo legítima "000000000008" no será eliminada con FRST. En su lugar, puede utilizar "netsh winsock reset".
La posible entrada de Catálogo legítima "000000000009" no será eliminada con FRST. En su lugar, puede utilizar "netsh winsock reset".
La posible entrada de Catálogo legítima "000000000010" no será eliminada con FRST. En su lugar, puede utilizar "netsh winsock reset".
"HKLM\System\CurrentControlSet\Services\Tcpip\Parameters\\DhcpNameServer" => eliminado correctamente
"HKLM\System\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{AF02E0A0-2A77-4325-BD0F-F43DD57FB39B}\\DhcpNameServer" => eliminado correctamente
"HKLM\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\\0.0.0.0,0.0.0.0,192.168.1.100,-1" => eliminado correctamente
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer => eliminado correctamente
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{10921475-03CE-4E04-90CE-E2E7EF20C814} => eliminado correctamente
HKLM\Software\Classes\CLSID\{10921475-03CE-4E04-90CE-E2E7EF20C814} => eliminado correctamente
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43} => eliminado correctamente
HKLM\Software\Wow6432Node\Classes\CLSID\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43} => eliminado correctamente
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9} => eliminado correctamente
HKLM\Software\Wow6432Node\Classes\CLSID\{DBC80044-A445-435b-BC74-9C25C1C588A9} => eliminado correctamente
"HKU\S-1-5-21-1557413109-1875796577-672599849-1000\Software\Mozilla\Firefox\Extensions\\[email protected]" => eliminado correctamente
"HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=3.0.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-06-11] (VideoLAN" => no encontrado
C:\Program Files\VideoLAN\VLC\npvlc.dll => movido correctamente
"HKLM\Software\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=11.77.2 -> C:\Program Files (x86)\Java\jre1.8.0_77\bin\dtplugin\npDeployJava1.dll [2016-04-01] (Oracle America, Inc." => no encontrado
C:\Program Files (x86)\Java\jre1.8.0_77\bin\dtplugin\npDeployJava1.dll => movido correctamente
"HKLM\Software\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=11.77.2 -> C:\Program Files (x86)\Java\jre1.8.0_77\bin\plugin2\npjp2.dll [2016-04-01] (Oracle America, Inc." => no encontrado
C:\Program Files (x86)\Java\jre1.8.0_77\bin\plugin2\npjp2.dll => movido correctamente
"HKLM\Software\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.35.422\npGoogleUpdate3.dll [2019-12-14] (Google LLC" => no encontrado
C:\Program Files (x86)\Google\Update\1.3.35.422\npGoogleUpdate3.dll => movido correctamente
HKLM\Software\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.2.4 => eliminado correctamente
HKLM\Software\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.2.6 => eliminado correctamente
CHR Extension: (Ace Script) - C:\Users\Mar\AppData\Local\Google\Chrome\User Data\Default\Extensions\mjbepbhonbojpoaenhckjocchgfiaofo [2018-12-14] => Error: Ninguna corrección automática encontrada para esta entrada.
CHR Extension: (Ace Script) - C:\Users\Mar\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\mjbepbhonbojpoaenhckjocchgfiaofo [2019-01-16] => Error: Ninguna corrección automática encontrada para esta entrada.
HKU\S-1-5-21-1557413109-1875796577-672599849-1000\SOFTWARE\Google\Chrome\Extensions\2017-08-16 => no encontrado
C:\Program Files (x86)\EagleGet\addon\[email protected] => movido correctamente
HKU\S-1-5-21-1557413109-1875796577-672599849-1000\SOFTWARE\Google\Chrome\Extensions\mjbepbhonbojpoaenhckjocchgfiaofo => eliminado correctamente
HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\efaidnbmnnnibpcajpcglclefindmkaj => eliminado correctamente
HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\eofcbnmajmjmplflapaojjnihcjkigck => eliminado correctamente
HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\gomekmidlodglbbmalcneegieacbdmki => eliminado correctamente
HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\2017-08-16 => no encontrado
"C:\Program Files (x86)\EagleGet\addon\[email protected]" => no encontrado
HKLM\System\CurrentControlSet\Services\IObitUnSvr => eliminado correctamente
IObitUnSvr => servicio eliminado correctamente
HKLM\System\CurrentControlSet\Services\LiveUpdateSvc => eliminado correctamente
LiveUpdateSvc => servicio eliminado correctamente
HKLM\System\CurrentControlSet\Services\SentinelProtectionServer => eliminado correctamente
SentinelProtectionServer => servicio eliminado correctamente
HKLM\System\CurrentControlSet\Services\SentinelSecurityRuntime => eliminado correctamente
SentinelSecurityRuntime => servicio eliminado correctamente
HKLM\System\CurrentControlSet\Services\IUFileFilter => eliminado correctamente
IUFileFilter => servicio eliminado correctamente
HKLM\System\CurrentControlSet\Services\IUProcessFilter => eliminado correctamente
IUProcessFilter => servicio eliminado correctamente
HKLM\System\CurrentControlSet\Services\IURegistryFilter => eliminado correctamente
IURegistryFilter => servicio eliminado correctamente
HKLM\System\CurrentControlSet\Services\Sentinel64 => eliminado correctamente
Sentinel64 => servicio eliminado correctamente
HKLM\System\CurrentControlSet\Services\ArcCtrl => eliminado correctamente
ArcCtrl => servicio eliminado correctamente
HKLM\System\CurrentControlSet\Services\archlp => eliminado correctamente
archlp => servicio eliminado correctamente
HKLM\System\CurrentControlSet\Services\gHidPnp => eliminado correctamente
gHidPnp => servicio eliminado correctamente
HKLM\System\CurrentControlSet\Services\gMouUsb => eliminado correctamente
gMouUsb => servicio eliminado correctamente
HKLM\System\CurrentControlSet\Services\taphss6 => eliminado correctamente
taphss6 => servicio eliminado correctamente
C:\Windows\System32\Drivers\etc\hosts => movido correctamente
Hosts restaurado correctamente.

========= RemoveProxy: =========

"HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings" => eliminado correctamente
"HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings" => eliminado correctamente
"HKU\S-1-5-21-1557413109-1875796577-672599849-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings" => eliminado correctamente
"HKU\S-1-5-21-1557413109-1875796577-672599849-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings" => eliminado correctamente


========= Final de RemoveProxy: =========


========= netsh winsock reset =========


El cat logo Winsock se restableci¢ correctamente.
Debe reiniciar el equipo para completar el restablecimiento.


========= Final de CMD: =========


========= ipconfig /renew =========


Configuraci¢n IP de Windows

No se puede realizar ninguna operaci¢n en Conexi¢n de  rea local 2 mientras los medios
est‚n desconectados.

Adaptador de Ethernet Conexi¢n de  rea local 2:

   Estado de los medios. . . . . . . . . . . : medios desconectados
   Sufijo DNS espec¡fico para la conexi¢n. . : 

Adaptador de Ethernet Conexi¢n de  rea local:

   Sufijo DNS espec¡fico para la conexi¢n. . : fibertel.com.ar
   V¡nculo: direcci¢n IPv6 local. . . : fe80::f013:9a:12eb:80d2%11
   Direcci¢n IPv4. . . . . . . . . . . . . . : 192.168.0.102
   M scara de subred . . . . . . . . . . . . : 255.255.255.0
   Puerta de enlace predeterminada . . . . . : 192.168.1.100
                                       192.168.0.1

Adaptador de t£nel isatap.fibertel.com.ar:

   Estado de los medios. . . . . . . . . . . : medios desconectados
   Sufijo DNS espec¡fico para la conexi¢n. . : 

Adaptador de t£nel isatap.{76AA66BD-7C70-4CDA-814E-50CFF1123020}:

   Estado de los medios. . . . . . . . . . . : medios desconectados
   Sufijo DNS espec¡fico para la conexi¢n. . : 

========= Final de CMD: =========


========= ipconfig /flushdns =========


Configuraci¢n IP de Windows

Se vaci¢ correctamente la cach‚ de resoluci¢n de DNS.

========= Final de CMD: =========


========= bitsadmin /reset /allusers =========


BITSADMIN version 3.0 [ 7.5.7601 ]
BITS administration utility.
(C) Copyright 2000-2006 Microsoft Corp.

BITSAdmin is deprecated and is not guaranteed to be available in future versions of Windows.
Administrative tools for the BITS service are now provided by BITS PowerShell cmdlets.

Unable to connect to BITS - 0x8007042c

========= Final de CMD: =========


========= netsh advfirewall reset =========


Error al intentar ponerse en contacto con el servicio Firewall de Windows. Aseg£rese de que el servicio se est  ejecutando e intente la solicitud de nuevo.


========= Final de CMD: =========


========= netsh advfirewall set allprofiles state ON =========


Error al intentar ponerse en contacto con el servicio Firewall de Windows. Aseg£rese de que el servicio se est  ejecutando e intente la solicitud de nuevo.


========= Final de CMD: =========


========= netsh int ipv4 reset =========

Global se restableci¢ correctamente.
Interfaz se restableci¢ correctamente.
Direcci¢n de unidifusi¢n se restableci¢ correctamente.
Ruta se restableci¢ correctamente.
Reinicie el equipo para completar esta acci¢n.


========= Final de CMD: =========


========= netsh int ipv6 reset =========

Interfaz se restableci¢ correctamente.
Reinicie el equipo para completar esta acci¢n.


========= Final de CMD: =========


=========== EmptyTemp: ==========

BITS transfer queue => 8388608 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 11049790 B
Java, Flash, Steam htmlcache => 370248017 B
Windows/system/drivers => 76043 B
Edge => 0 B
Chrome => 37101013 B
Firefox => 14231939 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Users => 0 B
Default => 82612 B
Public => 82612 B
ProgramData => 82612 B
systemprofile => 255773 B
systemprofile32 => 380124 B
LocalService => 512368 B
NetworkService => 578596 B
Mar => 4576275 B

RecycleBin => 0 B
EmptyTemp: => 426.9 MB datos temporales eliminados.

================================


El sistema necesita reiniciarse.

==== Final de Fixlog 21:20:32 ====

PD: La Pc ahora se mueve más rápido, pero había tardado 15 minutos en cargar el escritorio completo más los programas que se inician automáticamente como el antivirus. De todas formas, debería ir más rápido, o antes al menos era más rápida…

Hola.

Que el equipo vaya lento en el primer REINICIO(o en los dos o tres siguientes) justo después de hacer TODOS esos procesos es absolutamente normal.

Ademas que el equipo vaya lento teniendo en cuenta el estado en el que tienes físicamente ese disco duro …también es absolutamente normal.

Lo que debería preocuparte fundamentalmente es el intentar copiar y salvar aquellos ficheros que tengas en ese disco y que sean de TU intereses, antes de que NO puedas volver a arrancar o usar ese disco.

Como TU mismo has ido viendo el equipo se va degradando progresivamente y así te lo esta indicando HDSentinel.

Todo lo que NO veas que existe o haya desaparecido de TU equipo es por haber sido eliminado por las herramientas usadas, en los informes se ven aquellos programas y/o ficheros que se fueron eliminando y estos se han eliminado por ser considerados o bien programas potencialmente peligrosos/infecciones o dañinos para el equipo.

Lo primero que deberías hacer es volver a ajustar el parámetro del “CHKNTFS” con el valor /D

CHKNTFS /D

Para que se restaure el funcionamiento predeterminado y volver a ejecutar el archivo BAT “Chequear_ Disco_Windows.bat” y verificar SI funciona correctamente al REINICIO de la maquina y podamos verificar el disco para intentar solucionar los errores que tienes en él.

Pero Insisto… ahora mismo lo mas importante que a mi me preocuparía en TU situación es que copies todo lo que te interese de ese disco y vayas pensando en guardarlo en otro dispositivo y fueras pensando en sustituir ese disco por otro nuevo.

Saludos.

Entiendo. Pues ya me he hecho el backup, no había mucho puesto que los datos los guardo en otros discos. Haré lo que me dices, e intentaré nuevamente lo del Bat, ya te comentaré.

Respecto al Malwarebytes y alguna otra eventual herramienta, de momento las dejo instaladas no?

Hola.

Si… de momento deja las herramientas instaladas y NO elimines NADA, cuando terminemos de verificar TU equipo YA te daremos pasos para eliminarlas.

Intenta hacer los pasos para verificar el disco con el CHKDSK y si logras que se realice correctamente luego nos pones el informe del resultado.

Ademas ten en cuenta que el proceso de verificación puede tardar bastante tiempo y NO SE debe cortar/interrumpir, en un disco que presenta problemas y de la capacidad que tiene el tuyo, 1Tb con una ocupación del 70% el proceso puede ser lento y prologarse bastante.

Saludos.

Bien… En modo NO seguro, he abierto como admin el CMD, he tecleado el comando que me has compartido, y no me ha devuelto ningún mensaje… Luego he ejecutado el Bat, he reiniciado, y me ha salido nuevamente éste mensaje:

DSC_00282048×1536 801 KB

Por otra parte, Hard Disk Sentinel (que se abre al inicio de Windows), ahora me dice que la Performance es de 98% (igual que la última vez), y Health es 90% (aumentó un 1% respecto a la última vez…)

Bien, pues veamos SI mos deja revisar TU disco de otra manera, revisa si puedes acceder a estos pasos :

Ingresar en las opciones de reparación del sistema.

Para acceder a las Opciones de Recuperación del Sistema de las opciones de inicio avanzadas:

• Reiniciar el equipo.
• Tan pronto como se carga la BIOS comenzar a pulsar la tecla F8 hasta que aparezcan las opciones avanzadas de arranque.
• Seleccionar Reparar el Equipo y presione enter.
• Esperar a que cargue, seleccionar el idioma y configuración de teclado, clic en siguiente.
• Seleccionar el sistema operativo que queremos reparar y hacer clic en siguiente.
• Seleccionar la cuenta de usuario y hacer clic en siguiente.

En el menú de Opciones de Recuperación del Sistema veremos estas posibilidades :

• Seleccionar el Símbolo del Sistema.
• En la ventana de Comandos, escribir notepad.exe.
• En la parte superior ir a >> Archivo >> Abrir.
• Seleccionar “Equipo” para verificar que unidad/letra corresponde con tu disco duro, y cerrar el Bloc de Notas.
• Una vez volvemos dentro de la Ventana de Comandos escribir lo siguiente, respetando los espacios existentes y sustituyendo ? por la letra de la unidad de tu disco duro :

Esperar a que se complete totalmente la verificación, y comentarnos que ocurrió al finalizar y durante el proceso, que mensaje/s salieron.

No debes buscar posteriormente el informe, YA que al hacerlo de esta manera NO sera posible que se genere el informe con los resultados.

Saludos.

En las opciones avanzadas no sale “Reparar equipo”, sólo esto:

15797806474822257100732048×1536 719 KB

Pruebo con el DVD de windows?

Hola.

Bien… SI efectivamente puedes probar con el DVD de Windows y usar la opción para acceder al CMD y desde ahí usar los pasos, primero del Notepad, y luego acceder al símbolo del sistema para hacer el CHKDSK tal cual te puse anteriormente.

Con el DVD de windows no he podido entrar al símbolo del sistema, me ha dicho que mi S.O. no era compatible (será porque yo tengo SP1 + actualizaciones, y el DVD es el win 7 base? Agrego que ése es el DVD con el que instalé Windows… ).

He probado recién otro DVD, uno de recuperación de datos de Windows (supuestamente es oficial, lo tengo hace tiempo), y ya con éste si he podido realizar los pasos.

Actualmente nos encontramos así:

15797855479868261793832048×1536 1.16 MB

Hola.

Bien… pues las DOS ETAPAS que te quedan por hacer del TOTAL de CINCO son las que duraran mas tiempo y donde(teóricamente) se podan realizar mas correcciones de errores.

Paciencia y a ESPERAR que termine el proceso.

Saludos.

Terminó. Saqué una foto del final.

Lo que creo principal : 1-Windows ha comprobado el sistema de archivos y no encontró problemas. 2-4KB en sectores defectuosos. 3-Error cuando se transferian los mensajes de sesión al registro de eventos con estado 50.

DSC_00322048×1536 949 KB

Hola.

Perfecto.

Y después YA has APAGADO el equipo y vuelto a ENCENDER, como funciona el equipo…??

Pues diría que igual que la última vez que te escribí, el mensaje 46 si no me equivoco. La Pc arranca algo lento, pero de momento no hay pantallas azules, aunque no había desde que abrí el Malwarebytes la primera vez, o sea, antes de escanear, hacer Fixes, etc.

Perdón, era el mensaje 47.

Perfecto, ahora vas a eliminar las herramientas usadas.

Para terminar:

• Descarga DelFix.exe en tu escritorio.

• Doble clic para ejecutarlo. (Si usas Windows Vista/7/8 o 10 presiona clic derecho y selecciona "Ejecutar como Administrador.")

• Marca todas las casillas.

• Pulsar en Run.

Se abrirá el informe (DelFix.txt), copia y pega ese informe en tu próxima respuesta.

Y nos comentas como sigue el problema inicialmente planteado.

Saludos.