Buenas noches comunidad, pasa que windows defender, no funcionando el ESET NOD32 y Malwarebytes, este ultimo lo ocupaba en ocasiones para escanear, lo cual tuve que volverlo a instalar y funciono. Al explorar por regedit la ubicación “HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft” no existe Windows Defender. Sin embargo, bajo este directorio lo encontré “HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows Defender”. al querer acceder desde panel de control a windows defender aparece un mensaje “esta aplicación esta desactivada y no supervisa actualmente el equipo” por lo que ESET al verlo por el centro de actividades de seguridad me continua apareciendo desactivado, al hacer querer abrirlo de manera directa tampoco pasa nada. Se puede volver a recurperar Windows Defender para que NOD32 continue funcionando, como lo puedo habilitar o lo tengo que volver a instalar tal como malwarebytes sin que exista windows defender? .Adjunto escaneo.
MALWAREBYTES 4.1.2
Malwarebytes
www.malwarebytes.com
-Detalles del registro-
Fecha del análisis: 26/8/20
Hora del análisis: 5:57
Archivo de registro: 98622566-e782-11ea-b8ce-00ff7ef9241f.json
-Información del software-
Versión: 4.1.2.73
Versión de los componentes: 1.0.972
Versión del paquete de actualización: 1.0.29081
Licencia: Prueba
-Información del sistema-
SO: Windows 8.1
CPU: x64
Sistema de archivos: NTFS
Usuario: mobil-command\CerealKiller
-Resumen del análisis-
Tipo de análisis: Análisis de amenazas
Análisis iniciado por:: Manual
Resultado: Completado
Objetos analizados: 349808
Amenazas detectadas: 0
Amenazas en cuarentena: 0
Tiempo transcurrido: 29 min, 41 seg
-Opciones de análisis-
Memoria: Activado
Inicio: Activado
Sistema de archivos: Activado
Archivo: Activado
Rootkits: Desactivado
Heurística: Activado
PUP: Detectar
PUM: Detectar
-Detalles del análisis-
Proceso: 0
(No hay elementos maliciosos detectados)
Módulo: 0
(No hay elementos maliciosos detectados)
Clave del registro: 0
(No hay elementos maliciosos detectados)
Valor del registro: 0
(No hay elementos maliciosos detectados)
Datos del registro: 0
(No hay elementos maliciosos detectados)
Secuencia de datos: 0
(No hay elementos maliciosos detectados)
Carpeta: 0
(No hay elementos maliciosos detectados)
Archivo: 0
(No hay elementos maliciosos detectados)
Sector físico: 0
(No hay elementos maliciosos detectados)
WMI: 0
(No hay elementos maliciosos detectados)
(end)
ADWCLEANER
# -------------------------------
# Malwarebytes AdwCleaner 8.0.7.0
# -------------------------------
# Build: 07-22-2020
# Database: 2020-07-20.1 (Local)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 08-25-2020
# Duration: 00:00:04
# OS: Windows 8.1 Pro
# Cleaned: 2
# Failed: 0
***** [ Services ] *****
No malicious services cleaned.
***** [ Folders ] *****
No malicious folders cleaned.
***** [ Files ] *****
No malicious files cleaned.
***** [ DLL ] *****
No malicious DLLs cleaned.
***** [ WMI ] *****
No malicious WMI cleaned.
***** [ Shortcuts ] *****
No malicious shortcuts cleaned.
***** [ Tasks ] *****
No malicious tasks cleaned.
***** [ Registry ] *****
Deleted HKLM\Software\Microsoft\Windows NT\CurrentVersion\Winlogon|Shell
Deleted HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\{D08D9F98-1C78-4704-87E6-368B0023D831}
***** [ Chromium (and derivatives) ] *****
No malicious Chromium entries cleaned.
***** [ Chromium URLs ] *****
No malicious Chromium URLs cleaned.
***** [ Firefox (and derivatives) ] *****
No malicious Firefox entries cleaned.
***** [ Firefox URLs ] *****
No malicious Firefox URLs cleaned.
***** [ Hosts File Entries ] *****
No malicious hosts file entries cleaned.
***** [ Preinstalled Software ] *****
No Preinstalled Software cleaned.
*************************
[+] Delete Tracing Keys
[+] Reset Winsock
*************************
AdwCleaner[S00].txt - [2142 octets] - [03/06/2018 16:48:52]
AdwCleaner[C00].txt - [1941 octets] - [03/06/2018 16:49:30]
AdwCleaner[S01].txt - [1915 octets] - [17/12/2018 16:08:28]
AdwCleaner[C01].txt - [1951 octets] - [17/12/2018 16:11:26]
AdwCleaner[S02].txt - [2082 octets] - [23/03/2020 05:19:41]
AdwCleaner[C02].txt - [2108 octets] - [23/03/2020 05:20:28]
AdwCleaner[S03].txt - [1983 octets] - [10/07/2020 19:49:09]
AdwCleaner[C03].txt - [2115 octets] - [10/07/2020 19:49:47]
AdwCleaner[S04].txt - [1967 octets] - [19/08/2020 16:42:41]
AdwCleaner[C04].txt - [2137 octets] - [19/08/2020 16:43:04]
AdwCleaner[S05].txt - [2218 octets] - [25/08/2020 15:50:09]
########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C05].txt ##########
FRST Primera parte
Resultado del análisis realizado por Farbar Recovery Scan Tool (FRST) (x64) Versión: 26-08-2020
Ejecutado por CerealKiller (administrador) sobre MOBIL-COMMAND (Hewlett-Packard HP Pavilion 14 Notebook PC) (26-08-2020 23:07:48)
Ejecutado desde C:\Users\Soulless\Downloads
Perfiles cargados: CerealKiller
Platform: Windows 8.1 Pro (Update) (X64) Idioma: Español (España, internacional)
Navegador predeterminado: Chrome
Modo de Inicio: Normal
Tutorial para Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Procesos (Lista blanca) =================
(Si una entrada es incluida en el fixlist, el proceso será cerrado. El archivo no será movido.)
(Adobe Inc. -> Adobe Inc) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\IPCBox\AdobeIPCBroker.exe
(Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe
(Advanced Micro Devices Inc.) [Archivo no firmado] [El archivo está en uso] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(Alps Electric Co., LTD. -> Alps Electric Co., Ltd.) C:\Program Files\Apoint2K\ApMsgFwd.exe
(Alps Electric Co., LTD. -> Alps Electric Co., Ltd.) C:\Program Files\Apoint2K\ApntEx.exe
(Alps Electric Co., LTD. -> Alps Electric Co., Ltd.) C:\Program Files\Apoint2K\Apoint.exe
(Alps Electric Co., LTD. -> Alps Electric Co., Ltd.) C:\Program Files\Apoint2K\hidfind.exe
(Alps Electric Co., LTD. -> Alps Electric Co., Ltd.) C:\Program Files\Apoint2K\HidMonitorSvc.exe
(Andrea Electronics -> Andrea Electronics Corporation) C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(ArcSoft, Inc. -> ArcSoft, Inc.) C:\Program Files (x86)\Common Files\ArcSoft\esinter\Bin\eservutil.exe
(ATI Technologies Inc.) [Archivo no firmado] [El archivo está en uso] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Avid Technology, Inc.) [Archivo no firmado] C:\Program Files\Avid\Pro Tools\MMERefresh.exe
(DIgSILENT GmbH -> DIgSILENT GmbH) C:\Program Files (x86)\DIgSILENT\License Server\diglise.exe
(Hewlett-Packard Company -> Hewlett-Packard Company) C:\Windows\System32\hpservice.exe
(Hewlett-Packard Company -> Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP System Event\HPWMISVC.exe
(Huawei Technologies Co., Ltd. -> ) C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe
(Intel Corporation - Intel® Management Engine Firmware -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation - Intel® Management Engine Firmware -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation - Intel® Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation - Intel® Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxTray.exe
(Intel Corporation - Software and Firmware Products -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel(R) Corporation) [Archivo no firmado] C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows\System32\atieclxx.exe
(Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows\System32\atiesrxx.exe
(Node.js Foundation -> Node.js) C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\libs\node.exe
(Open Source Developer, Stefan Kueng -> hxxp://tortoisesvn.net) C:\Program Files\TortoiseSVN\bin\TSVNCache.exe
(Razer Inc.) [Archivo no firmado] C:\Program Files (x86)\Razer\RzWizard\RzWizardService.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RTKAUDIOSERVICE64.EXE
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(TEFINCOM S.A. -> TEFINCOM S.A.) C:\Program Files\NordVPN\nordvpn-service.exe
==================== Registro (Lista blanca) ===================
(Si una entrada es incluida en el fixlist, el elemento del registro será restaurado a su valor predeterminado o será eliminado. El archivo no será movido.)
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [287592 2013-08-22] (Intel Corporation - Intel® Rapid Storage Technology -> Intel Corporation)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [7194840 2013-07-26] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [Apoint] => C:\Program Files\Apoint2K\Apoint.exe [704344 2015-02-04] (Alps Electric Co., LTD. -> Alps Electric Co., Ltd.)
HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [2849872 2019-07-04] (Adobe Inc. -> Adobe Systems, Incorporated)
HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET NOD32 Antivirus\ecmdS.exe [185648 2020-07-30] (ESET, spol. s r.o. -> ESET)
HKLM\...\Run: [DigidesignMMERefresh] => C:\Program Files\Avid\Pro Tools\MMERefresh.exe [117760 2019-07-10] (Avid Technology, Inc.) [Archivo no firmado]
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [646160 2019-12-11] (Oracle America, Inc. -> Oracle Corporation)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [766208 2013-11-05] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [Wondershare Helper Compact.exe] => C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe [2133728 2017-09-12] (Wondershare Technology Co.,Ltd -> Wondershare)
HKU\S-1-5-21-4104487672-3836452688-4083331385-1001\...\Run: [Rainlendar2] => C:\Program Files\Rainlendar2\Rainlendar2.exe [4407392 2014-01-01] (Rainy -> )
HKU\S-1-5-21-4104487672-3836452688-4083331385-1001\...\Run: [DAEMON Tools Lite] => C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3696912 2014-03-04] (Disc Soft Ltd -> Disc Soft Ltd)
HKU\S-1-5-21-4104487672-3836452688-4083331385-1001\...\Run: [Google Update] => C:\Users\Soulless\AppData\Local\Google\Update\1.3.35.452\GoogleUpdateCore.exe [217544 2020-03-20] (Google LLC -> Google LLC)
HKU\S-1-5-21-4104487672-3836452688-4083331385-1001\...\Run: [Dropbox Update] => C:\Users\Soulless\AppData\Local\Dropbox\Update\DropboxUpdate.exe [143144 2016-03-31] (Dropbox, Inc -> Dropbox, Inc.)
HKU\S-1-5-21-4104487672-3836452688-4083331385-1001\...\Run: [CCXProcess] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe [144008 2019-11-26] (Adobe Inc. -> Adobe Systems Incorporated)
HKU\S-1-5-21-4104487672-3836452688-4083331385-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [29271224 2020-08-05] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-4104487672-3836452688-4083331385-1001\...\Policies\Explorer: []
HKU\S-1-5-21-4104487672-3836452688-4083331385-1001\...\MountPoints2: {00a5077a-ab4a-11ea-8482-a45d36663e99} - "F:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-4104487672-3836452688-4083331385-1001\...\MountPoints2: {0b1fd4e5-9d9e-11e4-8299-dfbfb5110c0a} - "F:\AutoRun.exe"
HKU\S-1-5-21-4104487672-3836452688-4083331385-1001\...\MountPoints2: {35c5b105-dc8f-11e5-82c5-a45d36663e99} - "F:\AutoRun.exe"
HKU\S-1-5-21-4104487672-3836452688-4083331385-1001\...\MountPoints2: {35c5b174-dc8f-11e5-82c5-a45d36663e99} - "F:\AutoRun.exe"
HKU\S-1-5-21-4104487672-3836452688-4083331385-1001\...\MountPoints2: {37a0f969-740b-11ea-8450-a45d36663e99} - "F:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-4104487672-3836452688-4083331385-1001\...\MountPoints2: {6b1d9f8a-b629-11e4-829f-a45d36663e99} - "F:\AutoRun.exe"
HKU\S-1-5-21-4104487672-3836452688-4083331385-1001\...\MountPoints2: {6b1da547-b629-11e4-829f-a45d36663e99} - "F:\AutoRun.exe"
HKU\S-1-5-21-4104487672-3836452688-4083331385-1001\...\MountPoints2: {6b1da919-b629-11e4-829f-a45d36663e99} - "F:\AutoRun.exe"
HKU\S-1-5-21-4104487672-3836452688-4083331385-1001\...\MountPoints2: {8214ec6d-de6a-11e5-82c7-a45d36663e99} - "F:\AutoRun.exe"
HKU\S-1-5-21-4104487672-3836452688-4083331385-1001\...\MountPoints2: {a595edbe-ac84-11e3-8259-bc855652d87c} - "G:\Autoplay.exe" -auto
HKU\S-1-5-21-4104487672-3836452688-4083331385-1001\...\MountPoints2: {af85939b-1b34-11e4-8285-bc855652d87c} - "F:\iLinker.exe"
HKU\S-1-5-21-4104487672-3836452688-4083331385-1001\...\MountPoints2: {c47a9d8e-9408-11e4-8298-bc855652d87c} - "F:\AutoRun.exe"
HKU\S-1-5-21-4104487672-3836452688-4083331385-1001\...\MountPoints2: {c47aa1a2-9408-11e4-8298-bc855652d87c} - "F:\AutoRun.exe"
HKU\S-1-5-21-4104487672-3836452688-4083331385-1001\...\MountPoints2: {d99648dc-d640-11ea-849b-a45d36663e99} - "F:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-4104487672-3836452688-4083331385-1001\...\MountPoints2: {fe0c85a8-baf4-11e4-82a1-a45d36663e99} - "F:\AutoRun.exe"
HKLM\...\Print\Monitors\Adobe PDF Port Monitor: C:\Windows\system32\AdobePDF.dll [55432 2012-09-23] (Adobe Systems, Incorporated -> Adobe Systems Inc)
HKLM\...\Print\Monitors\Brother QL-700 Monitor: C:\Windows\system32\BSQ70L.DLL [68608 2011-10-13] (Microsoft Windows Hardware Compatibility Publisher -> Brother Industries, Ltd.)
HKLM\...\Print\Monitors\HP E111 Status Monitor: C:\Windows\system32\hpinkstsE111LM.dll [393352 2017-04-14] (Hewlett Packard -> HP Inc.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\84.0.4147.135\Installer\chrmstp.exe [2020-08-18] (Google LLC -> Google LLC)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> "C:\Program Files (x86)\Google\Chrome\Application\57.0.2987.133\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level
HKLM\Software\...\Authentication\Credential Providers: [{FA076B7A-C331-48e2-9EE9-7683A553739E}] -> C:\Program Files (x86)\CyberLink\YouCam6\CLCredProv\x64\CLCredProv.dll [2013-11-26] (CyberLink Corp. -> CyberLink)
HKLM\Software\...\Authentication\Credential Provider Filters: [{FA076B7A-C331-48e2-9EE9-7683A553739E}] -> C:\Program Files (x86)\CyberLink\YouCam6\CLCredProv\x64\CLCredProv.dll [2013-11-26] (CyberLink Corp. -> CyberLink)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\AutorunsDisabled [2014-08-03] ()
GroupPolicy: Restricción ? <==== ATENCIÓN
==================== Tareas programadas (Lista blanca) ============
(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)
Task: {084B88E0-D55D-442D-BD85-F5C9F2E8B20E} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-4104487672-3836452688-4083331385-1001Core1cf901333ef0b8 => C:\Users\Soulless\AppData\Local\Google\Update\GoogleUpdate.exe [144200 2015-08-31] (Google Inc -> Google Inc.)
Task: {2C301BC6-6770-40ED-B89B-7ED5B7D434EB} - System32\Tasks\GoogleUpdateTaskMachineCore1d06b631ab58ead => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848 2015-03-31] (Google Inc -> Google Inc.)
Task: {3BB553CE-8CCA-4FC7-94DA-2520D9CF0A57} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848 2015-03-31] (Google Inc -> Google Inc.)
Task: {3C02081F-7F56-4A37-8D30-BCEB2F18545A} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [24770744 2020-08-05] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {48BFE961-F612-480B-BD4B-D39C87F1D5BC} - System32\Tasks\GoogleUpdateTaskMachineCore1d06b65c56b11ee => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848 2015-03-31] (Google Inc -> Google Inc.)
Task: {4EEFD495-4C93-4B22-8DA8-BB27ED4C91F2} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe [1626328 2014-01-23] (Microsoft Corporation -> Microsoft Corporation)
Task: {5B733397-BA60-4672-B754-F33F5088D4F2} - System32\Tasks\Mozilla\Firefox Default Browser Agent E7CF176E110C211B => C:\Program Files (x86)\Mozilla Firefox\default-browser-agent.exe [123600 2020-08-01] (Mozilla Corporation -> Mozilla Foundation)
Task: {7295D20C-C4FF-441F-B337-DDA9B7A859B8} - System32\Tasks\GoogleUpdateTaskMachineUA1cf6af6f5dede36 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848 2015-03-31] (Google Inc -> Google Inc.)
Task: {7AAE9541-1A3B-49F8-98AD-C8840896FEC9} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_414_Plugin.exe [1475640 2020-08-11] (Adobe Inc. -> Adobe)
Task: {894FAC89-FA9B-46EB-9DBB-A518633840B4} - System32\Tasks\AutoPico Daily Restart => C:\Program Files\KMSpico\AutoPico.exe
Task: {985EE807-A885-4AF6-8233-AE4E9B7DEE24} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [376496 2014-01-23] (Microsoft Corporation -> Microsoft Corporation)
Task: {9DF34D8F-13AE-40E0-99B0-595FE5FF1645} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848 2015-03-31] (Google Inc -> Google Inc.)
Task: {AD008B47-CD16-4811-B956-6E6A807BD2F2} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-4104487672-3836452688-4083331385-1001Core1d0440ddf45339a => C:\Users\Soulless\AppData\Local\Google\Update\GoogleUpdate.exe [144200 2015-08-31] (Google Inc -> Google Inc.)
Task: {AD3513B2-48CB-49F4-8EF9-90B50912333F} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-4104487672-3836452688-4083331385-1001Core1cf6d6ef0b049d1 => C:\Users\Soulless\AppData\Local\Google\Update\GoogleUpdate.exe [144200 2015-08-31] (Google Inc -> Google Inc.)
Task: {B35DABE0-B45F-4934-A9C6-813BF0FC624A} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-4104487672-3836452688-4083331385-1001UA1cf901359a6285 => C:\Users\Soulless\AppData\Local\Google\Update\GoogleUpdate.exe [144200 2015-08-31] (Google Inc -> Google Inc.)
Task: {BC8341B2-ED64-4D9B-BA36-3B9214B09E9D} - System32\Tasks\MATLAB R2013b Startup Accelerator => C:\Program Files\MATLAB\R2013b\bin\win64\MATLABStartupAccelerator.exe [42496 2013-08-05] () [Archivo no firmado]
Task: {BE57CE12-98AB-48C2-9F1D-C7CBD82C11AD} - System32\Tasks\GoogleUpdateTaskMachineCore1d0408ad526541a => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848 2015-03-31] (Google Inc -> Google Inc.)
Task: {C3038F21-39F4-4E0E-8A02-2BDBA476FC1A} - System32\Tasks\HPCustParticipation HP DeskJet 2130 series => C:\Program Files\HP\HP DeskJet 2130 series\Bin\HPCustPartic.exe [6438536 2017-04-18] (Hewlett Packard -> HP Inc.)
Task: {C36F8A22-9D11-4B3A-9044-D28518DC2FFA} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [686384 2020-08-05] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {C8F1F90E-76BD-4430-BED0-0FEB2BCF65CD} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-08-11] (Adobe Inc. -> Adobe)
Task: {C94A6D1F-C333-48FF-9CBE-D76E955B1D54} - System32\Tasks\DropboxUpdateTaskUserS-1-5-21-4104487672-3836452688-4083331385-1001UA => C:\Users\Soulless\AppData\Local\Dropbox\Update\DropboxUpdate.exe [143144 2016-03-31] (Dropbox, Inc -> Dropbox, Inc.)
Task: {D3E7B110-56F7-45DF-BE79-1D57F5C4934C} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [376496 2014-01-23] (Microsoft Corporation -> Microsoft Corporation)
Task: {E372FBE3-070B-421D-916B-67AA61735E94} - System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task => {3519154C-227E-47F3-9CC9-12C3F05817F1}
Task: {E905D764-E416-4579-9D4C-BBC3DE4843F1} - System32\Tasks\GoogleUpdateTaskMachineUA1d06b614584d9ba => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848 2015-03-31] (Google Inc -> Google Inc.)
Task: {ED8ECECC-487C-45BD-9129-E174F4CE402E} - System32\Tasks\AdobeGCInvoker-1.0-mobil-command-CerealKiller => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [2849872 2019-07-04] (Adobe Inc. -> Adobe Systems, Incorporated)
Task: {F0B3CB18-1F3E-42BE-9D8E-0EB6F1969AB1} - System32\Tasks\GoogleUpdateTaskMachineCore1d06b6adf9197c8 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848 2015-03-31] (Google Inc -> Google Inc.)
Task: {F9FA5DD4-E2EE-477C-9972-7965EC6C29A2} - System32\Tasks\DropboxUpdateTaskUserS-1-5-21-4104487672-3836452688-4083331385-1001Core => C:\Users\Soulless\AppData\Local\Dropbox\Update\DropboxUpdate.exe [143144 2016-03-31] (Dropbox, Inc -> Dropbox, Inc.)
(Si una entrada es incluida en el fixlist, el archivo de tarea (.job) será movido. El archivo que está siendo ejecutado por la tarea no será movido.)
Task: C:\Windows\Tasks\DropboxUpdateTaskUserS-1-5-21-4104487672-3836452688-4083331385-1001Core.job => C:\Users\Soulless\AppData\Local\Dropbox\Update\DropboxUpdate.exe
Task: C:\Windows\Tasks\DropboxUpdateTaskUserS-1-5-21-4104487672-3836452688-4083331385-1001UA.job => C:\Users\Soulless\AppData\Local\Dropbox\Update\DropboxUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-4104487672-3836452688-4083331385-1001Core1cf901333ef0b8.job => C:\Users\Soulless\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\MATLAB R2013b Startup Accelerator.job => C:\Program Files\MATLAB\R2013b\bin\win64\MATLABStartupAccelerator.exe
==================== Internet (Lista blanca) ====================
(Si un elemento es incluido en el fixlist, y éste pertenece al registro, será eliminado o restaurado a su valor predeterminado.)
AutoConfigURL: [{2513CA36-71E0-44B5-ABA8-881FE82532E5}] => file://C:/ProgramData/Hotspot Shield/config/hsspx/proxy.pac
ProxyServer: [S-1-5-21-4104487672-3836452688-4083331385-1001] => proxy.udec.cl:3128
Winsock: Catalog5 08 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [121704 2011-08-30] (Apple Inc. -> Apple Inc.)
Winsock: Catalog5-x64 08 C:\Program Files\Bonjour\mdnsNSP.dll [132968 2011-08-30] (Apple Inc. -> Apple Inc.)
Tcpip\Parameters: [DhcpNameServer] 200.28.0.129 200.28.4.129
Tcpip\..\Interfaces\{2C23DDEF-9B8D-49EE-A176-E40C60703949}: [NameServer] 8.8.8.8,4.4.8.8
Tcpip\..\Interfaces\{2C23DDEF-9B8D-49EE-A176-E40C60703949}: [DhcpNameServer] 200.28.0.129 200.28.4.129
Tcpip\..\Interfaces\{DE84F81E-D143-407C-9B26-D6C2E8AFCD31}: [DhcpNameServer] 190.96.9.250 190.153.164.250
Internet Explorer:
==================
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\Office15\OCHelper.dll [2020-04-15] (Microsoft Corporation -> Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_241\bin\ssv.dll [2020-01-17] (Oracle America, Inc. -> Oracle Corporation)
BHO: Adobe Acrobat Create PDF Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\x64\AcroIEFavClient.dll [2013-12-20] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL [2018-05-15] (Microsoft Corporation -> Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_241\bin\jp2ssv.dll [2020-01-17] (Oracle America, Inc. -> Oracle Corporation)
BHO: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\x64\AcroIEFavClient.dll [2013-12-20] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
BHO: DIALux Browser Helper Object -> {F586CB96-7091-42ec-9829-F5D5CE65AFC1} -> C:\Program Files\DIAL GmbH\DIALux\Dialux.BHO_x64.dll [2014-02-25] (DIAL -> DIAL GmbH)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll [2020-04-15] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Adobe Acrobat Create PDF Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll [2013-12-21] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL [2018-05-15] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll [2013-12-21] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
BHO-x32: DIALux Browser Helper Object -> {F586CB96-7091-42ec-9829-F5D5CE65AFC1} -> C:\Program Files\DIAL GmbH\DIALux\Dialux.BHO_x86.dll [2014-02-25] (DIAL -> DIAL GmbH)
Toolbar: HKLM - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\x64\AcroIEFavClient.dll [2013-12-20] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
Toolbar: HKLM-x32 - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll [2013-12-21] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL [2017-08-15] (Microsoft Corporation -> Microsoft Corporation)
Edge:
======
Edge Profile: C:\Users\Soulless\AppData\Local\Microsoft\Edge\User Data\Default [2020-08-25]
FireFox:
========
FF DefaultProfile: juz3e56w.default-1539741098604
FF ProfilePath: C:\Users\Soulless\AppData\Roaming\Mozilla\Firefox\Profiles\juz3e56w.default-1539741098604 [2020-08-25]
FF Extension: (Hotspot Shield Free VPN Proxy - Unlimited VPN) - C:\Users\Soulless\AppData\Roaming\Mozilla\Firefox\Profiles\juz3e56w.default-1539741098604\Extensions\[email protected] [2020-08-16]
FF Extension: (Hola Free VPN Proxy Unblocker) - C:\Users\Soulless\AppData\Roaming\Mozilla\Firefox\Profiles\juz3e56w.default-1539741098604\Extensions\[email protected] [2020-08-01]
FF HKLM-x32\...\Firefox\Extensions: [[email protected]] - C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCFirefoxExtn
FF Extension: (Adobe Acrobat - Create PDF) - C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCFirefoxExtn [2014-03-15] [Heredado] [no firmado]
FF HKLM-x32\...\Thunderbird\Extensions: [[email protected]] - C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird => no encontrado
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_32_0_0_414.dll [2020-08-11] (Adobe Inc. -> )
FF Plugin: @java.com/DTPlugin,version=11.241.2 -> C:\Program Files\Java\jre1.8.0_241\bin\dtplugin\npDeployJava1.dll [2020-01-17] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.241.2 -> C:\Program Files\Java\jre1.8.0_241\bin\plugin2\npjp2.dll [2020-01-17] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~1\Office15\NPSPWRAP.DLL [2014-01-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_414.dll [2020-08-11] (Adobe Inc. -> )
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-08-09] (Intel® Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-08-09] (Intel® Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2017-09-12] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office15\NPSPWRAP.DLL [2014-01-22] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @videolan.org/vlc,version=2.2.8 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2020-04-23] (VideoLAN -> VideoLAN)
FF Plugin-x32: Adobe Acrobat -> C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Air\nppdf32.dll [2013-12-21] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
FF ExtraCheck: C:\Program Files (x86)\mozilla firefox\defaults\pref\eset_security_config_overlay.js [2020-08-25]
Chrome:
=======
CHR DefaultProfile: Profile 9
CHR Profile: C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Default [2020-08-25]
CHR Extension: (Presentaciones) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2020-07-31]
CHR Extension: (Documentos) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2020-07-31]
CHR Extension: (Google Drive) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-11-27]
CHR Extension: (YouTube) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-11-27]
CHR Extension: (Adobe Acrobat) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2020-07-31]
CHR Extension: (Hojas de cálculo) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2020-07-31]
CHR Extension: (Documentos de Google sin conexión) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-11-27]
CHR Extension: (Sistema de pagos de Chrome Web Store) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2020-07-31]
CHR Extension: (Gmail) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-07-31]
CHR Extension: (Chrome Media Router) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-07-31]
CHR Profile: C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Guest Profile [2020-08-25]
CHR Profile: C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 10 [2020-08-25]
CHR Extension: (Presentaciones de Google) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 10\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-02-03]
CHR Extension: (Google Docs) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 10\Extensions\aohghmighlieiainnegkcijnfilokake [2017-02-03]
CHR Extension: (Google Drive) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 10\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-02-03]
CHR Extension: (YouTube) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 10\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-02-03]
CHR Extension: (Adobe Acrobat) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 10\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2017-02-03]
CHR Extension: (Hojas de cálculo de Google) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 10\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-02-03]
CHR Extension: (Documentos de Google sin conexión) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 10\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2017-02-03]
CHR Extension: (Sistema de pagos de Chrome Web Store) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 10\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-02-03]
CHR Extension: (Gmail) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 10\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2017-02-03]
CHR Extension: (Chrome Media Router) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 10\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-02-27]
CHR Profile: C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 11 [2020-08-25]
CHR Extension: (Presentaciones de Google) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 11\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-02-04]
CHR Extension: (Google Docs) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 11\Extensions\aohghmighlieiainnegkcijnfilokake [2017-02-04]
CHR Extension: (Google Drive) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 11\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-02-04]
CHR Extension: (TV) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 11\Extensions\beobeededemalmllhkmnkinmfembdimh [2017-02-04]
CHR Extension: (YouTube) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 11\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-02-04]
CHR Extension: (Adblock Plus) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 11\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2017-02-04]
CHR Extension: (Search by Image (by Google)) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 11\Extensions\dajedkncpodkggklbegccjpmnglmnflm [2017-02-04]
CHR Extension: (Adobe Acrobat) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 11\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2017-02-08]
CHR Extension: (Gmail sin conexión) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 11\Extensions\ejidjjhkpiempkbhmpbfngldlkglhimk [2017-02-04]
CHR Extension: (Hojas de cálculo de Google) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 11\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-02-04]
CHR Extension: (Documentos de Google sin conexión) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 11\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2017-02-08]
CHR Extension: (IE Tab) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 11\Extensions\hehijbfgiekmjfkfjpbkbammjbdenadd [2017-02-04]
CHR Extension: (soychile.cl - Noticias de todo nuestro país) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 11\Extensions\kfmkbbiclelmdohlohkbiafbelpnnlda [2017-02-04]
CHR Extension: (khipu) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 11\Extensions\kmmojbkhfhninkelnlcnliacgncnnikf [2017-02-04]
CHR Extension: (Indicadores Economicos Chile) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 11\Extensions\mbclgcdiaebkaffpodlbjgfpanokejde [2017-02-04]
CHR Extension: (Sistema de pagos de Chrome Web Store) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 11\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-02-04]
CHR Extension: (Checker Plus for Gmail™) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 11\Extensions\oeopbcgkkoapgobdbedcemjljbihmemj [2017-02-04]
CHR Extension: (Send from Gmail (by Google)) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 11\Extensions\pgphcomnlaojlmmcjmiddhdapjpbgeoc [2017-02-04]
CHR Extension: (MonkiBu TV y Radios Online) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 11\Extensions\phimhnckkaofkllcoledjilakgbeohli [2017-02-04]
CHR Extension: (Gmail) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 11\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2017-02-04]
CHR Extension: (Chrome Media Router) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 11\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-02-08]
CHR Profile: C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 12 [2020-08-25]
CHR Extension: (Presentaciones de Google) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 12\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-02-21]
CHR Extension: (Google Docs) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 12\Extensions\aohghmighlieiainnegkcijnfilokake [2017-02-21]
CHR Extension: (Google Drive) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 12\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-02-21]
CHR Extension: (YouTube) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 12\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-02-21]
CHR Extension: (Adobe Acrobat - Crear archivos PDF) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 12\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2017-02-21]
CHR Extension: (Hojas de cálculo de Google) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 12\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-02-21]
CHR Extension: (Documentos de Google sin conexión) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 12\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2017-02-21]
CHR Extension: (Sistema de pagos de Chrome Web Store) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 12\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-02-21]
CHR Extension: (Gmail) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 12\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2017-02-21]
CHR Extension: (Chrome Media Router) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 12\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-02-21]
CHR Profile: C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 2 [2020-08-25]
CHR HomePage: Profile 2 -> hxxps://www.google.com/
CHR StartupUrls: Profile 2 -> "hxxps://twitter.com/"
CHR Extension: (Magic Actions for YouTube™) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\abjcfabbhafbcdfjoecdgepllmpfceif [2016-02-11]
CHR Extension: (BIODIGITAL HUMAN) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\agoenciogemlojlhccbcpcfflicgnaak [2015-04-04]
CHR Extension: (Traductor para todos los idiomas) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\amdeidgbmcliegnpcbbkhlflkbdpomhk [2015-08-12]
CHR Extension: (Google Docs) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\aohghmighlieiainnegkcijnfilokake [2015-03-31]
CHR Extension: (Google Drive) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-23]
CHR Extension: (YouTube) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-25]
CHR Extension: (Adblock Plus) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2016-03-08]
CHR Extension: (Adblock de Youtube™) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\cmedhionkhpnakcndndgjdbohmhepckk [2016-03-05]
CHR Extension: (Búsqueda de Google) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-26]
CHR Extension: (Calculator) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\copciehbkikbfnppdndaegnlgkelahfe [2015-03-31]
CHR Extension: (Radios de Chile) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\dhjjhipdhiaimncddilbbpcmnickiakg [2015-03-31]
CHR Extension: (Session Buddy) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\edacconmaakjimmfgnblocblbcdcpbko [2015-03-31]
CHR Extension: (Adobe Acrobat) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2015-11-11]
CHR Extension: (VTchromizer) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\efbjojhplkelaegfbieplglfidafgoka [2015-03-31]
CHR Extension: (Google Calendar) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ejjicmeblgpmajnghnpcppodonldlgfn [2015-10-13]
CHR Extension: (Booking.com for Chrome™) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\fgkeilefmpmbamgcejhjpiecahcbipip [2015-09-21]
CHR Extension: (Documentos de Google sin conexión) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2015-11-19]
CHR Extension: (Google Calendar (por Google)) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\gmbgaklkmjakoegficnlkhebmhkjfich [2016-02-02]
CHR Extension: (Avast Online Security) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\gomekmidlodglbbmalcneegieacbdmki [2016-02-12]
CHR Extension: (Looper for YouTube) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\iggpfpnahkgpnindfkdncknoldgnccdg [2016-02-26]
CHR Extension: (Excel Online) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\iljnkagajgfdmfnnidjijobijlfjfgnb [2015-04-04]
CHR Extension: (World Time Buddy) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\jdhpjomiingppeefgnohkiapmnaeakoj [2015-04-29]
CHR Extension: (khipu) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\kmmojbkhfhninkelnlcnliacgncnnikf [2016-02-08]
CHR Extension: (Sistema de pagos de Chrome Web Store) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-07-29]
CHR Extension: (TabCloud) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\npecfdijgoblfcgagoijgmgejmcpnhof [2015-07-22]
CHR Extension: (Checker Plus for Gmail™) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\oeopbcgkkoapgobdbedcemjljbihmemj [2016-02-18]
CHR Extension: (MonkiBu TV y Radios Online) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\phimhnckkaofkllcoledjilakgbeohli [2016-02-13]
CHR Extension: (Gmail) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-03-31]
CHR Profile: C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 3 [2020-08-25]
CHR HomePage: Profile 3 -> hxxps://www.google.com/
CHR StartupUrls: Profile 3 -> "hxxps://twitter.com/"
CHR Extension: (Magic Actions for YouTube™) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\abjcfabbhafbcdfjoecdgepllmpfceif [2016-08-16]
CHR Extension: (BIODIGITAL HUMAN) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\agoenciogemlojlhccbcpcfflicgnaak [2016-03-11]
CHR Extension: (Traductor para todos los idiomas) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\amdeidgbmcliegnpcbbkhlflkbdpomhk [2016-03-11]
CHR Extension: (Google Docs) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\aohghmighlieiainnegkcijnfilokake [2016-03-11]
CHR Extension: (Google Drive) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-03-11]
CHR Extension: (YouTube) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-03-11]
CHR Extension: (Adblock Plus) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2016-08-23]
CHR Extension: (Adblock de Youtube™) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\cmedhionkhpnakcndndgjdbohmhepckk [2016-03-11]
CHR Extension: (Búsqueda de Google) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2016-03-11]
CHR Extension: (Radios de Chile) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\dhjjhipdhiaimncddilbbpcmnickiakg [2016-03-11]
CHR Extension: (Session Buddy) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\edacconmaakjimmfgnblocblbcdcpbko [2016-04-27]
CHR Extension: (Adobe Acrobat) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2016-03-11]
CHR Extension: (VTchromizer) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\efbjojhplkelaegfbieplglfidafgoka [2016-03-11]
CHR Extension: (Google Calendar) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\ejjicmeblgpmajnghnpcppodonldlgfn [2016-03-11]
CHR Extension: (Booking.com for Chrome™) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\fgkeilefmpmbamgcejhjpiecahcbipip [2016-03-11]
CHR Extension: (Documentos de Google sin conexión) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-03-14]
CHR Extension: (Google Calendar (por Google)) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\gmbgaklkmjakoegficnlkhebmhkjfich [2016-08-26]
CHR Extension: (Avast Online Security) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\gomekmidlodglbbmalcneegieacbdmki [2016-05-20]
CHR Extension: (Looper for YouTube) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\iggpfpnahkgpnindfkdncknoldgnccdg [2016-07-16]
CHR Extension: (Excel Online) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\iljnkagajgfdmfnnidjijobijlfjfgnb [2016-03-11]
CHR Extension: (World Time Buddy) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\jdhpjomiingppeefgnohkiapmnaeakoj [2016-03-11]
CHR Extension: (khipu) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\kmmojbkhfhninkelnlcnliacgncnnikf [2016-03-11]
CHR Extension: (Sistema de pagos de Chrome Web Store) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-04-05]
CHR Extension: (TabCloud) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\npecfdijgoblfcgagoijgmgejmcpnhof [2016-03-11]
CHR Extension: (Checker Plus for Gmail™) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\oeopbcgkkoapgobdbedcemjljbihmemj [2016-08-27]
CHR Extension: (MonkiBu TV y Radios Online) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\phimhnckkaofkllcoledjilakgbeohli [2016-07-02]
CHR Extension: (Gmail) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-03-11]
CHR Extension: (Chrome Media Router) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-08-18]
CHR Profile: C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 6 [2020-08-25]
CHR Profile: C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 7 [2020-08-25]
CHR Extension: (Traductor de Google) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 7\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2016-11-21]
CHR Extension: (Google Docs) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 7\Extensions\aohghmighlieiainnegkcijnfilokake [2016-09-11]
CHR Extension: (Adblock Plus) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 7\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2016-10-26]
CHR Extension: (Adobe Acrobat) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 7\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2017-01-16]
CHR Extension: (Sistema de pagos de Chrome Web Store) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 7\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-01-19]
CHR Extension: (Chrome Media Router) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 7\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-12-16]
CHR Profile: C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 8 [2020-08-25]
CHR HomePage: Profile 8 -> hxxps://www.google.com/
CHR StartupUrls: Profile 8 -> "hxxps://twitter.com/"
CHR Extension: (Presentaciones de Google) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 8\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-01-22]
CHR Extension: (Magic Actions for YouTube™) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 8\Extensions\abjcfabbhafbcdfjoecdgepllmpfceif [2017-01-22]
CHR Extension: (BIODIGITAL HUMAN) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 8\Extensions\agoenciogemlojlhccbcpcfflicgnaak [2017-01-22]
CHR Extension: (Traductor para todos los idiomas) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 8\Extensions\amdeidgbmcliegnpcbbkhlflkbdpomhk [2017-01-22]
CHR Extension: (Google Docs) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 8\Extensions\aohghmighlieiainnegkcijnfilokake [2017-01-22]
CHR Extension: (Google Drive) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 8\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-01-22]
CHR Extension: (YouTube) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 8\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-01-22]
CHR Extension: (Adblock Plus) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 8\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2017-01-22]
CHR Extension: (Adblock de Youtube™) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 8\Extensions\cmedhionkhpnakcndndgjdbohmhepckk [2017-01-22]
CHR Extension: (Radios de Chile) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 8\Extensions\dhjjhipdhiaimncddilbbpcmnickiakg [2017-01-22]
CHR Extension: (Session Buddy) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 8\Extensions\edacconmaakjimmfgnblocblbcdcpbko [2017-01-22]
CHR Extension: (Adobe Acrobat) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 8\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2017-01-22]
CHR Extension: (VTchromizer) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 8\Extensions\efbjojhplkelaegfbieplglfidafgoka [2017-01-22]
CHR Extension: (Google Calendar) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 8\Extensions\ejjicmeblgpmajnghnpcppodonldlgfn [2017-01-22]
CHR Extension: (Hojas de cálculo de Google) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 8\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-01-22]
CHR Extension: (Booking.com for Chrome™) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 8\Extensions\fgkeilefmpmbamgcejhjpiecahcbipip [2017-01-22]
CHR Extension: (Documentos de Google sin conexión) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 8\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2017-01-22]
CHR Extension: (Google Calendar (por Google)) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 8\Extensions\gmbgaklkmjakoegficnlkhebmhkjfich [2017-01-22]
CHR Extension: (Avast Online Security) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 8\Extensions\gomekmidlodglbbmalcneegieacbdmki [2017-01-22]
CHR Extension: (Looper for YouTube) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 8\Extensions\iggpfpnahkgpnindfkdncknoldgnccdg [2017-01-22]
CHR Extension: (Excel Online) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 8\Extensions\iljnkagajgfdmfnnidjijobijlfjfgnb [2017-01-22]
CHR Extension: (World Time Buddy) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 8\Extensions\jdhpjomiingppeefgnohkiapmnaeakoj [2017-01-22]
CHR Extension: (Knasta) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 8\Extensions\jmldaomlnfihbdoghdbikbbignjlkbml [2017-01-22]
CHR Extension: (khipu) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 8\Extensions\kmmojbkhfhninkelnlcnliacgncnnikf [2017-01-22]
CHR Extension: (Sistema de pagos de Chrome Web Store) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 8\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-01-22]
CHR Extension: (TabCloud) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 8\Extensions\npecfdijgoblfcgagoijgmgejmcpnhof [2017-01-22]
CHR Extension: (Checker Plus for Gmail™) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 8\Extensions\oeopbcgkkoapgobdbedcemjljbihmemj [2017-01-25]
CHR Extension: (MonkiBu TV y Radios Online) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 8\Extensions\phimhnckkaofkllcoledjilakgbeohli [2017-01-22]
CHR Extension: (Gmail) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 8\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2017-01-22]
CHR Extension: (Chrome Media Router) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 8\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-01-22]
CHR Profile: C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 9 [2020-08-26]
CHR Notifications: Profile 9 -> hxxps://meet.google.com; hxxps://www.psicologosonline.cl
CHR HomePage: Profile 9 -> hxxps://www.google.com/
CHR StartupUrls: Profile 9 -> "hxxps://twitter.com/"
CHR Extension: (Easy Auto Refresh) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 9\Extensions\aabcgdmkeabbnleenpncegpcngjpnjkc [2019-07-01]
CHR Extension: (Traductor de Google) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 9\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2020-03-18]
CHR Extension: (Magic Actions for YouTube™) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 9\Extensions\abjcfabbhafbcdfjoecdgepllmpfceif [2020-08-20]
CHR Extension: (BIODIGITAL HUMAN) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 9\Extensions\agoenciogemlojlhccbcpcfflicgnaak [2017-01-30]
CHR Extension: (Traductor para todos los idiomas) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 9\Extensions\amdeidgbmcliegnpcbbkhlflkbdpomhk [2017-08-16]
FRST Segunda parte
CHR Extension: (Adblock Plus - bloqueador de anuncios gratis) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 9\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2020-08-07]
CHR Extension: (Adblock para Youtube™) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 9\Extensions\cmedhionkhpnakcndndgjdbohmhepckk [2019-03-24]
CHR Extension: (Radios de Chile) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 9\Extensions\dhjjhipdhiaimncddilbbpcmnickiakg [2017-01-30]
CHR Extension: (Session Buddy) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 9\Extensions\edacconmaakjimmfgnblocblbcdcpbko [2020-05-10]
CHR Extension: (Adobe Acrobat) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 9\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2020-07-31]
CHR Extension: (VT4Browsers) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 9\Extensions\efbjojhplkelaegfbieplglfidafgoka [2020-04-17]
CHR Extension: (Google Calendar) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 9\Extensions\ejjicmeblgpmajnghnpcppodonldlgfn [2017-01-30]
CHR Extension: (Booking.com for Chrome™) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 9\Extensions\fgkeilefmpmbamgcejhjpiecahcbipip [2017-03-13]
CHR Extension: (Stylish - temas a medida para cada sitio web.) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 9\Extensions\fjnbnpbmkenffdnngjfgmeleoegfcffe [2019-01-06]
CHR Extension: (Google Calendar) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 9\Extensions\gmbgaklkmjakoegficnlkhebmhkjfich [2020-06-11]
CHR Extension: (Avast Online Security) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 9\Extensions\gomekmidlodglbbmalcneegieacbdmki [2020-06-03]
CHR Extension: (Photo Calendar 2020) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 9\Extensions\icolobglimlklcdpecoaecmdhlehbgkg [2020-01-19]
CHR Extension: (Looper for YouTube) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 9\Extensions\iggpfpnahkgpnindfkdncknoldgnccdg [2020-04-15]
CHR Extension: (Excel Online) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 9\Extensions\iljnkagajgfdmfnnidjijobijlfjfgnb [2017-01-30]
CHR Extension: (World Time Buddy) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 9\Extensions\jdhpjomiingppeefgnohkiapmnaeakoj [2017-01-30]
CHR Extension: (Video Blocker) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 9\Extensions\jknkjnpcbbgcbdbaampbjlhkcghmgfhk [2020-01-12]
CHR Extension: (Knasta) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 9\Extensions\jmldaomlnfihbdoghdbikbbignjlkbml [2020-02-27]
CHR Extension: (khipu) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 9\Extensions\kmmojbkhfhninkelnlcnliacgncnnikf [2017-01-30]
CHR Extension: (Safe Torrent Scanner) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 9\Extensions\makcojoppodhcgmmchohadhpkicoafka [2020-08-23]
CHR Extension: (Reload All Tabs) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 9\Extensions\midkcinmplflbiflboepnahkboeonkam [2018-07-30]
CHR Extension: (Tracking de correo para Gmail - Mailtrack) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 9\Extensions\ndnaehgpjlnokgebbaldlmgkapkpjkkb [2020-08-25]
CHR Extension: (Sistema de pagos de Chrome Web Store) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 9\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-04]
CHR Extension: (TabCloud) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 9\Extensions\npecfdijgoblfcgagoijgmgejmcpnhof [2017-01-30]
CHR Extension: (Checker Plus for Gmail™) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 9\Extensions\oeopbcgkkoapgobdbedcemjljbihmemj [2020-08-16]
CHR Extension: (MonkiBu TV y Radios Online) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 9\Extensions\phimhnckkaofkllcoledjilakgbeohli [2020-04-03]
CHR Extension: (Chrome Media Router) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 9\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-07-21]
CHR Profile: C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\System Profile [2020-08-25]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCChromeExtn\WCChromeExtn.crx [2013-12-21]
CHR HKLM-x32\...\Chrome\Extension: [makcojoppodhcgmmchohadhpkicoafka]
==================== Servicios (Lista blanca) ===================
(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)
R2 ADExchange; C:\Program Files (x86)\Common Files\ArcSoft\esinter\Bin\eservutil.exe [44736 2014-03-11] (ArcSoft, Inc. -> ArcSoft, Inc.)
S3 AdobeFlashPlayerUpdateSvc; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-08-11] (Adobe Inc. -> Adobe)
S4 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [3117648 2019-07-04] (Adobe Inc. -> Adobe Systems, Incorporated)
S4 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2888272 2019-07-04] (Adobe Inc. -> Adobe Systems, Incorporated)
R2 ApHidMonitorService; C:\Program Files\Apoint2K\HidMonitorSvc.exe [87384 2015-02-04] (Alps Electric Co., LTD. -> Alps Electric Co., Ltd.)
R2 DigiRefresh; C:\Program Files\Avid\Pro Tools\MMERefresh.exe [117760 2019-07-10] (Avid Technology, Inc.) [Archivo no firmado]
S3 digiSPTIService64; C:\Program Files\Avid\Pro Tools\digisptiservice64.exe [197632 2019-07-10] (Avid Technology, Inc.) [Archivo no firmado]
R2 DIgLiseService; C:\Program Files (x86)\DIgSILENT\License Server\diglise.exe [1307440 2014-10-30] (DIgSILENT GmbH -> DIgSILENT GmbH)
S4 ekrn; C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe [2371760 2020-07-30] (ESET, spol. s r.o. -> ESET)
S3 ekrnEpfw; C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe [2371760 2020-07-30] (ESET, spol. s r.o. -> ESET)
S3 hpqwmiex; C:\Users\Soulless\AppData\Roaming\Hewlett-Packard\hpqwmiex.exe [794112 2014-03-15] (Hewlett-Packard Company) [Archivo no firmado]
R2 HPWMISVC; C:\Program Files (x86)\Hewlett-Packard\HP System Event\HPWMISVC.exe [1039160 2013-10-08] (Hewlett-Packard Company -> Hewlett-Packard Development Company, L.P.)
R2 HuaweiHiSuiteService64.exe; C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe [192320 2020-06-28] (Huawei Technologies Co., Ltd. -> )
S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe [73728 2004-10-22] (Macrovision Corporation) [Archivo no firmado]
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [733696 2013-05-11] (Intel(R) Corporation) [Archivo no firmado]
S2 Launch TotalMedia Theatre 6 Driver; C:\Program Files (x86)\ArcSoft\TotalMedia Theatre 6\TMTLaunchDriverServer.exe [608256 2014-03-04] (ArcSoft, Inc.) [Archivo no firmado]
S2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [6970968 2020-08-25] (Malwarebytes Inc -> Malwarebytes)
R2 nordvpn-service; C:\Program Files\NordVPN\nordvpn-service.exe [269584 2020-07-10] (TEFINCOM S.A. -> TEFINCOM S.A.)
R2 RzWizardService; C:\Program Files (x86)\Razer\RzWizard\RzWizardService.exe [368128 2015-07-23] (Razer Inc.) [Archivo no firmado]
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [361824 2017-01-12] (Microsoft Corporation -> Microsoft Corporation)
===================== Controladores (Lista blanca) ===================
(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)
R1 ArcCtrl; C:\Windows\System32\drivers\ArcCtrl.sys [3315392 2013-11-20] (ArcSoft, Inc. -> )
R3 bomebus; C:\Windows\System32\drivers\bomebus.sys [56376 2018-05-16] (Bome Software GmbH & Co.KG -> Bome Software GmbH & Co. KG)
R3 clwvd6; C:\Windows\system32\DRIVERS\clwvd6.sys [41704 2013-10-29] (CyberLink Corp. -> CyberLink Corporation)
S3 DFX11_1; C:\Windows\system32\drivers\dfx11_1x64.sys [28008 2012-12-13] (Power Technology -> Windows (R) Win 7 DDK provider)
R1 dtsoftbus01; C:\Windows\System32\drivers\dtsoftbus01.sys [283064 2014-03-15] (Disc Soft Ltd -> Disc Soft Ltd)
R1 eamonm; C:\Windows\System32\DRIVERS\eamonm.sys [159528 2020-07-11] (ESET, spol. s r.o. -> ESET)
R0 edevmon; C:\Windows\System32\DRIVERS\edevmon.sys [106640 2020-07-11] (ESET, spol. s r.o. -> ESET)
S0 eelam; C:\Windows\System32\DRIVERS\eelam.sys [15800 2019-06-07] (Microsoft Windows Early Launch Anti-malware Publisher -> ESET)
R1 ehdrv; C:\Windows\system32\DRIVERS\ehdrv.sys [195456 2020-07-11] (ESET, spol. s r.o. -> ESET)
R1 epfwwfp; C:\Windows\system32\DRIVERS\epfwwfp.sys [116488 2020-07-11] (ESET, spol. s r.o. -> ESET)
S3 ew_usbccgpfilter; C:\Windows\System32\drivers\ew_usbccgpfilter.sys [18944 2020-06-28] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
U5 hw_usbdev; C:\Windows\System32\Drivers\hw_usbdev.sys [116864 2020-06-28] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
S3 libusbK; C:\Windows\System32\drivers\libusbK.sys [47928 2018-04-30] (Travis Lee Robinson -> hxxp://libusb-win32.sourceforge.net)
S0 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [248968 2020-08-25] (Malwarebytes Inc -> Malwarebytes)
R3 mlkumidi; C:\Windows\system32\drivers\mlkumidi.sys [55856 2014-08-30] (MusicLab, Inc. -> MusicLab, Inc.)
R3 netr28x; C:\Windows\system32\DRIVERS\netr28x.sys [2483376 2013-12-02] (Mediatek Inc. -> Ralink Technology, Corp.)
R3 nlwt; C:\Windows\system32\DRIVERS\nlwt.sys [29888 2020-06-10] (TEFINCOM S.A. -> WireGuard LLC)
S3 RSP2STOR; C:\Windows\system32\DRIVERS\RtsP2Stor.sys [290008 2013-07-05] (Realtek Semiconductor Corp -> Realtek Semiconductor Corp.)
R3 rtbth; C:\Windows\System32\drivers\rtbth.sys [1204424 2013-12-02] (Mediatek Inc. -> Ralink Technology, Corp.)
U5 RTSPER; C:\Windows\System32\Drivers\RTSPER.sys [418008 2013-06-24] (Realtek Semiconductor Corp -> Realsil Semiconductor Corporation)
S2 Sentinel; C:\Windows\SysWOW64\Drivers\SENTINEL.SYS [76288 2002-12-17] (Rainbow Technologies, Inc.) [Archivo no firmado]
S3 ssudmdm; C:\Windows\system32\DRIVERS\ssudmdm.sys [166760 2020-04-24] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 ssudserd; C:\Windows\system32\DRIVERS\ssudserd.sys [166288 2017-05-18] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R3 tap0901; C:\Windows\system32\DRIVERS\tap0901.sys [27136 2016-04-21] (OpenVPN Technologies, Inc. -> The OpenVPN Project)
S3 taphss6; C:\Windows\system32\DRIVERS\taphss6.sys [42184 2014-03-24] (AnchorFree Inc -> Anchorfree Inc.)
R3 tapnordvpn; C:\Windows\system32\DRIVERS\tapnordvpn.sys [35592 2020-06-09] (TEFINCOM S.A. -> The OpenVPN Project)
S3 tapSF0901; C:\Windows\system32\DRIVERS\tapSF0901.sys [39104 2014-03-21] (Spotflux, Inc -> Spotflux, Inc.)
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [46600 2017-02-10] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [274776 2017-01-12] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [117592 2017-01-12] (Microsoft Windows -> Microsoft Corporation)
S3 WinDivert1.1; C:\Program Files\KMSpico\WinDivert.sys [35376 2014-03-15] (Nemea Mjukvaruutveckling AB -> Basil Projects)
S3 WirelessButtonDriver; C:\Windows\System32\drivers\WirelessButtonDriver64.sys [31840 2016-03-23] (Hewlett-Packard Company -> HP)
R3 WirelessButtonDriver64; C:\Windows\system32\DRIVERS\WirelessButtonDriver64.sys [31840 2016-03-23] (Hewlett-Packard Company -> HP)
S3 bomemidi; \SystemRoot\system32\drivers\bomemidi.sys [X]
S3 ew_hwusbdev; \SystemRoot\system32\DRIVERS\ew_hwusbdev.sys [X]
S3 ew_usbenumfilter; \SystemRoot\System32\drivers\ew_usbenumfilter.sys [X]
S3 huawei_cdcacm; \SystemRoot\system32\DRIVERS\ew_jucdcacm.sys [X]
S3 huawei_enumerator; \SystemRoot\System32\drivers\ew_jubusenum.sys [X]
S3 huawei_ext_ctrl; \SystemRoot\System32\drivers\ew_juextctrl.sys [X]
S3 huawei_wwanecm; \SystemRoot\system32\DRIVERS\ew_juwwanecm.sys [X]
S4 IUFileFilter; \??\C:\Program Files (x86)\IObit\IObit Uninstaller\drivers\win7_amd64\IUFileFilter.sys [X]
S3 IUProcessFilter; \??\C:\Program Files (x86)\IObit\IObit Uninstaller\drivers\win7_amd64\IUProcessFilter.sys [X]
S3 IURegistryFilter; \??\C:\Program Files (x86)\IObit\IObit Uninstaller\drivers\win7_amd64\IURegistryFilter.sys [X]
==================== NetSvcs (Lista blanca) ===================
(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)
==================== Un mes (creado) ===================
(Si una entrada es incluida en el fixlist, el archivo/carpeta será eliminado/a.)
2020-08-26 23:07 - 2020-08-26 23:07 - 000000000 ____D C:\Users\Soulless\Downloads\FRST-OlderVersion
2020-08-26 22:45 - 2020-08-26 22:46 - 000000000 ___HD C:\$SysReset
2020-08-26 22:06 - 2020-08-26 22:07 - 000000820 _____ C:\Users\Soulless\Desktop\ESET Online Scanner.lnk
2020-08-26 22:05 - 2020-08-26 22:07 - 014860896 _____ (ESET spol. s r.o.) C:\Users\Soulless\Downloads\ESETOnlineScanner_ESL.exe
2020-08-25 23:18 - 2020-08-25 23:32 - 000080268 _____ C:\Users\Soulless\Downloads\Addition.txt
2020-08-25 23:15 - 2020-08-26 23:10 - 000065196 _____ C:\Users\Soulless\Downloads\FRST.txt
2020-08-25 23:14 - 2020-08-26 23:09 - 000000000 ____D C:\FRST
2020-08-25 23:07 - 2020-08-26 23:07 - 002298368 _____ (Farbar) C:\Users\Soulless\Downloads\FRST64.exe
2020-08-25 23:05 - 2020-08-25 23:05 - 000001538 _____ C:\Users\Soulless\Desktop\informa.txt
2020-08-25 22:53 - 2020-08-25 22:58 - 000000000 ____D C:\Users\Soulless\Desktop\WINDOWS
2020-08-25 22:25 - 2020-08-25 22:37 - 3545104384 _____ C:\Users\Soulless\Downloads\W8.1Pro-x64 - F18.iso
2020-08-25 19:26 - 2020-08-25 19:26 - 000013054 _____ C:\Users\Soulless\Documents\cc_20200825_1925152.reg
2020-08-25 19:24 - 2020-08-25 19:24 - 000177640 _____ C:\Users\Soulless\Documents\cc_20200825_192358.reg
2020-08-25 19:04 - 2020-08-25 19:07 - 000000000 ____D C:\Program Files\CCleaner
2020-08-25 19:04 - 2020-08-25 19:05 - 000004128 _____ C:\Windows\system32\Tasks\CCleaner Update
2020-08-25 19:04 - 2020-08-25 19:05 - 000002832 _____ C:\Windows\system32\Tasks\CCleanerSkipUAC
2020-08-25 19:04 - 2020-08-25 19:04 - 000000834 _____ C:\Users\Public\Desktop\CCleaner.lnk
2020-08-25 19:04 - 2020-08-25 19:04 - 000000834 _____ C:\ProgramData\Desktop\CCleaner.lnk
2020-08-25 19:04 - 2020-08-25 19:04 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2020-08-25 18:52 - 2020-08-25 18:52 - 000000000 ____D C:\Users\Soulless\Downloads\5.70.7909-PVP
2020-08-25 18:37 - 2020-08-25 18:38 - 070526590 _____ C:\Users\Soulless\Downloads\5.70.7909-PVP.rar
2020-08-25 18:21 - 2020-08-25 18:33 - 000002178 _____ C:\Users\Soulless\Desktop\Rkill.txt
2020-08-25 18:21 - 2020-08-25 18:21 - 001802704 _____ (Bleeping Computer, LLC) C:\Users\Soulless\Downloads\iExplore.exe
2020-08-25 18:21 - 2020-08-25 18:21 - 001790024 _____ (Malwarebytes) C:\Users\Soulless\Downloads\JRT.exe
2020-08-25 17:34 - 2020-08-25 17:34 - 000001964 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2020-08-25 17:34 - 2020-08-25 17:34 - 000001964 _____ C:\ProgramData\Desktop\Malwarebytes.lnk
2020-08-25 17:33 - 2020-08-25 17:33 - 000248968 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamswissarmy.sys
2020-08-25 17:33 - 2020-08-25 17:32 - 000153312 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbae64.sys
2020-08-25 17:32 - 2020-08-25 17:32 - 000000000 ____D C:\ProgramData\Malwarebytes
2020-08-25 17:32 - 2020-08-25 17:32 - 000000000 ____D C:\Program Files\Malwarebytes
2020-08-25 17:25 - 2020-08-25 17:31 - 000058699 _____ C:\Users\Soulless\Desktop\mb-clean-results.txt
2020-08-25 17:25 - 2020-08-25 17:25 - 000858912 _____ (Malwarebytes) C:\Users\Soulless\Downloads\mb-clean-3.1.0.1035.exe
2020-08-25 16:34 - 2020-08-25 16:34 - 000000144 _____ C:\Windows\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2020-08-25 15:57 - 2020-08-25 15:57 - 000002370 _____ C:\Users\Soulless\Desktop\AdwCleaner[C05].txt
2020-08-25 14:18 - 2020-08-05 19:47 - 000477696 _____ (Microsoft Corporation) C:\Windows\system32\puiobj.dll
2020-08-25 14:18 - 2020-08-05 19:19 - 000367616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\puiobj.dll
2020-08-25 14:18 - 2020-08-05 19:00 - 001098240 _____ (Microsoft Corporation) C:\Windows\system32\localspl.dll
2020-08-25 14:18 - 2020-08-04 00:08 - 000445440 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll
2020-08-25 14:18 - 2020-08-03 23:58 - 001483264 _____ (Microsoft Corporation) C:\Windows\system32\wsecedit.dll
2020-08-25 14:18 - 2020-08-03 23:39 - 001441792 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2020-08-25 14:18 - 2020-08-03 23:39 - 000324096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certcli.dll
2020-08-25 14:18 - 2020-08-03 23:35 - 000842240 _____ (Microsoft Corporation) C:\Windows\system32\netlogon.dll
2020-08-25 14:18 - 2020-08-03 23:32 - 001338368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wsecedit.dll
2020-08-25 14:18 - 2020-08-03 23:15 - 000698880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netlogon.dll
2020-08-25 14:18 - 2020-07-23 03:33 - 000559616 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2020-08-25 14:18 - 2020-07-19 06:45 - 000431352 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2020-08-25 14:18 - 2020-07-19 06:39 - 000376056 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2020-08-25 14:18 - 2020-07-19 06:36 - 000955432 _____ (Microsoft Corporation) C:\Windows\system32\mfmp4srcsnk.dll
2020-08-25 14:18 - 2020-07-19 05:45 - 000060416 _____ (Microsoft Corporation) C:\Windows\system32\mf3216.dll
2020-08-25 14:18 - 2020-07-19 04:41 - 000950784 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2020-08-25 14:18 - 2020-07-19 04:37 - 001756160 _____ (Microsoft Corporation) C:\Windows\system32\GdiPlus.dll
2020-08-25 14:18 - 2020-07-19 04:15 - 000453120 _____ (Microsoft Corporation) C:\Windows\system32\upnphost.dll
2020-08-25 14:18 - 2020-07-19 04:10 - 001730048 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Immersive.dll
2020-08-25 14:18 - 2020-07-18 02:36 - 000317176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2020-08-25 14:18 - 2020-07-18 02:31 - 000317192 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
2020-08-25 14:18 - 2020-07-18 02:24 - 000788104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfmp4srcsnk.dll
2020-08-25 14:18 - 2020-07-18 00:27 - 000046592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mf3216.dll
2020-08-25 14:18 - 2020-07-17 23:40 - 000772096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2020-08-25 14:18 - 2020-07-17 23:38 - 001494016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\GdiPlus.dll
2020-08-25 14:18 - 2020-07-17 23:23 - 000329216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\upnphost.dll
2020-08-25 14:18 - 2020-07-17 23:17 - 001548288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Immersive.dll
2020-08-25 14:18 - 2020-07-17 15:19 - 001542672 _____ (Microsoft Corporation) C:\Windows\system32\user32.dll
2020-08-25 14:18 - 2020-07-16 02:20 - 002745080 _____ (Microsoft Corporation) C:\Windows\system32\WMVDECOD.DLL
2020-08-25 14:18 - 2020-07-16 02:18 - 002528696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVDECOD.DLL
2020-08-25 14:18 - 2020-07-14 04:11 - 001370688 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2020-08-25 14:18 - 2020-07-14 00:55 - 025756672 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2020-08-25 14:18 - 2020-07-14 00:43 - 004169216 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2020-08-25 14:18 - 2020-07-14 00:31 - 000581120 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2020-08-25 14:18 - 2020-07-14 00:19 - 005499392 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2020-08-25 14:18 - 2020-07-14 00:19 - 000785408 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2020-08-25 14:18 - 2020-07-14 00:15 - 020291584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2020-08-25 14:18 - 2020-07-14 00:00 - 000498176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2020-08-25 14:18 - 2020-07-13 23:51 - 001993728 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2020-08-25 14:18 - 2020-07-13 23:51 - 001033216 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll
2020-08-25 14:18 - 2020-07-13 23:50 - 000653824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2020-08-25 14:18 - 2020-07-13 23:43 - 000809472 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2020-08-25 14:18 - 2020-07-13 23:42 - 015479296 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2020-08-25 14:18 - 2020-07-13 23:42 - 001384448 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2020-08-25 14:18 - 2020-07-13 23:30 - 000880640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcomm.dll
2020-08-25 14:18 - 2020-07-13 23:29 - 004859392 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2020-08-25 14:18 - 2020-07-13 23:27 - 004111872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2020-08-25 14:18 - 2020-07-13 23:27 - 001088512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2020-08-25 14:18 - 2020-07-13 23:25 - 001559552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll
2020-08-25 14:18 - 2020-07-13 23:25 - 000696320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2020-08-25 14:18 - 2020-07-13 23:21 - 013861888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2020-08-25 14:18 - 2020-07-13 23:18 - 001566720 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2020-08-25 14:18 - 2020-07-13 23:07 - 004387328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2020-08-25 14:18 - 2020-07-13 23:07 - 000801280 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2020-08-25 14:18 - 2020-07-13 23:03 - 001341952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2020-08-25 14:18 - 2020-07-13 23:01 - 000710656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2020-08-25 14:18 - 2020-07-13 21:17 - 001311744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msjet40.dll
2020-08-25 14:18 - 2020-07-13 21:17 - 000475648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxbde40.dll
2020-08-25 14:18 - 2020-07-13 21:17 - 000353792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrd3x40.dll
2020-08-25 14:18 - 2020-07-11 15:33 - 007363320 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2020-08-25 14:18 - 2020-07-11 12:40 - 000313856 _____ (Microsoft Corporation) C:\Windows\system32\tapisrv.dll
2020-08-25 14:18 - 2020-07-11 12:29 - 000671744 _____ (Microsoft Corporation) C:\Windows\system32\wiaservc.dll
2020-08-25 14:18 - 2020-07-11 12:17 - 000254976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tapisrv.dll
2020-08-25 14:18 - 2020-07-11 12:08 - 000656384 _____ (Microsoft Corporation) C:\Windows\system32\dnsapi.dll
2020-08-25 14:18 - 2020-07-11 12:07 - 000252928 _____ (Microsoft Corporation) C:\Windows\system32\dnsrslvr.dll
2020-08-25 14:18 - 2020-07-11 11:57 - 000109568 _____ (Microsoft Corporation) C:\Windows\system32\fdSSDP.dll
2020-08-25 14:18 - 2020-07-11 11:54 - 000499712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dnsapi.dll
2020-08-25 14:18 - 2020-07-11 11:53 - 001377792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user32.dll
2020-08-25 14:18 - 2020-07-11 11:47 - 000092672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fdSSDP.dll
2020-08-25 14:18 - 2020-07-09 19:33 - 000629504 _____ (Microsoft Corporation) C:\Windows\system32\MP4SDECD.DLL
2020-08-25 14:18 - 2020-07-09 19:30 - 000464184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MP4SDECD.DLL
2020-08-25 14:18 - 2020-07-04 13:06 - 000033792 _____ (Microsoft Corporation) C:\Windows\system32\msisip.dll
2020-08-25 14:18 - 2020-07-04 12:46 - 003331584 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2020-08-25 14:18 - 2020-07-04 12:35 - 000026624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msisip.dll
2020-08-25 14:18 - 2020-07-04 12:23 - 003640832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll
2020-08-25 14:18 - 2020-07-02 18:26 - 000801792 _____ (Microsoft Corporation) C:\Windows\system32\cscsvc.dll
2020-08-25 14:18 - 2020-06-30 13:27 - 000955904 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentExtensions.dll
2020-08-25 14:18 - 2020-06-28 05:16 - 001210112 _____ (Microsoft Corporation) C:\Windows\system32\WMADMOD.DLL
2020-08-25 14:18 - 2020-06-28 04:30 - 001037584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMADMOD.DLL
2020-08-25 14:16 - 2020-08-15 00:51 - 000043520 _____ (Microsoft Corporation) C:\Windows\system32\rasmxs.dll
2020-08-25 14:16 - 2020-08-15 00:51 - 000031232 _____ (Microsoft Corporation) C:\Windows\system32\rasser.dll
2020-08-25 14:16 - 2020-08-15 00:36 - 000428544 _____ (Microsoft Corporation) C:\Windows\system32\rasplap.dll
2020-08-25 14:16 - 2020-08-15 00:16 - 000033792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rasmxs.dll
2020-08-25 14:16 - 2020-08-15 00:16 - 000023040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rasser.dll
2020-08-25 14:16 - 2020-08-15 00:05 - 000880640 _____ (Microsoft Corporation) C:\Windows\system32\rasdlg.dll
2020-08-25 14:16 - 2020-08-15 00:05 - 000401408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rasplap.dll
2020-08-25 14:16 - 2020-08-14 23:55 - 000963072 _____ (Microsoft Corporation) C:\Windows\system32\rasgcw.dll
2020-08-25 14:16 - 2020-08-14 23:48 - 001080320 _____ (Microsoft Corporation) C:\Windows\system32\IKEEXT.DLL
2020-08-25 14:16 - 2020-08-14 23:42 - 000796160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rasdlg.dll
2020-08-25 14:16 - 2020-08-14 23:39 - 000424448 _____ (Microsoft Corporation) C:\Windows\system32\mprapi.dll
2020-08-25 14:16 - 2020-08-14 23:35 - 000856064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rasgcw.dll
2020-08-25 14:16 - 2020-08-14 23:28 - 000542720 _____ (Microsoft Corporation) C:\Windows\system32\rasmans.dll
2020-08-25 14:16 - 2020-08-14 23:26 - 000700928 _____ (Microsoft Corporation) C:\Windows\system32\rasapi32.dll
2020-08-25 14:16 - 2020-08-14 23:24 - 000352768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mprapi.dll
2020-08-25 14:16 - 2020-08-14 23:16 - 000629248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rasapi32.dll
2020-08-25 00:37 - 2020-08-25 17:34 - 000001976 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2020-08-25 00:32 - 2020-08-25 00:32 - 000000000 ____D C:\Users\Soulless\Downloads\4.1.2.73-PVP
2020-08-25 00:30 - 2020-08-25 00:31 - 185757550 _____ C:\Users\Soulless\Downloads\4.1.2.73-PVP.rar
2020-08-25 00:25 - 2020-08-25 00:25 - 000000000 _____ C:\Windows\d.bat
2020-08-25 00:25 - 2020-08-23 16:36 - 000000320 _____ C:\Windows\e.reg
2020-08-25 00:25 - 2020-08-23 16:36 - 000000302 _____ C:\Windows\mn.reg
2020-08-25 00:25 - 2020-08-23 16:36 - 000000302 _____ C:\Windows\mf.reg
2020-08-25 00:25 - 2020-08-23 16:36 - 000000001 _____ C:\Windows\y.txt
2020-08-23 18:42 - 2020-08-23 18:43 - 032433805 _____ C:\Users\Soulless\Downloads\Spotify Mod v8.5.71.723.apk
2020-08-23 12:12 - 2020-08-25 05:37 - 000000000 ____D C:\Users\Soulless\AppData\LocalLow\uTorrent
2020-08-23 12:11 - 2020-08-23 12:11 - 000319046 _____ C:\Users\Soulless\Downloads\Rad [NSP] [Switch-Torrents.com].torrent
2020-08-22 18:35 - 2020-08-22 18:35 - 000002971 _____ C:\Users\Soulless\Downloads\W.A. Production - MIDIQ 1.0.0 VSTi x64 [2019] [rutracker-5811455].torrent
2020-08-21 23:16 - 2020-08-21 23:16 - 032847046 _____ C:\Users\Soulless\Downloads\Spotify-v8.5.68.904-Mod.apk
2020-08-21 23:14 - 2020-08-21 23:14 - 025196315 _____ C:\Users\Soulless\Downloads\SPOTIFY-MOD-APK-8.5.71.723.apk
2020-08-21 16:18 - 2020-08-21 17:09 - 3007381012 _____ C:\Users\Soulless\Downloads\Taiko no Tatsujin Drum n Fun [01002C000B552800][v1507328].nsp.rar
2020-08-21 15:52 - 2020-08-21 16:07 - 3434121994 _____ C:\Users\Soulless\Downloads\Taiko_no_Tatsujin_Drum_and_Fun___01002C000B552000__v0_.nsp
2020-08-20 02:17 - 2020-08-20 02:17 - 000055584 _____ C:\Users\Soulless\Downloads\Hollywood Edge - The Car Chase Scene (wav) [rutracker-2619700].torrent
2020-08-20 01:58 - 2020-08-20 01:59 - 000100431 _____ C:\Users\Soulless\Downloads\Blastwave FX - Crashes and Explosions (WAV) [rutracker-5420949].torrent
2020-08-20 01:43 - 2020-08-20 01:43 - 000008130 _____ C:\Users\Soulless\Downloads\car_brake_crash-Cam_Martinez-567114981.wav
2020-08-19 17:00 - 2020-08-19 17:01 - 046430908 _____ C:\Users\Soulless\Downloads\✅Descargar Malwarebytes Premium 4.1.73 [Ultima Version 2020]👉Licencia Definitiva Sin Errores👈Full ✅.mp4
2020-08-19 16:58 - 2020-08-19 16:58 - 000000000 ____D C:\Users\Soulless\Downloads\MalwarebytesPremium_4.1.2.73_PCSOF
2020-08-19 16:55 - 2020-08-19 16:57 - 192729902 _____ C:\Users\Soulless\Downloads\MalwarebytesPremium_4.1.2.73_PCSOF.rar
2020-08-19 16:36 - 2020-08-19 16:36 - 008414384 _____ (Malwarebytes) C:\Users\Soulless\Downloads\adwcleaner_8.0.7.exe
2020-08-19 16:35 - 2020-08-19 16:35 - 000000905 _____ C:\Users\Soulless\Desktop\µTorrent.lnk
2020-08-19 16:35 - 2020-08-19 16:35 - 000000885 _____ C:\Users\Soulless\AppData\Roaming\Microsoft\Windows\Start Menu\µTorrent.lnk
2020-08-19 16:31 - 2020-08-19 16:31 - 000013511 _____ C:\Users\Soulless\Downloads\Malwarebytes Premium 4.1.2.73 RePack by Emir Candan [2020,Multi Ru] [rutracker-5919755].torrent
2020-08-18 20:06 - 2020-08-18 20:06 - 000071738 _____ C:\Users\Soulless\Downloads\Anexo de productos.pdf
2020-08-18 20:05 - 2020-08-18 20:05 - 000097872 _____ C:\Users\Soulless\Downloads\FATCA CRS.pdf
2020-08-18 20:05 - 2020-08-18 20:05 - 000008017 _____ C:\Users\Soulless\Downloads\Registro Firmas.pdf
2020-08-18 20:04 - 2020-08-18 20:04 - 000352227 _____ C:\Users\Soulless\Downloads\Contrato Unificado.pdf
2020-08-18 17:09 - 2020-08-18 17:09 - 000113803 _____ C:\Users\Soulless\Downloads\Solicitud_Simcard_16.898.047-7.pdf
2020-08-17 11:47 - 2020-08-17 11:47 - 000198296 _____ C:\Users\Soulless\Downloads\COD. RESOL 1298.pdf
2020-08-17 01:01 - 2020-08-17 01:01 - 000001537 _____ C:\Users\Soulless\Downloads\FrozenPlain - Obelisk 1.1.6 VSTi, AUi WIN.OSX x86 x64 [06.2020] [rutracker-5911544].torrent
2020-08-15 22:54 - 2020-08-15 22:54 - 000142791 _____ C:\Users\Soulless\Downloads\Human Fall Flat [NSP] [Switch-Torrents.com].torrent
2020-08-15 04:12 - 2020-08-15 04:12 - 000000000 ____D C:\Users\Soulless\Downloads\Nro2Nsp.3.3.6.-.Beta.4
2020-08-15 04:04 - 2020-08-15 04:04 - 002596298 _____ C:\Users\Soulless\Downloads\Nro2Nsp.3.3.6.-.Beta.4.rar
2020-08-15 02:53 - 2020-08-15 02:53 - 000000000 ____D C:\Users\Soulless\Downloads\pSNES + NSP by MelonKoRn
2020-08-15 02:13 - 2020-08-15 02:13 - 004495695 _____ C:\Users\Soulless\Downloads\pSNES + NSP by MelonKoRn.rar
2020-08-15 02:08 - 2020-08-15 02:08 - 000000000 ____D C:\Users\Soulless\Downloads\psnes
2020-08-15 02:07 - 2020-08-15 02:07 - 015604781 _____ C:\Users\Soulless\Downloads\psnes.rar
2020-08-15 02:04 - 2020-08-15 02:10 - 501039649 _____ C:\Users\Soulless\Downloads\Retroarch Navito Switch.zip
2020-08-15 00:23 - 2020-08-15 00:25 - 006933361 _____ C:\Users\Soulless\Downloads\atmosphere-0.14.1-master-ee5a095c+hbl-2.3.4+hbmenu-3.3.0.zip
2020-08-14 15:27 - 2020-08-14 15:27 - 000000000 ____D C:\Users\Soulless\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
2020-08-14 01:30 - 2020-08-14 01:31 - 000012909 _____ C:\Users\Soulless\Downloads\RetroArch_01000ADEFA696969.nsp [Switch-Torrents.com].torrent
2020-08-13 23:49 - 2020-07-20 18:45 - 000000000 ____D C:\Users\Soulless\Downloads\UPDATE OFFLINE 10.1.0
2020-08-13 23:23 - 2020-08-13 23:25 - 447951561 _____ C:\Users\Soulless\Downloads\UPDATE OFFLINE 10.1.0.rar
2020-08-13 23:05 - 2020-08-13 23:05 - 000000000 ____D C:\Users\Soulless\Downloads\ACTUALIZAR ATMOSPHERE 0 14 1
2020-08-13 23:01 - 2020-08-13 23:01 - 000000000 ____D C:\Users\Soulless\Downloads\fss0 Signature patches (FW10.1.0) ATM 0.14.1
2020-08-13 23:00 - 2020-08-13 23:01 - 135551807 _____ C:\Users\Soulless\Downloads\ACTUALIZAR ATMOSPHERE 0 14 1.zip
2020-08-13 22:55 - 2020-08-13 22:55 - 000021320 _____ C:\Users\Soulless\Downloads\fss0 Signature patches (FW10.1.0) ATM 0.14.1.zip
2020-08-12 01:28 - 2020-08-12 01:28 - 000245418 _____ C:\Users\Soulless\Downloads\Moon_4_transparent_background.zip
2020-08-12 01:24 - 2020-08-12 01:24 - 000000000 ____D C:\Windows\system32\Tasks\Mozilla
2020-08-11 23:32 - 2020-08-21 16:55 - 000000000 ____D C:\Users\Soulless\Downloads\3d
2020-08-11 23:32 - 2020-08-11 23:32 - 000000000 ____D C:\Users\Soulless\Downloads\FreePsdVn.com_2003227_PHOTOSHOP_journal_art_photoshop_action_25683156
2020-08-11 23:30 - 2020-06-27 10:39 - 000000000 ____D C:\Users\Soulless\Downloads\InkyDeals - 15000+ Photoshop Actions Bundle
2020-08-11 23:30 - 2018-12-04 07:01 - 000000000 ____D C:\Users\Soulless\Downloads\graphicriver-22173947-photoshop-4in1-actions-bundle-v3gfx
2020-08-11 15:33 - 2020-08-11 15:33 - 000540966 _____ C:\Users\Soulless\Downloads\413101493-Informe-Pericial-Psicologico.pdf
2020-08-11 15:30 - 2020-08-11 15:30 - 000278560 _____ C:\Users\Soulless\Downloads\366490537-INFORME-PERICIAL-PSICOLOGICO.pdf
2020-08-11 15:27 - 2020-08-11 15:27 - 000743447 _____ C:\Users\Soulless\Downloads\Dialnet-InformePericialPsicologico-6674247.pdf
2020-08-10 03:06 - 2020-08-10 03:06 - 000209065 _____ C:\Users\Soulless\Downloads\Wizards - Wand of Epicosity [NSP] [Switch-Torrents.com].torrent
2020-08-10 01:44 - 2020-08-21 16:55 - 000000000 ____D C:\Users\Soulless\Downloads\[[IMAGENES]]
2020-08-09 23:11 - 2020-08-10 01:43 - 000000000 ____D C:\Users\Soulless\Downloads\[[AUDIO & MUSICA & VIDEOS]]
2020-08-09 23:00 - 2020-08-11 23:29 - 000000000 ____D C:\Users\Soulless\Downloads\[[PPF INFORMES Y RELACIONADO]]
2020-08-08 01:24 - 2020-08-08 01:24 - 000000000 ____D C:\Users\Soulless\Downloads\Advanced.SystemCare.Pro.13.6.0.291
2020-08-08 01:20 - 2020-08-08 01:20 - 050204268 _____ C:\Users\Soulless\Downloads\Advanced.SystemCare.Pro.13.6.0.291.rar
2020-08-07 16:35 - 2020-06-15 23:03 - 000680448 _____ (Microsoft Corporation) C:\Windows\system32\gpprefcl.dll
2020-08-07 16:35 - 2020-06-15 22:39 - 000581120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gpprefcl.dll
2020-08-07 16:35 - 2020-06-12 18:53 - 000360448 _____ (Microsoft Corporation) C:\Windows\system32\ncsi.dll
2020-08-07 16:35 - 2020-06-12 17:39 - 000391168 _____ (Microsoft Corporation) C:\Windows\system32\nlasvc.dll
2020-08-07 16:35 - 2020-06-12 17:25 - 000269312 _____ (Microsoft Corporation) C:\Windows\system32\netman.dll
2020-08-07 16:35 - 2020-06-12 13:37 - 000537616 _____ (Microsoft Corporation) C:\Windows\system32\wer.dll
2020-08-07 16:35 - 2020-06-12 12:56 - 000450296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wer.dll
2020-08-07 16:35 - 2020-06-12 09:29 - 001549560 _____ (Microsoft Corporation) C:\Windows\system32\diagtrack.dll
2020-08-07 16:35 - 2020-06-11 01:03 - 022378304 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2020-08-07 16:35 - 2020-06-11 01:03 - 000723008 _____ (Microsoft Corporation) C:\Windows\system32\SHCore.dll
2020-08-07 16:35 - 2020-06-11 00:56 - 000806200 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2020-08-07 16:35 - 2020-06-11 00:37 - 019803064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2020-08-07 16:35 - 2020-06-11 00:37 - 000561896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SHCore.dll
2020-08-07 16:35 - 2020-06-11 00:33 - 000613528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll
2020-08-07 16:35 - 2020-06-10 23:39 - 000550400 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.PointOfService.dll
2020-08-07 16:35 - 2020-06-10 23:14 - 000368128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.PointOfService.dll
2020-08-07 16:35 - 2020-06-10 23:04 - 001057792 _____ (Microsoft Corporation) C:\Windows\system32\WebcamUi.dll
2020-08-07 16:35 - 2020-06-10 22:56 - 000257536 _____ (Microsoft Corporation) C:\Windows\system32\netprofm.dll
2020-08-07 16:35 - 2020-06-10 22:54 - 000551424 _____ (Microsoft Corporation) C:\Windows\system32\netprofmsvc.dll
2020-08-07 16:35 - 2020-06-10 22:48 - 000255488 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.HumanInterfaceDevice.dll
2020-08-07 16:35 - 2020-06-10 22:45 - 000693248 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Bluetooth.dll
2020-08-07 16:35 - 2020-06-10 22:44 - 014534656 _____ (Microsoft Corporation) C:\Windows\system32\twinui.dll
2020-08-07 16:35 - 2020-06-10 22:42 - 000906240 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.SmartCards.dll
2020-08-07 16:35 - 2020-06-10 22:42 - 000211968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netprofm.dll
2020-08-07 16:35 - 2020-06-10 22:39 - 000173568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.HumanInterfaceDevice.dll
2020-08-07 16:35 - 2020-06-10 22:37 - 007800320 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Data.Pdf.dll
2020-08-07 16:35 - 2020-06-10 22:37 - 000469504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Bluetooth.dll
2020-08-07 16:35 - 2020-06-10 22:35 - 012880896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinui.dll
2020-08-07 16:35 - 2020-06-10 22:35 - 000629248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.SmartCards.dll
2020-08-07 16:35 - 2020-06-10 22:29 - 005272064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Data.Pdf.dll
2020-08-07 16:35 - 2020-06-09 01:12 - 001764872 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2020-08-07 16:35 - 2020-06-09 01:05 - 000357824 _____ (Microsoft Corporation) C:\Windows\system32\sechost.dll
2020-08-07 16:35 - 2020-06-09 00:37 - 001489528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll
2020-08-07 16:35 - 2020-06-09 00:31 - 000255104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sechost.dll
2020-08-07 16:35 - 2020-06-08 23:06 - 001695744 _____ (Microsoft Corporation) C:\Windows\system32\wevtsvc.dll
2020-08-07 16:35 - 2020-06-05 12:15 - 000436224 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2020-08-07 16:35 - 2020-06-05 12:14 - 000358912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2020-08-07 16:35 - 2020-06-05 12:06 - 000230400 _____ (Microsoft Corporation) C:\Windows\system32\profsvc.dll
2020-08-07 16:35 - 2020-06-04 15:33 - 001902240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll
2020-08-07 16:35 - 2020-06-04 15:32 - 002535960 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2020-08-07 16:35 - 2020-06-04 14:25 - 000427584 _____ (Microsoft Corporation) C:\Windows\system32\tsmf.dll
2020-08-07 16:35 - 2020-06-04 14:21 - 000368240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tsmf.dll
2020-08-07 16:35 - 2020-06-03 14:40 - 000856064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdvidcrl.dll
2020-08-07 16:35 - 2020-06-03 14:20 - 000145920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fdWSD.dll
2020-08-07 16:35 - 2020-06-03 14:19 - 000505344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\StructuredQuery.dll
2020-08-07 16:35 - 2020-06-03 14:08 - 006220288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2020-08-07 16:35 - 2020-06-03 12:43 - 001101824 _____ (Microsoft Corporation) C:\Windows\system32\rdvidcrl.dll
2020-08-07 16:35 - 2020-06-03 12:12 - 000750080 _____ (Microsoft Corporation) C:\Windows\system32\StructuredQuery.dll
2020-08-07 16:35 - 2020-06-03 12:12 - 000172032 _____ (Microsoft Corporation) C:\Windows\system32\fdWSD.dll
2020-08-07 16:35 - 2020-06-03 11:52 - 007040000 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2020-08-07 16:34 - 2020-07-08 04:28 - 000129024 _____ (Microsoft Corporation) C:\Windows\splwow64.exe
2020-08-07 16:34 - 2020-06-15 23:11 - 000112640 _____ (Microsoft Corporation) C:\Windows\system32\AxInstSv.dll
2020-08-07 16:34 - 2020-06-12 20:29 - 000092944 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Security.Credentials.UI.CredentialPicker.dll
2020-08-07 16:34 - 2020-06-12 19:27 - 000073776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Security.Credentials.UI.CredentialPicker.dll
2020-08-07 16:34 - 2020-06-10 23:42 - 000187392 _____ (Microsoft Corporation) C:\Windows\system32\easwrt.dll
2020-08-07 16:34 - 2020-06-10 23:24 - 000088064 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2020-08-07 16:34 - 2020-06-10 23:19 - 000092672 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2020-08-07 16:34 - 2020-06-10 23:17 - 000315904 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2020-08-07 16:34 - 2020-06-10 23:16 - 000148480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\easwrt.dll
2020-08-07 16:34 - 2020-06-10 23:02 - 000073216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2020-08-07 16:34 - 2020-06-10 22:59 - 000076800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2020-08-07 16:34 - 2020-06-10 22:57 - 000279552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2020-08-07 16:34 - 2020-06-10 22:56 - 000062464 _____ (Microsoft Corporation) C:\Windows\system32\keyiso.dll
2020-08-07 16:34 - 2020-06-10 22:49 - 000882688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WebcamUi.dll
2020-08-07 16:34 - 2020-06-10 22:44 - 000047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\keyiso.dll
2020-08-07 16:34 - 2020-06-10 22:32 - 003317248 _____ (Microsoft Corporation) C:\Windows\system32\bootux.dll
2020-08-07 16:34 - 2020-06-09 00:15 - 000096768 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2020-08-07 16:34 - 2020-06-08 23:44 - 000078336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll
2020-08-07 16:34 - 2020-06-05 12:15 - 000259584 _____ (Microsoft Corporation) C:\Windows\system32\pku2u.dll
2020-08-07 16:34 - 2020-06-05 12:15 - 000227328 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2020-08-07 16:34 - 2020-06-05 12:14 - 000208896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pku2u.dll
2020-08-07 16:34 - 2020-06-05 12:14 - 000193536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2020-08-07 16:34 - 2020-06-05 12:06 - 000241664 _____ (Microsoft Corporation) C:\Windows\system32\logoncli.dll
2020-08-07 16:34 - 2020-06-05 12:06 - 000174592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\logoncli.dll
2020-08-06 23:46 - 2020-08-06 23:47 - 000000000 ____D C:\ProgramData\Wondershare
2020-08-06 23:45 - 2020-08-06 23:45 - 000000000 ____D C:\Users\Soulless\AppData\Local\Wondershare
2020-08-06 23:45 - 2020-08-06 23:45 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wondershare
2020-08-06 23:43 - 2020-08-07 00:15 - 000000000 ____D C:\ProgramData\Wondershare Filmora
2020-08-06 23:43 - 2020-08-06 23:43 - 000000000 ____D C:\Program Files\Wondershare
2020-08-06 16:17 - 2020-08-06 16:17 - 000000000 ____D C:\Users\Soulless\.android
2020-08-06 16:12 - 2020-08-06 16:12 - 000000000 ____D C:\Users\Soulless\Documents\HiSuite
2020-08-06 16:12 - 2020-08-06 16:12 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HiSuite
2020-08-06 16:12 - 2020-06-28 21:35 - 002152176 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WUDFUpdate_01009.dll
2020-08-06 16:12 - 2020-06-28 21:35 - 001721576 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdfCoInstaller01009.dll
2020-08-06 16:12 - 2020-06-28 21:35 - 001002728 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\winusbcoinstaller2.dll
2020-08-06 16:12 - 2020-06-28 21:35 - 000287232 _____ (Huawei Technologies Co., Ltd.) C:\Windows\system32\Drivers\hw_quusbnet.sys
2020-08-06 16:12 - 2020-06-28 21:35 - 000226560 _____ (Huawei Technologies Co., Ltd.) C:\Windows\system32\Drivers\hw_quusbmdm.sys
2020-08-06 16:12 - 2020-06-28 21:35 - 000127360 _____ (Huawei Technologies Co., Ltd.) C:\Windows\system32\Drivers\hw_cdcacm.sys
2020-08-06 16:12 - 2020-06-28 21:35 - 000116864 _____ (Huawei Technologies Co., Ltd.) C:\Windows\system32\Drivers\hw_usbdev.sys
2020-08-06 16:12 - 2020-06-28 21:35 - 000033280 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbser.sys
2020-08-06 16:12 - 2020-06-28 21:35 - 000018944 _____ (Huawei Technologies Co., Ltd.) C:\Windows\system32\Drivers\ew_usbccgpfilter.sys
2020-08-06 16:11 - 2020-08-06 16:13 - 000000000 ____D C:\Users\Soulless\AppData\Local\HiSuite
2020-08-06 16:11 - 2020-08-06 16:12 - 000000000 ____D C:\Program Files (x86)\HiSuite
2020-08-06 03:43 - 2020-08-06 03:44 - 000000000 ____D C:\Users\Soulless\Downloads\idioma-photoshop-2018
2020-08-06 02:34 - 2020-08-20 12:09 - 000002388 _____ C:\Users\Soulless\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive para la Empresa.lnk
2020-08-05 17:02 - 2020-08-05 17:03 - 000103652 _____ C:\Users\Soulless\Desktop\Orden de atencion psiquiatria.pdf
2020-08-05 12:58 - 2020-08-05 12:58 - 000184639 _____ C:\Users\Soulless\Downloads\Constancia_de_participacin.pdf
2020-08-04 23:16 - 2020-08-04 23:16 - 000129722 _____ C:\Users\Soulless\Downloads\Comprobante_de_pago (1).pdf
2020-08-02 05:22 - 2020-08-02 05:22 - 000000000 ____D C:\ProgramData\NordVPN
2020-08-02 05:22 - 2020-08-02 05:22 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\NordSec
2020-08-02 05:22 - 2020-08-02 05:22 - 000000000 ____D C:\Program Files\NordVPN
2020-08-02 05:16 - 2020-08-02 05:16 - 000000000 ____D C:\ProgramData\Caphyon
2020-08-02 05:15 - 2020-08-02 05:22 - 000000000 ____D C:\Users\Soulless\AppData\Local\NordVPN
2020-08-02 05:15 - 2020-08-02 05:22 - 000000000 ____D C:\Program Files (x86)\NordVPN
2020-08-02 05:06 - 2020-08-02 05:06 - 000000000 ____D C:\Program Files (x86)\NordVPN network TAP
2020-08-02 05:02 - 2020-08-02 05:02 - 000000000 ____D C:\Program Files\NordVPN network TUN
2020-08-02 04:55 - 2020-08-02 04:55 - 000000000 ____D C:\Users\Soulless\Downloads\Nord VPN Ultima Version Actualizada 2020 Para Siempre + Codigos de Licencia Oficiales (WINDOWS)(ByAdri23)
2020-08-02 04:54 - 2020-08-02 04:55 - 015763660 _____ C:\Users\Soulless\Downloads\Nord VPN Ultima Version Actualizada 2020 Para Siempre + Codigos de Licencia Oficiales (WINDOWS)(ByAdri23).rar
2020-08-02 04:35 - 2019-10-05 21:27 - 000000000 ____D C:\Users\Soulless\Downloads\Betternet.VPN.Premium.v5.3.0.433
2020-08-01 01:02 - 2020-08-16 19:26 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox
==================== Un mes (modificado) ==================
(Si una entrada es incluida en el fixlist, el archivo/carpeta será eliminado/a.)
2040-01-01 20:45 - 2018-12-10 20:40 - 000000000 ____D C:\ProgramData\eLicenser
2020-08-26 22:38 - 2013-08-22 11:20 - 000000000 ____D C:\Windows\CbsTemp
2020-08-26 22:23 - 2016-03-31 15:21 - 000001008 _____ C:\Windows\Tasks\DropboxUpdateTaskUserS-1-5-21-4104487672-3836452688-4083331385-1001UA.job
2020-08-26 22:20 - 2014-03-15 14:15 - 000003598 _____ C:\Windows\system32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-4104487672-3836452688-4083331385-1001
2020-08-26 22:19 - 2014-03-15 19:23 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013
2020-08-26 22:17 - 2013-08-22 09:25 - 000000221 _____ C:\Windows\win.ini
2020-08-26 22:06 - 2014-03-15 22:22 - 000000000 ____D C:\Users\Soulless\AppData\Local\ESET
2020-08-26 18:36 - 2014-04-09 10:37 - 000000588 _____ C:\Windows\Tasks\MATLAB R2013b Startup Accelerator.job
2020-08-26 18:33 - 2014-04-05 15:54 - 000000000 ____D C:\Users\Soulless\AppData\Local\TSVNCache
2020-08-26 18:26 - 2020-07-10 20:36 - 000000000 ____D C:\Users\Soulless\AppData\LocalLow\IGDump
2020-08-26 11:11 - 2014-03-15 14:10 - 000000000 ____D C:\Users\Soulless\AppData\Local\Packages
2020-08-26 05:49 - 2013-08-22 10:45 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2020-08-26 03:29 - 2014-03-15 14:10 - 000000000 ____D C:\Users\Soulless
2020-08-26 03:19 - 2018-01-07 23:32 - 000000000 ____D C:\Users\Soulless\AppData\Local\CrashDumps
2020-08-25 23:23 - 2016-03-31 15:21 - 000000956 _____ C:\Windows\Tasks\DropboxUpdateTaskUserS-1-5-21-4104487672-3836452688-4083331385-1001Core.job
2020-08-25 23:17 - 2014-06-24 21:15 - 000001042 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-4104487672-3836452688-4083331385-1001Core1cf901333ef0b8.job
2020-08-25 20:00 - 2014-03-15 14:12 - 001853222 _____ C:\Windows\system32\PerfStringBackup.INI
2020-08-25 20:00 - 2013-09-29 23:47 - 000819996 _____ C:\Windows\system32\perfh00A.dat
2020-08-25 20:00 - 2013-09-29 23:47 - 000173880 _____ C:\Windows\system32\perfc00A.dat
2020-08-25 20:00 - 2013-08-22 09:36 - 000000000 ____D C:\Windows\Inf
2020-08-25 19:57 - 2020-06-28 00:05 - 000000000 ____D C:\Users\Soulless\AppData\Roaming\Kodi
2020-08-25 19:00 - 2020-01-11 22:38 - 000000000 ____D C:\Users\Soulless\Desktop\NINTENDO SWITCH
2020-08-25 18:59 - 2020-03-17 20:28 - 000000000 ____D C:\Users\Soulless\Desktop\PPF
2020-08-25 18:59 - 2020-01-12 21:58 - 000000000 ____D C:\Users\Soulless\Desktop\FL STUDIO
2020-08-25 17:45 - 2020-01-12 22:02 - 000000000 ____D C:\JUEGOS
2020-08-25 17:31 - 2020-07-10 20:13 - 000000000 ____D C:\Windows\w
2020-08-25 17:31 - 2020-07-10 20:13 - 000000000 ____D C:\Windows\c
2020-08-25 16:43 - 2013-08-22 11:36 - 000000000 ____D C:\Windows\SysWOW64\setup
2020-08-25 16:43 - 2013-08-22 11:36 - 000000000 ____D C:\Windows\system32\setup
2020-08-25 15:07 - 2013-08-22 10:44 - 005157328 _____ C:\Windows\system32\FNTCACHE.DAT
2020-08-25 15:00 - 2013-08-22 11:36 - 000000000 ___RD C:\Windows\ToastData
2020-08-25 13:39 - 2017-11-16 02:16 - 000000000 ____D C:\Users\Soulless\AppData\LocalLow\Mozilla
2020-08-25 12:51 - 2017-08-21 21:27 - 000000000 ____D C:\Users\Soulless\AppData\Roaming\WhatsApp
2020-08-25 05:38 - 2014-03-15 23:45 - 000000000 ____D C:\Users\Soulless\AppData\Roaming\uTorrent
2020-08-25 05:33 - 2019-05-12 22:08 - 000000000 ____D C:\Users\Soulless\AppData\Local\BitTorrentHelper
2020-08-25 03:07 - 2013-08-22 09:25 - 000262144 ___SH C:\Windows\system32\config\BBI
2020-08-25 00:42 - 2014-09-14 21:43 - 000000612 __RSH C:\ProgramData\ntuser.pol
2020-08-24 02:30 - 2017-10-08 22:38 - 000000000 ____D C:\Users\Soulless\AppData\Roaming\Ample Sound
2020-08-24 02:30 - 2017-10-08 22:15 - 000000000 ____D C:\Users\Soulless\Documents\Ample Sound
2020-08-24 01:28 - 2014-12-24 17:04 - 000000000 ____D C:\Users\Soulless\AppData\Local\Spotify
2020-08-23 23:22 - 2014-12-24 16:54 - 000000000 ____D C:\Users\Soulless\AppData\Roaming\Spotify
2020-08-23 04:07 - 2017-09-02 11:20 - 000000032 _____ C:\ProgramData\autobk.inc
2020-08-23 04:07 - 2017-09-02 10:43 - 000000032 _____ C:\Users\Soulless\AppData\Roaming\msregsvv.dll
2020-08-21 18:38 - 2020-07-01 21:11 - 000002205 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2020-08-21 03:58 - 2014-03-15 15:56 - 007195136 ___SH C:\Users\Soulless\Desktop\Thumbs.db
2020-08-20 12:09 - 2017-08-16 11:22 - 000003198 _____ C:\Windows\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-4104487672-3836452688-4083331385-1001
2020-08-19 22:53 - 2020-02-15 23:29 - 000000000 ____D C:\Users\Soulless\AppData\Roaming\Telegram Desktop
2020-08-18 15:53 - 2015-03-31 00:27 - 000002202 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2020-08-17 01:05 - 2019-06-08 00:10 - 000000000 ____D C:\Users\Soulless\AppData\Local\WhatsApp
2020-08-16 19:26 - 2014-03-15 15:54 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2020-08-14 15:28 - 2014-04-11 15:25 - 000000000 ____D C:\Users\Soulless\AppData\Roaming\Dropbox
2020-08-12 01:24 - 2014-03-15 15:54 - 000001175 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2020-08-11 20:43 - 2020-07-14 12:47 - 006247480 _____ (Adobe) C:\Windows\SysWOW64\FlashPlayerInstaller.exe
2020-08-11 20:43 - 2020-06-10 14:49 - 000842296 _____ (Adobe) C:\Windows\SysWOW64\FlashPlayerApp.exe
2020-08-11 20:43 - 2020-06-10 14:49 - 000175160 _____ (Adobe) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2020-08-11 20:43 - 2018-03-13 21:04 - 000004516 _____ C:\Windows\system32\Tasks\Adobe Flash Player NPAPI Notifier
2020-08-11 20:43 - 2014-03-15 17:17 - 000004296 _____ C:\Windows\system32\Tasks\Adobe Flash Player Updater
2020-08-11 20:43 - 2013-08-22 11:36 - 000000000 ____D C:\Windows\SysWOW64\Macromed
2020-08-11 20:43 - 2013-08-22 11:36 - 000000000 ____D C:\Windows\system32\Macromed
2020-08-10 01:43 - 2015-08-06 23:54 - 003693056 ___SH C:\Users\Soulless\Downloads\Thumbs.db
2020-08-09 23:31 - 2017-08-24 21:15 - 000000000 ____D C:\Users\Soulless\Desktop\ALE
2020-08-08 06:48 - 2013-08-22 11:36 - 000000000 ____D C:\Windows\rescache
2020-08-08 01:51 - 2020-07-07 23:27 - 000000000 ____D C:\Users\Soulless\Desktop\photoshop
2020-08-07 16:47 - 2013-08-22 11:36 - 000000000 ____D C:\Program Files\Common Files\System
2020-08-06 23:46 - 2019-07-25 23:55 - 000000000 ____D C:\Users\Soulless\Documents\Wondershare Filmora 9
2020-08-04 12:23 - 2019-09-07 23:32 - 000000000 ____D C:\Users\Soulless\Desktop\Respaldo Ale
2020-08-02 17:58 - 2020-03-24 04:36 - 000000000 ____D C:\Users\Soulless\Desktop\DANTE TAREAS
2020-08-01 08:16 - 2016-11-14 12:31 - 000000000 ____D C:\Users\Soulless\AppData\Local\ElevatedDiagnostics
==================== Archivos en la raíz de algunos directorios ========
2015-05-09 12:36 - 2015-11-21 07:10 - 000000040 _____ () C:\Users\Soulless\AppData\Roaming\cdr.ini
2020-05-25 23:22 - 2020-05-25 23:22 - 000000703 _____ () C:\Users\Soulless\AppData\Roaming\codec.dll
2018-01-04 22:29 - 2018-01-04 22:39 - 000000020 _____ () C:\Users\Soulless\AppData\Roaming\didgeridronename.txt
2018-01-04 22:29 - 2018-01-04 22:39 - 000000011 _____ () C:\Users\Soulless\AppData\Roaming\didgeridroneserial.txt
2019-02-19 11:06 - 2019-06-23 00:59 - 000001164 _____ () C:\Users\Soulless\AppData\Roaming\MidiMadnessTempClip.mid
2019-02-19 10:55 - 2020-04-30 01:15 - 000003151 _____ () C:\Users\Soulless\AppData\Roaming\MM3 Error Log.txt
2017-09-02 10:43 - 2020-08-23 04:07 - 000000032 _____ () C:\Users\Soulless\AppData\Roaming\msregsvv.dll
2018-01-04 22:31 - 2018-01-04 22:31 - 000000020 _____ () C:\Users\Soulless\AppData\Roaming\sitarname.txt
2018-01-04 22:31 - 2018-01-04 22:31 - 000000011 _____ () C:\Users\Soulless\AppData\Roaming\sitarserial.txt
2015-12-25 10:15 - 2015-12-25 10:15 - 000000096 _____ () C:\Users\Soulless\AppData\Local\fusioncache.dat
2018-10-01 20:46 - 2018-10-01 20:46 - 000000000 _____ () C:\Users\Soulless\AppData\Local\oobelibMkey.log
2014-04-02 11:39 - 2014-04-02 11:39 - 000007602 _____ () C:\Users\Soulless\AppData\Local\Resmon.ResmonCfg
2015-12-16 10:21 - 2015-12-16 10:21 - 000000000 _____ () C:\Users\Soulless\AppData\Local\{3A406432-0C29-467F-BB1A-9F4C009EF5BA}
2015-12-16 10:21 - 2015-12-16 10:21 - 000000000 _____ () C:\Users\Soulless\AppData\Local\{702169DF-0F2B-41FF-B624-98AA5ED39772}
2015-12-16 10:21 - 2015-12-16 10:21 - 000000000 _____ () C:\Users\Soulless\AppData\Local\{78644686-9651-4AF1-97E8-E70FDBBFAA12}
2015-12-16 10:21 - 2015-12-16 10:21 - 000000000 _____ () C:\Users\Soulless\AppData\Local\{953849D3-8EA1-45A7-9246-EF3EEEE633B7}
2015-12-16 10:21 - 2015-12-16 10:21 - 000000000 _____ () C:\Users\Soulless\AppData\Local\{E72632BC-8A5C-4A39-8072-E38C4D89ED66}
==================== SigCheck ============================
(No existe una corrección automática para los archivos que no pasan la verificación.)
LastRegBack: 2020-08-22 05:12
==================== Final de FRST.txt ========================
Hola @arckan
Bienvenid@ al Foro!!!
Pues aquí tienes que tener otro problema.
Cuando instalas un antivirus de terceros (En tu Caso Nod) automáticamente Windows Defender se desactiva.
Tu licencia de NOD es legal, pagaste por ella o es pirata?
Falta que subas el reporte de Addition.
Salu2
Hola SanMar, gracias por responder, respecto al NOD era pirata lo tenia hace mas de un año Adjunto el addition
ADDITION primera parte
Resultados del Análisis Adicional de Farbar Recovery Scan Tool (x64) Versión: 26-08-2020
Ejecutado por CerealKiller (26-08-2020 23:11:16)
Ejecutado desde C:\Users\Soulless\Downloads
Windows 8.1 Pro (Update) (X64) (2014-03-15 18:10:19)
Modo de Inicio: Normal
==========================================================
==================== Cuentas: =============================
6200B28D6DCB40158B72 (S-1-5-21-4104487672-3836452688-4083331385-1005 - Limited - Enabled)
Administrador (S-1-5-21-4104487672-3836452688-4083331385-500 - Administrator - Disabled)
ASPNET (S-1-5-21-4104487672-3836452688-4083331385-1004 - Limited - Enabled)
CerealKiller (S-1-5-21-4104487672-3836452688-4083331385-1001 - Administrator - Enabled) => C:\Users\Soulless
DDBEBE2BD5614AD7AF2E (S-1-5-21-4104487672-3836452688-4083331385-1007 - Limited - Enabled)
HomeGroupUser$ (S-1-5-21-4104487672-3836452688-4083331385-1003 - Limited - Enabled)
Invitado (S-1-5-21-4104487672-3836452688-4083331385-501 - Limited - Disabled)
==================== Centro de Seguridad ========================
(Si una entrada es incluida en el fixlist, será eliminada.)
AV: Malwarebytes (Disabled - Up to date) {23007AD3-69FE-687C-2629-D584AFFAF72B}
AV: ESET Security (Disabled - Up to date) {885D845F-AF19-0124-FECE-FFF49D00F440}
AS: ESET Security (Disabled - Up to date) {333C65BB-8923-0EAA-C47E-C486E687BEFD}
AS: Malwarebytes (Disabled - Up to date) {98619B37-4FC4-67F2-1C99-EEF6D47DBD96}
==================== Programas instalados ======================
(Solo los programas de adware con indicador "Oculto", pueden ser añadidos al fixlist para hacerlos visibles. Los programas adware deben ser desinstalados manualmente.)
µTorrent (HKU\S-1-5-21-4104487672-3836452688-4083331385-1001\...\uTorrent) (Version: 3.5.5.45776 - BitTorrent Inc.)
7-Zip 19.00 (x64) (HKLM\...\7-Zip) (Version: 19.00 - Igor Pavlov)
Ableton Live 10 Suite (HKLM\...\{B214E563-20EC-4CD4-9C8A-9BC4ED66C08D}) (Version: 10.0.0.0 - Ableton)
AC3Filter 2.6.0b (HKLM-x32\...\AC3Filter_is1) (Version: 2.6.0b - Alexander Vigovsky)
ACDSee Pro 7 (64-bit) (HKLM\...\{D2A6EC54-CB46-49E4-A6FC-A9179F9D9D12}) (Version: 7.0.138 - ACD Systems International Inc.)
Adobe Acrobat XI Pro (HKLM-x32\...\{AC76BA86-1033-FFFF-7760-000000000006}) (Version: 11.0.06 - Adobe Systems)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 3.1.0.4880 - Adobe Systems Incorporated)
Adobe Digital Editions 4.5 (HKLM-x32\...\Adobe Digital Editions 4.5) (Version: 4.5.11 - Adobe Systems Incorporated)
Adobe Flash Player 32 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 32.0.0.414 - Adobe)
Adobe Help Manager (HKLM-x32\...\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 4.0.244 - Adobe Systems Incorporated)
Adobe Lightroom (HKLM-x32\...\{8048A5DF-8A70-5BE1-954B-E0FDE1BD0D0D}) (Version: 6.8 - Adobe Systems Incorporated)
Adobe Photoshop 2020 (HKLM-x32\...\PHSP_21_1_1) (Version: 21.1.1 - Adobe Inc.)
AdoptOpenJDK JDK con Hotspot 11.0.5.10 (x64) (HKLM\...\{F3F64B70-B952-4E52-BABC-DFD5EB68A6AD}) (Version: 11.0.5.10 - AdoptOpenJDK)
Advanced PDF Password Recovery (HKLM-x32\...\{A85CC7BA-760F-4B65-8E2F-640BE314F2F8}) (Version: 5.06.113.2041 - Elcomsoft Co. Ltd.)
ALPS Touch Pad Driver (HKLM\...\{9F72EF8B-AEC9-4CA5-B483-143980AFD6FD}) (Version: 8.1202.1711.102 - Alps Electric)
AMD Catalyst Install Manager (HKLM\...\{3E4F8F22-14D3-074D-0A72-5EE998D3CFAB}) (Version: 8.0.915.0 - Advanced Micro Devices, Inc.)
Ample Bass Acoustic II version 2.4.0 (HKLM-x32\...\{50ECCCA1-A49C-40CA-85A3-37A13EC3FBA6}_is1) (Version: 2.4.0 - Ample Sound Technology Co., Ltd.)
Ample Bass J II version 2.4.0 (HKLM-x32\...\{04C42F03-37A2-481A-8D1B-9F03164B23CA}_is1) (Version: 2.4.0 - Ample Sound Technology Co., Ltd.)
Ample Bass P II version 2.4.0 (HKLM-x32\...\{1C181D3B-41B6-4714-AB59-91E18C5EE708}_is1) (Version: 2.4.0 - Ample Sound Technology Co., Ltd.)
Ample Bass P version 3.0.0 (HKLM-x32\...\{69715F59-FB44-4FB7-8AAC-B925F333BEDD}_is1) (Version: 3.0.0 - Ample Sound Technology Co., Ltd.)
Ample Bass U version 3.1.0 (HKLM-x32\...\{654F71E8-CDEB-4DA0-ACD8-B6D1D305DC56}_is1) (Version: 3.1.0 - Ample Sound Technology Co., Ltd.)
Ample Guitar G II version 2.5.1 (HKLM-x32\...\{C5C4DE66-ACC5-4431-892B-A581516DF4DD}_is1) (Version: 2.5.1 - Ample Sound Technology Co., Ltd.)
Ample Guitar L II version 2.4.0 (HKLM-x32\...\{9563CAC5-81EB-43CF-8717-927ED1EB272A}_is1) (Version: 2.4.0 - Ample Sound Technology Co., Ltd.)
Ample Guitar M II version 2.4.0 (HKLM-x32\...\{DBBA77E4-611C-4633-AC13-96A6598AF746}_is1) (Version: 2.4.0 - Ample Sound Technology Co., Ltd.)
Ample Guitar M version 3.0.1 (HKLM-x32\...\{8DFC907C-D57F-490A-8392-E729A463CD97}_is1) (Version: 3.0.1 - Ample Sound Technology Co., Ltd.)
Ample Guitar T II version 2.4.0 (HKLM-x32\...\{548F88E8-79D2-441F-B87B-E71754257651}_is1) (Version: 2.4.0 - Ample Sound Technology Co., Ltd.)
Ample Metal E II version 2.4.0 (HKLM-x32\...\{EB25BD61-6A67-41F1-BC7E-1AD08E3A539A}_is1) (Version: 2.4.0 - Ample Sound Technology Co., Ltd.)
AmpliTube 4 version 4.8.0 (HKLM\...\{21B0C8E0-7EB7-4832-B764-20A7DAE86E02}_is1) (Version: 4.8.0 - IK Multimedia)
Apowersoft Online Launcher version 1.7.8 (HKLM-x32\...\{20BF67A8-D81A-4489-8225-FABAA0896E2D}_is1) (Version: 1.7.8 - APOWERSOFT LIMITED)
ArcSoft TotalMedia Theatre 6 (HKLM-x32\...\{5232358C-7C23-4319-8271-E43F924196AC}) (Version: 6.7.1.199 - ArcSoft) Hidden
ArcSoft TotalMedia Theatre 6 (HKLM-x32\...\InstallShield_{5232358C-7C23-4319-8271-E43F924196AC}) (Version: 6.7.1.199 - ArcSoft)
ASIO4ALL (HKLM-x32\...\ASIO4ALL) (Version: 2.14 - Michael Tippach)
Audified TNT Voice Executor (HKLM\...\TNT Voice Executor_is1) (Version: 1.0.0 - Audified)
AudioThing The Orb (HKLM\...\The Orb_is1) (Version: 1.0.1 - AudioThing)
AutoTonic (HKLM-x32\...\AutoTonic) (Version: 1.10.222.1 - AutoTonic e.U. AudioZ)
Avid Pro Tools (HKLM\...\{440A8FC5-DF1F-49F2-8936-227247138A34}) (Version: 12.5.0.395 - Avid Technology, Inc.)
Bome Virtual MIDI 2.1.0.44 (HKLM\...\BMIDI_Driver1.0.0.11_is1) (Version: - Bome Software GmbH & Co. KG)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
Camel Audio Alchemy (HKLM\...\Alchemy_is1) (Version: 1.55 - Team V.R)
Catalyst Control Center (HKLM-x32\...\{8B1A559A-FB9D-42F5-A8A7-2F132CF28414}) (Version: 1.00.0000 - )
CCleaner (HKLM\...\CCleaner) (Version: 5.70 - Piriform)
Chord Guru version 1.0.0 (HKLM\...\{9A957EAB-B306-4D56-8208-8E4E7DBABD99}_is1) (Version: 1.0.0 - StudioLinkedVST)
Compatibilidad con Aplicaciones de Apple (HKLM-x32\...\{46F044A5-CE8B-4196-984E-5BD6525E361D}) (Version: 2.3.6 - Apple Inc.)
Custom Shop version 1.8.0 (HKLM-x32\...\{21BAD046-50EC-49E2-BE7B-F9729704F2C3}_is1) (Version: 1.8.0 - IK Multimedia)
CyberLink YouCam 6 (HKLM-x32\...\{A9CEDD6E-4792-493e-BB35-D86D2E188A5A}) (Version: 6.0.2326.0 - CyberLink Corp.)
D3DX10 (HKLM-x32\...\{E09C4DB7-630C-4F06-A631-8EA7239923AF}) (Version: 15.4.2368.0902 - Microsoft) Hidden
DAEMON Tools Lite (HKLM-x32\...\DAEMON Tools Lite) (Version: 4.49.1.0356 - Disc Soft Ltd)
DIgSILENT License Server 6.1.4 (HKLM-x32\...\DIgSILENT License Server 6.1.4) (Version: License Server 6.1 - DIgSILENT GmbH)
DIgSILENT PowerFactory 15.1 (HKLM-x32\...\DIgSILENT PowerFactory 15.1) (Version: PowerFactory 15.1.7 - DIgSILENT GmbH)
Dropbox (HKU\S-1-5-21-4104487672-3836452688-4083331385-1001\...\Dropbox) (Version: 104.4.175 - Dropbox, Inc.)
EaseUS Data Recovery Wizard (HKLM\...\EaseUS Data Recovery Wizard_is1) (Version: - EaseUS)
eBook DRM Removal (HKLM-x32\...\ebookDRMRemoval) (Version: 1.4.1 - eBook Converter)
eBook DRM Removal Bundle versión 4.16 (HKLM-x32\...\{8F09AD24-0196-436A-B99F-A39C537DC5FF}_is1) (Version: 4.16 - eBook Converter Team)
Eines de correcció del Microsoft Office 2013: català (HKLM\...\{90150000-001F-0403-1000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Elastique Pitch V2 (HKLM\...\ElastiquePitch_is1) (Version: 2.0.5 - Team V.R)
eLibro (HKLM-x32\...\{06DE64C0-5DC4-4DC4-97C1-45C5186B51D0}) (Version: 7.4.8 - eLibro)
eLicenser Control (HKLM-x32\...\eLicenser Control) (Version: 6.11.3.1240 - Steinberg Media Technologies GmbH)
Epubor All DRM Removal (HKLM-x32\...\Epubor All DRM Removal) (Version: 1.0.16.627 - Epubor Inc.)
Epubor Ultimate (HKLM-x32\...\Epubor Ultimate) (Version: 3.0.11.820 - Epubor Inc.)
ESET Security (HKLM\...\{C26AA376-9D1B-4B7B-A1F0-DC41E8530176}) (Version: 13.2.16.0 - ESET, spol. s r.o.)
Estudio para la mejora del producto HP DeskJet 2130 series (HKLM\...\{A3D2E2FD-921A-4271-9D99-60009A4FE74A}) (Version: 40.11.1124.17107 - HP Inc.)
Exponential Audio PhoenixVerb (HKLM\...\PhoenixVerb_is1) (Version: 6.0.0 - Exponential Audio)
EZdrummer 2 64-bit Update (HKLM\...\{11CC8964-9CB0-46E6-9218-CD39ED4A554D}) (Version: 2.1.6 - Toontrack)
Ferramentas de verificación de Microsoft Office 2013 - Galego (HKLM\...\{90150000-001F-0456-1000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
FL Studio 12 (HKLM-x32\...\FL Studio 12) (Version: - Image-Line)
FL Studio 20 (HKLM-x32\...\FL Studio 20) (Version: - Image-Line)
FL Studio ASIO (HKLM-x32\...\FL Studio ASIO) (Version: - Image-Line)
Galería de fotos (HKLM-x32\...\{198CEF22-A27F-4DC7-9B66-2C22A4B1CA09}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Garfield K Números (HKLM-x32\...\{BD462E01-A325-4D04-84D1-73C525E33D2B}) (Version: 0003.0001.0000 - ESPInternational)
GenoPro 3.0.1.0 (HKLM-x32\...\GenoPro) (Version: - GenoPro Inc.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 84.0.4147.135 - Google LLC)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.35.451 - Google LLC) Hidden
Google Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.25.11 - Google Inc.) Hidden
Google Video Support Plugin (HKU\S-1-5-21-4104487672-3836452688-4083331385-1001\...\{F9B579C2-D854-300A-BE62-A09EB9D722E4}) (Version: 19.12.1000.0 - Google, LLC.)
HiSuite (HKLM-x32\...\Hi Suite) (Version: 10.1.0.550 - Huawei Technologies Co., Ltd.)
How to Survive (HKLM-x32\...\How to Survive_is1) (Version: 1.0 - PLAZA)
HP 3D DriveGuard (HKLM\...\{E5D02167-DD50-4E8C-B9F9-992182E08D6B}) (Version: 4.2.9.1 - Hewlett-Packard Company)
HP DeskJet 2130 series Ayuda (HKLM-x32\...\{0ABC47CC-14F8-4D01-B877-4203635C0B06}) (Version: 35.0.0 - Hewlett Packard)
HP DeskJet 2130 series Software básico del dispositivo (HKLM\...\{985B2E7E-994C-4D0C-A881-72317A4C8E56}) (Version: 40.11.1124.17107 - HP Inc.)
HP Dropbox Plugin (HKLM-x32\...\{7BEBB31E-58C4-4FA5-9AD1-ACBE32BF0D12}) (Version: 36.0.41.58587 - HP)
HP Google Drive Plugin (HKLM-x32\...\{63BD9C12-5CE9-4294-B1C3-A09F971FAFB5}) (Version: 36.0.41.58587 - HP)
HP Photo Creations (HKLM-x32\...\HP Photo Creations) (Version: 1.0.0.9572 - HP)
HP System Event Utility (HKLM-x32\...\{C78E8F51-3EAD-4F0C-83F0-EF371075E0B4}) (Version: 1.0.10 - Hewlett-Packard Company)
HP Wireless Button Driver (HKLM-x32\...\{30B2D1D8-0A07-4B71-9553-0710C5D31E35}) (Version: 1.1.2.1 - Hewlett-Packard Company)
HY-Plugins HY-Delay3 (HKLM\...\HY-Delay3_is1) (Version: 1.1.2 - HY-Plugins)
HY-Plugins HY-Filter 3 (HKLM\...\HY-Filter 3_is1) (Version: 1.1.0 - HY-Plugins)
HY-Plugins HY-SEQ16x3 (HKLM\...\HY-SEQ16x3_is1) (Version: 1.4.0 - HY-Plugins)
HY-Plugins HY-SeqCollection (HKLM\...\HY-SeqCollection_is1) (Version: 1.2.5.2 - HY-Plugins)
IGdm 2.6.5 (HKU\S-1-5-21-4104487672-3836452688-4083331385-1001\...\1ead4f81-c61a-5fa6-9e81-7a8c0c868952) (Version: 2.6.5 - ifedapo olarewaju)
IK Multimedia Authorization Manager version 1.0.21 (HKLM\...\{85BC0DCB-69E5-4279-AA25-F108EF896588}_is1) (Version: 1.0.21 - IK Multimedia)
IL Download Manager (HKLM-x32\...\IL Download Manager) (Version: - Image-Line)
Initial Audio AR1 Reverb (HKLM\...\AR1 Reverb_is1) (Version: 1.0.1 - Initial Audio)
Instachord version 1.2.0 (HKLM\...\Instachord_is1) (Version: 1.2.0 - )
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.5.13.1706 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.4276 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 12.8.1.1000 - Intel Corporation)
Java 8 Update 241 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180241F0}) (Version: 8.0.2410.7 - Oracle Corporation)
JDownloader 2 (HKLM\...\jdownloader2) (Version: 2.0 - AppWork GmbH)
JMG Sound Hyperspace (HKLM\...\Hyperspace_is1) (Version: 1.7.0 - JMG Sound)
Junk Mail filter update (HKLM-x32\...\{0BE9E708-5DC0-4963-9CFD-0AA519090E79}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
K-Lite Codec Pack 10.3.5 Standard (HKLM-x32\...\KLiteCodecPack_is1) (Version: 10.3.5 - )
KMSpico v9.2.3 (HKLM\...\KMSpico_is1) (Version: 9.2.3 - )
Kodi (HKU\S-1-5-21-4104487672-3836452688-4083331385-1001\...\Kodi) (Version: - XBMC Foundation)
Kontakt 5 NO INSTALL (HKLM\...\{4B3E0D95-3270-4B88-9EDE-A065680EF65C}_is1) (Version: 5.6.6.16 - Native Instruments)
KORG ARP ODYSSEY (HKLM\...\ARP ODYSSEY_is1) (Version: 1.0.0 - KORG)
Lightworks (HKLM-x32\...\{E94DD4E4-7746-472c-AA7B-1242FED0CFC8}) (Version: 14.5.0.0 - EditShare)
Malwarebytes version 4.1.2.73 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.1.2.73 - Malwarebytes)
Massive (HKLM\...\Massive_is1) (Version: 1.5.5 - Native Instruments & Team V.R)
MATLAB R2013b (HKLM\...\Matlab R2013b) (Version: 8.2 - The MathWorks, Inc.)
Mediatek Bluetooth (HKLM\...\{16BCAEDC-C115-1729-07C4-7A0091C699A6}) (Version: 11.0.749.0 - Mediatek)
Melodo (HKLM\...\{1E1E1844-01A7-4D2E-8626-DF4AEC9F1745}) (Version: - Comelody)
Microsoft .NET Framework 1.1 (HKLM-x32\...\Microsoft .NET Framework 1.1 (1033)) (Version: - )
Microsoft Access database engine 2010 (English) (HKLM\...\{90140000-00D1-0409-1000-0000000FF1CE}) (Version: 14.0.6029.1000 - Microsoft Corporation)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 84.0.522.63 - Microsoft Corporation)
Microsoft Edge Update (HKLM-x32\...\Microsoft Edge Update) (Version: 1.3.133.5 - )
Microsoft Office Professional Plus 2013 (HKLM\...\Office15.PROPLUS) (Version: 15.0.4569.1506 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-4104487672-3836452688-4083331385-1001\...\OneDriveSetup.exe) (Version: 20.134.0705.0008 - Microsoft Corporation)
Microsoft Project Professional 2013 (HKLM\...\Office15.PRJPRO) (Version: 15.0.4569.1506 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50918.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Teams (HKU\S-1-5-21-4104487672-3836452688-4083331385-1001\...\Teams) (Version: 1.3.00.19173 - Microsoft Corporation)
Microsoft Visio Professional 2013 (HKLM\...\Office15.VISPRO) (Version: 15.0.4569.1506 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (HKLM\...\{350AA351-21FA-3270-8B7A-835434E766AD}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{820B6609-4C97-3A2B-B644-573B06A0F0CC}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (HKLM-x32\...\{22154f09-719a-4619-bb71-5b3356999fbf}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40660 (HKLM-x32\...\{ef6b00ec-13e1-4c25-9064-b2f383cb8412}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40660 (HKLM-x32\...\{61087a79-ac85-455c-934d-1fa22cc64f36}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.23.27820 (HKLM-x32\...\{852adda4-4c78-4a38-b583-c0b360a329d6}) (Version: 14.23.27820.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.23.27820 (HKLM-x32\...\{45231ab4-69fd-486a-859d-7a59fcd11013}) (Version: 14.23.27820.0 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft WSE 3.0 Runtime (HKLM-x32\...\{E3E71D07-CD27-46CB-8448-16D4FB29AA13}) (Version: 3.0.5305.0 - Microsoft Corp.)
Midi Madness 3.0.5 (HKLM-x32\...\Midi Madness 3_is1) (Version: - Midi Madness Software)
Movie Maker (HKLM-x32\...\{38F03569-A636-4CF3-BDDE-032C8C251304}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Movie Maker (HKLM-x32\...\{9C82436F-F19C-42A4-B476-F87A28A95BF9}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Movie Maker (HKLM-x32\...\{DD67BE4B-7E62-4215-AFA3-F123A800A389}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Mozilla Firefox 79.0 (x64 es-CL) (HKLM\...\Mozilla Firefox 79.0 (x64 es-CL)) (Version: 79.0 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 79.0.0.7506 - Mozilla)
Muramasa Audio MorphVerb (HKLM\...\MorphVerb_is1) (Version: 1.0.0 - Muramasa Audio)
Music Recorder (HKLM-x32\...\{F3949798-3544-433B-B5AB-A61F32F0386F}) (Version: 18.001.2 - Nero AG) Hidden
MusicLab RealGuitar 5 (HKLM\...\RealGuitar 5_is1) (Version: 5.0.0.7353 - MusicLab)
MusicLab RealStrat 5 (HKLM\...\RealStrat 5_is1) (Version: 5.0.2.7424 - MusicLab)
MusicLab Virtual Midi Driver (64-bit) (HKLM\...\{2B019162-86C7-4D14-AED0-2CB5110BA4FF}) (Version: 2.0.2.0 - MusicLab, Inc.)
Native Instruments Guitar Rig 5 (HKLM-x32\...\Native Instruments Guitar Rig 5) (Version: 5.2.2.8 - Native Instruments)
Native Instruments Kinetic Toys (HKLM-x32\...\Native Instruments Kinetic Toys) (Version: 1.0.0.39 - Native Instruments)
Native Instruments Raum (HKLM-x32\...\Native Instruments Raum) (Version: 1.0.0.29 - Native Instruments)
Nero BurningROM 2017 (HKLM-x32\...\{4ED596B9-4C35-4C80-A933-B3EC08575D5A}) (Version: 18.0.00900 - Nero AG)
Nero Info (HKLM-x32\...\{F030BFE8-8476-4C08-A553-233DE80A2BE1}) (Version: 18.0.0010 - Nero AG)
Noise Reduction Plug-In 2.0 (HKLM-x32\...\{B94515E1-2DD6-11E2-849E-F04DA23A5C58}) (Version: 2.0.515 - Sony)
NordVPN (HKLM\...\{19465C24-3D5D-4327-B99F-3CC0A1D38151}_is1) (Version: 6.31.5.0 - TEFINCOM S.A.)
NordVPN network TAP (HKLM-x32\...\{97DEC5D6-2BE9-45BB-BFC5-274B851B486B}) (Version: 1.0.1 - NordVPN)
NordVPN network TUN (HKLM\...\{73EC9EBF-8350-4C38-9262-3CB464532FA9}) (Version: 1.0.0 - NordVPN)
NVIDIA PhysX (HKLM-x32\...\{3F5C371F-8EA2-4F25-9D3D-D0B4526E3AEA}) (Version: 9.10.0513 - NVIDIA Corporation)
Outils de vérification linguistique 2013 de Microsoft Office - Français (HKLM\...\{90150000-001F-040C-1000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Paquete de controladores de Windows - libusbK Nintendo Switch APX Mode (04/27/2014 3.0.7.0) (HKLM\...\5C4BD94286C931BB5D47200B4AF1D1B99B3C08AB) (Version: 04/27/2014 3.0.7.0 - libusbK)
Paquete de idioma de Microsoft Visual Studio 2010 Tools para Office Runtime (x64) - ESN (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - ESN) (Version: 10.0.50903 - Microsoft Corporation)
PowerFactory SelfExtracting Installer (HKLM-x32\...\DIgSILENT SelfExtracting Installer) (Version: PowerFactory 15.1.7.0 - )
Prerequisite installer (HKLM-x32\...\{EB511CD1-C87C-490D-A7B1-D6C47F57820F}) (Version: 18.0.0003 - Nero AG) Hidden
PreSonus Studio One 4 (HKLM\...\Studio One 4_is1) (Version: 4.1.1 - PreSonus)
Project64 version 2.3.2.202 (HKLM-x32\...\{BEB5FB69-4080-466F-96C4-F15DF271718B}_is1) (Version: 2.3.2.202 - )
Pulsar Echorec (HKLM\...\Echorec_is1) (Version: 1.2.5 - Pulsar)
PX Profile Update (HKLM-x32\...\{105BAE8E-F5ED-3AB3-8927-EF21DF79B812}) (Version: 1.00.1. - AMD) Hidden
QuickTime 7 (HKLM-x32\...\{3D2CBC2C-65D4-4463-87AB-BB2C859C1F3E}) (Version: 7.76.80.95 - Apple Inc.)
Rainlendar2 (remove only) (HKLM-x32\...\Rainlendar2) (Version: - )
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 1.1.9200.20 - Realtek Semiconductor Corp.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7010 - Realtek Semiconductor Corp.)
reFX Nexus VSTi RTAS v2.2.0 (HKLM-x32\...\reFX Nexus_is1) (Version: - )
Reverse (HKLM-x32\...\{Reverse-InitialAudio}) (Version: 1.0.3 - Initial Audio)
Revisores de Texto do Microsoft Office 2013 – Português do Brasil (HKLM\...\{90150000-001F-0416-1000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
RF Music Chord Player (HKLM\...\Chord Player_is1) (Version: 1.0.0.1 - RF Music)
Scaler (HKLM\...\Scaler_is1) (Version: 1.6.0 - Plugin Boutique)
SDFormatter (HKLM-x32\...\{179324FF-7B16-4BA8-9836-055CAAEE4F08}) (Version: 4.0.0 - SD Association)
Sentinel Runtime (HKLM-x32\...\{F34EC0EF-C63C-42CF-8825-3855F84C3E45}) (Version: 6.62.1.43298 - SafeNet Inc.)
Sentinel System Driver 5.41.1 (32-bit) (HKLM-x32\...\{5081528F-5DD5-49BA-8213-9A6A13502497}) (Version: 5.41.1 - Rainbow Technologies)
Serato Pitch n Time Pro (HKLM\...\Pitch n Time Pro_is1) (Version: 3.0.1 - Serato)
Service Pack 1 for Microsoft Office 2013 (KB2817430) 64-Bit Edition (HKLM\...\{90150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUS_{D82063A8-7C8C-4C3B-A9BB-95138CA55D26}) (Version: - Microsoft)
Service Pack 1 for Microsoft Project 2013 (KB2817433) 64-Bit Edition (HKLM\...\{90150000-003B-0000-1000-0000000FF1CE}_Office15.PRJPRO_{6E5C415F-1388-4BA6-B926-C19318BE6075}) (Version: - Microsoft)
Service Pack 1 for Microsoft Visio 2013 (KB2817443) 64-Bit Edition (HKLM\...\{90150000-0051-0000-1000-0000000FF1CE}_Office15.VISPRO_{F0C12872-B60D-4E37-A2F9-20C46A5E1F1A}) (Version: - Microsoft)
Skype™ 7.28 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.28.101 - Skype Technologies S.A.)
SlowMo (HKLM-x32\...\{SlowMo-InitialAudio}) (Version: 1.0.3 - Initial Audio)
Songwriters Pack (HKLM-x32\...\{79D6A742-6416-44A4-BD66-C64A06721061}) (Version: 1.0.0 - Toontrack)
SoulseekQt versión 2016.4.24 (HKLM-x32\...\{8A4E1646-488C-4E5B-AC31-F784400E8D2D}_is1) (Version: 2016.4.24 - Soulseek LLC)
Sound Forge Pro 10.0 (HKLM-x32\...\{8EF5E2B0-2DD1-11E2-89A5-F04DA23A5C58}) (Version: 10.0.507 - Sony)
Spotify (HKU\S-1-5-21-4104487672-3836452688-4083331385-1001\...\Spotify) (Version: 1.1.4.197.g92d52c4f - Spotify AB)
Steinberg Retrologue 2.2.0 (HKLM\...\Steinberg Retrologue 2.2.0_is1) (Version: 2.2.0 - Steinberg & Team V.R)
Sugar Bytes TransVST 1.0 (HKLM\...\TransVST_is1) (Version: 1.0 - Sugar Bytes)
Synthwave Drums 1.00 (HKLM-x32\...\Synthwave Drums 1.00) (Version: 1.00 - Beatskillz)
TAP-Windows 9.21.2 (HKLM\...\TAP-Windows) (Version: 9.21.2 - OpenVPN Technologies, Inc.)
TEAM R2R KORG Collection Authorizer (HKLM\...\KORG Collection Authorizer_is1) (Version: 1.0.0 - TEAM R2R)
TegraRcmGUI (HKLM-x32\...\{FD7196C9-BD86-4736-AF9D-7CFCB9E03E67}) (Version: 2.6.0 - eliboa) Hidden
TegraRcmGUI (HKLM-x32\...\TegraRcmGUI 2.6.0) (Version: 2.6.0 - eliboa)
Telegram Desktop version 2.3 (HKU\S-1-5-21-4104487672-3836452688-4083331385-1001\...\{53F49750-6209-4FBF-9CA8-7A333C87D1ED}_is1) (Version: 2.3 - Telegram FZ-LLC)
Teleport Ultra (Trial Version) (HKLM-x32\...\Teleport Ultra) (Version: 1.62 - Tennyson Maxwell Information Systems, Inc.)
Topaz Detail 3 (HKLM-x32\...\Topaz Detail 3) (Version: 3.2.0 - Topaz Labs, LLC)
Topaz Fusion Express 2 (HKLM-x32\...\Topaz Fusion Express 2) (Version: 2.1.3 - Topaz Labs, LLC)
TortoiseSVN 1.8.5.25224 (64 bit) (HKLM\...\{57FCA88C-D94A-490A-B8C6-8ECC3A9A48D2}) (Version: 1.8.25224 - TortoiseSVN)
Turbo-Speed Reader 1.0 (HKLM-x32\...\Turbo-Speed Reader 1.0) (Version: 1.0 - Ramón Campayo)
UJAM Virtual Drummer HEAVY (HKLM\...\Virtual Drummer HEAVY_is1) (Version: 1.0.0 - UJAM)
UJAM Virtual Drummer PHAT (HKLM\...\Virtual Drummer PHAT_is1) (Version: 1.0.0 - UJAM)
Update for Skype for Business 2015 (KB4484289) 64-Bit Edition (HKLM\...\{90150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUS_{1C76EBD9-0A70-4094-A543-00CAA3B62113}) (Version: - Microsoft)
Update for Skype for Business 2015 (KB4484289) 64-Bit Edition (HKLM\...\{90150000-00C1-0000-1000-0000000FF1CE}_Office15.PRJPRO_{1C76EBD9-0A70-4094-A543-00CAA3B62113}) (Version: - Microsoft)
Update for Skype for Business 2015 (KB4484289) 64-Bit Edition (HKLM\...\{90150000-00C1-0000-1000-0000000FF1CE}_Office15.PROPLUS_{1C76EBD9-0A70-4094-A543-00CAA3B62113}) (Version: - Microsoft)
Update for Skype for Business 2015 (KB4484289) 64-Bit Edition (HKLM\...\{90150000-00C1-0000-1000-0000000FF1CE}_Office15.VISPRO_{1C76EBD9-0A70-4094-A543-00CAA3B62113}) (Version: - Microsoft)
Update for Skype for Business 2015 (KB4484289) 64-Bit Edition (HKLM\...\{90150000-012B-0C0A-1000-0000000FF1CE}_Office15.PROPLUS_{1C76EBD9-0A70-4094-A543-00CAA3B62113}) (Version: - Microsoft)
Virtual Guitarist AMBER version 1.0.1 (HKLM-x32\...\9EA83D4D-671C-4BEC-9A66-D3CBC0796FCA_is1) (Version: 1.0.1 - NXTGN Music Technology GmbH)
Virtual Guitarist IRON version 1.0.1 (HKLM-x32\...\{CDC41295-5C54-4598-AC75-63F44EFC3F39}_is1) (Version: 1.0.1 - NXTGN Music Technology GmbH)
Virtual Guitarist SILK version 1.0.0 (HKLM-x32\...\232A9D79-F28F-432D-B3B9-97029962D3A7_is1) (Version: 1.0.0 - NXTGN Music Technology GmbH)
Virtual Guitarist SPARKLE version 1.0.0 (HKLM-x32\...\232A9D79-F28F-432D-B3B9-96029962D3A7_is1) (Version: 1.0.0 - NXTGN Music Technology GmbH)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.8 - VideoLAN)
WhatsApp (HKU\S-1-5-21-4104487672-3836452688-4083331385-1001\...\WhatsApp) (Version: 2.2033.7 - WhatsApp)
Winamp (HKLM-x32\...\Winamp) (Version: 5.666 - Nullsoft, Inc)
WinAVI All-in-One Converter (HKLM-x32\...\WinAVI All-in-One Converter) (Version: 1.7.0.4734 - ZJMedia Digital Technology Ltd.)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation)
WinRAR 5.01 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.01.0 - win.rar GmbH)
WinZip 17.0 (HKLM\...\{CD95F661-A5C4-44F5-A6AA-ECDD91C240D7}) (Version: 17.0.10283 - WinZip Computing, S.L. )
Wondershare Filmora9(Build 9.3.5) (HKLM\...\Wondershare Filmora9_is1) (Version: - Wondershare Software)
Wondershare Helper Compact 2.6.0 (HKLM-x32\...\{5363CE84-5F09-48A1-8B6C-6BB590FFEDF2}_is1) (Version: 2.6.0 - Wondershare)
XLN Audio RC-20 Retro Color (HKLM\...\RC-20 Retro Color_is1) (Version: 1.0.5 - XLN Audio)
Zoom (HKU\S-1-5-21-4104487672-3836452688-4083331385-1001\...\ZoomUMX) (Version: 5.0 - Zoom Video Communications, Inc.)
Zynaptiq ADAPTIVERB (HKLM\...\ADAPTIVERB_is1) (Version: 1.1.2 - Zynaptiq)
Zynaptiq MORPH (HKLM\...\MORPH_is1) (Version: 2.3.1 - Zynaptiq)
Zynaptiq PITCHMAP (HKLM\...\PITCHMAP_is1) (Version: 1.6.3 - Zynaptiq)
Zynaptiq WORMHOLE (HKLM\...\WORMHOLE_is1) (Version: 1.0.2 - Zynaptiq)
Packages:
=========
!2048! -> C:\Program Files\WindowsApps\Ingenify.20_2.5.1.0_x64__ttw4g35v4x5tm [2016-12-16] (Martin Freitag) [MS Ad]
Biblioteca de Microsoft Windows para JavaScript -> C:\Program Files\WindowsApps\Microsoft.WinJS.2.0.Preview_1.0.9431.0_neutral__8wekyb3d8bbwe [2014-03-16] (Extensiones de plataforma de Microsoft)
Biblioteca de Microsoft Windows para JavaScript -> C:\Program Files\WindowsApps\Microsoft.WinJS.Preview.1_1.0.9345.0_neutral__8wekyb3d8bbwe [2014-03-16] (Microsoft Platform Extensions)
Cartelera de Cine Papaya -> C:\Program Files\WindowsApps\Holosens.CarteleradeCinePapaya_1.0.0.5_neutral__azecjanc0fb0w [2014-03-15] (Holosens)
Chile V 2.0 -> C:\Program Files\WindowsApps\25372EfrainRebolledoPizar.ChileV2.0_1.0.0.6_neutral__e6dr8cce1shw6 [2014-03-15] (Efrain Rebolledo Pizarro)
Colores de Sonidos -> C:\Program Files\WindowsApps\Birdie.ColoresdeSonidos_0.0.0.2_neutral__pj5pj1yedvnst [2014-03-15] (Birdie)
Conspiraciones Salfate -> C:\Program Files\WindowsApps\51638JFelixStudio.ConspiracionesSalfate_1.0.0.8_neutral__s0pag96n8hezc [2014-03-15] (JFelix Studio)
Dead Call: Combat Trigger & Modern Duty Hunter 3D -> C:\Program Files\WindowsApps\C40DCF4F.DeadCallCombatTriggerModernDutyHunter3D_1.0.3.0_x86__b6sb9g8avsqk2 [2016-01-25] (T-Bull)
Despegar.com -> C:\Program Files\WindowsApps\Decolar.com.Despegar.com_1.1.3.1_neutral__fmzbkpmdm7xqc [2014-09-24] (Despegar.com)
Diarios Chile -> C:\Program Files\WindowsApps\57071CopypasteApps.DiariosChile_1.0.0.9_neutral__d6d9g5bm83gdt [2014-03-15] (CopypasteApps)
Farm Up -> C:\Program Files\WindowsApps\780F5C7B.FarmUp_1.7.1.10_x86__0gmyx1dmsk3dw [2015-10-23] (Realore Ltd)
Feriados de Chile -> C:\Program Files\WindowsApps\Birdie.FeriadosdeChile_1.1.0.0_neutral__pj5pj1yedvnst [2014-03-15] (Birdie)
Find a Way Soccer -> C:\Program Files\WindowsApps\HelloThere.FindaWaySoccer_1.1.0.4_x86__8tz783b8a8h26 [2014-08-02] (Hello There)
Flapi Chile -> C:\Program Files\WindowsApps\Birdie.FlapiChile_1.0.0.5_neutral__pj5pj1yedvnst [2014-03-15] (Birdie)
Fútbol PRO Chile -> C:\Program Files\WindowsApps\54273TICapacitacinAppUniv.FtbolPROChile_1.0.0.0_neutral__pbpxf84070v5g [2014-03-15] (TI Capacitación & Universidad de desarrollo)
GRU. MI VILLANO FAVORITO: Minion Rush -> C:\Program Files\WindowsApps\GAMELOFTSA.DespicableMeMinionRush_4.1.4.1_x86__0pp20fcewvvtj [2019-11-06] (GAMELOFT SA)
Hill Climb Racing -> C:\Program Files\WindowsApps\Fingersoft.HillClimbRacing_1.29.10.71_x86__r6rtpscs7gwyg [2016-07-03] (Fingersoft) [MS Ad]
Hills Of Glory 3D Free -> C:\Program Files\WindowsApps\AdvancedMobileApplication.HillsOfGlory3DFree_1.5.0.6538_x86__e8bwa11sm2b6c [2014-08-02] (Advanced Mobile Applications Ltd.)
Jetpack Joyride -> C:\Program Files\WindowsApps\HalfbrickStudiosPtyLtd.JetpackJoyride_1.0.3.68_x86__w77bc8x1h5kya [2014-08-02] (Halfbrick Studios Pty Ltd)
Juegos -> C:\Program Files\WindowsApps\Microsoft.XboxLIVEGames_2.0.139.0_x64__8wekyb3d8bbwe [2014-03-16] (Microsoft Corporation) [MS Ad]
La Tercera -> C:\Program Files\WindowsApps\CONSORCIOPERIODISTICODECH.LaTercera_2.0.0.0_neutral__5vv07n1j3rt0c [2014-04-11] (CONSORCIO PERIODISTICO DE CHILE S A COPESA)
Mapcity -> C:\Program Files\WindowsApps\mapcity.Mapcity_1.0.0.5_neutral__wvyvcy90y47ga [2014-03-15] (MAPCITY COM CHILE S A)
Meteorología Chile -> C:\Program Files\WindowsApps\infoaccion.MeteorologaChile_1.6.0.0_neutral__tfkgj0h23beae [2016-10-29] (infoaccion)
Microsoft Jigsaw -> C:\Program Files\WindowsApps\Microsoft.MicrosoftJigsaw_1.9.1911.0_x86__8wekyb3d8bbwe [2019-12-19] (Microsoft Studios) [MS Ad]
Microsoft PlayReady -> C:\Program Files\WindowsApps\Microsoft.Internal.Media.PlayReadyClient_2.3.1678.1_x64__8wekyb3d8bbwe [2014-03-16] (Microsoft Corporation)
Microsoft PlayReady -> C:\Program Files\WindowsApps\Microsoft.Internal.Media.PlayReadyClient_2.3.1678.1_x86__8wekyb3d8bbwe [2014-03-16] (Microsoft Corporation)
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_2.11.1807.1002_x86__8wekyb3d8bbwe [2018-07-26] (Microsoft Studios) [MS Ad]
Microsoft Visual C++ Runtime Package -> C:\Program Files\WindowsApps\Microsoft.VCLibs.120.00.Preview.Internal_12.0.20222.2_x64__8wekyb3d8bbwe [2014-03-16] (Microsoft Platform Extensions Internal)
Microsoft Visual C++ Runtime Package -> C:\Program Files\WindowsApps\Microsoft.VCLibs.120.00.Preview.Internal_12.0.20222.2_x86__8wekyb3d8bbwe [2014-03-16] (Microsoft Platform Extensions Internal)
Microsoft Windows Library for JavaScript -> C:\Program Files\WindowsApps\Microsoft.WinJS.2.0.Preview.Internal_1.0.9385.3_neutral__8wekyb3d8bbwe [2014-03-16] (Microsoft Platform Extensions)
Movie ShowTime -> C:\Program Files\WindowsApps\24264Craftbox.Showtime_8.2.0.8_neutral__hqe9ecxhfeext [2014-06-26] (Craftbox) [MS Ad]
MSN Dinero -> C:\Program Files\WindowsApps\Microsoft.BingFinance_3.0.4.344_x64__8wekyb3d8bbwe [2016-04-27] (Microsoft Corporation) [MS Ad]
MSN El tiempo -> C:\Program Files\WindowsApps\Microsoft.BingWeather_3.0.4.350_x64__8wekyb3d8bbwe [2016-11-26] (Microsoft Corporation) [MS Ad]
MSN Recetas -> C:\Program Files\WindowsApps\Microsoft.BingFoodAndDrink_3.0.4.336_x64__8wekyb3d8bbwe [2015-07-24] (Microsoft Corporation) [MS Ad]
MSN Viajes -> C:\Program Files\WindowsApps\Microsoft.BingTravel_3.0.4.336_x64__8wekyb3d8bbwe [2015-07-24] (Microsoft Corporation) [MS Ad]
Música -> C:\Program Files\WindowsApps\Microsoft.ZuneMusic_2.6.672.0_x64__8wekyb3d8bbwe [2015-03-16] (Microsoft Corporation) [MS Ad]
My Country -> C:\Program Files\WindowsApps\0EB8BD08.MyCountry_2.0.0.48_x86__erk4rrwmt7jyt [2014-08-02] (GAME INSIGHT GLOBAL LIMITED)
ONEMI Twitt -> C:\Program Files\WindowsApps\15958igutierr.ONEMITwitt_1.0.0.4_neutral__pqncrep8hd2hm [2014-03-15] (igutierr)
PressReader -> C:\Program Files\WindowsApps\NewspaperDirect.PressReader_4.3.15.708_x64__f09x14bt6ejbt [2015-07-24] (NewspaperDirect)
The Island: Castaway® 2 -> C:\Program Files\WindowsApps\828B5831.TheIslandCastaway2_1.0.0.0_x86__ytsefhwckbdv6 [2014-08-02] (G5 Entertainment AB)
TV Cable Chile -> C:\Program Files\WindowsApps\infoaccion.TVCableChile_2.2.0.0_neutral__tfkgj0h23beae [2016-01-25] (infoaccion)
Vídeo -> C:\Program Files\WindowsApps\Microsoft.ZuneVideo_2.6.446.0_x64__8wekyb3d8bbwe [2015-11-07] (Microsoft Corporation) [MS Ad]
Where's My Water? 2 -> C:\Program Files\WindowsApps\Disney.WheresMyWater2_1.3.0.8_x86__6rarf9sa4v8jt [2016-03-26] (Disney)
Zombie Tsunami -> C:\Program Files\WindowsApps\Mobigame.ZombieTsunami_1.0.0.9_x86__h25k0et6wkna2 [2014-08-01] (Mobigame)
==================== Personalizado CLSID (Lista blanca): ==============
(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)
CustomCLSID: HKU\S-1-5-21-4104487672-3836452688-4083331385-1001_Classes\CLSID\{005A3A96-BAC4-4B0A-94EA-C0CE100EA736}\localserver32 -> C:\Users\Soulless\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc -> Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-4104487672-3836452688-4083331385-1001_Classes\CLSID\{19A6E644-14E6-4A60-B8D7-DD20610A871D}\InprocServer32 -> C:\Users\Soulless\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.20107.1\x64\Microsoft.Teams.AddinLoader.dll (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-4104487672-3836452688-4083331385-1001_Classes\CLSID\{1b442ae8-58f5-4984-9f9d-7767e553d851}\InprocServer32 -> C:\Windows\system32\dfshim.dll (Microsoft Windows -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-4104487672-3836452688-4083331385-1001_Classes\CLSID\{22A8794C-E808-52FA-40C1-F0D8F63A947A}\InprocServer32 -> no ruta de acceso de archivo
CustomCLSID: HKU\S-1-5-21-4104487672-3836452688-4083331385-1001_Classes\CLSID\{7DB2F5A2-947C-4E23-F2FD-85DA573ACF5B}\InprocServer32 -> no ruta de acceso de archivo
CustomCLSID: HKU\S-1-5-21-4104487672-3836452688-4083331385-1001_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\Windows\system32\igfxEM.exe (Intel Corporation - pGFX -> Intel Corporation)
CustomCLSID: HKU\S-1-5-21-4104487672-3836452688-4083331385-1001_Classes\CLSID\{B39830FC-79B2-99BC-9282-9ED0CC38F9CD}\InprocServer32 -> no ruta de acceso de archivo
CustomCLSID: HKU\S-1-5-21-4104487672-3836452688-4083331385-1001_Classes\CLSID\{CB965DF1-B8EA-49C7-BDAD-5457FDC1BF92}\InprocServer32 -> C:\Users\Soulless\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.20107.1\x64\Microsoft.Teams.AddinLoader.dll (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-4104487672-3836452688-4083331385-1001_Classes\CLSID\{E8CF3E55-F919-49D9-ABC0-948E6CB34B9F}\InprocServer32 -> C:\Users\Soulless\AppData\Local\Google\Update\1.3.35.452\psuser_64.dll (Google LLC -> Google LLC)
CustomCLSID: HKU\S-1-5-21-4104487672-3836452688-4083331385-1001_Classes\CLSID\{E9E7529D-7F09-410B-AF2A-CC154473B19C}\InprocServer32 -> C:\Users\Soulless\AppData\Local\Google\Update\1.3.35.452\psuser_64.dll (Google LLC -> Google LLC)
CustomCLSID: HKU\S-1-5-21-4104487672-3836452688-4083331385-1001_Classes\CLSID\{ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C}\InprocServer32 -> C:\Users\Soulless\AppData\Roaming\Dropbox\bin\DropboxExt64.44.0.dll (Dropbox, Inc -> Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-4104487672-3836452688-4083331385-1001_Classes\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Soulless\AppData\Roaming\Dropbox\bin\DropboxExt64.44.0.dll (Dropbox, Inc -> Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-4104487672-3836452688-4083331385-1001_Classes\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Soulless\AppData\Roaming\Dropbox\bin\DropboxExt64.44.0.dll (Dropbox, Inc -> Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-4104487672-3836452688-4083331385-1001_Classes\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Soulless\AppData\Roaming\Dropbox\bin\DropboxExt64.44.0.dll (Dropbox, Inc -> Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-4104487672-3836452688-4083331385-1001_Classes\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Soulless\AppData\Roaming\Dropbox\bin\DropboxExt64.44.0.dll (Dropbox, Inc -> Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-4104487672-3836452688-4083331385-1001_Classes\CLSID\{FB314EDD-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Soulless\AppData\Roaming\Dropbox\bin\DropboxExt64.44.0.dll (Dropbox, Inc -> Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-4104487672-3836452688-4083331385-1001_Classes\CLSID\{FB314EDE-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Soulless\AppData\Roaming\Dropbox\bin\DropboxExt64.44.0.dll (Dropbox, Inc -> Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-4104487672-3836452688-4083331385-1001_Classes\CLSID\{FB314EDF-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Soulless\AppData\Roaming\Dropbox\bin\DropboxExt64.44.0.dll (Dropbox, Inc -> Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-4104487672-3836452688-4083331385-1001_Classes\CLSID\{FB314EE0-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Soulless\AppData\Roaming\Dropbox\bin\DropboxExt64.44.0.dll (Dropbox, Inc -> Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-4104487672-3836452688-4083331385-1001_Classes\CLSID\{FB314EE1-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Soulless\AppData\Roaming\Dropbox\bin\DropboxExt64.44.0.dll (Dropbox, Inc -> Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-4104487672-3836452688-4083331385-1001_Classes\CLSID\{FB314EE2-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Soulless\AppData\Roaming\Dropbox\bin\DropboxExt64.44.0.dll (Dropbox, Inc -> Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-4104487672-3836452688-4083331385-1001_Classes\CLSID\{FBC9D74C-AF55-4309-9FB2-C426E071637F}\InprocServer32 -> C:\Users\Soulless\AppData\Roaming\Dropbox\bin\DropboxExt64.44.0.dll (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ MEGA (Pending)] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => -> Ningún archivo
ShellIconOverlayIdentifiers: [ MEGA (Synced)] -> {05B38830-F4E9-4329-978B-1DD28605D202} => -> Ningún archivo
ShellIconOverlayIdentifiers: [ MEGA (Syncing)] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => -> Ningún archivo
ShellIconOverlayIdentifiers: [1TortoiseNormal] -> {C5994560-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2011-06-13] (Stefan Kueng. Open Source Developer -> hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers: [2TortoiseModified] -> {C5994561-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2011-06-13] (Stefan Kueng. Open Source Developer -> hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers: [3TortoiseConflict] -> {C5994562-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2011-06-13] (Stefan Kueng. Open Source Developer -> hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers: [4TortoiseLocked] -> {C5994563-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2011-06-13] (Stefan Kueng. Open Source Developer -> hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers: [5TortoiseReadOnly] -> {C5994564-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2011-06-13] (Stefan Kueng. Open Source Developer -> hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers: [6TortoiseDeleted] -> {C5994565-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2011-06-13] (Stefan Kueng. Open Source Developer -> hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers: [7TortoiseAdded] -> {C5994566-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2011-06-13] (Stefan Kueng. Open Source Developer -> hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers: [8TortoiseIgnored] -> {C5994567-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2011-06-13] (Stefan Kueng. Open Source Developer -> hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers: [9TortoiseUnversioned] -> {C5994568-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2011-06-13] (Stefan Kueng. Open Source Developer -> hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Soulless\AppData\Roaming\Dropbox\bin\DropboxExt64.44.0.dll [2020-08-04] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Soulless\AppData\Roaming\Dropbox\bin\DropboxExt64.44.0.dll [2020-08-04] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Soulless\AppData\Roaming\Dropbox\bin\DropboxExt64.44.0.dll [2020-08-04] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt4] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Soulless\AppData\Roaming\Dropbox\bin\DropboxExt64.44.0.dll [2020-08-04] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ MEGA (Pending)] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => -> Ningún archivo
ShellIconOverlayIdentifiers-x32: [ MEGA (Synced)] -> {05B38830-F4E9-4329-978B-1DD28605D202} => -> Ningún archivo
ShellIconOverlayIdentifiers-x32: [ MEGA (Syncing)] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => -> Ningún archivo
ShellIconOverlayIdentifiers-x32: [1TortoiseNormal] -> {C5994560-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2011-06-13] (Stefan Kueng. Open Source Developer -> hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers-x32: [2TortoiseModified] -> {C5994561-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2011-06-13] (Stefan Kueng. Open Source Developer -> hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers-x32: [3TortoiseConflict] -> {C5994562-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2011-06-13] (Stefan Kueng. Open Source Developer -> hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers-x32: [4TortoiseLocked] -> {C5994563-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2011-06-13] (Stefan Kueng. Open Source Developer -> hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers-x32: [5TortoiseReadOnly] -> {C5994564-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2011-06-13] (Stefan Kueng. Open Source Developer -> hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers-x32: [6TortoiseDeleted] -> {C5994565-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2011-06-13] (Stefan Kueng. Open Source Developer -> hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers-x32: [7TortoiseAdded] -> {C5994566-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2011-06-13] (Stefan Kueng. Open Source Developer -> hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers-x32: [8TortoiseIgnored] -> {C5994567-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2011-06-13] (Stefan Kueng. Open Source Developer -> hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers-x32: [9TortoiseUnversioned] -> {C5994568-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2011-06-13] (Stefan Kueng. Open Source Developer -> hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers-x32: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Soulless\AppData\Roaming\Dropbox\bin\DropboxExt64.44.0.dll [2020-08-04] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Soulless\AppData\Roaming\Dropbox\bin\DropboxExt64.44.0.dll [2020-08-04] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Soulless\AppData\Roaming\Dropbox\bin\DropboxExt64.44.0.dll [2020-08-04] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [Archivo no firmado]
ContextMenuHandlers1: [Adobe.Acrobat.ContextMenu] -> {A6595CD1-BF77-430A-A452-18696685F7C7} => C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat Elements\ContextMenuShim64.dll [2012-09-23] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
ContextMenuHandlers1: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET NOD32 Antivirus\shellExt.dll [2020-07-30] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers1: [IObitUnstaler] -> {836AB26C-2DE4-41D3-AC24-4C6C2699B960} => -> Ningún archivo
ContextMenuHandlers1: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => -> Ningún archivo
ContextMenuHandlers1: [TortoiseSVN] -> {30351349-7B7D-4FCC-81B4-1E394CA267EB} => C:\Program Files\TortoiseSVN\bin\TortoiseStub.dll [2014-02-18] (Open Source Developer, Stefan Kueng -> )
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2013-12-01] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2013-12-01] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1: [WinZip] -> {E0D79304-84BE-11CE-9641-444553540000} => C:\Program Files\WinZip\wzshls64.dll [2012-10-12] (WinZip Computing -> WinZip Computing, S.L.)
ContextMenuHandlers2: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET NOD32 Antivirus\shellExt.dll [2020-07-30] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers2: [TortoiseSVN] -> {30351349-7B7D-4FCC-81B4-1E394CA267EB} => C:\Program Files\TortoiseSVN\bin\TortoiseStub.dll [2014-02-18] (Open Source Developer, Stefan Kueng -> )
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2020-08-25] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers3: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => -> Ningún archivo
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [Archivo no firmado]
ContextMenuHandlers4: [IObitUnstaler] -> {836AB26C-2DE4-41D3-AC24-4C6C2699B960} => -> Ningún archivo
ContextMenuHandlers4: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => -> Ningún archivo
ContextMenuHandlers4: [TortoiseSVN] -> {30351349-7B7D-4FCC-81B4-1E394CA267EB} => C:\Program Files\TortoiseSVN\bin\TortoiseStub.dll [2014-02-18] (Open Source Developer, Stefan Kueng -> )
ContextMenuHandlers4: [WinZip] -> {E0D79304-84BE-11CE-9641-444553540000} => C:\Program Files\WinZip\wzshls64.dll [2012-10-12] (WinZip Computing -> WinZip Computing, S.L.)
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\atiacm64.dll [2013-11-05] (Advanced Micro Devices, Inc.) [Archivo no firmado]
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> Ningún archivo
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\Windows\system32\igfxDTCM.dll [2015-08-27] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers5: [TortoiseSVN] -> {30351349-7B7D-4FCC-81B4-1E394CA267EB} => C:\Program Files\TortoiseSVN\bin\TortoiseStub.dll [2014-02-18] (Open Source Developer, Stefan Kueng -> )
ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [Archivo no firmado]
ContextMenuHandlers6: [Adobe.Acrobat.ContextMenu] -> {A6595CD1-BF77-430A-A452-18696685F7C7} => C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat Elements\ContextMenuShim64.dll [2012-09-23] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
ContextMenuHandlers6: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET NOD32 Antivirus\shellExt.dll [2020-07-30] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers6: [IObitUnstaler] -> {836AB26C-2DE4-41D3-AC24-4C6C2699B960} => -> Ningún archivo
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2020-08-25] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers6: [TortoiseSVN] -> {30351349-7B7D-4FCC-81B4-1E394CA267EB} => C:\Program Files\TortoiseSVN\bin\TortoiseStub.dll [2014-02-18] (Open Source Developer, Stefan Kueng -> )
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2013-12-01] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2013-12-01] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6: [WinZip] -> {E0D79304-84BE-11CE-9641-444553540000} => C:\Program Files\WinZip\wzshls64.dll [2012-10-12] (WinZip Computing -> WinZip Computing, S.L.)
ContextMenuHandlers1_S-1-5-21-4104487672-3836452688-4083331385-1001: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Users\Soulless\AppData\Roaming\Dropbox\bin\DropboxExt64.44.0.dll [2020-08-04] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers4_S-1-5-21-4104487672-3836452688-4083331385-1001: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Users\Soulless\AppData\Roaming\Dropbox\bin\DropboxExt64.44.0.dll [2020-08-04] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers5_S-1-5-21-4104487672-3836452688-4083331385-1001: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Users\Soulless\AppData\Roaming\Dropbox\bin\DropboxExt64.44.0.dll [2020-08-04] (Dropbox, Inc -> Dropbox, Inc.)
==================== Codecs (Lista blanca) ====================
(Si una entrada es incluida en el fixlist, el elemento del registro será restaurado a su valor predeterminado o será eliminado. El archivo no será movido.)
HKLM\...\Drivers32: [msacm.ac3filter] => C:\Windows\system32\ac3filter64.acm [2231296 2013-04-05] () [Archivo no firmado]
HKLM\...\Drivers32: [msacm.vorbis] => C:\Windows\system32\vorbis.acm [1562432 2017-03-01] (Image Line -> HMS hxxp://hp.vector.co.jp/authors/VA012897/) [Archivo no firmado]
HKLM\...\Drivers32: [vidc.VP60] => C:\Windows\SysWOW64\vp6vfw.dll [447752 2013-01-30] (Electronic Arts -> On2.com)
HKLM\...\Drivers32: [vidc.VP61] => C:\Windows\SysWOW64\vp6vfw.dll [447752 2013-01-30] (Electronic Arts -> On2.com)
HKLM\...\Drivers32: [msacm.ac3filter] => C:\Windows\SysWOW64\ac3filter.acm [1679360 2013-04-05] () [Archivo no firmado]
HKLM\...\Drivers32: [msacm.vorbis] => C:\Windows\SysWOW64\vorbis.acm [1456448 2017-03-01] (Image Line -> HMS hxxp://hp.vector.co.jp/authors/VA012897/) [Archivo no firmado]
==================== Accesos directos & WMI ========================
(Las entradas pueden ser listadas para ser restauradas o eliminadas.)
Shortcut: C:\Users\Soulless\Desktop\GIOVANNI ESCRITORIO\paravirus.BAT - Acceso directo.lnk -> C:\Users\Soulless\Desktop\paravirus.BAT (Ningún archivo)
Shortcut: C:\Users\Soulless\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\eBook DRM Removal\Website.lnk -> hxxp://www.ebook-converter.com
ShortcutWithArgument: C:\Users\Soulless\Desktop\GIOVANNI ESCRITORIO\Persona 1 - Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory="Profile 12"
ShortcutWithArgument: C:\Users\Soulless\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\b42be1c9c51179ef\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory="Profile 7"
ShortcutWithArgument: C:\Users\Soulless\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\9501e18d7c2ab92e\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory="Profile 2"
ShortcutWithArgument: C:\Users\Soulless\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\600fb694c0849943\Giovanni Erazo - Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory="Profile 9"
ShortcutWithArgument: C:\Users\Soulless\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\225bb61db2f318c1\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory="Profile 3"
==================== Módulos cargados (Lista blanca) =============
2012-09-23 20:44 - 2012-09-23 20:44 - 000010240 _____ (Adobe Systems Inc.) [Archivo no firmado] C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\locale\es_es\Acrobat Elements\ContextMenuShim64.esp
2013-11-05 08:44 - 2013-11-05 08:44 - 000897024 _____ (Advanced Micro Devices, Inc.) [Archivo no firmado] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\atiacm64.dll
2013-11-05 08:44 - 2013-11-05 08:44 - 000004608 _____ (Advanced Micro Devices, Inc.) [Archivo no firmado] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\atiamesp.dll
2013-08-22 11:08 - 2013-08-22 11:08 - 000286720 _____ (Intel Corporation) [Archivo no firmado] [El archivo está en uso] C:\Program Files\Intel\Intel(R) Rapid Storage Technology\PsiData.dll
2013-08-22 11:08 - 2013-08-22 11:08 - 000517120 _____ (Intel Corporation) [Archivo no firmado] C:\Program Files\Intel\Intel(R) Rapid Storage Technology\ISDI2.dll
ADDITION Segunda parte
==================== Alternate Data Streams (Lista blanca) ========
==================== Modo Seguro (Lista blanca) ==================
(Si una entrada es incluida en el fixlist, será eliminada del registro. El "AlternateShell" será restaurado.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
==================== Asociación (Lista blanca) =================
(Si una entrada es incluida en el fixlist, el elemento del registro será restaurado a su valor predeterminado o será eliminado.)
HKU\S-1-5-21-4104487672-3836452688-4083331385-1001\Software\Classes\regfile: regedit.exe "%1" <==== ATENCIÓN
HKU\S-1-5-21-4104487672-3836452688-4083331385-1001\Software\Classes\.scr: AutoCADScriptFile => C:\Windows\system32\notepad.exe "%1"
==================== Internet Explorer sitios de confianza/restringidos ==========
(Si una entrada es incluida en el fixlist, será eliminada del registro.)
IE restricted site: HKU\S-1-5-21-4104487672-3836452688-4083331385-1001\...\atdmt.com -> spe.atdmt.com
IE restricted site: HKU\S-1-5-21-4104487672-3836452688-4083331385-1001\...\msn.com -> a.rad.msn.com
IE restricted site: HKU\S-1-5-21-4104487672-3836452688-4083331385-1001\...\skype.com -> apps.skype.com
==================== Hosts contenido: =========================
(Si es necesario, la directiva Hosts: puede ser incluida en el fixlist para restablecer Hosts.)
2014-12-24 14:09 - 2020-08-26 05:47 - 000000852 _____ C:\Windows\system32\drivers\etc\hosts
==================== Otras Áreas ===========================
(Actualmente no existe una corrección automática para esta sección.)
HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\Program Files\AdoptOpenJDK\jdk-11.0.5.10-hotspot\bin;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files (x86)\Intel\iCLS Client\;C:\Program Files\Intel\iCLS Client\;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files\TortoiseSVN\bin;C:\Program Files\MATLAB\R2013b\runtime\win64;C:\Program Files\MATLAB\R2013b\bin;C:\Program Files\MATLAB\R2013b\polyspace\bin;C:\Program Files (x86)\QuickTime\QTSystem\;C:\Program Files (x86)\Skype\Phone\;C:\Program Files (x86)\Windows Live\Shared
HKU\S-1-5-21-4104487672-3836452688-4083331385-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Soulless\Desktop\Otros\WhatsApp Image 2020-04-30 at 18.01.02.jpeg
DNS Servers: 8.8.8.8 - 4.4.8.8
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 0) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: Off)
Firewall de Windows está habilitado.
==================== MSCONFIG/TASK MANAGER elementos deshabilitados ==
(Si una entrada es incluida en el fixlist, será eliminada.)
HKLM\...\StartupApproved\Run: => "ACPW07EN"
HKLM\...\StartupApproved\Run: => "AdobeAAMUpdater-1.0"
HKLM\...\StartupApproved\Run32: => "Acrobat Assistant 8.0"
HKLM\...\StartupApproved\Run32: => "Adobe ARM"
HKLM\...\StartupApproved\Run32: => "YouCam Service6"
HKLM\...\StartupApproved\Run32: => "HPMessageService"
HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched"
HKLM\...\StartupApproved\Run32: => "Wondershare Helper Compact.exe"
HKU\S-1-5-21-4104487672-3836452688-4083331385-1001\...\StartupApproved\Run: => "DAEMON Tools Lite"
HKU\S-1-5-21-4104487672-3836452688-4083331385-1001\...\StartupApproved\Run: => "Spotify Web Helper"
HKU\S-1-5-21-4104487672-3836452688-4083331385-1001\...\StartupApproved\Run: => "Google Update"
HKU\S-1-5-21-4104487672-3836452688-4083331385-1001\...\StartupApproved\Run: => "Rainlendar2"
HKU\S-1-5-21-4104487672-3836452688-4083331385-1001\...\StartupApproved\Run: => "Dropbox Update"
HKU\S-1-5-21-4104487672-3836452688-4083331385-1001\...\StartupApproved\Run: => "CCleaner Smart Cleaning"
==================== Reglas de firewall (Lista blanca) ================
(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)
FirewallRules: [TCP Query User{77B903E6-07AF-4410-B029-2EBEF02682E8}C:\program files (x86)\google\chrome\application\chrome.exe] => (Allow) C:\program files (x86)\google\chrome\application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [UDP Query User{FE70149B-8B99-4594-AA30-414C1BA0096C}C:\program files (x86)\google\chrome\application\chrome.exe] => (Allow) C:\program files (x86)\google\chrome\application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{A922AB28-D9A1-46EC-9A56-7CA34AE708B6}] => (Block) C:\program files (x86)\google\chrome\application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{F7F467C7-7C29-4BC7-B943-6C216692E97D}] => (Block) C:\program files (x86)\google\chrome\application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{5097450E-7D8B-4DE5-AFB9-30B005915ABD}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{27F15CE4-1F6F-46EA-B360-F821DC643A85}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{280E6481-5E61-4F10-83B3-598963F52A56}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{FC661C37-7700-4428-9D67-837C0F7B2D78}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
==================== Puntos de Restauración =========================
26-08-2020 22:01:36 Windows Update
==================== Dispositivos defectuosos en el Administrador de dispositivos ============
==================== Errores del registro de eventos: ========================
Errores de aplicación:
==================
Error: (08/26/2020 10:28:18 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: El programa backgroundTaskHost.exe, versión 6.3.9600.17415, dejó de interactuar con Windows y se cerró. Para ver si hay más información disponible acerca del problema, compruebe el historial de problemas en el panel de control Centro de actividades.
Identificador de proceso: 2590
Hora de inicio: 01d67c18f5848c50
Hora de finalización: 4294967295
Ruta de acceso de la aplicación: C:\Windows\system32\backgroundTaskHost.exe
Identificador de informe: ed60191a-e80c-11ea-84b1-a45d36663e99
Nombre completo de paquete con errores: infoaccion.MeteorologaChile_1.6.0.0_neutral__tfkgj0h23beae
Identificador de aplicación relativa del paquete con errores: App
Error: (08/26/2020 09:46:39 PM) (Source: .NET Runtime) (EventID: 1022) (User: )
Description: .NET Runtime version 4.0.30319.0 - Error al inicializar la infraestructura de asociación de la API de generación de perfiles. Este proceso no permitirá que se asocie un generador de perfiles. HRESULT: 0x80004005. Id. de proceso (decimal): 8420. Id. de mensaje: [0x2509].
Error: (08/26/2020 09:02:16 PM) (Source: .NET Runtime) (EventID: 1022) (User: )
Description: .NET Runtime version 4.0.30319.0 - Error al inicializar la infraestructura de asociación de la API de generación de perfiles. Este proceso no permitirá que se asocie un generador de perfiles. HRESULT: 0x80004005. Id. de proceso (decimal): 2772. Id. de mensaje: [0x2509].
Error: (08/26/2020 07:58:24 PM) (Source: .NET Runtime) (EventID: 1022) (User: )
Description: .NET Runtime version 4.0.30319.0 - Error al inicializar la infraestructura de asociación de la API de generación de perfiles. Este proceso no permitirá que se asocie un generador de perfiles. HRESULT: 0x80004005. Id. de proceso (decimal): 6020. Id. de mensaje: [0x2509].
Error: (08/26/2020 07:36:25 PM) (Source: .NET Runtime) (EventID: 1022) (User: )
Description: .NET Runtime version 4.0.30319.0 - Error al inicializar la infraestructura de asociación de la API de generación de perfiles. Este proceso no permitirá que se asocie un generador de perfiles. HRESULT: 0x80004005. Id. de proceso (decimal): 3056. Id. de mensaje: [0x2509].
Error: (08/26/2020 07:33:24 PM) (Source: .NET Runtime) (EventID: 1022) (User: )
Description: .NET Runtime version 4.0.30319.0 - Error al inicializar la infraestructura de asociación de la API de generación de perfiles. Este proceso no permitirá que se asocie un generador de perfiles. HRESULT: 0x80004005. Id. de proceso (decimal): 8372. Id. de mensaje: [0x2509].
Error: (08/26/2020 07:13:20 PM) (Source: .NET Runtime) (EventID: 1022) (User: )
Description: .NET Runtime version 4.0.30319.0 - Error al inicializar la infraestructura de asociación de la API de generación de perfiles. Este proceso no permitirá que se asocie un generador de perfiles. HRESULT: 0x80004005. Id. de proceso (decimal): 7700. Id. de mensaje: [0x2509].
Error: (08/26/2020 06:35:17 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: Error de la activación de licencia (slui.exe) con el siguiente código:
hr=0xC004F074
Argumentos de línea de comandos:
RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=c06b6981-d7fd-4a35-b7b4-054742b7af67;NotificationInterval=1440;Trigger=UserLogon;SessionId=3
Errores del sistema:
=============
Error: (08/26/2020 10:38:28 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Error de instalación: error de Windows al instalar la siguiente actualización, error 0x80073712: Paquetes de idioma de Microsoft .NET Framework 4.8 para Windows 8.1 y Server 2012 R2 para x64 (KB4087514).
Error: (08/26/2020 10:34:01 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Error de instalación: error de Windows al instalar la siguiente actualización, error 0x80073712: Paquetes de idioma de Microsoft .NET Framework 4.8 para Windows 8.1 y Server 2012 R2 para x64 (KB4087514).
Error: (08/26/2020 10:11:53 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Error de instalación: error de Windows al instalar la siguiente actualización, error 0x80073712: Paquetes de idioma de Microsoft .NET Framework 4.8 para Windows 8.1 y Server 2012 R2 para x64 (KB4087514).
Error: (08/26/2020 05:49:13 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: El servicio Sentinel no pudo iniciarse debido al siguiente error:
Se ha bloqueado la descarga de este controlador
Error: (08/26/2020 05:49:13 AM) (Source: Application Popup) (EventID: 1060) (User: )
Description: \SystemRoot\SysWow64\Drivers\SENTINEL.SYS
Error: (08/26/2020 05:47:59 AM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: El servicio Servicio de uso compartido de red del Reproductor de Windows Media depende del servicio Windows Search, el cual no pudo iniciarse debido al siguiente error:
No se ha iniciado el servicio.
Error: (08/26/2020 05:47:33 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: El servicio Alps HID Monitor Service se terminó de manera inesperada. Esto ha sucedido 1 veces.
Error: (08/26/2020 05:47:33 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: El servicio nordvpn-service se terminó de manera inesperada. Esto ha sucedido 1 veces.
Windows Defender:
===================================
Date: 2016-08-19 10:25:44.793
Description:
Windows Defender detectó malware u otro software potencialmente no deseado.
Para obtener más información consulte lo siguiente:
http://go.microsoft.com/fwlink/?linkid=37020&name=HackTool:Win32/Keygen&threatid=2147593794
Nombre: HackTool:Win32/Keygen
Id.: 2147593794
Gravedad: Media
Categoría: Herramienta
Ruta de acceso: file:_C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\adobe.acrobat.xi.pro.patch-MPT.exe
Origen de detección: Equipo local
Tipo de detección: Concreto
Fuente de detección: Protección en tiempo real
Usuario: NT AUTHORITY\SYSTEM
Nombre de proceso: C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe
Versión de firma: AV: 1.197.1330.0, AS: 1.197.1330.0, NIS: 106.0.0.0
Versión de motor: AM: 1.1.11602.0, NIS: 2.1.9700.0
Date: 2015-05-06 21:55:58.092
Description:
Windows Defender detectó malware u otro software potencialmente no deseado.
Para obtener más información consulte lo siguiente:
http://go.microsoft.com/fwlink/?linkid=37020&name=HackTool:Win32/AutoKMS&threatid=2147685180
Nombre: HackTool:Win32/AutoKMS
Id.: 2147685180
Gravedad: Media
Categoría: Herramienta
Ruta de acceso: file:_C:\Program Files\KMSpico\AutoPico.exe;file:_C:\Program Files\KMSpico\KMSELDI.exe;file:_C:\Program Files\KMSpico\Service_KMS.exe;file:_C:\Users\Soulless\Desktop\Descargas\AIO.MS.Office.2013.SP1.VL.SPANiSH\Activador\Microsoft Toolkit\Microsoft Toolkit.exe;file:_C:\Windows\System32\Tasks\AutoPico Daily Restart;process:_pid:1876,ProcessStart:130754335166856968;process:_pid:4492,ProcessStart:130754336135644970;regkey:_HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\KMSpico_is1;service:_Service KMSELDI;taskscheduler:_C:\Windows\System32\Tasks\AutoPico Daily Restart;uninstall:_HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\KMSpico_is1
Origen de detección: Equipo local
Tipo de detección: Concreto
Fuente de detección: Protección en tiempo real
Usuario: NT AUTHORITY\SYSTEM
Nombre de proceso: C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe
Versión de firma: AV: 1.197.1330.0, AS: 1.197.1330.0, NIS: 106.0.0.0
Versión de motor: AM: 1.1.11602.0, NIS: 2.1.9700.0
Date: 2015-05-06 21:54:15.040
Description:
Windows Defender detectó malware u otro software potencialmente no deseado.
Para obtener más información consulte lo siguiente:
http://go.microsoft.com/fwlink/?linkid=37020&name=HackTool:Win32/AutoKMS&threatid=2147685180
Nombre: HackTool:Win32/AutoKMS
Id.: 2147685180
Gravedad: Media
Categoría: Herramienta
Ruta de acceso: file:_C:\Users\Soulless\Desktop\Descargas\AIO.MS.Office.2013.SP1.VL.SPANiSH\Activador\Microsoft Toolkit\Microsoft Toolkit.exe
Origen de detección: Equipo local
Tipo de detección: Concreto
Fuente de detección: Protección en tiempo real
Usuario: NT AUTHORITY\SYSTEM
Nombre de proceso: C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe
Versión de firma: AV: 1.197.1330.0, AS: 1.197.1330.0, NIS: 106.0.0.0
Versión de motor: AM: 1.1.11602.0, NIS: 2.1.9700.0
Date: 2015-05-06 21:52:47.734
Description:
Windows Defender detectó malware u otro software potencialmente no deseado.
Para obtener más información consulte lo siguiente:
http://go.microsoft.com/fwlink/?linkid=37020&name=HackTool:Win32/Keygen&threatid=2147593794
Nombre: HackTool:Win32/Keygen
Id.: 2147593794
Gravedad: Media
Categoría: Herramienta
Ruta de acceso: file:_C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\adobe.acrobat.xi.pro.patch-MPT.exe
Origen de detección: Equipo local
Tipo de detección: Concreto
Fuente de detección: Protección en tiempo real
Usuario: NT AUTHORITY\SYSTEM
Nombre de proceso: C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe
Versión de firma: AV: 1.197.1330.0, AS: 1.197.1330.0, NIS: 106.0.0.0
Versión de motor: AM: 1.1.11602.0, NIS: 2.1.9700.0
Date: 2015-05-06 07:05:42.406
Description:
Windows Defender detectó malware u otro software potencialmente no deseado.
Para obtener más información consulte lo siguiente:
http://go.microsoft.com/fwlink/?linkid=37020&name=HackTool:Win32/AutoKMS&threatid=2147685180
Nombre: HackTool:Win32/AutoKMS
Id.: 2147685180
Gravedad: Media
Categoría: Herramienta
Ruta de acceso: file:_C:\Program Files\KMSpico\AutoPico.exe;file:_C:\Program Files\KMSpico\KMSELDI.exe;file:_C:\Program Files\KMSpico\Service_KMS.exe;file:_C:\Users\Soulless\Desktop\Descargas\AIO.MS.Office.2013.SP1.VL.SPANiSH\Activador\Microsoft Toolkit\Microsoft Toolkit.exe;process:_pid:3560,ProcessStart:130751033630841028;process:_pid:4228,ProcessStart:130753511400667204;process:_pid:5636,ProcessStart:130752647428816508;service:_Service KMSELDI
Origen de detección: Equipo local
Tipo de detección: Concreto
Fuente de detección: Sistema
Usuario: NT AUTHORITY\SYSTEM
Nombre de proceso: C:\Windows\System32\rundll32.exe
Versión de firma: AV: 1.197.1330.0, AS: 1.197.1330.0, NIS: 106.0.0.0
Versión de motor: AM: 1.1.11602.0, NIS: 2.1.9700.0
Date: 2017-11-30 19:21:30.759
Description:
La característica Protección en tiempo real de Windows Defender encontró un error:
Característica: Sistema de inspección de red
Código de error: 0x80070002
Descripción del error: El sistema no puede encontrar el archivo especificado.
Motivo: La protección antimalware dejó de funcionar por motivos desconocidos. En algunos casos, reiniciar el servicio puede que resuelva el problema.
Date: 2017-11-30 19:19:53.222
Description:
La característica Protección en tiempo real de Windows Defender encontró un error:
Característica: Sistema de inspección de red
Código de error: 0x80070002
Descripción del error: El sistema no puede encontrar el archivo especificado.
Motivo: El sistema no tiene las actualizaciones necesarias para ejecutar el Sistema de inspección de red. Instale las actualizaciones requeridas y reinicie el equipo.
Date: 2016-08-19 10:27:15.029
Description:
La característica Protección en tiempo real de Windows Defender encontró un error:
Característica: Sistema de inspección de red
Código de error: 0x80070002
Descripción del error: El sistema no puede encontrar el archivo especificado.
Motivo: La protección antimalware dejó de funcionar por motivos desconocidos. En algunos casos, reiniciar el servicio puede que resuelva el problema.
Date: 2016-08-19 10:25:33.815
Description:
La característica Protección en tiempo real de Windows Defender encontró un error:
Característica: Sistema de inspección de red
Código de error: 0x80070002
Descripción del error: El sistema no puede encontrar el archivo especificado.
Motivo: El sistema no tiene las actualizaciones necesarias para ejecutar el Sistema de inspección de red. Instale las actualizaciones requeridas y reinicie el equipo.
Date: 2015-12-21 15:58:00.419
Description:
La característica Protección en tiempo real de Windows Defender encontró un error:
Característica: Sistema de inspección de red
Código de error: 0x80070002
Descripción del error: El sistema no puede encontrar el archivo especificado.
Motivo: La protección antimalware dejó de funcionar por motivos desconocidos. En algunos casos, reiniciar el servicio puede que resuelva el problema.
CodeIntegrity:
===================================
Date: 2020-08-25 03:01:25.379
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2020-08-25 03:01:24.629
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2020-08-25 03:01:04.003
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2020-08-25 03:01:03.315
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2020-08-25 03:01:02.815
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2020-08-25 03:00:42.236
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2020-08-25 03:00:41.736
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2020-08-25 03:00:41.048
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.
==================== Información de la memoria ===========================
BIOS: Insyde F.06 05/28/2013
Placa base: Hewlett-Packard 196E
Procesador: Intel(R) Core(TM) i5-3230M CPU @ 2.60GHz
Porcentaje de memoria en uso: 32%
RAM física total: 8084.27 MB
RAM física disponible: 5462.45 MB
Virtual total: 9812.27 MB
Virtual disponible: 7335.64 MB
==================== Unidades ================================
Drive c: () (Fixed) (Total:906.86 GB) (Free:10.18 GB) NTFS
Drive d: (RECOVERY) (Fixed) (Total:24.14 GB) (Free:2.39 GB) NTFS ==>[sistema con componentes de arranque (obtenido de unidad)]
Drive e: (CORALINE) (CDROM) (Total:7.44 GB) (Free:0 GB) UDF
\\?\Volume{88dd1312-a4aa-4e56-ab6b-dd9672e53ad2}\ (Recuperación) (Fixed) (Total:0.29 GB) (Free:0.03 GB) NTFS
==================== MBR & Tabla de particiones ====================
==========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: 62FA52CD)
Partition: GPT.
==================== Final de Addition.txt =======================
Packages:
=========
!2048! -> C:\Program Files\WindowsApps\Ingenify.20_2.5.1.0_x64__ttw4g35v4x5tm [2016-12-16] (Martin Freitag) [MS Ad]
Biblioteca de Microsoft Windows para JavaScript -> C:\Program Files\WindowsApps\Microsoft.WinJS.2.0.Preview_1.0.9431.0_neutral__8wekyb3d8bbwe [2014-03-16] (Extensiones de plataforma de Microsoft)
Biblioteca de Microsoft Windows para JavaScript -> C:\Program Files\WindowsApps\Microsoft.WinJS.Preview.1_1.0.9345.0_neutral__8wekyb3d8bbwe [2014-03-16] (Microsoft Platform Extensions)
Cartelera de Cine Papaya -> C:\Program Files\WindowsApps\Holosens.CarteleradeCinePapaya_1.0.0.5_neutral__azecjanc0fb0w [2014-03-15] (Holosens)
Chile V 2.0 -> C:\Program Files\WindowsApps\25372EfrainRebolledoPizar.ChileV2.0_1.0.0.6_neutral__e6dr8cce1shw6 [2014-03-15] (Efrain Rebolledo Pizarro)
Colores de Sonidos -> C:\Program Files\WindowsApps\Birdie.ColoresdeSonidos_0.0.0.2_neutral__pj5pj1yedvnst [2014-03-15] (Birdie)
Conspiraciones Salfate -> C:\Program Files\WindowsApps\51638JFelixStudio.ConspiracionesSalfate_1.0.0.8_neutral__s0pag96n8hezc [2014-03-15] (JFelix Studio)
Dead Call: Combat Trigger & Modern Duty Hunter 3D -> C:\Program Files\WindowsApps\C40DCF4F.DeadCallCombatTriggerModernDutyHunter3D_1.0.3.0_x86__b6sb9g8avsqk2 [2016-01-25] (T-Bull)
Despegar.com -> C:\Program Files\WindowsApps\Decolar.com.Despegar.com_1.1.3.1_neutral__fmzbkpmdm7xqc [2014-09-24] (Despegar.com)
Diarios Chile -> C:\Program Files\WindowsApps\57071CopypasteApps.DiariosChile_1.0.0.9_neutral__d6d9g5bm83gdt [2014-03-15] (CopypasteApps)
Farm Up -> C:\Program Files\WindowsApps\780F5C7B.FarmUp_1.7.1.10_x86__0gmyx1dmsk3dw [2015-10-23] (Realore Ltd)
Feriados de Chile -> C:\Program Files\WindowsApps\Birdie.FeriadosdeChile_1.1.0.0_neutral__pj5pj1yedvnst [2014-03-15] (Birdie)
Find a Way Soccer -> C:\Program Files\WindowsApps\HelloThere.FindaWaySoccer_1.1.0.4_x86__8tz783b8a8h26 [2014-08-02] (Hello There)
Flapi Chile -> C:\Program Files\WindowsApps\Birdie.FlapiChile_1.0.0.5_neutral__pj5pj1yedvnst [2014-03-15] (Birdie)
Fútbol PRO Chile -> C:\Program Files\WindowsApps\54273TICapacitacinAppUniv.FtbolPROChile_1.0.0.0_neutral__pbpxf84070v5g [2014-03-15] (TI Capacitación & Universidad de desarrollo)
GRU. MI VILLANO FAVORITO: Minion Rush -> C:\Program Files\WindowsApps\GAMELOFTSA.DespicableMeMinionRush_4.1.4.1_x86__0pp20fcewvvtj [2019-11-06] (GAMELOFT SA)
Hill Climb Racing -> C:\Program Files\WindowsApps\Fingersoft.HillClimbRacing_1.29.10.71_x86__r6rtpscs7gwyg [2016-07-03] (Fingersoft) [MS Ad]
Hills Of Glory 3D Free -> C:\Program Files\WindowsApps\AdvancedMobileApplication.HillsOfGlory3DFree_1.5.0.6538_x86__e8bwa11sm2b6c [2014-08-02] (Advanced Mobile Applications Ltd.)
Jetpack Joyride -> C:\Program Files\WindowsApps\HalfbrickStudiosPtyLtd.JetpackJoyride_1.0.3.68_x86__w77bc8x1h5kya [2014-08-02] (Halfbrick Studios Pty Ltd)
Juegos -> C:\Program Files\WindowsApps\Microsoft.XboxLIVEGames_2.0.139.0_x64__8wekyb3d8bbwe [2014-03-16] (Microsoft Corporation) [MS Ad]
La Tercera -> C:\Program Files\WindowsApps\CONSORCIOPERIODISTICODECH.LaTercera_2.0.0.0_neutral__5vv07n1j3rt0c [2014-04-11] (CONSORCIO PERIODISTICO DE CHILE S A COPESA)
Mapcity -> C:\Program Files\WindowsApps\mapcity.Mapcity_1.0.0.5_neutral__wvyvcy90y47ga [2014-03-15] (MAPCITY COM CHILE S A)
Meteorología Chile -> C:\Program Files\WindowsApps\infoaccion.MeteorologaChile_1.6.0.0_neutral__tfkgj0h23beae [2016-10-29] (infoaccion)
Microsoft Jigsaw -> C:\Program Files\WindowsApps\Microsoft.MicrosoftJigsaw_1.9.1911.0_x86__8wekyb3d8bbwe [2019-12-19] (Microsoft Studios) [MS Ad]
Microsoft PlayReady -> C:\Program Files\WindowsApps\Microsoft.Internal.Media.PlayReadyClient_2.3.1678.1_x64__8wekyb3d8bbwe [2014-03-16] (Microsoft Corporation)
Microsoft PlayReady -> C:\Program Files\WindowsApps\Microsoft.Internal.Media.PlayReadyClient_2.3.1678.1_x86__8wekyb3d8bbwe [2014-03-16] (Microsoft Corporation)
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_2.11.1807.1002_x86__8wekyb3d8bbwe [2018-07-26] (Microsoft Studios) [MS Ad]
Microsoft Visual C++ Runtime Package -> C:\Program Files\WindowsApps\Microsoft.VCLibs.120.00.Preview.Internal_12.0.20222.2_x64__8wekyb3d8bbwe [2014-03-16] (Microsoft Platform Extensions Internal)
Microsoft Visual C++ Runtime Package -> C:\Program Files\WindowsApps\Microsoft.VCLibs.120.00.Preview.Internal_12.0.20222.2_x86__8wekyb3d8bbwe [2014-03-16] (Microsoft Platform Extensions Internal)
Microsoft Windows Library for JavaScript -> C:\Program Files\WindowsApps\Microsoft.WinJS.2.0.Preview.Internal_1.0.9385.3_neutral__8wekyb3d8bbwe [2014-03-16] (Microsoft Platform Extensions)
Movie ShowTime -> C:\Program Files\WindowsApps\24264Craftbox.Showtime_8.2.0.8_neutral__hqe9ecxhfeext [2014-06-26] (Craftbox) [MS Ad]
MSN Dinero -> C:\Program Files\WindowsApps\Microsoft.BingFinance_3.0.4.344_x64__8wekyb3d8bbwe [2016-04-27] (Microsoft Corporation) [MS Ad]
MSN El tiempo -> C:\Program Files\WindowsApps\Microsoft.BingWeather_3.0.4.350_x64__8wekyb3d8bbwe [2016-11-26] (Microsoft Corporation) [MS Ad]
MSN Recetas -> C:\Program Files\WindowsApps\Microsoft.BingFoodAndDrink_3.0.4.336_x64__8wekyb3d8bbwe [2015-07-24] (Microsoft Corporation) [MS Ad]
MSN Viajes -> C:\Program Files\WindowsApps\Microsoft.BingTravel_3.0.4.336_x64__8wekyb3d8bbwe [2015-07-24] (Microsoft Corporation) [MS Ad]
Música -> C:\Program Files\WindowsApps\Microsoft.ZuneMusic_2.6.672.0_x64__8wekyb3d8bbwe [2015-03-16] (Microsoft Corporation) [MS Ad]
My Country -> C:\Program Files\WindowsApps\0EB8BD08.MyCountry_2.0.0.48_x86__erk4rrwmt7jyt [2014-08-02] (GAME INSIGHT GLOBAL LIMITED)
ONEMI Twitt -> C:\Program Files\WindowsApps\15958igutierr.ONEMITwitt_1.0.0.4_neutral__pqncrep8hd2hm [2014-03-15] (igutierr)
PressReader -> C:\Program Files\WindowsApps\NewspaperDirect.PressReader_4.3.15.708_x64__f09x14bt6ejbt [2015-07-24] (NewspaperDirect)
The Island: Castaway® 2 -> C:\Program Files\WindowsApps\828B5831.TheIslandCastaway2_1.0.0.0_x86__ytsefhwckbdv6 [2014-08-02] (G5 Entertainment AB)
TV Cable Chile -> C:\Program Files\WindowsApps\infoaccion.TVCableChile_2.2.0.0_neutral__tfkgj0h23beae [2016-01-25] (infoaccion)
Vídeo -> C:\Program Files\WindowsApps\Microsoft.ZuneVideo_2.6.446.0_x64__8wekyb3d8bbwe [2015-11-07] (Microsoft Corporation) [MS Ad]
Where's My Water? 2 -> C:\Program Files\WindowsApps\Disney.WheresMyWater2_1.3.0.8_x86__6rarf9sa4v8jt [2016-03-26] (Disney)
Zombie Tsunami -> C:\Program Files\WindowsApps\Mobigame.ZombieTsunami_1.0.0.9_x86__h25k0et6wkna2 [2014-08-01] (Mobigame)
==================== Personalizado CLSID (Lista blanca): ==============
(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)
CustomCLSID: HKU\S-1-5-21-4104487672-3836452688-4083331385-1001_Classes\CLSID\{005A3A96-BAC4-4B0A-94EA-C0CE100EA736}\localserver32 -> C:\Users\Soulless\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc -> Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-4104487672-3836452688-4083331385-1001_Classes\CLSID\{19A6E644-14E6-4A60-B8D7-DD20610A871D}\InprocServer32 -> C:\Users\Soulless\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.20107.1\x64\Microsoft.Teams.AddinLoader.dll (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-4104487672-3836452688-4083331385-1001_Classes\CLSID\{1b442ae8-58f5-4984-9f9d-7767e553d851}\InprocServer32 -> C:\Windows\system32\dfshim.dll (Microsoft Windows -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-4104487672-3836452688-4083331385-1001_Classes\CLSID\{22A8794C-E808-52FA-40C1-F0D8F63A947A}\InprocServer32 -> no ruta de acceso de archivo
CustomCLSID: HKU\S-1-5-21-4104487672-3836452688-4083331385-1001_Classes\CLSID\{7DB2F5A2-947C-4E23-F2FD-85DA573ACF5B}\InprocServer32 -> no ruta de acceso de archivo
CustomCLSID: HKU\S-1-5-21-4104487672-3836452688-4083331385-1001_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\Windows\system32\igfxEM.exe (Intel Corporation - pGFX -> Intel Corporation)
CustomCLSID: HKU\S-1-5-21-4104487672-3836452688-4083331385-1001_Classes\CLSID\{B39830FC-79B2-99BC-9282-9ED0CC38F9CD}\InprocServer32 -> no ruta de acceso de archivo
CustomCLSID: HKU\S-1-5-21-4104487672-3836452688-4083331385-1001_Classes\CLSID\{CB965DF1-B8EA-49C7-BDAD-5457FDC1BF92}\InprocServer32 -> C:\Users\Soulless\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.20107.1\x64\Microsoft.Teams.AddinLoader.dll (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-4104487672-3836452688-4083331385-1001_Classes\CLSID\{E8CF3E55-F919-49D9-ABC0-948E6CB34B9F}\InprocServer32 -> C:\Users\Soulless\AppData\Local\Google\Update\1.3.35.452\psuser_64.dll (Google LLC -> Google LLC)
CustomCLSID: HKU\S-1-5-21-4104487672-3836452688-4083331385-1001_Classes\CLSID\{E9E7529D-7F09-410B-AF2A-CC154473B19C}\InprocServer32 -> C:\Users\Soulless\AppData\Local\Google\Update\1.3.35.452\psuser_64.dll (Google LLC -> Google LLC)
CustomCLSID: HKU\S-1-5-21-4104487672-3836452688-4083331385-1001_Classes\CLSID\{ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C}\InprocServer32 -> C:\Users\Soulless\AppData\Roaming\Dropbox\bin\DropboxExt64.44.0.dll (Dropbox, Inc -> Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-4104487672-3836452688-4083331385-1001_Classes\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Soulless\AppData\Roaming\Dropbox\bin\DropboxExt64.44.0.dll (Dropbox, Inc -> Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-4104487672-3836452688-4083331385-1001_Classes\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Soulless\AppData\Roaming\Dropbox\bin\DropboxExt64.44.0.dll (Dropbox, Inc -> Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-4104487672-3836452688-4083331385-1001_Classes\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Soulless\AppData\Roaming\Dropbox\bin\DropboxExt64.44.0.dll (Dropbox, Inc -> Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-4104487672-3836452688-4083331385-1001_Classes\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Soulless\AppData\Roaming\Dropbox\bin\DropboxExt64.44.0.dll (Dropbox, Inc -> Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-4104487672-3836452688-4083331385-1001_Classes\CLSID\{FB314EDD-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Soulless\AppData\Roaming\Dropbox\bin\DropboxExt64.44.0.dll (Dropbox, Inc -> Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-4104487672-3836452688-4083331385-1001_Classes\CLSID\{FB314EDE-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Soulless\AppData\Roaming\Dropbox\bin\DropboxExt64.44.0.dll (Dropbox, Inc -> Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-4104487672-3836452688-4083331385-1001_Classes\CLSID\{FB314EDF-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Soulless\AppData\Roaming\Dropbox\bin\DropboxExt64.44.0.dll (Dropbox, Inc -> Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-4104487672-3836452688-4083331385-1001_Classes\CLSID\{FB314EE0-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Soulless\AppData\Roaming\Dropbox\bin\DropboxExt64.44.0.dll (Dropbox, Inc -> Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-4104487672-3836452688-4083331385-1001_Classes\CLSID\{FB314EE1-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Soulless\AppData\Roaming\Dropbox\bin\DropboxExt64.44.0.dll (Dropbox, Inc -> Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-4104487672-3836452688-4083331385-1001_Classes\CLSID\{FB314EE2-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Soulless\AppData\Roaming\Dropbox\bin\DropboxExt64.44.0.dll (Dropbox, Inc -> Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-4104487672-3836452688-4083331385-1001_Classes\CLSID\{FBC9D74C-AF55-4309-9FB2-C426E071637F}\InprocServer32 -> C:\Users\Soulless\AppData\Roaming\Dropbox\bin\DropboxExt64.44.0.dll (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ MEGA (Pending)] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => -> Ningún archivo
ShellIconOverlayIdentifiers: [ MEGA (Synced)] -> {05B38830-F4E9-4329-978B-1DD28605D202} => -> Ningún archivo
ShellIconOverlayIdentifiers: [ MEGA (Syncing)] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => -> Ningún archivo
ShellIconOverlayIdentifiers: [1TortoiseNormal] -> {C5994560-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2011-06-13] (Stefan Kueng. Open Source Developer -> hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers: [2TortoiseModified] -> {C5994561-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2011-06-13] (Stefan Kueng. Open Source Developer -> hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers: [3TortoiseConflict] -> {C5994562-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2011-06-13] (Stefan Kueng. Open Source Developer -> hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers: [4TortoiseLocked] -> {C5994563-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2011-06-13] (Stefan Kueng. Open Source Developer -> hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers: [5TortoiseReadOnly] -> {C5994564-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2011-06-13] (Stefan Kueng. Open Source Developer -> hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers: [6TortoiseDeleted] -> {C5994565-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2011-06-13] (Stefan Kueng. Open Source Developer -> hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers: [7TortoiseAdded] -> {C5994566-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2011-06-13] (Stefan Kueng. Open Source Developer -> hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers: [8TortoiseIgnored] -> {C5994567-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2011-06-13] (Stefan Kueng. Open Source Developer -> hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers: [9TortoiseUnversioned] -> {C5994568-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2011-06-13] (Stefan Kueng. Open Source Developer -> hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Soulless\AppData\Roaming\Dropbox\bin\DropboxExt64.44.0.dll [2020-08-04] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Soulless\AppData\Roaming\Dropbox\bin\DropboxExt64.44.0.dll [2020-08-04] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Soulless\AppData\Roaming\Dropbox\bin\DropboxExt64.44.0.dll [2020-08-04] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt4] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Soulless\AppData\Roaming\Dropbox\bin\DropboxExt64.44.0.dll [2020-08-04] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ MEGA (Pending)] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => -> Ningún archivo
ShellIconOverlayIdentifiers-x32: [ MEGA (Synced)] -> {05B38830-F4E9-4329-978B-1DD28605D202} => -> Ningún archivo
ShellIconOverlayIdentifiers-x32: [ MEGA (Syncing)] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => -> Ningún archivo
ShellIconOverlayIdentifiers-x32: [1TortoiseNormal] -> {C5994560-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2011-06-13] (Stefan Kueng. Open Source Developer -> hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers-x32: [2TortoiseModified] -> {C5994561-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2011-06-13] (Stefan Kueng. Open Source Developer -> hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers-x32: [3TortoiseConflict] -> {C5994562-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2011-06-13] (Stefan Kueng. Open Source Developer -> hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers-x32: [4TortoiseLocked] -> {C5994563-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2011-06-13] (Stefan Kueng. Open Source Developer -> hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers-x32: [5TortoiseReadOnly] -> {C5994564-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2011-06-13] (Stefan Kueng. Open Source Developer -> hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers-x32: [6TortoiseDeleted] -> {C5994565-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2011-06-13] (Stefan Kueng. Open Source Developer -> hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers-x32: [7TortoiseAdded] -> {C5994566-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2011-06-13] (Stefan Kueng. Open Source Developer -> hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers-x32: [8TortoiseIgnored] -> {C5994567-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2011-06-13] (Stefan Kueng. Open Source Developer -> hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers-x32: [9TortoiseUnversioned] -> {C5994568-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2011-06-13] (Stefan Kueng. Open Source Developer -> hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers-x32: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Soulless\AppData\Roaming\Dropbox\bin\DropboxExt64.44.0.dll [2020-08-04] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Soulless\AppData\Roaming\Dropbox\bin\DropboxExt64.44.0.dll [2020-08-04] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Soulless\AppData\Roaming\Dropbox\bin\DropboxExt64.44.0.dll [2020-08-04] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [Archivo no firmado]
ContextMenuHandlers1: [Adobe.Acrobat.ContextMenu] -> {A6595CD1-BF77-430A-A452-18696685F7C7} => C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat Elements\ContextMenuShim64.dll [2012-09-23] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
ContextMenuHandlers1: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET NOD32 Antivirus\shellExt.dll [2020-07-30] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers1: [IObitUnstaler] -> {836AB26C-2DE4-41D3-AC24-4C6C2699B960} => -> Ningún archivo
ContextMenuHandlers1: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => -> Ningún archivo
ContextMenuHandlers1: [TortoiseSVN] -> {30351349-7B7D-4FCC-81B4-1E394CA267EB} => C:\Program Files\TortoiseSVN\bin\TortoiseStub.dll [2014-02-18] (Open Source Developer, Stefan Kueng -> )
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2013-12-01] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2013-12-01] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1: [WinZip] -> {E0D79304-84BE-11CE-9641-444553540000} => C:\Program Files\WinZip\wzshls64.dll [2012-10-12] (WinZip Computing -> WinZip Computing, S.L.)
ContextMenuHandlers2: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET NOD32 Antivirus\shellExt.dll [2020-07-30] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers2: [TortoiseSVN] -> {30351349-7B7D-4FCC-81B4-1E394CA267EB} => C:\Program Files\TortoiseSVN\bin\TortoiseStub.dll [2014-02-18] (Open Source Developer, Stefan Kueng -> )
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2020-08-25] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers3: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => -> Ningún archivo
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [Archivo no firmado]
ContextMenuHandlers4: [IObitUnstaler] -> {836AB26C-2DE4-41D3-AC24-4C6C2699B960} => -> Ningún archivo
ContextMenuHandlers4: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => -> Ningún archivo
ContextMenuHandlers4: [TortoiseSVN] -> {30351349-7B7D-4FCC-81B4-1E394CA267EB} => C:\Program Files\TortoiseSVN\bin\TortoiseStub.dll [2014-02-18] (Open Source Developer, Stefan Kueng -> )
ContextMenuHandlers4: [WinZip] -> {E0D79304-84BE-11CE-9641-444553540000} => C:\Program Files\WinZip\wzshls64.dll [2012-10-12] (WinZip Computing -> WinZip Computing, S.L.)
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\atiacm64.dll [2013-11-05] (Advanced Micro Devices, Inc.) [Archivo no firmado]
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> Ningún archivo
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\Windows\system32\igfxDTCM.dll [2015-08-27] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers5: [TortoiseSVN] -> {30351349-7B7D-4FCC-81B4-1E394CA267EB} => C:\Program Files\TortoiseSVN\bin\TortoiseStub.dll [2014-02-18] (Open Source Developer, Stefan Kueng -> )
ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [Archivo no firmado]
ContextMenuHandlers6: [Adobe.Acrobat.ContextMenu] -> {A6595CD1-BF77-430A-A452-18696685F7C7} => C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat Elements\ContextMenuShim64.dll [2012-09-23] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
ContextMenuHandlers6: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET NOD32 Antivirus\shellExt.dll [2020-07-30] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers6: [IObitUnstaler] -> {836AB26C-2DE4-41D3-AC24-4C6C2699B960} => -> Ningún archivo
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2020-08-25] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers6: [TortoiseSVN] -> {30351349-7B7D-4FCC-81B4-1E394CA267EB} => C:\Program Files\TortoiseSVN\bin\TortoiseStub.dll [2014-02-18] (Open Source Developer, Stefan Kueng -> )
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2013-12-01] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2013-12-01] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6: [WinZip] -> {E0D79304-84BE-11CE-9641-444553540000} => C:\Program Files\WinZip\wzshls64.dll [2012-10-12] (WinZip Computing -> WinZip Computing, S.L.)
ContextMenuHandlers1_S-1-5-21-4104487672-3836452688-4083331385-1001: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Users\Soulless\AppData\Roaming\Dropbox\bin\DropboxExt64.44.0.dll [2020-08-04] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers4_S-1-5-21-4104487672-3836452688-4083331385-1001: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Users\Soulless\AppData\Roaming\Dropbox\bin\DropboxExt64.44.0.dll [2020-08-04] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers5_S-1-5-21-4104487672-3836452688-4083331385-1001: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Users\Soulless\AppData\Roaming\Dropbox\bin\DropboxExt64.44.0.dll [2020-08-04] (Dropbox, Inc -> Dropbox, Inc.)
ADDITION tercera parte
==================== Codecs (Lista blanca) ====================
(Si una entrada es incluida en el fixlist, el elemento del registro será restaurado a su valor predeterminado o será eliminado. El archivo no será movido.)
HKLM\...\Drivers32: [msacm.ac3filter] => C:\Windows\system32\ac3filter64.acm [2231296 2013-04-05] () [Archivo no firmado]
HKLM\...\Drivers32: [msacm.vorbis] => C:\Windows\system32\vorbis.acm [1562432 2017-03-01] (Image Line -> HMS hxxp://hp.vector.co.jp/authors/VA012897/) [Archivo no firmado]
HKLM\...\Drivers32: [vidc.VP60] => C:\Windows\SysWOW64\vp6vfw.dll [447752 2013-01-30] (Electronic Arts -> On2.com)
HKLM\...\Drivers32: [vidc.VP61] => C:\Windows\SysWOW64\vp6vfw.dll [447752 2013-01-30] (Electronic Arts -> On2.com)
HKLM\...\Drivers32: [msacm.ac3filter] => C:\Windows\SysWOW64\ac3filter.acm [1679360 2013-04-05] () [Archivo no firmado]
HKLM\...\Drivers32: [msacm.vorbis] => C:\Windows\SysWOW64\vorbis.acm [1456448 2017-03-01] (Image Line -> HMS hxxp://hp.vector.co.jp/authors/VA012897/) [Archivo no firmado]
==================== Accesos directos & WMI ========================
(Las entradas pueden ser listadas para ser restauradas o eliminadas.)
Shortcut: C:\Users\Soulless\Desktop\GIOVANNI ESCRITORIO\paravirus.BAT - Acceso directo.lnk -> C:\Users\Soulless\Desktop\paravirus.BAT (Ningún archivo)
Shortcut: C:\Users\Soulless\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\eBook DRM Removal\Website.lnk -> hxxp://www.ebook-converter.com
ShortcutWithArgument: C:\Users\Soulless\Desktop\GIOVANNI ESCRITORIO\Persona 1 - Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory="Profile 12"
ShortcutWithArgument: C:\Users\Soulless\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\b42be1c9c51179ef\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory="Profile 7"
ShortcutWithArgument: C:\Users\Soulless\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\9501e18d7c2ab92e\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory="Profile 2"
ShortcutWithArgument: C:\Users\Soulless\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\600fb694c0849943\Giovanni Erazo - Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory="Profile 9"
ShortcutWithArgument: C:\Users\Soulless\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\225bb61db2f318c1\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory="Profile 3"
==================== Módulos cargados (Lista blanca) =============
2012-09-23 20:44 - 2012-09-23 20:44 - 000010240 _____ (Adobe Systems Inc.) [Archivo no firmado] C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\locale\es_es\Acrobat Elements\ContextMenuShim64.esp
2013-11-05 08:44 - 2013-11-05 08:44 - 000897024 _____ (Advanced Micro Devices, Inc.) [Archivo no firmado] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\atiacm64.dll
2013-11-05 08:44 - 2013-11-05 08:44 - 000004608 _____ (Advanced Micro Devices, Inc.) [Archivo no firmado] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\atiamesp.dll
2013-08-22 11:08 - 2013-08-22 11:08 - 000286720 _____ (Intel Corporation) [Archivo no firmado] [El archivo está en uso] C:\Program Files\Intel\Intel(R) Rapid Storage Technology\PsiData.dll
2013-08-22 11:08 - 2013-08-22 11:08 - 000517120 _____ (Intel Corporation) [Archivo no firmado] C:\Program Files\Intel\Intel(R) Rapid Storage Technology\ISDI2.dll
==================== Alternate Data Streams (Lista blanca) ========
==================== Modo Seguro (Lista blanca) ==================
(Si una entrada es incluida en el fixlist, será eliminada del registro. El "AlternateShell" será restaurado.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
==================== Asociación (Lista blanca) =================
(Si una entrada es incluida en el fixlist, el elemento del registro será restaurado a su valor predeterminado o será eliminado.)
HKU\S-1-5-21-4104487672-3836452688-4083331385-1001\Software\Classes\regfile: regedit.exe "%1" <==== ATENCIÓN
HKU\S-1-5-21-4104487672-3836452688-4083331385-1001\Software\Classes\.scr: AutoCADScriptFile => C:\Windows\system32\notepad.exe "%1"
==================== Internet Explorer sitios de confianza/restringidos ==========
(Si una entrada es incluida en el fixlist, será eliminada del registro.)
IE restricted site: HKU\S-1-5-21-4104487672-3836452688-4083331385-1001\...\atdmt.com -> spe.atdmt.com
IE restricted site: HKU\S-1-5-21-4104487672-3836452688-4083331385-1001\...\msn.com -> a.rad.msn.com
IE restricted site: HKU\S-1-5-21-4104487672-3836452688-4083331385-1001\...\skype.com -> apps.skype.com
==================== Hosts contenido: =========================
(Si es necesario, la directiva Hosts: puede ser incluida en el fixlist para restablecer Hosts.)
2014-12-24 14:09 - 2020-08-26 05:47 - 000000852 _____ C:\Windows\system32\drivers\etc\hosts
==================== Otras Áreas ===========================
(Actualmente no existe una corrección automática para esta sección.)
HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\Program Files\AdoptOpenJDK\jdk-11.0.5.10-hotspot\bin;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files (x86)\Intel\iCLS Client\;C:\Program Files\Intel\iCLS Client\;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files\TortoiseSVN\bin;C:\Program Files\MATLAB\R2013b\runtime\win64;C:\Program Files\MATLAB\R2013b\bin;C:\Program Files\MATLAB\R2013b\polyspace\bin;C:\Program Files (x86)\QuickTime\QTSystem\;C:\Program Files (x86)\Skype\Phone\;C:\Program Files (x86)\Windows Live\Shared
HKU\S-1-5-21-4104487672-3836452688-4083331385-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Soulless\Desktop\Otros\WhatsApp Image 2020-04-30 at 18.01.02.jpeg
DNS Servers: 8.8.8.8 - 4.4.8.8
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 0) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: Off)
Firewall de Windows está habilitado.
==================== MSCONFIG/TASK MANAGER elementos deshabilitados ==
(Si una entrada es incluida en el fixlist, será eliminada.)
HKLM\...\StartupApproved\Run: => "ACPW07EN"
HKLM\...\StartupApproved\Run: => "AdobeAAMUpdater-1.0"
HKLM\...\StartupApproved\Run32: => "Acrobat Assistant 8.0"
HKLM\...\StartupApproved\Run32: => "Adobe ARM"
HKLM\...\StartupApproved\Run32: => "YouCam Service6"
HKLM\...\StartupApproved\Run32: => "HPMessageService"
HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched"
HKLM\...\StartupApproved\Run32: => "Wondershare Helper Compact.exe"
HKU\S-1-5-21-4104487672-3836452688-4083331385-1001\...\StartupApproved\Run: => "DAEMON Tools Lite"
HKU\S-1-5-21-4104487672-3836452688-4083331385-1001\...\StartupApproved\Run: => "Spotify Web Helper"
HKU\S-1-5-21-4104487672-3836452688-4083331385-1001\...\StartupApproved\Run: => "Google Update"
HKU\S-1-5-21-4104487672-3836452688-4083331385-1001\...\StartupApproved\Run: => "Rainlendar2"
HKU\S-1-5-21-4104487672-3836452688-4083331385-1001\...\StartupApproved\Run: => "Dropbox Update"
HKU\S-1-5-21-4104487672-3836452688-4083331385-1001\...\StartupApproved\Run: => "CCleaner Smart Cleaning"
==================== Reglas de firewall (Lista blanca) ================
(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)
FirewallRules: [TCP Query User{77B903E6-07AF-4410-B029-2EBEF02682E8}C:\program files (x86)\google\chrome\application\chrome.exe] => (Allow) C:\program files (x86)\google\chrome\application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [UDP Query User{FE70149B-8B99-4594-AA30-414C1BA0096C}C:\program files (x86)\google\chrome\application\chrome.exe] => (Allow) C:\program files (x86)\google\chrome\application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{A922AB28-D9A1-46EC-9A56-7CA34AE708B6}] => (Block) C:\program files (x86)\google\chrome\application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{F7F467C7-7C29-4BC7-B943-6C216692E97D}] => (Block) C:\program files (x86)\google\chrome\application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{5097450E-7D8B-4DE5-AFB9-30B005915ABD}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{27F15CE4-1F6F-46EA-B360-F821DC643A85}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{280E6481-5E61-4F10-83B3-598963F52A56}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{FC661C37-7700-4428-9D67-837C0F7B2D78}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
==================== Puntos de Restauración =========================
26-08-2020 22:01:36 Windows Update
==================== Dispositivos defectuosos en el Administrador de dispositivos ============
==================== Errores del registro de eventos: ========================
Errores de aplicación:
==================
Error: (08/26/2020 10:28:18 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: El programa backgroundTaskHost.exe, versión 6.3.9600.17415, dejó de interactuar con Windows y se cerró. Para ver si hay más información disponible acerca del problema, compruebe el historial de problemas en el panel de control Centro de actividades.
Identificador de proceso: 2590
Hora de inicio: 01d67c18f5848c50
Hora de finalización: 4294967295
Ruta de acceso de la aplicación: C:\Windows\system32\backgroundTaskHost.exe
Identificador de informe: ed60191a-e80c-11ea-84b1-a45d36663e99
Nombre completo de paquete con errores: infoaccion.MeteorologaChile_1.6.0.0_neutral__tfkgj0h23beae
Identificador de aplicación relativa del paquete con errores: App
Error: (08/26/2020 09:46:39 PM) (Source: .NET Runtime) (EventID: 1022) (User: )
Description: .NET Runtime version 4.0.30319.0 - Error al inicializar la infraestructura de asociación de la API de generación de perfiles. Este proceso no permitirá que se asocie un generador de perfiles. HRESULT: 0x80004005. Id. de proceso (decimal): 8420. Id. de mensaje: [0x2509].
Error: (08/26/2020 09:02:16 PM) (Source: .NET Runtime) (EventID: 1022) (User: )
Description: .NET Runtime version 4.0.30319.0 - Error al inicializar la infraestructura de asociación de la API de generación de perfiles. Este proceso no permitirá que se asocie un generador de perfiles. HRESULT: 0x80004005. Id. de proceso (decimal): 2772. Id. de mensaje: [0x2509].
Error: (08/26/2020 07:58:24 PM) (Source: .NET Runtime) (EventID: 1022) (User: )
Description: .NET Runtime version 4.0.30319.0 - Error al inicializar la infraestructura de asociación de la API de generación de perfiles. Este proceso no permitirá que se asocie un generador de perfiles. HRESULT: 0x80004005. Id. de proceso (decimal): 6020. Id. de mensaje: [0x2509].
Error: (08/26/2020 07:36:25 PM) (Source: .NET Runtime) (EventID: 1022) (User: )
Description: .NET Runtime version 4.0.30319.0 - Error al inicializar la infraestructura de asociación de la API de generación de perfiles. Este proceso no permitirá que se asocie un generador de perfiles. HRESULT: 0x80004005. Id. de proceso (decimal): 3056. Id. de mensaje: [0x2509].
Error: (08/26/2020 07:33:24 PM) (Source: .NET Runtime) (EventID: 1022) (User: )
Description: .NET Runtime version 4.0.30319.0 - Error al inicializar la infraestructura de asociación de la API de generación de perfiles. Este proceso no permitirá que se asocie un generador de perfiles. HRESULT: 0x80004005. Id. de proceso (decimal): 8372. Id. de mensaje: [0x2509].
Error: (08/26/2020 07:13:20 PM) (Source: .NET Runtime) (EventID: 1022) (User: )
Description: .NET Runtime version 4.0.30319.0 - Error al inicializar la infraestructura de asociación de la API de generación de perfiles. Este proceso no permitirá que se asocie un generador de perfiles. HRESULT: 0x80004005. Id. de proceso (decimal): 7700. Id. de mensaje: [0x2509].
Error: (08/26/2020 06:35:17 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: Error de la activación de licencia (slui.exe) con el siguiente código:
hr=0xC004F074
Argumentos de línea de comandos:
RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=c06b6981-d7fd-4a35-b7b4-054742b7af67;NotificationInterval=1440;Trigger=UserLogon;SessionId=3
Errores del sistema:
=============
Error: (08/26/2020 10:38:28 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Error de instalación: error de Windows al instalar la siguiente actualización, error 0x80073712: Paquetes de idioma de Microsoft .NET Framework 4.8 para Windows 8.1 y Server 2012 R2 para x64 (KB4087514).
Error: (08/26/2020 10:34:01 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Error de instalación: error de Windows al instalar la siguiente actualización, error 0x80073712: Paquetes de idioma de Microsoft .NET Framework 4.8 para Windows 8.1 y Server 2012 R2 para x64 (KB4087514).
Error: (08/26/2020 10:11:53 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Error de instalación: error de Windows al instalar la siguiente actualización, error 0x80073712: Paquetes de idioma de Microsoft .NET Framework 4.8 para Windows 8.1 y Server 2012 R2 para x64 (KB4087514).
Error: (08/26/2020 05:49:13 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: El servicio Sentinel no pudo iniciarse debido al siguiente error:
Se ha bloqueado la descarga de este controlador
Error: (08/26/2020 05:49:13 AM) (Source: Application Popup) (EventID: 1060) (User: )
Description: \SystemRoot\SysWow64\Drivers\SENTINEL.SYS
Error: (08/26/2020 05:47:59 AM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: El servicio Servicio de uso compartido de red del Reproductor de Windows Media depende del servicio Windows Search, el cual no pudo iniciarse debido al siguiente error:
No se ha iniciado el servicio.
Error: (08/26/2020 05:47:33 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: El servicio Alps HID Monitor Service se terminó de manera inesperada. Esto ha sucedido 1 veces.
Error: (08/26/2020 05:47:33 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: El servicio nordvpn-service se terminó de manera inesperada. Esto ha sucedido 1 veces.
Windows Defender:
===================================
Date: 2016-08-19 10:25:44.793
Description:
Windows Defender detectó malware u otro software potencialmente no deseado.
Para obtener más información consulte lo siguiente:
http://go.microsoft.com/fwlink/?linkid=37020&name=HackTool:Win32/Keygen&threatid=2147593794
Nombre: HackTool:Win32/Keygen
Id.: 2147593794
Gravedad: Media
Categoría: Herramienta
Ruta de acceso: file:_C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\adobe.acrobat.xi.pro.patch-MPT.exe
Origen de detección: Equipo local
Tipo de detección: Concreto
Fuente de detección: Protección en tiempo real
Usuario: NT AUTHORITY\SYSTEM
Nombre de proceso: C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe
Versión de firma: AV: 1.197.1330.0, AS: 1.197.1330.0, NIS: 106.0.0.0
Versión de motor: AM: 1.1.11602.0, NIS: 2.1.9700.0
Date: 2015-05-06 21:55:58.092
Description:
Windows Defender detectó malware u otro software potencialmente no deseado.
Para obtener más información consulte lo siguiente:
http://go.microsoft.com/fwlink/?linkid=37020&name=HackTool:Win32/AutoKMS&threatid=2147685180
Nombre: HackTool:Win32/AutoKMS
Id.: 2147685180
Gravedad: Media
Categoría: Herramienta
Ruta de acceso: file:_C:\Program Files\KMSpico\AutoPico.exe;file:_C:\Program Files\KMSpico\KMSELDI.exe;file:_C:\Program Files\KMSpico\Service_KMS.exe;file:_C:\Users\Soulless\Desktop\Descargas\AIO.MS.Office.2013.SP1.VL.SPANiSH\Activador\Microsoft Toolkit\Microsoft Toolkit.exe;file:_C:\Windows\System32\Tasks\AutoPico Daily Restart;process:_pid:1876,ProcessStart:130754335166856968;process:_pid:4492,ProcessStart:130754336135644970;regkey:_HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\KMSpico_is1;service:_Service KMSELDI;taskscheduler:_C:\Windows\System32\Tasks\AutoPico Daily Restart;uninstall:_HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\KMSpico_is1
Origen de detección: Equipo local
Tipo de detección: Concreto
Fuente de detección: Protección en tiempo real
Usuario: NT AUTHORITY\SYSTEM
Nombre de proceso: C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe
Versión de firma: AV: 1.197.1330.0, AS: 1.197.1330.0, NIS: 106.0.0.0
Versión de motor: AM: 1.1.11602.0, NIS: 2.1.9700.0
Date: 2015-05-06 21:54:15.040
Description:
Windows Defender detectó malware u otro software potencialmente no deseado.
Para obtener más información consulte lo siguiente:
http://go.microsoft.com/fwlink/?linkid=37020&name=HackTool:Win32/AutoKMS&threatid=2147685180
Nombre: HackTool:Win32/AutoKMS
Id.: 2147685180
Gravedad: Media
Categoría: Herramienta
Ruta de acceso: file:_C:\Users\Soulless\Desktop\Descargas\AIO.MS.Office.2013.SP1.VL.SPANiSH\Activador\Microsoft Toolkit\Microsoft Toolkit.exe
Origen de detección: Equipo local
Tipo de detección: Concreto
Fuente de detección: Protección en tiempo real
Usuario: NT AUTHORITY\SYSTEM
Nombre de proceso: C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe
Versión de firma: AV: 1.197.1330.0, AS: 1.197.1330.0, NIS: 106.0.0.0
Versión de motor: AM: 1.1.11602.0, NIS: 2.1.9700.0
Date: 2015-05-06 21:52:47.734
Description:
Windows Defender detectó malware u otro software potencialmente no deseado.
Para obtener más información consulte lo siguiente:
http://go.microsoft.com/fwlink/?linkid=37020&name=HackTool:Win32/Keygen&threatid=2147593794
Nombre: HackTool:Win32/Keygen
Id.: 2147593794
Gravedad: Media
Categoría: Herramienta
Ruta de acceso: file:_C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\adobe.acrobat.xi.pro.patch-MPT.exe
Origen de detección: Equipo local
Tipo de detección: Concreto
Fuente de detección: Protección en tiempo real
Usuario: NT AUTHORITY\SYSTEM
Nombre de proceso: C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe
Versión de firma: AV: 1.197.1330.0, AS: 1.197.1330.0, NIS: 106.0.0.0
Versión de motor: AM: 1.1.11602.0, NIS: 2.1.9700.0
Date: 2015-05-06 07:05:42.406
Description:
Windows Defender detectó malware u otro software potencialmente no deseado.
Para obtener más información consulte lo siguiente:
http://go.microsoft.com/fwlink/?linkid=37020&name=HackTool:Win32/AutoKMS&threatid=2147685180
Nombre: HackTool:Win32/AutoKMS
Id.: 2147685180
Gravedad: Media
Categoría: Herramienta
Ruta de acceso: file:_C:\Program Files\KMSpico\AutoPico.exe;file:_C:\Program Files\KMSpico\KMSELDI.exe;file:_C:\Program Files\KMSpico\Service_KMS.exe;file:_C:\Users\Soulless\Desktop\Descargas\AIO.MS.Office.2013.SP1.VL.SPANiSH\Activador\Microsoft Toolkit\Microsoft Toolkit.exe;process:_pid:3560,ProcessStart:130751033630841028;process:_pid:4228,ProcessStart:130753511400667204;process:_pid:5636,ProcessStart:130752647428816508;service:_Service KMSELDI
Origen de detección: Equipo local
Tipo de detección: Concreto
Fuente de detección: Sistema
Usuario: NT AUTHORITY\SYSTEM
Nombre de proceso: C:\Windows\System32\rundll32.exe
Versión de firma: AV: 1.197.1330.0, AS: 1.197.1330.0, NIS: 106.0.0.0
Versión de motor: AM: 1.1.11602.0, NIS: 2.1.9700.0
Date: 2017-11-30 19:21:30.759
Description:
La característica Protección en tiempo real de Windows Defender encontró un error:
Característica: Sistema de inspección de red
Código de error: 0x80070002
Descripción del error: El sistema no puede encontrar el archivo especificado.
Motivo: La protección antimalware dejó de funcionar por motivos desconocidos. En algunos casos, reiniciar el servicio puede que resuelva el problema.
Date: 2017-11-30 19:19:53.222
Description:
La característica Protección en tiempo real de Windows Defender encontró un error:
Característica: Sistema de inspección de red
Código de error: 0x80070002
Descripción del error: El sistema no puede encontrar el archivo especificado.
Motivo: El sistema no tiene las actualizaciones necesarias para ejecutar el Sistema de inspección de red. Instale las actualizaciones requeridas y reinicie el equipo.
Date: 2016-08-19 10:27:15.029
Description:
La característica Protección en tiempo real de Windows Defender encontró un error:
Característica: Sistema de inspección de red
Código de error: 0x80070002
Descripción del error: El sistema no puede encontrar el archivo especificado.
Motivo: La protección antimalware dejó de funcionar por motivos desconocidos. En algunos casos, reiniciar el servicio puede que resuelva el problema.
Date: 2016-08-19 10:25:33.815
Description:
La característica Protección en tiempo real de Windows Defender encontró un error:
Característica: Sistema de inspección de red
Código de error: 0x80070002
Descripción del error: El sistema no puede encontrar el archivo especificado.
Motivo: El sistema no tiene las actualizaciones necesarias para ejecutar el Sistema de inspección de red. Instale las actualizaciones requeridas y reinicie el equipo.
Date: 2015-12-21 15:58:00.419
Description:
La característica Protección en tiempo real de Windows Defender encontró un error:
Característica: Sistema de inspección de red
Código de error: 0x80070002
Descripción del error: El sistema no puede encontrar el archivo especificado.
Motivo: La protección antimalware dejó de funcionar por motivos desconocidos. En algunos casos, reiniciar el servicio puede que resuelva el problema.
CodeIntegrity:
===================================
Date: 2020-08-25 03:01:25.379
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2020-08-25 03:01:24.629
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2020-08-25 03:01:04.003
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2020-08-25 03:01:03.315
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2020-08-25 03:01:02.815
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2020-08-25 03:00:42.236
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2020-08-25 03:00:41.736
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2020-08-25 03:00:41.048
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.
==================== Información de la memoria ===========================
BIOS: Insyde F.06 05/28/2013
Placa base: Hewlett-Packard 196E
Procesador: Intel(R) Core(TM) i5-3230M CPU @ 2.60GHz
Porcentaje de memoria en uso: 32%
RAM física total: 8084.27 MB
RAM física disponible: 5462.45 MB
Virtual total: 9812.27 MB
Virtual disponible: 7335.64 MB
==================== Unidades ================================
Drive c: () (Fixed) (Total:906.86 GB) (Free:10.18 GB) NTFS
Drive d: (RECOVERY) (Fixed) (Total:24.14 GB) (Free:2.39 GB) NTFS ==>[sistema con componentes de arranque (obtenido de unidad)]
Drive e: (CORALINE) (CDROM) (Total:7.44 GB) (Free:0 GB) UDF
\\?\Volume{88dd1312-a4aa-4e56-ab6b-dd9672e53ad2}\ (Recuperación) (Fixed) (Total:0.29 GB) (Free:0.03 GB) NTFS
==================== MBR & Tabla de particiones ====================
==========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: 62FA52CD)
Partition: GPT.
==================== Final de Addition.txt =======================
Hola @arckan
Para evitar este tipo de problemas e infecciones te recomiendo que dejes de usar Software de Seguridad piratas es una locura, siempre es mejor un AV free que uno pirata que no te proteje.
Tienes Antivirus pirata, Antimalwares y VPN piratas…
Paso 1:
Desinstala con su Herramienta Especifica:
- ESET Security
- Malwarebytes >>> solo si aun tienes instalada la versión pirata.
Reinicias el equipo.
Paso 2:
Ejecutaste FRST desde un lugar incorrecto:
- Ejecutado desde C:\Users\Soulless\Downloads
Corta el ejecutable y pegalo en tu escritorio <<< Esto es Muy Importante.
Paso 3:
Con mucha atención:
1.- Muy Importante >>> Realizar una copia de Seguridad de su Registro.
- Descarga/Ejecuta DelFix desde el escritorio de Windows.
- Clic Derecho, “Ejecutar como Administrador”.
- En la ventana principal, marca solamente la casilla “Create Registry Backup”.
- Clic en Run.
Al terminar se abrirá un reporte llamado DelFix.txt, guárdelo por si fuera necesario y cierre la herramienta…
Luego ve a::
2.- Inicio >>> Ejecutar >>> Escribe notepad.exe o abra un nuevo archivo Notepad y copie y pegue lo siguiente:
Start::
CloseProcesses:
HKLM-x32\...\Run: [] => [X]
HKU\S-1-5-21-4104487672-3836452688-4083331385-1001\...\Policies\Explorer: []
HKU\S-1-5-21-4104487672-3836452688-4083331385-1001\...\MountPoints2: {00a5077a-ab4a-11ea-8482-a45d36663e99} - "F:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-4104487672-3836452688-4083331385-1001\...\MountPoints2: {0b1fd4e5-9d9e-11e4-8299-dfbfb5110c0a} - "F:\AutoRun.exe"
HKU\S-1-5-21-4104487672-3836452688-4083331385-1001\...\MountPoints2: {35c5b105-dc8f-11e5-82c5-a45d36663e99} - "F:\AutoRun.exe"
HKU\S-1-5-21-4104487672-3836452688-4083331385-1001\...\MountPoints2: {35c5b174-dc8f-11e5-82c5-a45d36663e99} - "F:\AutoRun.exe"
HKU\S-1-5-21-4104487672-3836452688-4083331385-1001\...\MountPoints2: {37a0f969-740b-11ea-8450-a45d36663e99} - "F:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-4104487672-3836452688-4083331385-1001\...\MountPoints2: {6b1d9f8a-b629-11e4-829f-a45d36663e99} - "F:\AutoRun.exe"
HKU\S-1-5-21-4104487672-3836452688-4083331385-1001\...\MountPoints2: {6b1da547-b629-11e4-829f-a45d36663e99} - "F:\AutoRun.exe"
HKU\S-1-5-21-4104487672-3836452688-4083331385-1001\...\MountPoints2: {6b1da919-b629-11e4-829f-a45d36663e99} - "F:\AutoRun.exe"
HKU\S-1-5-21-4104487672-3836452688-4083331385-1001\...\MountPoints2: {8214ec6d-de6a-11e5-82c7-a45d36663e99} - "F:\AutoRun.exe"
HKU\S-1-5-21-4104487672-3836452688-4083331385-1001\...\MountPoints2: {a595edbe-ac84-11e3-8259-bc855652d87c} - "G:\Autoplay.exe" -auto
HKU\S-1-5-21-4104487672-3836452688-4083331385-1001\...\MountPoints2: {af85939b-1b34-11e4-8285-bc855652d87c} - "F:\iLinker.exe"
HKU\S-1-5-21-4104487672-3836452688-4083331385-1001\...\MountPoints2: {c47a9d8e-9408-11e4-8298-bc855652d87c} - "F:\AutoRun.exe"
HKU\S-1-5-21-4104487672-3836452688-4083331385-1001\...\MountPoints2: {c47aa1a2-9408-11e4-8298-bc855652d87c} - "F:\AutoRun.exe"
HKU\S-1-5-21-4104487672-3836452688-4083331385-1001\...\MountPoints2: {d99648dc-d640-11ea-849b-a45d36663e99} - "F:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-4104487672-3836452688-4083331385-1001\...\MountPoints2: {fe0c85a8-baf4-11e4-82a1-a45d36663e99} - "F:\AutoRun.exe"
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\84.0.4147.135\Installer\chrmstp.exe [2020-08-18] (Google LLC -> Google LLC)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> "C:\Program Files (x86)\Google\Chrome\Application\57.0.2987.133\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\AutorunsDisabled [2014-08-03] ()
GroupPolicy: Restricción ? <==== ATENCIÓN
CHR HKLM-x32\...\Chrome\Extension: [makcojoppodhcgmmchohadhpkicoafka]
S3 bomemidi; \SystemRoot\system32\drivers\bomemidi.sys [X]
S3 ew_hwusbdev; \SystemRoot\system32\DRIVERS\ew_hwusbdev.sys [X]
S3 ew_usbenumfilter; \SystemRoot\System32\drivers\ew_usbenumfilter.sys [X]
S3 huawei_cdcacm; \SystemRoot\system32\DRIVERS\ew_jucdcacm.sys [X]
S3 huawei_enumerator; \SystemRoot\System32\drivers\ew_jubusenum.sys [X]
S3 huawei_ext_ctrl; \SystemRoot\System32\drivers\ew_juextctrl.sys [X]
S3 huawei_wwanecm; \SystemRoot\system32\DRIVERS\ew_juwwanecm.sys [X]
S4 IUFileFilter; \??\C:\Program Files (x86)\IObit\IObit Uninstaller\drivers\win7_amd64\IUFileFilter.sys [X]
S3 IUProcessFilter; \??\C:\Program Files (x86)\IObit\IObit Uninstaller\drivers\win7_amd64\IUProcessFilter.sys [X]
S3 IURegistryFilter; \??\C:\Program Files (x86)\IObit\IObit Uninstaller\drivers\win7_amd64\IURegistryFilter.sys [X]
C:\Program Files (x86)\IObit
2020-08-26 22:06 - 2020-08-26 22:07 - 000000820 _____ C:\Users\Soulless\Desktop\ESET Online Scanner.lnk
2020-08-26 22:05 - 2020-08-26 22:07 - 014860896 _____ (ESET spol. s r.o.) C:\Users\Soulless\Downloads\ESETOnlineScanner_ESL.exe
2020-08-25 00:25 - 2020-08-25 00:25 - 000000000 _____ C:\Windows\d.bat
2020-08-25 00:25 - 2020-08-23 16:36 - 000000320 _____ C:\Windows\e.reg
2020-08-25 00:25 - 2020-08-23 16:36 - 000000302 _____ C:\Windows\mn.reg
2020-08-25 00:25 - 2020-08-23 16:36 - 000000302 _____ C:\Windows\mf.reg
2020-08-25 00:25 - 2020-08-23 16:36 - 000000001 _____ C:\Windows\y.txt
2020-08-19 17:00 - 2020-08-19 17:01 - 046430908 _____ C:\Users\Soulless\Downloads\✅Descargar Malwarebytes Premium 4.1.73 [Ultima Version 2020]👉Licencia Definitiva Sin Errores👈Full ✅.mp4
2020-08-19 16:58 - 2020-08-19 16:58 - 000000000 ____D C:\Users\Soulless\Downloads\MalwarebytesPremium_4.1.2.73_PCSOF
2020-08-19 16:55 - 2020-08-19 16:57 - 192729902 _____ C:\Users\Soulless\Downloads\MalwarebytesPremium_4.1.2.73_PCSOF.rar
2020-08-19 16:31 - 2020-08-19 16:31 - 000013511 _____ C:\Users\Soulless\Downloads\Malwarebytes Premium 4.1.2.73 RePack by Emir Candan [2020,Multi Ru] [rutracker-5919755].torrent
2020-08-08 01:24 - 2020-08-08 01:24 - 000000000 ____D C:\Users\Soulless\Downloads\Advanced.SystemCare.Pro.13.6.0.291
2020-08-08 01:20 - 2020-08-08 01:20 - 050204268 _____ C:\Users\Soulless\Downloads\Advanced.SystemCare.Pro.13.6.0.291.rar
2020-08-02 04:55 - 2020-08-02 04:55 - 000000000 ____D C:\Users\Soulless\Downloads\Nord VPN Ultima Version Actualizada 2020 Para Siempre + Codigos de Licencia Oficiales (WINDOWS)(ByAdri23)
2020-08-02 04:54 - 2020-08-02 04:55 - 015763660 _____ C:\Users\Soulless\Downloads\Nord VPN Ultima Version Actualizada 2020 Para Siempre + Codigos de Licencia Oficiales (WINDOWS)(ByAdri23).rar
2020-08-02 04:35 - 2019-10-05 21:27 - 000000000 ____D C:\Users\Soulless\Downloads\Betternet.VPN.Premium.v5.3.0.433
2020-08-25 17:31 - 2020-07-10 20:13 - 000000000 ____D C:\Windows\w
2020-08-25 17:31 - 2020-07-10 20:13 - 000000000 ____D C:\Windows\c
2018-10-01 20:46 - 2018-10-01 20:46 - 000000000 _____ () C:\Users\Soulless\AppData\Local\oobelibMkey.log
2015-12-16 10:21 - 2015-12-16 10:21 - 000000000 _____ () C:\Users\Soulless\AppData\Local\{3A406432-0C29-467F-BB1A-9F4C009EF5BA}
2015-12-16 10:21 - 2015-12-16 10:21 - 000000000 _____ () C:\Users\Soulless\AppData\Local\{702169DF-0F2B-41FF-B624-98AA5ED39772}
2015-12-16 10:21 - 2015-12-16 10:21 - 000000000 _____ () C:\Users\Soulless\AppData\Local\{78644686-9651-4AF1-97E8-E70FDBBFAA12}
2015-12-16 10:21 - 2015-12-16 10:21 - 000000000 _____ () C:\Users\Soulless\AppData\Local\{953849D3-8EA1-45A7-9246-EF3EEEE633B7}
2015-12-16 10:21 - 2015-12-16 10:21 - 000000000 _____ () C:\Users\Soulless\AppData\Local\{E72632BC-8A5C-4A39-8072-E38C4D89ED66}
CustomCLSID: HKU\S-1-5-21-4104487672-3836452688-4083331385-1001_Classes\CLSID\{1b442ae8-58f5-4984-9f9d-7767e553d851}\InprocServer32 -> C:\Windows\system32\dfshim.dll (Microsoft Windows -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-4104487672-3836452688-4083331385-1001_Classes\CLSID\{22A8794C-E808-52FA-40C1-F0D8F63A947A}\InprocServer32 -> no ruta de acceso de archivo
CustomCLSID: HKU\S-1-5-21-4104487672-3836452688-4083331385-1001_Classes\CLSID\{7DB2F5A2-947C-4E23-F2FD-85DA573ACF5B}\InprocServer32 -> no ruta de acceso de archivo
CustomCLSID: HKU\S-1-5-21-4104487672-3836452688-4083331385-1001_Classes\CLSID\{B39830FC-79B2-99BC-9282-9ED0CC38F9CD}\InprocServer32 -> no ruta de acceso de archivo
ShellIconOverlayIdentifiers: [ MEGA (Pending)] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => -> Ningún archivo
ShellIconOverlayIdentifiers: [ MEGA (Synced)] -> {05B38830-F4E9-4329-978B-1DD28605D202} => -> Ningún archivo
ShellIconOverlayIdentifiers: [ MEGA (Syncing)] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => -> Ningún archivo
ShellIconOverlayIdentifiers-x32: [ MEGA (Synced)] -> {05B38830-F4E9-4329-978B-1DD28605D202} => -> Ningún archivo
ShellIconOverlayIdentifiers-x32: [ MEGA (Syncing)] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => -> Ningún archivo
ContextMenuHandlers1: [IObitUnstaler] -> {836AB26C-2DE4-41D3-AC24-4C6C2699B960} => -> Ningún archivo
ContextMenuHandlers1: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => -> Ningún archivo
ContextMenuHandlers4: [IObitUnstaler] -> {836AB26C-2DE4-41D3-AC24-4C6C2699B960} => -> Ningún archivo
ContextMenuHandlers4: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => -> Ningún archivo
ContextMenuHandlers6: [IObitUnstaler] -> {836AB26C-2DE4-41D3-AC24-4C6C2699B960} => -> Ningún archivo
Shortcut: C:\Users\Soulless\Desktop\GIOVANNI ESCRITORIO\paravirus.BAT - Acceso directo.lnk -> C:\Users\Soulless\Desktop\paravirus.BAT (Ningún archivo)
C:\Users\Soulless\Desktop\paravirus.BAT
HKU\S-1-5-21-4104487672-3836452688-4083331385-1001\Software\Classes\regfile: regedit.exe "%1" <==== ATENCIÓN
HKU\S-1-5-21-4104487672-3836452688-4083331385-1001\Software\Classes\.scr: AutoCADScriptFile => C:\Windows\system32\notepad.exe "%1"
CMD: ipconfig /flushdns
CMD: ipconfig /renew
CMD: bitsadmin /reset /allusers
CMD: netsh winsock reset
CMD: netsh advfirewall reset
CMD: netsh advfirewall set allprofiles state ON
CMD: netsh int ipv4 reset
CMD: netsh int ipv6 reset
RemoveProxy:
EmptyTemp:
Hosts:
End::
- Lo guarda bajo el nombre de fixlist.txt en el escritorio <<< Esto es muy importante.
Nota: Es necesario que el ejecutable Frst.exe/Frst64.exe y fixlist.txt se encuentren en la misma ubicación (escritorio) o si no la herramienta no trabajará.
3.- Inicie su ordenador en >>> Modo Seguro >>> Aplicable a Windows 10. o Windows 7.
- Ejecute Frst.exe o Frst64.exe. según el caso.
- Presione el botón Fix/Corregir y aguarde a que termine.
- La Herramienta guardará el reporte en su escritorio (Fixlog.txt).
- Reinicia y lo pega en su próxima respuesta.
Nos comentas…
Salu2
Hola @SanMar eres muy amable, seguí los pasos señalados. adjunto reporte FIXLOG
Resultados de la corrección de Farbar Recovery Scan Tool (x64) Versión: 26-08-2020
Ejecutado por CerealKiller (27-08-2020 02:25:49) Run:1
Ejecutado desde C:\Users\Soulless\Desktop
Perfiles cargados: CerealKiller
Modo de Inicio: Safe Mode (minimal)
==============================================
fixlist contenido:
*****************
CloseProcesses:
HKLM-x32\...\Run: [] => [X]
HKU\S-1-5-21-4104487672-3836452688-4083331385-1001\...\Policies\Explorer: []
HKU\S-1-5-21-4104487672-3836452688-4083331385-1001\...\MountPoints2: {00a5077a-ab4a-11ea-8482-a45d36663e99} - "F:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-4104487672-3836452688-4083331385-1001\...\MountPoints2: {0b1fd4e5-9d9e-11e4-8299-dfbfb5110c0a} - "F:\AutoRun.exe"
HKU\S-1-5-21-4104487672-3836452688-4083331385-1001\...\MountPoints2: {35c5b105-dc8f-11e5-82c5-a45d36663e99} - "F:\AutoRun.exe"
HKU\S-1-5-21-4104487672-3836452688-4083331385-1001\...\MountPoints2: {35c5b174-dc8f-11e5-82c5-a45d36663e99} - "F:\AutoRun.exe"
HKU\S-1-5-21-4104487672-3836452688-4083331385-1001\...\MountPoints2: {37a0f969-740b-11ea-8450-a45d36663e99} - "F:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-4104487672-3836452688-4083331385-1001\...\MountPoints2: {6b1d9f8a-b629-11e4-829f-a45d36663e99} - "F:\AutoRun.exe"
HKU\S-1-5-21-4104487672-3836452688-4083331385-1001\...\MountPoints2: {6b1da547-b629-11e4-829f-a45d36663e99} - "F:\AutoRun.exe"
HKU\S-1-5-21-4104487672-3836452688-4083331385-1001\...\MountPoints2: {6b1da919-b629-11e4-829f-a45d36663e99} - "F:\AutoRun.exe"
HKU\S-1-5-21-4104487672-3836452688-4083331385-1001\...\MountPoints2: {8214ec6d-de6a-11e5-82c7-a45d36663e99} - "F:\AutoRun.exe"
HKU\S-1-5-21-4104487672-3836452688-4083331385-1001\...\MountPoints2: {a595edbe-ac84-11e3-8259-bc855652d87c} - "G:\Autoplay.exe" -auto
HKU\S-1-5-21-4104487672-3836452688-4083331385-1001\...\MountPoints2: {af85939b-1b34-11e4-8285-bc855652d87c} - "F:\iLinker.exe"
HKU\S-1-5-21-4104487672-3836452688-4083331385-1001\...\MountPoints2: {c47a9d8e-9408-11e4-8298-bc855652d87c} - "F:\AutoRun.exe"
HKU\S-1-5-21-4104487672-3836452688-4083331385-1001\...\MountPoints2: {c47aa1a2-9408-11e4-8298-bc855652d87c} - "F:\AutoRun.exe"
HKU\S-1-5-21-4104487672-3836452688-4083331385-1001\...\MountPoints2: {d99648dc-d640-11ea-849b-a45d36663e99} - "F:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-4104487672-3836452688-4083331385-1001\...\MountPoints2: {fe0c85a8-baf4-11e4-82a1-a45d36663e99} - "F:\AutoRun.exe"
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\84.0.4147.135\Installer\chrmstp.exe [2020-08-18] (Google LLC -> Google LLC)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> "C:\Program Files (x86)\Google\Chrome\Application\57.0.2987.133\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\AutorunsDisabled [2014-08-03] ()
GroupPolicy: Restricci�n ? <==== ATENCI�N
CHR HKLM-x32\...\Chrome\Extension: [makcojoppodhcgmmchohadhpkicoafka]
S3 bomemidi; \SystemRoot\system32\drivers\bomemidi.sys [X]
S3 ew_hwusbdev; \SystemRoot\system32\DRIVERS\ew_hwusbdev.sys [X]
S3 ew_usbenumfilter; \SystemRoot\System32\drivers\ew_usbenumfilter.sys [X]
S3 huawei_cdcacm; \SystemRoot\system32\DRIVERS\ew_jucdcacm.sys [X]
S3 huawei_enumerator; \SystemRoot\System32\drivers\ew_jubusenum.sys [X]
S3 huawei_ext_ctrl; \SystemRoot\System32\drivers\ew_juextctrl.sys [X]
S3 huawei_wwanecm; \SystemRoot\system32\DRIVERS\ew_juwwanecm.sys [X]
S4 IUFileFilter; \??\C:\Program Files (x86)\IObit\IObit Uninstaller\drivers\win7_amd64\IUFileFilter.sys [X]
S3 IUProcessFilter; \??\C:\Program Files (x86)\IObit\IObit Uninstaller\drivers\win7_amd64\IUProcessFilter.sys [X]
S3 IURegistryFilter; \??\C:\Program Files (x86)\IObit\IObit Uninstaller\drivers\win7_amd64\IURegistryFilter.sys [X]
C:\Program Files (x86)\IObit
2020-08-26 22:06 - 2020-08-26 22:07 - 000000820 _____ C:\Users\Soulless\Desktop\ESET Online Scanner.lnk
2020-08-26 22:05 - 2020-08-26 22:07 - 014860896 _____ (ESET spol. s r.o.) C:\Users\Soulless\Downloads\ESETOnlineScanner_ESL.exe
2020-08-25 00:25 - 2020-08-25 00:25 - 000000000 _____ C:\Windows\d.bat
2020-08-25 00:25 - 2020-08-23 16:36 - 000000320 _____ C:\Windows\e.reg
2020-08-25 00:25 - 2020-08-23 16:36 - 000000302 _____ C:\Windows\mn.reg
2020-08-25 00:25 - 2020-08-23 16:36 - 000000302 _____ C:\Windows\mf.reg
2020-08-25 00:25 - 2020-08-23 16:36 - 000000001 _____ C:\Windows\y.txt
2020-08-19 17:00 - 2020-08-19 17:01 - 046430908 _____ C:\Users\Soulless\Downloads\?Descargar Malwarebytes Premium 4.1.73 [Ultima Version 2020]??Licencia Definitiva Sin Errores??Full ?.mp4
2020-08-19 16:58 - 2020-08-19 16:58 - 000000000 ____D C:\Users\Soulless\Downloads\MalwarebytesPremium_4.1.2.73_PCSOF
2020-08-19 16:55 - 2020-08-19 16:57 - 192729902 _____ C:\Users\Soulless\Downloads\MalwarebytesPremium_4.1.2.73_PCSOF.rar
2020-08-19 16:31 - 2020-08-19 16:31 - 000013511 _____ C:\Users\Soulless\Downloads\Malwarebytes Premium 4.1.2.73 RePack by Emir Candan [2020,Multi Ru] [rutracker-5919755].torrent
2020-08-08 01:24 - 2020-08-08 01:24 - 000000000 ____D C:\Users\Soulless\Downloads\Advanced.SystemCare.Pro.13.6.0.291
2020-08-08 01:20 - 2020-08-08 01:20 - 050204268 _____ C:\Users\Soulless\Downloads\Advanced.SystemCare.Pro.13.6.0.291.rar
2020-08-02 04:55 - 2020-08-02 04:55 - 000000000 ____D C:\Users\Soulless\Downloads\Nord VPN Ultima Version Actualizada 2020 Para Siempre + Codigos de Licencia Oficiales (WINDOWS)(ByAdri23)
2020-08-02 04:54 - 2020-08-02 04:55 - 015763660 _____ C:\Users\Soulless\Downloads\Nord VPN Ultima Version Actualizada 2020 Para Siempre + Codigos de Licencia Oficiales (WINDOWS)(ByAdri23).rar
2020-08-02 04:35 - 2019-10-05 21:27 - 000000000 ____D C:\Users\Soulless\Downloads\Betternet.VPN.Premium.v5.3.0.433
2020-08-25 17:31 - 2020-07-10 20:13 - 000000000 ____D C:\Windows\w
2020-08-25 17:31 - 2020-07-10 20:13 - 000000000 ____D C:\Windows\c
2018-10-01 20:46 - 2018-10-01 20:46 - 000000000 _____ () C:\Users\Soulless\AppData\Local\oobelibMkey.log
2015-12-16 10:21 - 2015-12-16 10:21 - 000000000 _____ () C:\Users\Soulless\AppData\Local\{3A406432-0C29-467F-BB1A-9F4C009EF5BA}
2015-12-16 10:21 - 2015-12-16 10:21 - 000000000 _____ () C:\Users\Soulless\AppData\Local\{702169DF-0F2B-41FF-B624-98AA5ED39772}
2015-12-16 10:21 - 2015-12-16 10:21 - 000000000 _____ () C:\Users\Soulless\AppData\Local\{78644686-9651-4AF1-97E8-E70FDBBFAA12}
2015-12-16 10:21 - 2015-12-16 10:21 - 000000000 _____ () C:\Users\Soulless\AppData\Local\{953849D3-8EA1-45A7-9246-EF3EEEE633B7}
2015-12-16 10:21 - 2015-12-16 10:21 - 000000000 _____ () C:\Users\Soulless\AppData\Local\{E72632BC-8A5C-4A39-8072-E38C4D89ED66}
CustomCLSID: HKU\S-1-5-21-4104487672-3836452688-4083331385-1001_Classes\CLSID\{1b442ae8-58f5-4984-9f9d-7767e553d851}\InprocServer32 -> C:\Windows\system32\dfshim.dll (Microsoft Windows -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-4104487672-3836452688-4083331385-1001_Classes\CLSID\{22A8794C-E808-52FA-40C1-F0D8F63A947A}\InprocServer32 -> no ruta de acceso de archivo
CustomCLSID: HKU\S-1-5-21-4104487672-3836452688-4083331385-1001_Classes\CLSID\{7DB2F5A2-947C-4E23-F2FD-85DA573ACF5B}\InprocServer32 -> no ruta de acceso de archivo
CustomCLSID: HKU\S-1-5-21-4104487672-3836452688-4083331385-1001_Classes\CLSID\{B39830FC-79B2-99BC-9282-9ED0CC38F9CD}\InprocServer32 -> no ruta de acceso de archivo
ShellIconOverlayIdentifiers: [ MEGA (Pending)] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => -> Ning�n archivo
ShellIconOverlayIdentifiers: [ MEGA (Synced)] -> {05B38830-F4E9-4329-978B-1DD28605D202} => -> Ning�n archivo
ShellIconOverlayIdentifiers: [ MEGA (Syncing)] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => -> Ning�n archivo
ShellIconOverlayIdentifiers-x32: [ MEGA (Synced)] -> {05B38830-F4E9-4329-978B-1DD28605D202} => -> Ning�n archivo
ShellIconOverlayIdentifiers-x32: [ MEGA (Syncing)] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => -> Ning�n archivo
ContextMenuHandlers1: [IObitUnstaler] -> {836AB26C-2DE4-41D3-AC24-4C6C2699B960} => -> Ning�n archivo
ContextMenuHandlers1: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => -> Ning�n archivo
ContextMenuHandlers4: [IObitUnstaler] -> {836AB26C-2DE4-41D3-AC24-4C6C2699B960} => -> Ning�n archivo
ContextMenuHandlers4: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => -> Ning�n archivo
ContextMenuHandlers6: [IObitUnstaler] -> {836AB26C-2DE4-41D3-AC24-4C6C2699B960} => -> Ning�n archivo
Shortcut: C:\Users\Soulless\Desktop\GIOVANNI ESCRITORIO\paravirus.BAT - Acceso directo.lnk -> C:\Users\Soulless\Desktop\paravirus.BAT (Ning�n archivo)
C:\Users\Soulless\Desktop\paravirus.BAT
HKU\S-1-5-21-4104487672-3836452688-4083331385-1001\Software\Classes\regfile: regedit.exe "%1" <==== ATENCI�N
HKU\S-1-5-21-4104487672-3836452688-4083331385-1001\Software\Classes\.scr: AutoCADScriptFile => C:\Windows\system32\notepad.exe "%1"
CMD: ipconfig /flushdns
CMD: ipconfig /renew
CMD: bitsadmin /reset /allusers
CMD: netsh winsock reset
CMD: netsh advfirewall reset
CMD: netsh advfirewall set allprofiles state ON
CMD: netsh int ipv4 reset
CMD: netsh int ipv6 reset
RemoveProxy:
EmptyTemp:
Hosts:
*****************
Procesos cerrados correctamente.
"HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\" => eliminado correctamente
"HKU\S-1-5-21-4104487672-3836452688-4083331385-1001\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\\" => eliminado correctamente
HKU\S-1-5-21-4104487672-3836452688-4083331385-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{00a5077a-ab4a-11ea-8482-a45d36663e99} => eliminado correctamente
HKU\S-1-5-21-4104487672-3836452688-4083331385-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{0b1fd4e5-9d9e-11e4-8299-dfbfb5110c0a} => eliminado correctamente
HKU\S-1-5-21-4104487672-3836452688-4083331385-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{35c5b105-dc8f-11e5-82c5-a45d36663e99} => eliminado correctamente
HKU\S-1-5-21-4104487672-3836452688-4083331385-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{35c5b174-dc8f-11e5-82c5-a45d36663e99} => eliminado correctamente
HKU\S-1-5-21-4104487672-3836452688-4083331385-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{37a0f969-740b-11ea-8450-a45d36663e99} => eliminado correctamente
HKU\S-1-5-21-4104487672-3836452688-4083331385-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{6b1d9f8a-b629-11e4-829f-a45d36663e99} => eliminado correctamente
HKU\S-1-5-21-4104487672-3836452688-4083331385-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{6b1da547-b629-11e4-829f-a45d36663e99} => eliminado correctamente
HKU\S-1-5-21-4104487672-3836452688-4083331385-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{6b1da919-b629-11e4-829f-a45d36663e99} => eliminado correctamente
HKU\S-1-5-21-4104487672-3836452688-4083331385-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{8214ec6d-de6a-11e5-82c7-a45d36663e99} => eliminado correctamente
HKU\S-1-5-21-4104487672-3836452688-4083331385-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{a595edbe-ac84-11e3-8259-bc855652d87c} => eliminado correctamente
HKU\S-1-5-21-4104487672-3836452688-4083331385-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{af85939b-1b34-11e4-8285-bc855652d87c} => eliminado correctamente
HKU\S-1-5-21-4104487672-3836452688-4083331385-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{c47a9d8e-9408-11e4-8298-bc855652d87c} => eliminado correctamente
HKU\S-1-5-21-4104487672-3836452688-4083331385-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{c47aa1a2-9408-11e4-8298-bc855652d87c} => eliminado correctamente
HKU\S-1-5-21-4104487672-3836452688-4083331385-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{d99648dc-d640-11ea-849b-a45d36663e99} => eliminado correctamente
HKU\S-1-5-21-4104487672-3836452688-4083331385-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{fe0c85a8-baf4-11e4-82a1-a45d36663e99} => eliminado correctamente
HKLM\Software\Microsoft\Active Setup\Installed Components\{8A69D345-D564-463c-AFF1-A69D9E530F96} => eliminado correctamente
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components\{8A69D345-D564-463c-AFF1-A69D9E530F96} => eliminado correctamente
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\AutorunsDisabled => movido correctamente
C:\Windows\system32\GroupPolicy\Machine => movido correctamente
C:\Windows\system32\GroupPolicy\GPT.ini => movido correctamente
HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\makcojoppodhcgmmchohadhpkicoafka => eliminado correctamente
HKLM\System\CurrentControlSet\Services\bomemidi => eliminado correctamente
bomemidi => servicio eliminado correctamente
HKLM\System\CurrentControlSet\Services\ew_hwusbdev => eliminado correctamente
ew_hwusbdev => servicio eliminado correctamente
HKLM\System\CurrentControlSet\Services\ew_usbenumfilter => eliminado correctamente
ew_usbenumfilter => servicio eliminado correctamente
HKLM\System\CurrentControlSet\Services\huawei_cdcacm => eliminado correctamente
huawei_cdcacm => servicio eliminado correctamente
HKLM\System\CurrentControlSet\Services\huawei_enumerator => eliminado correctamente
huawei_enumerator => servicio eliminado correctamente
HKLM\System\CurrentControlSet\Services\huawei_ext_ctrl => eliminado correctamente
huawei_ext_ctrl => servicio eliminado correctamente
HKLM\System\CurrentControlSet\Services\huawei_wwanecm => eliminado correctamente
huawei_wwanecm => servicio eliminado correctamente
HKLM\System\CurrentControlSet\Services\IUFileFilter => eliminado correctamente
IUFileFilter => servicio eliminado correctamente
HKLM\System\CurrentControlSet\Services\IUProcessFilter => eliminado correctamente
IUProcessFilter => servicio eliminado correctamente
HKLM\System\CurrentControlSet\Services\IURegistryFilter => eliminado correctamente
IURegistryFilter => servicio eliminado correctamente
C:\Program Files (x86)\IObit => movido correctamente
C:\Users\Soulless\Desktop\ESET Online Scanner.lnk => movido correctamente
C:\Users\Soulless\Downloads\ESETOnlineScanner_ESL.exe => movido correctamente
C:\Windows\d.bat => movido correctamente
C:\Windows\e.reg => movido correctamente
C:\Windows\mn.reg => movido correctamente
C:\Windows\mf.reg => movido correctamente
C:\Windows\y.txt => movido correctamente
"C:\Users\Soulless\Downloads\?Descargar Malwarebytes Premium 4.1.73 [Ultima Version 2020]??Licencia Definitiva Sin Errores??Full ?.mp4" => no encontrado
C:\Users\Soulless\Downloads\MalwarebytesPremium_4.1.2.73_PCSOF => movido correctamente
C:\Users\Soulless\Downloads\MalwarebytesPremium_4.1.2.73_PCSOF.rar => movido correctamente
C:\Users\Soulless\Downloads\Malwarebytes Premium 4.1.2.73 RePack by Emir Candan [2020,Multi Ru] [rutracker-5919755].torrent => movido correctamente
C:\Users\Soulless\Downloads\Advanced.SystemCare.Pro.13.6.0.291 => movido correctamente
C:\Users\Soulless\Downloads\Advanced.SystemCare.Pro.13.6.0.291.rar => movido correctamente
C:\Users\Soulless\Downloads\Nord VPN Ultima Version Actualizada 2020 Para Siempre + Codigos de Licencia Oficiales (WINDOWS)(ByAdri23) => movido correctamente
C:\Users\Soulless\Downloads\Nord VPN Ultima Version Actualizada 2020 Para Siempre + Codigos de Licencia Oficiales (WINDOWS)(ByAdri23).rar => movido correctamente
C:\Users\Soulless\Downloads\Betternet.VPN.Premium.v5.3.0.433 => movido correctamente
C:\Windows\w => movido correctamente
C:\Windows\c => movido correctamente
C:\Users\Soulless\AppData\Local\oobelibMkey.log => movido correctamente
C:\Users\Soulless\AppData\Local\{3A406432-0C29-467F-BB1A-9F4C009EF5BA} => movido correctamente
C:\Users\Soulless\AppData\Local\{702169DF-0F2B-41FF-B624-98AA5ED39772} => movido correctamente
C:\Users\Soulless\AppData\Local\{78644686-9651-4AF1-97E8-E70FDBBFAA12} => movido correctamente
C:\Users\Soulless\AppData\Local\{953849D3-8EA1-45A7-9246-EF3EEEE633B7} => movido correctamente
C:\Users\Soulless\AppData\Local\{E72632BC-8A5C-4A39-8072-E38C4D89ED66} => movido correctamente
HKU\S-1-5-21-4104487672-3836452688-4083331385-1001_Classes\CLSID\{1b442ae8-58f5-4984-9f9d-7767e553d851} => eliminado correctamente
HKU\S-1-5-21-4104487672-3836452688-4083331385-1001_Classes\CLSID\{22A8794C-E808-52FA-40C1-F0D8F63A947A} => eliminado correctamente
HKU\S-1-5-21-4104487672-3836452688-4083331385-1001_Classes\CLSID\{7DB2F5A2-947C-4E23-F2FD-85DA573ACF5B} => eliminado correctamente
HKU\S-1-5-21-4104487672-3836452688-4083331385-1001_Classes\CLSID\{B39830FC-79B2-99BC-9282-9ED0CC38F9CD} => eliminado correctamente
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ MEGA (Pending) => invalid subkey removed.
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ MEGA (Synced) => invalid subkey removed.
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ MEGA (Syncing) => invalid subkey removed.
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ MEGA (Synced) => invalid subkey removed.
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ MEGA (Syncing) => invalid subkey removed.
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\IObitUnstaler => eliminado correctamente
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\MEGA (Context menu) => eliminado correctamente
HKLM\Software\Classes\Directory\ShellEx\ContextMenuHandlers\IObitUnstaler => eliminado correctamente
HKLM\Software\Classes\Directory\ShellEx\ContextMenuHandlers\MEGA (Context menu) => eliminado correctamente
HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers\IObitUnstaler => eliminado correctamente
C:\Users\Soulless\Desktop\GIOVANNI ESCRITORIO\paravirus.BAT - Acceso directo.lnk => movido correctamente
"C:\Users\Soulless\Desktop\paravirus.BAT" => no encontrado
HKU\S-1-5-21-4104487672-3836452688-4083331385-1001\Software\Classes\regfile => eliminado correctamente
HKU\S-1-5-21-4104487672-3836452688-4083331385-1001\Software\Classes\AutoCADScriptFile => eliminado correctamente
HKU\S-1-5-21-4104487672-3836452688-4083331385-1001\Software\Classes\.scr => eliminado correctamente
========= ipconfig /flushdns =========
Configuraci¢n IP de Windows
No se puede vaciar la cach‚ de resoluci¢n de DNS: Error de una funci¢n durante la ejecuci¢n.
========= Final de CMD: =========
========= ipconfig /renew =========
Configuraci¢n IP de Windows
========= Final de CMD: =========
========= bitsadmin /reset /allusers =========
BITSADMIN version 3.0 [ 7.7.9600 ]
BITS administration utility.
(C) Copyright 2000-2006 Microsoft Corp.
BITSAdmin is deprecated and is not guaranteed to be available in future versions of Windows.
Administrative tools for the BITS service are now provided by BITS PowerShell cmdlets.
Unable to connect to BITS - 0x8007042c
========= Final de CMD: =========
========= netsh winsock reset =========
El cat logo Winsock se restableci¢ correctamente.
Debe reiniciar el equipo para completar el restablecimiento.
========= Final de CMD: =========
========= netsh advfirewall reset =========
Error al intentar ponerse en contacto con el servicio Firewall de Windows. Aseg£rese de que el servicio se est ejecutando e intente la solicitud de nuevo.
========= Final de CMD: =========
========= netsh advfirewall set allprofiles state ON =========
Error al intentar ponerse en contacto con el servicio Firewall de Windows. Aseg£rese de que el servicio se est ejecutando e intente la solicitud de nuevo.
========= Final de CMD: =========
========= netsh int ipv4 reset =========
No hay valores configurados por el usuario para restablecer.
========= Final de CMD: =========
========= netsh int ipv6 reset =========
No hay valores configurados por el usuario para restablecer.
========= Final de CMD: =========
========= RemoveProxy: =========
HKLM\SYSTEM\CurrentControlSet\Services\iphlpsvc\Parameters\ProxyMgr\{2513CA36-71E0-44B5-ABA8-881FE82532E5} => eliminado correctamente
"HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings" => eliminado correctamente
"HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings" => eliminado correctamente
"HKU\S-1-5-21-4104487672-3836452688-4083331385-1001\Software\Microsoft\Windows\CurrentVersion\Internet Settings\\ProxyServer" => eliminado correctamente
"HKU\S-1-5-21-4104487672-3836452688-4083331385-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings" => eliminado correctamente
"HKU\S-1-5-21-4104487672-3836452688-4083331385-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings" => eliminado correctamente
========= Final de RemoveProxy: =========
C:\Windows\System32\Drivers\etc\hosts => movido correctamente
Hosts restaurado correctamente.
=========== EmptyTemp: ==========
BITS transfer queue => 8388608 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 39254739 B
Java, Flash, Steam htmlcache => 1283 B
Windows/system/drivers => 167905 B
Edge => 0 B
Chrome => 357203549 B
Firefox => 30810181 B
Opera => 0 B
Temp, IE cache, history, cookies, recent:
Default => 0 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 21924 B
systemprofile32 => 22484 B
LocalService => 33224 B
NetworkService => 33224 B
Soulless => 171336473 B
RecycleBin => 12048 B
EmptyTemp: => 579.2 MB datos temporales eliminados.
================================
El sistema necesita reiniciarse.
==== Final de Fixlog 02:31:46 ====
Comentar que ahora cada vez que inicio si se me abre una carpeta sin nada del siguiente acceso C:\ProgramData\Microsoft\Windows\Start Menu\Programs\StartUp\AutorunsDisabled
Espero vuestra ayuda
Gracias por responder @SanMar envio reporte
FRST Primera parte
Resultado del análisis realizado por Farbar Recovery Scan Tool (FRST) (x64) Versión: 26-08-2020
Ejecutado por CerealKiller (administrador) sobre MOBIL-COMMAND (Hewlett-Packard HP Pavilion 14 Notebook PC) (27-08-2020 22:36:46)
Ejecutado desde C:\Users\Soulless\Desktop
Perfiles cargados: CerealKiller
Platform: Windows 8.1 Pro (Update) (X64) Idioma: Español (España, internacional)
Navegador predeterminado: Chrome
Modo de Inicio: Normal
Tutorial para Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Procesos (Lista blanca) =================
(Si una entrada es incluida en el fixlist, el proceso será cerrado. El archivo no será movido.)
(Adobe Inc. -> Adobe Inc) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\IPCBox\AdobeIPCBroker.exe
(Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe
(Advanced Micro Devices Inc.) [Archivo no firmado] [El archivo está en uso] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(Alps Electric Co., LTD. -> Alps Electric Co., Ltd.) C:\Program Files\Apoint2K\ApMsgFwd.exe
(Alps Electric Co., LTD. -> Alps Electric Co., Ltd.) C:\Program Files\Apoint2K\ApntEx.exe
(Alps Electric Co., LTD. -> Alps Electric Co., Ltd.) C:\Program Files\Apoint2K\Apoint.exe
(Alps Electric Co., LTD. -> Alps Electric Co., Ltd.) C:\Program Files\Apoint2K\hidfind.exe
(Alps Electric Co., LTD. -> Alps Electric Co., Ltd.) C:\Program Files\Apoint2K\HidMonitorSvc.exe
(Andrea Electronics -> Andrea Electronics Corporation) C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(ArcSoft, Inc. -> ArcSoft, Inc.) C:\Program Files (x86)\Common Files\ArcSoft\esinter\Bin\eservutil.exe
(ATI Technologies Inc.) [Archivo no firmado] [El archivo está en uso] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Avid Technology, Inc.) [Archivo no firmado] C:\Program Files\Avid\Pro Tools\MMERefresh.exe
(DIgSILENT GmbH -> DIgSILENT GmbH) C:\Program Files (x86)\DIgSILENT\License Server\diglise.exe
(Hewlett-Packard Company -> Hewlett-Packard Company) C:\Windows\System32\hpservice.exe
(Hewlett-Packard Company -> Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP System Event\HPWMISVC.exe
(Huawei Technologies Co., Ltd. -> ) C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe
(Intel Corporation - Intel® Management Engine Firmware -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation - Intel® Management Engine Firmware -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation - Intel® Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation - Intel® Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxTray.exe
(Intel Corporation - Software and Firmware Products -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel(R) Corporation) [Archivo no firmado] C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.3.9600.19750_none_fa39f32f9b2d0928\TiWorker.exe
(Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows\System32\atieclxx.exe
(Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows\System32\atiesrxx.exe
(Node.js Foundation -> Node.js) C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\libs\node.exe
(Open Source Developer, Stefan Kueng -> hxxp://tortoisesvn.net) C:\Program Files\TortoiseSVN\bin\TSVNCache.exe
(Razer Inc.) [Archivo no firmado] C:\Program Files (x86)\Razer\RzWizard\RzWizardService.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RTKAUDIOSERVICE64.EXE
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(TEFINCOM S.A. -> TEFINCOM S.A.) C:\Program Files\NordVPN\nordvpn-service.exe
==================== Registro (Lista blanca) ===================
(Si una entrada es incluida en el fixlist, el elemento del registro será restaurado a su valor predeterminado o será eliminado. El archivo no será movido.)
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [287592 2013-08-22] (Intel Corporation - Intel® Rapid Storage Technology -> Intel Corporation)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [7194840 2013-07-26] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [Apoint] => C:\Program Files\Apoint2K\Apoint.exe [704344 2015-02-04] (Alps Electric Co., LTD. -> Alps Electric Co., Ltd.)
HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [2849872 2019-07-04] (Adobe Inc. -> Adobe Systems, Incorporated)
HKLM\...\Run: [DigidesignMMERefresh] => C:\Program Files\Avid\Pro Tools\MMERefresh.exe [117760 2019-07-10] (Avid Technology, Inc.) [Archivo no firmado]
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [646160 2019-12-11] (Oracle America, Inc. -> Oracle Corporation)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [766208 2013-11-05] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [Wondershare Helper Compact.exe] => C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe [2133728 2017-09-12] (Wondershare Technology Co.,Ltd -> Wondershare)
HKU\S-1-5-21-4104487672-3836452688-4083331385-1001\...\Run: [Rainlendar2] => C:\Program Files\Rainlendar2\Rainlendar2.exe [4407392 2014-01-01] (Rainy -> )
HKU\S-1-5-21-4104487672-3836452688-4083331385-1001\...\Run: [DAEMON Tools Lite] => C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3696912 2014-03-04] (Disc Soft Ltd -> Disc Soft Ltd)
HKU\S-1-5-21-4104487672-3836452688-4083331385-1001\...\Run: [Google Update] => C:\Users\Soulless\AppData\Local\Google\Update\1.3.35.452\GoogleUpdateCore.exe [217544 2020-03-20] (Google LLC -> Google LLC)
HKU\S-1-5-21-4104487672-3836452688-4083331385-1001\...\Run: [Dropbox Update] => C:\Users\Soulless\AppData\Local\Dropbox\Update\DropboxUpdate.exe [143144 2016-03-31] (Dropbox, Inc -> Dropbox, Inc.)
HKU\S-1-5-21-4104487672-3836452688-4083331385-1001\...\Run: [CCXProcess] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe [144008 2019-11-26] (Adobe Inc. -> Adobe Systems Incorporated)
HKU\S-1-5-21-4104487672-3836452688-4083331385-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [29271224 2020-08-05] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-4104487672-3836452688-4083331385-1001\...\MountPoints2: {d99648dc-d640-11ea-849b-a45d36663e99} - "F:\HiSuiteDownLoader.exe"
HKLM\...\Print\Monitors\Adobe PDF Port Monitor: C:\Windows\system32\AdobePDF.dll [55432 2012-09-23] (Adobe Systems, Incorporated -> Adobe Systems Inc)
HKLM\...\Print\Monitors\Brother QL-700 Monitor: C:\Windows\system32\BSQ70L.DLL [68608 2011-10-13] (Microsoft Windows Hardware Compatibility Publisher -> Brother Industries, Ltd.)
HKLM\...\Print\Monitors\HP E111 Status Monitor: C:\Windows\system32\hpinkstsE111LM.dll [393352 2017-04-14] (Hewlett Packard -> HP Inc.)
HKLM\Software\...\Authentication\Credential Providers: [{FA076B7A-C331-48e2-9EE9-7683A553739E}] -> C:\Program Files (x86)\CyberLink\YouCam6\CLCredProv\x64\CLCredProv.dll [2013-11-26] (CyberLink Corp. -> CyberLink)
HKLM\Software\...\Authentication\Credential Provider Filters: [{FA076B7A-C331-48e2-9EE9-7683A553739E}] -> C:\Program Files (x86)\CyberLink\YouCam6\CLCredProv\x64\CLCredProv.dll [2013-11-26] (CyberLink Corp. -> CyberLink)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\AutorunsDisabled [2020-08-27] ()
==================== Tareas programadas (Lista blanca) ============
(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)
Task: {084B88E0-D55D-442D-BD85-F5C9F2E8B20E} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-4104487672-3836452688-4083331385-1001Core1cf901333ef0b8 => C:\Users\Soulless\AppData\Local\Google\Update\GoogleUpdate.exe [144200 2015-08-31] (Google Inc -> Google Inc.)
Task: {2C301BC6-6770-40ED-B89B-7ED5B7D434EB} - System32\Tasks\GoogleUpdateTaskMachineCore1d06b631ab58ead => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848 2015-03-31] (Google Inc -> Google Inc.)
Task: {3BB553CE-8CCA-4FC7-94DA-2520D9CF0A57} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848 2015-03-31] (Google Inc -> Google Inc.)
Task: {3C02081F-7F56-4A37-8D30-BCEB2F18545A} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [24770744 2020-08-05] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {48BFE961-F612-480B-BD4B-D39C87F1D5BC} - System32\Tasks\GoogleUpdateTaskMachineCore1d06b65c56b11ee => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848 2015-03-31] (Google Inc -> Google Inc.)
Task: {4EEFD495-4C93-4B22-8DA8-BB27ED4C91F2} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe [1626328 2014-01-23] (Microsoft Corporation -> Microsoft Corporation)
Task: {5B733397-BA60-4672-B754-F33F5088D4F2} - System32\Tasks\Mozilla\Firefox Default Browser Agent E7CF176E110C211B => C:\Program Files (x86)\Mozilla Firefox\default-browser-agent.exe [123600 2020-08-01] (Mozilla Corporation -> Mozilla Foundation)
Task: {7295D20C-C4FF-441F-B337-DDA9B7A859B8} - System32\Tasks\GoogleUpdateTaskMachineUA1cf6af6f5dede36 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848 2015-03-31] (Google Inc -> Google Inc.)
Task: {7AAE9541-1A3B-49F8-98AD-C8840896FEC9} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_414_Plugin.exe [1475640 2020-08-11] (Adobe Inc. -> Adobe)
Task: {894FAC89-FA9B-46EB-9DBB-A518633840B4} - System32\Tasks\AutoPico Daily Restart => C:\Program Files\KMSpico\AutoPico.exe
Task: {985EE807-A885-4AF6-8233-AE4E9B7DEE24} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [376496 2014-01-23] (Microsoft Corporation -> Microsoft Corporation)
Task: {9DF34D8F-13AE-40E0-99B0-595FE5FF1645} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848 2015-03-31] (Google Inc -> Google Inc.)
Task: {AD008B47-CD16-4811-B956-6E6A807BD2F2} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-4104487672-3836452688-4083331385-1001Core1d0440ddf45339a => C:\Users\Soulless\AppData\Local\Google\Update\GoogleUpdate.exe [144200 2015-08-31] (Google Inc -> Google Inc.)
Task: {AD3513B2-48CB-49F4-8EF9-90B50912333F} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-4104487672-3836452688-4083331385-1001Core1cf6d6ef0b049d1 => C:\Users\Soulless\AppData\Local\Google\Update\GoogleUpdate.exe [144200 2015-08-31] (Google Inc -> Google Inc.)
Task: {B35DABE0-B45F-4934-A9C6-813BF0FC624A} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-4104487672-3836452688-4083331385-1001UA1cf901359a6285 => C:\Users\Soulless\AppData\Local\Google\Update\GoogleUpdate.exe [144200 2015-08-31] (Google Inc -> Google Inc.)
Task: {BC8341B2-ED64-4D9B-BA36-3B9214B09E9D} - System32\Tasks\MATLAB R2013b Startup Accelerator => C:\Program Files\MATLAB\R2013b\bin\win64\MATLABStartupAccelerator.exe [42496 2013-08-05] () [Archivo no firmado]
Task: {BE57CE12-98AB-48C2-9F1D-C7CBD82C11AD} - System32\Tasks\GoogleUpdateTaskMachineCore1d0408ad526541a => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848 2015-03-31] (Google Inc -> Google Inc.)
Task: {C3038F21-39F4-4E0E-8A02-2BDBA476FC1A} - System32\Tasks\HPCustParticipation HP DeskJet 2130 series => C:\Program Files\HP\HP DeskJet 2130 series\Bin\HPCustPartic.exe [6438536 2017-04-18] (Hewlett Packard -> HP Inc.)
Task: {C36F8A22-9D11-4B3A-9044-D28518DC2FFA} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [686384 2020-08-05] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {C8F1F90E-76BD-4430-BED0-0FEB2BCF65CD} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-08-11] (Adobe Inc. -> Adobe)
Task: {C94A6D1F-C333-48FF-9CBE-D76E955B1D54} - System32\Tasks\DropboxUpdateTaskUserS-1-5-21-4104487672-3836452688-4083331385-1001UA => C:\Users\Soulless\AppData\Local\Dropbox\Update\DropboxUpdate.exe [143144 2016-03-31] (Dropbox, Inc -> Dropbox, Inc.)
Task: {D3E7B110-56F7-45DF-BE79-1D57F5C4934C} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [376496 2014-01-23] (Microsoft Corporation -> Microsoft Corporation)
Task: {E372FBE3-070B-421D-916B-67AA61735E94} - System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task => {3519154C-227E-47F3-9CC9-12C3F05817F1}
Task: {E905D764-E416-4579-9D4C-BBC3DE4843F1} - System32\Tasks\GoogleUpdateTaskMachineUA1d06b614584d9ba => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848 2015-03-31] (Google Inc -> Google Inc.)
Task: {ED8ECECC-487C-45BD-9129-E174F4CE402E} - System32\Tasks\AdobeGCInvoker-1.0-mobil-command-CerealKiller => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [2849872 2019-07-04] (Adobe Inc. -> Adobe Systems, Incorporated)
Task: {F0B3CB18-1F3E-42BE-9D8E-0EB6F1969AB1} - System32\Tasks\GoogleUpdateTaskMachineCore1d06b6adf9197c8 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848 2015-03-31] (Google Inc -> Google Inc.)
Task: {F9FA5DD4-E2EE-477C-9972-7965EC6C29A2} - System32\Tasks\DropboxUpdateTaskUserS-1-5-21-4104487672-3836452688-4083331385-1001Core => C:\Users\Soulless\AppData\Local\Dropbox\Update\DropboxUpdate.exe [143144 2016-03-31] (Dropbox, Inc -> Dropbox, Inc.)
(Si una entrada es incluida en el fixlist, el archivo de tarea (.job) será movido. El archivo que está siendo ejecutado por la tarea no será movido.)
Task: C:\Windows\Tasks\DropboxUpdateTaskUserS-1-5-21-4104487672-3836452688-4083331385-1001Core.job => C:\Users\Soulless\AppData\Local\Dropbox\Update\DropboxUpdate.exe
Task: C:\Windows\Tasks\DropboxUpdateTaskUserS-1-5-21-4104487672-3836452688-4083331385-1001UA.job => C:\Users\Soulless\AppData\Local\Dropbox\Update\DropboxUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-4104487672-3836452688-4083331385-1001Core1cf901333ef0b8.job => C:\Users\Soulless\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\MATLAB R2013b Startup Accelerator.job => C:\Program Files\MATLAB\R2013b\bin\win64\MATLABStartupAccelerator.exe
==================== Internet (Lista blanca) ====================
(Si un elemento es incluido en el fixlist, y éste pertenece al registro, será eliminado o restaurado a su valor predeterminado.)
Winsock: Catalog5 08 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [121704 2011-08-30] (Apple Inc. -> Apple Inc.)
Winsock: Catalog5-x64 08 C:\Program Files\Bonjour\mdnsNSP.dll [132968 2011-08-30] (Apple Inc. -> Apple Inc.)
Tcpip\Parameters: [DhcpNameServer] 200.28.0.129 200.28.4.129
Tcpip\..\Interfaces\{2C23DDEF-9B8D-49EE-A176-E40C60703949}: [NameServer] 8.8.8.8,4.4.8.8
Tcpip\..\Interfaces\{2C23DDEF-9B8D-49EE-A176-E40C60703949}: [DhcpNameServer] 200.28.0.129 200.28.4.129
Tcpip\..\Interfaces\{DE84F81E-D143-407C-9B26-D6C2E8AFCD31}: [DhcpNameServer] 190.96.9.250 190.153.164.250
Internet Explorer:
==================
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\Office15\OCHelper.dll [2020-04-15] (Microsoft Corporation -> Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_241\bin\ssv.dll [2020-01-17] (Oracle America, Inc. -> Oracle Corporation)
BHO: Adobe Acrobat Create PDF Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\x64\AcroIEFavClient.dll [2013-12-20] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL [2018-05-15] (Microsoft Corporation -> Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_241\bin\jp2ssv.dll [2020-01-17] (Oracle America, Inc. -> Oracle Corporation)
BHO: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\x64\AcroIEFavClient.dll [2013-12-20] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
BHO: DIALux Browser Helper Object -> {F586CB96-7091-42ec-9829-F5D5CE65AFC1} -> C:\Program Files\DIAL GmbH\DIALux\Dialux.BHO_x64.dll [2014-02-25] (DIAL -> DIAL GmbH)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll [2020-04-15] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Adobe Acrobat Create PDF Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll [2013-12-21] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL [2018-05-15] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll [2013-12-21] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
BHO-x32: DIALux Browser Helper Object -> {F586CB96-7091-42ec-9829-F5D5CE65AFC1} -> C:\Program Files\DIAL GmbH\DIALux\Dialux.BHO_x86.dll [2014-02-25] (DIAL -> DIAL GmbH)
Toolbar: HKLM - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\x64\AcroIEFavClient.dll [2013-12-20] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
Toolbar: HKLM-x32 - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll [2013-12-21] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL [2017-08-15] (Microsoft Corporation -> Microsoft Corporation)
Edge:
======
Edge Profile: C:\Users\Soulless\AppData\Local\Microsoft\Edge\User Data\Default [2020-08-25]
FireFox:
========
FF DefaultProfile: juz3e56w.default-1539741098604
FF ProfilePath: C:\Users\Soulless\AppData\Roaming\Mozilla\Firefox\Profiles\juz3e56w.default-1539741098604 [2020-08-27]
FF Extension: (Hotspot Shield Free VPN Proxy - Unlimited VPN) - C:\Users\Soulless\AppData\Roaming\Mozilla\Firefox\Profiles\juz3e56w.default-1539741098604\Extensions\[email protected] [2020-08-16]
FF Extension: (Hola Free VPN Proxy Unblocker) - C:\Users\Soulless\AppData\Roaming\Mozilla\Firefox\Profiles\juz3e56w.default-1539741098604\Extensions\[email protected] [2020-08-01]
FF HKLM-x32\...\Firefox\Extensions: [[email protected]] - C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCFirefoxExtn
FF Extension: (Adobe Acrobat - Create PDF) - C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCFirefoxExtn [2014-03-15] [Heredado] [no firmado]
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_32_0_0_414.dll [2020-08-11] (Adobe Inc. -> )
FF Plugin: @java.com/DTPlugin,version=11.241.2 -> C:\Program Files\Java\jre1.8.0_241\bin\dtplugin\npDeployJava1.dll [2020-01-17] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.241.2 -> C:\Program Files\Java\jre1.8.0_241\bin\plugin2\npjp2.dll [2020-01-17] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~1\Office15\NPSPWRAP.DLL [2014-01-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_414.dll [2020-08-11] (Adobe Inc. -> )
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-08-09] (Intel® Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-08-09] (Intel® Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2017-09-12] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office15\NPSPWRAP.DLL [2014-01-22] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @videolan.org/vlc,version=2.2.8 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2020-04-23] (VideoLAN -> VideoLAN)
FF Plugin-x32: Adobe Acrobat -> C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Air\nppdf32.dll [2013-12-21] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
FF ExtraCheck: C:\Program Files (x86)\mozilla firefox\defaults\pref\eset_security_config_overlay.js [2020-08-25]
Chrome:
=======
CHR DefaultProfile: Profile 9
CHR Profile: C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Default [2020-08-27]
CHR Extension: (Presentaciones) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2020-07-31]
CHR Extension: (Documentos) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2020-07-31]
CHR Extension: (Google Drive) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-11-27]
CHR Extension: (YouTube) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-11-27]
CHR Extension: (Adobe Acrobat) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2020-07-31]
CHR Extension: (Hojas de cálculo) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2020-07-31]
CHR Extension: (Documentos de Google sin conexión) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-11-27]
CHR Extension: (Sistema de pagos de Chrome Web Store) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2020-07-31]
CHR Extension: (Gmail) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-07-31]
CHR Extension: (Chrome Media Router) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-07-31]
CHR Profile: C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Guest Profile [2020-08-27]
CHR Profile: C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 10 [2020-08-27]
CHR Extension: (Presentaciones de Google) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 10\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-02-03]
CHR Extension: (Google Docs) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 10\Extensions\aohghmighlieiainnegkcijnfilokake [2017-02-03]
CHR Extension: (Google Drive) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 10\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-02-03]
CHR Extension: (YouTube) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 10\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-02-03]
CHR Extension: (Adobe Acrobat) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 10\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2017-02-03]
CHR Extension: (Hojas de cálculo de Google) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 10\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-02-03]
CHR Extension: (Documentos de Google sin conexión) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 10\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2017-02-03]
CHR Extension: (Sistema de pagos de Chrome Web Store) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 10\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-02-03]
CHR Extension: (Gmail) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 10\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2017-02-03]
CHR Extension: (Chrome Media Router) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 10\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-02-27]
CHR Profile: C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 11 [2020-08-27]
CHR Extension: (Presentaciones de Google) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 11\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-02-04]
CHR Extension: (Google Docs) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 11\Extensions\aohghmighlieiainnegkcijnfilokake [2017-02-04]
CHR Extension: (Google Drive) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 11\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-02-04]
CHR Extension: (TV) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 11\Extensions\beobeededemalmllhkmnkinmfembdimh [2017-02-04]
CHR Extension: (YouTube) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 11\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-02-04]
CHR Extension: (Adblock Plus) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 11\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2017-02-04]
CHR Extension: (Search by Image (by Google)) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 11\Extensions\dajedkncpodkggklbegccjpmnglmnflm [2017-02-04]
CHR Extension: (Adobe Acrobat) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 11\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2017-02-08]
CHR Extension: (Gmail sin conexión) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 11\Extensions\ejidjjhkpiempkbhmpbfngldlkglhimk [2017-02-04]
CHR Extension: (Hojas de cálculo de Google) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 11\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-02-04]
CHR Extension: (Documentos de Google sin conexión) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 11\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2017-02-08]
CHR Extension: (IE Tab) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 11\Extensions\hehijbfgiekmjfkfjpbkbammjbdenadd [2017-02-04]
CHR Extension: (soychile.cl - Noticias de todo nuestro país) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 11\Extensions\kfmkbbiclelmdohlohkbiafbelpnnlda [2017-02-04]
CHR Extension: (khipu) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 11\Extensions\kmmojbkhfhninkelnlcnliacgncnnikf [2017-02-04]
CHR Extension: (Indicadores Economicos Chile) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 11\Extensions\mbclgcdiaebkaffpodlbjgfpanokejde [2017-02-04]
CHR Extension: (Sistema de pagos de Chrome Web Store) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 11\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-02-04]
CHR Extension: (Checker Plus for Gmail™) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 11\Extensions\oeopbcgkkoapgobdbedcemjljbihmemj [2017-02-04]
CHR Extension: (Send from Gmail (by Google)) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 11\Extensions\pgphcomnlaojlmmcjmiddhdapjpbgeoc [2017-02-04]
CHR Extension: (MonkiBu TV y Radios Online) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 11\Extensions\phimhnckkaofkllcoledjilakgbeohli [2017-02-04]
CHR Extension: (Gmail) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 11\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2017-02-04]
CHR Extension: (Chrome Media Router) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 11\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-02-08]
CHR Profile: C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 12 [2020-08-27]
CHR Extension: (Presentaciones de Google) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 12\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-02-21]
CHR Extension: (Google Docs) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 12\Extensions\aohghmighlieiainnegkcijnfilokake [2017-02-21]
CHR Extension: (Google Drive) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 12\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-02-21]
CHR Extension: (YouTube) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 12\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-02-21]
CHR Extension: (Adobe Acrobat - Crear archivos PDF) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 12\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2017-02-21]
CHR Extension: (Hojas de cálculo de Google) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 12\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-02-21]
CHR Extension: (Documentos de Google sin conexión) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 12\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2017-02-21]
CHR Extension: (Sistema de pagos de Chrome Web Store) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 12\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-02-21]
CHR Extension: (Gmail) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 12\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2017-02-21]
CHR Extension: (Chrome Media Router) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 12\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-02-21]
CHR Profile: C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 2 [2020-08-27]
CHR HomePage: Profile 2 -> hxxps://www.google.com/
CHR StartupUrls: Profile 2 -> "hxxps://twitter.com/"
CHR Extension: (Magic Actions for YouTube™) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\abjcfabbhafbcdfjoecdgepllmpfceif [2016-02-11]
CHR Extension: (BIODIGITAL HUMAN) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\agoenciogemlojlhccbcpcfflicgnaak [2015-04-04]
CHR Extension: (Traductor para todos los idiomas) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\amdeidgbmcliegnpcbbkhlflkbdpomhk [2015-08-12]
CHR Extension: (Google Docs) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\aohghmighlieiainnegkcijnfilokake [2015-03-31]
CHR Extension: (Google Drive) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-23]
CHR Extension: (YouTube) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-25]
CHR Extension: (Adblock Plus) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2016-03-08]
CHR Extension: (Adblock de Youtube™) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\cmedhionkhpnakcndndgjdbohmhepckk [2016-03-05]
CHR Extension: (Búsqueda de Google) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-26]
CHR Extension: (Calculator) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\copciehbkikbfnppdndaegnlgkelahfe [2015-03-31]
CHR Extension: (Radios de Chile) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\dhjjhipdhiaimncddilbbpcmnickiakg [2015-03-31]
CHR Extension: (Session Buddy) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\edacconmaakjimmfgnblocblbcdcpbko [2015-03-31]
CHR Extension: (Adobe Acrobat) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2015-11-11]
CHR Extension: (VTchromizer) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\efbjojhplkelaegfbieplglfidafgoka [2015-03-31]
CHR Extension: (Google Calendar) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ejjicmeblgpmajnghnpcppodonldlgfn [2015-10-13]
CHR Extension: (Booking.com for Chrome™) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\fgkeilefmpmbamgcejhjpiecahcbipip [2015-09-21]
CHR Extension: (Documentos de Google sin conexión) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2015-11-19]
CHR Extension: (Google Calendar (por Google)) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\gmbgaklkmjakoegficnlkhebmhkjfich [2016-02-02]
CHR Extension: (Avast Online Security) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\gomekmidlodglbbmalcneegieacbdmki [2016-02-12]
CHR Extension: (Looper for YouTube) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\iggpfpnahkgpnindfkdncknoldgnccdg [2016-02-26]
CHR Extension: (Excel Online) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\iljnkagajgfdmfnnidjijobijlfjfgnb [2015-04-04]
CHR Extension: (World Time Buddy) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\jdhpjomiingppeefgnohkiapmnaeakoj [2015-04-29]
CHR Extension: (khipu) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\kmmojbkhfhninkelnlcnliacgncnnikf [2016-02-08]
CHR Extension: (Sistema de pagos de Chrome Web Store) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-07-29]
CHR Extension: (TabCloud) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\npecfdijgoblfcgagoijgmgejmcpnhof [2015-07-22]
CHR Extension: (Checker Plus for Gmail™) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\oeopbcgkkoapgobdbedcemjljbihmemj [2016-02-18]
CHR Extension: (MonkiBu TV y Radios Online) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\phimhnckkaofkllcoledjilakgbeohli [2016-02-13]
CHR Extension: (Gmail) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-03-31]
CHR Profile: C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 3 [2020-08-27]
CHR HomePage: Profile 3 -> hxxps://www.google.com/
CHR StartupUrls: Profile 3 -> "hxxps://twitter.com/"
CHR Extension: (Magic Actions for YouTube™) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\abjcfabbhafbcdfjoecdgepllmpfceif [2016-08-16]
CHR Extension: (BIODIGITAL HUMAN) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\agoenciogemlojlhccbcpcfflicgnaak [2016-03-11]
CHR Extension: (Traductor para todos los idiomas) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\amdeidgbmcliegnpcbbkhlflkbdpomhk [2016-03-11]
CHR Extension: (Google Docs) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\aohghmighlieiainnegkcijnfilokake [2016-03-11]
CHR Extension: (Google Drive) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-03-11]
CHR Extension: (YouTube) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-03-11]
CHR Extension: (Adblock Plus) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2016-08-23]
CHR Extension: (Adblock de Youtube™) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\cmedhionkhpnakcndndgjdbohmhepckk [2016-03-11]
CHR Extension: (Búsqueda de Google) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2016-03-11]
CHR Extension: (Radios de Chile) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\dhjjhipdhiaimncddilbbpcmnickiakg [2016-03-11]
CHR Extension: (Session Buddy) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\edacconmaakjimmfgnblocblbcdcpbko [2016-04-27]
CHR Extension: (Adobe Acrobat) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2016-03-11]
CHR Extension: (VTchromizer) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\efbjojhplkelaegfbieplglfidafgoka [2016-03-11]
CHR Extension: (Google Calendar) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\ejjicmeblgpmajnghnpcppodonldlgfn [2016-03-11]
CHR Extension: (Booking.com for Chrome™) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\fgkeilefmpmbamgcejhjpiecahcbipip [2016-03-11]
CHR Extension: (Documentos de Google sin conexión) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-03-14]
CHR Extension: (Google Calendar (por Google)) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\gmbgaklkmjakoegficnlkhebmhkjfich [2016-08-26]
CHR Extension: (Avast Online Security) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\gomekmidlodglbbmalcneegieacbdmki [2016-05-20]
CHR Extension: (Looper for YouTube) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\iggpfpnahkgpnindfkdncknoldgnccdg [2016-07-16]
CHR Extension: (Excel Online) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\iljnkagajgfdmfnnidjijobijlfjfgnb [2016-03-11]
CHR Extension: (World Time Buddy) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\jdhpjomiingppeefgnohkiapmnaeakoj [2016-03-11]
CHR Extension: (khipu) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\kmmojbkhfhninkelnlcnliacgncnnikf [2016-03-11]
CHR Extension: (Sistema de pagos de Chrome Web Store) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-04-05]
CHR Extension: (TabCloud) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\npecfdijgoblfcgagoijgmgejmcpnhof [2016-03-11]
CHR Extension: (Checker Plus for Gmail™) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\oeopbcgkkoapgobdbedcemjljbihmemj [2016-08-27]
CHR Extension: (MonkiBu TV y Radios Online) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\phimhnckkaofkllcoledjilakgbeohli [2016-07-02]
CHR Extension: (Gmail) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-03-11]
CHR Extension: (Chrome Media Router) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-08-18]
CHR Profile: C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 6 [2020-08-27]
CHR Profile: C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 7 [2020-08-27]
CHR Extension: (Traductor de Google) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 7\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2016-11-21]
CHR Extension: (Google Docs) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 7\Extensions\aohghmighlieiainnegkcijnfilokake [2016-09-11]
CHR Extension: (Adblock Plus) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 7\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2016-10-26]
CHR Extension: (Adobe Acrobat) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 7\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2017-01-16]
CHR Extension: (Sistema de pagos de Chrome Web Store) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 7\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-01-19]
CHR Extension: (Chrome Media Router) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 7\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-12-16]
CHR Profile: C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 8 [2020-08-27]
CHR HomePage: Profile 8 -> hxxps://www.google.com/
CHR StartupUrls: Profile 8 -> "hxxps://twitter.com/"
CHR Extension: (Presentaciones de Google) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 8\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-01-22]
CHR Extension: (Magic Actions for YouTube™) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 8\Extensions\abjcfabbhafbcdfjoecdgepllmpfceif [2017-01-22]
CHR Extension: (BIODIGITAL HUMAN) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 8\Extensions\agoenciogemlojlhccbcpcfflicgnaak [2017-01-22]
CHR Extension: (Traductor para todos los idiomas) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 8\Extensions\amdeidgbmcliegnpcbbkhlflkbdpomhk [2017-01-22]
CHR Extension: (Google Docs) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 8\Extensions\aohghmighlieiainnegkcijnfilokake [2017-01-22]
CHR Extension: (Google Drive) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 8\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-01-22]
CHR Extension: (YouTube) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 8\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-01-22]
CHR Extension: (Adblock Plus) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 8\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2017-01-22]
CHR Extension: (Adblock de Youtube™) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 8\Extensions\cmedhionkhpnakcndndgjdbohmhepckk [2017-01-22]
CHR Extension: (Radios de Chile) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 8\Extensions\dhjjhipdhiaimncddilbbpcmnickiakg [2017-01-22]
CHR Extension: (Session Buddy) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 8\Extensions\edacconmaakjimmfgnblocblbcdcpbko [2017-01-22]
CHR Extension: (Adobe Acrobat) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 8\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2017-01-22]
CHR Extension: (VTchromizer) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 8\Extensions\efbjojhplkelaegfbieplglfidafgoka [2017-01-22]
CHR Extension: (Google Calendar) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 8\Extensions\ejjicmeblgpmajnghnpcppodonldlgfn [2017-01-22]
CHR Extension: (Hojas de cálculo de Google) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 8\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-01-22]
CHR Extension: (Booking.com for Chrome™) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 8\Extensions\fgkeilefmpmbamgcejhjpiecahcbipip [2017-01-22]
CHR Extension: (Documentos de Google sin conexión) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 8\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2017-01-22]
CHR Extension: (Google Calendar (por Google)) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 8\Extensions\gmbgaklkmjakoegficnlkhebmhkjfich [2017-01-22]
CHR Extension: (Avast Online Security) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 8\Extensions\gomekmidlodglbbmalcneegieacbdmki [2017-01-22]
CHR Extension: (Looper for YouTube) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 8\Extensions\iggpfpnahkgpnindfkdncknoldgnccdg [2017-01-22]
CHR Extension: (Excel Online) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 8\Extensions\iljnkagajgfdmfnnidjijobijlfjfgnb [2017-01-22]
CHR Extension: (World Time Buddy) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 8\Extensions\jdhpjomiingppeefgnohkiapmnaeakoj [2017-01-22]
CHR Extension: (Knasta) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 8\Extensions\jmldaomlnfihbdoghdbikbbignjlkbml [2017-01-22]
CHR Extension: (khipu) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 8\Extensions\kmmojbkhfhninkelnlcnliacgncnnikf [2017-01-22]
CHR Extension: (Sistema de pagos de Chrome Web Store) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 8\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-01-22]
CHR Extension: (TabCloud) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 8\Extensions\npecfdijgoblfcgagoijgmgejmcpnhof [2017-01-22]
CHR Extension: (Checker Plus for Gmail™) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 8\Extensions\oeopbcgkkoapgobdbedcemjljbihmemj [2017-01-25]
CHR Extension: (MonkiBu TV y Radios Online) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 8\Extensions\phimhnckkaofkllcoledjilakgbeohli [2017-01-22]
CHR Extension: (Gmail) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 8\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2017-01-22]
CHR Extension: (Chrome Media Router) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 8\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-01-22]
CHR Profile: C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 9 [2020-08-27]
CHR Notifications: Profile 9 -> hxxps://meet.google.com; hxxps://www.psicologosonline.cl
CHR HomePage: Profile 9 -> hxxps://www.google.com/
CHR StartupUrls: Profile 9 -> "hxxps://twitter.com/"
CHR Extension: (Easy Auto Refresh) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 9\Extensions\aabcgdmkeabbnleenpncegpcngjpnjkc [2019-07-01]
CHR Extension: (Traductor de Google) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 9\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2020-03-18]
CHR Extension: (Magic Actions for YouTube™) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 9\Extensions\abjcfabbhafbcdfjoecdgepllmpfceif [2020-08-20]
CHR Extension: (BIODIGITAL HUMAN) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 9\Extensions\agoenciogemlojlhccbcpcfflicgnaak [2017-01-30]
CHR Extension: (Traductor para todos los idiomas) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 9\Extensions\amdeidgbmcliegnpcbbkhlflkbdpomhk [2017-08-16]
CHR Extension: (Adblock Plus - bloqueador de anuncios gratis) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 9\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2020-08-07]
CHR Extension: (Adblock para Youtube™) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 9\Extensions\cmedhionkhpnakcndndgjdbohmhepckk [2019-03-24]
CHR Extension: (Radios de Chile) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 9\Extensions\dhjjhipdhiaimncddilbbpcmnickiakg [2017-01-30]
CHR Extension: (Session Buddy) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 9\Extensions\edacconmaakjimmfgnblocblbcdcpbko [2020-05-10]
CHR Extension: (Adobe Acrobat) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 9\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2020-07-31]
CHR Extension: (VT4Browsers) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 9\Extensions\efbjojhplkelaegfbieplglfidafgoka [2020-04-17]
CHR Extension: (Google Calendar) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 9\Extensions\ejjicmeblgpmajnghnpcppodonldlgfn [2017-01-30]
CHR Extension: (Booking.com for Chrome™) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 9\Extensions\fgkeilefmpmbamgcejhjpiecahcbipip [2017-03-13]
CHR Extension: (Stylish - temas a medida para cada sitio web.) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 9\Extensions\fjnbnpbmkenffdnngjfgmeleoegfcffe [2019-01-06]
CHR Extension: (Google Calendar) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 9\Extensions\gmbgaklkmjakoegficnlkhebmhkjfich [2020-06-11]
CHR Extension: (Avast Online Security) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 9\Extensions\gomekmidlodglbbmalcneegieacbdmki [2020-06-03]
CHR Extension: (Photo Calendar 2020) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 9\Extensions\icolobglimlklcdpecoaecmdhlehbgkg [2020-01-19]
CHR Extension: (Looper for YouTube) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 9\Extensions\iggpfpnahkgpnindfkdncknoldgnccdg [2020-04-15]
CHR Extension: (Excel Online) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 9\Extensions\iljnkagajgfdmfnnidjijobijlfjfgnb [2017-01-30]
CHR Extension: (World Time Buddy) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 9\Extensions\jdhpjomiingppeefgnohkiapmnaeakoj [2017-01-30]
CHR Extension: (Video Blocker) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 9\Extensions\jknkjnpcbbgcbdbaampbjlhkcghmgfhk [2020-01-12]
CHR Extension: (Knasta) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 9\Extensions\jmldaomlnfihbdoghdbikbbignjlkbml [2020-02-27]
CHR Extension: (khipu) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 9\Extensions\kmmojbkhfhninkelnlcnliacgncnnikf [2017-01-30]
CHR Extension: (Reload All Tabs) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 9\Extensions\midkcinmplflbiflboepnahkboeonkam [2018-07-30]
CHR Extension: (Tracking de correo para Gmail - Mailtrack) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 9\Extensions\ndnaehgpjlnokgebbaldlmgkapkpjkkb [2020-08-25]
CHR Extension: (Sistema de pagos de Chrome Web Store) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 9\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-04]
CHR Extension: (TabCloud) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 9\Extensions\npecfdijgoblfcgagoijgmgejmcpnhof [2017-01-30]
CHR Extension: (Checker Plus for Gmail™) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 9\Extensions\oeopbcgkkoapgobdbedcemjljbihmemj [2020-08-16]
CHR Extension: (MonkiBu TV y Radios Online) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 9\Extensions\phimhnckkaofkllcoledjilakgbeohli [2020-04-03]
CHR Extension: (Chrome Media Router) - C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\Profile 9\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-07-21]
CHR Profile: C:\Users\Soulless\AppData\Local\Google\Chrome\User Data\System Profile [2020-08-27]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCChromeExtn\WCChromeExtn.crx [2013-12-21]
==================== Servicios (Lista blanca) ===================
(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)
"ESProtectionDriver" => servicio no pudo ser desbloqueado. <==== ATENCIÓN
HKLM\SYSTEM\ControlSet001\Services\ESProtectionDriver => C:\Windows\system32\drivers\mbae64.sys [153312 2020-08-25] (Malwarebytes Corporation -> Malwarebytes) <==== ATENCIÓN (Rootkit!/Servicio bloqueado)
"MBAMChameleon" => servicio no pudo ser desbloqueado. <==== ATENCIÓN
HKLM\SYSTEM\ControlSet001\Services\MBAMChameleon => \SystemRoot\System32\Drivers\MbamChameleon.sys <==== ATENCIÓN (Rootkit!/Servicio bloqueado)
"MBAMFarflt" => servicio no pudo ser desbloqueado. <==== ATENCIÓN
HKLM\SYSTEM\ControlSet001\Services\MBAMFarflt => system32\DRIVERS\farflt.sys <==== ATENCIÓN (Rootkit!/Servicio bloqueado)
"MBAMProtection" => servicio no pudo ser desbloqueado. <==== ATENCIÓN
HKLM\SYSTEM\ControlSet001\Services\MBAMProtection => \??\C:\Windows\system32\DRIVERS\mbam.sys <==== ATENCIÓN (Rootkit!/Servicio bloqueado)
"MBAMWebProtection" => servicio no pudo ser desbloqueado. <==== ATENCIÓN
HKLM\SYSTEM\ControlSet001\Services\MBAMWebProtection => \SystemRoot\system32\DRIVERS\mwac.sys <==== ATENCIÓN (Rootkit!/Servicio bloqueado)
R2 ADExchange; C:\Program Files (x86)\Common Files\ArcSoft\esinter\Bin\eservutil.exe [44736 2014-03-11] (ArcSoft, Inc. -> ArcSoft, Inc.)
S3 AdobeFlashPlayerUpdateSvc; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-08-11] (Adobe Inc. -> Adobe)
S4 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [3117648 2019-07-04] (Adobe Inc. -> Adobe Systems, Incorporated)
S4 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2888272 2019-07-04] (Adobe Inc. -> Adobe Systems, Incorporated)
R2 ApHidMonitorService; C:\Program Files\Apoint2K\HidMonitorSvc.exe [87384 2015-02-04] (Alps Electric Co., LTD. -> Alps Electric Co., Ltd.)
R2 DigiRefresh; C:\Program Files\Avid\Pro Tools\MMERefresh.exe [117760 2019-07-10] (Avid Technology, Inc.) [Archivo no firmado]
S3 digiSPTIService64; C:\Program Files\Avid\Pro Tools\digisptiservice64.exe [197632 2019-07-10] (Avid Technology, Inc.) [Archivo no firmado]
R2 DIgLiseService; C:\Program Files (x86)\DIgSILENT\License Server\diglise.exe [1307440 2014-10-30] (DIgSILENT GmbH -> DIgSILENT GmbH)
S3 hpqwmiex; C:\Users\Soulless\AppData\Roaming\Hewlett-Packard\hpqwmiex.exe [794112 2014-03-15] (Hewlett-Packard Company) [Archivo no firmado]
R2 HPWMISVC; C:\Program Files (x86)\Hewlett-Packard\HP System Event\HPWMISVC.exe [1039160 2013-10-08] (Hewlett-Packard Company -> Hewlett-Packard Development Company, L.P.)
R2 HuaweiHiSuiteService64.exe; C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe [192320 2020-06-28] (Huawei Technologies Co., Ltd. -> )
S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe [73728 2004-10-22] (Macrovision Corporation) [Archivo no firmado]
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [733696 2013-05-11] (Intel(R) Corporation) [Archivo no firmado]
S2 Launch TotalMedia Theatre 6 Driver; C:\Program Files (x86)\ArcSoft\TotalMedia Theatre 6\TMTLaunchDriverServer.exe [608256 2014-03-04] (ArcSoft, Inc.) [Archivo no firmado]
S2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [6970968 2020-08-25] (Malwarebytes Inc -> Malwarebytes)
R2 nordvpn-service; C:\Program Files\NordVPN\nordvpn-service.exe [269584 2020-07-10] (TEFINCOM S.A. -> TEFINCOM S.A.)
R2 RzWizardService; C:\Program Files (x86)\Razer\RzWizard\RzWizardService.exe [368128 2015-07-23] (Razer Inc.) [Archivo no firmado]
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [361824 2017-01-12] (Microsoft Corporation -> Microsoft Corporation)
S3 ekrnEpfw; "C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe" [X]
Hola @arckan
Falto otra parte de FRST y el Addition.
Si te es mas fácil, utiliza el Método 4 de la Guia
Guía : ¿Como Pegar reportes en el Foro?
Esperamos esos reporte.
Salu2.
Hola @SanMar gracias por tu dedicación, no podía seguir escribiendo ya que me aparecía el siguiente msje “You’ve reached the maximum number of replies a new user can create on their first day. Please wait 46 minutes before trying again.”
Adjunto los reportes Saludos
Addition.txt (96,8 KB) FRST.txt (101,4 KB)
Hola @arckan
Paso 1:
Activa Ver los archivos ocultos.
Sigue la ruta:
- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\AutorunsDisabled
Elimina la carpeta AutorunDisable
Reinicia.
Revisa si el error desapareció.
Paso 2:
Con mucha atención:
1.- Muy Importante >>> Realizar una copia de Seguridad de su Registro.
- Descarga/Ejecuta DelFix desde el escritorio de Windows.
- Clic Derecho, “Ejecutar como Administrador”.
- En la ventana principal, marca solamente la casilla “Create Registry Backup”.
- Clic en Run.
Al terminar se abrirá un reporte llamado DelFix.txt, guárdelo por si fuera necesario y cierre la herramienta…
Luego ve a::
2.- Inicio >>> Ejecutar >>> Escribe notepad.exe o abra un nuevo archivo Notepad y copie y pegue lo siguiente:
Start::
CloseProcesses:
HKU\S-1-5-21-4104487672-3836452688-4083331385-1001\...\MountPoints2: {d99648dc-d640-11ea-849b-a45d36663e99} - "F:\HiSuiteDownLoader.exe"
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\AutorunsDisabled [2020-08-27] ()
FF ExtraCheck: C:\Program Files (x86)\mozilla firefox\defaults\pref\eset_security_config_overlay.js [2020-08-25]
3 ekrnEpfw; "C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe" [X]
2020-08-27 01:40 - 2020-08-27 01:40 - 000902240 _____ (ESET) C:\Users\Soulless\Downloads\ESETUninstaller (1).exe
2020-08-27 01:38 - 2020-08-27 01:38 - 000902240 _____ (ESET) C:\Users\Soulless\Desktop\ESETUninstaller.exe
2020-08-26 22:06 - 2014-03-15 22:22 - 000000000 ____D C:\Users\Soulless\AppData\Local\ESET
2020-08-27 18:50 - 2020-08-27 18:50 - 000000000 _____ () C:\Users\Soulless\AppData\Local\oobelibMkey.log
ShellIconOverlayIdentifiers-x32: [ MEGA (Syncing)] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => -> Ningún archivo
ContextMenuHandlers1: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET NOD32 Antivirus\shellExt.dll -> Ningún archivo
ContextMenuHandlers2: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET NOD32 Antivirus\shellExt.dll -> Ningún archivo
ContextMenuHandlers3: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => -> Ningún archivo
ContextMenuHandlers6: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET NOD32 Antivirus\shellExt.dll -> Ningún archivo
C:\Program Files\ESET
CMD: ipconfig /flushdns
CMD: ipconfig /renew
CMD: bitsadmin /reset /allusers
CMD: netsh winsock reset
CMD: netsh advfirewall reset
CMD: netsh advfirewall set allprofiles state ON
CMD: netsh int ipv4 reset
CMD: netsh int ipv6 reset
RemoveProxy:
EmptyTemp:
Hosts:
End::
- Lo guarda bajo el nombre de fixlist.txt en el escritorio <<< Esto es muy importante.
Nota: Es necesario que el ejecutable Frst.exe/Frst64.exe y fixlist.txt se encuentren en la misma ubicación (escritorio) o si no la herramienta no trabajará.
3.- Inicie su ordenador en >>> Modo Seguro >>> Aplicable a Windows 10. o Windows 7.
- Ejecute Frst.exe o Frst64.exe. según el caso.
- Presione el botón Fix/Corregir y aguarde a que termine.
- La Herramienta guardará el reporte en su escritorio (Fixlog.txt).
- Reinicia y lo pega en su próxima respuesta.
Paso 3:
Luego de reiniciar realiza lo siguiente:
1.- Análisis del PC con Eset Online Scaner : Manual de Uso lee las instrucciones para salvar el reporte.
2.- Análisis del PC con Kasperky Virus Removal Tool: Manual de Uso
- Este no da reporte cuando te encuentres, si es que lo hace con alguna infección, tomas una imagen y la subes.
Nos comentas como sigue el problema.
Salu2
Hola @SanMar realice las acciones realizadas los antivirus se demoraros muchas horas de escaneo. copio reporte del **Fixlog.txt (7,0 KB) eset.txt (17,7 KB)
**Del Kaspersky me aparecen 3 en verde Por otra parte al entrar desde el panel d control a windows defender me continua apareciendo el mensaje “esta aplicacion esta desactivada y no supervisa actualmente al equipo”. Aunque tengo activado el malwarebytes free
Hola @arckan
Dos tienen que ver con el Activador.
Busca manualmente y elimina:
C:\Windows\ n.exe
Es normal, si tienes activado Malwarebytes o tienes la versión de Prueba o tienes activado uno pirata, que para el caso es lo mismo, Windows Defender se desactiva automáticamente cuando tienes instalada otra aplicación Antivirus.
Para eliminar las herramientas utilizadas:
Descargas/Ejecutas >> Delfix, desde tu escritorio.
- Doble clic para ejecutarlo.(Si usas Windows Vista/7 /8 /10,presiona clic derecho y selecciona >> “Ejecutar como Administrador”)
- Marca las casilla Remove disinfection tools y Purgue Sistem Restore
- Pulsar en Run.
Se abrirá el informe (DelFix.txt), guárdalo por si fuera necesario y cierra la herramienta.
Nos comentas si todo esta en orden para dar por Solucionado el tema.
Salu2.
Hola @SanMar Realice las acciones que me referiste y todo bien. Sin embargo, hoy al reiniciar el notebook volvio a ocurrir lo mismo que el inicio de este post y estoy nuevamente en la misma situación se me bloqueo el malwarebytes free que estaba ocupando. al entrar al firewall de windows me aparece código de error 0x80070422 tampoco se puede activar el windows defender cuando entro desde el centro de actividades y activar de manera manual me manda a la carpeta del system32. Anterior a esto probé sacar el malwarebytes a ver si se activaba pero seguía ocurriendo lo mismo. No se que podrá ser si antes realice las acciones con el kaspersky y el Eset que estan en la pagina y no detecto nada mayormente. Adjunto adwcleanerAdwCleaner[C00].txt (1,7 KB)
PD: Acabo de ver que volvió a aparecer en Windows el n.exe asi que lo elimine manualmente