Ransomware zqqw

Buenas noches quien me pueda ayudar, estoy en una crisis total, ayer todos mis archivos fueron modificados a una extension zqqw, segui unas instruciones y logre eliminarlo con malwarebytes, pero luego por inseguridad termine descargando esta aplicacion me tiene la pc super lenta y no logro desinstalarlo por programas y desinstalar, porque aparece una publicidad a la hora del proceso de desinstalar

tambien menciono que mis archivos aun siguen con esa extension nose que me aconsejan si formatear la pc

Hola @Yasflor99 y bienvenida al foro

Te dejo algunos temas de interés y utilidad:

Como tienes otro tema abierto con el mismo problema el otro será cerrado debido a que incumplen las reglas.

Por lo demás vamos viendo.

Para saber más sobre el ransomware que comentas, por favor ve a la siguiente página: https://id-ransomware.malwarehunterteam.com/

Sube una muestra de archivos encriptados y compartenos el link por favor.

Para spyhunter vamos viendo, realiza lo siguiente:

:white_check_mark: Revisa el siguiente manual a detalle y ejecuta FRST:

  • No olvides ejecutarlo desde el escritorio.
  • Presta especial atención a las instrucciones de como pegar el reporte.

Nos traerías los reportes de FRST: Frst.txt y Adition.txt.

Saludos

NOTAS IMPORTANTES:

° Evite realizar procedimientos fuera de este tema a partir de este punto.

° NO descargue o instale mas programas mientras terminamos la desinfección.

° No vuelva a ejecutar ningún otro programa antivirus/antimalwares ni FRST hasta que vuelva con una respuesta.

muchas gracias @ErdrickBass te voy compartiendo el link me mencionas https://id-ransomware.malwarehunterteam.com/identify.php?case=5104aa72b4a3362549090f4fb55d5b203e371f65

Este ransomware puede ser desencriptable en determinadas circunstancias.

Por favor, consulte la guía apropiada para obtener más información.

Identificado por

Ya tengo los reportes @ErdrickBass el primero es FIRST


==================== Internet (Lista blanca) ====================

(Si un elemento es incluido en el fixlist, y éste pertenece al registro, será eliminado o restaurado a su valor predeterminado.)

Winsock: Catalog5 07 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL => Ningún archivo 
Winsock: Catalog5 08 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL => Ningún archivo 
Hosts: 0.0.0.1	mssplus.mcafee.com
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{57DD12B0-5F67-459B-BD3A-7B50109603CB}: [DhcpNameServer] 10.0.0.2
Tcpip\..\Interfaces\{859E84F1-9BA5-4325-8CF8-78038544BFF1}: [DhcpNameServer] 192.168.0.1

FireFox:
========
FF DefaultProfile: 0wghop1j.default
FF ProfilePath: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\0wghop1j.default [2021-07-05]
FF Homepage: Mozilla\Firefox\Profiles\0wghop1j.default -> hxxps://securesearch.org/homepage?hp=2&pId=BT171002&iDate=2020-03-25 07:57:57&bName=
FF NewTab: Mozilla\Firefox\Profiles\0wghop1j.default -> hxxps://securesearch.org/homepage?hp=2&pId=BT171002&iDate=2020-03-25 07:57:57&bName=
FF HKLM\...\Thunderbird\Extensions: [[email protected]] - C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird => no encontrado
FF Plugin: @java.com/DTPlugin,version=10.17.2 -> C:\Windows\system32\npDeployJava1.dll [2013-04-11] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.181.2 -> C:\Program Files\Java\jre1.8.0_181\bin\plugin2\npjp2.dll [2018-07-18] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.10411.0\npctrl.dll [2012-04-11] (Microsoft Corporation ->  Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll [Ningún archivo]
FF Plugin: @update.avastbrowser.com/Avast Browser;version=3 -> C:\Program Files\AVAST Software\Browser\Update\1.8.1065.0\npAvastBrowserUpdate3.dll [2021-07-05] (Avast Software s.r.o. -> AVAST Software)
FF Plugin: @update.avastbrowser.com/Avast Browser;version=9 -> C:\Program Files\AVAST Software\Browser\Update\1.8.1065.0\npAvastBrowserUpdate3.dll [2021-07-05] (Avast Software s.r.o. -> AVAST Software)
FF Plugin: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 -> C:\Program Files\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll [Ningún archivo]
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2021-05-28] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2019-07-05] (Adobe Inc. -> Adobe Systems)
FF ExtraCheck: C:\Program Files\mozilla firefox\defaults\pref\eset_security_config_overlay.js [2020-04-16]

Chrome: 
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\User\AppData\Local\Google\Chrome\User Data\Default [2021-07-06]
CHR DownloadDir: F:\
CHR Notifications: Default -> hxxps://www.facebook.com; hxxps://www.templatemonster.com
CHR Extension: (Adobe Acrobat) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2021-03-02]
CHR Extension: (Sweets) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\fheekmgekhahpaelhpkginoipahinfnk [2018-02-05]
CHR Extension: (AdBlock: el mejor bloqueador de anuncios) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2021-06-23]
CHR Extension: (Bloqueador de anuncios para Youtube ™) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\hflefjhkfeiaignkclmphmokmmbhbhik [2018-05-24]
CHR Extension: (Malwarebytes Browser Guard) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\ihcjicgdanjaechkgeegckofjjedodee [2021-07-05]
CHR Extension: (Sistema de pagos de Chrome Web Store) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-29]
CHR Extension: (Chrome Media Router) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-06-13]
CHR Profile: C:\Users\User\AppData\Local\Google\Chrome\User Data\Guest Profile [2021-06-22]
CHR Profile: C:\Users\User\AppData\Local\Google\Chrome\User Data\System Profile [2021-06-22]
CHR HKLM\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
CHR HKLM\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee]
StartMenuInternet: Google Chrome.NMSIAMFKZCRYE22UVX6B24TGFY - C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe

Opera: 
=======
OPR Profile: C:\Users\User\AppData\Roaming\Opera Software\Opera Stable [2021-07-05]
OPR DefaultSuggestURL: Opera Stable -> hxxps://www.google.com/complete/search?client=opera&q={searchTerms}&ie={inputEncoding}&oe={outputEncoding}
OPR Extension: (Rich Hints Agent) - C:\Users\User\AppData\Roaming\Opera Software\Opera Stable\Extensions\enegjkbbakeegngfapepobipndnebkdk [2020-11-22]

==================== Servicios (Lista blanca) ===================

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)

R2 AdobeARMservice; C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [169672 2021-01-25] (Adobe Inc. -> Adobe Inc.)
S4 AdobeUpdateService; C:\Program Files\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [816184 2019-07-05] (Adobe Inc. -> Adobe Inc.)
R2 AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [176128 2011-02-28] (Microsoft Windows Hardware Compatibility Publisher -> AMD)
R2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [284672 2011-02-28] (Advanced Micro Devices, Inc.) [Archivo no firmado]
R2 AMD Reservation Manager; C:\Program Files\ATI Technologies\ATI.ACE\Reservation Manager\AMD Reservation Manager.exe [140224 2010-06-16] (Advanced Micro Devices, Inc. -> Advanced Micro Devices)
R2 Apache2.4; C:\xampp\apache\bin\httpd.exe [23040 2018-03-22] (Apache Software Foundation) [Archivo no firmado]
S3 aswbIDSAgent; C:\Program Files\Avast Software\Avast\aswidsagent.exe [7401552 2021-07-05] (Avast Software s.r.o. -> AVAST Software)
R2 Atheros Bt&Wlan Coex Agent; C:\Program Files\Bluetooth Suite\Ath_CoexAgent.exe [138400 2011-03-01] (Atheros Communications Inc. -> Atheros) [Archivo no firmado]
R2 AtherosSvc; C:\Program Files\Bluetooth Suite\adminservice.exe [72864 2011-03-01] (Atheros Communications Inc. -> Atheros Commnucations) [Archivo no firmado]
S2 avast; C:\Program Files\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [194200 2021-07-05] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\Avast Software\Avast\AvastSvc.exe [567064 2021-07-05] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Tools; C:\Program Files\Avast Software\Avast\aswToolsSvc.exe [349464 2021-07-05] (Avast Software s.r.o. -> AVAST Software)
S3 avastm; C:\Program Files\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [194200 2021-07-05] (Avast Software s.r.o. -> AVAST Software)
S3 AvastSecureBrowserElevationService; C:\Program Files\AVAST Software\Browser\Application\91.0.10362.115\elevation_service.exe [1196008 2021-06-18] (Avast Software s.r.o. -> AVAST Software)
R2 AvastWscReporter; C:\Program Files\Avast Software\Avast\wsc_proxy.exe [56912 2021-07-05] (Avast Software s.r.o. -> AVAST Software)
S4 EpsonBidirectionalService; C:\Program Files\Common Files\EPSON\EBAPI\eEBSVC.exe [94208 2006-12-19] (SEIKO EPSON CORPORATION) [Archivo no firmado]
R2 EpsonScanSvc; C:\Windows\system32\EscSvc.exe [223560 2018-01-29] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
R2 EPSON_EB_RPCV4_04; C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50ST7.EXE [153600 2009-09-14] (Microsoft Windows Hardware Compatibility Publisher -> SEIKO EPSON CORPORATION)
R2 EPSON_PM_RPCV4_04; C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50RP7.EXE [121856 2009-09-14] (Microsoft Windows Hardware Compatibility Publisher -> SEIKO EPSON CORPORATION)
R2 EsgShKernel; C:\Program Files\EnigmaSoft\SpyHunter\ShKernel.exe [10142160 2021-07-05] (EnigmaSoft Limited -> EnigmaSoft Limited)
S3 fussvc; C:\Program Files\Windows Kits\8.0\App Certification Kit\fussvc.exe [133632 2012-07-25] (Microsoft Corporation) [Archivo no firmado]
R2 hasplms; C:\Windows\system32\hasplms.exe [4180576 2010-09-27] (SafeNet, Inc. -> SafeNet Inc.)
S3 hpqcaslwmiex; C:\Program Files\HP\Shared\hpqwmiex.exe [1031704 2016-06-03] (Hewlett-Packard Company -> HP)
S4 IconMan_R; C:\Program Files\Realtek\Realtek PCIE Card Reader\RIconMan.exe [1784320 2015-06-01] (Realsil Microelectronics Inc.) [Archivo no firmado]
S3 McComponentHostService; C:\Program Files\McAfee Security Scan\3.11.2198\McCHSvc.exe [317376 2021-04-30] (McAfee, LLC. -> McAfee, LLC)
S2 MSSQL$SQLEXPRESS2012; c:\Program Files\Microsoft SQL Server\MSSQL11.SQLEXPRESS2012\MSSQL\Binn\sqlservr.exe [206424 2012-02-11] (Microsoft Corporation -> Microsoft Corporation)
R2 MSSQLSERVER; c:\Program Files\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe [29263712 2008-11-24] (Microsoft Corporation -> Microsoft Corporation)
S4 MSSQLServerADHelper; c:\Program Files\Microsoft SQL Server\90\Shared\sqladhlp90.exe [45408 2008-11-24] (Microsoft Corporation -> Microsoft Corporation)
R2 mysql; C:\xampp\mysql\bin\mysqld.exe [11552680 2018-02-03] (MariaDB Corporation Ab -> )
S4 ShMonitor; C:\Program Files\EnigmaSoft\SpyHunter\ShMonitor.exe [416720 2021-07-05] (EnigmaSoft Limited -> EnigmaSoft Limited)
R2 STacSV; C:\Program Files\IDT\WDM\STacSV.exe [262226 2010-12-17] (Microsoft Windows Hardware Compatibility Publisher -> IDT, Inc.)
S3 SwitchBoard; C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Test Signing Certificate -> Adobe Systems Incorporated) [Archivo no firmado]
S3 Te.Service; C:\Program Files\Windows Kits\8.0\Testing\Runtimes\TAEF\Wex.Services.exe [94208 2012-07-25] (Microsoft Corporation) [Archivo no firmado]
R2 WsAppService; C:\Program Files\Wondershare\WAF\2.4.3.242\WsAppService.exe [495720 2018-08-29] (Wondershare Technology Co.,Ltd -> Wondershare)
S2 AGMService; "C:\Program Files\Common Files\Adobe\AdobeGCClient\AGMService.exe" [X]
S2 AGSService; "C:\Program Files\Common Files\Adobe\AdobeGCClient\AGSService.exe" [X]
S4 BstHdAndroidSvc; "C:\Program Files\BlueStacks\HD-Service.exe" BstHdAndroidSvc Android [X]
S4 BstHdLogRotatorSvc; C:\Program Files\BlueStacks\HD-LogRotatorService.exe [X]
S2 DFWSIDService; C:\Program Files\Wondershare\drfone\WsidService.exe [X]
S2 ElevationService; C:\Program Files\Wondershare\drfone\Addins\SocialApps\ElevationService.exe [X]
S4 HuaweiHiSuiteService.exe; "C:\Program Files\HiSuite\HandSetService\HuaweiHiSuiteService.exe" -/service [X]
S2 Motorola Device Manager; C:\Program Files\Motorola Mobility\Motorola Device Manager\MotoHelperService.exe [X]
S2 PST Service; C:\Program Files\Motorola\MotForwardDaemon\ForwardDaemon.exe [X]
S4 SkypeUpdate; "C:\Program Files\Skype\Updater\Updater.exe" [X]
S4 wlcrasvc; "C:\Program Files\Windows Live\Mesh\wlcrasvc.exe" [X]
S4 wlidsvc; "C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE" [X]
S2 Wondershare InstallAssist; C:\ProgramData\Wondershare\Service\InstallAssistService.exe [X]

===================== Controladores (Lista blanca) ===================

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)

S3 aftap0901; C:\Windows\System32\DRIVERS\aftap0901.sys [45528 2018-03-06] (AnchorFree Inc -> The OpenVPN Project)
R2 aksfridge; C:\Windows\System32\DRIVERS\aksfridge.sys [356864 2010-09-27] (Microsoft Windows Hardware Compatibility Publisher -> SafeNet Inc.)
R3 akshasp; C:\Windows\System32\DRIVERS\akshasp.sys [238208 2009-03-13] (Microsoft Windows Hardware Compatibility Publisher -> Aladdin Knowledge Systems Ltd.)
R3 akshhl; C:\Windows\System32\DRIVERS\akshhl.sys [46336 2007-07-23] (Microsoft Windows Hardware Compatibility Publisher -> Aladdin Knowledge Systems Ltd.)
R3 aksusb; C:\Windows\System32\DRIVERS\aksusb.sys [16384 2009-06-22] (Microsoft Windows Hardware Compatibility Publisher -> Aladdin Knowledge Systems Ltd.)
R3 amdiox86; C:\Windows\System32\DRIVERS\amdiox86.sys [37944 2010-02-18] (Advanced Micro Devices, Inc. -> Advanced Micro Devices)
R3 amdkmdag; C:\Windows\System32\DRIVERS\atikmdag.sys [7559680 2011-02-28] (Microsoft Windows Hardware Compatibility Publisher -> ATI Technologies Inc.)
R3 amdkmdap; C:\Windows\System32\DRIVERS\atikmpag.sys [238592 2011-02-28] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc.)
R0 amd_sata; C:\Windows\System32\DRIVERS\amd_sata.sys [66176 2011-01-28] (Advanced Micro Devices, Inc. -> Advanced Micro Devices)
R0 amd_xata; C:\Windows\System32\DRIVERS\amd_xata.sys [32384 2011-01-28] (Advanced Micro Devices, Inc. -> Advanced Micro Devices)
R0 aswArDisk; C:\Windows\System32\drivers\aswArDisk.sys [33608 2021-07-05] (Avast Software s.r.o. -> AVAST Software)
R1 aswArPot; C:\Windows\System32\drivers\aswArPot.sys [183152 2021-07-05] (Avast Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; C:\Windows\System32\drivers\aswbidsdriver.sys [292880 2021-07-05] (Avast Software s.r.o. -> AVAST Software)
R0 aswbidsh; C:\Windows\System32\drivers\aswbidsh.sys [206352 2021-07-05] (Avast Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:\Windows\System32\drivers\aswbuniv.sys [91672 2021-07-05] (Avast Software s.r.o. -> AVAST Software)
R1 aswKbd; C:\Windows\System32\drivers\aswKbd.sys [39320 2021-07-05] (Avast Software s.r.o. -> AVAST Software)
R1 aswMonFlt; C:\Windows\System32\drivers\aswMonFlt.sys [152992 2021-07-05] (Avast Software s.r.o. -> AVAST Software)
R1 aswNetHub; C:\Windows\System32\drivers\aswNetHub.sys [379536 2021-07-05] (Avast Software s.r.o. -> AVAST Software)
R3 aswNetNd6; C:\Windows\System32\DRIVERS\aswNetNd6.sys [36104 2021-07-05] (AVAST Software s.r.o. -> AVAST Software)
R1 aswRdr; C:\Windows\System32\drivers\aswRdr2.sys [92752 2021-07-05] (Avast Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\Windows\System32\drivers\aswRvrt.sys [71408 2021-07-05] (Avast Software s.r.o. -> AVAST Software)
R1 aswSnx; C:\Windows\System32\drivers\aswSnx.sys [691224 2021-07-05] (Avast Software s.r.o. -> AVAST Software)
R1 aswSP; C:\Windows\System32\drivers\aswSP.sys [388848 2021-07-05] (Avast Software s.r.o. -> AVAST Software)
S2 aswStm; C:\Windows\System32\drivers\aswStm.sys [161880 2021-07-05] (Avast Software s.r.o. -> AVAST Software)
R0 aswVmm; C:\Windows\System32\drivers\aswVmm.sys [277616 2021-07-05] (Avast Software s.r.o. -> AVAST Software)
R3 athr; C:\Windows\System32\DRIVERS\athr.sys [2184704 2011-02-22] (Microsoft Windows Hardware Compatibility Publisher -> Atheros Communications, Inc.)
R0 AtiPcie; C:\Windows\System32\DRIVERS\AtiPcie.sys [14392 2010-06-17] (Advanced Micro Devices, Inc. -> Advanced Micro Devices Inc.)
R3 EnigmaFileMonDriver; C:\Windows\system32\Drivers\EnigmaFileMonDriver.sys [68040 2021-07-06] (EnigmaSoft Limited -> EnigmaSoft Limited)
S3 ew_usbccgpfilter; C:\Windows\System32\DRIVERS\ew_usbccgpfilter.sys [15360 2020-06-28] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
R2 hardlock; C:\Windows\system32\drivers\hardlock.sys [588800 2009-12-09] (Microsoft Windows Hardware Compatibility Publisher -> SafeNet Inc.)
U5 hw_usbdev; C:\Windows\System32\Drivers\hw_usbdev.sys [102272 2020-06-28] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
S3 pccsmcfd; C:\Windows\System32\DRIVERS\pccsmcfd.sys [19072 2012-06-11] (Microsoft Windows Hardware Compatibility Publisher -> Nokia)
R1 RsFx0200; C:\Windows\System32\DRIVERS\RsFx0200.sys [268888 2012-02-11] (Microsoft Corporation -> Microsoft Corporation)
R3 RSPCIESTOR; C:\Windows\System32\DRIVERS\RtsPStor.sys [254056 2015-06-01] (Realtek Semiconductor Corp -> Realtek Semiconductor Corp.)
S3 SrvHsfHDA; C:\Windows\System32\DRIVERS\VSTAZL3.SYS [207360 2009-07-13] (Microsoft Windows -> Conexant Systems, Inc.)
S3 SrvHsfV92; C:\Windows\System32\DRIVERS\VSTDPV3.SYS [980992 2009-07-13] (Microsoft Windows -> Conexant Systems, Inc.)
S3 SrvHsfWinac; C:\Windows\System32\DRIVERS\VSTCNXT3.SYS [661504 2009-07-13] (Microsoft Windows -> Conexant Systems, Inc.)
R3 STHDA; C:\Windows\System32\DRIVERS\stwrt.sys [435200 2010-12-17] (Microsoft Windows Hardware Compatibility Publisher -> IDT, Inc.)
S3 SydexFDD; C:\Windows\system32\Drivers\sydexfdd.sys [13359 2010-04-15] (Windows (R) 2000 DDK provider) [Archivo no firmado]
S3 teamviewervpn; C:\Windows\System32\DRIVERS\teamviewervpn.sys [25088 2020-03-19] (Microsoft Windows Hardware Compatibility Publisher -> TeamViewer GmbH)
R3 usbfilter; C:\Windows\System32\DRIVERS\usbfilter.sys [35968 2010-11-29] (Advanced Micro Devices, Inc. -> Advanced Micro Devices)
S3 usbser; C:\Windows\System32\DRIVERS\USBSER.sys [28160 2020-06-28] (Microsoft Corporation) [Archivo no firmado]
S3 VSPerfDrv110; C:\Program Files\Microsoft Visual Studio 11.0\Team Tools\Performance Tools\VSPerfDrv110.sys [55416 2012-07-13] (Microsoft Corporation -> Microsoft Corporation)
R3 vusbbus; C:\Windows\System32\DRIVERS\vusbbus.sys [2665472 2012-01-03] (Chingachguk & Denger2k) [Archivo no firmado]
R2 wntpport; C:\Windows\System32\Drivers\wntpport.sys [28416 2009-10-29] (Vireo Software) [Archivo no firmado]
S2 BstHdDrv; \??\C:\Program Files\BlueStacks\HD-Hypervisor-x86.sys [X]
S3 H1dVzRms1AL9i2; \??\C:\Users\Public\Pictures\3nyy5B8gW7qP35i.sys [X]

==================== NetSvcs (Lista blanca) ===================

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)


==================== Un mes (creado) (Lista blanca) =========

(Si una entrada es incluida en el fixlist, el archivo/carpeta será eliminado/a.)

2021-07-06 14:00 - 2021-07-06 14:02 - 000018014 _____ C:\Users\User\Desktop\FRST.txt
2021-07-06 13:29 - 2021-07-06 14:01 - 000000000 ____D C:\FRST
2021-07-06 13:11 - 2021-07-06 13:11 - 000068040 _____ (EnigmaSoft Limited) C:\Windows\system32\Drivers\EnigmaFileMonDriver.sys
2021-07-06 10:22 - 2021-07-06 10:22 - 000000917 _____ C:\Windows\Tasks\ Update {7A1DE94B-8FF7-4C11-B782-84462DA7338A}.job
2021-07-05 22:22 - 2021-07-05 22:22 - 002014208 _____ (Farbar) C:\Users\User\Desktop\FRST.exe
2021-07-05 22:18 - 2021-07-05 22:18 - 000002804 _____ C:\Windows\system32\Tasks\CCleanerSkipUAC
2021-07-05 22:17 - 2021-07-06 13:26 - 000000000 ____D C:\Program Files\CCleaner
2021-07-05 22:17 - 2021-07-05 22:17 - 000003870 _____ C:\Windows\system32\Tasks\CCleaner Update
2021-07-05 22:17 - 2021-07-05 22:17 - 000000969 _____ C:\Users\Public\Desktop\CCleaner.lnk
2021-07-05 22:17 - 2021-07-05 22:17 - 000000969 _____ C:\ProgramData\Desktop\CCleaner.lnk
2021-07-05 22:17 - 2021-07-05 22:17 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2021-07-05 22:16 - 2021-07-05 22:16 - 000000000 ____D C:\Users\User\AppData\Roaming\ZHP
2021-07-05 22:16 - 2021-07-05 22:16 - 000000000 ____D C:\Users\User\AppData\Local\ZHP
2021-07-05 22:15 - 2021-07-05 22:16 - 035958288 _____ (Piriform Software Ltd) C:\Users\User\Documents\ccsetup582.exe
2021-07-05 22:14 - 2021-07-05 22:15 - 003258008 _____ (Nicolas Coolman) C:\Users\User\Documents\ZHPCleaner.exe
2021-07-05 22:05 - 2021-07-05 22:05 - 000003720 _____ C:\Windows\system32\Tasks\Avast Secure Browser Heartbeat Task (Hourly)
2021-07-05 22:05 - 2021-07-05 22:05 - 000003138 _____ C:\Windows\system32\Tasks\Avast Secure Browser Heartbeat Task (Logon)
2021-07-05 22:05 - 2021-07-05 22:05 - 000002449 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Secure Browser.lnk
2021-07-05 22:05 - 2021-07-05 22:05 - 000002406 _____ C:\Users\Public\Desktop\Avast Secure Browser.lnk
2021-07-05 22:05 - 2021-07-05 22:05 - 000002406 _____ C:\ProgramData\Desktop\Avast Secure Browser.lnk
2021-07-05 22:03 - 2021-07-05 22:03 - 000003498 _____ C:\Windows\system32\Tasks\AvastUpdateTaskMachineUA
2021-07-05 22:03 - 2021-07-05 22:03 - 000003370 _____ C:\Windows\system32\Tasks\AvastUpdateTaskMachineCore
2021-07-05 21:58 - 2021-07-05 22:11 - 000000000 ____D C:\Users\User\AppData\Local\Avast Software
2021-07-05 21:58 - 2021-07-05 21:58 - 000002079 _____ C:\Users\Public\Desktop\Avast Free Antivirus.lnk
2021-07-05 21:58 - 2021-07-05 21:58 - 000002079 _____ C:\ProgramData\Desktop\Avast Free Antivirus.lnk
2021-07-05 21:58 - 2021-07-05 21:58 - 000000000 ____D C:\Users\User\AppData\Roaming\Avast Software
2021-07-05 21:58 - 2021-07-05 21:58 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVAST Software
2021-07-05 21:52 - 2021-07-05 21:52 - 000000000 ____D C:\Windows\system32\Tasks\Avast Software
2021-07-05 21:51 - 2021-07-05 21:51 - 000691224 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2021-07-05 21:51 - 2021-07-05 21:51 - 000388848 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2021-07-05 21:51 - 2021-07-05 21:51 - 000379536 _____ (AVAST Software) C:\Windows\system32\Drivers\aswNetHub.sys
2021-07-05 21:51 - 2021-07-05 21:51 - 000287000 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2021-07-05 21:51 - 2021-07-05 21:51 - 000277616 _____ (AVAST Software) C:\Windows\system32\Drivers\aswVmm.sys
2021-07-05 21:51 - 2021-07-05 21:51 - 000206352 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbidsh.sys
2021-07-05 21:51 - 2021-07-05 21:51 - 000183152 _____ (AVAST Software) C:\Windows\system32\Drivers\aswArPot.sys
2021-07-05 21:51 - 2021-07-05 21:51 - 000161880 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2021-07-05 21:51 - 2021-07-05 21:51 - 000152992 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2021-07-05 21:51 - 2021-07-05 21:51 - 000092752 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2021-07-05 21:51 - 2021-07-05 21:51 - 000091672 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbuniv.sys
2021-07-05 21:51 - 2021-07-05 21:51 - 000071408 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRvrt.sys
2021-07-05 21:51 - 2021-07-05 21:51 - 000039320 _____ (AVAST Software) C:\Windows\system32\Drivers\aswKbd.sys
2021-07-05 21:51 - 2021-07-05 21:51 - 000036104 _____ (AVAST Software) C:\Windows\system32\Drivers\aswNetNd6.sys
2021-07-05 21:51 - 2021-07-05 21:51 - 000033608 _____ (AVAST Software) C:\Windows\system32\Drivers\aswArDisk.sys
2021-07-05 21:51 - 2021-07-05 21:51 - 000003910 _____ C:\Windows\system32\Tasks\Avast Emergency Update
2021-07-05 21:51 - 2021-07-05 21:51 - 000000000 ____D C:\Program Files\Common Files\Avast Software
2021-07-05 21:51 - 2021-07-05 21:50 - 000292880 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbidsdriver.sys
2021-07-05 21:47 - 2021-07-05 22:02 - 000000000 ____D C:\Program Files\Avast Software
2021-07-05 21:46 - 2021-07-06 13:12 - 000000000 ____D C:\ProgramData\Avast Software
2021-07-05 21:41 - 2021-07-05 21:41 - 000143224 _____ C:\Windows\Minidump\070521-41075-01.dmp
2021-07-05 20:50 - 2021-07-05 20:50 - 000000000 ____D C:\Users\User\AppData\LocalLow\IGDump
2021-07-05 19:33 - 2021-07-05 19:35 - 000225816 _____ (AVAST Software) C:\Users\User\Documents\avast_free_antivirus_setup_online.exe
2021-07-05 19:33 - 2021-07-05 19:35 - 000225816 _____ (AVAST Software) C:\Users\User\Desktop\avast_free_antivirus_setup_online.exe
2021-07-05 15:36 - 2021-07-05 15:36 - 000000000 ____D C:\Windows\system32\Tasks\Safer-Networking
2021-07-05 15:34 - 2021-07-05 15:34 - 000002135 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot-S&D Start Center.lnk
2021-07-05 15:34 - 2021-07-05 15:34 - 000002123 _____ C:\Users\Public\Desktop\Spybot-S&D Start Center.lnk
2021-07-05 15:34 - 2021-07-05 15:34 - 000002123 _____ C:\ProgramData\Desktop\Spybot-S&D Start Center.lnk
2021-07-05 15:34 - 2021-07-05 15:34 - 000001053 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SpywareBlaster.lnk
2021-07-05 15:34 - 2021-07-05 15:34 - 000001041 _____ C:\Users\Public\Desktop\SpywareBlaster.lnk
2021-07-05 15:34 - 2021-07-05 15:34 - 000001041 _____ C:\ProgramData\Desktop\SpywareBlaster.lnk
2021-07-05 15:34 - 2021-07-05 15:34 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot - Search & Destroy 2
2021-07-05 15:34 - 2021-07-05 15:34 - 000000000 ____D C:\Program Files\SpywareBlaster
2021-07-05 15:33 - 2021-07-06 13:13 - 000000000 ____D C:\Program Files\Spybot - Search & Destroy 2
2021-07-05 15:33 - 2021-07-05 17:40 - 000000000 ____D C:\ProgramData\Spybot - Search & Destroy
2021-07-05 15:33 - 2018-02-06 17:50 - 000030056 _____ (Safer-Networking Ltd.) C:\Windows\system32\sdnclean.exe
2021-07-05 15:27 - 2021-07-05 15:28 - 008553680 _____ (Malwarebytes) C:\Users\User\Documents\adwcleaner_8.3.0.exe
2021-07-05 15:26 - 2021-07-05 15:27 - 004432784 _____ (BrightFort LLC ) C:\Users\User\Documents\spywareblastersetup60.exe
2021-07-05 15:25 - 2021-07-05 15:29 - 069910960 _____ (Safer-Networking Ltd. ) C:\Users\User\Documents\spybotsd-2.7.64.0.exe
2021-07-05 15:22 - 2021-07-05 15:24 - 002093656 _____ (Malwarebytes) C:\Users\User\Documents\MBSetup.exe
2021-07-05 13:59 - 2021-07-05 13:59 - 000000000 ____D C:\Users\User\AppData\Roaming\Motorola
2021-07-05 13:41 - 2021-07-05 13:41 - 000000020 _____ C:\Windows\u
2021-07-05 09:51 - 2021-07-05 09:51 - 000000000 ____D C:\Users\User\Desktop\Nueva carpeta
2021-07-05 09:46 - 2021-07-05 09:46 - 000066656 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbam.sys
2021-07-05 09:46 - 2021-07-05 09:46 - 000001960 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2021-07-05 09:46 - 2021-07-05 09:46 - 000001948 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2021-07-05 09:46 - 2021-07-05 09:46 - 000001948 _____ C:\ProgramData\Desktop\Malwarebytes.lnk
2021-07-05 09:45 - 2021-07-05 09:45 - 000213936 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamswissarmy.sys
2021-07-05 09:45 - 2021-07-05 09:45 - 000184200 _____ (Malwarebytes) C:\Windows\system32\Drivers\MbamChameleon.sys
2021-07-05 09:45 - 2021-07-05 09:45 - 000161512 _____ (Malwarebytes) C:\Windows\system32\Drivers\farflt.sys
2021-07-05 09:45 - 2021-07-05 09:45 - 000122552 _____ (Malwarebytes) C:\Windows\system32\Drivers\mwac.sys
2021-07-05 09:44 - 2021-07-05 09:44 - 000000000 ____D C:\ProgramData\Malwarebytes
2021-07-05 09:44 - 2021-07-05 09:43 - 000163800 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbae.sys
2021-07-05 08:05 - 2021-07-05 08:05 - 000001847 _____ C:\Users\User\Desktop\ShadowExplorer.lnk
2021-07-05 08:05 - 2021-07-05 08:05 - 000000000 ____D C:\Users\User\AppData\Roaming\www.shadowexplorer.com
2021-07-05 08:05 - 2021-07-05 08:05 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ShadowExplorer
2021-07-05 08:04 - 2021-07-05 08:05 - 000000000 ____D C:\Program Files\ShadowExplorer
2021-07-05 02:32 - 2021-07-05 02:32 - 000000000 ____D C:\Users\User\AppData\Local\mbam
2021-07-05 01:10 - 2021-07-05 01:10 - 000000000 ____D C:\Program Files\Malwarebytes
2021-07-05 00:55 - 2021-07-05 00:55 - 000001191 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SpyHunter5.lnk
2021-07-05 00:55 - 2021-07-05 00:55 - 000001167 _____ C:\Users\Public\Desktop\SpyHunter5.lnk
2021-07-05 00:55 - 2021-07-05 00:55 - 000001167 _____ C:\ProgramData\Desktop\SpyHunter5.lnk
2021-07-05 00:55 - 2021-07-05 00:55 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EnigmaSoft
2021-07-05 00:55 - 2021-07-05 00:55 - 000000000 ____D C:\ProgramData\EnigmaSoft Limited
2021-07-05 00:54 - 2021-07-05 00:55 - 000000000 ____D C:\sh5ldr
2021-07-05 00:50 - 2021-07-05 00:50 - 000000000 ____D C:\Program Files\EnigmaSoft
2021-07-04 23:35 - 2021-07-05 08:19 - 001358136 _____ C:\Windows\ntbtlog.txt
2021-07-04 23:20 - 2021-07-05 00:46 - 000000000 ____D C:\Windows\pss
2021-07-04 21:56 - 2021-07-04 21:56 - 000000000 ____D C:\Users\User\AppData\Local\Yandex
2021-07-04 21:36 - 2021-07-04 21:36 - 000001109 _____ C:\Users\User\_readme.txt
2021-07-04 21:36 - 2021-07-04 21:36 - 000001109 _____ C:\Users\MSSQL$SQLEXPRESS2012\_readme.txt
2021-07-04 21:35 - 2021-07-04 21:35 - 000001109 _____ C:\Program Files\_readme.txt
2021-07-04 21:35 - 2021-07-04 21:35 - 000001109 _____ C:\_readme.txt
2021-07-04 21:35 - 2021-07-04 21:35 - 000000558 _____ C:\Users\User\AppData\Local\bowsakkdestx.txt
2021-07-04 21:35 - 2021-07-04 21:35 - 000000000 ____D C:\SystemID
2021-07-04 21:29 - 2021-07-06 14:02 - 020185088 _____ C:\Windows\system32\C_32770.NLS
2021-07-04 20:52 - 2021-07-04 21:31 - 002459648 ____N C:\Windows\system32\Drivers\uUjC52.sys
2021-07-04 20:52 - 2021-07-04 20:52 - 001564823 _____ C:\ProgramData\4649
2021-07-04 20:51 - 2021-07-04 22:55 - 000000000 ____D C:\winCrtdhcpcommon
2021-07-04 20:51 - 2021-07-04 20:51 - 001564823 _____ C:\ProgramData\5969
2021-07-04 14:43 - 2021-07-04 21:41 - 000119874 _____ C:\Users\User\Downloads\[PiratePC.Co] Tenorshare UltData for Android _ Only(1).zip.zqqw
2021-07-04 13:48 - 2021-07-04 22:17 - 000000000 ____D C:\Program Files\UltData for Android
2021-07-04 10:20 - 2021-07-04 10:20 - 000000000 ____D C:\Users\User\AppData\Roaming\Wondershare
2021-07-03 21:37 - 2021-07-04 21:35 - 000000000 ____D C:\Tenorshare
2021-07-03 21:37 - 2021-07-03 21:37 - 000001217 _____ C:\Users\Public\Desktop\Wondershare Recoverit.lnk
2021-07-03 21:37 - 2021-07-03 21:37 - 000001217 _____ C:\ProgramData\Desktop\Wondershare Recoverit.lnk
2021-07-03 21:36 - 2021-07-04 22:55 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\UltData for Android
2021-07-03 21:36 - 2021-07-03 21:36 - 000001312 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\UltData for Android.lnk
2021-07-03 21:36 - 2021-07-03 21:36 - 000001300 _____ C:\Users\Public\Desktop\UltData for Android.lnk
2021-07-03 21:36 - 2021-07-03 21:36 - 000001300 _____ C:\ProgramData\Desktop\UltData for Android.lnk
2021-07-03 21:22 - 2021-07-04 22:51 - 000000000 ____D C:\Program Files\Tenorshare
2021-06-29 13:31 - 2021-07-05 21:40 - 345746991 _____ C:\Windows\MEMORY.DMP
2021-06-29 13:31 - 2021-06-29 13:31 - 000143296 _____ C:\Windows\Minidump\062921-43368-01.dmp

==================== Un mes (modificado) ==================

(Si una entrada es incluida en el fixlist, el archivo/carpeta será eliminado/a.)

2021-07-06 13:30 - 2009-07-14 00:04 - 000016480 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2021-07-06 13:30 - 2009-07-14 00:04 - 000016480 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2021-07-06 13:18 - 2011-04-12 12:52 - 000795536 _____ C:\Windows\system32\perfh00A.dat
2021-07-06 13:18 - 2011-04-12 12:52 - 000177236 _____ C:\Windows\system32\perfc00A.dat
2021-07-06 13:18 - 2010-11-20 16:31 - 001811308 _____ C:\Windows\system32\PerfStringBackup.INI
2021-07-06 13:18 - 2009-07-13 22:07 - 000000000 ____D C:\Windows\inf
2021-07-06 13:11 - 2018-06-05 20:55 - 000065536 _____ C:\Windows\system32\Ikeext.etl
2021-07-06 13:11 - 2009-07-14 00:23 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2021-07-05 21:41 - 2015-01-31 12:47 - 000000000 ____D C:\Windows\Minidump
2021-07-05 19:43 - 2020-10-28 15:37 - 000007605 _____ C:\Users\User\AppData\Local\Resmon.ResmonCfg
2021-07-05 18:07 - 2011-07-19 19:18 - 000000000 ____D C:\ProgramData\Temp
2021-07-05 15:41 - 2018-07-16 15:45 - 000000035 _____ C:\Users\Public\Documents\AtherosServiceConfig.ini
2021-07-05 15:41 - 2018-07-16 15:45 - 000000035 _____ C:\ProgramData\Documents\AtherosServiceConfig.ini
2021-07-05 15:38 - 2018-05-22 01:25 - 000000282 __RSH C:\ProgramData\ntuser.pol
2021-07-05 13:59 - 2019-07-09 09:21 - 000000000 ____D C:\Program Files\Motorola Mobility
2021-07-05 13:59 - 2011-04-12 03:28 - 000000000 ___HD C:\Program Files\InstallShield Installation Information
2021-07-05 13:42 - 2011-04-12 03:24 - 000000000 ____D C:\Program Files\Windows Live
2021-07-05 13:41 - 2011-04-12 03:25 - 000000000 ____D C:\Program Files\Microsoft SQL Server Compact Edition
2021-07-05 13:39 - 2009-07-13 22:07 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2021-07-05 13:36 - 2018-03-19 14:46 - 000000000 ____D C:\ProgramData\Electronic Arts
2021-07-05 10:44 - 2014-03-10 04:17 - 000000000 ____D C:\Users\MSSQL$SQLEXPRESS2012
2021-07-05 09:47 - 2014-05-03 20:12 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EPSON
2021-07-05 09:47 - 2014-05-03 20:12 - 000000000 ____D C:\Program Files\epson
2021-07-05 09:45 - 2020-09-20 10:22 - 000131352 _____ C:\Windows\system32\GDIPFONTCACHEV1.DAT
2021-07-05 09:40 - 2009-07-13 22:07 - 000000000 __RHD C:\Users\Public\Libraries
2021-07-05 09:38 - 2018-03-20 18:00 - 000000000 ____D C:\Program Files\Mozilla Maintenance Service
2021-07-05 09:38 - 2013-02-18 20:14 - 000000000 ____D C:\Program Files\Pixlr
2021-07-05 09:36 - 2011-10-13 21:58 - 000000000 ____D C:\ProgramData\Skype
2021-07-05 09:35 - 2018-10-15 08:35 - 000000000 ____D C:\Program Files\Nokia
2021-07-05 09:35 - 2017-02-22 18:00 - 000000000 ____D C:\Users\User\AppData\Local\SkypePlugin
2021-07-05 09:34 - 2020-03-25 23:43 - 000000000 ____D C:\Program Files\VideoLAN
2021-07-05 09:27 - 2019-07-09 09:21 - 000000000 ____D C:\Temp
2021-07-05 09:26 - 2020-08-10 12:01 - 000000917 _____ C:\Windows\Tasks\EPSON L3150 Series Update {DD86AEFB-1EA0-4D48-ACF4-61AFFC7FCFB5}.job
2021-07-05 09:26 - 2020-05-14 21:40 - 000000000 ____D C:\Users\User\AppData\Roaming\Zoom
2021-07-05 09:26 - 2018-08-09 08:52 - 003870592 _____ C:\Windows\system32\FNTCACHE.DAT
2021-07-05 09:26 - 2015-02-09 10:15 - 000001042 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-4047135609-2362062722-1061616882-1001UA1d0447714d75660.job
2021-07-05 09:24 - 2019-08-02 21:33 - 000000000 ____D C:\Program Files\TeamViewer
2021-07-05 09:23 - 2020-06-04 16:51 - 000000000 ____D C:\Users\User\AppData\Local\WebEx
2021-07-05 08:04 - 2015-01-31 15:28 - 000000000 ____D C:\Users\User\Documents\Bluetooth Folder
2021-07-05 02:14 - 2014-06-19 16:34 - 000000000 ____D C:\Clipart
2021-07-05 00:50 - 2014-05-18 10:46 - 000001042 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-4047135609-2362062722-1061616882-1001UA1cf72ac33623b59.job
2021-07-04 22:56 - 2020-03-29 23:29 - 000000000 ____D C:\xampp
2021-07-04 22:56 - 2009-07-13 22:07 - 000000000 ____D C:\Windows\AppCompat
2021-07-04 22:55 - 2021-05-03 15:21 - 000000000 ____D C:\ProgramData\McAfee Security Scan
2021-07-04 22:55 - 2020-11-24 06:32 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wondershare
2021-07-04 22:55 - 2020-11-24 06:31 - 000000000 ____D C:\Program Files\Wondershare
2021-07-04 22:55 - 2020-05-23 16:10 - 000000000 ____D C:\Program Files\Mozilla Firefox
2021-07-04 22:55 - 2019-02-13 07:41 - 000000000 ____D C:\Users\User\Downloads\RESET_EPSON_TX430W TX420W
2021-07-04 22:55 - 2018-05-22 01:25 - 000000000 ____D C:\Users\User\Downloads\Canaima
2021-07-04 22:55 - 2018-03-16 20:21 - 000000000 ____D C:\Users\User\Downloads\Nueva carpeta
2021-07-04 22:55 - 2011-02-10 14:53 - 000000000 ___HD C:\SYSTEM.SAV
2021-07-04 22:55 - 2009-07-13 22:07 - 000000000 ____D C:\Windows\registration
2021-07-04 22:53 - 2011-02-10 14:53 - 000000000 ____D C:\SWSetup
2021-07-04 22:52 - 2020-11-24 06:31 - 000000000 ____D C:\ProgramData\Wondershare
2021-07-04 22:52 - 2017-09-21 18:07 - 000000000 ___HD C:\respaldo
2021-07-04 22:51 - 2011-02-16 14:21 - 000000000 ___HD C:\HP
2021-07-04 22:05 - 2018-02-22 07:30 - 000000000 ____D C:\Users\User\Downloads\redes
2021-07-04 22:04 - 2019-08-20 14:21 - 000000000 ____D C:\Users\User\Downloads\Ready Set Go Patterns 2 by Harper Finch
2021-07-04 22:04 - 2019-08-20 14:20 - 000000000 ____D C:\Users\User\Downloads\Ready Set Go! Patterns by Harper Finch
2021-07-04 22:04 - 2019-05-07 11:43 - 000000000 ____D C:\Users\User\Downloads\LABELS
2021-07-04 22:04 - 2019-03-18 05:43 - 000000000 ____D C:\Users\User\Downloads\body niña
2021-07-04 22:04 - 2018-07-29 15:38 - 000000000 ____D C:\Users\User\Downloads\planos
2021-07-04 22:04 - 2018-07-16 21:26 - 000000000 ____D C:\Users\User\Downloads\Fluttershy M&T Pattern Release
2021-07-04 21:41 - 2019-08-20 14:57 - 000047149 _____ C:\Users\User\Downloads\{3D} RENDER DELANTE.jpg.zqqw
2021-07-04 21:41 - 2019-08-20 14:57 - 000046015 _____ C:\Users\User\Downloads\{3D} RENDER ATRAS.jpg.zqqw
2021-07-04 21:41 - 2019-08-20 14:57 - 000043874 _____ C:\Users\User\Downloads\{3D}NIVEL 2.jpg.zqqw
2021-07-04 21:41 - 2019-08-19 12:49 - 000028519 _____ C:\Users\User\Downloads\renov.docx.zqqw
2021-07-04 21:41 - 2019-06-28 10:18 - 000468674 _____ C:\Users\User\Downloads\Yasmin C. Flores L..pdf.zqqw
2021-07-04 21:41 - 2019-06-28 01:38 - 065457540 _____ C:\Users\User\Downloads\publicidad-Recuperado.psd.zqqw
2021-07-04 21:41 - 2019-05-04 23:41 - 000121446 _____ C:\Users\User\Downloads\Sistema-de-Facturacion-Ejemplo.xlsm.zqqw
2021-07-04 21:41 - 2019-05-01 11:22 - 036252309 _____ C:\Users\User\Downloads\publicidad.psd.zqqw
2021-07-04 21:41 - 2019-04-24 20:25 - 000768846 _____ C:\Users\User\Downloads\TESTIGOS DE JEHOVA DE VENEZUELA.doc.zqqw
2021-07-04 21:41 - 2019-02-14 00:34 - 000275278 _____ C:\Users\User\Downloads\Solicitud_Contrato_Afiliacion_Establecimiento_TDC_TDD (2).doc.zqqw
2021-07-04 21:41 - 2019-02-14 00:33 - 000275278 _____ C:\Users\User\Downloads\Solicitud_Contrato_Afiliacion_Establecimiento_TDC_TDD (1).doc.zqqw
2021-07-04 21:41 - 2019-02-14 00:29 - 000275278 _____ C:\Users\User\Downloads\Solicitud_Contrato_Afiliacion_Establecimiento_TDC_TDD.doc.zqqw
2021-07-04 21:41 - 2018-10-30 07:12 - 000050524 _____ C:\Users\User\Downloads\WhatsApp Image 2018-10-30 at 7.16.10 AM.jpeg.zqqw
2021-07-04 21:41 - 2018-10-17 01:26 - 000033614 _____ C:\Users\User\Downloads\programming_and_unlock_quick_reference-1.xls.zqqw
2021-07-04 21:41 - 2018-09-30 18:14 - 000014359 _____ C:\Users\User\Downloads\Resolución N° 031 de fecha 1° de febrero de 1999, mediante la cual se establece que las personas, para profesar su fe religiosa y ejercer su culto, que necesiten constituir iglesias (1).docx.zqqw
2021-07-04 21:41 - 2018-09-30 18:13 - 000066732 _____ C:\Users\User\Downloads\Reglamento Organico MPPRIJP (2).docx.zqqw
2021-07-04 21:41 - 2018-09-30 17:41 - 000066732 _____ C:\Users\User\Downloads\Reglamento Organico MPPRIJP (1).docx.zqqw
2021-07-04 21:41 - 2018-09-30 17:34 - 000014359 _____ C:\Users\User\Downloads\Resolución N° 031 de fecha 1° de febrero de 1999, mediante la cual se establece que las personas, para profesar su fe religiosa y ejercer su culto, que necesiten constituir iglesias.docx.zqqw
2021-07-04 21:41 - 2018-09-30 16:47 - 000066732 _____ C:\Users\User\Downloads\Reglamento Organico MPPRIJP.docx.zqqw
2021-07-04 21:41 - 2018-09-12 08:05 - 000031290 _____ C:\Users\User\Downloads\rifyas.pdf.zqqw
2021-07-04 21:41 - 2018-07-16 21:05 - 000093168 _____ C:\Users\User\Downloads\pony_plush_tutorials_and_pattern_by_adamlhumphreys-d88hibu.png.zqqw
2021-07-04 21:41 - 2018-07-16 16:41 - 000482827 _____ C:\Users\User\Downloads\pony_plushie_pattern_v2_0_by_jackiekie-d5hjacn.png.zqqw
2021-07-04 21:41 - 2018-05-22 01:27 - 000937926 _____ C:\Users\User\Downloads\zRufus-2.11.exe.zqqw
2021-07-04 21:41 - 2018-05-22 01:27 - 000227009 _____ C:\Users\User\Downloads\Windows7 MiniOS-Desktop.pdf.zqqw
2021-07-04 21:41 - 2018-05-14 01:24 - 000043854 _____ C:\Users\User\Downloads\Solicitud_Registro_Nacimiento_Mayores_Formato_3.doc.zqqw
2021-07-04 21:41 - 2018-03-21 09:33 - 000030979 _____ C:\Users\User\Downloads\Sin título-3.png.zqqw
2021-07-04 21:41 - 2018-03-02 16:19 - 000191829 _____ C:\Users\User\Downloads\REDES.docx.zqqw
2021-07-04 21:41 - 2018-02-22 12:59 - 005481822 _____ C:\Users\User\Downloads\Yaskawaii Informacion.docx.zqqw
2021-07-04 21:41 - 2018-02-22 12:52 - 001224513 _____ C:\Users\User\Downloads\Yaskawaii Informacion.pdf.zqqw
2021-07-04 21:41 - 2018-01-31 02:15 - 000091910 _____ C:\Users\User\Downloads\WhatsApp Image 2018-01-31 at 1.40.04 AM.jpeg.zqqw
2021-07-04 21:41 - 2018-01-31 02:15 - 000089606 _____ C:\Users\User\Downloads\WhatsApp Image 2018-01-31 at 1.44.47 AM.jpeg.zqqw
2021-07-04 21:41 - 2018-01-31 02:15 - 000086731 _____ C:\Users\User\Downloads\WhatsApp Image 2018-01-31 at 1.44.48 AM.jpeg.zqqw
2021-07-04 21:41 - 2018-01-31 02:14 - 000083968 _____ C:\Users\User\Downloads\WhatsApp Image 2018-01-31 at 1.40.00 AM.jpeg.zqqw
2021-07-04 21:41 - 2018-01-29 08:59 - 000560109 _____ C:\Users\User\Downloads\WhatsApp Image 2018-01-29 at 8.29.19 AM.jpeg.zqqw
2021-07-04 21:40 - 2021-06-03 16:59 - 011175398 _____ C:\Users\User\Downloads\FileZilla_3.52.2_win32-setup.exe.zqqw
2021-07-04 21:40 - 2021-06-03 16:55 - 011166806 _____ C:\Users\User\Downloads\FileZilla_3.51.0_win32-setup.exe.zqqw
2021-07-04 21:40 - 2021-02-25 16:36 - 000000496 ____H C:\Users\User\Documents\~$sson plan.docx.zqqw
2021-07-04 21:40 - 2021-02-25 16:35 - 000000496 ____H C:\Users\User\Documents\~$t  5A, 5B (II M).Prof Omar Leonet(Cramer,Inec,Combinatoria).docx.zqqw
2021-07-04 21:40 - 2021-02-25 16:16 - 000450019 ____H C:\Users\User\Documents\~WRL0003.tmp.zqqw
2021-07-04 21:40 - 2020-09-18 17:54 - 000179282 _____ C:\Users\User\Downloads\logo.png.zqqw
2021-07-04 21:40 - 2020-09-15 08:08 - 000026628 ____H C:\Users\User\Documents\~WRL0168.tmp.zqqw
2021-07-04 21:40 - 2020-08-09 17:54 - 000014281 ____H C:\Users\User\Documents\~WRL3256.tmp.zqqw
2021-07-04 21:40 - 2020-04-08 23:22 - 000012651 _____ C:\Users\User\Downloads\Informe de Pagos  ChocoWawita.xlsx.zqqw
2021-07-04 21:40 - 2020-03-02 08:14 - 000311630 _____ C:\Users\User\Downloads\ADP_013_solicitud_contrato_afiliacion_de_establecimiento_al_uso_de_tarjetas_de_credito_debito.doc.zqqw
2021-07-04 21:40 - 2020-03-02 08:14 - 000311630 _____ C:\Users\User\Downloads\ADP_013_solicitud_contrato_afiliacion_de_establecimiento_al_uso_de_tarjetas_de_credito_debito (1).doc.zqqw
2021-07-04 21:40 - 2020-01-23 07:27 - 000120576 _____ C:\Users\User\Downloads\credencial.jpg.zqqw
2021-07-04 21:40 - 2020-01-20 01:43 - 013359231 _____ C:\Users\User\Downloads\animationinstalacion.rar.zqqw
2021-07-04 21:40 - 2020-01-08 11:17 - 001614158 _____ C:\Users\User\Downloads\chocowawita FINAL.doc.zqqw
2021-07-04 21:40 - 2020-01-08 10:32 - 001614158 _____ C:\Users\User\Downloads\chocowawita (1).doc.zqqw
2021-07-04 21:40 - 2019-10-21 23:18 - 002033850 _____ C:\Users\User\Downloads\etique3.psd.zqqw
2021-07-04 21:40 - 2019-10-21 23:17 - 000322851 _____ C:\Users\User\Downloads\etiquetaimpre.docx.zqqw
2021-07-04 21:40 - 2019-10-21 09:19 - 000504300 _____ C:\Users\User\Downloads\etiqueta.docx.zqqw
2021-07-04 21:40 - 2019-10-21 09:03 - 000087732 _____ C:\Users\User\Downloads\etiqueta2.png.zqqw
2021-07-04 21:40 - 2019-10-21 09:01 - 000067711 _____ C:\Users\User\Downloads\etiqueta.png.zqqw
2021-07-04 21:40 - 2019-10-21 03:00 - 000321557 _____ C:\Users\User\Downloads\logo.docx.zqqw
2021-07-04 21:40 - 2019-10-21 02:21 - 003782925 _____ C:\Users\User\Downloads\CHOCOWAWITAETIQUETA.psd.zqqw
2021-07-04 21:40 - 2019-10-03 07:37 - 001199677 _____ C:\Users\User\Downloads\impre.docx.zqqw
2021-07-04 21:40 - 2019-10-03 07:37 - 001199677 _____ C:\Users\User\Downloads\impre (1).docx.zqqw
2021-07-04 21:40 - 2019-10-02 10:28 - 000046500 _____ C:\Users\User\Downloads\IMG-20191001-WA0002.jpg.zqqw
2021-07-04 21:40 - 2019-10-01 17:36 - 000012715 _____ C:\Users\User\Downloads\mINISTERIO a POSTOLADO A LAS NACIONES.docx.zqqw
2021-07-04 21:40 - 2019-09-26 21:59 - 000016077 _____ C:\Users\User\Downloads\DGJRIC.REGLAMENTOINTERNO.docx.zqqw
2021-07-04 21:40 - 2019-08-22 07:11 - 000286055 _____ C:\Users\User\Downloads\img263.jpg.zqqw
2021-07-04 21:40 - 2019-08-19 13:10 - 000162638 _____ C:\Users\User\Downloads\mayo.doc.zqqw
2021-07-04 21:40 - 2019-08-15 15:23 - 001576118 _____ C:\Users\User\Downloads\logoseriochoco.psd.zqqw
2021-07-04 21:40 - 2019-08-15 14:57 - 005633024 _____ C:\Users\User\Downloads\deliverychoco.psd.zqqw
2021-07-04 21:40 - 2019-08-07 08:19 - 000272718 _____ C:\Users\User\Downloads\CREDITO_AL_CONSUMO18.doc.zqqw
2021-07-04 21:40 - 2019-08-07 08:19 - 000053070 _____ C:\Users\User\Downloads\CNE_348_balance_personal.xls.zqqw
2021-07-04 21:40 - 2019-08-07 08:19 - 000038734 _____ C:\Users\User\Downloads\CNE.377_carta_explicativa.doc.zqqw
2021-07-04 21:40 - 2019-07-24 08:38 - 000133688 _____ C:\Users\User\Downloads\66083429_349494929285350_2628159947479092388_n.jpg.zqqw
2021-07-04 21:40 - 2019-07-06 20:17 - 000632318 _____ C:\Users\User\Downloads\cupg.png.zqqw
2021-07-04 21:40 - 2019-06-28 10:19 - 000540078 _____ C:\Users\User\Downloads\Pasteleria Básica - Yennifer López.pdf.zqqw
2021-07-04 21:40 - 2019-06-24 12:52 - 000081488 _____ C:\Users\User\Downloads\62514321_633812383765789_7898804517905367040_n (1).jpg.zqqw
2021-07-04 21:40 - 2019-06-19 21:32 - 002377464 _____ C:\Users\User\Downloads\impre.png.zqqw
2021-07-04 21:40 - 2019-06-07 08:30 - 000595895 _____ C:\Users\User\Downloads\l.png.zqqw
2021-07-04 21:40 - 2019-06-05 23:09 - 000608035 _____ C:\Users\User\Downloads\23_motivos_cute_by_by_kary_d4tuigz.pat.zqqw
2021-07-04 21:40 - 2019-05-26 05:33 - 000171031 _____ C:\Users\User\Downloads\juegoajedrez.png.zqqw
2021-07-04 21:40 - 2019-05-08 19:45 - 000000499 ____H C:\Users\User\Documents\~$tortabase.xlsx.zqqw
2021-07-04 21:40 - 2019-05-07 19:24 - 043335786 _____ C:\Users\User\Downloads\chocowawitaafiche.psd.zqqw
2021-07-04 21:40 - 2019-05-07 13:32 - 008698982 _____ C:\Users\User\Downloads\afiche.png.zqqw
2021-07-04 21:40 - 2019-05-05 02:58 - 000019318 _____ C:\Users\User\Downloads\planilla-de-excel-calculadora-de-costo-de-recetas.xlsx.zqqw
2021-07-04 21:40 - 2019-05-01 09:37 - 001692565 _____ C:\Users\User\Downloads\logobebe.psd.zqqw
2021-07-04 21:40 - 2019-04-24 20:50 - 000496462 _____ C:\Users\User\Downloads\CONSTANCIA TESTIGO DE JEHOVA DFE VENEZUELA.doc.zqqw
2021-07-04 21:40 - 2019-03-09 05:50 - 000771406 _____ C:\Users\User\Downloads\2019_Macaracuay_Tickes - Pto de Venta (1).doc.zqqw
2021-07-04 21:40 - 2019-02-27 01:52 - 000014689 _____ C:\Users\User\Downloads\9900884ad46a4bbf53c0ecde3c1d20e9.jpg.zqqw
2021-07-04 21:40 - 2019-02-27 01:51 - 000014479 _____ C:\Users\User\Downloads\610630500ebf3c5a8d5cbd5ee1ba2907 (1).jpg.zqqw
2021-07-04 21:40 - 2019-02-27 01:48 - 000015542 _____ C:\Users\User\Downloads\5ca8aa769d816868cad347a34fa540f8.jpg.zqqw
2021-07-04 21:40 - 2019-02-27 01:45 - 000011398 _____ C:\Users\User\Downloads\711d17af865a6be481c95c3bc8257996.jpg.zqqw
2021-07-04 21:40 - 2019-02-27 01:44 - 000007016 _____ C:\Users\User\Downloads\04e9a5a899b9a272507a561ddd82b4ec.jpg.zqqw
2021-07-04 21:40 - 2019-02-27 01:33 - 000040401 _____ C:\Users\User\Downloads\e92f581a995a422f515d3b78df675658.jpg.zqqw
2021-07-04 21:40 - 2019-02-27 01:27 - 000133815 _____ C:\Users\User\Downloads\60184718105684d313303697846ab661.jpg.zqqw
2021-07-04 21:40 - 2019-02-14 06:59 - 000018687 _____ C:\Users\User\Downloads\2e1e66f8240bc87c41006246a6075dcb.jpg.zqqw
2021-07-04 21:40 - 2019-02-14 06:31 - 000043173 _____ C:\Users\User\Downloads\Planos-para-construir-casas-gratis.png.zqqw
2021-07-04 21:40 - 2019-02-14 05:45 - 000054606 _____ C:\Users\User\Downloads\FO_Planilla_Afiliacion_ Instalacion_POS.xls.zqqw
2021-07-04 21:40 - 2019-02-13 01:43 - 000437070 _____ C:\Users\User\Downloads\FO_Solicitud_de_Creditos_Sociales.xls.zqqw
2021-07-04 21:40 - 2019-02-07 20:56 - 000053070 _____ C:\Users\User\Downloads\MAXIMO FLORES RODRÍGUEZ.doc.zqqw
2021-07-04 21:40 - 2018-12-05 10:08 - 000284406 _____ C:\Users\User\Downloads\modelo_solicitud_balances.xlsx.zqqw
2021-07-04 21:40 - 2018-12-05 09:28 - 000020334 _____ C:\Users\User\Downloads\Certificado-de-ingresos-expedida-por-contador-público-1.docx.zqqw
2021-07-04 21:40 - 2018-11-01 07:27 - 000055118 _____ C:\Users\User\Downloads\ACTA DE ASOCIACION SANTIDAD DE DIOS.doc.zqqw
2021-07-04 21:40 - 2018-10-29 20:01 - 000041420 _____ C:\Users\User\Downloads\imagen.png.jpeg.zqqw
2021-07-04 21:40 - 2018-10-17 01:06 - 000045390 _____ C:\Users\User\Downloads\COMPATIBILIDAD NOKIA.doc.zqqw
2021-07-04 21:40 - 2018-10-15 15:42 - 000000496 ____H C:\Users\User\Desktop\~$TA CONSTITUTIVA MODELO.docx.zqqw
2021-07-04 21:40 - 2018-10-11 06:57 - 000169350 _____ C:\Users\User\Downloads\cedula.pptx.zqqw
2021-07-04 21:40 - 2018-09-14 20:24 - 000077737 _____ C:\Users\User\Downloads\IVSS%2c INVERSIONES DALUPA.COM%2c C.A.docx.zqqw
2021-07-04 21:40 - 2018-08-25 15:06 - 000205811 _____ C:\Users\User\Downloads\01_MANUAL COMPRADOR VERSION BETA.pdf.zqqw
2021-07-04 21:40 - 2018-07-22 12:26 - 000027312 _____ C:\Users\User\Downloads\f3c29b073ab5a9db5bf7d6b36fce5e7c.jpg.zqqw
2021-07-04 21:40 - 2018-07-22 12:25 - 000052529 _____ C:\Users\User\Downloads\6b45bcac18c7e78642b702d28c42bf80.jpg.zqqw
2021-07-04 21:40 - 2018-07-22 12:25 - 000047522 _____ C:\Users\User\Downloads\328ad1643df6a458aafe02527c8bb4f1.jpg.zqqw
2021-07-04 21:40 - 2018-07-22 12:25 - 000025729 _____ C:\Users\User\Downloads\a714c61ce3c6f2d4dd33bc193fe5a631.jpg.zqqw
2021-07-04 21:40 - 2018-07-22 12:23 - 000091960 _____ C:\Users\User\Downloads\013adc6b99b2b327e283ae121d081fbe.jpg.zqqw
2021-07-04 21:40 - 2018-07-22 12:22 - 000028397 _____ C:\Users\User\Downloads\8d54dc0a8c87ee49b6e9b7ace605f4c4.jpg.zqqw
2021-07-04 21:40 - 2018-07-22 10:50 - 000090806 _____ C:\Users\User\Downloads\BeeZeeArt_unicorn_165_1280x1280.jpg.zqqw
2021-07-04 21:40 - 2018-07-22 01:10 - 000030844 _____ C:\Users\User\Downloads\be7161c12be2b14af215fa221d87ddb6.jpg.zqqw
2021-07-04 21:40 - 2018-07-22 01:07 - 000046522 _____ C:\Users\User\Downloads\482c5fa9dae66b1846352133c741d9d4.jpg.zqqw
2021-07-04 21:40 - 2018-07-22 01:07 - 000029354 _____ C:\Users\User\Downloads\042c09c222301d54d31467f531362727.jpg.zqqw
2021-07-04 21:40 - 2018-07-19 22:57 - 003229357 _____ C:\Users\User\Downloads\IMG_20180719_224512.jpg.zqqw
2021-07-04 21:40 - 2018-07-19 22:57 - 003055282 _____ C:\Users\User\Downloads\IMG_20180719_224505.jpg.zqqw
2021-07-04 21:40 - 2018-07-19 22:57 - 002887153 _____ C:\Users\User\Downloads\IMG_20180719_221829.jpg.zqqw
2021-07-04 21:40 - 2018-07-17 00:38 - 000029147 _____ C:\Users\User\Downloads\359487_scanttt0005.jpg.zqqw
2021-07-04 21:40 - 2018-07-16 21:36 - 000076576 _____ C:\Users\User\Downloads\free_alicorn_plush_pattern_by_inept77-d8kgmmw.png.zqqw
2021-07-04 21:40 - 2018-07-16 21:32 - 000127042 _____ C:\Users\User\Downloads\1.jpg.zqqw
2021-07-04 21:40 - 2018-07-16 21:32 - 000087799 _____ C:\Users\User\Downloads\cont2.jpg.zqqw
2021-07-04 21:40 - 2018-07-16 21:04 - 000055605 _____ C:\Users\User\Downloads\pattern_tutorial_body_side_by_adamlhumphreys-d88hghy.png.zqqw
2021-07-04 21:40 - 2018-07-16 16:14 - 000019070 _____ C:\Users\User\Downloads\390ed17c79ae33fc0583b851740de5d3.jpg.zqqw
2021-07-04 21:40 - 2018-06-22 10:40 - 000240591 _____ C:\Users\User\Downloads\maximo florez.PDF.zqqw
2021-07-04 21:40 - 2018-06-21 06:36 - 006937442 _____ C:\Users\User\Downloads\IMG_20180621_062801.jpg.zqqw
2021-07-04 21:40 - 2018-06-14 11:27 - 000082252 _____ C:\Users\User\Downloads\MOVTRA201806141157164990655780.XLS.zqqw
2021-07-04 21:40 - 2018-06-05 20:06 - 000272718 _____ C:\Users\User\Downloads\CNE.263_solicitud_credito_consumo.doc.zqqw
2021-07-04 21:40 - 2018-05-25 00:09 - 000173390 _____ C:\Users\User\Downloads\Estados_financieros_(Excel)94082000_201003 (1).xls.zqqw
2021-07-04 21:40 - 2018-05-25 00:09 - 000056142 _____ C:\Users\User\Downloads\analisis-de-estados-financieros-vertical.xls.zqqw
2021-07-04 21:40 - 2018-05-24 09:49 - 000075598 _____ C:\Users\User\Downloads\234_formato71.xls.zqqw
2021-07-04 21:40 - 2018-05-24 09:42 - 000497998 _____ C:\Users\User\Downloads\Metodos de Depreciacion.xls.zqqw
2021-07-04 21:40 - 2018-05-23 14:45 - 000080033 _____ C:\Users\User\Downloads\ctrl_entry-point_2015-01-01.xlsx.zqqw
2021-07-04 21:40 - 2018-05-23 14:44 - 000173390 _____ C:\Users\User\Downloads\Estados_financieros_(Excel)94082000_201003.xls.zqqw
2021-07-04 21:40 - 2018-05-16 14:29 - 000036230 _____ C:\Users\User\Downloads\BINGO201805161430296732599140.PDF.zqqw
2021-07-04 21:40 - 2018-05-14 22:05 - 000136797 _____ C:\Users\User\Downloads\Pañal G.pdf.zqqw
2021-07-04 21:40 - 2018-05-14 22:05 - 000131972 _____ C:\Users\User\Downloads\Pañal M.pdf.zqqw
2021-07-04 21:40 - 2018-05-14 22:05 - 000072693 _____ C:\Users\User\Downloads\Alita M.pdf.zqqw
2021-07-04 21:40 - 2018-05-14 22:05 - 000072299 _____ C:\Users\User\Downloads\Alita P.pdf.zqqw
2021-07-04 21:40 - 2018-05-14 22:05 - 000072273 _____ C:\Users\User\Downloads\Alita G.pdf.zqqw
2021-07-04 21:40 - 2018-05-14 22:04 - 000125509 _____ C:\Users\User\Downloads\Pañal P.pdf.zqqw
2021-07-04 21:40 - 2018-05-14 01:06 - 000048462 _____ C:\Users\User\Downloads\PLANILLA_PARA_TRAMITE_DE_DNI.doc.zqqw
2021-07-04 21:40 - 2018-05-14 01:05 - 000016699 _____ C:\Users\User\Downloads\DECLARACION JURADA DE NO RENUNCIA A LA NACIONALIDAD-2014 - MODELO (1).docx.zqqw
2021-07-04 21:40 - 2018-05-14 00:58 - 000018059 _____ C:\Users\User\Downloads\DECLARACION JURADA DE PARENTESCO-2014 - MODELO (2).docx.zqqw
2021-07-04 21:40 - 2018-05-05 11:15 - 000081405 _____ C:\Users\User\Downloads\MOVTRA201805051117090420582891.XLS.zqqw
2021-07-04 21:40 - 2018-05-04 10:35 - 001783582 _____ C:\Users\User\Downloads\IMG_20180504_103503.jpg.zqqw
2021-07-04 21:40 - 2018-05-04 09:37 - 002899136 _____ C:\Users\User\Downloads\IMG_20180503_192150.jpg.zqqw
2021-07-04 21:40 - 2018-03-23 09:57 - 000056654 _____ C:\Users\User\Downloads\INVERSIONES EDILYAS CONDOMINIOS ARVERGAR.doc.zqqw
2021-07-04 21:40 - 2018-03-21 23:13 - 000100686 _____ C:\Users\User\Downloads\CB852920180321231417.xls.zqqw
2021-07-04 21:40 - 2018-03-21 09:30 - 000027873 _____ C:\Users\User\Downloads\LUBRO.png.zqqw
2021-07-04 21:40 - 2018-03-19 12:33 - 000049746 _____ C:\Users\User\Downloads\IMG-20171024-WA0035.jpg.zqqw
2021-07-04 21:40 - 2018-03-19 12:31 - 000122272 _____ C:\Users\User\Downloads\IMG-20171024-WA0043.jpg.zqqw
2021-07-04 21:40 - 2018-03-19 12:31 - 000065102 _____ C:\Users\User\Downloads\IMG-20171024-WA0040.jpg.zqqw
2021-07-04 21:40 - 2018-02-22 14:00 - 000231202 _____ C:\Users\User\Downloads\IMG-20160306-WA0011.jpg.zqqw
2021-07-04 21:40 - 2018-02-22 14:00 - 000176919 _____ C:\Users\User\Downloads\IMG-20160225-WA0008.jpg.zqqw
2021-07-04 21:40 - 2018-02-09 13:58 - 000000000 ____D C:\Users\User\Cisco Packet Tracer 6.1sv
2021-07-04 21:40 - 2018-02-05 21:02 - 000133702 _____ C:\Users\User\Downloads\IMG-20180205-WA0026.jpg.zqqw
2021-07-04 21:40 - 2018-02-05 21:02 - 000129313 _____ C:\Users\User\Downloads\IMG-20180205-WA0028.jpg.zqqw
2021-07-04 21:40 - 2018-02-05 21:02 - 000122929 _____ C:\Users\User\Downloads\IMG-20180205-WA0024.jpg.zqqw
2021-07-04 21:40 - 2018-02-05 21:02 - 000102463 _____ C:\Users\User\Downloads\IMG-20180205-WA0025.jpg.zqqw
2021-07-04 21:40 - 2018-01-31 02:30 - 000673316 _____ C:\Users\User\Downloads\25cm.png.zqqw
2021-07-04 21:40 - 2018-01-31 02:25 - 000969814 _____ C:\Users\User\Downloads\pel.png.zqqw
2021-07-04 21:40 - 2018-01-29 01:48 - 000005094 _____ C:\Users\User\Downloads\modelo-nota-de-entrega-excel.xlsx.zqqw
2021-07-04 21:40 - 2015-12-03 21:58 - 000000000 ____D C:\Users\User\.android
2021-07-04 21:38 - 2020-09-26 05:30 - 007407342 _____ C:\Users\User\basquet.psd.zqqw
2021-07-04 21:38 - 2018-02-09 13:58 - 000000508 _____ C:\Users\User\.packettracer.zqqw
2021-07-04 21:38 - 2014-06-19 16:38 - 000000000 ____D C:\SampleDatabase
2021-07-04 21:38 - 2014-06-19 16:34 - 000000000 ____D C:\Samples - EmbroideryStudio e1.5
2021-07-04 21:38 - 2011-10-13 23:34 - 000000000 ____D C:\Users\User\AppData\Local\CrashDumps
2021-07-04 21:36 - 2018-02-26 07:16 - 000000000 ____D C:\Users\Yasmin
2021-07-04 21:35 - 2020-03-29 13:28 - 000000000 ____D C:\AdwCleaner
2021-07-04 21:35 - 2018-06-05 21:00 - 000000000 ____D C:\a7b025c7bbc7de3a317674c0830409b6
2021-07-04 21:35 - 2017-09-19 13:35 - 000000000 ____D C:\Adjustment Program
2021-07-04 21:35 - 2014-03-10 03:35 - 000000000 ____D C:\HP_TOOLS_mountHPSF
2021-07-04 20:53 - 2009-07-13 21:33 - 019660800 _____ C:\Windows\system32\config\BCD00000000
2021-07-03 21:32 - 2015-05-21 13:31 - 000001042 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-4047135609-2362062722-1061616882-1001UA1d093f027ff03d1.job
2021-07-03 13:06 - 2014-05-03 17:39 - 000000990 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-4047135609-2362062722-1061616882-1001Core1cf671c4ec37ad4.job
2021-07-02 22:32 - 2015-05-21 13:31 - 000000990 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-4047135609-2362062722-1061616882-1001Core1d093f027c3f5c4.job
2021-07-01 17:44 - 2009-07-14 00:22 - 000000000 ____D C:\Windows\system32\FxsTmp
2021-06-30 16:08 - 2012-01-09 21:15 - 000002360 _____ C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2021-06-30 16:08 - 2012-01-09 21:15 - 000002323 _____ C:\Users\User\Desktop\Google Chrome.lnk
2021-06-27 19:02 - 2020-03-25 23:46 - 000000000 ____D C:\Users\User\AppData\Roaming\vlc
2021-06-26 00:41 - 2009-07-13 22:07 - 000000000 ____D C:\Windows\system32\NDF
2021-06-22 18:24 - 2014-10-03 21:06 - 000000000 ____D C:\Users\User\AppData\Roaming\FileZilla
2021-06-17 10:00 - 2018-08-07 23:57 - 000008224 _____ C:\Users\User\AppData\Local\GDIPFONTCACHEV1.DAT
2021-06-13 22:03 - 2014-05-04 10:35 - 000000000 ____D C:\Users\User\AppData\Roaming\Epson
2021-06-09 04:26 - 2017-06-09 16:55 - 000002029 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk

==================== Archivos en la raíz de algunos directorios ========

1998-06-25 00:30 - 1998-06-25 00:30 - 000050101 _____ () C:\Program Files\INSTALL.HTM
1998-06-25 00:30 - 1998-06-25 00:30 - 000170450 _____ () C:\Program Files\READMEVC.HTM
1998-06-10 00:30 - 1998-06-10 00:30 - 001318671 _____ () C:\Program Files\REDIST.TXT
2021-07-04 21:35 - 2021-07-04 21:35 - 000001109 _____ () C:\Program Files\_readme.txt
2010-11-20 16:59 - 2010-11-20 16:59 - 000321226 ___SH () C:\Users\User\AppData\Roaming\ubtbdsg
2020-04-13 00:27 - 2020-11-24 06:21 - 000001456 _____ () C:\Users\User\AppData\Local\Adobe Guardar para Web 13.0 Prefs
2021-07-04 21:35 - 2021-07-04 21:35 - 000000558 _____ () C:\Users\User\AppData\Local\bowsakkdestx.txt
2018-07-05 00:50 - 2018-07-05 00:50 - 000000001 _____ () C:\Users\User\AppData\Local\llftool.4.40.agreement
2020-06-02 17:51 - 2021-07-05 07:59 - 000000205 _____ () C:\Users\User\AppData\Local\oobelibMkey.log
2020-10-28 15:37 - 2021-07-05 19:43 - 000007605 _____ () C:\Users\User\AppData\Local\Resmon.ResmonCfg

==================== FLock ==============================

2021-07-06 10:38 C:\Windows\system32\config\SYSTEM
2021-07-04 21:31 C:\Windows\system32\Drivers\uUjC52.sys

==================== SigCheck ============================

(No existe una corrección automática para los archivos que no pasan la verificación.)


LastRegBack: 2021-07-01 05:29
==================== Final de FRST.txt ========================
Resultados del Análisis Adicional de Farbar Recovery Scan Tool (x86) Versión: 05-07-2021
Ejecutado por User (06-07-2021 14:03:59)
Ejecutado desde C:\Users\User\Desktop
Microsoft Windows 7 Starter  Service Pack 1 (X86) (2011-10-09 16:46:24)
Modo de Inicio: Normal
==========================================================


==================== Cuentas: =============================


(Si una entrada es incluida en el fixlist, será eliminada.)

Administrador (S-1-5-21-4047135609-2362062722-1061616882-500 - Administrator - Disabled)
Invitado (S-1-5-21-4047135609-2362062722-1061616882-501 - Limited - Disabled)
User (S-1-5-21-4047135609-2362062722-1061616882-1001 - Administrator - Enabled) => C:\Users\User

==================== Centro de Seguridad ========================

(Si una entrada es incluida en el fixlist, será eliminada.)

AS: Windows Defender (Enabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Programas instalados ======================

(Solo los programas de adware con indicador "Oculto", pueden ser añadidos al fixlist para hacerlos visibles. Los programas adware deben ser desinstalados manualmente.)

Adobe Acrobat Reader DC - Español (HKLM\...\{AC76BA86-7AD7-1034-7B44-AC0F074E4100}) (Version: 21.005.20048 - Adobe Systems Incorporated)
Adobe AIR (HKLM\...\Adobe AIR) (Version: 3.6.0.5970 - Adobe Systems Incorporated)
Adobe Creative Cloud (HKLM\...\Adobe Creative Cloud) (Version: 4.9.0.504 - Adobe Systems Incorporated)
Adobe Flash Player 10 ActiveX (HKLM\...\Adobe Flash Player ActiveX) (Version: 10.2.152.32 - Adobe Systems Incorporated)
Adobe Photoshop CS6 (HKLM\...\{74EB3499-8B95-4B5C-96EB-7B342F3FD0C6}) (Version: 13.0 - Adobe Systems Incorporated)
Agatha Christie - Peril at End House (HKLM\...\WT089362) (Version: 2.2.0.95 - WildTangent) Hidden
Archivos auxiliares de instalación de Microsoft SQL Server 2008 (HKLM\...\{1DE52C52-9DCF-44D8-A5D1-3A3D568EFDFD}) (Version: 10.1.2731.0 - Microsoft Corporation)
Atheros Driver Installation Program (HKLM\...\{C3A32068-8AB1-4327-BB16-BED9C6219DC7}) (Version: 9.2 - Atheros)
ATI Catalyst Install Manager (HKLM\...\{79A50897-9FF4-2A9C-0A8B-00F3FF40E0EF}) (Version: 3.0.812.0 - ATI Technologies, Inc.)
Avast Free Antivirus (HKLM\...\Avast Antivirus) (Version: 21.5.2470 - Avast Software)
Avast Secure Browser (HKLM\...\Avast Secure Browser) (Version: 91.0.10362.115 - AVAST Software)
Avast Update Helper (HKLM\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.8.1065.0 - AVAST Software) Hidden
Bejeweled 2 Deluxe (HKLM\...\WT089453) (Version: 2.2.0.95 - WildTangent) Hidden
Bejeweled 3 (HKLM\...\WT089498) (Version: 2.2.0.95 - WildTangent) Hidden
Blackhawk Striker 2 (HKLM\...\WT087328) (Version: 2.2.0.95 - WildTangent) Hidden
Blasterball 3 (HKLM\...\WT089308) (Version: 2.2.0.95 - WildTangent) Hidden
Blend for Visual Studio 2012 (HKLM\...\{57F20F04-014D-453F-B6A3-AE9485C4DFAB}) (Version: 5.0.30709.0 - Microsoft Corporation) Hidden
Blend for Visual Studio 2012 ESN resources (HKLM\...\{7CF7B268-71BE-4D04-9BFE-7CD831EB35CC}) (Version: 5.0.30709.0 - Microsoft Corporation) Hidden
Bluetooth Win7 Suite (HKLM\...\{101A497C-7EF6-4001-834D-E5FA1C70FEFA}) (Version: 7.2.0.60 - Atheros Communications)
Bounce Symphony (HKLM\...\WT087330) (Version: 2.2.0.95 - WildTangent) Hidden
Build-a-lot 2 (HKLM\...\WT087335) (Version: 2.2.0.95 - WildTangent) Hidden
Cake Mania (HKLM\...\WT089359) (Version: 2.2.0.95 - WildTangent) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 5.82 - Piriform)
Chuzzle Deluxe (HKLM\...\WT089454) (Version: 2.2.0.95 - WildTangent) Hidden
Complemento Microsoft Report Viewer para Visual Studio 2012 (HKLM\...\{C30E2F36-6F30-433E-B399-02C240E6173E}) (Version: 11.1.2802.16 - Microsoft Corporation) Hidden
Compresor WinRAR (HKLM\...\WinRAR archiver) (Version:  - )
Control ActiveX de Windows Live Mesh para conexiones remotas (HKLM\...\{04668DF2-D32F-4555-9C7E-35523DCD6544}) (Version: 15.4.5722.2 - Microsoft Corporation)
CorelDRAW Graphics Suite X4 - Capture (HKLM\...\{7F05E704-30A6-421A-97A7-8EEB1C7FF012}) (Version: 14.2 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X4 - Content (HKLM\...\{7F05E704-30A6-421A-97A7-8EEB1C7FF016}) (Version: 14.2 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X4 - Draw (HKLM\...\{7F05E704-30A6-421A-97A7-8EEB1C7FF013}) (Version: 14.2 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X4 - Filters (HKLM\...\{7F05E704-30A6-421A-97A7-8EEB1C7FF017}) (Version: 14.2 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X4 - FontNav (HKLM\...\{7F05E704-30A6-421A-97A7-8EEB1C7FF019}) (Version: 14.2 - Corel Corporation) Hidden
CorelDRAW Graphics SUite X4 - ICA (HKLM\...\{7F05E704-30A6-421A-97A7-8EEB1C7FF010}) (Version: 14.2 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X4 - IPM (HKLM\...\{51BE5330-0183-4922-AC4B-350D3CA3CD37}) (Version: 14.2 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X4 - IPM (HKLM\...\{9D0798D0-AF6C-4E62-94B1-AEBF1A43E00A}) (Version: 14.2 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X4 - Lang BR (HKLM\...\{1A9DAB4D-46CD-4CBF-A9FC-28D8AA8D2FCF}) (Version: 14.2 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X4 - Lang DE (HKLM\...\{AEFBAC58-2DDD-4CEF-BDFD-52A5A5F432ED}) (Version: 14.2 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X4 - Lang EN (HKLM\...\{7F05E704-30A6-421A-97A7-8EEB1C7FF100}) (Version: 14.2 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X4 - Lang ES (HKLM\...\{D2827848-7D2A-4547-9AD1-C965FB3E6344}) (Version: 14.2 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X4 - Lang FR (HKLM\...\{9D306690-3173-42CD-94C6-9EF9318AF24B}) (Version: 14.2 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X4 - Lang IT (HKLM\...\{D0160DD3-6F62-4F1E-B999-6C68D3AE7390}) (Version: 14.2 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X4 - PP (HKLM\...\{7F05E704-30A6-421A-97A7-8EEB1C7FF014}) (Version: 14.2 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X4 - VBA (HKLM\...\{BF439B41-0252-48DE-8B8B-0430CB26A181}) (Version: 14.2 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X4 (HKLM\...\{7F05E704-30A6-421A-97A7-8EEB1C7FF000}) (Version: 14.2 - Corel Corporation) Hidden
CorelDRAW(R) Graphics Suite X4 - Windows Shell Extension (HKLM\...\_{CE2DA11A-917F-4CF5-AB55-755EC115DD10}) (Version:  - Corel Corporation)
CorelDRAW(R) Graphics Suite X4 - Windows Shell Extension (HKLM\...\{CE2DA11A-917F-4CF5-AB55-755EC115DD10}) (Version: 1.1 - Corel Corporation) Hidden
CorelDRAW(R) Graphics Suite X4 (HKLM\...\_{7F05E704-30A6-421A-97A7-8EEB1C7FF010}) (Version:  - Corel Corporation)
CrystalDiskInfo 5.6.2 Shizuku Edition (HKLM\...\CrystalDiskInfo_is1) (Version: 5.6.2 - Crystal Dew World)
Desinstalador de impresoras EPSON TX420W Series (HKLM\...\EPSON TX420W Series) (Version:  - SEIKO EPSON Corporation)
Diner Dash 2 Restaurant Rescue (HKLM\...\WT087536) (Version: 2.2.0.95 - WildTangent) Hidden
Dora's World Adventure (HKLM\...\WT087343) (Version: 2.2.0.95 - WildTangent) Hidden
Dotfuscator and Analytics Community Edition (HKLM\...\{372D17F6-A54E-4A01-B264-1314890FFE61}) (Version: 5.5.4521.29298 - PreEmptive Solutions) Hidden
Easy Photo Scan (HKLM\...\{93AEF2AF-86FB-42AD-8392-5DAEC0638B1A}) (Version: 1.00.0012 - Seiko Epson Corporation)
Energy Star Digital Logo (HKLM\...\{BD1A34C9-4764-4F79-AE1F-112F8C89D3D4}) (Version: 1.0.1 - Hewlett-Packard)
Entity Framework Designer para Visual Studio 2012 - ESN (HKLM\...\{B097793A-07F5-4781-BEE6-C4B14559FC4E}) (Version: 11.1.20702.00 - Microsoft Corporation)
Epson Event Manager (HKLM\...\{B1765501-59E8-4395-BF00-8A2C1F1FC1E0}) (Version: 3.10.0091 - Seiko Epson Corporation)
EPSON L3150 Series Printer Uninstall (HKLM\...\EPSON L3150 Series) (Version:  - Seiko Epson Corporation)
Epson Printer Connection Checker (HKLM\...\{189DE071-E0BC-4BA5-8E34-83D5ED12600B}) (Version: 3.2.0.0 - Seiko Epson Corporation)
EPSON Scan (HKLM\...\EPSON Scanner) (Version:  - Seiko Epson Corporation)
Epson Scan 2 (HKLM\...\Epson Scan 2) (Version:  - Seiko Epson Corporation)
EPSON Scan OCR Component (HKLM\...\{563B99D8-8895-4E3E-AE8D-15BE8C05F1C1}) (Version: 3.00.04 - SEIKO EPSON Corp.)
EPSON Scan PDF Extensions (HKLM\...\{F9956472-6E16-4F83-BF9A-F887EF4A45B7}) (Version: 1.03.0001 - SEIKO EPSON Corp.)
Epson Software Updater (HKLM\...\{1028AD34-EB8A-4136-9A93-27FC60FD0A40}) (Version: 4.4.11 - Seiko Epson Corporation)
EpsonNet Print (HKLM\...\{96ED1D58-440C-4345-8FEE-C4781366C67F}) (Version: 3.1.4.0 - SEIKO EPSON Corporation)
EpsonNet Setup 3.3 (HKLM\...\{C9D8A041-2963-4B31-8FFC-1500F3DB9293}) (Version: 3.3b - SEIKO EPSON CORPORATION)
ESU for Microsoft Windows 7 (HKLM\...\{3877C901-7B90-4727-A639-B6ED2DD59D43}) (Version: 1.0.0 - Hewlett-Packard)
Farm Frenzy (HKLM\...\WT089328) (Version: 2.2.0.95 - WildTangent) Hidden
FATE - The Traitor Soul (HKLM\...\WT089470) (Version: 2.2.0.95 - WildTangent) Hidden
FileZilla Client 3.8.1 (HKLM\...\FileZilla Client) (Version: 3.8.1 - Tim Kosse)
Final Drive Nitro (HKLM\...\WT089504) (Version: 2.2.0.95 - WildTangent) Hidden
Google Chrome (HKU\S-1-5-21-4047135609-2362062722-1061616882-1001\...\Google Chrome) (Version: 91.0.4472.124 - Google LLC)
Hard Disk Low Level Format Tool 4.40 (HKLM\...\Hard Disk Low Level Format Tool_is1) (Version:  - HDDGURU)
Hard Disk Sentinel PRO (HKLM\...\Hard Disk Sentinel_is1) (Version: 5.00 - Janos Mathe)
Herramientas de recopilación de Microsoft Visual Studio 2012 - ESN (HKLM\...\{8FE669A0-050D-4C07-9623-1B2AF2D453FD}) (Version: 11.0.50727 - Microsoft Corporation) Hidden
Herramientas de recopilación de rendimiento de Microsoft Visual Studio 2012 (HKLM\...\{DE1F7DBC-1C0E-44F4-A0B6-BF45A9B2046B}) (Version: 11.0.50727 - Microsoft Corporation) Hidden
HP Connection Manager (HKLM\...\{795AADBF-58C2-42D0-B779-E730702A247E}) (Version: 4.0.45.1 - Hewlett-Packard Company)
HP Deskjet 2050 J510 series Ayuda (HKLM\...\{7A3DF2E2-CF13-44FB-A93E-F71D5381DB3F}) (Version: 140.0.61.61 - Hewlett Packard)
HP Deskjet 2050 J510 series Estudio para la mejora del producto (HKLM\...\{2ED491F9-E343-45CC-A624-B538615FAABD}) (Version: 28.0.1313.0 - Hewlett-Packard Co.)
HP Deskjet 2050 J510 series Software básico del dispositivo (HKLM\...\{A3FF4458-CC45-4EBC-A7C3-0A843BDC9177}) (Version: 28.0.1313.0 - Hewlett-Packard Co.)
HP Documentation (HKLM\...\{B86FB076-3531-4AF4-86CC-68CA36BFF48A}) (Version: 1.1.0.0 - Hewlett-Packard)
HP Games (HKLM\...\WildTangent hp Master Uninstall) (Version: 1.0.2.4 - WildTangent)
HP On Screen Display (HKLM\...\{9B9B8EE4-2EDB-41C2-AF2E-63E75D37CDDF}) (Version: 1.1.2 - Hewlett-Packard Company)
HP Photo Creations (HKLM\...\HP Photo Creations) (Version: 1.0.0.7702 - HP)
HP Power Manager (HKLM\...\{D8BCE5B9-67CF-4F3F-93AE-3ACC754C72EB}) (Version: 1.4.7 - Hewlett-Packard Company)
HP Quick Launch (HKLM\...\{EB58480C-0721-483C-B354-9D35A147999F}) (Version: 2.3.6 - Hewlett-Packard Company)
HP Setup (HKLM\...\{210A03F5-B2ED-4947-B27E-516F50CBB292}) (Version: 8.6.4530.3651 - Hewlett-Packard Company)
HP Setup Manager (HKLM\...\{AE856388-AFAD-4753-81DF-D96B19D0A17C}) (Version: 1.1.13253.3682 - Hewlett-Packard Company)
HP Software Framework (HKLM\...\{2BC49E1C-8655-478B-9412-865C633671EE}) (Version: 4.0.110.1 - Hewlett-Packard Company)
HP Update (HKLM\...\{912D30CF-F39E-4B31-AD9A-123C6B794EE2}) (Version: 5.005.002.002 - Hewlett-Packard)
IDT Audio (HKLM\...\{E3A5A8AB-58F6-45FF-AFCB-C9AE18C05001}) (Version: 1.0.6319.0 - IDT)
IIS 8.0 Express (HKLM\...\{B8FFB7D6-6ABD-47C3-8BAD-86FF5D8F3EDC}) (Version: 8.0.1557 - Microsoft Corporation)
IIS Express Application Compatibility Database for x86 (HKLM\...\{fdfba1f3-74ae-4255-9c10-a0f552b4610f}.sdb) (Version:  - )
Jasc Animation Shop 3 (HKLM\...\{7C4196CA-CA41-4F34-9C08-7724E7705D52}) (Version: 3.11 - Jasc Software Inc)
Java 8 Update 181 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F32180181F0}) (Version: 8.0.1810.13 - Oracle Corporation)
JP (HKLM\...\{63842FE6-9CF5-4EB9-AB57-8352523C2D11}) (Version: 14.2 - Corel Corporation) Hidden
LocalESPC (HKLM\...\{BDBE5D2A-AAB7-77BD-7A0E-5006665CE7C6}) (Version: 8.59.25584 - Microsoft Corporation) Hidden
LocalESPCui for es-es (HKLM\...\{4ED22240-0F24-C32A-188C-A481B2781B25}) (Version: 8.59.25584 - Microsoft) Hidden
Mah Jong Medley (HKLM\...\WT087393) (Version: 2.2.0.95 - WildTangent) Hidden
Malwarebytes version 4.3.0.98 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.3.0.98 - Malwarebytes)
Microsoft .NET Framework 4 Multi-Targeting Pack (HKLM\...\{CFEF48A8-BFB8-3EAC-8BA5-DE4F8AA267CE}) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4.5 Multi-Targeting Pack (HKLM\...\{5CBFF3F3-2D40-34EE-BCA5-A95BC19E400D}) (Version: 4.5.50709 - Microsoft Corporation)
Microsoft .NET Framework 4.5 SDK - Paquete de idioma ESN (HKLM\...\{DAA3E771-CB41-40A4-8AAF-258BA650B0AA}) (Version: 4.5.50709 - Microsoft Corporation)
Microsoft .NET Framework 4.5 SDK (HKLM\...\{1948E039-EC79-4591-951D-9867A8C14C90}) (Version: 4.5.50709 - Microsoft Corporation)
Microsoft .NET Framework 4.6.1 (español) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 3082) (Version: 4.6.01055 - Microsoft Corporation)
Microsoft .NET Framework 4.6.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.6.01055 - Microsoft Corporation)
Microsoft ASP.NET MVC 3 - ESN (HKLM\...\{79B56745-1296-490E-86A7-AE07A034AB26}) (Version: 3.0.20105.0 - Microsoft Corporation)
Microsoft ASP.NET MVC 3 (HKLM\...\{DCDEC776-BADD-48B9-8F9A-DFF513C3D7FA}) (Version: 3.0.20105.0 - Microsoft Corporation)
Microsoft ASP.NET Web Pages - ESN (HKLM\...\{9763733B-6453-4EC3-BFD2-92FB60889204}) (Version: 1.0.20105.0 - Microsoft Corporation)
Microsoft ASP.NET Web Pages (HKLM\...\{631471BE-DEAB-454B-A9AC-CE3EB42C28B3}) (Version: 1.0.20105.0 - Microsoft Corporation)
Microsoft Help Viewer 1.1 (HKLM\...\Microsoft Help Viewer 1.1) (Version: 1.1.40219 - Microsoft Corporation)
Microsoft Help Viewer 1.1 Language Pack - ESN (HKLM\...\Microsoft Help Viewer 1.1 Language Pack - ESN) (Version: 1.1.40219 - Microsoft Corporation)
Microsoft Help Viewer 2.0 (HKLM\...\Microsoft Help Viewer 2.0) (Version: 2.0.50727 - Microsoft Corporation)
Microsoft Office Enterprise 2007 (HKLM\...\ENTERPRISE) (Version: 12.0.4518.1014 - Microsoft Corporation)
Microsoft Report Viewer 2012 Runtime (HKLM\...\{4DFCF0E6-889B-40E4-8AB2-B2641DB08CF2}) (Version: 11.0.2100.60 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.10411.0 - Microsoft Corporation)
Microsoft Silverlight 4 SDK - Español (HKLM\...\{D58ED42D-08B2-460F-87DC-F80AAC3A8FED}) (Version: 4.0.60310.0 - Microsoft Corporation)
Microsoft Silverlight 5 SDK - ESN (HKLM\...\{8CD5ABF3-C30B-4A94-811F-0A2C5510B72C}) (Version: 5.0.61118.0 - Microsoft Corporation)
Microsoft SQL Server 2005 (HKLM\...\Microsoft SQL Server 2005) (Version:  - Microsoft Corporation)
Microsoft SQL Server 2012 (HKLM\...\Microsoft SQL Server SQLServer2012) (Version:  - Microsoft Corporation)
Microsoft SQL Server 2012 Data-Tier App Framework  (HKLM\...\{FBA6F90E-36EC-4FC9-9B25-3834E3BD46A8}) (Version: 11.0.2316.0 - Microsoft Corporation)
Microsoft SQL Server 2012 Express LocalDB  (HKLM\...\{F95C77E7-7194-4EAF-AB58-1E270838ED0C}) (Version: 11.0.2100.60 - Microsoft Corporation)
Microsoft SQL Server 2012 Management Objects  (HKLM\...\{E0476CC7-E960-49B8-AAC1-7F95931A3E6B}) (Version: 11.0.2100.60 - Microsoft Corporation)
Microsoft SQL Server 2012 Native Client  (HKLM\...\{DEDD3877-0BDD-4A02-A50B-FCB8E540D308}) (Version: 11.0.2100.60 - Microsoft Corporation)
Microsoft SQL Server 2012 Setup (English) (HKLM\...\{FEC535DD-0EB2-4709-87BD-1708C6364EB6}) (Version: 11.1.3128.0 - Microsoft Corporation)
Microsoft SQL Server 2012 Transact-SQL Compiler Service  (HKLM\...\{EAFF79EE-2F4F-48F0-98DD-E8AEC4D0FF2F}) (Version: 11.0.2100.60 - Microsoft Corporation)
Microsoft SQL Server 2012 Transact-SQL ScriptDom  (HKLM\...\{5467995B-2F91-484E-BB7D-4AB9B83B6698}) (Version: 11.0.2100.60 - Microsoft Corporation)
Microsoft SQL Server Compact 4.0 SP1 ESN (HKLM\...\{A0B1FC80-5965-4021-9048-5FA9590D535C}) (Version: 4.0.8876.1 - Microsoft Corporation)
Microsoft SQL Server Data Tools - ESN (11.1.20627.00) (HKLM\...\{1E8D35CF-17C5-41D7-ADF8-F9979AB271B1}) (Version: 11.1.20627.00 - Microsoft Corporation)
Microsoft SQL Server Data Tools Build Utilities - ESN (11.1.20627.00) (HKLM\...\{DF5FCA82-ABFC-4DA4-A456-6AD0083746BD}) (Version: 11.1.20627.00 - Microsoft Corporation)
Microsoft SQL Server Native Client (HKLM\...\{BD68F46D-8A82-4664-8E68-F87C55BDEFD4}) (Version: 9.00.4035.00 - Microsoft Corporation)
Microsoft SQL Server Setup Support Files (English) (HKLM\...\{53F5C3EE-05ED-4830-994B-50B2F0D50FCE}) (Version: 9.00.4035.00 - Microsoft Corporation)
Microsoft SQL Server System CLR Types (HKLM\...\{CCFC9464-0232-4879-9366-A0F5782A4303}) (Version: 10.51.2500.0 - Microsoft Corporation)
Microsoft System CLR Types para SQL Server 2012 (HKLM\...\{247E8762-752C-4F2C-9CE2-A2BE787A1C19}) (Version: 11.0.2100.60 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4974 (HKLM\...\{B7E38540-E355-3503-AFD7-635B2F2F76E1}) (Version: 9.0.30729.4974 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Runtime - 10.0.40219 (HKLM\...\{5D9ED403-94DE-3BA0-B1D6-71F4BDA412E6}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM\...\{e6edaf4d-f9a1-4023-be00-d6189343feb9}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40660 (HKLM\...\{61087a79-ac85-455c-934d-1fa22cc64f36}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x86) - 14.15.26706 (HKLM\...\{7e9fae12-5bbf-47fb-b944-09c49e75c061}) (Version: 14.15.26706.0 - Microsoft Corporation)
Microsoft Visual C++ 6.0 Standard Edition (HKLM\...\Visual C++ 6.0 Standard Edition) (Version:  - )
Microsoft Visual Studio 2010 Shell (Isolated) - ESN (HKLM\...\{A699E037-91E1-307F-A03F-2C31A57044B5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x86) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x86)) (Version: 10.0.31125 - Microsoft Corporation)
Microsoft Visual Studio Ultimate 2012 (HKLM\...\{3b2a15a2-e949-44d6-b3ad-2808a647209b}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft VSS Writer para SQL Server 2012 (HKLM\...\{F3F69028-4946-435A-BE9B-8C95A525CEC4}) (Version: 11.0.2100.60 - Microsoft Corporation)
Microsoft Web Deploy dbSqlPackage Provider - ESN (HKLM\...\{F07BB259-CA70-4443-9E32-7B1F3F2703C7}) (Version: 10.3.20225.0 - Microsoft Corporation)
Microsoft Web Platform Installer 4.0 (HKLM\...\{1F4DF099-EA5C-482D-9901-C0A8B539B417}) (Version: 4.0.1622 - Microsoft Corporation)
Microsoft WSE 3.0 Runtime (HKLM\...\{E3E71D07-CD27-46CB-8448-16D4FB29AA13}) (Version: 3.0.5305.0 - Microsoft Corp.)
Minimal ADB and Fastboot version 1.1.3 (HKLM\...\{DE46417A-9E9E-4BCD-BBDD-DA21943193BB}_is1) (Version: 1.1.3 - )
Mozilla Firefox 79.0 (x86 es-ES) (HKLM\...\Mozilla Firefox 79.0 (x86 es-ES)) (Version: 79.0 - Mozilla)
MSVC90_x86 (HKLM\...\{AF111648-99A1-453E-81DD-80DBBF6DAD0D}) (Version: 1.0.1.2 - Nokia) Hidden
MSXML 4.0 SP3 Parser (HKLM\...\{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation)
Mystery P.I. - Stolen in San Francisco (HKLM\...\WT089496) (Version: 2.2.0.95 - WildTangent) Hidden
Namco All-Stars PAC-MAN (HKLM\...\WT089484) (Version: 2.2.0.95 - WildTangent) Hidden
Objetos de administración de Microsoft SQL Server 2008 R2 (HKLM\...\{F3AA3A37-8593-4488-AF63-43E25C021CB8}) (Version: 10.51.2500.0 - Microsoft Corporation)
Paquete de controladores de Windows - Google, Inc. (WinUSB) AndroidUsbDeviceClass  (12/06/2010 4.0.0000.00000) (HKLM\...\76F6B4A696B8C9A7ACFF01D4E1D6EF2D974C3E67) (Version: 12/06/2010 4.0.0000.00000 - Google, Inc.)
Paquete de controladores de Windows - MediaTek Inc. (usbser) Ports  (01/05/2012 2.0000.0.1) (HKLM\...\49D9ABA9270C5BDFD7AE1BEB607D36B26BB90235) (Version: 01/05/2012 2.0000.0.1 - MediaTek Inc.)
Paquete de controladores de Windows - MediaTek Inc. (usbser) Ports  (09/01/2011 2.0.1136.0) (HKLM\...\32DC281B7E359EA3D16ECC7D98609F6A592B981D) (Version: 09/01/2011 2.0.1136.0 - MediaTek Inc.)
Paquete de controladores de Windows - MediaTek Inc. (usbser) Ports  (12/24/2011 2.0000.0.0) (HKLM\...\D0E6296D177F42BB31C0200E49412003DB6C4633) (Version: 12/24/2011 2.0000.0.0 - MediaTek Inc.)
Paquete de controladores de Windows - MediaTek Inc. Net  (07/14/2011 1.1129.00) (HKLM\...\8BC3CF920AF63C7AEF78B82D1C60D94704FB95CD) (Version: 07/14/2011 1.1129.00 - MediaTek Inc.)
Paquete de controladores de Windows - Microsoft (WUDFRd) WPD  (02/22/2006 5.2.5326.4762) (HKLM\...\B77DDB8A5697AAF5DA4E4859E53C301B877DD206) (Version: 02/22/2006 5.2.5326.4762 - Microsoft)
Paquete de idioma de Dotfuscator and Analytics Community Edition (HKLM\...\{0490B3DE-AE17-4B17-957C-CA4800786E57}) (Version: 5.5.4521.29298 - PreEmptive Solutions) Hidden
Paquete de idioma de Guiones gráficos de Microsoft Visual Studio Team Foundation Server 2012 - ESN (HKLM\...\{A723EE0E-87BC-3091-A18B-BF4167063268}) (Version: 11.0.50727 - Microsoft Corporation) Hidden
Paquete de idioma de Microsoft Visual Studio 2010 Tools para Office Runtime (x86) - ESN (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x86) Language Pack - ESN) (Version: 10.0.31125 - Microsoft Corporation)
Paquete de idioma de Microsoft Visual Studio 2012 SharePoint Developer Tools - ESN (HKLM\...\{A222A7F1-F92C-3A4F-BB14-D5F930A95C15}) (Version: 11.0.50727 - Microsoft Corporation) Hidden
Paquete de idioma de Microsoft Visual Studio Team Foundation Server 2012 Team Explorer - ESN (HKLM\...\{6102FAC5-84EA-3E3F-9D45-3E9ADD8EEC72}) (Version: 11.0.50727 - Microsoft Corporation) Hidden
Paquete de idioma de Visor de Ayuda de Microsoft 2.0 - ESN (HKLM\...\{53436849-2E5A-3433-A5BE-F7A10403C651}) (Version: 2.0.50727 - Microsoft Corporation) Hidden
Paquete de idioma de Visor de Ayuda de Microsoft 2.0 - ESN (HKLM\...\Paquete de idioma de Visor de Ayuda de Microsoft 2.0 - ESN) (Version: 2.0.50727 - Microsoft Corporation)
Paquete de idioma del modelo de objetos de Microsoft Visual Studio Team Foundation Server 2012 - ESN (HKLM\...\{1B7D2538-6F11-3265-9D8E-36B988CCF129}) (Version: 11.0.50727 - Microsoft Corporation) Hidden
PC Connectivity Solution (HKLM\...\{644F4910-E812-49AD-93EC-86828CB81A0D}) (Version: 12.0.27.0 - Nokia)
PDF Settings CS6 (HKLM\...\{BFEAAE77-BD7F-4534-B286-9C5CB4697EB1}) (Version: 11.0 - Adobe Systems Incorporated) Hidden
Penguins! (HKLM\...\WT087394) (Version: 2.2.0.95 - WildTangent) Hidden
Plants vs. Zombies - Game of the Year (HKLM\...\WT089458) (Version: 2.2.0.95 - WildTangent) Hidden
Poker Superstars III (HKLM\...\WT087395) (Version: 2.2.0.95 - WildTangent) Hidden
Polar Bowler (HKLM\...\WT087396) (Version: 2.2.0.95 - WildTangent) Hidden
Polar Golfer (HKLM\...\WT087397) (Version: 2.2.0.95 - WildTangent) Hidden
PreEmptive Analytics Client Spanish Language Pack (HKLM\...\{BDBBC90D-79EE-4E48-ACED-BF03F87F9412}) (Version: 1.0.2180.1 - PreEmptive Solutions) Hidden
PreEmptive Analytics Visual Studio Components (HKLM\...\{2C76E3DA-BA76-4FAD-B1B1-72B46D639028}) (Version: 1.0.2180.1 - PreEmptive Solutions) Hidden
Preparación de Microsoft Visual Studio 2012 (HKLM\...\{FCB7FB51-4A6F-4F09-BD4A-162832066E16}) (Version: 11.0.50727 - Microsoft Corporation) Hidden
Realtek Ethernet Controller Driver (HKLM\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.40.126.2011 - Realtek)
Realtek PCIE Card Reader (HKLM\...\{C1594429-8296-4652-BF54-9DBE4932A44C}) (Version: 6.1.7601.83 - Realtek Semiconductor Corp.)
Recovery Manager (HKLM\...\{DBCD5E64-7379-4648-9444-8A6558DCB614}) (Version: 2.0.0 - Hewlett-Packard) Hidden
Recursos (mínimos) de Microsoft Visual Studio 2012 Shell (HKLM\...\{04D5FF83-C0AC-48AB-A685-287BEC407007}) (Version: 11.0.50727 - Microsoft Corporation) Hidden
Recursos DevEnv de Microsoft Visual Studio 2012 (HKLM\...\{10D4450A-2985-4C2C-A0E4-0622EB094FE8}) (Version: 11.0.50727 - Microsoft Corporation) Hidden
Requisitos previos para SSDT  (HKLM\...\{42335F51-334C-4805-9FFC-3A33F40A245D}) (Version: 11.0.2100.60 - Microsoft Corporation)
Sentinel HASP Run-time (HKLM\...\{2A414CBE-CDF3-48C6-A91B-D3D4522F8EB5}) (Version: 5.10.1.17163 - SafeNet Inc.)
Servicio de lenguaje T-SQL de Microsoft SQL Server 2012  (HKLM\...\{0E22C06E-DCC1-48D6-9A47-3671F673B8C1}) (Version: 11.0.2100.60 - Microsoft Corporation)
ShadowExplorer 0.9 (HKLM\...\ShadowExplorer_is1) (Version: 0.9.462.0 - ShadowExplorer.com)
Slingo Supreme (HKLM\...\WT089457) (Version: 2.2.0.95 - WildTangent) Hidden
Spybot - Search & Destroy (HKLM\...\{B4092C6D-E886-4CB2-BA68-FE5A99D31DE7}_is1) (Version: 2.7.64.0 - Safer-Networking Ltd.)
SpyHunter 5 (HKLM\...\SpyHunter5) (Version: 5.10.10.233 - EnigmaSoft Limited)
SpywareBlaster 6.0 (HKLM\...\SpywareBlaster_is1) (Version: 6.0.0 - BrightFort LLC)
SQL Server 2012 Common Files (HKLM\...\{4E680CBF-46E9-409C-A081-BF86191C60F0}) (Version: 11.0.2100.60 - Microsoft Corporation) Hidden
SQL Server 2012 Common Files (HKLM\...\{7D29ED63-84F9-4EC7-B49F-994A3A3195B2}) (Version: 11.0.2100.60 - Microsoft Corporation) Hidden
SQL Server 2012 Database Engine Services (HKLM\...\{C22613C2-C7A4-4761-A906-116ECD4E7477}) (Version: 11.0.2100.60 - Microsoft Corporation) Hidden
SQL Server 2012 Database Engine Shared (HKLM\...\{3A92C6F9-7C90-4793-8798-A2CF709DBBCD}) (Version: 11.0.2100.60 - Microsoft Corporation) Hidden
SQL Server 2012 Database Engine Shared (HKLM\...\{54F84805-0116-467F-8713-899DFC472235}) (Version: 11.0.2100.60 - Microsoft Corporation) Hidden
SQL Server 2012 Management Studio (HKLM\...\{95D27862-F2BD-4A26-9E7B-6994B0B7F390}) (Version: 11.0.2100.60 - Microsoft Corporation) Hidden
SQL Server 2012 Management Studio (HKLM\...\{CB1177DD-0316-4C93-A5AE-BBF1E2B7F07E}) (Version: 11.0.2100.60 - Microsoft Corporation) Hidden
SQL Server Browser para SQL Server 2012 (HKLM\...\{7C219CA2-CBA3-4F34-8EE2-E12AAFC30D93}) (Version: 11.0.2100.60 - Microsoft Corporation)
Sql Server Customer Experience Improvement Program (HKLM\...\{30CA21F2-901A-44DB-A43F-FC31CD0F2493}) (Version: 11.0.2100.60 - Microsoft Corporation) Hidden
StarterBackgroundChanger (HKLM\...\StarterBackgroundChanger) (Version: 0.9.0.0 - Renaud Gerson)
Sublime Text 3 (HKLM\...\Sublime Text 3_is1) (Version:  - Sublime HQ Pty Ltd)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 15.2.4.4 - Synaptics Incorporated)
UltData for Android 6.5.1.0 (HKLM\...\{UltData for Android}_is1) (Version: 6.5.1.0 - Tenorshare, Inc.)
Universal Adb Driver (HKLM\...\{D9C4202E-6D51-4B06-A8F1-22316E654BCA}) (Version: 1.0.0 - ClockworkMod)
Utilidades línea de comandos de Microsoft SQL Server 2012  (HKLM\...\{F24C7EEF-FBB8-49B9-9855-E313C0CF96AC}) (Version: 11.0.2100.60 - Microsoft Corporation)
Virtual Villagers 4 - The Tree of Life (HKLM\...\WT089307) (Version: 2.2.0.95 - WildTangent) Hidden
WCF Data Services 5.0 (for OData v3) ESN Language Pack (HKLM\...\{AB30E5D9-2BBF-4C75-B2B3-2EFC89CEE4DD}) (Version: 5.0.50628.0 - Microsoft Corporation) Hidden
WCF Data Services 5.0 (for OData v3) Primary Components (HKLM\...\{0BCC836F-0B28-4090-B58A-64883BAA3B2F}) (Version: 5.0.50628.0 - Microsoft Corporation) Hidden
WCF Data Services Tools for Microsoft Visual Studio 2012 (HKLM\...\{148878BD-A2A5-4CF1-A103-2BA632F41953}) (Version: 5.0.50710.0 - Microsoft Corporation) Hidden
WCF Data Services Tools for Visual Studio 11 ESN Language Pack (HKLM\...\{78B46A74-9844-4C2E-8BBE-DFA72DCB5C3B}) (Version: 5.0.50710.0 - Microsoft Corporation) Hidden
WCF RIA Services V1.0 SP2 (HKLM\...\{3A523AF9-D32F-4C85-8388-0335731F3405}) (Version: 4.1.61829.0 - Microsoft Corporation)
Wilcom EmbroideryStudio (HKLM\...\{83D9307A-2024-4E4A-969E-8B65A1D1BC9A}) (Version: 12.0.0075 - Wilcom)
WMV9/VC-1 Video Playback (HKLM\...\{BEC1B42D-A966-CCFE-C17F-E59DC0842E52}) (Version: 1.0.60228.1156 - ATI Technologies Inc.) Hidden
Wondershare Recoverit(Build 7.3.2.3) (HKLM\...\{829555DC-31E5-4FEA-B350-8FCF24CECD95}_is1) (Version: 7.3.2.3 - Wondershare Software Co.,Ltd.)
Zuma Deluxe (HKLM\...\WT089455) (Version: 2.2.0.95 - WildTangent) Hidden

==================== Personalizado CLSID (Lista blanca): ==============

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)

HKU\S-1-5-21-4047135609-2362062722-1061616882-1001\...\ChromeHTML: -> C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) <==== ATENCIÓN
CustomCLSID: HKU\S-1-5-21-4047135609-2362062722-1061616882-1001_Classes\CLSID\{022105BD-948A-40C9-AB42-A3300DDF097F}\localserver32 -> C:\Users\User\AppData\Local\Google\Update\GoogleUpdate.exe (Google Inc -> Google Inc.)
CustomCLSID: HKU\S-1-5-21-4047135609-2362062722-1061616882-1001_Classes\CLSID\{22181302-A8A6-4F84-A541-E5CBFC70CC43}\localserver32 -> C:\Users\User\AppData\Local\Google\Update\1.3.36.82\GoogleUpdateOnDemand.exe (Google LLC -> Google LLC)
CustomCLSID: HKU\S-1-5-21-4047135609-2362062722-1061616882-1001_Classes\CLSID\{2F0E2680-9FF5-43C0-B76E-114A56E93598}\localserver32 -> C:\Users\User\AppData\Local\Google\Update\1.3.36.82\GoogleUpdateOnDemand.exe (Google LLC -> Google LLC)
CustomCLSID: HKU\S-1-5-21-4047135609-2362062722-1061616882-1001_Classes\CLSID\{6DDCE70D-A4AE-4E97-908C-BE7B2DB750AD}\localserver32 -> C:\Users\User\AppData\Local\Google\Update\1.3.36.82\GoogleUpdateOnDemand.exe (Google LLC -> Google LLC)
CustomCLSID: HKU\S-1-5-21-4047135609-2362062722-1061616882-1001_Classes\CLSID\{85D8EE2F-794F-41F0-BB03-49D56A23BEF4}\InprocServer32 -> C:\Users\User\AppData\Local\Google\Update\1.3.36.82\psuser.dll (Google LLC -> Google LLC)
CustomCLSID: HKU\S-1-5-21-4047135609-2362062722-1061616882-1001_Classes\CLSID\{A2C6CB58-C076-425C-ACB7-6D19D64428CD}\localserver32 -> C:\Users\User\AppData\Local\Google\Chrome\Application\91.0.4472.124\notification_helper.exe (Google LLC -> Google LLC)
CustomCLSID: HKU\S-1-5-21-4047135609-2362062722-1061616882-1001_Classes\CLSID\{CA8FA699-91CD-412F-9D13-9B1222F4370E}\InprocServer32 -> C:\Users\User\AppData\Local\Google\Update\1.3.36.82\psuser.dll (Google LLC -> Google LLC)
CustomCLSID: HKU\S-1-5-21-4047135609-2362062722-1061616882-1001_Classes\CLSID\{E67BE843-BBBE-4484-95FB-05271AE86750}\localserver32 -> C:\Users\User\AppData\Local\Google\Update\1.3.36.82\GoogleUpdateOnDemand.exe (Google LLC -> Google LLC)
CustomCLSID: HKU\S-1-5-21-4047135609-2362062722-1061616882-1001_Classes\CLSID\{e8c77137-e224-5791-b6e9-ff0305797a13}\InprocServer32 -> C:\Program Files\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll (Adobe Inc. -> Adobe Systems)
CustomCLSID: HKU\S-1-5-21-4047135609-2362062722-1061616882-1001_Classes\CLSID\{E8CF3E55-F919-49D9-ABC0-948E6CB34B9F}\InprocServer32 -> C:\Users\User\AppData\Local\Google\Update\1.3.36.82\psuser.dll (Google LLC -> Google LLC)
ShellExecuteHooks: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2210608 2006-10-27] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [   AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files\Common Files\Adobe\CoreSyncExtension\CoreSync_x86.dll [2020-01-07] (Adobe Inc. -> )
ShellIconOverlayIdentifiers: [   AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files\Common Files\Adobe\CoreSyncExtension\CoreSync_x86.dll [2020-01-07] (Adobe Inc. -> )
ShellIconOverlayIdentifiers: [   AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files\Common Files\Adobe\CoreSyncExtension\CoreSync_x86.dll [2020-01-07] (Adobe Inc. -> )
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2021-07-05] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files\Common Files\Adobe\CoreSyncExtension\CoreSync_x86.dll [2020-01-07] (Adobe Inc. -> )
ContextMenuHandlers1: [Atheros] -> {B8952421-0E55-400B-94A6-FA858FC0A39F} => C:\Program Files\Bluetooth Suite\BtvAppExt.dll [2011-03-01] (Atheros Communications Inc. -> Atheros Commnucations) [Archivo no firmado]
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2021-07-05] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [SDECon32] -> {44176360-2BBF-4EC1-93CE-384B8681A0BC} => C:\Program Files\Spybot - Search & Destroy 2\SDECon32.dll [2018-02-06] (Safer-Networking Ltd. -> Safer-Networking Ltd.)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2008-09-16] () [Archivo no firmado]
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2021-07-05] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers3: [FTShellContext] -> {AFF81F7B-6942-40c4-AADA-7214EF7B6DD1} => C:\Program Files\Bluetooth Suite\ShellContextExt.dll [2011-03-01] (Atheros Communications Inc. -> Atheros Commnucations) [Archivo no firmado]
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2021-07-05] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers4: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} =>  -> Ningún archivo
ContextMenuHandlers4: [WinRAR] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2008-09-16] () [Archivo no firmado]
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\atiacmxx.dll [2011-02-28] (Advanced Micro Devices, Inc.) [Archivo no firmado]
ContextMenuHandlers6: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files\Common Files\Adobe\CoreSyncExtension\CoreSync_x86.dll [2020-01-07] (Adobe Inc. -> )
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2021-07-05] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2021-07-05] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers6: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} =>  -> Ningún archivo
ContextMenuHandlers6: [SDECon32] -> {44176360-2BBF-4EC1-93CE-384B8681A0BC} => C:\Program Files\Spybot - Search & Destroy 2\SDECon32.dll [2018-02-06] (Safer-Networking Ltd. -> Safer-Networking Ltd.)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2008-09-16] () [Archivo no firmado]

==================== Codecs (Lista blanca) ====================

(Si una entrada es incluida en el fixlist, el elemento del registro será restaurado a su valor predeterminado o será eliminado. El archivo no será movido.)

HKLM\...\Drivers32: [vidc.VP60] => C:\Windows\system32\vp6vfw.dll [447752 2008-09-04] (Electronic Arts -> On2.com)
HKLM\...\Drivers32: [vidc.VP61] => C:\Windows\system32\vp6vfw.dll [447752 2008-09-04] (Electronic Arts -> On2.com)

==================== Accesos directos & WMI ========================

(Las entradas pueden ser listadas para ser restauradas o eliminadas.)

WMI:subscription\__FilterToConsumerBinding->CommandLineEventConsumer.Name=\"BVTConsumer\"",Filter="__EventFilter.Name=\"BVTFilter\"::
WMI:subscription\__EventFilter->BVTFilter::[Query => SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99]
WMI:subscription\CommandLineEventConsumer->BVTConsumer::[CommandLineTemplate => cscript KernCap.vbs][WorkingDirectory => C:\\tools\\kernrate]
ShortcutWithArgument: C:\Users\User\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\1ec0f72738fb119e\iMacros for Chrome.lnk -> C:\Users\User\AppData\Local\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=cplklnmnlbnpmjogncfgfijoopmnlemp

==================== Módulos cargados (Lista blanca) =============

2011-02-28 05:30 - 2011-02-28 05:30 - 000072192 _____ () [Archivo no firmado] C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Container.Services.dll
2014-06-01 04:38 - 2014-06-01 04:38 - 000035328 _____ () [Archivo no firmado] C:\Program Files\FileZilla FTP Client\fzshellext.dll
2014-05-24 12:11 - 2014-05-24 12:11 - 000091648 _____ () [Archivo no firmado] C:\Program Files\FileZilla FTP Client\libgcc_s_sjlj-1.dll
2014-05-24 12:11 - 2014-05-24 12:11 - 000892416 _____ () [Archivo no firmado] C:\Program Files\FileZilla FTP Client\libstdc++-6.dll
2011-10-09 12:25 - 2008-09-16 20:48 - 000132608 _____ () [Archivo no firmado] C:\Program Files\WinRAR\rarext.dll
2020-03-29 23:30 - 2018-03-29 17:23 - 000176128 _____ () [Archivo no firmado] C:\xampp\apache\bin\libssh2.dll
2020-03-29 23:30 - 2018-03-22 08:17 - 000344064 _____ () [Archivo no firmado] C:\xampp\apache\bin\pcre.dll
2020-03-29 23:35 - 2018-03-29 17:23 - 000144384 _____ () [Archivo no firmado] C:\xampp\php\libpq.dll
2010-06-16 22:51 - 2010-06-16 22:51 - 000101376 _____ (Advanced Micro Devices) [Archivo no firmado] C:\Program Files\ATI Technologies\ATI.ACE\Reservation Manager\XML_RPC_DLL.dll
2011-02-28 05:15 - 2011-02-28 05:15 - 000654336 _____ (Advanced Micro Devices, Inc.) [Archivo no firmado] C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\atiacmxx.dll
2011-02-28 05:14 - 2011-02-28 05:14 - 000003072 _____ (Advanced Micro Devices, Inc.) [Archivo no firmado] C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\atiamesp.dll
2020-03-29 23:30 - 2018-03-22 09:04 - 000159744 _____ (Apache Software Foundation) [Archivo no firmado] C:\xampp\apache\bin\libapr-1.dll
2020-03-29 23:30 - 2018-03-22 09:04 - 000027136 _____ (Apache Software Foundation) [Archivo no firmado] C:\xampp\apache\bin\libapriconv-1.dll
2020-03-29 23:30 - 2018-03-22 09:05 - 000229888 _____ (Apache Software Foundation) [Archivo no firmado] C:\xampp\apache\bin\libaprutil-1.dll
2020-03-29 23:30 - 2018-03-22 09:05 - 000358912 _____ (Apache Software Foundation) [Archivo no firmado] C:\xampp\apache\bin\libhttpd.dll
2020-03-29 23:31 - 2018-03-22 08:55 - 000012288 _____ (Apache Software Foundation) [Archivo no firmado] C:\xampp\apache\modules\mod_access_compat.so
2020-03-29 23:31 - 2018-03-22 08:55 - 000011264 _____ (Apache Software Foundation) [Archivo no firmado] C:\xampp\apache\modules\mod_actions.so
2020-03-29 23:31 - 2018-03-22 08:55 - 000015360 _____ (Apache Software Foundation) [Archivo no firmado] C:\xampp\apache\modules\mod_alias.so
2020-03-29 23:31 - 2018-03-22 08:55 - 000009728 _____ (Apache Software Foundation) [Archivo no firmado] C:\xampp\apache\modules\mod_allowmethods.so
2020-03-29 23:31 - 2018-03-22 08:55 - 000010752 _____ (Apache Software Foundation) [Archivo no firmado] C:\xampp\apache\modules\mod_asis.so
2020-03-29 23:31 - 2018-03-22 08:55 - 000014336 _____ (Apache Software Foundation) [Archivo no firmado] C:\xampp\apache\modules\mod_auth_basic.so
2020-03-29 23:31 - 2018-03-22 08:55 - 000011776 _____ (Apache Software Foundation) [Archivo no firmado] C:\xampp\apache\modules\mod_authn_core.so
2020-03-29 23:31 - 2018-03-22 08:55 - 000011264 _____ (Apache Software Foundation) [Archivo no firmado] C:\xampp\apache\modules\mod_authn_file.so
2020-03-29 23:31 - 2018-03-22 08:55 - 000018944 _____ (Apache Software Foundation) [Archivo no firmado] C:\xampp\apache\modules\mod_authz_core.so
2020-03-29 23:31 - 2018-03-22 08:55 - 000012800 _____ (Apache Software Foundation) [Archivo no firmado] C:\xampp\apache\modules\mod_authz_groupfile.so
2020-03-29 23:31 - 2018-03-22 08:55 - 000012800 _____ (Apache Software Foundation) [Archivo no firmado] C:\xampp\apache\modules\mod_authz_host.so
2020-03-29 23:31 - 2018-03-22 08:55 - 000010240 _____ (Apache Software Foundation) [Archivo no firmado] C:\xampp\apache\modules\mod_authz_user.so
2020-03-29 23:31 - 2018-03-22 08:55 - 000030208 _____ (Apache Software Foundation) [Archivo no firmado] C:\xampp\apache\modules\mod_autoindex.so
2020-03-29 23:31 - 2018-03-22 08:55 - 000048128 _____ (Apache Software Foundation) [Archivo no firmado] C:\xampp\apache\modules\mod_cache.so
2020-03-29 23:31 - 2018-03-22 08:56 - 000024064 _____ (Apache Software Foundation) [Archivo no firmado] C:\xampp\apache\modules\mod_cache_disk.so
2020-03-29 23:31 - 2018-03-22 08:56 - 000020992 _____ (Apache Software Foundation) [Archivo no firmado] C:\xampp\apache\modules\mod_cgi.so
2020-03-29 23:31 - 2018-03-22 08:55 - 000075776 _____ (Apache Software Foundation) [Archivo no firmado] C:\xampp\apache\modules\mod_dav.so
2020-03-29 23:31 - 2018-03-22 08:56 - 000016384 _____ (Apache Software Foundation) [Archivo no firmado] C:\xampp\apache\modules\mod_dav_lock.so
2020-03-29 23:31 - 2018-03-22 08:56 - 000012800 _____ (Apache Software Foundation) [Archivo no firmado] C:\xampp\apache\modules\mod_dir.so
2020-03-29 23:31 - 2018-03-22 08:56 - 000010752 _____ (Apache Software Foundation) [Archivo no firmado] C:\xampp\apache\modules\mod_env.so
2020-03-29 23:31 - 2018-03-22 08:56 - 000017920 _____ (Apache Software Foundation) [Archivo no firmado] C:\xampp\apache\modules\mod_headers.so
2020-03-29 23:31 - 2018-03-22 08:56 - 000039936 _____ (Apache Software Foundation) [Archivo no firmado] C:\xampp\apache\modules\mod_include.so
2020-03-29 23:31 - 2018-03-22 08:56 - 000023040 _____ (Apache Software Foundation) [Archivo no firmado] C:\xampp\apache\modules\mod_info.so
2020-03-29 23:31 - 2018-03-22 08:56 - 000024064 _____ (Apache Software Foundation) [Archivo no firmado] C:\xampp\apache\modules\mod_isapi.so
2020-03-29 23:31 - 2018-03-22 08:56 - 000025088 _____ (Apache Software Foundation) [Archivo no firmado] C:\xampp\apache\modules\mod_log_config.so
2020-03-29 23:31 - 2018-03-22 08:56 - 000016896 _____ (Apache Software Foundation) [Archivo no firmado] C:\xampp\apache\modules\mod_mime.so
2020-03-29 23:31 - 2018-03-22 08:56 - 000029184 _____ (Apache Software Foundation) [Archivo no firmado] C:\xampp\apache\modules\mod_negotiation.so
2020-03-29 23:31 - 2018-03-22 09:03 - 000084480 _____ (Apache Software Foundation) [Archivo no firmado] C:\xampp\apache\modules\mod_proxy.so
2020-03-29 23:31 - 2018-03-22 08:56 - 000033792 _____ (Apache Software Foundation) [Archivo no firmado] C:\xampp\apache\modules\mod_proxy_ajp.so
2020-03-29 23:31 - 2018-03-22 08:56 - 000053760 _____ (Apache Software Foundation) [Archivo no firmado] C:\xampp\apache\modules\mod_rewrite.so
2020-03-29 23:31 - 2018-03-22 08:56 - 000013824 _____ (Apache Software Foundation) [Archivo no firmado] C:\xampp\apache\modules\mod_setenvif.so
2020-03-29 23:31 - 2018-03-22 08:56 - 000019968 _____ (Apache Software Foundation) [Archivo no firmado] C:\xampp\apache\modules\mod_socache_shmcb.so
2020-03-29 23:31 - 2018-03-22 09:00 - 000140800 _____ (Apache Software Foundation) [Archivo no firmado] C:\xampp\apache\modules\mod_ssl.so
2020-03-29 23:31 - 2018-03-22 08:55 - 000021504 _____ (Apache Software Foundation) [Archivo no firmado] C:\xampp\apache\modules\mod_status.so
2020-03-29 23:31 - 2018-03-22 08:55 - 000011264 _____ (Apache Software Foundation) [Archivo no firmado] C:\xampp\apache\modules\mod_version.so
2011-03-01 09:12 - 2011-03-01 09:12 - 000064672 _____ (Atheros Communications Inc. -> Atheros Commnucations) [Archivo no firmado] C:\Program Files\Bluetooth Suite\AthCopyHook.dll
2011-03-01 09:12 - 2011-03-01 09:12 - 000154784 _____ (Atheros Communications Inc. -> Atheros Commnucations) [Archivo no firmado] C:\Program Files\Bluetooth Suite\BtvAppExt.dll
2011-03-01 09:13 - 2011-03-01 09:13 - 000879776 _____ (Atheros Communications Inc. -> Atheros Commnucations) [Archivo no firmado] C:\Program Files\Bluetooth Suite\OutLookLib.dll
2011-03-01 09:13 - 2011-03-01 09:13 - 000244384 _____ (Atheros Communications Inc. -> Atheros Commnucations) [Archivo no firmado] C:\Program Files\Bluetooth Suite\ShellContextExt.dll
2011-07-19 19:11 - 2011-03-01 09:01 - 000400544 _____ (Atheros Communications Inc. -> Atheros) [Archivo no firmado] C:\Windows\system32\athihvs.dll
2014-03-10 03:43 - 2014-03-10 03:43 - 000097280 _____ (Microsoft Corporation) [Archivo no firmado] C:\Windows\WinSxS\x86_microsoft.vc80.atl_1fc8b3b9a1e18e3b_8.0.50727.6229_none_d1c3b2e2435ad752\ATL80.DLL
2014-03-10 03:43 - 2014-03-10 03:43 - 000548864 _____ (Microsoft Corporation) [Archivo no firmado] C:\Windows\WinSxS\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6229_none_d089f796442de10e\MSVCP80.dll
2014-03-10 03:43 - 2014-03-10 03:43 - 000626688 _____ (Microsoft Corporation) [Archivo no firmado] C:\Windows\WinSxS\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6229_none_d089f796442de10e\MSVCR80.dll
2014-03-10 03:43 - 2014-03-10 03:43 - 001093632 _____ (Microsoft Corporation) [Archivo no firmado] C:\Windows\WinSxS\x86_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.6229_none_cbee8c4a4710d003\MFC80U.DLL
2021-07-05 21:51 - 2021-07-05 21:51 - 000000000 ____L (Microsoft Corporation) C:\Program Files\Avast Software\Avast\3082\avast.local_vc142.crt\api-ms-win-core-file-l1-2-0.dll
2021-07-05 21:51 - 2021-07-05 21:51 - 000000000 ____L (Microsoft Corporation) C:\Program Files\Avast Software\Avast\3082\avast.local_vc142.crt\api-ms-win-core-file-l2-1-0.dll
2021-07-05 21:51 - 2021-07-05 21:51 - 000000000 ____L (Microsoft Corporation) C:\Program Files\Avast Software\Avast\3082\avast.local_vc142.crt\api-ms-win-core-localization-l1-2-0.dll
2021-07-05 21:51 - 2021-07-05 21:51 - 000000000 ____L (Microsoft Corporation) C:\Program Files\Avast Software\Avast\3082\avast.local_vc142.crt\api-ms-win-core-processthreads-l1-1-1.dll
2021-07-05 21:51 - 2021-07-05 21:51 - 000000000 ____L (Microsoft Corporation) C:\Program Files\Avast Software\Avast\3082\avast.local_vc142.crt\api-ms-win-core-synch-l1-2-0.dll
2021-07-05 21:51 - 2021-07-05 21:51 - 000000000 ____L (Microsoft Corporation) C:\Program Files\Avast Software\Avast\3082\avast.local_vc142.crt\api-ms-win-core-timezone-l1-1-0.dll
2021-07-05 21:51 - 2021-07-05 21:51 - 000000000 ____L (Microsoft Corporation) C:\Program Files\Avast Software\Avast\3082\avast.local_vc142.crt\api-ms-win-crt-convert-l1-1-0.dll
2021-07-05 21:51 - 2021-07-05 21:51 - 000000000 ____L (Microsoft Corporation) C:\Program Files\Avast Software\Avast\3082\avast.local_vc142.crt\api-ms-win-crt-heap-l1-1-0.dll
2021-07-05 21:51 - 2021-07-05 21:51 - 000000000 ____L (Microsoft Corporation) C:\Program Files\Avast Software\Avast\3082\avast.local_vc142.crt\api-ms-win-crt-runtime-l1-1-0.dll
2021-07-05 21:51 - 2021-07-05 21:51 - 000000000 ____L (Microsoft Corporation) C:\Program Files\Avast Software\Avast\3082\avast.local_vc142.crt\api-ms-win-crt-stdio-l1-1-0.dll
2021-07-05 21:51 - 2021-07-05 21:51 - 000000000 ____L (Microsoft Corporation) C:\Program Files\Avast Software\Avast\3082\avast.local_vc142.crt\api-ms-win-crt-string-l1-1-0.dll
2021-07-05 21:51 - 2021-07-05 21:51 - 000000000 ____L (Microsoft Corporation) C:\Program Files\Avast Software\Avast\3082\avast.local_vc142.crt\ucrtbase.DLL
2021-07-05 21:51 - 2021-07-05 21:51 - 000000000 ____L (Microsoft Corporation) C:\Program Files\Avast Software\Avast\3082\avast.local_vc142.crt\VCRUNTIME140.dll
2021-07-05 22:02 - 2021-07-05 22:02 - 000000000 ____L (Microsoft Corporation) C:\Program Files\Avast Software\Avast\defs\21070506\avast.local_vc142.crt\api-ms-win-core-file-l1-2-0.dll
2021-07-05 22:02 - 2021-07-05 22:02 - 000000000 ____L (Microsoft Corporation) C:\Program Files\Avast Software\Avast\defs\21070506\avast.local_vc142.crt\api-ms-win-core-file-l2-1-0.dll
2021-07-05 22:02 - 2021-07-05 22:02 - 000000000 ____L (Microsoft Corporation) C:\Program Files\Avast Software\Avast\defs\21070506\avast.local_vc142.crt\api-ms-win-core-localization-l1-2-0.dll
2021-07-05 22:02 - 2021-07-05 22:02 - 000000000 ____L (Microsoft Corporation) C:\Program Files\Avast Software\Avast\defs\21070506\avast.local_vc142.crt\api-ms-win-core-processthreads-l1-1-1.dll
2021-07-05 22:02 - 2021-07-05 22:02 - 000000000 ____L (Microsoft Corporation) C:\Program Files\Avast Software\Avast\defs\21070506\avast.local_vc142.crt\api-ms-win-core-synch-l1-2-0.dll
2021-07-05 22:02 - 2021-07-05 22:02 - 000000000 ____L (Microsoft Corporation) C:\Program Files\Avast Software\Avast\defs\21070506\avast.local_vc142.crt\api-ms-win-core-timezone-l1-1-0.dll
2021-07-05 22:02 - 2021-07-05 22:02 - 000000000 ____L (Microsoft Corporation) C:\Program Files\Avast Software\Avast\defs\21070506\avast.local_vc142.crt\api-ms-win-crt-convert-l1-1-0.dll
2021-07-05 22:02 - 2021-07-05 22:02 - 000000000 ____L (Microsoft Corporation) C:\Program Files\Avast Software\Avast\defs\21070506\avast.local_vc142.crt\api-ms-win-crt-environment-l1-1-0.dll
2021-07-05 22:02 - 2021-07-05 22:02 - 000000000 ____L (Microsoft Corporation) C:\Program Files\Avast Software\Avast\defs\21070506\avast.local_vc142.crt\api-ms-win-crt-filesystem-l1-1-0.dll
2021-07-05 22:02 - 2021-07-05 22:02 - 000000000 ____L (Microsoft Corporation) C:\Program Files\Avast Software\Avast\defs\21070506\avast.local_vc142.crt\api-ms-win-crt-heap-l1-1-0.dll
2021-07-05 22:02 - 2021-07-05 22:02 - 000000000 ____L (Microsoft Corporation) C:\Program Files\Avast Software\Avast\defs\21070506\avast.local_vc142.crt\api-ms-win-crt-locale-l1-1-0.dll
2021-07-05 22:02 - 2021-07-05 22:02 - 000000000 ____L (Microsoft Corporation) C:\Program Files\Avast Software\Avast\defs\21070506\avast.local_vc142.crt\api-ms-win-crt-math-l1-1-0.dll
2021-07-05 22:02 - 2021-07-05 22:02 - 000000000 ____L (Microsoft Corporation) C:\Program Files\Avast Software\Avast\defs\21070506\avast.local_vc142.crt\api-ms-win-crt-multibyte-l1-1-0.dll
2021-07-05 22:02 - 2021-07-05 22:02 - 000000000 ____L (Microsoft Corporation) C:\Program Files\Avast Software\Avast\defs\21070506\avast.local_vc142.crt\api-ms-win-crt-runtime-l1-1-0.dll
2021-07-05 22:02 - 2021-07-05 22:02 - 000000000 ____L (Microsoft Corporation) C:\Program Files\Avast Software\Avast\defs\21070506\avast.local_vc142.crt\api-ms-win-crt-stdio-l1-1-0.dll
2021-07-05 22:02 - 2021-07-05 22:02 - 000000000 ____L (Microsoft Corporation) C:\Program Files\Avast Software\Avast\defs\21070506\avast.local_vc142.crt\api-ms-win-crt-string-l1-1-0.dll
2021-07-05 22:02 - 2021-07-05 22:02 - 000000000 ____L (Microsoft Corporation) C:\Program Files\Avast Software\Avast\defs\21070506\avast.local_vc142.crt\api-ms-win-crt-time-l1-1-0.dll
2021-07-05 22:02 - 2021-07-05 22:02 - 000000000 ____L (Microsoft Corporation) C:\Program Files\Avast Software\Avast\defs\21070506\avast.local_vc142.crt\api-ms-win-crt-utility-l1-1-0.dll
2021-07-05 22:02 - 2021-07-05 22:02 - 000000000 ____L (Microsoft Corporation) C:\Program Files\Avast Software\Avast\defs\21070506\avast.local_vc142.crt\MSVCP140.dll
2021-07-05 22:02 - 2021-07-05 22:02 - 000000000 ____L (Microsoft Corporation) C:\Program Files\Avast Software\Avast\defs\21070506\avast.local_vc142.crt\ucrtbase.DLL
2021-07-05 22:02 - 2021-07-05 22:02 - 000000000 ____L (Microsoft Corporation) C:\Program Files\Avast Software\Avast\defs\21070506\avast.local_vc142.crt\VCRUNTIME140.dll
2014-05-24 12:11 - 2014-05-24 12:11 - 000047616 _____ (MingW-W64 Project. All rights reserved.) [Archivo no firmado] C:\Program Files\FileZilla FTP Client\libwinpthread-1.dll
2016-09-14 14:31 - 2016-09-14 14:31 - 000385024 ____S (SEIKO EPSON CORPORATION) [Archivo no firmado] C:\Windows\System32\enppmon.dll
2020-03-29 23:30 - 2017-12-10 09:37 - 001270272 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [Archivo no firmado] C:\xampp\apache\bin\LIBEAY32.dll
2020-03-29 23:30 - 2017-12-10 09:38 - 000279040 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [Archivo no firmado] C:\xampp\apache\bin\SSLEAY32.dll
2020-03-29 23:36 - 2018-03-29 17:23 - 000067584 _____ (The PHP Group) [Archivo no firmado] C:\xampp\php\ext\php_bz2.dll
2020-03-29 23:35 - 2018-03-29 17:23 - 000455168 _____ (The PHP Group) [Archivo no firmado] C:\xampp\php\ext\php_curl.dll
2020-03-29 23:35 - 2018-03-29 17:23 - 000045568 _____ (The PHP Group) [Archivo no firmado] C:\xampp\php\ext\php_exif.dll
2020-03-29 23:35 - 2018-03-29 17:23 - 002870272 _____ (The PHP Group) [Archivo no firmado] C:\xampp\php\ext\php_fileinfo.dll
2020-03-29 23:36 - 2018-03-29 17:23 - 001345536 _____ (The PHP Group) [Archivo no firmado] C:\xampp\php\ext\php_gd2.dll
2020-03-29 23:35 - 2018-03-29 17:23 - 000041984 _____ (The PHP Group) [Archivo no firmado] C:\xampp\php\ext\php_gettext.dll
2020-03-29 23:36 - 2018-03-29 17:23 - 001239040 _____ (The PHP Group) [Archivo no firmado] C:\xampp\php\ext\php_mbstring.dll
2020-03-29 23:35 - 2018-03-29 17:23 - 000037376 _____ (The PHP Group) [Archivo no firmado] C:\xampp\php\ext\php_mysql.dll
2020-03-29 23:35 - 2018-03-29 17:23 - 000090624 _____ (The PHP Group) [Archivo no firmado] C:\xampp\php\ext\php_mysqli.dll
2020-03-29 23:35 - 2018-03-29 17:23 - 000091136 _____ (The PHP Group) [Archivo no firmado] C:\xampp\php\ext\php_openssl.dll
2020-03-29 23:35 - 2018-03-29 17:23 - 000025088 _____ (The PHP Group) [Archivo no firmado] C:\xampp\php\ext\php_pdo_mysql.dll
2020-03-29 23:36 - 2018-03-29 17:23 - 000500736 _____ (The PHP Group) [Archivo no firmado] C:\xampp\php\ext\php_pdo_sqlite.dll
2020-03-29 23:35 - 2018-03-29 17:23 - 000027136 _____ (The PHP Group) [Archivo no firmado] C:\xampp\php\php5apache2_4.dll
2020-03-29 23:35 - 2018-03-29 17:23 - 007176704 _____ (The PHP Group) [Archivo no firmado] C:\xampp\php\php5ts.dll

==================== Alternate Data Streams (Lista blanca) ========

(Si una entrada es incluida en el fixlist, solamente los ADS serán eliminados.)

AlternateDataStreams: C:\ProgramData\Temp:5C321E34 [136]

==================== Modo Seguro (Lista blanca) ==================

(Si una entrada es incluida en el fixlist, será eliminada del registro. El "AlternateShell" será restaurado.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aswSP.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\aswSP.sys => ""="Driver"

continuacion

==================== Asociación (Lista blanca) =================

==================== Internet Explorer (Versión 9) (Lista blanca) ==========

HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://g.msn.com/HPALL/34
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://g.msn.com/HPALL/34
HKU\S-1-5-21-4047135609-2362062722-1061616882-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://securesearch.org/homepage?hp=2&pId=BT171002&iDate=2020-03-25 07:57:57&bName=
HKU\S-1-5-21-4047135609-2362062722-1061616882-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://g.msn.com/HPALL/34
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=HPNTDF&pc=HPNTDF&src=IE-SearchBox
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=HPNTDF&pc=HPNTDF&src=IE-SearchBox
SearchScopes: HKLM -> {b7fca997-d0fb-4fe0-8afd-255e89cf9671} URL = hxxp://pe.search.yahoo.com/search?p={searchTerms}&ei={inputEncoding}&fr=chr-hp-psg&type=HPNTDF
SearchScopes: HKLM -> {d43b3890-80c7-4010-a95d-1e77b5924dc3} URL = hxxp://es.wikipedia.org/wiki/Special:Search?search={searchTerms}
SearchScopes: HKU\S-1-5-21-4047135609-2362062722-1061616882-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=HPNTDF&pc=HPNTDF&src=IE-SearchBox
SearchScopes: HKU\S-1-5-21-4047135609-2362062722-1061616882-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=HPNTDF&pc=HPNTDF&src=IE-SearchBox
SearchScopes: HKU\S-1-5-21-4047135609-2362062722-1061616882-1001 -> {b7fca997-d0fb-4fe0-8afd-255e89cf9671} URL = hxxp://pe.search.yahoo.com/search?p={searchTerms}&ei={inputEncoding}&fr=chr-hp-psg&type=HPNTDF
SearchScopes: HKU\S-1-5-21-4047135609-2362062722-1061616882-1001 -> {d43b3890-80c7-4010-a95d-1e77b5924dc3} URL = hxxp://es.wikipedia.org/wiki/Special:Search?search={searchTerms}
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2006-10-27] (Microsoft Corporation -> Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_181\bin\ssv.dll [2018-07-18] (Oracle America, Inc. -> Oracle Corporation)
BHO: Microsoft Web Test Recorder 10.0 Helper -> {876d9f09-c6d6-4324-a2cc-04dd9a4de12f} -> C:\Program Files\Microsoft Visual Studio 11.0\Common7\IDE\PrivateAssemblies\Microsoft.VisualStudio.QualityTools.RecorderBarBHO100.dll [2012-07-26] (Microsoft Corporation -> Microsoft Corporation)
BHO: CIESpeechBHO Class -> {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} -> C:\Program Files\Bluetooth Suite\IEPlugIn.dll [2011-03-01] (Atheros Communications Inc. -> Atheros Commnucations) [Archivo no firmado]
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_181\bin\jp2ssv.dll [2018-07-18] (Oracle America, Inc. -> Oracle Corporation)
Toolbar: HKU\S-1-5-21-4047135609-2362062722-1061616882-1001 -> Sin Nombre - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} -  Ningún archivo
Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll [2006-10-27] (Microsoft Corporation -> Microsoft Corporation)

(Si una entrada es incluida en el fixlist, será eliminada del registro.)

IE trusted site: HKU\.DEFAULT\...\localhost -> localhost
IE trusted site: HKU\S-1-5-21-4047135609-2362062722-1061616882-1001\...\localhost -> localhost
IE restricted site: HKU\S-1-5-21-4047135609-2362062722-1061616882-1001\...\008i.com -> 008i.com
IE restricted site: HKU\S-1-5-21-4047135609-2362062722-1061616882-1001\...\008k.com -> 008k.com
IE restricted site: HKU\S-1-5-21-4047135609-2362062722-1061616882-1001\...\00hq.com -> 00hq.com
IE restricted site: HKU\S-1-5-21-4047135609-2362062722-1061616882-1001\...\0190-dialers.com -> 0190-dialers.com
IE restricted site: HKU\S-1-5-21-4047135609-2362062722-1061616882-1001\...\01i.info -> 01i.info
IE restricted site: HKU\S-1-5-21-4047135609-2362062722-1061616882-1001\...\02pmnzy5eo29bfk4.com -> 02pmnzy5eo29bfk4.com
IE restricted site: HKU\S-1-5-21-4047135609-2362062722-1061616882-1001\...\0411dd.com -> 0411dd.com
IE restricted site: HKU\S-1-5-21-4047135609-2362062722-1061616882-1001\...\0511zfhl.com -> 0511zfhl.com
IE restricted site: HKU\S-1-5-21-4047135609-2362062722-1061616882-1001\...\05p.com -> 05p.com
IE restricted site: HKU\S-1-5-21-4047135609-2362062722-1061616882-1001\...\0632qyw.com -> 0632qyw.com
IE restricted site: HKU\S-1-5-21-4047135609-2362062722-1061616882-1001\...\07ic5do2myz3vzpk.com -> 07ic5do2myz3vzpk.com
IE restricted site: HKU\S-1-5-21-4047135609-2362062722-1061616882-1001\...\08nigbmwk43i01y6.com -> 08nigbmwk43i01y6.com
IE restricted site: HKU\S-1-5-21-4047135609-2362062722-1061616882-1001\...\093qpeuqpmz6ebfa.com -> 093qpeuqpmz6ebfa.com
IE restricted site: HKU\S-1-5-21-4047135609-2362062722-1061616882-1001\...\0calories.net -> 0calories.net
IE restricted site: HKU\S-1-5-21-4047135609-2362062722-1061616882-1001\...\0cj.net -> 0cj.net
IE restricted site: HKU\S-1-5-21-4047135609-2362062722-1061616882-1001\...\0scan.com -> 0scan.com
IE restricted site: HKU\S-1-5-21-4047135609-2362062722-1061616882-1001\...\1-britney-spears-nude.com -> 1-britney-spears-nude.com
IE restricted site: HKU\S-1-5-21-4047135609-2362062722-1061616882-1001\...\1-domains-registrations.com -> 1-domains-registrations.com
IE restricted site: HKU\S-1-5-21-4047135609-2362062722-1061616882-1001\...\1-se.com -> 1-se.com
IE restricted site: HKU\S-1-5-21-4047135609-2362062722-1061616882-1001\...\1001movie.com -> 1001movie.com

Hay 6091 más sitios.


==================== Hosts contenido: =========================

(Si es necesario, la directiva Hosts: puede ser incluida en el fixlist para restablecer Hosts.)

2009-07-13 21:34 - 2021-05-03 15:22 - 000000907 _____ C:\Windows\system32\drivers\etc\hosts
0.0.0.1	mssplus.mcafee.com

==================== Otras Áreas ===========================

(Actualmente no existe una corrección automática para esta sección.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files\PC Connectivity Solution\;C:\Program Files\Common Files\Oracle\Java\javapath;C:\Program Files\Common Files\Microsoft Shared\Windows Live;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files\Windows Live\Shared;C:\Program Files\ATI Technologies\ATI.ACE\Core-Static;c:\Program Files\Microsoft SQL Server\110\Tools\Binn\;c:\Program Files\Microsoft SQL Server\110\DTS\Binn\;c:\Program Files\Microsoft SQL Server\110\Tools\Binn\ManagementStudio\;c:\Program Files\Microsoft SQL Server\90\Tools\binn\;C:\Program Files\Microsoft\Web Platform Installer\;C:\Program Files\Microsoft ASP.NET\ASP.NET Web Pages\v1.0\;C:\Program Files\Windows Kits\8.0\Windows Performance Toolkit\;C:\Program Files\Skype\Phone\
HKU\S-1-5-21-4047135609-2362062722-1061616882-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\User\AppData\Roaming\RGE\StarterBackgroundChanger\cache\5284996A391AF96D2E114E31F8333017.bmp
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 0)
Firewall de Windows está habilitado.

==================== MSCONFIG/TASK MANAGER elementos deshabilitados ==

(Si una entrada es incluida en el fixlist, será eliminada.)

MSCONFIG\Services: mysql => 2
MSCONFIG\Services: PST Service => 2
MSCONFIG\Services: ServiceLayer => 3
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^McAfee Security Scan Plus.lnk => C:\Windows\pss\McAfee Security Scan Plus.lnk.CommonStartup
MSCONFIG\startupfolder: C:^Users^User^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Recorte de pantalla e Inicio rápido de OneNote 2007.lnk => C:\Windows\pss\Recorte de pantalla e Inicio rápido de OneNote 2007.lnk.Startup
MSCONFIG\startupfolder: C:^Users^User^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Supervisar alertas de tinta - HP Deskjet 2050 J510 series.lnk => C:\Windows\pss\Supervisar alertas de tinta - HP Deskjet 2050 J510 series.lnk.Startup
MSCONFIG\startupreg: Adobe Creative Cloud => "C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe" --showwindow=false --onOSstartup=true
MSCONFIG\startupreg: AdobeAAMUpdater-1.0 => "C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe"
MSCONFIG\startupreg: AdobeCS6ServiceManager => "C:\Program Files\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe" -launchedbylogin
MSCONFIG\startupreg: AdobeGCInvoker-1.0 => "C:\Program Files\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe"
MSCONFIG\startupreg: AthBtTray => "C:\Program Files\Bluetooth Suite\AthBtTray.exe"
MSCONFIG\startupreg: AtherosBtStack => "C:\Program Files\Bluetooth Suite\BtvStack.exe"
MSCONFIG\startupreg: BlueStacks Agent => C:\Program Files\BlueStacks\HD-Agent.exe
MSCONFIG\startupreg: CCleaner Smart Cleaning => "C:\Program Files\CCleaner\CCleaner.exe" /MONITOR
MSCONFIG\startupreg: CCXProcess => "C:\Program Files\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe"
MSCONFIG\startupreg: EA Core => "C:\Program Files\Electronic Arts\EADM\Core.exe" -silent
MSCONFIG\startupreg: EEventManager => "C:\Program Files\Epson Software\Event Manager\EEventManager.exe"
MSCONFIG\startupreg: EPPCCMON => "C:\Program Files\EPSON Software\Epson Printer Connection Checker\EPPCCMON.EXE"
MSCONFIG\startupreg: EPSON TX420W Series => C:\Windows\system32\spool\DRIVERS\W32X86\3\E_FATIGCL.EXE /FU "C:\Users\User\AppData\Local\Temp\E_S4AE9.tmp" /EF "HKCU"
MSCONFIG\startupreg: Google Update => "C:\Users\User\AppData\Local\Google\Update\1.3.36.82\GoogleUpdateCore.exe"
MSCONFIG\startupreg: GrooveMonitor => "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"
MSCONFIG\startupreg: HP Quick Launch => C:\Program Files\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe
MSCONFIG\startupreg: HP Software Update => C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe
MSCONFIG\startupreg: HPConnectionManager => C:\Program Files\Hewlett-Packard\HP Connection Manager\HPCMDelayStart.exe
MSCONFIG\startupreg: HPOSD => C:\Program Files\Hewlett-Packard\HP On Screen Display\HPOSD.exe
MSCONFIG\startupreg: McAfeeSafeConnect => C:\Program Files\McAfee Safe Connect\McAfee Safe Connect.exe
MSCONFIG\startupreg: Skype => "C:\Program Files\Skype\Phone\Skype.exe" /minimized /regrun
MSCONFIG\startupreg: StartCCC => "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
MSCONFIG\startupreg: StarterBackgroundChanger => "C:\Program Files\StarterBackgroundChanger\StarterBackgroundChangerTask.exe"
MSCONFIG\startupreg: SunJavaUpdateSched => "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
MSCONFIG\startupreg: SwitchBoard => C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
MSCONFIG\startupreg: SynTPEnh => %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe
MSCONFIG\startupreg: SysTrayApp => C:\Program Files\IDT\WDM\sttray.exe

==================== Reglas de firewall (Lista blanca) ================

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)

FirewallRules: [{68D90DCB-A96A-44C5-9C01-8CDA326AA262}] => (Allow) C:\Program Files\Windows Live\Contacts\wlcomm.exe => Ningún archivo
FirewallRules: [{6EB3D35F-17AE-4BD0-BD5E-FB353F044912}] => (Allow) LPort=2869
FirewallRules: [{F622BC74-DACB-40CB-8F47-D146EF86E13D}] => (Allow) LPort=1900
FirewallRules: [{2430A369-CC3B-4DB9-8FFB-8E6035C1A6B5}] => (Allow) C:\Program Files\Windows Live\Messenger\msnmsgr.exe => Ningún archivo
FirewallRules: [{406BE2A6-04A1-4CD7-8944-2EB23AE54BE8}] => (Allow) C:\Program Files\Windows Live\Mesh\MOE.exe => Ningún archivo
FirewallRules: [{6864C03F-7C78-459B-9FA2-53891F48ECC0}] => (Allow) C:\Program Files\CyberLink\PowerDVD10\PowerDVD10.EXE (CyberLink -> CyberLink Corp.)
FirewallRules: [{70A93013-9945-48EC-AD36-43ABD739BDEA}] => (Allow) C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{81BA0417-1E19-4E32-A0B5-06BEA7FB09EC}] => (Allow) C:\Program Files\Epson Software\Event Manager\EEventManager.exe (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
FirewallRules: [{A41FADDE-5A18-4AEA-B4D0-575BB1D90B20}] => (Allow) C:\Program Files\Epson Software\Event Manager\EEventManager.exe (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
FirewallRules: [{F91DED7F-3244-4161-8000-BFC9A78ECEA0}] => (Allow) C:\Program Files\EpsonNet\EpsonNet Setup\tool10\ENEasyApp.exe (SEIKO EPSON Corporation -> SEIKO EPSON CORPORATION)
FirewallRules: [{B60166F9-1925-4280-8942-A6887512F9CF}] => (Allow) C:\Program Files\EpsonNet\EpsonNet Setup\tool10\ENEasyApp.exe (SEIKO EPSON Corporation -> SEIKO EPSON CORPORATION)
FirewallRules: [{45D5B99B-F018-4C29-A218-A887663290B8}] => (Allow) C:\Windows\system32\hasplms.exe (SafeNet, Inc. -> SafeNet Inc.)
FirewallRules: [{4281B3F9-19CE-4E6D-B09C-883CF90A459E}] => (Allow) C:\Windows\system32\hasplms.exe (SafeNet, Inc. -> SafeNet Inc.)
FirewallRules: [{110E0129-3D60-4875-AB26-28D28C7D9AFA}] => (Allow) C:\Windows\system32\hasplms.exe (SafeNet, Inc. -> SafeNet Inc.)
FirewallRules: [{E8B43B37-B938-4379-9255-E347F478B0DD}] => (Allow) C:\Windows\system32\hasplms.exe (SafeNet, Inc. -> SafeNet Inc.)
FirewallRules: [{80476212-9904-4F6B-BE0A-28318B5094E1}] => (Allow) C:\Windows\system32\hasplms.exe (SafeNet, Inc. -> SafeNet Inc.)
FirewallRules: [{30FD8E95-767E-440F-B342-CBD97540CAAD}] => (Allow) C:\Program Files\HP\HP Deskjet 2050 J510 series\Bin\USBSetup.exe (Hewlett Packard -> Hewlett-Packard Co.)
FirewallRules: [{46BF3B4F-F323-4D15-A4C8-8632107D987E}] => (Allow) C:\Program Files\Microsoft Visual Studio 11.0\Common7\IDE\devenv.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{2E91F1B0-57A4-4235-9DFD-CC64393B7C26}] => (Allow) C:\Program Files\Microsoft Visual Studio 11.0\Common7\IDE\devenv.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{C541727B-115D-49C4-AAE0-058CECE74BD6}] => (Allow) C:\Program Files\Microsoft Visual Studio 11.0\Common7\IDE\devenv.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{4E286954-6665-41F3-B20B-7585138F7908}] => (Allow) C:\Program Files\Microsoft Visual Studio 11.0\Common7\IDE\devenv.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{1B6F3611-8534-4A7C-B466-47949F3B14C3}] => (Allow) C:\Program Files\Microsoft Visual Studio 11.0\Common7\IDE\devenv.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{35D0690A-1A45-4208-A5FC-44A8D0E368A6}] => (Allow) C:\Program Files\Microsoft Visual Studio 11.0\Common7\IDE\devenv.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{ACDE3D9B-08CF-4B9F-93A3-98DFA2DAC34F}] => (Allow) C:\Program Files\Microsoft Visual Studio 11.0\Common7\IDE\devenv.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [TCP Query User{399B4A05-D80C-4C41-96BF-EF02B2651FC2}C:\program files\epson software\event manager\eeventmanager.exe] => (Allow) C:\program files\epson software\event manager\eeventmanager.exe (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
FirewallRules: [UDP Query User{6C3A352B-A290-4ECF-8949-6CF34D08052F}C:\program files\epson software\event manager\eeventmanager.exe] => (Allow) C:\program files\epson software\event manager\eeventmanager.exe (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
FirewallRules: [{082FFD7C-E17D-4EC3-9A39-F11EFFF11A7D}] => (Allow) C:\Program Files\Skype\Phone\Skype.exe => Ningún archivo
FirewallRules: [TCP Query User{E3E9DACB-1954-4959-961D-DEDC68F7E7A4}C:\program files\cisco packet tracer 6.1sv\bin\packettracer6.exe] => (Allow) C:\program files\cisco packet tracer 6.1sv\bin\packettracer6.exe => Ningún archivo
FirewallRules: [UDP Query User{2D035A5B-A4E7-45F6-BF13-F68C259779D8}C:\program files\cisco packet tracer 6.1sv\bin\packettracer6.exe] => (Allow) C:\program files\cisco packet tracer 6.1sv\bin\packettracer6.exe => Ningún archivo
FirewallRules: [TCP Query User{CBA5AA69-8A0F-493E-BDFD-6E69171FB41D}C:\program files\cisco packet tracer 6.1sv\bin\packettracer6.exe] => (Block) C:\program files\cisco packet tracer 6.1sv\bin\packettracer6.exe => Ningún archivo
FirewallRules: [UDP Query User{2DE4F982-99BB-4DB7-899D-A6D0A17A64F5}C:\program files\cisco packet tracer 6.1sv\bin\packettracer6.exe] => (Block) C:\program files\cisco packet tracer 6.1sv\bin\packettracer6.exe => Ningún archivo
FirewallRules: [TCP Query User{5167E24C-8032-4EE1-9B8B-3908DA6DBB82}C:\program files\electronic arts\eadm\core.exe] => (Allow) C:\program files\electronic arts\eadm\core.exe => Ningún archivo
FirewallRules: [UDP Query User{2FCE2A4B-0313-4BBD-9268-C599DB3499FA}C:\program files\electronic arts\eadm\core.exe] => (Allow) C:\program files\electronic arts\eadm\core.exe => Ningún archivo
FirewallRules: [{393481E1-A6BB-45E1-B136-799F28AD540E}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{261A5377-CE75-499F-B723-3F60E172FC06}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [TCP Query User{C4B5C004-2937-4E02-9202-C0D0FB6F294C}C:\program files\electronic arts\eadm\core.exe] => (Block) C:\program files\electronic arts\eadm\core.exe => Ningún archivo
FirewallRules: [UDP Query User{1EDADA10-58C6-4578-AB68-653FFFC52C2F}C:\program files\electronic arts\eadm\core.exe] => (Block) C:\program files\electronic arts\eadm\core.exe => Ningún archivo
FirewallRules: [{CBE4EC8E-95CA-4966-90BF-0AA92728F2AD}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform)
FirewallRules: [{0BBBFEF5-6287-42F9-9A33-195BBC4F26C4}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform)
FirewallRules: [{83A7EF67-52D5-4269-A758-57151448C0B6}] => (Allow) C:\Users\User\AppData\Local\Apowersoft\Apowersoft Online Launcher\Apowersoft Online Launcher.exe => Ningún archivo
FirewallRules: [{2113F40E-53CD-4F4E-85B0-AD7209852B64}] => (Allow) C:\Users\User\AppData\Local\Apowersoft\Apowersoft Online Launcher\Apowersoft Online Launcher.exe => Ningún archivo
FirewallRules: [TCP Query User{A3F2A873-0FD5-4F39-8F5D-F6A227B18337}C:\xampp\mysql\bin\mysqld.exe] => (Allow) C:\xampp\mysql\bin\mysqld.exe (MariaDB Corporation Ab -> )
FirewallRules: [UDP Query User{BFE74D99-97EC-4F9F-822F-8EE956191E5D}C:\xampp\mysql\bin\mysqld.exe] => (Allow) C:\xampp\mysql\bin\mysqld.exe (MariaDB Corporation Ab -> )
FirewallRules: [TCP Query User{26225DCB-39E2-4D5C-8DE0-37D02F7CBE4F}C:\xampp\apache\bin\httpd.exe] => (Allow) C:\xampp\apache\bin\httpd.exe (Apache Software Foundation) [Archivo no firmado]
FirewallRules: [UDP Query User{B075F567-5CDE-46FA-98C0-06027643D655}C:\xampp\apache\bin\httpd.exe] => (Allow) C:\xampp\apache\bin\httpd.exe (Apache Software Foundation) [Archivo no firmado]
FirewallRules: [TCP Query User{A69A048B-062A-4B6F-908D-8D09CC368540}C:\program files\java\jre1.8.0_181\bin\java.exe] => (Allow) C:\program files\java\jre1.8.0_181\bin\java.exe
FirewallRules: [UDP Query User{8BB5B736-CC71-4B7D-BFA3-E2370623165E}C:\program files\java\jre1.8.0_181\bin\java.exe] => (Allow) C:\program files\java\jre1.8.0_181\bin\java.exe
FirewallRules: [{74B2AE77-2028-4B2C-8A7F-B56540F0EC1D}] => (Allow) C:\Program Files\TeamViewer\TeamViewer.exe => Ningún archivo
FirewallRules: [{E60591A8-1C6A-44F3-959E-E9EDE41DD529}] => (Allow) C:\Program Files\TeamViewer\TeamViewer.exe => Ningún archivo
FirewallRules: [{A8F737AC-BFAA-436A-B7BF-331972B78740}] => (Allow) C:\Program Files\TeamViewer\TeamViewer_Service.exe => Ningún archivo
FirewallRules: [{37E69C99-0441-4874-8F38-9FDAE29BFD61}] => (Allow) C:\Program Files\TeamViewer\TeamViewer_Service.exe => Ningún archivo
FirewallRules: [{BBE74FDD-6852-4072-AA84-E3874F5111FF}] => (Allow) C:\Users\User\AppData\Roaming\Zoom\bin\Zoom.exe => Ningún archivo
FirewallRules: [{1ABEF459-2E02-4FA3-9CD3-7F01638459AA}] => (Allow) E:\Network\EpsonNetSetup\ENEasyApp.exe => Ningún archivo
FirewallRules: [{F8A6D215-E4E9-444A-BA79-B6EE9F08E430}] => (Allow) E:\Network\EpsonNetSetup\ENEasyApp.exe => Ningún archivo
FirewallRules: [{D346AF02-9A5B-4C79-8A5C-D0D445E5EE5C}] => (Allow) C:\Users\User\AppData\Local\Programs\Opera\77.0.4054.90\opera.exe => Ningún archivo
FirewallRules: [{25F4A74F-FDED-4101-AE69-D8D63A5DE954}] => (Allow) C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{AFD932D5-6BF4-420C-AC88-B4B66E46EB4A}] => (Allow) C:\Users\User\AppData\Local\Programs\Opera\77.0.4054.172\opera.exe => Ningún archivo
FirewallRules: [TCP Query User{DE0D5491-57CC-4603-B765-5E6B715D9886}C:\program files\ultdata for android\ultdata for android.exe] => (Allow) C:\program files\ultdata for android\ultdata for android.exe => Ningún archivo
FirewallRules: [UDP Query User{A9B8CFA1-D459-4847-A007-031426D595EE}C:\program files\ultdata for android\ultdata for android.exe] => (Allow) C:\program files\ultdata for android\ultdata for android.exe => Ningún archivo
FirewallRules: [{48749A90-21F3-4FAC-A9AA-D20101CB47AB}] => (Block) C:\Program Files\UltData for Android\NetFrameCheck.exe => Ningún archivo
FirewallRules: [{A5026361-F79A-4627-BB65-B10AB13C8564}] => (Allow) C:\Program Files\AVAST Software\Browser\Application\AvastBrowser.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [TCP Query User{670377BC-F720-436F-80B0-405402FE536A}C:\program files\avast software\avast\avastui.exe] => (Allow) C:\program files\avast software\avast\avastui.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [UDP Query User{C272CF4C-1B6F-40F8-A9F0-90C257DB7EC6}C:\program files\avast software\avast\avastui.exe] => (Allow) C:\program files\avast software\avast\avastui.exe (Avast Software s.r.o. -> AVAST Software)

==================== Puntos de Restauración =========================

03-07-2021 21:39:20 Instalación del paquete de controladores de dispositivo: Google, Inc. Android Phone
03-07-2021 21:40:33 Instalación del paquete de controladores de dispositivo: Google, Inc. Android Phone
05-07-2021 09:36:18 Removed Skype™ 7.32
05-07-2021 09:38:08 Removed Pixlr-o-matic
05-07-2021 09:39:44 Removed BlueStacks Notification Center
05-07-2021 13:39:06 Windows Live Essentials
05-07-2021 13:39:56 WLSetup
05-07-2021 13:47:50 Removed Cisco EAP-FAST Module
05-07-2021 13:48:17 Removed Cisco PEAP Module
05-07-2021 13:50:08 Removed Cisco LEAP Module
05-07-2021 13:59:18 Eliminado Motorola Device Manager
05-07-2021 18:02:21 Cleaner (Spybot - Search & Destroy 2.7, administrator privileges

==================== Dispositivos defectuosos en el Administrador de dispositivos ============

Name: Adaptador de minipuerto WiFi virtual de Microsoft
Description: Adaptador de minipuerto WiFi virtual de Microsoft
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: vwifimp
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: Dispositivo periférico Bluetooth
Description: Dispositivo periférico Bluetooth
Class Guid: 
Manufacturer: 
Service: 
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: Dispositivo periférico Bluetooth
Description: Dispositivo periférico Bluetooth
Class Guid: 
Manufacturer: 
Service: 
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: Dispositivo Bluetooth (Red de área personal) #2
Description: Dispositivo Bluetooth (Red de área personal)
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: BthPan
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: Dispositivo periférico Bluetooth
Description: Dispositivo periférico Bluetooth
Class Guid: 
Manufacturer: 
Service: 
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: BlueStacks Hypervisor
Description: BlueStacks Hypervisor
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer: 
Service: BstHdDrv
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.

Name: Synaptics PS/2 Port TouchPad
Description: Synaptics PS/2 Port TouchPad
Class Guid: {4d36e96f-e325-11ce-bfc1-08002be10318}
Manufacturer: Synaptics
Service: i8042prt
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.

Name: Realtek PCIe FE Family Controller
Description: Realtek PCIe FE Family Controller
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Realtek
Service: RTL8167
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: Dispositivo periférico Bluetooth
Description: Dispositivo periférico Bluetooth
Class Guid: 
Manufacturer: 
Service: 
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: Dispositivo periférico Bluetooth
Description: Dispositivo periférico Bluetooth
Class Guid: 
Manufacturer: 
Service: 
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.


==================== Errores del registro de eventos: ========================

Errores de aplicación:
==================
Error: (07/06/2021 01:31:56 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 4107) (User: )
Description: Error en la extracción de la lista raíz de terceros del archivo .CAB actualizado automáticamente: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab> con el error: Se procesó correctamente una cadena de certificados, pero termina en un certificado de raíz no compatible con el proveedor de confianza.
.

Error: (07/06/2021 01:31:56 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 4107) (User: )
Description: Error en la extracción de la lista raíz de terceros del archivo .CAB actualizado automáticamente: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab> con el error: Se procesó correctamente una cadena de certificados, pero termina en un certificado de raíz no compatible con el proveedor de confianza.
.

Error: (07/06/2021 01:31:56 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 4107) (User: )
Description: Error en la extracción de la lista raíz de terceros del archivo .CAB actualizado automáticamente: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab> con el error: Se procesó correctamente una cadena de certificados, pero termina en un certificado de raíz no compatible con el proveedor de confianza.
.

Error: (07/06/2021 01:31:56 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 4107) (User: )
Description: Error en la extracción de la lista raíz de terceros del archivo .CAB actualizado automáticamente: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab> con el error: Se procesó correctamente una cadena de certificados, pero termina en un certificado de raíz no compatible con el proveedor de confianza.
.

Error: (07/06/2021 01:31:53 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 4107) (User: )
Description: Error en la extracción de la lista raíz de terceros del archivo .CAB actualizado automáticamente: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab> con el error: Se procesó correctamente una cadena de certificados, pero termina en un certificado de raíz no compatible con el proveedor de confianza.
.

Error: (07/06/2021 01:31:53 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 4107) (User: )
Description: Error en la extracción de la lista raíz de terceros del archivo .CAB actualizado automáticamente: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab> con el error: Se procesó correctamente una cadena de certificados, pero termina en un certificado de raíz no compatible con el proveedor de confianza.
.

Error: (07/06/2021 01:31:53 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 4107) (User: )
Description: Error en la extracción de la lista raíz de terceros del archivo .CAB actualizado automáticamente: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab> con el error: Se procesó correctamente una cadena de certificados, pero termina en un certificado de raíz no compatible con el proveedor de confianza.
.

Error: (07/06/2021 01:31:52 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 4107) (User: )
Description: Error en la extracción de la lista raíz de terceros del archivo .CAB actualizado automáticamente: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab> con el error: Se procesó correctamente una cadena de certificados, pero termina en un certificado de raíz no compatible con el proveedor de confianza.
.


Errores del sistema:
=============
Error: (07/06/2021 01:11:58 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: El servicio SQL Server (SQLEXPRESS2012) se terminó de manera inesperada. Esto ha sucedido 1 veces.

Error: (07/06/2021 01:11:22 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: El servicio Wondershare Install Assist Service no pudo iniciarse debido al siguiente error: 
El sistema no puede encontrar el archivo especificado.

Error: (07/06/2021 01:11:22 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: El servicio PST Service no pudo iniciarse debido al siguiente error: 
El sistema no puede encontrar el archivo especificado.

Error: (07/06/2021 01:11:18 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: El servicio Motorola Device Manager Service no pudo iniciarse debido al siguiente error: 
El sistema no puede encontrar el archivo especificado.

Error: (07/06/2021 01:11:12 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: El servicio Wondershare Driver Install Service help no pudo iniciarse debido al siguiente error: 
El sistema no puede encontrar el archivo especificado.

Error: (07/06/2021 01:11:12 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: El servicio Wondershare WSID help no pudo iniciarse debido al siguiente error: 
El sistema no puede encontrar el archivo especificado.

Error: (07/06/2021 01:11:12 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: El servicio BlueStacks Hypervisor no pudo iniciarse debido al siguiente error: 
El sistema no puede encontrar la ruta especificada.

Error: (07/06/2021 01:11:09 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: El servicio Adobe Genuine Software Integrity Service no pudo iniciarse debido al siguiente error: 
El sistema no puede encontrar el archivo especificado.


==================== Información de la memoria =========================== 

BIOS: Hewlett-Packard F.24 06/30/2011
Placa base: Hewlett-Packard 165C
Procesador: AMD Athlon(tm) II P360 Dual-Core Processor
Porcentaje de memoria en uso: 90%
RAM física total: 1786.9 MB
RAM física disponible: 172.08 MB
Virtual total: 4536.55 MB
Virtual disponible: 811.23 MB

==================== Unidades ================================

Drive c: () (Fixed) (Total:453.39 GB) (Free:360.08 GB) NTFS ==>[sistema con componentes de arranque (obtenido de unidad)]
Drive d: (Disco Local) (Fixed) (Total:12.07 GB) (Free:11.97 GB) NTFS

\\?\Volume{675f0444-f284-11e0-a48d-806e6f6e6963}\ (SYSTEM) (Fixed) (Total:0.19 GB) (Free:0.16 GB) NTFS
\\?\Volume{675f0447-f284-11e0-a48d-806e6f6e6963}\ (HP_TOOLS) (Fixed) (Total:0.1 GB) (Free:0.09 GB) FAT32

==================== MBR & Tabla de particiones ====================

==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 465.8 GB) (Disk ID: 5E9F2CBA)
Partition 1: (Active) - (Size=199 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=453.4 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=12.1 GB) - (Type=07 NTFS)
Partition 4: (Not Active) - (Size=103 MB) - (Type=0C)

==================== Final  Addition.txt =======================

Hola nuevamente,

Con respecto a los reportes, te comento que faltaría una parte del reporte de FRST.txt (el primero).

Con respecto a tus archivos una vez que comprobemos que tu equipo no esta infectado te comentaría que opciones tienes para recuperar tus archivos. Igualmente revisa la parte que falta del reporte y cualquier cosa nos comentas.

Saludos

1 me gusta

solo sale eso en el documento txt


==================== Internet (Lista blanca) ====================

(Si un elemento es incluido en el fixlist, y éste pertenece al registro, será eliminado o restaurado a su valor predeterminado.)

Winsock: Catalog5 07 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL => Ningún archivo 
Winsock: Catalog5 08 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL => Ningún archivo 
Hosts: 0.0.0.1	mssplus.mcafee.com
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{57DD12B0-5F67-459B-BD3A-7B50109603CB}: [DhcpNameServer] 10.0.0.2
Tcpip\..\Interfaces\{859E84F1-9BA5-4325-8CF8-78038544BFF1}: [DhcpNameServer] 192.168.0.1

FireFox:
========
FF DefaultProfile: 0wghop1j.default
FF ProfilePath: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\0wghop1j.default [2021-07-05]
FF Homepage: Mozilla\Firefox\Profiles\0wghop1j.default -> hxxps://securesearch.org/homepage?hp=2&pId=BT171002&iDate=2020-03-25 07:57:57&bName=
FF NewTab: Mozilla\Firefox\Profiles\0wghop1j.default -> hxxps://securesearch.org/homepage?hp=2&pId=BT171002&iDate=2020-03-25 07:57:57&bName=
FF HKLM\...\Thunderbird\Extensions: [[email protected]] - C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird => no encontrado
FF Plugin: @java.com/DTPlugin,version=10.17.2 -> C:\Windows\system32\npDeployJava1.dll [2013-04-11] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.181.2 -> C:\Program Files\Java\jre1.8.0_181\bin\plugin2\npjp2.dll [2018-07-18] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.10411.0\npctrl.dll [2012-04-11] (Microsoft Corporation ->  Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll [Ningún archivo]
FF Plugin: @update.avastbrowser.com/Avast Browser;version=3 -> C:\Program Files\AVAST Software\Browser\Update\1.8.1065.0\npAvastBrowserUpdate3.dll [2021-07-05] (Avast Software s.r.o. -> AVAST Software)
FF Plugin: @update.avastbrowser.com/Avast Browser;version=9 -> C:\Program Files\AVAST Software\Browser\Update\1.8.1065.0\npAvastBrowserUpdate3.dll [2021-07-05] (Avast Software s.r.o. -> AVAST Software)
FF Plugin: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 -> C:\Program Files\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll [Ningún archivo]
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2021-05-28] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2019-07-05] (Adobe Inc. -> Adobe Systems)
FF ExtraCheck: C:\Program Files\mozilla firefox\defaults\pref\eset_security_config_overlay.js [2020-04-16]

Chrome: 
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\User\AppData\Local\Google\Chrome\User Data\Default [2021-07-06]
CHR DownloadDir: F:\
CHR Notifications: Default -> hxxps://www.facebook.com; hxxps://www.templatemonster.com
CHR Extension: (Adobe Acrobat) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2021-03-02]
CHR Extension: (Sweets) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\fheekmgekhahpaelhpkginoipahinfnk [2018-02-05]
CHR Extension: (AdBlock: el mejor bloqueador de anuncios) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2021-06-23]
CHR Extension: (Bloqueador de anuncios para Youtube ™) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\hflefjhkfeiaignkclmphmokmmbhbhik [2018-05-24]
CHR Extension: (Malwarebytes Browser Guard) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\ihcjicgdanjaechkgeegckofjjedodee [2021-07-05]
CHR Extension: (Sistema de pagos de Chrome Web Store) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-29]
CHR Extension: (Chrome Media Router) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-06-13]
CHR Profile: C:\Users\User\AppData\Local\Google\Chrome\User Data\Guest Profile [2021-06-22]
CHR Profile: C:\Users\User\AppData\Local\Google\Chrome\User Data\System Profile [2021-06-22]
CHR HKLM\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
CHR HKLM\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee]
StartMenuInternet: Google Chrome.NMSIAMFKZCRYE22UVX6B24TGFY - C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe

Opera: 
=======
OPR Profile: C:\Users\User\AppData\Roaming\Opera Software\Opera Stable [2021-07-05]
OPR DefaultSuggestURL: Opera Stable -> hxxps://www.google.com/complete/search?client=opera&q={searchTerms}&ie={inputEncoding}&oe={outputEncoding}
OPR Extension: (Rich Hints Agent) - C:\Users\User\AppData\Roaming\Opera Software\Opera Stable\Extensions\enegjkbbakeegngfapepobipndnebkdk [2020-11-22]

==================== Servicios (Lista blanca) ===================

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)

R2 AdobeARMservice; C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [169672 2021-01-25] (Adobe Inc. -> Adobe Inc.)
S4 AdobeUpdateService; C:\Program Files\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [816184 2019-07-05] (Adobe Inc. -> Adobe Inc.)
R2 AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [176128 2011-02-28] (Microsoft Windows Hardware Compatibility Publisher -> AMD)
R2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [284672 2011-02-28] (Advanced Micro Devices, Inc.) [Archivo no firmado]
R2 AMD Reservation Manager; C:\Program Files\ATI Technologies\ATI.ACE\Reservation Manager\AMD Reservation Manager.exe [140224 2010-06-16] (Advanced Micro Devices, Inc. -> Advanced Micro Devices)
R2 Apache2.4; C:\xampp\apache\bin\httpd.exe [23040 2018-03-22] (Apache Software Foundation) [Archivo no firmado]
S3 aswbIDSAgent; C:\Program Files\Avast Software\Avast\aswidsagent.exe [7401552 2021-07-05] (Avast Software s.r.o. -> AVAST Software)
R2 Atheros Bt&Wlan Coex Agent; C:\Program Files\Bluetooth Suite\Ath_CoexAgent.exe [138400 2011-03-01] (Atheros Communications Inc. -> Atheros) [Archivo no firmado]
R2 AtherosSvc; C:\Program Files\Bluetooth Suite\adminservice.exe [72864 2011-03-01] (Atheros Communications Inc. -> Atheros Commnucations) [Archivo no firmado]
S2 avast; C:\Program Files\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [194200 2021-07-05] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\Avast Software\Avast\AvastSvc.exe [567064 2021-07-05] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Tools; C:\Program Files\Avast Software\Avast\aswToolsSvc.exe [349464 2021-07-05] (Avast Software s.r.o. -> AVAST Software)
S3 avastm; C:\Program Files\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [194200 2021-07-05] (Avast Software s.r.o. -> AVAST Software)
S3 AvastSecureBrowserElevationService; C:\Program Files\AVAST Software\Browser\Application\91.0.10362.115\elevation_service.exe [1196008 2021-06-18] (Avast Software s.r.o. -> AVAST Software)
R2 AvastWscReporter; C:\Program Files\Avast Software\Avast\wsc_proxy.exe [56912 2021-07-05] (Avast Software s.r.o. -> AVAST Software)
S4 EpsonBidirectionalService; C:\Program Files\Common Files\EPSON\EBAPI\eEBSVC.exe [94208 2006-12-19] (SEIKO EPSON CORPORATION) [Archivo no firmado]
R2 EpsonScanSvc; C:\Windows\system32\EscSvc.exe [223560 2018-01-29] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
R2 EPSON_EB_RPCV4_04; C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50ST7.EXE [153600 2009-09-14] (Microsoft Windows Hardware Compatibility Publisher -> SEIKO EPSON CORPORATION)
R2 EPSON_PM_RPCV4_04; C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50RP7.EXE [121856 2009-09-14] (Microsoft Windows Hardware Compatibility Publisher -> SEIKO EPSON CORPORATION)
R2 EsgShKernel; C:\Program Files\EnigmaSoft\SpyHunter\ShKernel.exe [10142160 2021-07-05] (EnigmaSoft Limited -> EnigmaSoft Limited)
S3 fussvc; C:\Program Files\Windows Kits\8.0\App Certification Kit\fussvc.exe [133632 2012-07-25] (Microsoft Corporation) [Archivo no firmado]
R2 hasplms; C:\Windows\system32\hasplms.exe [4180576 2010-09-27] (SafeNet, Inc. -> SafeNet Inc.)
S3 hpqcaslwmiex; C:\Program Files\HP\Shared\hpqwmiex.exe [1031704 2016-06-03] (Hewlett-Packard Company -> HP)
S4 IconMan_R; C:\Program Files\Realtek\Realtek PCIE Card Reader\RIconMan.exe [1784320 2015-06-01] (Realsil Microelectronics Inc.) [Archivo no firmado]
S3 McComponentHostService; C:\Program Files\McAfee Security Scan\3.11.2198\McCHSvc.exe [317376 2021-04-30] (McAfee, LLC. -> McAfee, LLC)
S2 MSSQL$SQLEXPRESS2012; c:\Program Files\Microsoft SQL Server\MSSQL11.SQLEXPRESS2012\MSSQL\Binn\sqlservr.exe [206424 2012-02-11] (Microsoft Corporation -> Microsoft Corporation)
R2 MSSQLSERVER; c:\Program Files\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe [29263712 2008-11-24] (Microsoft Corporation -> Microsoft Corporation)
S4 MSSQLServerADHelper; c:\Program Files\Microsoft SQL Server\90\Shared\sqladhlp90.exe [45408 2008-11-24] (Microsoft Corporation -> Microsoft Corporation)
R2 mysql; C:\xampp\mysql\bin\mysqld.exe [11552680 2018-02-03] (MariaDB Corporation Ab -> )
S4 ShMonitor; C:\Program Files\EnigmaSoft\SpyHunter\ShMonitor.exe [416720 2021-07-05] (EnigmaSoft Limited -> EnigmaSoft Limited)
R2 STacSV; C:\Program Files\IDT\WDM\STacSV.exe [262226 2010-12-17] (Microsoft Windows Hardware Compatibility Publisher -> IDT, Inc.)
S3 SwitchBoard; C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Test Signing Certificate -> Adobe Systems Incorporated) [Archivo no firmado]
S3 Te.Service; C:\Program Files\Windows Kits\8.0\Testing\Runtimes\TAEF\Wex.Services.exe [94208 2012-07-25] (Microsoft Corporation) [Archivo no firmado]
R2 WsAppService; C:\Program Files\Wondershare\WAF\2.4.3.242\WsAppService.exe [495720 2018-08-29] (Wondershare Technology Co.,Ltd -> Wondershare)
S2 AGMService; "C:\Program Files\Common Files\Adobe\AdobeGCClient\AGMService.exe" [X]
S2 AGSService; "C:\Program Files\Common Files\Adobe\AdobeGCClient\AGSService.exe" [X]
S4 BstHdAndroidSvc; "C:\Program Files\BlueStacks\HD-Service.exe" BstHdAndroidSvc Android [X]
S4 BstHdLogRotatorSvc; C:\Program Files\BlueStacks\HD-LogRotatorService.exe [X]
S2 DFWSIDService; C:\Program Files\Wondershare\drfone\WsidService.exe [X]
S2 ElevationService; C:\Program Files\Wondershare\drfone\Addins\SocialApps\ElevationService.exe [X]
S4 HuaweiHiSuiteService.exe; "C:\Program Files\HiSuite\HandSetService\HuaweiHiSuiteService.exe" -/service [X]
S2 Motorola Device Manager; C:\Program Files\Motorola Mobility\Motorola Device Manager\MotoHelperService.exe [X]
S2 PST Service; C:\Program Files\Motorola\MotForwardDaemon\ForwardDaemon.exe [X]
S4 SkypeUpdate; "C:\Program Files\Skype\Updater\Updater.exe" [X]
S4 wlcrasvc; "C:\Program Files\Windows Live\Mesh\wlcrasvc.exe" [X]
S4 wlidsvc; "C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE" [X]
S2 Wondershare InstallAssist; C:\ProgramData\Wondershare\Service\InstallAssistService.exe [X]

===================== Controladores (Lista blanca) ===================

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)

S3 aftap0901; C:\Windows\System32\DRIVERS\aftap0901.sys [45528 2018-03-06] (AnchorFree Inc -> The OpenVPN Project)
R2 aksfridge; C:\Windows\System32\DRIVERS\aksfridge.sys [356864 2010-09-27] (Microsoft Windows Hardware Compatibility Publisher -> SafeNet Inc.)
R3 akshasp; C:\Windows\System32\DRIVERS\akshasp.sys [238208 2009-03-13] (Microsoft Windows Hardware Compatibility Publisher -> Aladdin Knowledge Systems Ltd.)
R3 akshhl; C:\Windows\System32\DRIVERS\akshhl.sys [46336 2007-07-23] (Microsoft Windows Hardware Compatibility Publisher -> Aladdin Knowledge Systems Ltd.)
R3 aksusb; C:\Windows\System32\DRIVERS\aksusb.sys [16384 2009-06-22] (Microsoft Windows Hardware Compatibility Publisher -> Aladdin Knowledge Systems Ltd.)
R3 amdiox86; C:\Windows\System32\DRIVERS\amdiox86.sys [37944 2010-02-18] (Advanced Micro Devices, Inc. -> Advanced Micro Devices)
R3 amdkmdag; C:\Windows\System32\DRIVERS\atikmdag.sys [7559680 2011-02-28] (Microsoft Windows Hardware Compatibility Publisher -> ATI Technologies Inc.)
R3 amdkmdap; C:\Windows\System32\DRIVERS\atikmpag.sys [238592 2011-02-28] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc.)
R0 amd_sata; C:\Windows\System32\DRIVERS\amd_sata.sys [66176 2011-01-28] (Advanced Micro Devices, Inc. -> Advanced Micro Devices)
R0 amd_xata; C:\Windows\System32\DRIVERS\amd_xata.sys [32384 2011-01-28] (Advanced Micro Devices, Inc. -> Advanced Micro Devices)
R0 aswArDisk; C:\Windows\System32\drivers\aswArDisk.sys [33608 2021-07-05] (Avast Software s.r.o. -> AVAST Software)
R1 aswArPot; C:\Windows\System32\drivers\aswArPot.sys [183152 2021-07-05] (Avast Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; C:\Windows\System32\drivers\aswbidsdriver.sys [292880 2021-07-05] (Avast Software s.r.o. -> AVAST Software)
R0 aswbidsh; C:\Windows\System32\drivers\aswbidsh.sys [206352 2021-07-05] (Avast Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:\Windows\System32\drivers\aswbuniv.sys [91672 2021-07-05] (Avast Software s.r.o. -> AVAST Software)
R1 aswKbd; C:\Windows\System32\drivers\aswKbd.sys [39320 2021-07-05] (Avast Software s.r.o. -> AVAST Software)
R1 aswMonFlt; C:\Windows\System32\drivers\aswMonFlt.sys [152992 2021-07-05] (Avast Software s.r.o. -> AVAST Software)
R1 aswNetHub; C:\Windows\System32\drivers\aswNetHub.sys [379536 2021-07-05] (Avast Software s.r.o. -> AVAST Software)
R3 aswNetNd6; C:\Windows\System32\DRIVERS\aswNetNd6.sys [36104 2021-07-05] (AVAST Software s.r.o. -> AVAST Software)
R1 aswRdr; C:\Windows\System32\drivers\aswRdr2.sys [92752 2021-07-05] (Avast Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\Windows\System32\drivers\aswRvrt.sys [71408 2021-07-05] (Avast Software s.r.o. -> AVAST Software)
R1 aswSnx; C:\Windows\System32\drivers\aswSnx.sys [691224 2021-07-05] (Avast Software s.r.o. -> AVAST Software)
R1 aswSP; C:\Windows\System32\drivers\aswSP.sys [388848 2021-07-05] (Avast Software s.r.o. -> AVAST Software)
S2 aswStm; C:\Windows\System32\drivers\aswStm.sys [161880 2021-07-05] (Avast Software s.r.o. -> AVAST Software)
R0 aswVmm; C:\Windows\System32\drivers\aswVmm.sys [277616 2021-07-05] (Avast Software s.r.o. -> AVAST Software)
R3 athr; C:\Windows\System32\DRIVERS\athr.sys [2184704 2011-02-22] (Microsoft Windows Hardware Compatibility Publisher -> Atheros Communications, Inc.)
R0 AtiPcie; C:\Windows\System32\DRIVERS\AtiPcie.sys [14392 2010-06-17] (Advanced Micro Devices, Inc. -> Advanced Micro Devices Inc.)
R3 EnigmaFileMonDriver; C:\Windows\system32\Drivers\EnigmaFileMonDriver.sys [68040 2021-07-06] (EnigmaSoft Limited -> EnigmaSoft Limited)
S3 ew_usbccgpfilter; C:\Windows\System32\DRIVERS\ew_usbccgpfilter.sys [15360 2020-06-28] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
R2 hardlock; C:\Windows\system32\drivers\hardlock.sys [588800 2009-12-09] (Microsoft Windows Hardware Compatibility Publisher -> SafeNet Inc.)
U5 hw_usbdev; C:\Windows\System32\Drivers\hw_usbdev.sys [102272 2020-06-28] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
S3 pccsmcfd; C:\Windows\System32\DRIVERS\pccsmcfd.sys [19072 2012-06-11] (Microsoft Windows Hardware Compatibility Publisher -> Nokia)
R1 RsFx0200; C:\Windows\System32\DRIVERS\RsFx0200.sys [268888 2012-02-11] (Microsoft Corporation -> Microsoft Corporation)
R3 RSPCIESTOR; C:\Windows\System32\DRIVERS\RtsPStor.sys [254056 2015-06-01] (Realtek Semiconductor Corp -> Realtek Semiconductor Corp.)
S3 SrvHsfHDA; C:\Windows\System32\DRIVERS\VSTAZL3.SYS [207360 2009-07-13] (Microsoft Windows -> Conexant Systems, Inc.)
S3 SrvHsfV92; C:\Windows\System32\DRIVERS\VSTDPV3.SYS [980992 2009-07-13] (Microsoft Windows -> Conexant Systems, Inc.)
S3 SrvHsfWinac; C:\Windows\System32\DRIVERS\VSTCNXT3.SYS [661504 2009-07-13] (Microsoft Windows -> Conexant Systems, Inc.)
R3 STHDA; C:\Windows\System32\DRIVERS\stwrt.sys [435200 2010-12-17] (Microsoft Windows Hardware Compatibility Publisher -> IDT, Inc.)
S3 SydexFDD; C:\Windows\system32\Drivers\sydexfdd.sys [13359 2010-04-15] (Windows (R) 2000 DDK provider) [Archivo no firmado]
S3 teamviewervpn; C:\Windows\System32\DRIVERS\teamviewervpn.sys [25088 2020-03-19] (Microsoft Windows Hardware Compatibility Publisher -> TeamViewer GmbH)
R3 usbfilter; C:\Windows\System32\DRIVERS\usbfilter.sys [35968 2010-11-29] (Advanced Micro Devices, Inc. -> Advanced Micro Devices)
S3 usbser; C:\Windows\System32\DRIVERS\USBSER.sys [28160 2020-06-28] (Microsoft Corporation) [Archivo no firmado]
S3 VSPerfDrv110; C:\Program Files\Microsoft Visual Studio 11.0\Team Tools\Performance Tools\VSPerfDrv110.sys [55416 2012-07-13] (Microsoft Corporation -> Microsoft Corporation)
R3 vusbbus; C:\Windows\System32\DRIVERS\vusbbus.sys [2665472 2012-01-03] (Chingachguk & Denger2k) [Archivo no firmado]
R2 wntpport; C:\Windows\System32\Drivers\wntpport.sys [28416 2009-10-29] (Vireo Software) [Archivo no firmado]
S2 BstHdDrv; \??\C:\Program Files\BlueStacks\HD-Hypervisor-x86.sys [X]
S3 H1dVzRms1AL9i2; \??\C:\Users\Public\Pictures\3nyy5B8gW7qP35i.sys [X]

==================== NetSvcs (Lista blanca) ===================

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)


==================== Un mes (creado) (Lista blanca) =========

(Si una entrada es incluida en el fixlist, el archivo/carpeta será eliminado/a.)

2021-07-06 14:00 - 2021-07-06 14:02 - 000018014 _____ C:\Users\User\Desktop\FRST.txt
2021-07-06 13:29 - 2021-07-06 14:01 - 000000000 ____D C:\FRST
2021-07-06 13:11 - 2021-07-06 13:11 - 000068040 _____ (EnigmaSoft Limited) C:\Windows\system32\Drivers\EnigmaFileMonDriver.sys
2021-07-06 10:22 - 2021-07-06 10:22 - 000000917 _____ C:\Windows\Tasks\ Update {7A1DE94B-8FF7-4C11-B782-84462DA7338A}.job
2021-07-05 22:22 - 2021-07-05 22:22 - 002014208 _____ (Farbar) C:\Users\User\Desktop\FRST.exe
2021-07-05 22:18 - 2021-07-05 22:18 - 000002804 _____ C:\Windows\system32\Tasks\CCleanerSkipUAC
2021-07-05 22:17 - 2021-07-06 13:26 - 000000000 ____D C:\Program Files\CCleaner
2021-07-05 22:17 - 2021-07-05 22:17 - 000003870 _____ C:\Windows\system32\Tasks\CCleaner Update
2021-07-05 22:17 - 2021-07-05 22:17 - 000000969 _____ C:\Users\Public\Desktop\CCleaner.lnk
2021-07-05 22:17 - 2021-07-05 22:17 - 000000969 _____ C:\ProgramData\Desktop\CCleaner.lnk
2021-07-05 22:17 - 2021-07-05 22:17 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2021-07-05 22:16 - 2021-07-05 22:16 - 000000000 ____D C:\Users\User\AppData\Roaming\ZHP
2021-07-05 22:16 - 2021-07-05 22:16 - 000000000 ____D C:\Users\User\AppData\Local\ZHP
2021-07-05 22:15 - 2021-07-05 22:16 - 035958288 _____ (Piriform Software Ltd) C:\Users\User\Documents\ccsetup582.exe
2021-07-05 22:14 - 2021-07-05 22:15 - 003258008 _____ (Nicolas Coolman) C:\Users\User\Documents\ZHPCleaner.exe
2021-07-05 22:05 - 2021-07-05 22:05 - 000003720 _____ C:\Windows\system32\Tasks\Avast Secure Browser Heartbeat Task (Hourly)
2021-07-05 22:05 - 2021-07-05 22:05 - 000003138 _____ C:\Windows\system32\Tasks\Avast Secure Browser Heartbeat Task (Logon)
2021-07-05 22:05 - 2021-07-05 22:05 - 000002449 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Secure Browser.lnk
2021-07-05 22:05 - 2021-07-05 22:05 - 000002406 _____ C:\Users\Public\Desktop\Avast Secure Browser.lnk
2021-07-05 22:05 - 2021-07-05 22:05 - 000002406 _____ C:\ProgramData\Desktop\Avast Secure Browser.lnk
2021-07-05 22:03 - 2021-07-05 22:03 - 000003498 _____ C:\Windows\system32\Tasks\AvastUpdateTaskMachineUA
2021-07-05 22:03 - 2021-07-05 22:03 - 000003370 _____ C:\Windows\system32\Tasks\AvastUpdateTaskMachineCore
2021-07-05 21:58 - 2021-07-05 22:11 - 000000000 ____D C:\Users\User\AppData\Local\Avast Software
2021-07-05 21:58 - 2021-07-05 21:58 - 000002079 _____ C:\Users\Public\Desktop\Avast Free Antivirus.lnk
2021-07-05 21:58 - 2021-07-05 21:58 - 000002079 _____ C:\ProgramData\Desktop\Avast Free Antivirus.lnk
2021-07-05 21:58 - 2021-07-05 21:58 - 000000000 ____D C:\Users\User\AppData\Roaming\Avast Software
2021-07-05 21:58 - 2021-07-05 21:58 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVAST Software
2021-07-05 21:52 - 2021-07-05 21:52 - 000000000 ____D C:\Windows\system32\Tasks\Avast Software
2021-07-05 21:51 - 2021-07-05 21:51 - 000691224 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2021-07-05 21:51 - 2021-07-05 21:51 - 000388848 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2021-07-05 21:51 - 2021-07-05 21:51 - 000379536 _____ (AVAST Software) C:\Windows\system32\Drivers\aswNetHub.sys
2021-07-05 21:51 - 2021-07-05 21:51 - 000287000 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2021-07-05 21:51 - 2021-07-05 21:51 - 000277616 _____ (AVAST Software) C:\Windows\system32\Drivers\aswVmm.sys
2021-07-05 21:51 - 2021-07-05 21:51 - 000206352 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbidsh.sys
2021-07-05 21:51 - 2021-07-05 21:51 - 000183152 _____ (AVAST Software) C:\Windows\system32\Drivers\aswArPot.sys
2021-07-05 21:51 - 2021-07-05 21:51 - 000161880 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2021-07-05 21:51 - 2021-07-05 21:51 - 000152992 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2021-07-05 21:51 - 2021-07-05 21:51 - 000092752 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2021-07-05 21:51 - 2021-07-05 21:51 - 000091672 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbuniv.sys
2021-07-05 21:51 - 2021-07-05 21:51 - 000071408 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRvrt.sys
2021-07-05 21:51 - 2021-07-05 21:51 - 000039320 _____ (AVAST Software) C:\Windows\system32\Drivers\aswKbd.sys
2021-07-05 21:51 - 2021-07-05 21:51 - 000036104 _____ (AVAST Software) C:\Windows\system32\Drivers\aswNetNd6.sys
2021-07-05 21:51 - 2021-07-05 21:51 - 000033608 _____ (AVAST Software) C:\Windows\system32\Drivers\aswArDisk.sys
2021-07-05 21:51 - 2021-07-05 21:51 - 000003910 _____ C:\Windows\system32\Tasks\Avast Emergency Update
2021-07-05 21:51 - 2021-07-05 21:51 - 000000000 ____D C:\Program Files\Common Files\Avast Software
2021-07-05 21:51 - 2021-07-05 21:50 - 000292880 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbidsdriver.sys
2021-07-05 21:47 - 2021-07-05 22:02 - 000000000 ____D C:\Program Files\Avast Software
2021-07-05 21:46 - 2021-07-06 13:12 - 000000000 ____D C:\ProgramData\Avast Software
2021-07-05 21:41 - 2021-07-05 21:41 - 000143224 _____ C:\Windows\Minidump\070521-41075-01.dmp
2021-07-05 20:50 - 2021-07-05 20:50 - 000000000 ____D C:\Users\User\AppData\LocalLow\IGDump
2021-07-05 19:33 - 2021-07-05 19:35 - 000225816 _____ (AVAST Software) C:\Users\User\Documents\avast_free_antivirus_setup_online.exe
2021-07-05 19:33 - 2021-07-05 19:35 - 000225816 _____ (AVAST Software) C:\Users\User\Desktop\avast_free_antivirus_setup_online.exe
2021-07-05 15:36 - 2021-07-05 15:36 - 000000000 ____D C:\Windows\system32\Tasks\Safer-Networking
2021-07-05 15:34 - 2021-07-05 15:34 - 000002135 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot-S&D Start Center.lnk
2021-07-05 15:34 - 2021-07-05 15:34 - 000002123 _____ C:\Users\Public\Desktop\Spybot-S&D Start Center.lnk
2021-07-05 15:34 - 2021-07-05 15:34 - 000002123 _____ C:\ProgramData\Desktop\Spybot-S&D Start Center.lnk
2021-07-05 15:34 - 2021-07-05 15:34 - 000001053 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SpywareBlaster.lnk
2021-07-05 15:34 - 2021-07-05 15:34 - 000001041 _____ C:\Users\Public\Desktop\SpywareBlaster.lnk
2021-07-05 15:34 - 2021-07-05 15:34 - 000001041 _____ C:\ProgramData\Desktop\SpywareBlaster.lnk
2021-07-05 15:34 - 2021-07-05 15:34 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot - Search & Destroy 2
2021-07-05 15:34 - 2021-07-05 15:34 - 000000000 ____D C:\Program Files\SpywareBlaster
2021-07-05 15:33 - 2021-07-06 13:13 - 000000000 ____D C:\Program Files\Spybot - Search & Destroy 2
2021-07-05 15:33 - 2021-07-05 17:40 - 000000000 ____D C:\ProgramData\Spybot - Search & Destroy
2021-07-05 15:33 - 2018-02-06 17:50 - 000030056 _____ (Safer-Networking Ltd.) C:\Windows\system32\sdnclean.exe
2021-07-05 15:27 - 2021-07-05 15:28 - 008553680 _____ (Malwarebytes) C:\Users\User\Documents\adwcleaner_8.3.0.exe
2021-07-05 15:26 - 2021-07-05 15:27 - 004432784 _____ (BrightFort LLC ) C:\Users\User\Documents\spywareblastersetup60.exe
2021-07-05 15:25 - 2021-07-05 15:29 - 069910960 _____ (Safer-Networking Ltd. ) C:\Users\User\Documents\spybotsd-2.7.64.0.exe
2021-07-05 15:22 - 2021-07-05 15:24 - 002093656 _____ (Malwarebytes) C:\Users\User\Documents\MBSetup.exe
2021-07-05 13:59 - 2021-07-05 13:59 - 000000000 ____D C:\Users\User\AppData\Roaming\Motorola
2021-07-05 13:41 - 2021-07-05 13:41 - 000000020 _____ C:\Windows\u
2021-07-05 09:51 - 2021-07-05 09:51 - 000000000 ____D C:\Users\User\Desktop\Nueva carpeta
2021-07-05 09:46 - 2021-07-05 09:46 - 000066656 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbam.sys
2021-07-05 09:46 - 2021-07-05 09:46 - 000001960 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2021-07-05 09:46 - 2021-07-05 09:46 - 000001948 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2021-07-05 09:46 - 2021-07-05 09:46 - 000001948 _____ C:\ProgramData\Desktop\Malwarebytes.lnk
2021-07-05 09:45 - 2021-07-05 09:45 - 000213936 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamswissarmy.sys
2021-07-05 09:45 - 2021-07-05 09:45 - 000184200 _____ (Malwarebytes) C:\Windows\system32\Drivers\MbamChameleon.sys
2021-07-05 09:45 - 2021-07-05 09:45 - 000161512 _____ (Malwarebytes) C:\Windows\system32\Drivers\farflt.sys
2021-07-05 09:45 - 2021-07-05 09:45 - 000122552 _____ (Malwarebytes) C:\Windows\system32\Drivers\mwac.sys
2021-07-05 09:44 - 2021-07-05 09:44 - 000000000 ____D C:\ProgramData\Malwarebytes
2021-07-05 09:44 - 2021-07-05 09:43 - 000163800 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbae.sys
2021-07-05 08:05 - 2021-07-05 08:05 - 000001847 _____ C:\Users\User\Desktop\ShadowExplorer.lnk
2021-07-05 08:05 - 2021-07-05 08:05 - 000000000 ____D C:\Users\User\AppData\Roaming\www.shadowexplorer.com
2021-07-05 08:05 - 2021-07-05 08:05 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ShadowExplorer
2021-07-05 08:04 - 2021-07-05 08:05 - 000000000 ____D C:\Program Files\ShadowExplorer
2021-07-05 02:32 - 2021-07-05 02:32 - 000000000 ____D C:\Users\User\AppData\Local\mbam
2021-07-05 01:10 - 2021-07-05 01:10 - 000000000 ____D C:\Program Files\Malwarebytes
2021-07-05 00:55 - 2021-07-05 00:55 - 000001191 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SpyHunter5.lnk
2021-07-05 00:55 - 2021-07-05 00:55 - 000001167 _____ C:\Users\Public\Desktop\SpyHunter5.lnk
2021-07-05 00:55 - 2021-07-05 00:55 - 000001167 _____ C:\ProgramData\Desktop\SpyHunter5.lnk
2021-07-05 00:55 - 2021-07-05 00:55 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EnigmaSoft
2021-07-05 00:55 - 2021-07-05 00:55 - 000000000 ____D C:\ProgramData\EnigmaSoft Limited
2021-07-05 00:54 - 2021-07-05 00:55 - 000000000 ____D C:\sh5ldr
2021-07-05 00:50 - 2021-07-05 00:50 - 000000000 ____D C:\Program Files\EnigmaSoft
2021-07-04 23:35 - 2021-07-05 08:19 - 001358136 _____ C:\Windows\ntbtlog.txt
2021-07-04 23:20 - 2021-07-05 00:46 - 000000000 ____D C:\Windows\pss
2021-07-04 21:56 - 2021-07-04 21:56 - 000000000 ____D C:\Users\User\AppData\Local\Yandex
2021-07-04 21:36 - 2021-07-04 21:36 - 000001109 _____ C:\Users\User\_readme.txt
2021-07-04 21:36 - 2021-07-04 21:36 - 000001109 _____ C:\Users\MSSQL$SQLEXPRESS2012\_readme.txt
2021-07-04 21:35 - 2021-07-04 21:35 - 000001109 _____ C:\Program Files\_readme.txt
2021-07-04 21:35 - 2021-07-04 21:35 - 000001109 _____ C:\_readme.txt
2021-07-04 21:35 - 2021-07-04 21:35 - 000000558 _____ C:\Users\User\AppData\Local\bowsakkdestx.txt
2021-07-04 21:35 - 2021-07-04 21:35 - 000000000 ____D C:\SystemID
2021-07-04 21:29 - 2021-07-06 14:02 - 020185088 _____ C:\Windows\system32\C_32770.NLS
2021-07-04 20:52 - 2021-07-04 21:31 - 002459648 ____N C:\Windows\system32\Drivers\uUjC52.sys
2021-07-04 20:52 - 2021-07-04 20:52 - 001564823 _____ C:\ProgramData\4649
2021-07-04 20:51 - 2021-07-04 22:55 - 000000000 ____D C:\winCrtdhcpcommon
2021-07-04 20:51 - 2021-07-04 20:51 - 001564823 _____ C:\ProgramData\5969
2021-07-04 14:43 - 2021-07-04 21:41 - 000119874 _____ C:\Users\User\Downloads\[PiratePC.Co] Tenorshare UltData for Android _ Only(1).zip.zqqw
2021-07-04 13:48 - 2021-07-04 22:17 - 000000000 ____D C:\Program Files\UltData for Android
2021-07-04 10:20 - 2021-07-04 10:20 - 000000000 ____D C:\Users\User\AppData\Roaming\Wondershare
2021-07-03 21:37 - 2021-07-04 21:35 - 000000000 ____D C:\Tenorshare
2021-07-03 21:37 - 2021-07-03 21:37 - 000001217 _____ C:\Users\Public\Desktop\Wondershare Recoverit.lnk
2021-07-03 21:37 - 2021-07-03 21:37 - 000001217 _____ C:\ProgramData\Desktop\Wondershare Recoverit.lnk
2021-07-03 21:36 - 2021-07-04 22:55 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\UltData for Android
2021-07-03 21:36 - 2021-07-03 21:36 - 000001312 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\UltData for Android.lnk
2021-07-03 21:36 - 2021-07-03 21:36 - 000001300 _____ C:\Users\Public\Desktop\UltData for Android.lnk
2021-07-03 21:36 - 2021-07-03 21:36 - 000001300 _____ C:\ProgramData\Desktop\UltData for Android.lnk
2021-07-03 21:22 - 2021-07-04 22:51 - 000000000 ____D C:\Program Files\Tenorshare
2021-06-29 13:31 - 2021-07-05 21:40 - 345746991 _____ C:\Windows\MEMORY.DMP
2021-06-29 13:31 - 2021-06-29 13:31 - 000143296 _____ C:\Windows\Minidump\062921-43368-01.dmp

==================== Un mes (modificado) ==================

(Si una entrada es incluida en el fixlist, el archivo/carpeta será eliminado/a.)

2021-07-06 13:30 - 2009-07-14 00:04 - 000016480 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2021-07-06 13:30 - 2009-07-14 00:04 - 000016480 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2021-07-06 13:18 - 2011-04-12 12:52 - 000795536 _____ C:\Windows\system32\perfh00A.dat
2021-07-06 13:18 - 2011-04-12 12:52 - 000177236 _____ C:\Windows\system32\perfc00A.dat
2021-07-06 13:18 - 2010-11-20 16:31 - 001811308 _____ C:\Windows\system32\PerfStringBackup.INI
2021-07-06 13:18 - 2009-07-13 22:07 - 000000000 ____D C:\Windows\inf
2021-07-06 13:11 - 2018-06-05 20:55 - 000065536 _____ C:\Windows\system32\Ikeext.etl
2021-07-06 13:11 - 2009-07-14 00:23 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2021-07-05 21:41 - 2015-01-31 12:47 - 000000000 ____D C:\Windows\Minidump
2021-07-05 19:43 - 2020-10-28 15:37 - 000007605 _____ C:\Users\User\AppData\Local\Resmon.ResmonCfg
2021-07-05 18:07 - 2011-07-19 19:18 - 000000000 ____D C:\ProgramData\Temp
2021-07-05 15:41 - 2018-07-16 15:45 - 000000035 _____ C:\Users\Public\Documents\AtherosServiceConfig.ini
2021-07-05 15:41 - 2018-07-16 15:45 - 000000035 _____ C:\ProgramData\Documents\AtherosServiceConfig.ini
2021-07-05 15:38 - 2018-05-22 01:25 - 000000282 __RSH C:\ProgramData\ntuser.pol
2021-07-05 13:59 - 2019-07-09 09:21 - 000000000 ____D C:\Program Files\Motorola Mobility
2021-07-05 13:59 - 2011-04-12 03:28 - 000000000 ___HD C:\Program Files\InstallShield Installation Information
2021-07-05 13:42 - 2011-04-12 03:24 - 000000000 ____D C:\Program Files\Windows Live
2021-07-05 13:41 - 2011-04-12 03:25 - 000000000 ____D C:\Program Files\Microsoft SQL Server Compact Edition
2021-07-05 13:39 - 2009-07-13 22:07 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2021-07-05 13:36 - 2018-03-19 14:46 - 000000000 ____D C:\ProgramData\Electronic Arts
2021-07-05 10:44 - 2014-03-10 04:17 - 000000000 ____D C:\Users\MSSQL$SQLEXPRESS2012
2021-07-05 09:47 - 2014-05-03 20:12 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EPSON
2021-07-05 09:47 - 2014-05-03 20:12 - 000000000 ____D C:\Program Files\epson
2021-07-05 09:45 - 2020-09-20 10:22 - 000131352 _____ C:\Windows\system32\GDIPFONTCACHEV1.DAT
2021-07-05 09:40 - 2009-07-13 22:07 - 000000000 __RHD C:\Users\Public\Libraries
2021-07-05 09:38 - 2018-03-20 18:00 - 000000000 ____D C:\Program Files\Mozilla Maintenance Service
2021-07-05 09:38 - 2013-02-18 20:14 - 000000000 ____D C:\Program Files\Pixlr
2021-07-05 09:36 - 2011-10-13 21:58 - 000000000 ____D C:\ProgramData\Skype
2021-07-05 09:35 - 2018-10-15 08:35 - 000000000 ____D C:\Program Files\Nokia
2021-07-05 09:35 - 2017-02-22 18:00 - 000000000 ____D C:\Users\User\AppData\Local\SkypePlugin
2021-07-05 09:34 - 2020-03-25 23:43 - 000000000 ____D C:\Program Files\VideoLAN
2021-07-05 09:27 - 2019-07-09 09:21 - 000000000 ____D C:\Temp
2021-07-05 09:26 - 2020-08-10 12:01 - 000000917 _____ C:\Windows\Tasks\EPSON L3150 Series Update {DD86AEFB-1EA0-4D48-ACF4-61AFFC7FCFB5}.job
2021-07-05 09:26 - 2020-05-14 21:40 - 000000000 ____D C:\Users\User\AppData\Roaming\Zoom
2021-07-05 09:26 - 2018-08-09 08:52 - 003870592 _____ C:\Windows\system32\FNTCACHE.DAT
2021-07-05 09:26 - 2015-02-09 10:15 - 000001042 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-4047135609-2362062722-1061616882-1001UA1d0447714d75660.job
2021-07-05 09:24 - 2019-08-02 21:33 - 000000000 ____D C:\Program Files\TeamViewer
2021-07-05 09:23 - 2020-06-04 16:51 - 000000000 ____D C:\Users\User\AppData\Local\WebEx
2021-07-05 08:04 - 2015-01-31 15:28 - 000000000 ____D C:\Users\User\Documents\Bluetooth Folder
2021-07-05 02:14 - 2014-06-19 16:34 - 000000000 ____D C:\Clipart
2021-07-05 00:50 - 2014-05-18 10:46 - 000001042 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-4047135609-2362062722-1061616882-1001UA1cf72ac33623b59.job
2021-07-04 22:56 - 2020-03-29 23:29 - 000000000 ____D C:\xampp
2021-07-04 22:56 - 2009-07-13 22:07 - 000000000 ____D C:\Windows\AppCompat
2021-07-04 22:55 - 2021-05-03 15:21 - 000000000 ____D C:\ProgramData\McAfee Security Scan
2021-07-04 22:55 - 2020-11-24 06:32 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wondershare
2021-07-04 22:55 - 2020-11-24 06:31 - 000000000 ____D C:\Program Files\Wondershare
2021-07-04 22:55 - 2020-05-23 16:10 - 000000000 ____D C:\Program Files\Mozilla Firefox
2021-07-04 22:55 - 2019-02-13 07:41 - 000000000 ____D C:\Users\User\Downloads\RESET_EPSON_TX430W TX420W
2021-07-04 22:55 - 2018-05-22 01:25 - 000000000 ____D C:\Users\User\Downloads\Canaima
2021-07-04 22:55 - 2018-03-16 20:21 - 000000000 ____D C:\Users\User\Downloads\Nueva carpeta
2021-07-04 22:55 - 2011-02-10 14:53 - 000000000 ___HD C:\SYSTEM.SAV
2021-07-04 22:55 - 2009-07-13 22:07 - 000000000 ____D C:\Windows\registration
2021-07-04 22:53 - 2011-02-10 14:53 - 000000000 ____D C:\SWSetup
2021-07-04 22:52 - 2020-11-24 06:31 - 000000000 ____D C:\ProgramData\Wondershare
2021-07-04 22:52 - 2017-09-21 18:07 - 000000000 ___HD C:\respaldo
2021-07-04 22:51 - 2011-02-16 14:21 - 000000000 ___HD C:\HP
2021-07-04 22:05 - 2018-02-22 07:30 - 000000000 ____D C:\Users\User\Downloads\redes
2021-07-04 22:04 - 2019-08-20 14:21 - 000000000 ____D C:\Users\User\Downloads\Ready Set Go Patterns 2 by Harper Finch
2021-07-04 22:04 - 2019-08-20 14:20 - 000000000 ____D C:\Users\User\Downloads\Ready Set Go! Patterns by Harper Finch
2021-07-04 22:04 - 2019-05-07 11:43 - 000000000 ____D C:\Users\User\Downloads\LABELS
2021-07-04 22:04 - 2019-03-18 05:43 - 000000000 ____D C:\Users\User\Downloads\body niña
2021-07-04 22:04 - 2018-07-29 15:38 - 000000000 ____D C:\Users\User\Downloads\planos
2021-07-04 22:04 - 2018-07-16 21:26 - 000000000 ____D C:\Users\User\Downloads\Fluttershy M&T Pattern Release
2021-07-04 21:41 - 2019-08-20 14:57 - 000047149 _____ C:\Users\User\Downloads\{3D} RENDER DELANTE.jpg.zqqw
2021-07-04 21:41 - 2019-08-20 14:57 - 000046015 _____ C:\Users\User\Downloads\{3D} RENDER ATRAS.jpg.zqqw
2021-07-04 21:41 - 2019-08-20 14:57 - 000043874 _____ C:\Users\User\Downloads\{3D}NIVEL 2.jpg.zqqw
2021-07-04 21:41 - 2019-08-19 12:49 - 000028519 _____ C:\Users\User\Downloads\renov.docx.zqqw
2021-07-04 21:41 - 2019-06-28 10:18 - 000468674 _____ C:\Users\User\Downloads\Yasmin C. Flores L..pdf.zqqw
2021-07-04 21:41 - 2019-06-28 01:38 - 065457540 _____ C:\Users\User\Downloads\publicidad-Recuperado.psd.zqqw
2021-07-04 21:41 - 2019-05-04 23:41 - 000121446 _____ C:\Users\User\Downloads\Sistema-de-Facturacion-Ejemplo.xlsm.zqqw
2021-07-04 21:41 - 2019-05-01 11:22 - 036252309 _____ C:\Users\User\Downloads\publicidad.psd.zqqw
2021-07-04 21:41 - 2019-04-24 20:25 - 000768846 _____ C:\Users\User\Downloads\TESTIGOS DE JEHOVA DE VENEZUELA.doc.zqqw
2021-07-04 21:41 - 2019-02-14 00:34 - 000275278 _____ C:\Users\User\Downloads\Solicitud_Contrato_Afiliacion_Establecimiento_TDC_TDD (2).doc.zqqw
2021-07-04 21:41 - 2019-02-14 00:33 - 000275278 _____ C:\Users\User\Downloads\Solicitud_Contrato_Afiliacion_Establecimiento_TDC_TDD (1).doc.zqqw
2021-07-04 21:41 - 2019-02-14 00:29 - 000275278 _____ C:\Users\User\Downloads\Solicitud_Contrato_Afiliacion_Establecimiento_TDC_TDD.doc.zqqw
2021-07-04 21:41 - 2018-10-30 07:12 - 000050524 _____ C:\Users\User\Downloads\WhatsApp Image 2018-10-30 at 7.16.10 AM.jpeg.zqqw
2021-07-04 21:41 - 2018-10-17 01:26 - 000033614 _____ C:\Users\User\Downloads\programming_and_unlock_quick_reference-1.xls.zqqw
2021-07-04 21:41 - 2018-09-30 18:14 - 000014359 _____ C:\Users\User\Downloads\Resolución N° 031 de fecha 1° de febrero de 1999, mediante la cual se establece que las personas, para profesar su fe religiosa y ejercer su culto, que necesiten constituir iglesias (1).docx.zqqw
2021-07-04 21:41 - 2018-09-30 18:13 - 000066732 _____ C:\Users\User\Downloads\Reglamento Organico MPPRIJP (2).docx.zqqw
2021-07-04 21:41 - 2018-09-30 17:41 - 000066732 _____ C:\Users\User\Downloads\Reglamento Organico MPPRIJP (1).docx.zqqw
2021-07-04 21:41 - 2018-09-30 17:34 - 000014359 _____ C:\Users\User\Downloads\Resolución N° 031 de fecha 1° de febrero de 1999, mediante la cual se establece que las personas, para profesar su fe religiosa y ejercer su culto, que necesiten constituir iglesias.docx.zqqw
2021-07-04 21:41 - 2018-09-30 16:47 - 000066732 _____ C:\Users\User\Downloads\Reglamento Organico MPPRIJP.docx.zqqw
2021-07-04 21:41 - 2018-09-12 08:05 - 000031290 _____ C:\Users\User\Downloads\rifyas.pdf.zqqw
2021-07-04 21:41 - 2018-07-16 21:05 - 000093168 _____ C:\Users\User\Downloads\pony_plush_tutorials_and_pattern_by_adamlhumphreys-d88hibu.png.zqqw
2021-07-04 21:41 - 2018-07-16 16:41 - 000482827 _____ C:\Users\User\Downloads\pony_plushie_pattern_v2_0_by_jackiekie-d5hjacn.png.zqqw
2021-07-04 21:41 - 2018-05-22 01:27 - 000937926 _____ C:\Users\User\Downloads\zRufus-2.11.exe.zqqw
2021-07-04 21:41 - 2018-05-22 01:27 - 000227009 _____ C:\Users\User\Downloads\Windows7 MiniOS-Desktop.pdf.zqqw
2021-07-04 21:41 - 2018-05-14 01:24 - 000043854 _____ C:\Users\User\Downloads\Solicitud_Registro_Nacimiento_Mayores_Formato_3.doc.zqqw
2021-07-04 21:41 - 2018-03-21 09:33 - 000030979 _____ C:\Users\User\Downloads\Sin título-3.png.zqqw
2021-07-04 21:41 - 2018-03-02 16:19 - 000191829 _____ C:\Users\User\Downloads\REDES.docx.zqqw
2021-07-04 21:41 - 2018-02-22 12:59 - 005481822 _____ C:\Users\User\Downloads\Yaskawaii Informacion.docx.zqqw
2021-07-04 21:41 - 2018-02-22 12:52 - 001224513 _____ C:\Users\User\Downloads\Yaskawaii Informacion.pdf.zqqw
2021-07-04 21:41 - 2018-01-31 02:15 - 000091910 _____ C:\Users\User\Downloads\WhatsApp Image 2018-01-31 at 1.40.04 AM.jpeg.zqqw
2021-07-04 21:41 - 2018-01-31 02:15 - 000089606 _____ C:\Users\User\Downloads\WhatsApp Image 2018-01-31 at 1.44.47 AM.jpeg.zqqw
2021-07-04 21:41 - 2018-01-31 02:15 - 000086731 _____ C:\Users\User\Downloads\WhatsApp Image 2018-01-31 at 1.44.48 AM.jpeg.zqqw
2021-07-04 21:41 - 2018-01-31 02:14 - 000083968 _____ C:\Users\User\Downloads\WhatsApp Image 2018-01-31 at 1.40.00 AM.jpeg.zqqw
2021-07-04 21:41 - 2018-01-29 08:59 - 000560109 _____ C:\Users\User\Downloads\WhatsApp Image 2018-01-29 at 8.29.19 AM.jpeg.zqqw
2021-07-04 21:40 - 2021-06-03 16:59 - 011175398 _____ C:\Users\User\Downloads\FileZilla_3.52.2_win32-setup.exe.zqqw
2021-07-04 21:40 - 2021-06-03 16:55 - 011166806 _____ C:\Users\User\Downloads\FileZilla_3.51.0_win32-setup.exe.zqqw
2021-07-04 21:40 - 2021-02-25 16:36 - 000000496 ____H C:\Users\User\Documents\~$sson plan.docx.zqqw
2021-07-04 21:40 - 2021-02-25 16:35 - 000000496 ____H C:\Users\User\Documents\~$t  5A, 5B (II M).Prof Omar Leonet(Cramer,Inec,Combinatoria).docx.zqqw
2021-07-04 21:40 - 2021-02-25 16:16 - 000450019 ____H C:\Users\User\Documents\~WRL0003.tmp.zqqw
2021-07-04 21:40 - 2020-09-18 17:54 - 000179282 _____ C:\Users\User\Downloads\logo.png.zqqw
2021-07-04 21:40 - 2020-09-15 08:08 - 000026628 ____H C:\Users\User\Documents\~WRL0168.tmp.zqqw
2021-07-04 21:40 - 2020-08-09 17:54 - 000014281 ____H C:\Users\User\Documents\~WRL3256.tmp.zqqw
2021-07-04 21:40 - 2020-04-08 23:22 - 000012651 _____ C:\Users\User\Downloads\Informe de Pagos  ChocoWawita.xlsx.zqqw
2021-07-04 21:40 - 2020-03-02 08:14 - 000311630 _____ C:\Users\User\Downloads\ADP_013_solicitud_contrato_afiliacion_de_establecimiento_al_uso_de_tarjetas_de_credito_debito.doc.zqqw
2021-07-04 21:40 - 2020-03-02 08:14 - 000311630 _____ C:\Users\User\Downloads\ADP_013_solicitud_contrato_afiliacion_de_establecimiento_al_uso_de_tarjetas_de_credito_debito (1).doc.zqqw
2021-07-04 21:40 - 2020-01-23 07:27 - 000120576 _____ C:\Users\User\Downloads\credencial.jpg.zqqw
2021-07-04 21:40 - 2020-01-20 01:43 - 013359231 _____ C:\Users\User\Downloads\animationinstalacion.rar.zqqw
2021-07-04 21:40 - 2020-01-08 11:17 - 001614158 _____ C:\Users\User\Downloads\chocowawita FINAL.doc.zqqw
2021-07-04 21:40 - 2020-01-08 10:32 - 001614158 _____ C:\Users\User\Downloads\chocowawita (1).doc.zqqw
2021-07-04 21:40 - 2019-10-21 23:18 - 002033850 _____ C:\Users\User\Downloads\etique3.psd.zqqw
2021-07-04 21:40 - 2019-10-21 23:17 - 000322851 _____ C:\Users\User\Downloads\etiquetaimpre.docx.zqqw
2021-07-04 21:40 - 2019-10-21 09:19 - 000504300 _____ C:\Users\User\Downloads\etiqueta.docx.zqqw
2021-07-04 21:40 - 2019-10-21 09:03 - 000087732 _____ C:\Users\User\Downloads\etiqueta2.png.zqqw
2021-07-04 21:40 - 2019-10-21 09:01 - 000067711 _____ C:\Users\User\Downloads\etiqueta.png.zqqw
2021-07-04 21:40 - 2019-10-21 03:00 - 000321557 _____ C:\Users\User\Downloads\logo.docx.zqqw
2021-07-04 21:40 - 2019-10-21 02:21 - 003782925 _____ C:\Users\User\Downloads\CHOCOWAWITAETIQUETA.psd.zqqw
2021-07-04 21:40 - 2019-10-03 07:37 - 001199677 _____ C:\Users\User\Downloads\impre.docx.zqqw
2021-07-04 21:40 - 2019-10-03 07:37 - 001199677 _____ C:\Users\User\Downloads\impre (1).docx.zqqw
2021-07-04 21:40 - 2019-10-02 10:28 - 000046500 _____ C:\Users\User\Downloads\IMG-20191001-WA0002.jpg.zqqw
2021-07-04 21:40 - 2019-10-01 17:36 - 000012715 _____ C:\Users\User\Downloads\mINISTERIO a POSTOLADO A LAS NACIONES.docx.zqqw
2021-07-04 21:40 - 2019-09-26 21:59 - 000016077 _____ C:\Users\User\Downloads\DGJRIC.REGLAMENTOINTERNO.docx.zqqw
2021-07-04 21:40 - 2019-08-22 07:11 - 000286055 _____ C:\Users\User\Downloads\img263.jpg.zqqw
2021-07-04 21:40 - 2019-08-19 13:10 - 000162638 _____ C:\Users\User\Downloads\mayo.doc.zqqw
2021-07-04 21:40 - 2019-08-15 15:23 - 001576118 _____ C:\Users\User\Downloads\logoseriochoco.psd.zqqw
2021-07-04 21:40 - 2019-08-15 14:57 - 005633024 _____ C:\Users\User\Downloads\deliverychoco.psd.zqqw
2021-07-04 21:40 - 2019-08-07 08:19 - 000272718 _____ C:\Users\User\Downloads\CREDITO_AL_CONSUMO18.doc.zqqw
2021-07-04 21:40 - 2019-08-07 08:19 - 000053070 _____ C:\Users\User\Downloads\CNE_348_balance_personal.xls.zqqw
2021-07-04 21:40 - 2019-08-07 08:19 - 000038734 _____ C:\Users\User\Downloads\CNE.377_carta_explicativa.doc.zqqw
2021-07-04 21:40 - 2019-07-24 08:38 - 000133688 _____ C:\Users\User\Downloads\66083429_349494929285350_2628159947479092388_n.jpg.zqqw
2021-07-04 21:40 - 2019-07-06 20:17 - 000632318 _____ C:\Users\User\Downloads\cupg.png.zqqw
2021-07-04 21:40 - 2019-06-28 10:19 - 000540078 _____ C:\Users\User\Downloads\Pasteleria Básica - Yennifer López.pdf.zqqw
2021-07-04 21:40 - 2019-06-24 12:52 - 000081488 _____ C:\Users\User\Downloads\62514321_633812383765789_7898804517905367040_n (1).jpg.zqqw
2021-07-04 21:40 - 2019-06-19 21:32 - 002377464 _____ C:\Users\User\Downloads\impre.png.zqqw
2021-07-04 21:40 - 2019-06-07 08:30 - 000595895 _____ C:\Users\User\Downloads\l.png.zqqw
2021-07-04 21:40 - 2019-06-05 23:09 - 000608035 _____ C:\Users\User\Downloads\23_motivos_cute_by_by_kary_d4tuigz.pat.zqqw
2021-07-04 21:40 - 2019-05-26 05:33 - 000171031 _____ C:\Users\User\Downloads\juegoajedrez.png.zqqw
2021-07-04 21:40 - 2019-05-08 19:45 - 000000499 ____H C:\Users\User\Documents\~$tortabase.xlsx.zqqw
2021-07-04 21:40 - 2019-05-07 19:24 - 043335786 _____ C:\Users\User\Downloads\chocowawitaafiche.psd.zqqw
2021-07-04 21:40 - 2019-05-07 13:32 - 008698982 _____ C:\Users\User\Downloads\afiche.png.zqqw
2021-07-04 21:40 - 2019-05-05 02:58 - 000019318 _____ C:\Users\User\Downloads\planilla-de-excel-calculadora-de-costo-de-recetas.xlsx.zqqw
2021-07-04 21:40 - 2019-05-01 09:37 - 001692565 _____ C:\Users\User\Downloads\logobebe.psd.zqqw
2021-07-04 21:40 - 2019-04-24 20:50 - 000496462 _____ C:\Users\User\Downloads\CONSTANCIA TESTIGO DE JEHOVA DFE VENEZUELA.doc.zqqw
2021-07-04 21:40 - 2019-03-09 05:50 - 000771406 _____ C:\Users\User\Downloads\2019_Macaracuay_Tickes - Pto de Venta (1).doc.zqqw
2021-07-04 21:40 - 2019-02-27 01:52 - 000014689 _____ C:\Users\User\Downloads\9900884ad46a4bbf53c0ecde3c1d20e9.jpg.zqqw
2021-07-04 21:40 - 2019-02-27 01:51 - 000014479 _____ C:\Users\User\Downloads\610630500ebf3c5a8d5cbd5ee1ba2907 (1).jpg.zqqw
2021-07-04 21:40 - 2019-02-27 01:48 - 000015542 _____ C:\Users\User\Downloads\5ca8aa769d816868cad347a34fa540f8.jpg.zqqw
2021-07-04 21:40 - 2019-02-27 01:45 - 000011398 _____ C:\Users\User\Downloads\711d17af865a6be481c95c3bc8257996.jpg.zqqw
2021-07-04 21:40 - 2019-02-27 01:44 - 000007016 _____ C:\Users\User\Downloads\04e9a5a899b9a272507a561ddd82b4ec.jpg.zqqw
2021-07-04 21:40 - 2019-02-27 01:33 - 000040401 _____ C:\Users\User\Downloads\e92f581a995a422f515d3b78df675658.jpg.zqqw
2021-07-04 21:40 - 2019-02-27 01:27 - 000133815 _____ C:\Users\User\Downloads\60184718105684d313303697846ab661.jpg.zqqw
2021-07-04 21:40 - 2019-02-14 06:59 - 000018687 _____ C:\Users\User\Downloads\2e1e66f8240bc87c41006246a6075dcb.jpg.zqqw
2021-07-04 21:40 - 2019-02-14 06:31 - 000043173 _____ C:\Users\User\Downloads\Planos-para-construir-casas-gratis.png.zqqw
2021-07-04 21:40 - 2019-02-14 05:45 - 000054606 _____ C:\Users\User\Downloads\FO_Planilla_Afiliacion_ Instalacion_POS.xls.zqqw
2021-07-04 21:40 - 2019-02-13 01:43 - 000437070 _____ C:\Users\User\Downloads\FO_Solicitud_de_Creditos_Sociales.xls.zqqw
2021-07-04 21:40 - 2019-02-07 20:56 - 000053070 _____ C:\Users\User\Downloads\MAXIMO FLORES RODRÍGUEZ.doc.zqqw
2021-07-04 21:40 - 2018-12-05 10:08 - 000284406 _____ C:\Users\User\Downloads\modelo_solicitud_balances.xlsx.zqqw
2021-07-04 21:40 - 2018-12-05 09:28 - 000020334 _____ C:\Users\User\Downloads\Certificado-de-ingresos-expedida-por-contador-público-1.docx.zqqw
2021-07-04 21:40 - 2018-11-01 07:27 - 000055118 _____ C:\Users\User\Downloads\ACTA DE ASOCIACION SANTIDAD DE DIOS.doc.zqqw
2021-07-04 21:40 - 2018-10-29 20:01 - 000041420 _____ C:\Users\User\Downloads\imagen.png.jpeg.zqqw
2021-07-04 21:40 - 2018-10-17 01:06 - 000045390 _____ C:\Users\User\Downloads\COMPATIBILIDAD NOKIA.doc.zqqw
2021-07-04 21:40 - 2018-10-15 15:42 - 000000496 ____H C:\Users\User\Desktop\~$TA CONSTITUTIVA MODELO.docx.zqqw
2021-07-04 21:40 - 2018-10-11 06:57 - 000169350 _____ C:\Users\User\Downloads\cedula.pptx.zqqw
2021-07-04 21:40 - 2018-09-14 20:24 - 000077737 _____ C:\Users\User\Downloads\IVSS%2c INVERSIONES DALUPA.COM%2c C.A.docx.zqqw
2021-07-04 21:40 - 2018-08-25 15:06 - 000205811 _____ C:\Users\User\Downloads\01_MANUAL COMPRADOR VERSION BETA.pdf.zqqw
2021-07-04 21:40 - 2018-07-22 12:26 - 000027312 _____ C:\Users\User\Downloads\f3c29b073ab5a9db5bf7d6b36fce5e7c.jpg.zqqw
2021-07-04 21:40 - 2018-07-22 12:25 - 000052529 _____ C:\Users\User\Downloads\6b45bcac18c7e78642b702d28c42bf80.jpg.zqqw
2021-07-04 21:40 - 2018-07-22 12:25 - 000047522 _____ C:\Users\User\Downloads\328ad1643df6a458aafe02527c8bb4f1.jpg.zqqw
2021-07-04 21:40 - 2018-07-22 12:25 - 000025729 _____ C:\Users\User\Downloads\a714c61ce3c6f2d4dd33bc193fe5a631.jpg.zqqw
2021-07-04 21:40 - 2018-07-22 12:23 - 000091960 _____ C:\Users\User\Downloads\013adc6b99b2b327e283ae121d081fbe.jpg.zqqw
2021-07-04 21:40 - 2018-07-22 12:22 - 000028397 _____ C:\Users\User\Downloads\8d54dc0a8c87ee49b6e9b7ace605f4c4.jpg.zqqw
2021-07-04 21:40 - 2018-07-22 10:50 - 000090806 _____ C:\Users\User\Downloads\BeeZeeArt_unicorn_165_1280x1280.jpg.zqqw
2021-07-04 21:40 - 2018-07-22 01:10 - 000030844 _____ C:\Users\User\Downloads\be7161c12be2b14af215fa221d87ddb6.jpg.zqqw
2021-07-04 21:40 - 2018-07-22 01:07 - 000046522 _____ C:\Users\User\Downloads\482c5fa9dae66b1846352133c741d9d4.jpg.zqqw
2021-07-04 21:40 - 2018-07-22 01:07 - 000029354 _____ C:\Users\User\Downloads\042c09c222301d54d31467f531362727.jpg.zqqw
2021-07-04 21:40 - 2018-07-19 22:57 - 003229357 _____ C:\Users\User\Downloads\IMG_20180719_224512.jpg.zqqw
2021-07-04 21:40 - 2018-07-19 22:57 - 003055282 _____ C:\Users\User\Downloads\IMG_20180719_224505.jpg.zqqw
2021-07-04 21:40 - 2018-07-19 22:57 - 002887153 _____ C:\Users\User\Downloads\IMG_20180719_221829.jpg.zqqw
2021-07-04 21:40 - 2018-07-17 00:38 - 000029147 _____ C:\Users\User\Downloads\359487_scanttt0005.jpg.zqqw
2021-07-04 21:40 - 2018-07-16 21:36 - 000076576 _____ C:\Users\User\Downloads\free_alicorn_plush_pattern_by_inept77-d8kgmmw.png.zqqw
2021-07-04 21:40 - 2018-07-16 21:32 - 000127042 _____ C:\Users\User\Downloads\1.jpg.zqqw
2021-07-04 21:40 - 2018-07-16 21:32 - 000087799 _____ C:\Users\User\Downloads\cont2.jpg.zqqw
2021-07-04 21:40 - 2018-07-16 21:04 - 000055605 _____ C:\Users\User\Downloads\pattern_tutorial_body_side_by_adamlhumphreys-d88hghy.png.zqqw
2021-07-04 21:40 - 2018-07-16 16:14 - 000019070 _____ C:\Users\User\Downloads\390ed17c79ae33fc0583b851740de5d3.jpg.zqqw
2021-07-04 21:40 - 2018-06-22 10:40 - 000240591 _____ C:\Users\User\Downloads\maximo florez.PDF.zqqw
2021-07-04 21:40 - 2018-06-21 06:36 - 006937442 _____ C:\Users\User\Downloads\IMG_20180621_062801.jpg.zqqw
2021-07-04 21:40 - 2018-06-14 11:27 - 000082252 _____ C:\Users\User\Downloads\MOVTRA201806141157164990655780.XLS.zqqw
2021-07-04 21:40 - 2018-06-05 20:06 - 000272718 _____ C:\Users\User\Downloads\CNE.263_solicitud_credito_consumo.doc.zqqw
2021-07-04 21:40 - 2018-05-25 00:09 - 000173390 _____ C:\Users\User\Downloads\Estados_financieros_(Excel)94082000_201003 (1).xls.zqqw
2021-07-04 21:40 - 2018-05-25 00:09 - 000056142 _____ C:\Users\User\Downloads\analisis-de-estados-financieros-vertical.xls.zqqw
2021-07-04 21:40 - 2018-05-24 09:49 - 000075598 _____ C:\Users\User\Downloads\234_formato71.xls.zqqw
2021-07-04 21:40 - 2018-05-24 09:42 - 000497998 _____ C:\Users\User\Downloads\Metodos de Depreciacion.xls.zqqw
2021-07-04 21:40 - 2018-05-23 14:45 - 000080033 _____ C:\Users\User\Downloads\ctrl_entry-point_2015-01-01.xlsx.zqqw
2021-07-04 21:40 - 2018-05-23 14:44 - 000173390 _____ C:\Users\User\Downloads\Estados_financieros_(Excel)94082000_201003.xls.zqqw
2021-07-04 21:40 - 2018-05-16 14:29 - 000036230 _____ C:\Users\User\Downloads\BINGO201805161430296732599140.PDF.zqqw
2021-07-04 21:40 - 2018-05-14 22:05 - 000136797 _____ C:\Users\User\Downloads\Pañal G.pdf.zqqw
2021-07-04 21:40 - 2018-05-14 22:05 - 000131972 _____ C:\Users\User\Downloads\Pañal M.pdf.zqqw
2021-07-04 21:40 - 2018-05-14 22:05 - 000072693 _____ C:\Users\User\Downloads\Alita M.pdf.zqqw
2021-07-04 21:40 - 2018-05-14 22:05 - 000072299 _____ C:\Users\User\Downloads\Alita P.pdf.zqqw
2021-07-04 21:40 - 2018-05-14 22:05 - 000072273 _____ C:\Users\User\Downloads\Alita G.pdf.zqqw
2021-07-04 21:40 - 2018-05-14 22:04 - 000125509 _____ C:\Users\User\Downloads\Pañal P.pdf.zqqw
2021-07-04 21:40 - 2018-05-14 01:06 - 000048462 _____ C:\Users\User\Downloads\PLANILLA_PARA_TRAMITE_DE_DNI.doc.zqqw
2021-07-04 21:40 - 2018-05-14 01:05 - 000016699 _____ C:\Users\User\Downloads\DECLARACION JURADA DE NO RENUNCIA A LA NACIONALIDAD-2014 - MODELO (1).docx.zqqw
2021-07-04 21:40 - 2018-05-14 00:58 - 000018059 _____ C:\Users\User\Downloads\DECLARACION JURADA DE PARENTESCO-2014 - MODELO (2).docx.zqqw
2021-07-04 21:40 - 2018-05-05 11:15 - 000081405 _____ C:\Users\User\Downloads\MOVTRA201805051117090420582891.XLS.zqqw
2021-07-04 21:40 - 2018-05-04 10:35 - 001783582 _____ C:\Users\User\Downloads\IMG_20180504_103503.jpg.zqqw
2021-07-04 21:40 - 2018-05-04 09:37 - 002899136 _____ C:\Users\User\Downloads\IMG_20180503_192150.jpg.zqqw
2021-07-04 21:40 - 2018-03-23 09:57 - 000056654 _____ C:\Users\User\Downloads\INVERSIONES EDILYAS CONDOMINIOS ARVERGAR.doc.zqqw
2021-07-04 21:40 - 2018-03-21 23:13 - 000100686 _____ C:\Users\User\Downloads\CB852920180321231417.xls.zqqw
2021-07-04 21:40 - 2018-03-21 09:30 - 000027873 _____ C:\Users\User\Downloads\LUBRO.png.zqqw
2021-07-04 21:40 - 2018-03-19 12:33 - 000049746 _____ C:\Users\User\Downloads\IMG-20171024-WA0035.jpg.zqqw
2021-07-04 21:40 - 2018-03-19 12:31 - 000122272 _____ C:\Users\User\Downloads\IMG-20171024-WA0043.jpg.zqqw
2021-07-04 21:40 - 2018-03-19 12:31 - 000065102 _____ C:\Users\User\Downloads\IMG-20171024-WA0040.jpg.zqqw
2021-07-04 21:40 - 2018-02-22 14:00 - 000231202 _____ C:\Users\User\Downloads\IMG-20160306-WA0011.jpg.zqqw
2021-07-04 21:40 - 2018-02-22 14:00 - 000176919 _____ C:\Users\User\Downloads\IMG-20160225-WA0008.jpg.zqqw
2021-07-04 21:40 - 2018-02-09 13:58 - 000000000 ____D C:\Users\User\Cisco Packet Tracer 6.1sv
2021-07-04 21:40 - 2018-02-05 21:02 - 000133702 _____ C:\Users\User\Downloads\IMG-20180205-WA0026.jpg.zqqw
2021-07-04 21:40 - 2018-02-05 21:02 - 000129313 _____ C:\Users\User\Downloads\IMG-20180205-WA0028.jpg.zqqw
2021-07-04 21:40 - 2018-02-05 21:02 - 000122929 _____ C:\Users\User\Downloads\IMG-20180205-WA0024.jpg.zqqw
2021-07-04 21:40 - 2018-02-05 21:02 - 000102463 _____ C:\Users\User\Downloads\IMG-20180205-WA0025.jpg.zqqw
2021-07-04 21:40 - 2018-01-31 02:30 - 000673316 _____ C:\Users\User\Downloads\25cm.png.zqqw
2021-07-04 21:40 - 2018-01-31 02:25 - 000969814 _____ C:\Users\User\Downloads\pel.png.zqqw
2021-07-04 21:40 - 2018-01-29 01:48 - 000005094 _____ C:\Users\User\Downloads\modelo-nota-de-entrega-excel.xlsx.zqqw
2021-07-04 21:40 - 2015-12-03 21:58 - 000000000 ____D C:\Users\User\.android
2021-07-04 21:38 - 2020-09-26 05:30 - 007407342 _____ C:\Users\User\basquet.psd.zqqw
2021-07-04 21:38 - 2018-02-09 13:58 - 000000508 _____ C:\Users\User\.packettracer.zqqw
2021-07-04 21:38 - 2014-06-19 16:38 - 000000000 ____D C:\SampleDatabase
2021-07-04 21:38 - 2014-06-19 16:34 - 000000000 ____D C:\Samples - EmbroideryStudio e1.5
2021-07-04 21:38 - 2011-10-13 23:34 - 000000000 ____D C:\Users\User\AppData\Local\CrashDumps
2021-07-04 21:36 - 2018-02-26 07:16 - 000000000 ____D C:\Users\Yasmin
2021-07-04 21:35 - 2020-03-29 13:28 - 000000000 ____D C:\AdwCleaner
2021-07-04 21:35 - 2018-06-05 21:00 - 000000000 ____D C:\a7b025c7bbc7de3a317674c0830409b6
2021-07-04 21:35 - 2017-09-19 13:35 - 000000000 ____D C:\Adjustment Program
2021-07-04 21:35 - 2014-03-10 03:35 - 000000000 ____D C:\HP_TOOLS_mountHPSF
2021-07-04 20:53 - 2009-07-13 21:33 - 019660800 _____ C:\Windows\system32\config\BCD00000000
2021-07-03 21:32 - 2015-05-21 13:31 - 000001042 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-4047135609-2362062722-1061616882-1001UA1d093f027ff03d1.job
2021-07-03 13:06 - 2014-05-03 17:39 - 000000990 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-4047135609-2362062722-1061616882-1001Core1cf671c4ec37ad4.job
2021-07-02 22:32 - 2015-05-21 13:31 - 000000990 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-4047135609-2362062722-1061616882-1001Core1d093f027c3f5c4.job
2021-07-01 17:44 - 2009-07-14 00:22 - 000000000 ____D C:\Windows\system32\FxsTmp
2021-06-30 16:08 - 2012-01-09 21:15 - 000002360 _____ C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2021-06-30 16:08 - 2012-01-09 21:15 - 000002323 _____ C:\Users\User\Desktop\Google Chrome.lnk
2021-06-27 19:02 - 2020-03-25 23:46 - 000000000 ____D C:\Users\User\AppData\Roaming\vlc
2021-06-26 00:41 - 2009-07-13 22:07 - 000000000 ____D C:\Windows\system32\NDF
2021-06-22 18:24 - 2014-10-03 21:06 - 000000000 ____D C:\Users\User\AppData\Roaming\FileZilla
2021-06-17 10:00 - 2018-08-07 23:57 - 000008224 _____ C:\Users\User\AppData\Local\GDIPFONTCACHEV1.DAT
2021-06-13 22:03 - 2014-05-04 10:35 - 000000000 ____D C:\Users\User\AppData\Roaming\Epson
2021-06-09 04:26 - 2017-06-09 16:55 - 000002029 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk

==================== Archivos en la raíz de algunos directorios ========

1998-06-25 00:30 - 1998-06-25 00:30 - 000050101 _____ () C:\Program Files\INSTALL.HTM
1998-06-25 00:30 - 1998-06-25 00:30 - 000170450 _____ () C:\Program Files\READMEVC.HTM
1998-06-10 00:30 - 1998-06-10 00:30 - 001318671 _____ () C:\Program Files\REDIST.TXT
2021-07-04 21:35 - 2021-07-04 21:35 - 000001109 _____ () C:\Program Files\_readme.txt
2010-11-20 16:59 - 2010-11-20 16:59 - 000321226 ___SH () C:\Users\User\AppData\Roaming\ubtbdsg
2020-04-13 00:27 - 2020-11-24 06:21 - 000001456 _____ () C:\Users\User\AppData\Local\Adobe Guardar para Web 13.0 Prefs
2021-07-04 21:35 - 2021-07-04 21:35 - 000000558 _____ () C:\Users\User\AppData\Local\bowsakkdestx.txt
2018-07-05 00:50 - 2018-07-05 00:50 - 000000001 _____ () C:\Users\User\AppData\Local\llftool.4.40.agreement
2020-06-02 17:51 - 2021-07-05 07:59 - 000000205 _____ () C:\Users\User\AppData\Local\oobelibMkey.log
2020-10-28 15:37 - 2021-07-05 19:43 - 000007605 _____ () C:\Users\User\AppData\Local\Resmon.ResmonCfg

==================== FLock ==============================

2021-07-06 10:38 C:\Windows\system32\config\SYSTEM
2021-07-04 21:31 C:\Windows\system32\Drivers\uUjC52.sys

==================== SigCheck ============================

(No existe una corrección automática para los archivos que no pasan la verificación.)


LastRegBack: 2021-07-01 05:29
==================== Final de FRST.txt ========================

lo vuelvo a scanear para que me salga otra vez el reporte? @ErdrickBass

De momento no, pero faltaría el encabezado, lo cual es un poco extraño. Igual vamos avanzando. Dame algo de tiempo para analizar tu sistema y en la medida de lo posible volvere con una respuesta.

1 me gusta

muchisimas gracias de veras estare pendiente

la primera parte que faltaba @ErdrickBass

Resultado del análisis realizado por Farbar Recovery Scan Tool (FRST) (x86) Versión: 05-07-2021
Ejecutado por User (administrador) sobre USER-HP (Hewlett-Packard HP Pavilion g4 Notebook PC) (06-07-2021 14:33:47)
Ejecutado desde C:\Users\User\Desktop
Perfiles cargados: User
Platform: Microsoft Windows 7 Starter  Service Pack 1 (X86) Idioma: Español (España, internacional)
Navegador predeterminado: "C:\Program Files\AVAST Software\Browser\Application\AvastBrowser.exe" --single-argument %1
Modo de Inicio: Normal

==================== Procesos (Lista blanca) =================

(Si una entrada es incluida en el fixlist, el proceso será cerrado. El archivo no será movido.)

(Adobe Inc. -> Adobe Inc.) C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
(Advanced Micro Devices, Inc. -> Advanced Micro Devices) C:\Program Files\ATI Technologies\ATI.ACE\Reservation Manager\AMD Reservation Manager.exe
(Advanced Micro Devices, Inc.) [Archivo no firmado] C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
(Apache Software Foundation) [Archivo no firmado] C:\xampp\apache\bin\httpd.exe <2>
(Atheros Communications Inc. -> Atheros Commnucations) [Archivo no firmado] C:\Program Files\Bluetooth Suite\AdminService.exe
(Atheros Communications Inc. -> Atheros) [Archivo no firmado] C:\Program Files\Bluetooth Suite\Ath_CoexAgent.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswEngSrv.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswToolsSvc.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\AvastSvc.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\AvastUI.exe <4>
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\wsc_proxy.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Browser\Update\1.8.1065.0\AvastBrowserCrashHandler.exe
(EnigmaSoft Limited -> EnigmaSoft Limited) C:\Program Files\EnigmaSoft\SpyHunter\ShKernel.exe
(EnigmaSoft Limited -> EnigmaSoft Limited) C:\Program Files\EnigmaSoft\SpyHunter\SpyHunter5.exe
(Google LLC -> Google LLC) C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe <8>
(MariaDB Corporation Ab -> ) C:\xampp\mysql\bin\mysqld.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows\System32\atieclxx.exe
(Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows\System32\atiesrxx.exe
(Microsoft Windows Hardware Compatibility Publisher -> IDT, Inc.) C:\Program Files\IDT\WDM\stacsv.exe
(Microsoft Windows Hardware Compatibility Publisher -> SEIKO EPSON CORPORATION) C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50RP7.EXE
(Microsoft Windows Hardware Compatibility Publisher -> SEIKO EPSON CORPORATION) C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50ST7.EXE
(Microsoft Windows Hardware Compatibility Publisher -> SEIKO EPSON CORPORATION) C:\Windows\System32\spool\drivers\w32x86\3\E_FATIGCL.EXE
(SafeNet, Inc. -> SafeNet Inc.) C:\Windows\System32\hasplms.exe
(Safer-Networking Ltd. -> Safer-Networking Ltd.) C:\Program Files\Spybot - Search & Destroy 2\SDTray.exe
(SEIKO EPSON CORPORATION -> Seiko Epson Corporation) C:\Windows\System32\escsvc.exe
(SEIKO EPSON CORPORATION -> Seiko Epson Corporation) C:\Windows\System32\spool\drivers\w32x86\3\E_TATIUNE.EXE
(Wondershare Technology Co.,Ltd -> Wondershare) C:\Program Files\Wondershare\WAF\2.4.3.242\WsAppService.exe

==================== Registro (Lista blanca) ===================

(Si una entrada es incluida en el fixlist, el elemento del registro será restaurado a su valor predeterminado o será eliminado. El archivo no será movido.)

HKLM\...\Run: [SDTray] => C:\Program Files\Spybot - Search & Destroy 2\SDTray.exe [6788032 2018-04-20] (Safer-Networking Ltd. -> Safer-Networking Ltd.)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\Avast Software\Avast\AvLaunch.exe [111896 2021-07-05] (Avast Software s.r.o. -> AVAST Software)
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restricción <==== ATENCIÓN
HKU\S-1-5-21-4047135609-2362062722-1061616882-1001\...\Run: [Spybot-S&D Cleaning] => C:\Program Files\Spybot - Search & Destroy 2\SDCleaner.exe [7388488 2018-04-20] (Safer-Networking Ltd. -> Safer-Networking Ltd.)
HKU\S-1-5-21-4047135609-2362062722-1061616882-1001\...\Run: [EPSON TX420W Series] => C:\Windows\system32\spool\DRIVERS\W32X86\3\E_FATIGCL.EXE [200704 2009-09-14] (Microsoft Windows Hardware Compatibility Publisher -> SEIKO EPSON CORPORATION)
HKU\S-1-5-21-4047135609-2362062722-1061616882-1001\...\Run: [EPLTarget\P0000000000000000] => C:\Windows\system32\spool\DRIVERS\W32X86\3\E_TATIUNE.EXE [379008 2017-09-22] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
HKU\S-1-5-21-4047135609-2362062722-1061616882-1001\...\MountPoints2: F - F:\HiSuiteDownLoader.exe
HKU\S-1-5-21-4047135609-2362062722-1061616882-1001\...\MountPoints2: {35b77baf-2cdb-11eb-8950-101f74bc76e9} - F:\HiSuiteDownLoader.exe
HKU\S-1-5-21-4047135609-2362062722-1061616882-1001\...\MountPoints2: {d31ba268-150f-11e8-a494-101f74bc76e9} - F:\HiSuiteDownLoader.exe
HKU\S-1-5-21-4047135609-2362062722-1061616882-1001\...\MountPoints2: {ff23a2de-b1e6-11e8-89c3-101f74bc76e9} - F:\setup.exe -a
HKLM\...\Windows NT x86\Print Processors\OneNotePrint2007: C:\Windows\System32\spool\prtprocs\W32X86\msonpppr.dll [33104 2006-10-26] (Microsoft Corporation -> Microsoft Corporation)
HKLM\...\Print\Monitors\EPSON L3150 Series 32MonitorBE: C:\Windows\system32\E_TLMBUNE.DLL [146432 2017-07-14] (Microsoft Windows Hardware Compatibility Publisher -> Seiko Epson Corporation)
HKLM\...\Print\Monitors\EPSON TX420W Series 32MonitorBL: C:\Windows\system32\E_FLBGCL.DLL [93696 2008-11-12] (Microsoft Windows Hardware Compatibility Publisher -> SEIKO EPSON CORPORATION)
HKLM\...\Print\Monitors\EpsonNet Print Port: C:\Windows\system32\enppmon.dll [385024 2016-09-14] (SEIKO EPSON CORPORATION) [Archivo no firmado]
HKLM\...\Print\Monitors\HP 8711 Status Monitor: C:\Windows\system32\hpinksts8711LM.dll [269200 2012-09-12] (Hewlett Packard -> Hewlett-Packard Co.)
HKLM\...\Print\Monitors\Send To Microsoft OneNote Monitor: C:\Windows\system32\msonpmon.dll [32592 2006-10-26] (Microsoft Corporation -> Microsoft Corporation)
HKLM\Software\...\AppCompatFlags\Custom\iisexpress.exe: [{fdfba1f3-74ae-4255-9c10-a0f552b4610f}.sdb] -> IIS Express Application Compatibility Database for x86
HKLM\Software\...\AppCompatFlags\InstalledSDB\{fdfba1f3-74ae-4255-9c10-a0f552b4610f}: [DatabasePath] -> C:\Windows\AppPatch\Custom\{fdfba1f3-74ae-4255-9c10-a0f552b4610f}.sdb [2012-05-29]
HKLM\Software\Microsoft\Active Setup\Installed Components: [{A8504530-742B-42BC-895D-2BAD6406F698}] -> C:\Program Files\AVAST Software\Browser\Application\91.0.10362.115\Installer\chrmstp.exe [2021-07-05] (Avast Software s.r.o. -> AVAST Software)
GroupPolicy: Restricción ? <==== ATENCIÓN
Policies: C:\ProgramData\NTUSER.pol: Restricción <==== ATENCIÓN
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restricción <==== ATENCIÓN
HKLM\SOFTWARE\Policies\Google: Restricción <==== ATENCIÓN

==================== Tareas programadas (Lista blanca) ============

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)

Task: {07CF6755-316B-4C32-AC7E-6D1E27D80284} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Check for updates => C:\Program Files\Spybot - Search & Destroy 2\SDUpdate.exe [6944304 2018-04-20] (Safer-Networking Ltd. -> Safer-Networking Ltd.)
Task: {2320597B-51B7-4E00-BEE5-CE3E4FBA8E12} - System32\Tasks\AvastUpdateTaskMachineCore => C:\Program Files\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [194200 2021-07-05] (Avast Software s.r.o. -> AVAST Software)
Task: {361C940C-3C92-4DDA-B5F6-D994EF1871E3} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [1546480 2021-07-05] (Avast Software s.r.o. -> Avast Software)
Task: {3D27C406-36DB-416B-8466-F0B06A3E02E8} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Product Configurator => C:\Program Files\Hewlett-Packard\HP Support Framework\Resources\ProductConfig.exe
Task: {4325C261-C5B0-4070-A2D0-933F4707D2BD} - System32\Tasks\Avast Emergency Update => C:\Program Files\Avast Software\Avast\AvEmUpdate.exe [4342552 2021-07-05] (Avast Software s.r.o. -> AVAST Software)
Task: {59EBD1CC-02C2-4455-B455-2C42DD2B42AD} - System32\Tasks\AvastUpdateTaskMachineUA => C:\Program Files\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [194200 2021-07-05] (Avast Software s.r.o. -> AVAST Software)
Task: {5C2B8C9C-1AB7-422E-9C3B-A90D8F1B060F} - System32\Tasks\Avast Secure Browser Heartbeat Task (Hourly) => C:\Program Files\AVAST Software\Browser\Application\AvastBrowser.exe [2030160 2021-06-18] (Avast Software s.r.o. -> AVAST Software)
Task: {5CD655D3-E799-48B6-B83E-78A4A9F3CF66} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files\Hewlett-Packard\HP Support Solutions\Modules\HPSFReport.exe
Task: {66AF1396-1F58-45BC-BB65-9750163404DC} - System32\Tasks\Avast Secure Browser Heartbeat Task (Logon) => C:\Program Files\AVAST Software\Browser\Application\AvastBrowser.exe [2030160 2021-06-18] (Avast Software s.r.o. -> AVAST Software)
Task: {6DF86C0C-AFBC-433A-AC76-31A4EBF1CC88} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Scan the system => C:\Program Files\Spybot - Search & Destroy 2\SDScan.exe [7651984 2018-04-20] (Safer-Networking Ltd. -> Safer-Networking Ltd.)
Task: {70165080-2A75-4800-96D1-E50206124AC4} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker_DeviceScan => C:\Program Files\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe
Task: {737538FE-4804-4304-8ED5-F074153BF8B6} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2021-06-16] (Piriform Software Ltd -> Piriform)
Task: {7F382591-A56F-41CA-8905-048FF825FE06} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Refresh immunization => C:\Program Files\Spybot - Search & Destroy 2\SDImmunize.exe [7192192 2018-04-20] (Safer-Networking Ltd. -> Safer-Networking Ltd.)
Task: {815730E6-F128-410B-8A9E-2BE3CD61DF9F} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files\Hewlett-Packard\HP Support Framework\HPSF.exe
Task: {877242F4-BDB7-4BC7-BD5C-8BFAF6EFCECC} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker => C:\Program Files\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe
Task: {92CBD9E1-4E6B-4402-B3C4-EE193B84924A} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe
Task: {A7524879-45B8-4EF9-890A-E91AC7CCE121} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [28880512 2021-06-16] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {C858076A-9BC3-4D08-B6B2-841E42B2C8BA} - System32\Tasks\Hewlett-Packard\HP Active Health\HP Active Health Scan (HPSA) => C:\Program Files\Hewlett-Packard\HP Support Framework\Resources\HPActiveHealth\ActiveHealth.exe
Task: {D311A68F-09DA-476A-8D49-809D59BAF6D2} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files\Hewlett-Packard\HP Support Framework\HPSF.exe

(Si una entrada es incluida en el fixlist, el archivo de tarea (.job) será movido. El archivo que está siendo ejecutado por la tarea no será movido.)

Task: C:\Windows\Tasks\ Update {7A1DE94B-8FF7-4C11-B782-84462DA7338A}.job => C:\Windows\system32\spool\DRIVERS\W32X86\3\E_TTSUNE.EXE:/EXE:{7A1DE94B-8FF7-4C11-B782-84462DA7338A} /F:UpdateSYSTEMĊSearches for EPSON software updates, and notifies you when updates are available.If this task is disabled or stopped, your EPSON software will not be automatically kept up to date.Thi
Task: C:\Windows\Tasks\EPSON L3150 Series Update {DD86AEFB-1EA0-4D48-ACF4-61AFFC7FCFB5}.job => C:\Windows\system32\spool\DRIVERS\W32X86\3\E_TTSUNE.EXE:/EXE:{DD86AEFB-1EA0-4D48-ACF4-61AFFC7FCFB5} /F:UpdateSYSTEMĊSearches for EPSON software updates, and notifies you when updates are available.If this task is disabled or stopped, your EPSON software will not be automatically kept up to date.Thi
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-4047135609-2362062722-1061616882-1001Core1cf671c4ec37ad4.job => C:\Users\User\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-4047135609-2362062722-1061616882-1001Core1d093f027c3f5c4.job => C:\Users\User\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-4047135609-2362062722-1061616882-1001UA1cf72ac33623b59.job => C:\Users\User\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-4047135609-2362062722-1061616882-1001UA1d0447714d75660.job => C:\Users\User\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-4047135609-2362062722-1061616882-1001UA1d093f027ff03d1.job => C:\Users\User\AppData\Local\Google\Update\GoogleUpdate.exe

==================== Internet (Lista blanca) ====================

Hola nuevamente,

Bueno tu sistema tiene bastantes temas. Si te parece vamos abordando por partes.

Realiza lo siguiente:

:one: Crea una copia de seguridad del registro con Registry Backup, no importa si es la versión portable o instalable:

Tweaking Registry Backup

  • Después de instalar o descomprimir ejecuta el programa (de ser portable es el ejecutable TweakingRegistryBackup.exe).
  • Asegurate que en la pestaña Registry Backup este todo moarcado.
  • En Backup Name puedes dejarlo por defecto o asignar algún nombre
  • Presiona el botón BackUp now

:two: Deshabilita nuevamente tu antivirus: ¿Cómo deshabilitar temporalmente su Antivirus?

:three: En el equipo, con los demás programas cerrados abra el notepad; puede abrirlo en la barra de búsqueda de windows y escribiendo notepad.exe

Posteriormente, copie y pegue este script de reparación dentro del Notepad comenzando en Start y terminando en End:

Start
SystemRestore: On
CreateRestorePoint:
CloseProcesses:

HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restricción <==== ATENCIÓN
HKU\S-1-5-21-4047135609-2362062722-1061616882-1001\...\MountPoints2: F - F:\HiSuiteDownLoader.exe
HKU\S-1-5-21-4047135609-2362062722-1061616882-1001\...\MountPoints2: {35b77baf-2cdb-11eb-8950-101f74bc76e9} - F:\HiSuiteDownLoader.exe
HKU\S-1-5-21-4047135609-2362062722-1061616882-1001\...\MountPoints2: {d31ba268-150f-11e8-a494-101f74bc76e9} - F:\HiSuiteDownLoader.exe
HKU\S-1-5-21-4047135609-2362062722-1061616882-1001\...\MountPoints2: {ff23a2de-b1e6-11e8-89c3-101f74bc76e9} - F:\setup.exe -a  
GroupPolicy: Restricción ? <==== ATENCIÓN
Policies: C:\ProgramData\NTUSER.pol: Restricción <==== ATENCIÓN
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restricción <==== ATENCIÓN
HKLM\SOFTWARE\Policies\Google: Restricción <==== ATENCIÓN
FF ExtraCheck: C:\Program Files\mozilla firefox\defaults\pref\eset_security_config_overlay.js [2020-04-16]
C:\Program Files\mozilla firefox\defaults\pref\eset_security_config_overlay.js
FF HKLM\...\Thunderbird\Extensions: [[email protected]] - C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird => no encontrado
FF Plugin: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll [Ningún archivo]
FF Plugin: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 -> C:\Program Files\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll [Ningún archivo]
S2 AGMService; "C:\Program Files\Common Files\Adobe\AdobeGCClient\AGMService.exe" [X]
S2 AGSService; "C:\Program Files\Common Files\Adobe\AdobeGCClient\AGSService.exe" [X]
S4 BstHdAndroidSvc; "C:\Program Files\BlueStacks\HD-Service.exe" BstHdAndroidSvc Android [X]
S4 BstHdLogRotatorSvc; C:\Program Files\BlueStacks\HD-LogRotatorService.exe [X]
S2 DFWSIDService; C:\Program Files\Wondershare\drfone\WsidService.exe [X]
S2 ElevationService; C:\Program Files\Wondershare\drfone\Addins\SocialApps\ElevationService.exe [X]
S4 HuaweiHiSuiteService.exe; "C:\Program Files\HiSuite\HandSetService\HuaweiHiSuiteService.exe" -/service [X]
S2 Motorola Device Manager; C:\Program Files\Motorola Mobility\Motorola Device Manager\MotoHelperService.exe [X]
S2 PST Service; C:\Program Files\Motorola\MotForwardDaemon\ForwardDaemon.exe [X]
S4 SkypeUpdate; "C:\Program Files\Skype\Updater\Updater.exe" [X]
S4 wlcrasvc; "C:\Program Files\Windows Live\Mesh\wlcrasvc.exe" [X]
S4 wlidsvc; "C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE" [X]
S2 Wondershare InstallAssist; C:\ProgramData\Wondershare\Service\InstallAssistService.exe [X]
S2 BstHdDrv; \??\C:\Program Files\BlueStacks\HD-Hypervisor-x86.sys [X]
S3 H1dVzRms1AL9i2; \??\C:\Users\Public\Pictures\3nyy5B8gW7qP35i.sys [X]
R3 EnigmaFileMonDriver; C:\Windows\system32\Drivers\EnigmaFileMonDriver.sys [68040 2021-07-06] (EnigmaSoft Limited -> EnigmaSoft Limited)
S4 ShMonitor; C:\Program Files\EnigmaSoft\SpyHunter\ShMonitor.exe [416720 2021-07-05] (EnigmaSoft Limited -> EnigmaSoft Limited)
R2 EsgShKernel; C:\Program Files\EnigmaSoft\SpyHunter\ShKernel.exe [10142160 2021-07-05] (EnigmaSoft Limited -> EnigmaSoft Limited)
C:\Windows\system32\Drivers\EnigmaFileMonDriver.sys
S3 McComponentHostService; C:\Program Files\McAfee Security Scan\3.11.2198\McCHSvc.exe [317376 2021-04-30] (McAfee, LLC. -> McAfee, LLC)
C:\Program Files\McAfee Security Scan
2021-07-05 13:41 - 2021-07-05 13:41 - 000000020 _____ C:\Windows\u
2021-07-05 20:50 - 2021-07-05 20:50 - 000000000 ____D C:\Users\User\AppData\LocalLow\IGDump
2021-07-05 00:55 - 2021-07-05 00:55 - 000001191 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SpyHunter5.lnk
2021-07-05 00:55 - 2021-07-05 00:55 - 000001167 _____ C:\Users\Public\Desktop\SpyHunter5.lnk
2021-07-05 00:55 - 2021-07-05 00:55 - 000001167 _____ C:\ProgramData\Desktop\SpyHunter5.lnk
2021-07-05 00:55 - 2021-07-05 00:55 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EnigmaSoft
2021-07-05 00:55 - 2021-07-05 00:55 - 000000000 ____D C:\ProgramData\EnigmaSoft Limited
2021-07-05 00:54 - 2021-07-05 00:55 - 000000000 ____D C:\sh5ldr
2021-07-05 00:50 - 2021-07-05 00:50 - 000000000 ____D C:\Program Files\EnigmaSoft
2021-07-04 20:52 - 2021-07-04 20:52 - 001564823 _____ C:\ProgramData\4649
2021-07-04 20:51 - 2021-07-04 22:55 - 000000000 ____D C:\winCrtdhcpcommon
2021-07-04 20:51 - 2021-07-04 20:51 - 001564823 _____ C:\ProgramData\5969
2021-07-04 22:55 - 2021-05-03 15:21 - 000000000 ____D C:\ProgramData\McAfee Security Scan
2021-07-04 21:35 - 2018-06-05 21:00 - 000000000 ____D C:\a7b025c7bbc7de3a317674c0830409b6
unlock: C:\Windows\system32\config\SYSTEM
folder: C:\Windows\system32\config\SYSTEM
unlock: C:\Windows\system32\Drivers\uUjC52.sys
C:\Windows\system32\Drivers\uUjC52.sys
Winsock: Catalog5 07 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL => Ningún archivo 
Winsock: Catalog5 08 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL => Ningún archivo 
HKU\S-1-5-21-4047135609-2362062722-1061616882-1001\...\ChromeHTML: -> C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) <==== ATENCIÓN
ContextMenuHandlers4: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} =>  -> Ningún archivo
ContextMenuHandlers6: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} =>  -> Ningún archivo
AlternateDataStreams: C:\ProgramData\Temp:5C321E34 [136]
Toolbar: HKU\S-1-5-21-4047135609-2362062722-1061616882-1001 -> Sin Nombre - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} -  Ningún archivo
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^McAfee Security Scan Plus.lnk => C:\Windows\pss\McAfee Security Scan Plus.lnk.CommonStartup
MSCONFIG\startupreg: McAfeeSafeConnect => C:\Program Files\McAfee Safe Connect\McAfee Safe Connect.exe
FirewallRules: [{68D90DCB-A96A-44C5-9C01-8CDA326AA262}] => (Allow) C:\Program Files\Windows Live\Contacts\wlcomm.exe => Ningún archivo
FirewallRules: [{6EB3D35F-17AE-4BD0-BD5E-FB353F044912}] => (Allow) LPort=2869
FirewallRules: [{F622BC74-DACB-40CB-8F47-D146EF86E13D}] => (Allow) LPort=1900
FirewallRules: [{2430A369-CC3B-4DB9-8FFB-8E6035C1A6B5}] => (Allow) C:\Program Files\Windows Live\Messenger\msnmsgr.exe => Ningún archivo
FirewallRules: [{406BE2A6-04A1-4CD7-8944-2EB23AE54BE8}] => (Allow) C:\Program Files\Windows Live\Mesh\MOE.exe => Ningún archivo
FirewallRules: [{082FFD7C-E17D-4EC3-9A39-F11EFFF11A7D}] => (Allow) C:\Program Files\Skype\Phone\Skype.exe => Ningún archivo
FirewallRules: [TCP Query User{E3E9DACB-1954-4959-961D-DEDC68F7E7A4}C:\program files\cisco packet tracer 6.1sv\bin\packettracer6.exe] => (Allow) C:\program files\cisco packet tracer 6.1sv\bin\packettracer6.exe => Ningún archivo
FirewallRules: [UDP Query User{2D035A5B-A4E7-45F6-BF13-F68C259779D8}C:\program files\cisco packet tracer 6.1sv\bin\packettracer6.exe] => (Allow) C:\program files\cisco packet tracer 6.1sv\bin\packettracer6.exe => Ningún archivo
FirewallRules: [TCP Query User{CBA5AA69-8A0F-493E-BDFD-6E69171FB41D}C:\program files\cisco packet tracer 6.1sv\bin\packettracer6.exe] => (Block) C:\program files\cisco packet tracer 6.1sv\bin\packettracer6.exe => Ningún archivo
FirewallRules: [UDP Query User{2DE4F982-99BB-4DB7-899D-A6D0A17A64F5}C:\program files\cisco packet tracer 6.1sv\bin\packettracer6.exe] => (Block) C:\program files\cisco packet tracer 6.1sv\bin\packettracer6.exe => Ningún archivo
FirewallRules: [TCP Query User{5167E24C-8032-4EE1-9B8B-3908DA6DBB82}C:\program files\electronic arts\eadm\core.exe] => (Allow) C:\program files\electronic arts\eadm\core.exe => Ningún archivo
FirewallRules: [UDP Query User{2FCE2A4B-0313-4BBD-9268-C599DB3499FA}C:\program files\electronic arts\eadm\core.exe] => (Allow) C:\program files\electronic arts\eadm\core.exe => Ningún archivo
FirewallRules: [TCP Query User{C4B5C004-2937-4E02-9202-C0D0FB6F294C}C:\program files\electronic arts\eadm\core.exe] => (Block) C:\program files\electronic arts\eadm\core.exe => Ningún archivo
FirewallRules: [UDP Query User{1EDADA10-58C6-4578-AB68-653FFFC52C2F}C:\program files\electronic arts\eadm\core.exe] => (Block) C:\program files\electronic arts\eadm\core.exe => Ningún archivo
FirewallRules: [{83A7EF67-52D5-4269-A758-57151448C0B6}] => (Allow) C:\Users\User\AppData\Local\Apowersoft\Apowersoft Online Launcher\Apowersoft Online Launcher.exe => Ningún archivo
FirewallRules: [{2113F40E-53CD-4F4E-85B0-AD7209852B64}] => (Allow) C:\Users\User\AppData\Local\Apowersoft\Apowersoft Online Launcher\Apowersoft Online Launcher.exe => Ningún archivo
FirewallRules: [{74B2AE77-2028-4B2C-8A7F-B56540F0EC1D}] => (Allow) C:\Program Files\TeamViewer\TeamViewer.exe => Ningún archivo
FirewallRules: [{E60591A8-1C6A-44F3-959E-E9EDE41DD529}] => (Allow) C:\Program Files\TeamViewer\TeamViewer.exe => Ningún archivo
FirewallRules: [{A8F737AC-BFAA-436A-B7BF-331972B78740}] => (Allow) C:\Program Files\TeamViewer\TeamViewer_Service.exe => Ningún archivo
FirewallRules: [{37E69C99-0441-4874-8F38-9FDAE29BFD61}] => (Allow) C:\Program Files\TeamViewer\TeamViewer_Service.exe => Ningún archivo
FirewallRules: [{BBE74FDD-6852-4072-AA84-E3874F5111FF}] => (Allow) C:\Users\User\AppData\Roaming\Zoom\bin\Zoom.exe => Ningún archivo
FirewallRules: [{1ABEF459-2E02-4FA3-9CD3-7F01638459AA}] => (Allow) E:\Network\EpsonNetSetup\ENEasyApp.exe => Ningún archivo
FirewallRules: [{F8A6D215-E4E9-444A-BA79-B6EE9F08E430}] => (Allow) E:\Network\EpsonNetSetup\ENEasyApp.exe => Ningún archivo
FirewallRules: [{D346AF02-9A5B-4C79-8A5C-D0D445E5EE5C}] => (Allow) C:\Users\User\AppData\Local\Programs\Opera\77.0.4054.90\opera.exe => Ningún archivo
FirewallRules: [{48749A90-21F3-4FAC-A9AA-D20101CB47AB}] => (Block) C:\Program Files\UltData for Android\NetFrameCheck.exe => Ningún archivo
FirewallRules: [{AFD932D5-6BF4-420C-AC88-B4B66E46EB4A}] => (Allow) C:\Users\User\AppData\Local\Programs\Opera\77.0.4054.172\opera.exe => Ningún archivo

CMD: ipconfig /flushdns
CMD: ipconfig /renew
CMD: netsh winsock reset catalog
CMD: netsh int ip reset all
CMD: bitsadmin /reset /allusers 
EmptyTemp:
Hosts:
End
  • Vaya a Archivo y selecciona Guardar Como.
  • En la parte de Códificación eliga Unicode o UTF8 según le de la opción.
  • Guardelo bajo el nombre de fixlist.txt en el escritorio al igual que FRST. Esto es muy importante.

:warning:¡ATENCIÓN! El anterior Script de reparación fue hecho específicamente por un miembro del Staff para este usuario, si tiene un problema similar por favor abra su propio tema para recibir ayuda personalizada. Usar Scripts de otros usuarios puede causar daños a su equipo

  • Ejecute Frst.exe. y presione el botón Fix / Corregir
  • Espere pacientemente a que termine y no use el equipo. Al terminar el equipo podría reiniciarse
  • La Herramienta guardara el reporte en su escritorio (Fixlog.txt).

:four: Utiliza RevoUnisntaller en para desinstalar SpyHunter con un analisis avanzado:

Manual de Revo Uninstaller

Nos traerías el reporte de FixLog y comentarios de como esta funcionando el sistema.

Saludos

1 me gusta

muchas gracias te envio el reporte ,

Resultados de la corrección de Farbar Recovery Scan Tool (x86) Versión: 05-07-2021
Ejecutado por User (06-07-2021 18:48:28) Run:1
Ejecutado desde C:\Users\User\Desktop
Perfiles cargados: User
Modo de Inicio: Normal

==============================================

fixlist contenido:
*****************
Start
SystemRestore: On
CreateRestorePoint:
CloseProcesses:

HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restricción <==== ATENCIÓN
HKU\S-1-5-21-4047135609-2362062722-1061616882-1001\...\MountPoints2: F - F:\HiSuiteDownLoader.exe
HKU\S-1-5-21-4047135609-2362062722-1061616882-1001\...\MountPoints2: {35b77baf-2cdb-11eb-8950-101f74bc76e9} - F:\HiSuiteDownLoader.exe
HKU\S-1-5-21-4047135609-2362062722-1061616882-1001\...\MountPoints2: {d31ba268-150f-11e8-a494-101f74bc76e9} - F:\HiSuiteDownLoader.exe
HKU\S-1-5-21-4047135609-2362062722-1061616882-1001\...\MountPoints2: {ff23a2de-b1e6-11e8-89c3-101f74bc76e9} - F:\setup.exe -a  
GroupPolicy: Restricción ? <==== ATENCIÓN
Policies: C:\ProgramData\NTUSER.pol: Restricción <==== ATENCIÓN
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restricción <==== ATENCIÓN
HKLM\SOFTWARE\Policies\Google: Restricción <==== ATENCIÓN
FF ExtraCheck: C:\Program Files\mozilla firefox\defaults\pref\eset_security_config_overlay.js [2020-04-16]
C:\Program Files\mozilla firefox\defaults\pref\eset_security_config_overlay.js
FF HKLM\...\Thunderbird\Extensions: [[email protected]] - C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird => no encontrado
FF Plugin: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll [Ningún archivo]
FF Plugin: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 -> C:\Program Files\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll [Ningún archivo]
S2 AGMService; "C:\Program Files\Common Files\Adobe\AdobeGCClient\AGMService.exe" [X]
S2 AGSService; "C:\Program Files\Common Files\Adobe\AdobeGCClient\AGSService.exe" [X]
S4 BstHdAndroidSvc; "C:\Program Files\BlueStacks\HD-Service.exe" BstHdAndroidSvc Android [X]
S4 BstHdLogRotatorSvc; C:\Program Files\BlueStacks\HD-LogRotatorService.exe [X]
S2 DFWSIDService; C:\Program Files\Wondershare\drfone\WsidService.exe [X]
S2 ElevationService; C:\Program Files\Wondershare\drfone\Addins\SocialApps\ElevationService.exe [X]
S4 HuaweiHiSuiteService.exe; "C:\Program Files\HiSuite\HandSetService\HuaweiHiSuiteService.exe" -/service [X]
S2 Motorola Device Manager; C:\Program Files\Motorola Mobility\Motorola Device Manager\MotoHelperService.exe [X]
S2 PST Service; C:\Program Files\Motorola\MotForwardDaemon\ForwardDaemon.exe [X]
S4 SkypeUpdate; "C:\Program Files\Skype\Updater\Updater.exe" [X]
S4 wlcrasvc; "C:\Program Files\Windows Live\Mesh\wlcrasvc.exe" [X]
S4 wlidsvc; "C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE" [X]
S2 Wondershare InstallAssist; C:\ProgramData\Wondershare\Service\InstallAssistService.exe [X]
S2 BstHdDrv; \??\C:\Program Files\BlueStacks\HD-Hypervisor-x86.sys [X]
S3 H1dVzRms1AL9i2; \??\C:\Users\Public\Pictures\3nyy5B8gW7qP35i.sys [X]
R3 EnigmaFileMonDriver; C:\Windows\system32\Drivers\EnigmaFileMonDriver.sys [68040 2021-07-06] (EnigmaSoft Limited -> EnigmaSoft Limited)
S4 ShMonitor; C:\Program Files\EnigmaSoft\SpyHunter\ShMonitor.exe [416720 2021-07-05] (EnigmaSoft Limited -> EnigmaSoft Limited)
R2 EsgShKernel; C:\Program Files\EnigmaSoft\SpyHunter\ShKernel.exe [10142160 2021-07-05] (EnigmaSoft Limited -> EnigmaSoft Limited)
C:\Windows\system32\Drivers\EnigmaFileMonDriver.sys
S3 McComponentHostService; C:\Program Files\McAfee Security Scan\3.11.2198\McCHSvc.exe [317376 2021-04-30] (McAfee, LLC. -> McAfee, LLC)
C:\Program Files\McAfee Security Scan
2021-07-05 13:41 - 2021-07-05 13:41 - 000000020 _____ C:\Windows\u
2021-07-05 20:50 - 2021-07-05 20:50 - 000000000 ____D C:\Users\User\AppData\LocalLow\IGDump
2021-07-05 00:55 - 2021-07-05 00:55 - 000001191 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SpyHunter5.lnk
2021-07-05 00:55 - 2021-07-05 00:55 - 000001167 _____ C:\Users\Public\Desktop\SpyHunter5.lnk
2021-07-05 00:55 - 2021-07-05 00:55 - 000001167 _____ C:\ProgramData\Desktop\SpyHunter5.lnk
2021-07-05 00:55 - 2021-07-05 00:55 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EnigmaSoft
2021-07-05 00:55 - 2021-07-05 00:55 - 000000000 ____D C:\ProgramData\EnigmaSoft Limited
2021-07-05 00:54 - 2021-07-05 00:55 - 000000000 ____D C:\sh5ldr
2021-07-05 00:50 - 2021-07-05 00:50 - 000000000 ____D C:\Program Files\EnigmaSoft
2021-07-04 20:52 - 2021-07-04 20:52 - 001564823 _____ C:\ProgramData\4649
2021-07-04 20:51 - 2021-07-04 22:55 - 000000000 ____D C:\winCrtdhcpcommon
2021-07-04 20:51 - 2021-07-04 20:51 - 001564823 _____ C:\ProgramData\5969
2021-07-04 22:55 - 2021-05-03 15:21 - 000000000 ____D C:\ProgramData\McAfee Security Scan
2021-07-04 21:35 - 2018-06-05 21:00 - 000000000 ____D C:\a7b025c7bbc7de3a317674c0830409b6
unlock: C:\Windows\system32\config\SYSTEM
folder: C:\Windows\system32\config\SYSTEM
unlock: C:\Windows\system32\Drivers\uUjC52.sys
C:\Windows\system32\Drivers\uUjC52.sys
Winsock: Catalog5 07 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL => Ningún archivo 
Winsock: Catalog5 08 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL => Ningún archivo 
HKU\S-1-5-21-4047135609-2362062722-1061616882-1001\...\ChromeHTML: -> C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) <==== ATENCIÓN
ContextMenuHandlers4: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} =>  -> Ningún archivo
ContextMenuHandlers6: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} =>  -> Ningún archivo
AlternateDataStreams: C:\ProgramData\Temp:5C321E34 [136]
Toolbar: HKU\S-1-5-21-4047135609-2362062722-1061616882-1001 -> Sin Nombre - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} -  Ningún archivo
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^McAfee Security Scan Plus.lnk => C:\Windows\pss\McAfee Security Scan Plus.lnk.CommonStartup
MSCONFIG\startupreg: McAfeeSafeConnect => C:\Program Files\McAfee Safe Connect\McAfee Safe Connect.exe
FirewallRules: [{68D90DCB-A96A-44C5-9C01-8CDA326AA262}] => (Allow) C:\Program Files\Windows Live\Contacts\wlcomm.exe => Ningún archivo
FirewallRules: [{6EB3D35F-17AE-4BD0-BD5E-FB353F044912}] => (Allow) LPort=2869
FirewallRules: [{F622BC74-DACB-40CB-8F47-D146EF86E13D}] => (Allow) LPort=1900
FirewallRules: [{2430A369-CC3B-4DB9-8FFB-8E6035C1A6B5}] => (Allow) C:\Program Files\Windows Live\Messenger\msnmsgr.exe => Ningún archivo
FirewallRules: [{406BE2A6-04A1-4CD7-8944-2EB23AE54BE8}] => (Allow) C:\Program Files\Windows Live\Mesh\MOE.exe => Ningún archivo
FirewallRules: [{082FFD7C-E17D-4EC3-9A39-F11EFFF11A7D}] => (Allow) C:\Program Files\Skype\Phone\Skype.exe => Ningún archivo
FirewallRules: [TCP Query User{E3E9DACB-1954-4959-961D-DEDC68F7E7A4}C:\program files\cisco packet tracer 6.1sv\bin\packettracer6.exe] => (Allow) C:\program files\cisco packet tracer 6.1sv\bin\packettracer6.exe => Ningún archivo
FirewallRules: [UDP Query User{2D035A5B-A4E7-45F6-BF13-F68C259779D8}C:\program files\cisco packet tracer 6.1sv\bin\packettracer6.exe] => (Allow) C:\program files\cisco packet tracer 6.1sv\bin\packettracer6.exe => Ningún archivo
FirewallRules: [TCP Query User{CBA5AA69-8A0F-493E-BDFD-6E69171FB41D}C:\program files\cisco packet tracer 6.1sv\bin\packettracer6.exe] => (Block) C:\program files\cisco packet tracer 6.1sv\bin\packettracer6.exe => Ningún archivo
FirewallRules: [UDP Query User{2DE4F982-99BB-4DB7-899D-A6D0A17A64F5}C:\program files\cisco packet tracer 6.1sv\bin\packettracer6.exe] => (Block) C:\program files\cisco packet tracer 6.1sv\bin\packettracer6.exe => Ningún archivo
FirewallRules: [TCP Query User{5167E24C-8032-4EE1-9B8B-3908DA6DBB82}C:\program files\electronic arts\eadm\core.exe] => (Allow) C:\program files\electronic arts\eadm\core.exe => Ningún archivo
FirewallRules: [UDP Query User{2FCE2A4B-0313-4BBD-9268-C599DB3499FA}C:\program files\electronic arts\eadm\core.exe] => (Allow) C:\program files\electronic arts\eadm\core.exe => Ningún archivo
FirewallRules: [TCP Query User{C4B5C004-2937-4E02-9202-C0D0FB6F294C}C:\program files\electronic arts\eadm\core.exe] => (Block) C:\program files\electronic arts\eadm\core.exe => Ningún archivo
FirewallRules: [UDP Query User{1EDADA10-58C6-4578-AB68-653FFFC52C2F}C:\program files\electronic arts\eadm\core.exe] => (Block) C:\program files\electronic arts\eadm\core.exe => Ningún archivo
FirewallRules: [{83A7EF67-52D5-4269-A758-57151448C0B6}] => (Allow) C:\Users\User\AppData\Local\Apowersoft\Apowersoft Online Launcher\Apowersoft Online Launcher.exe => Ningún archivo
FirewallRules: [{2113F40E-53CD-4F4E-85B0-AD7209852B64}] => (Allow) C:\Users\User\AppData\Local\Apowersoft\Apowersoft Online Launcher\Apowersoft Online Launcher.exe => Ningún archivo
FirewallRules: [{74B2AE77-2028-4B2C-8A7F-B56540F0EC1D}] => (Allow) C:\Program Files\TeamViewer\TeamViewer.exe => Ningún archivo
FirewallRules: [{E60591A8-1C6A-44F3-959E-E9EDE41DD529}] => (Allow) C:\Program Files\TeamViewer\TeamViewer.exe => Ningún archivo
FirewallRules: [{A8F737AC-BFAA-436A-B7BF-331972B78740}] => (Allow) C:\Program Files\TeamViewer\TeamViewer_Service.exe => Ningún archivo
FirewallRules: [{37E69C99-0441-4874-8F38-9FDAE29BFD61}] => (Allow) C:\Program Files\TeamViewer\TeamViewer_Service.exe => Ningún archivo
FirewallRules: [{BBE74FDD-6852-4072-AA84-E3874F5111FF}] => (Allow) C:\Users\User\AppData\Roaming\Zoom\bin\Zoom.exe => Ningún archivo
FirewallRules: [{1ABEF459-2E02-4FA3-9CD3-7F01638459AA}] => (Allow) E:\Network\EpsonNetSetup\ENEasyApp.exe => Ningún archivo
FirewallRules: [{F8A6D215-E4E9-444A-BA79-B6EE9F08E430}] => (Allow) E:\Network\EpsonNetSetup\ENEasyApp.exe => Ningún archivo
FirewallRules: [{D346AF02-9A5B-4C79-8A5C-D0D445E5EE5C}] => (Allow) C:\Users\User\AppData\Local\Programs\Opera\77.0.4054.90\opera.exe => Ningún archivo
FirewallRules: [{48749A90-21F3-4FAC-A9AA-D20101CB47AB}] => (Block) C:\Program Files\UltData for Android\NetFrameCheck.exe => Ningún archivo
FirewallRules: [{AFD932D5-6BF4-420C-AC88-B4B66E46EB4A}] => (Allow) C:\Users\User\AppData\Local\Programs\Opera\77.0.4054.172\opera.exe => Ningún archivo

CMD: ipconfig /flushdns
CMD: ipconfig /renew
CMD: netsh winsock reset catalog
CMD: netsh int ip reset all
CMD: bitsadmin /reset /allusers 
EmptyTemp:
Hosts:
End
*****************

SystemRestore: On => completado
El punto de restauración fue creado correctamente.
Procesos cerrados correctamente.
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender => eliminado correctamente
HKU\S-1-5-21-4047135609-2362062722-1061616882-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\F => eliminado correctamente
HKU\S-1-5-21-4047135609-2362062722-1061616882-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{35b77baf-2cdb-11eb-8950-101f74bc76e9} => eliminado correctamente
HKU\S-1-5-21-4047135609-2362062722-1061616882-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{d31ba268-150f-11e8-a494-101f74bc76e9} => eliminado correctamente
HKU\S-1-5-21-4047135609-2362062722-1061616882-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{ff23a2de-b1e6-11e8-89c3-101f74bc76e9} => eliminado correctamente
C:\Windows\system32\GroupPolicy\Machine => movido correctamente
C:\Windows\system32\GroupPolicy\GPT.ini => movido correctamente
C:\ProgramData\NTUSER.pol => movido correctamente
HKLM\SOFTWARE\Policies\Mozilla => eliminado correctamente
HKLM\SOFTWARE\Policies\Google => eliminado correctamente
C:\Program Files\mozilla firefox\defaults\pref\eset_security_config_overlay.js => movido correctamente
"C:\Program Files\mozilla firefox\defaults\pref\eset_security_config_overlay.js" => no encontrado
"HKLM\Software\Mozilla\Thunderbird\Extensions\\[email protected]" => eliminado correctamente
HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922 => eliminado correctamente
HKLM\Software\MozillaPlugins\@WildTangent.com/GamesAppPresenceDetector,Version=1.0 => eliminado correctamente
HKLM\System\CurrentControlSet\Services\AGMService => eliminado correctamente
AGMService => servicio eliminado correctamente
HKLM\System\CurrentControlSet\Services\AGSService => eliminado correctamente
AGSService => servicio eliminado correctamente
HKLM\System\CurrentControlSet\Services\BstHdAndroidSvc => eliminado correctamente
BstHdAndroidSvc => servicio eliminado correctamente
HKLM\System\CurrentControlSet\Services\BstHdLogRotatorSvc => eliminado correctamente
BstHdLogRotatorSvc => servicio eliminado correctamente
HKLM\System\CurrentControlSet\Services\DFWSIDService => eliminado correctamente
DFWSIDService => servicio eliminado correctamente
HKLM\System\CurrentControlSet\Services\ElevationService => eliminado correctamente
ElevationService => servicio eliminado correctamente
HKLM\System\CurrentControlSet\Services\HuaweiHiSuiteService.exe => eliminado correctamente
HuaweiHiSuiteService.exe => servicio eliminado correctamente
HKLM\System\CurrentControlSet\Services\Motorola Device Manager => eliminado correctamente
Motorola Device Manager => servicio eliminado correctamente
HKLM\System\CurrentControlSet\Services\PST Service => eliminado correctamente
PST Service => servicio eliminado correctamente
HKLM\System\CurrentControlSet\Services\SkypeUpdate => eliminado correctamente
SkypeUpdate => servicio eliminado correctamente
HKLM\System\CurrentControlSet\Services\wlcrasvc => eliminado correctamente
wlcrasvc => servicio eliminado correctamente
HKLM\System\CurrentControlSet\Services\wlidsvc => eliminado correctamente
wlidsvc => servicio eliminado correctamente
HKLM\System\CurrentControlSet\Services\Wondershare InstallAssist => eliminado correctamente
Wondershare InstallAssist => servicio eliminado correctamente
HKLM\System\CurrentControlSet\Services\BstHdDrv => eliminado correctamente
BstHdDrv => servicio eliminado correctamente
HKLM\System\CurrentControlSet\Services\H1dVzRms1AL9i2 => eliminado correctamente
H1dVzRms1AL9i2 => servicio eliminado correctamente
EnigmaFileMonDriver => servicio no encontrado.
HKLM\System\CurrentControlSet\Services\ShMonitor => eliminado correctamente
ShMonitor => servicio eliminado correctamente
HKLM\System\CurrentControlSet\Services\EsgShKernel => eliminado correctamente
EsgShKernel => servicio eliminado correctamente
"C:\Windows\system32\Drivers\EnigmaFileMonDriver.sys" => no encontrado
HKLM\System\CurrentControlSet\Services\McComponentHostService => eliminado correctamente
McComponentHostService => servicio eliminado correctamente
C:\Program Files\McAfee Security Scan => movido correctamente
C:\Windows\u => movido correctamente
C:\Users\User\AppData\LocalLow\IGDump => movido correctamente
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SpyHunter5.lnk => movido correctamente
C:\Users\Public\Desktop\SpyHunter5.lnk => movido correctamente
"C:\ProgramData\Desktop\SpyHunter5.lnk" => no encontrado
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EnigmaSoft => movido correctamente
C:\ProgramData\EnigmaSoft Limited => movido correctamente
C:\sh5ldr => movido correctamente
C:\Program Files\EnigmaSoft => movido correctamente
C:\ProgramData\4649 => movido correctamente
C:\winCrtdhcpcommon => movido correctamente
C:\ProgramData\5969 => movido correctamente
C:\ProgramData\McAfee Security Scan => movido correctamente
C:\a7b025c7bbc7de3a317674c0830409b6 => movido correctamente
"C:\Windows\system32\config\SYSTEM" => no pudo ser desbloqueado

========================= folder: C:\Windows\system32\config\SYSTEM ========================

C:\Windows\system32\config\SYSTEM = Archivo

====== Final de Folder: ======

"C:\Windows\system32\Drivers\uUjC52.sys" => no pudo ser desbloqueado
No pudo ser movido "C:\Windows\system32\Drivers\uUjC52.sys" => Programado para moverse al reiniciar.
HKLM\SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000007 => eliminado correctamente
HKLM\SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000008 => eliminado correctamente
HKU\S-1-5-21-4047135609-2362062722-1061616882-1001_Classes\ChromeHTML => eliminado correctamente
HKLM\Software\Classes\Directory\ShellEx\ContextMenuHandlers\Offline Files => eliminado correctamente
HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers\Offline Files => eliminado correctamente
C:\ProgramData\Temp => ":5C321E34" ADS eliminado correctamente
"HKU\S-1-5-21-4047135609-2362062722-1061616882-1001\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA}" => eliminado correctamente
HKLM\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^McAfee Security Scan Plus.lnk => eliminado correctamente
C:\Windows\pss\McAfee Security Scan Plus.lnk.CommonStartup => movido correctamente
HKLM\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\McAfeeSafeConnect => eliminado correctamente
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{68D90DCB-A96A-44C5-9C01-8CDA326AA262}" => eliminado correctamente
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{6EB3D35F-17AE-4BD0-BD5E-FB353F044912}" => eliminado correctamente
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{F622BC74-DACB-40CB-8F47-D146EF86E13D}" => eliminado correctamente
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{2430A369-CC3B-4DB9-8FFB-8E6035C1A6B5}" => eliminado correctamente
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{406BE2A6-04A1-4CD7-8944-2EB23AE54BE8}" => eliminado correctamente
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{082FFD7C-E17D-4EC3-9A39-F11EFFF11A7D}" => eliminado correctamente
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{E3E9DACB-1954-4959-961D-DEDC68F7E7A4}C:\program files\cisco packet tracer 6.1sv\bin\packettracer6.exe" => eliminado correctamente
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{2D035A5B-A4E7-45F6-BF13-F68C259779D8}C:\program files\cisco packet tracer 6.1sv\bin\packettracer6.exe" => eliminado correctamente
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{CBA5AA69-8A0F-493E-BDFD-6E69171FB41D}C:\program files\cisco packet tracer 6.1sv\bin\packettracer6.exe" => eliminado correctamente
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{2DE4F982-99BB-4DB7-899D-A6D0A17A64F5}C:\program files\cisco packet tracer 6.1sv\bin\packettracer6.exe" => eliminado correctamente
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{5167E24C-8032-4EE1-9B8B-3908DA6DBB82}C:\program files\electronic arts\eadm\core.exe" => eliminado correctamente
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{2FCE2A4B-0313-4BBD-9268-C599DB3499FA}C:\program files\electronic arts\eadm\core.exe" => eliminado correctamente
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{C4B5C004-2937-4E02-9202-C0D0FB6F294C}C:\program files\electronic arts\eadm\core.exe" => eliminado correctamente
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{1EDADA10-58C6-4578-AB68-653FFFC52C2F}C:\program files\electronic arts\eadm\core.exe" => eliminado correctamente
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{83A7EF67-52D5-4269-A758-57151448C0B6}" => eliminado correctamente
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{2113F40E-53CD-4F4E-85B0-AD7209852B64}" => eliminado correctamente
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{74B2AE77-2028-4B2C-8A7F-B56540F0EC1D}" => eliminado correctamente
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{E60591A8-1C6A-44F3-959E-E9EDE41DD529}" => eliminado correctamente
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{A8F737AC-BFAA-436A-B7BF-331972B78740}" => eliminado correctamente
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{37E69C99-0441-4874-8F38-9FDAE29BFD61}" => eliminado correctamente
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{BBE74FDD-6852-4072-AA84-E3874F5111FF}" => eliminado correctamente
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{1ABEF459-2E02-4FA3-9CD3-7F01638459AA}" => eliminado correctamente
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{F8A6D215-E4E9-444A-BA79-B6EE9F08E430}" => eliminado correctamente
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{D346AF02-9A5B-4C79-8A5C-D0D445E5EE5C}" => eliminado correctamente
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{48749A90-21F3-4FAC-A9AA-D20101CB47AB}" => eliminado correctamente
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{AFD932D5-6BF4-420C-AC88-B4B66E46EB4A}" => eliminado correctamente

========= ipconfig /flushdns =========


Configuraci¢n IP de Windows

Se vaci¢ correctamente la cach‚ de resoluci¢n de DNS.

========= Final de CMD: =========


========= ipconfig /renew =========


Configuraci¢n IP de Windows


Adaptador de LAN inal mbrica Conexi¢n de red inal mbrica:

   Sufijo DNS espec¡fico para la conexi¢n. . : 
   V¡nculo: direcci¢n IPv6 local. . . : fe80::79c6:6ac6:281f:1bed%15
   Direcci¢n IPv4. . . . . . . . . . . . . . : 192.168.0.100
   M scara de subred . . . . . . . . . . . . : 0.0.0.0
   Puerta de enlace predeterminada . . . . . : 192.168.0.1

Adaptador de t£nel isatap.{859E84F1-9BA5-4325-8CF8-78038544BFF1}:

   Estado de los medios. . . . . . . . . . . : medios desconectados
   Sufijo DNS espec¡fico para la conexi¢n. . : 

Adaptador de t£nel Teredo Tunneling Pseudo-Interface:

   Estado de los medios. . . . . . . . . . . : medios desconectados
   Sufijo DNS espec¡fico para la conexi¢n. . : 

========= Final de CMD: =========


========= netsh winsock reset catalog =========

La funci¢n de inicializaci¢n InitHelperDll en NSHHTTP.DLL no pudo iniciar, c¢digo de error
11003

El cat logo Winsock se restableci¢ correctamente.
Debe reiniciar el equipo para completar el restablecimiento.


========= Final de CMD: =========


========= netsh int ip reset all =========

La funci¢n de inicializaci¢n InitHelperDll en NSHHTTP.DLL no pudo iniciar, c¢digo de error
11003
Global se restableci¢ correctamente.
Interfaz se restableci¢ correctamente.
Direcci¢n de unidifusi¢n se restableci¢ correctamente.
Ruta se restableci¢ correctamente.
Reinicie el equipo para completar esta acci¢n.


========= Final de CMD: =========


========= bitsadmin /reset /allusers =========


BITSADMIN version 3.0 [ 7.5.7601 ]
BITS administration utility.
(C) Copyright 2000-2006 Microsoft Corp.

BITSAdmin is deprecated and is not guaranteed to be available in future versions of Windows.
Administrative tools for the BITS service are now provided by BITS PowerShell cmdlets.

0 out of 0 jobs canceled.

========= Final de CMD: =========

C:\Windows\System32\Drivers\etc\hosts => movido correctamente
Hosts restaurado correctamente.

=========== EmptyTemp: ==========

BITS transfer queue => 8388608 B
DOMStoree, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 18024531 B
Java, Flash, Steam htmlcache => 495 B
Windows/system/drivers => 0 B
Edge => 0 B
Chrome => 407259060 B
Firefox => 26545576 B
Opera => 704644 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
Public => 0 B
ProgramData => 0 B
systemprofile => 42737645 B
LocalService => 42737645 B
NetworkService => 42737645 B
User => 65642050 B
MSSQL$SQLEXPRESS2012 => 65642050 B

RecycleBin => 4577569935 B
EmptyTemp: => 4.9 GB datos temporales Eliminados.

================================

Resultado de los archivos programados para mover (Modo de Inicio: Normal) (Fecha y Hora: 06-07-2021 18:55:39)

"C:\Windows\system32\Drivers\uUjC52.sys" => No pudo ser movido.

==== Final  Fixlog 18:55:39 ====

Muchas gracias @ErdrickBass por tu ayuda y paciencia,Te comento el.inicio esta mas rapido, pero cuando estaba iniciando aparecio una pantalla negra

Como me comentaste que vamos por parte significa que la pc aun esta infectado?

Hola nuevamente,

La pantalla negra es parte de Windows, es el escaneo de disco. Pero según informa este no puede abrirse :grimacing:

De hecho mi idea original era eliminar las infecciones en esta pasada y usar algunas opciones para reparar tu equipo. El problema es que parte de la infección no pudo ser eliminada. Por lo que vamos a tener que hacer un proceso más complicado para desinfectar tu equipo si estas de acuerdo.

Te voy a dar un procedimiento que puede ser algo lioso, con pasos específicos para Windows 7 (el tuyo). Léelo con calma y no dudes en preguntar cualquier duda. Vamos a usar la consola de recuperación de Windows.

Realice lo siguiente:

Herramientas necesarias:

  • Un ordenador limpio con conexión a Internet (preferible).
  • Un USB, debe estar formateado.
  • Imprima, tome captura o revise desde el móvil estas instrucciones para su fácil acceso.

Si cuentas con un ordenador limpio:

  • Descargue Farbar Recovery Scan Tool considerando la versión adecuada para tu equipo a su escritorio (de 32 bits).
  • Copie la herramienta a su unidad USB y conéctelo al ordenado infectado.

De no contar con un equipo limpio puede copiar FRST de su equipo actual a la USB.

Desde el equipo infectado:
Ingresa en las opciones de reparación del sistema. Accede a las Opciones de Recuperación del Sistema de las opciones de inicio avanzadas:

Si usas Windows Vista o 7

  • Reinicie el equipo. Tan pronto como se carga el BIOS presione la tecla F8 hasta que aparezcan las Opciones avanzadas de arranque.

  • Selecciona Reparar el Equipo y presione enter.
  • Espera a que cargue, seleccione el Idioma y configuración de teclado, clic en Siguiente.
  • Seleccione el sistema operativo que desee reparar y haga clic en Siguiente.
  • Seleccione su cuenta de Usuario haga clic en Siguiente.

Estando en el entorno de Recuperación

En el menú de Opciones de Recuperación del Sistema vera algunas de las siguientes opciones:

imagen

  • Seleccione el Símbolo del Sistema, la última opción.
  • En la Ventana de comandos, escriba Notepad.exe y presione enter.
  • En la parte superior del Bloc de notas vaya a Archivo > Abrir > Seleccione “Equipo” anota la letra correspondientemente a la unidad extraible USB.
  • Cierra el Bloc de notas para regresar a la ventana de comandos
  • Una vez dentro de la Ventana de Comandos escribe tal cual x:frst.exe donde X debe ser reemplazada por la letra de su unidad USB (para x64 escribe x:frst64.exe).
  • Presionas enter para que a herramienta comience a correr.
  • Cuando la herramienta se abra le mostrara la ventana Disclaimer, haga clic en

Luego abrirá la ventana del programa:

  • Pulse el botón Scan para comenzar el análisis.
  • Al finalizar el escaneo se creara un reporte Frst.txt en el dispositivo USB

Al terminar

Conecte de nuevo el USB en el ordenador limpio o reinicie el equipo en modo normal, abra al archivo Frst.txt, copie y pegue su contenido en su próxima respuesta.

Esperamos ese nuevo reporte y estamos atentos a cualquier comentario.

Saludos

1 me gusta

Buenos dias no puedo ingresar a la.opcion que me.indicas me.sale.lo.siguiente

Hola nuevamente,

Eso complica un poco las cosas. Imagino no tendrás disponible el disco de Windows, ¿o si? Podría servir aunque no sea el de tu máquina como tal.

Por lo demás realiza lo siguiente:

:white_check_mark: Revisa el siguiente manual y ejecuta TDSSKiller:

Manual de TDSSKiller

Sigue las instrucciones y realiza un escaneo con la herramienta. Procura marcar de manera adicional las casillas:

  • Verify files digital signatures
  • Detect TDLFS files system.

Procura seguir las instrucciones del manual para obtener el reporte.

:white_check_mark: Descargue Malwarebytes Anti-Rootkit Beta y ejecútelo según su manual.

Manual Malwarebytes Anti-Rootkit Beta

  1. Ejecute el programa siguiendo las instrucciones del manual.
  2. Es importante que actualice.
  3. Espere a que termine el escaneo
  4. Terminando, si hay infección siga los pasos del manual para desinfectar, si no haga clic en Exit. De pedir reiniciar, proceda.

Como los reportes podrían ser algo largos puedes adjuntarlos

Nos traerías:

  • El reporte de TDSSKiller.
  • Los reportes de MBAR (si te da problemas puedes obviar el de System).
  • Cualquier comentario de como notes el sistema.

Saludos

1 me gusta

hola @ErdrickBass no tengo ese windows, tengo es el windows 8.1 32bits y otra consulta esas instrucciones que me enviaste ultimo las realizo despues de colocar el windows y hacer las instrucciones de reparar sistema o antes?

Aqui esta el reporte frst lo enviare por partes

scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 05-07-2021
Ran by SYSTEM on MININT-TJ66580 (07-07-2021 13:54:56)
Running from D:\
Platform: Windows 7 Starter Service Pack 1 (X86) Language: Español (España, internacional) -> Español (España, internacional)
Boot Mode: Recovery
Default: ControlSet001
[b]ATTENTION!:=====> If the system is bootable FRST must be run from normal or Safe mode to create a complete log.[/b]


==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [SDTray] => C:\Program Files\Spybot - Search & Destroy 2\SDTray.exe [6788032 2018-04-20] (Safer-Networking Ltd. -> Safer-Networking Ltd.)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\Avast Software\Avast\AvLaunch.exe [111896 2021-07-06] (Avast Software s.r.o. -> AVAST Software)
HKU\User\...\Run: [Spybot-S&D Cleaning] => C:\Program Files\Spybot - Search & Destroy 2\SDCleaner.exe [7388488 2018-04-20] (Safer-Networking Ltd. -> Safer-Networking Ltd.)
HKU\User\...\Run: [EPSON TX420W Series] => C:\Windows\system32\spool\DRIVERS\W32X86\3\E_FATIGCL.EXE [200704 2009-09-14] (SEIKO EPSON CORPORATION)
HKU\User\...\Run: [EPLTarget\P0000000000000000] => C:\Windows\system32\spool\DRIVERS\W32X86\3\E_TATIUNE.EXE [379008 2017-09-22] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
HKLM\...\Windows NT x86\Print Processors\OneNotePrint2007: C:\Windows\System32\spool\prtprocs\W32X86\msonpppr.dll [33104 2006-10-27] (Microsoft Corporation -> Microsoft Corporation)
HKLM\...\Print\Monitors\EPSON L3150 Series 32MonitorBE: C:\Windows\system32\E_TLMBUNE.DLL [146432 2017-07-14] (Seiko Epson Corporation)
HKLM\...\Print\Monitors\EPSON TX420W Series 32MonitorBL: C:\Windows\system32\E_FLBGCL.DLL [93696 2008-11-12] (SEIKO EPSON CORPORATION)
HKLM\...\Print\Monitors\EpsonNet Print Port: C:\Windows\system32\enppmon.dll [385024 2016-09-14] (SEIKO EPSON CORPORATION)
HKLM\...\Print\Monitors\HP 8711 Status Monitor: C:\Windows\system32\hpinksts8711LM.dll [269200 2012-09-12] (Hewlett Packard -> Hewlett-Packard Co.)
HKLM\...\Print\Monitors\Send To Microsoft OneNote Monitor: C:\Windows\system32\msonpmon.dll [32592 2006-10-27] (Microsoft Corporation -> Microsoft Corporation)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{89820200-ECBD-11cf-8B85-00AA005B4340}] -> regsvr32.exe /s /n /i:U %SystemRoot%\System32\shell32.dll
SubSystems: [Windows] => "%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,12288,512 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16" <==== ATTENTION
Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {07CF6755-316B-4C32-AC7E-6D1E27D80284} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Check for updates => C:\Program Files\Spybot - Search & Destroy 2\SDUpdate.exe [6944304 2018-04-20] (Safer-Networking Ltd. -> Safer-Networking Ltd.)
Task: {2320597B-51B7-4E00-BEE5-CE3E4FBA8E12} - System32\Tasks\AvastUpdateTaskMachineCore => C:\Program Files\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [194200 2021-07-06] (Avast Software s.r.o. -> AVAST Software)
Task: {331295C1-3E30-42B4-BE70-223AEE9CA31F} - System32\Tasks\EOSv3 Scheduler onTime => C:\Users\User\AppData\Local\ESET\ESETOnlineScanner\ESETOnlineScanner.exe [18007968 2021-07-07] (ESET, spol. s r.o. -> ESET)
Task: {361C940C-3C92-4DDA-B5F6-D994EF1871E3} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [1546480 2021-07-06] (Avast Software s.r.o. -> Avast Software)
Task: {3D27C406-36DB-416B-8466-F0B06A3E02E8} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Product Configurator => C:\Program Files\Hewlett-Packard\HP Support Framework\Resources\ProductConfig.exe
Task: {4325C261-C5B0-4070-A2D0-933F4707D2BD} - System32\Tasks\Avast Emergency Update => C:\Program Files\Avast Software\Avast\AvEmUpdate.exe [4342552 2021-07-06] (Avast Software s.r.o. -> AVAST Software)
Task: {59EBD1CC-02C2-4455-B455-2C42DD2B42AD} - System32\Tasks\AvastUpdateTaskMachineUA => C:\Program Files\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [194200 2021-07-06] (Avast Software s.r.o. -> AVAST Software)
Task: {5C2B8C9C-1AB7-422E-9C3B-A90D8F1B060F} - System32\Tasks\Avast Secure Browser Heartbeat Task (Hourly) => C:\Program Files\AVAST Software\Browser\Application\AvastBrowser.exe [2030160 2021-06-18] (Avast Software s.r.o. -> AVAST Software)
Task: {5CD655D3-E799-48B6-B83E-78A4A9F3CF66} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files\Hewlett-Packard\HP Support Solutions\Modules\HPSFReport.exe
Task: {6DF86C0C-AFBC-433A-AC76-31A4EBF1CC88} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Scan the system => C:\Program Files\Spybot - Search & Destroy 2\SDScan.exe [7651984 2018-04-20] (Safer-Networking Ltd. -> Safer-Networking Ltd.)
Task: {70165080-2A75-4800-96D1-E50206124AC4} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker_DeviceScan => C:\Program Files\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe
Task: {737538FE-4804-4304-8ED5-F074153BF8B6} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2021-06-17] (Piriform Software Ltd -> Piriform)
Task: {7F382591-A56F-41CA-8905-048FF825FE06} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Refresh immunization => C:\Program Files\Spybot - Search & Destroy 2\SDImmunize.exe [7192192 2018-04-20] (Safer-Networking Ltd. -> Safer-Networking Ltd.)
Task: {815730E6-F128-410B-8A9E-2BE3CD61DF9F} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files\Hewlett-Packard\HP Support Framework\HPSF.exe
Task: {877242F4-BDB7-4BC7-BD5C-8BFAF6EFCECC} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker => C:\Program Files\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe
Task: {92CBD9E1-4E6B-4402-B3C4-EE193B84924A} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe
Task: {A7524879-45B8-4EF9-890A-E91AC7CCE121} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [28880512 2021-06-17] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {C858076A-9BC3-4D08-B6B2-841E42B2C8BA} - System32\Tasks\Hewlett-Packard\HP Active Health\HP Active Health Scan (HPSA) => C:\Program Files\Hewlett-Packard\HP Support Framework\Resources\HPActiveHealth\ActiveHealth.exe
Task: {D311A68F-09DA-476A-8D49-809D59BAF6D2} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files\Hewlett-Packard\HP Support Framework\HPSF.exe
Task: {FEC6D16E-DB06-45BC-9C6B-641C3231AA82} - System32\Tasks\EOSv3 Scheduler onLogOn => C:\Users\User\AppData\Local\ESET\ESETOnlineScanner\ESETOnlineScanner.exe [18007968 2021-07-07] (ESET, spol. s r.o. -> ESET)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\Windows\Tasks\ Update {7A1DE94B-8FF7-4C11-B782-84462DA7338A}.job => C:\Windows\system32\spool\DRIVERS\W32X86\3\E_TTSUNE.EXE:/EXE:{7A1DE94B-8FF7-4C11-B782-84462DA7338A} /F:UpdateSYSTEMĊSearches for EPSON software updates, and notifies you when updates are available.If this task is disabled or stopped, your EPSON software will not be automatically kept up to date.Thi
Task: C:\Windows\Tasks\EPSON L3150 Series Update {DD86AEFB-1EA0-4D48-ACF4-61AFFC7FCFB5}.job => C:\Windows\system32\spool\DRIVERS\W32X86\3\E_TTSUNE.EXE:/EXE:{DD86AEFB-1EA0-4D48-ACF4-61AFFC7FCFB5} /F:UpdateSYSTEMĊSearches for EPSON software updates, and notifies you when updates are available.If this task is disabled or stopped, your EPSON software will not be automatically kept up to date.Thi
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-4047135609-2362062722-1061616882-1001Core1cf671c4ec37ad4.job => C:\Users\User\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-4047135609-2362062722-1061616882-1001Core1d093f027c3f5c4.job => C:\Users\User\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-4047135609-2362062722-1061616882-1001UA1cf72ac33623b59.job => C:\Users\User\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-4047135609-2362062722-1061616882-1001UA1d0447714d75660.job => C:\Users\User\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-4047135609-2362062722-1061616882-1001UA1d093f027ff03d1.job => C:\Users\User\AppData\Local\Google\Update\GoogleUpdate.exe

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

"HKLM\System\ControlSet001\Services\{45487F67-EC9F-4449-A6F2-2D0970F9B80B}" => removed successfully.
C:\Windows\System32\drivers\uUjC52.sys => moved successfully
S2 AdobeARMservice; C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [169672 2021-01-26] (Adobe Inc. -> Adobe Inc.)
S4 AdobeUpdateService; C:\Program Files\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [816184 2019-07-05] (Adobe Inc. -> Adobe Inc.)
S2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [284672 2011-02-28] (Advanced Micro Devices, Inc.)
S2 AMD Reservation Manager; C:\Program Files\ATI Technologies\ATI.ACE\Reservation Manager\AMD Reservation Manager.exe [140224 2010-06-17] (Advanced Micro Devices, Inc. -> Advanced Micro Devices)
S2 Apache2.4; C:\xampp\apache\bin\httpd.exe [23040 2018-03-22] (Apache Software Foundation)
S3 aswbIDSAgent; C:\Program Files\Avast Software\Avast\aswidsagent.exe [7401552 2021-07-06] (Avast Software s.r.o. -> AVAST Software)
S2 avast; C:\Program Files\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [194200 2021-07-06] (Avast Software s.r.o. -> AVAST Software)
S2 avast! Antivirus; C:\Program Files\Avast Software\Avast\AvastSvc.exe [567064 2021-07-06] (Avast Software s.r.o. -> AVAST Software)
S2 avast! Tools; C:\Program Files\Avast Software\Avast\aswToolsSvc.exe [349464 2021-07-06] (Avast Software s.r.o. -> AVAST Software)
S3 avastm; C:\Program Files\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [194200 2021-07-06] (Avast Software s.r.o. -> AVAST Software)
S3 AvastSecureBrowserElevationService; C:\Program Files\AVAST Software\Browser\Application\91.0.10362.115\elevation_service.exe [1196008 2021-06-18] (Avast Software s.r.o. -> AVAST Software)
S2 AvastWscReporter; C:\Program Files\Avast Software\Avast\wsc_proxy.exe [56912 2021-07-06] (Avast Software s.r.o. -> AVAST Software)
S4 EpsonBidirectionalService; C:\Program Files\Common Files\EPSON\EBAPI\eEBSVC.exe [94208 2006-12-20] (SEIKO EPSON CORPORATION)
S2 EpsonScanSvc; C:\Windows\system32\EscSvc.exe [223560 2018-01-29] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
S2 EPSON_EB_RPCV4_04; C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50ST7.EXE [153600 2009-09-14] (SEIKO EPSON CORPORATION)
S2 EPSON_PM_RPCV4_04; C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50RP7.EXE [121856 2009-09-14] (SEIKO EPSON CORPORATION)
S3 fussvc; C:\Program Files\Windows Kits\8.0\App Certification Kit\fussvc.exe [133632 2012-07-26] (Microsoft Corporation)
S2 hasplms; C:\Windows\system32\hasplms.exe [4180576 2010-09-27] (SafeNet, Inc. -> SafeNet Inc.)
S3 hpqcaslwmiex; C:\Program Files\HP\Shared\hpqwmiex.exe [1031704 2016-06-04] (Hewlett-Packard Company -> HP)
S4 IconMan_R; C:\Program Files\Realtek\Realtek PCIE Card Reader\RIconMan.exe [1784320 2015-06-01] (Realsil Microelectronics Inc.)
S2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [5959136 2021-07-05] (Malwarebytes Inc -> Malwarebytes)
S2 MSSQL$SQLEXPRESS2012; c:\Program Files\Microsoft SQL Server\MSSQL11.SQLEXPRESS2012\MSSQL\Binn\sqlservr.exe [206424 2012-02-11] (Microsoft Corporation -> Microsoft Corporation)
S2 MSSQLSERVER; c:\Program Files\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe [29263712 2008-11-25] (Microsoft Corporation -> Microsoft Corporation)
S4 MSSQLServerADHelper; c:\Program Files\Microsoft SQL Server\90\Shared\sqladhlp90.exe [45408 2008-11-25] (Microsoft Corporation -> Microsoft Corporation)
S2 mysql; C:\xampp\mysql\bin\mysqld.exe [11552680 2018-02-04] (MariaDB Corporation Ab -> )
S2 STacSV; C:\Program Files\IDT\WDM\STacSV.exe [262226 2010-12-17] (IDT, Inc.)
S3 SwitchBoard; C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Test Signing Certificate -> Adobe Systems Incorporated)
S3 Te.Service; C:\Program Files\Windows Kits\8.0\Testing\Runtimes\TAEF\Wex.Services.exe [94208 2012-07-26] (Microsoft Corporation)
S2 WsAppService; C:\Program Files\Wondershare\WAF\2.4.3.242\WsAppService.exe [495720 2018-08-29] (Wondershare Technology Co.,Ltd -> Wondershare)

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 1394ohci; C:\Windows\system32\drivers\1394ohci.sys [164864 2010-11-20] (Microsoft Corporation)
S3 AcpiPmi; C:\Windows\system32\drivers\acpipmi.sys [10240 2010-11-20] (Microsoft Corporation)
S1 AFD; C:\Windows\system32\drivers\afd.sys [338944 2010-11-20] (Microsoft Corporation)
S3 aftap0901; C:\Windows\System32\DRIVERS\aftap0901.sys [45528 2018-03-06] (AnchorFree Inc -> The OpenVPN Project)
S2 aksfridge; C:\Windows\System32\DRIVERS\aksfridge.sys [356864 2010-09-27] (SafeNet Inc.)
S3 akshasp; C:\Windows\System32\DRIVERS\akshasp.sys [238208 2009-03-13] (Aladdin Knowledge Systems Ltd.)
S3 akshhl; C:\Windows\System32\DRIVERS\akshhl.sys [46336 2007-07-23] (Aladdin Knowledge Systems Ltd.)
S3 aksusb; C:\Windows\System32\DRIVERS\aksusb.sys [16384 2009-06-22] (Aladdin Knowledge Systems Ltd.)
S3 amdiox86; C:\Windows\System32\DRIVERS\amdiox86.sys [37944 2010-02-18] (Advanced Micro Devices, Inc. -> Advanced Micro Devices)
S3 AmdK8; C:\Windows\system32\drivers\amdk8.sys [55296 2009-07-14] (Microsoft Corporation)
S3 amdkmdap; C:\Windows\System32\DRIVERS\atikmpag.sys [238592 2011-02-28] (Advanced Micro Devices, Inc.)
S3 AmdPPM; C:\Windows\System32\DRIVERS\amdppm.sys [52736 2009-07-14] (Microsoft Corporation)
S0 amd_sata; C:\Windows\System32\DRIVERS\amd_sata.sys [66176 2011-01-29] (Advanced Micro Devices, Inc. -> Advanced Micro Devices)
S0 amd_xata; C:\Windows\System32\DRIVERS\amd_xata.sys [32384 2011-01-29] (Advanced Micro Devices, Inc. -> Advanced Micro Devices)
S3 AppID; C:\Windows\system32\drivers\appid.sys [50176 2010-11-20] (Microsoft Corporation)
S0 aswArDisk; C:\Windows\System32\drivers\aswArDisk.sys [33608 2021-07-06] (Avast Software s.r.o. -> AVAST Software)
S1 aswArPot; C:\Windows\System32\drivers\aswArPot.sys [183152 2021-07-06] (Avast Software s.r.o. -> AVAST Software)
S1 aswbidsdriver; C:\Windows\System32\drivers\aswbidsdriver.sys [292880 2021-07-06] (Avast Software s.r.o. -> AVAST Software)
S0 aswbidsh; C:\Windows\System32\drivers\aswbidsh.sys [206352 2021-07-06] (Avast Software s.r.o. -> AVAST Software)
S0 aswbuniv; C:\Windows\System32\drivers\aswbuniv.sys [91672 2021-07-06] (Avast Software s.r.o. -> AVAST Software)
S1 aswKbd; C:\Windows\System32\drivers\aswKbd.sys [39320 2021-07-06] (Avast Software s.r.o. -> AVAST Software)
S1 aswMonFlt; C:\Windows\System32\drivers\aswMonFlt.sys [152992 2021-07-06] (Avast Software s.r.o. -> AVAST Software)
S1 aswNetHub; C:\Windows\System32\drivers\aswNetHub.sys [379536 2021-07-06] (Avast Software s.r.o. -> AVAST Software)
S3 aswNetNd6; C:\Windows\System32\DRIVERS\aswNetNd6.sys [36104 2021-07-06] (AVAST Software s.r.o. -> AVAST Software)
S1 aswRdr; C:\Windows\System32\drivers\aswRdr2.sys [92752 2021-07-06] (Avast Software s.r.o. -> AVAST Software)
S0 aswRvrt; C:\Windows\System32\drivers\aswRvrt.sys [71408 2021-07-06] (Avast Software s.r.o. -> AVAST Software)
S1 aswSnx; C:\Windows\System32\drivers\aswSnx.sys [691224 2021-07-06] (Avast Software s.r.o. -> AVAST Software)
S1 aswSP; C:\Windows\System32\drivers\aswSP.sys [388848 2021-07-06] (Avast Software s.r.o. -> AVAST Software)
S2 aswStm; C:\Windows\System32\drivers\aswStm.sys [161880 2021-07-06] (Avast Software s.r.o. -> AVAST Software)
S0 aswVmm; C:\Windows\System32\drivers\aswVmm.sys [277616 2021-07-06] (Avast Software s.r.o. -> AVAST Software)
S3 AsyncMac; C:\Windows\System32\DRIVERS\asyncmac.sys [17920 2009-07-14] (Microsoft Corporation)
S0 AtiPcie; C:\Windows\System32\DRIVERS\AtiPcie.sys [14392 2010-06-17] (Advanced Micro Devices, Inc. -> Advanced Micro Devices Inc.)
S3 b06bdrv; C:\Windows\system32\drivers\bxvbdx.sys [430080 2009-07-13] (Broadcom Corporation)
S3 b57nd60x; C:\Windows\System32\DRIVERS\b57nd60x.sys [229888 2009-07-13] (Broadcom Corporation)
S3 BCM43XX; C:\Windows\System32\DRIVERS\bcmwl6.sys [1131008 2009-07-13] (Broadcom Corporation)
S1 Beep; C:\Windows\System32\Drivers\Beep.sys [6144 2009-07-14] (Microsoft Corporation)
S1 blbdrive; C:\Windows\system32\drivers\blbdrive.sys [35328 2009-07-14] (Microsoft Corporation)
S3 bowser; C:\Windows\System32\DRIVERS\bowser.sys [69632 2009-07-14] (Microsoft Corporation)
S3 BrFiltLo; C:\Windows\system32\drivers\BrFiltLo.sys [13568 2009-07-13] (Brother Industries, Ltd.)
S3 BrFiltUp; C:\Windows\system32\drivers\BrFiltUp.sys [5248 2009-07-13] (Brother Industries, Ltd.)
S3 Brserid; C:\Windows\System32\Drivers\Brserid.sys [272128 2009-07-14] (Brother Industries Ltd.)
S3 BrSerWdm; C:\Windows\System32\Drivers\BrSerWdm.sys [62336 2009-07-13] (Brother Industries Ltd.)
S3 BrUsbMdm; C:\Windows\System32\Drivers\BrUsbMdm.sys [12160 2009-07-13] (Brother Industries Ltd.)
S3 BrUsbSer; C:\Windows\System32\Drivers\BrUsbSer.sys [11904 2009-07-13] (Brother Industries Ltd.)
S3 BthEnum; C:\Windows\System32\DRIVERS\BthEnum.sys [34816 2009-07-14] (Microsoft Corporation)
S3 BTHMODEM; C:\Windows\System32\DRIVERS\bthmodem.sys [56320 2009-07-14] (Microsoft Corporation)
S3 BthPan; C:\Windows\System32\DRIVERS\bthpan.sys [93696 2009-07-14] (Microsoft Corporation)
S3 BTHPORT; C:\Windows\System32\Drivers\BTHport.sys [393216 2010-11-20] (Microsoft Corporation)
S3 BTHUSB; C:\Windows\System32\Drivers\BTHUSB.sys [60416 2010-11-20] (Microsoft Corporation)
S4 cdfs; C:\Windows\System32\DRIVERS\cdfs.sys [70656 2009-07-14] (Microsoft Corporation)
S1 cdrom; C:\Windows\System32\DRIVERS\cdrom.sys [108544 2010-11-20] (Microsoft Corporation)
S3 circlass; C:\Windows\system32\drivers\circlass.sys [37888 2009-07-14] (Microsoft Corporation)
S3 CmBatt; C:\Windows\system32\drivers\CmBatt.sys [14080 2009-07-14] (Microsoft Corporation)
S3 CompositeBus; C:\Windows\system32\drivers\CompositeBus.sys [31232 2010-11-20] (Microsoft Corporation)
S1 DfsC; C:\Windows\System32\Drivers\dfsc.sys [78336 2010-11-20] (Microsoft Corporation)
S1 discache; C:\Windows\System32\drivers\discache.sys [32256 2009-07-14] (Microsoft Corporation)
S3 drmkaud; C:\Windows\System32\drivers\drmkaud.sys [5120 2009-07-14] (Microsoft Corporation)
S3 ebdrv; C:\Windows\system32\drivers\evbdx.sys [3100160 2009-07-13] (Broadcom Corporation)
S3 ErrDev; C:\Windows\system32\drivers\errdev.sys [7168 2009-07-14] (Microsoft Corporation)
S3 ew_usbccgpfilter; C:\Windows\System32\DRIVERS\ew_usbccgpfilter.sys [15360 2020-06-29] (Huawei Technologies Co., Ltd.)
S3 exfat; C:\Windows\System32\Drivers\exfat.sys [142336 2009-07-14] (Microsoft Corporation)
S3 fastfat; C:\Windows\System32\Drivers\fastfat.sys [148480 2009-07-14] (Microsoft Corporation)
S3 fdc; C:\Windows\system32\drivers\fdc.sys [25088 2009-07-14] (Microsoft Corporation)
S3 Filetrace; C:\Windows\System32\drivers\filetrace.sys [28160 2009-07-14] (Microsoft Corporation)
S3 flpydisk; C:\Windows\system32\drivers\flpydisk.sys [19968 2009-07-14] (Microsoft Corporation)
S2 hardlock; C:\Windows\system32\drivers\hardlock.sys [588800 2009-12-10] (SafeNet Inc.)
S3 hcw85cir; C:\Windows\system32\drivers\hcw85cir.sys [26624 2009-07-13] (Hauppauge Computer Works, Inc.)
S3 HdAudAddService; C:\Windows\System32\drivers\HdAudio.sys [304128 2010-11-20] (Microsoft Corporation)
S3 HDAudBus; C:\Windows\system32\drivers\HDAudBus.sys [108544 2010-11-20] (Microsoft Corporation)
S3 HidBatt; C:\Windows\system32\drivers\HidBatt.sys [21504 2009-07-14] (Microsoft Corporation)
S3 HidBth; C:\Windows\system32\drivers\hidbth.sys [91136 2009-07-14] (Microsoft Corporation)
S3 HidIr; C:\Windows\system32\drivers\hidir.sys [37888 2009-07-14] (Microsoft Corporation)
S3 HidUsb; C:\Windows\System32\DRIVERS\hidusb.sys [24064 2010-11-20] (Microsoft Corporation)
S3 HTTP; C:\Windows\System32\drivers\HTTP.sys [513536 2010-11-20] (Microsoft Corporation)
S5 hw_usbdev; C:\Windows\System32\Drivers\hw_usbdev.sys [102272 2020-06-29] (Huawei Technologies Co., Ltd.)
S3 i8042prt; C:\Windows\System32\DRIVERS\i8042prt.sys [80896 2009-07-14] (Microsoft Corporation)
S3 intelppm; C:\Windows\system32\drivers\intelppm.sys [53760 2009-07-14] (Microsoft Corporation)
S3 IpFilterDriver; C:\Windows\System32\DRIVERS\ipfltdrv.sys [58880 2009-07-14] (Microsoft Corporation)
S3 IPMIDRV; C:\Windows\system32\drivers\IPMIDrv.sys [65536 2010-11-20] (Microsoft Corporation)
S3 IPNAT; C:\Windows\System32\drivers\ipnat.sys [101888 2009-07-14] (Microsoft Corporation)
S3 IRENUM; C:\Windows\System32\drivers\irenum.sys [13824 2009-07-14] (Microsoft Corporation)
S3 kbdhid; C:\Windows\System32\DRIVERS\kbdhid.sys [28160 2010-11-20] (Microsoft Corporation)
S2 lltdio; C:\Windows\System32\DRIVERS\lltdio.sys [48128 2009-07-14] (Microsoft Corporation)
S2 luafv; C:\Windows\system32\drivers\luafv.sys [86528 2009-07-14] (Microsoft Corporation)
S3 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [213936 2021-07-07] (Malwarebytes Inc -> Malwarebytes)
S3 Modem; C:\Windows\System32\drivers\modem.sys [31744 2009-07-14] (Microsoft Corporation)
S3 monitor; C:\Windows\System32\DRIVERS\monitor.sys [23552 2009-07-14] (Microsoft Corporation)
S3 mouhid; C:\Windows\System32\DRIVERS\mouhid.sys [26112 2009-07-14] (Microsoft Corporation)
S3 mpsdrv; C:\Windows\System32\drivers\mpsdrv.sys [60416 2009-07-14] (Microsoft Corporation)
S3 MRxDAV; C:\Windows\system32\drivers\mrxdav.sys [115712 2010-11-20] (Microsoft Corporation)
S3 mrxsmb; C:\Windows\System32\DRIVERS\mrxsmb.sys [123904 2010-11-20] (Microsoft Corporation)
S3 mrxsmb10; C:\Windows\System32\DRIVERS\mrxsmb10.sys [223232 2010-11-20] (Microsoft Corporation)
S3 mrxsmb20; C:\Windows\System32\DRIVERS\mrxsmb20.sys [96768 2010-11-20] (Microsoft Corporation)
S1 Msfs; C:\Windows\System32\Drivers\Msfs.sys [22528 2009-07-14] (Microsoft Corporation)
S3 mshidkmdf; C:\Windows\System32\drivers\mshidkmdf.sys [4096 2009-07-14] (Microsoft Corporation)
S3 MSKSSRV; C:\Windows\System32\drivers\MSKSSRV.sys [8320 2009-07-14] (Microsoft Corporation)
S3 MSPCLOCK; C:\Windows\System32\drivers\MSPCLOCK.sys [5888 2009-07-14] (Microsoft Corporation)
S3 MSPQM; C:\Windows\System32\drivers\MSPQM.sys [5504 2009-07-14] (Microsoft Corporation)
S3 MSTEE; C:\Windows\System32\drivers\MSTEE.sys [6144 2009-07-14] (Microsoft Corporation)
S3 MTConfig; C:\Windows\system32\drivers\MTConfig.sys [12288 2009-07-14] (Microsoft Corporation)
S3 NativeWifiP; C:\Windows\System32\DRIVERS\nwifi.sys [267264 2009-07-14] (Microsoft Corporation)
S3 NdisCap; C:\Windows\System32\DRIVERS\ndiscap.sys [27136 2009-07-14] (Microsoft Corporation)
S3 NdisTapi; C:\Windows\System32\DRIVERS\ndistapi.sys [20992 2009-07-14] (Microsoft Corporation)
S3 Ndisuio; C:\Windows\System32\DRIVERS\ndisuio.sys [46080 2010-11-20] (Microsoft Corporation)
S3 NdisWan; C:\Windows\System32\DRIVERS\ndiswan.sys [118784 2010-11-20] (Microsoft Corporation)
S3 NDProxy; C:\Windows\System32\Drivers\NDProxy.sys [48640 2010-11-20] (Microsoft Corporation)
S1 NetBIOS; C:\Windows\System32\DRIVERS\netbios.sys [36352 2009-07-14] (Microsoft Corporation)
S1 NetBT; C:\Windows\System32\DRIVERS\netbt.sys [187904 2010-11-20] (Microsoft Corporation)
S1 Npfs; C:\Windows\System32\Drivers\Npfs.sys [35328 2009-07-14] (Microsoft Corporation)
S1 nsiproxy; C:\Windows\System32\drivers\nsiproxy.sys [16896 2009-07-14] (Microsoft Corporation)
S1 Null; C:\Windows\System32\Drivers\Null.sys [4608 2009-07-14] (Microsoft Corporation)
S3 NVENETFD; C:\Windows\System32\DRIVERS\nvm62x32.sys [347264 2009-07-13] (NVIDIA Corporation)
S3 ohci1394; C:\Windows\system32\drivers\ohci1394.sys [62464 2009-07-14] (Microsoft Corporation)
S3 Parport; C:\Windows\system32\drivers\parport.sys [79360 2009-07-14] (Microsoft Corporation)
S2 Parvdm; C:\Windows\system32\drivers\parvdm.sys [8704 2009-07-14] (Microsoft Corporation)
S2 PEAUTH; C:\Windows\System32\drivers\peauth.sys [586752 2009-07-14] (Microsoft Corporation)
S3 PptpMiniport; C:\Windows\System32\DRIVERS\raspptp.sys [73728 2009-07-14] (Microsoft Corporation)
S3 Processor; C:\Windows\system32\drivers\processr.sys [52224 2009-07-14] (Microsoft Corporation)
S1 Psched; C:\Windows\System32\DRIVERS\pacer.sys [104448 2009-07-14] (Microsoft Corporation)
S3 QWAVEdrv; C:\Windows\system32\drivers\qwavedrv.sys [31744 2009-07-14] (Microsoft Corporation)
S3 RasAcd; C:\Windows\System32\DRIVERS\rasacd.sys [11776 2009-07-14] (Microsoft Corporation)
S3 RasAgileVpn; C:\Windows\System32\DRIVERS\AgileVpn.sys [49152 2009-07-14] (Microsoft Corporation)
S3 Rasl2tp; C:\Windows\System32\DRIVERS\rasl2tp.sys [78848 2009-07-14] (Microsoft Corporation)
S3 RasPppoe; C:\Windows\System32\DRIVERS\raspppoe.sys [77824 2009-07-14] (Microsoft Corporation)
S3 RasSstp; C:\Windows\System32\DRIVERS\rassstp.sys [75264 2009-07-14] (Microsoft Corporation)
S1 rdbss; C:\Windows\System32\DRIVERS\rdbss.sys [242688 2010-11-20] (Microsoft Corporation)
S3 rdpbus; C:\Windows\system32\drivers\rdpbus.sys [18944 2009-07-14] (Microsoft Corporation)
S1 RDPCDD; C:\Windows\System32\DRIVERS\RDPCDD.sys [6656 2010-11-20] (Microsoft Corporation)
S1 RDPENCDD; C:\Windows\System32\drivers\rdpencdd.sys [6656 2009-07-14] (Microsoft Corporation)
S1 RDPREFMP; C:\Windows\System32\drivers\rdprefmp.sys [7168 2009-07-14] (Microsoft Corporation)
S3 RDPWD; C:\Windows\System32\Drivers\RDPWD.sys [183808 2010-11-20] (Microsoft Corporation)
S3 RFCOMM; C:\Windows\System32\DRIVERS\rfcomm.sys [129536 2009-07-14] (Microsoft Corporation)
S1 RsFx0200; C:\Windows\System32\DRIVERS\RsFx0200.sys [268888 2012-02-11] (Microsoft Corporation -> Microsoft Corporation)
S3 RSPCIESTOR; C:\Windows\System32\DRIVERS\RtsPStor.sys [254056 2015-06-01] (Realtek Semiconductor Corp -> Realtek Semiconductor Corp.)
S2 rspndr; C:\Windows\System32\DRIVERS\rspndr.sys [60928 2009-07-14] (Microsoft Corporation)
S3 scfilter; C:\Windows\System32\DRIVERS\scfilter.sys [26624 2010-11-20] (Microsoft Corporation)
S3 sdbus; C:\Windows\System32\DRIVERS\sdbus.sys [84992 2010-11-20] (Microsoft Corporation)
S2 secdrv; C:\Windows\System32\Drivers\secdrv.sys [20480 2009-07-13] (Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.)
S3 Serenum; C:\Windows\system32\drivers\serenum.sys [17920 2009-07-14] (Microsoft Corporation)
S3 Serial; C:\Windows\system32\drivers\serial.sys [83456 2009-07-14] (Microsoft Corporation)
S3 sermouse; C:\Windows\system32\drivers\sermouse.sys [19968 2009-07-14] (Microsoft Corporation)
S3 sffdisk; C:\Windows\system32\drivers\sffdisk.sys [11264 2009-07-14] (Microsoft Corporation)
S3 sffp_mmc; C:\Windows\system32\drivers\sffp_mmc.sys [12288 2009-07-14] (Microsoft Corporation)
S3 sffp_sd; C:\Windows\system32\drivers\sffp_sd.sys [12800 2010-11-20] (Microsoft Corporation)
S3 sfloppy; C:\Windows\system32\drivers\sfloppy.sys [13824 2009-07-14] (Microsoft Corporation)
S3 Smb; C:\Windows\System32\DRIVERS\smb.sys [71168 2009-07-14] (Microsoft Corporation)
S3 srv; C:\Windows\System32\DRIVERS\srv.sys [311296 2010-11-20] (Microsoft Corporation)
S3 srv2; C:\Windows\System32\DRIVERS\srv2.sys [309248 2010-11-20] (Microsoft Corporation)
S3 srvnet; C:\Windows\System32\DRIVERS\srvnet.sys [114176 2010-11-20] (Microsoft Corporation)
S3 SydexFDD; C:\Windows\system32\Drivers\sydexfdd.sys [13359 2010-04-15] (Windows (R) 2000 DDK provider)
S2 tcpipreg; C:\Windows\System32\drivers\tcpipreg.sys [35328 2010-11-20] (Microsoft Corporation)
S3 TDPIPE; C:\Windows\System32\drivers\tdpipe.sys [18432 2010-11-20] (Microsoft Corporation)
S3 TDTCP; C:\Windows\System32\drivers\tdtcp.sys [24576 2010-11-20] (Microsoft Corporation)
S1 tdx; C:\Windows\System32\DRIVERS\tdx.sys [74752 2010-11-20] (Microsoft Corporation)
S3 teamviewervpn; C:\Windows\System32\DRIVERS\teamviewervpn.sys [25088 2020-03-19] (TeamViewer GmbH)
S3 tssecsrv; C:\Windows\System32\DRIVERS\tssecsrv.sys [31232 2010-11-20] (Microsoft Corporation)
S3 TsUsbFlt; C:\Windows\System32\drivers\tsusbflt.sys [52224 2010-11-20] (Microsoft Corporation)
S3 TsUsbGD; C:\Windows\system32\drivers\TsUsbGD.sys [27264 2010-11-20] (Microsoft Corporation)
S3 tunnel; C:\Windows\System32\DRIVERS\tunnel.sys [108544 2010-11-20] (Microsoft Corporation)
S4 udfs; C:\Windows\System32\DRIVERS\udfs.sys [246784 2010-11-20] (Microsoft Corporation)
S3 umbus; C:\Windows\System32\DRIVERS\umbus.sys [39936 2010-11-20] (Microsoft Corporation)
S3 UmPass; C:\Windows\system32\drivers\umpass.sys [8192 2009-07-14] (Microsoft Corporation)
S3 usbccgp; C:\Windows\System32\DRIVERS\usbccgp.sys [75776 2010-11-20] (Microsoft Corporation)
S3 usbcir; C:\Windows\system32\drivers\usbcir.sys [86016 2009-07-14] (Microsoft Corporation)
S3 usbehci; C:\Windows\system32\drivers\usbehci.sys [42496 2010-11-20] (Microsoft Corporation)
S3 usbfilter; C:\Windows\System32\DRIVERS\usbfilter.sys [35968 2010-11-29] (Advanced Micro Devices, Inc. -> Advanced Micro Devices)
S3 usbhub; C:\Windows\system32\drivers\usbhub.sys [258560 2010-11-20] (Microsoft Corporation)
S3 usbohci; C:\Windows\system32\drivers\usbohci.sys [20480 2009-07-14] (Microsoft Corporation)
S3 usbprint; C:\Windows\System32\DRIVERS\usbprint.sys [19968 2009-07-14] (Microsoft Corporation)
S3 usbscan; C:\Windows\System32\DRIVERS\usbscan.sys [35840 2009-07-14] (Microsoft Corporation)
S3 usbser; C:\Windows\System32\DRIVERS\USBSER.sys [28160 2020-06-29] (Microsoft Corporation)
S3 USBSTOR; C:\Windows\System32\DRIVERS\USBSTOR.SYS [76288 2010-11-20] (Microsoft Corporation)
S3 usbuhci; C:\Windows\system32\drivers\usbuhci.sys [24064 2009-07-14] (Microsoft Corporation)
S3 usbvideo; C:\Windows\System32\Drivers\usbvideo.sys [146432 2010-11-20] (Microsoft Corporation)
S3 vga; C:\Windows\System32\DRIVERS\vgapnp.sys [26112 2009-07-14] (Microsoft Corporation)
S1 VgaSave; C:\Windows\System32\drivers\vga.sys [25088 2009-07-14] (Microsoft Corporation)
S3 ViaC7; C:\Windows\system32\drivers\viac7.sys [52736 2009-07-14] (Microsoft Corporation)
S3 VSPerfDrv110; C:\Program Files\Microsoft Visual Studio 11.0\Team Tools\Performance Tools\VSPerfDrv110.sys [55416 2012-07-14] (Microsoft Corporation -> Microsoft Corporation)
S3 vusbbus; C:\Windows\System32\DRIVERS\vusbbus.sys [2665472 2012-01-03] (Chingachguk & Denger2k)
S3 vwifibus; C:\Windows\System32\DRIVERS\vwifibus.sys [19968 2009-07-14] (Microsoft Corporation)
S1 vwififlt; C:\Windows\System32\DRIVERS\vwififlt.sys [48128 2009-07-14] (Microsoft Corporation)
S3 vwifimp; C:\Windows\System32\DRIVERS\vwifimp.sys [14336 2009-07-14] (Microsoft Corporation)
S3 WacomPen; C:\Windows\system32\drivers\wacompen.sys [21632 2009-07-14] (Microsoft Corporation)
S3 WANARP; C:\Windows\System32\DRIVERS\wanarp.sys [63488 2010-11-20] (Microsoft Corporation)
S1 Wanarpv6; C:\Windows\System32\DRIVERS\wanarp.sys [63488 2010-11-20] (Microsoft Corporation)
S1 WfpLwf; C:\Windows\System32\DRIVERS\wfplwf.sys [9728 2009-07-14] (Microsoft Corporation)
S3 WinUsb; C:\Windows\System32\DRIVERS\WinUsb.sys [35968 2010-11-20] (Microsoft Corporation)
S3 WmiAcpi; C:\Windows\system32\drivers\wmiacpi.sys [11264 2009-07-14] (Microsoft Corporation)
S2 wntpport; C:\Windows\System32\Drivers\wntpport.sys [28416 2009-10-29] (Vireo Software)
S4 ws2ifsl; C:\Windows\system32\drivers\ws2ifsl.sys [16384 2009-07-14] (Microsoft Corporation)
S3 WudfPf; C:\Windows\System32\drivers\WudfPf.sys [92672 2010-11-20] (Microsoft Corporation)
S3 WUDFRd; C:\Windows\System32\DRIVERS\WUDFRd.sys [132224 2010-11-20] (Microsoft Corporation)
UpperFilters: [{4D36E967-E325-11CE-BFC1-08002BE10318}] -> [PartMgr aswArDisk]
UpperFilters: [{4D36E96B-E325-11CE-BFC1-08002BE10318}] -> [aswKbd kbdclass]
LowerFilters: [{71A27CDD-812A-11D0-BEC7-08002BE2092F}] -> [fvevol rdyboost]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (All) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2021-07-07 10:33 - 2021-07-07 10:33 - 000003756 _____ C:\Windows\System32\Tasks\EOSv3 Scheduler onLogOn
2021-07-07 10:33 - 2021-07-07 10:33 - 000003316 _____ C:\Windows\System32\Tasks\EOSv3 Scheduler onTime
2021-07-07 04:32 - 2021-07-07 04:32 - 000001160 _____ C:\Users\User\Desktop\ESET Online Scanner.lnk
2021-07-07 02:32 - 2021-07-07 11:34 - 000000000 ____D C:\Users\User\AppData\LocalLow\IGDump
2021-07-07 01:59 - 2021-07-07 02:01 - 011697056 _____ (ESET) C:\Users\User\Desktop\esetonlinescanner.exe
2021-07-07 01:42 - 2021-07-07 01:54 - 210366080 _____ (Malwarebytes) C:\Users\User\Downloads\mb4-setup-consumer-4.3.0.218-1.0.1273-1.0.39721.exe
2021-07-07 01:30 - 2021-07-07 01:33 - 000002122 _____ C:\Users\User\Desktop\Rkill.txt
2021-07-07 01:29 - 2021-07-07 01:30 - 001802704 _____ (Bleeping Computer, LLC) C:\Users\User\Desktop\iExplore.exe
2021-07-07 01:24 - 2021-07-07 01:25 - 000000000 ____D C:\Users\User\Desktop\Nueva carpeta (2)
2021-07-07 00:47 - 2021-07-07 00:47 - 000001191 _____ C:\Users\Public\Desktop\Revo Uninstaller.lnk
2021-07-07 00:47 - 2021-07-07 00:47 - 000000000 ____D C:\Program Files\VS Revo Group
2021-07-07 00:46 - 2021-07-07 00:47 - 007510656 _____ (VS Revo Group ) C:\Users\User\Documents\revosetup.exe
2021-07-07 00:25 - 2021-07-07 00:25 - 000000008 __RSH C:\ProgramData\ntuser.pol
2021-07-07 00:18 - 2021-07-07 00:25 - 000025178 _____ C:\Users\User\Desktop\Fixlog.txt
2021-07-07 00:15 - 2021-07-07 00:15 - 000000207 _____ C:\Windows\tweaking.com-regbackup-USER-HP-Windows-7-Starter-(32-bit).dat
2021-07-07 00:14 - 2021-07-07 00:14 - 000000000 ____D C:\RegBackup
2021-07-07 00:09 - 2021-07-07 00:13 - 005509218 _____ C:\Users\User\Desktop\tweaking.com_registry_backup_portable.zip
2021-07-06 23:31 - 2021-07-06 23:31 - 000000000 ____D C:\Users\User\AppData\Local\ElevatedDiagnostics
2021-07-06 19:33 - 2021-07-06 20:14 - 000089559 _____ C:\Users\User\Desktop\Addition.txt
2021-07-06 19:30 - 2021-07-06 20:14 - 000073032 _____ C:\Users\User\Desktop\FRST.txt
2021-07-06 18:59 - 2021-07-07 00:25 - 000000000 ____D C:\FRST
2021-07-06 15:52 - 2021-07-06 15:52 - 000000917 _____ C:\Windows\Tasks\ Update {7A1DE94B-8FF7-4C11-B782-84462DA7338A}.job
2021-07-06 03:52 - 2021-07-06 03:52 - 002014208 _____ (Farbar) C:\Users\User\Desktop\FRST.exe
2021-07-06 03:48 - 2021-07-06 03:48 - 000002804 _____ C:\Windows\System32\Tasks\CCleanerSkipUAC
2021-07-06 03:47 - 2021-07-07 03:48 - 000000000 ____D C:\Program Files\CCleaner
2021-07-06 03:47 - 2021-07-06 23:26 - 000004128 _____ C:\Windows\System32\Tasks\CCleaner Update
2021-07-06 03:47 - 2021-07-06 03:47 - 000000969 _____ C:\Users\Public\Desktop\CCleaner.lnk
2021-07-06 03:46 - 2021-07-06 03:46 - 000000000 ____D C:\Users\User\AppData\Roaming\ZHP
2021-07-06 03:46 - 2021-07-06 03:46 - 000000000 ____D C:\Users\User\AppData\Local\ZHP
2021-07-06 03:45 - 2021-07-06 03:46 - 035958288 _____ (Piriform Software Ltd) C:\Users\User\Documents\ccsetup582.exe
2021-07-06 03:44 - 2021-07-06 03:45 - 003258008 _____ (Nicolas Coolman) C:\Users\User\Documents\ZHPCleaner.exe
2021-07-06 03:35 - 2021-07-06 03:35 - 000003720 _____ C:\Windows\System32\Tasks\Avast Secure Browser Heartbeat Task (Hourly)
2021-07-06 03:35 - 2021-07-06 03:35 - 000002406 _____ C:\Users\Public\Desktop\Avast Secure Browser.lnk
2021-07-06 03:33 - 2021-07-06 03:33 - 000003498 _____ C:\Windows\System32\Tasks\AvastUpdateTaskMachineUA
2021-07-06 03:33 - 2021-07-06 03:33 - 000003370 _____ C:\Windows\System32\Tasks\AvastUpdateTaskMachineCore
2021-07-06 03:28 - 2021-07-06 03:41 - 000000000 ____D C:\Users\User\AppData\Local\Avast Software
2021-07-06 03:28 - 2021-07-06 03:28 - 000002079 _____ C:\Users\Public\Desktop\Avast Free Antivirus.lnk
2021-07-06 03:28 - 2021-07-06 03:28 - 000000000 ____D C:\Users\User\AppData\Roaming\Avast Software
2021-07-06 03:22 - 2021-07-06 03:22 - 000000000 ____D C:\Windows\System32\Tasks\Avast Software
2021-07-06 03:21 - 2021-07-06 23:26 - 000004168 _____ C:\Windows\System32\Tasks\Avast Emergency Update
2021-07-06 03:21 - 2021-07-06 03:21 - 000691224 _____ (AVAST Software) C:\Windows\System32\Drivers\aswSnx.sys
2021-07-06 03:21 - 2021-07-06 03:21 - 000388848 _____ (AVAST Software) C:\Windows\System32\Drivers\aswSP.sys
2021-07-06 03:21 - 2021-07-06 03:21 - 000379536 _____ (AVAST Software) C:\Windows\System32\Drivers\aswNetHub.sys
2021-07-06 03:21 - 2021-07-06 03:21 - 000287000 _____ (AVAST Software) C:\Windows\System32\aswBoot.exe
2021-07-06 03:21 - 2021-07-06 03:21 - 000277616 _____ (AVAST Software) C:\Windows\System32\Drivers\aswVmm.sys
2021-07-06 03:21 - 2021-07-06 03:21 - 000206352 _____ (AVAST Software) C:\Windows\System32\Drivers\aswbidsh.sys
2021-07-06 03:21 - 2021-07-06 03:21 - 000183152 _____ (AVAST Software) C:\Windows\System32\Drivers\aswArPot.sys
2021-07-06 03:21 - 2021-07-06 03:21 - 000161880 _____ (AVAST Software) C:\Windows\System32\Drivers\aswStm.sys
2021-07-06 03:21 - 2021-07-06 03:21 - 000152992 _____ (AVAST Software) C:\Windows\System32\Drivers\aswMonFlt.sys
2021-07-06 03:21 - 2021-07-06 03:21 - 000092752 _____ (AVAST Software) C:\Windows\System32\Drivers\aswRdr2.sys
2021-07-06 03:21 - 2021-07-06 03:21 - 000091672 _____ (AVAST Software) C:\Windows\System32\Drivers\aswbuniv.sys
2021-07-06 03:21 - 2021-07-06 03:21 - 000071408 _____ (AVAST Software) C:\Windows\System32\Drivers\aswRvrt.sys
2021-07-06 03:21 - 2021-07-06 03:21 - 000039320 _____ (AVAST Software) C:\Windows\System32\Drivers\aswKbd.sys
2021-07-06 03:21 - 2021-07-06 03:21 - 000036104 _____ (AVAST Software) C:\Windows\System32\Drivers\aswNetNd6.sys
2021-07-06 03:21 - 2021-07-06 03:21 - 000033608 _____ (AVAST Software) C:\Windows\System32\Drivers\aswArDisk.sys
2021-07-06 03:21 - 2021-07-06 03:21 - 000000000 ____D C:\Program Files\Common Files\Avast Software
2021-07-06 03:21 - 2021-07-06 03:20 - 000292880 _____ (AVAST Software) C:\Windows\System32\Drivers\aswbidsdriver.sys
2021-07-06 03:17 - 2021-07-06 03:32 - 000000000 ____D C:\Program Files\Avast Software
2021-07-06 03:16 - 2021-07-07 11:34 - 000000000 ____D C:\ProgramData\Avast Software
2021-07-06 03:11 - 2021-07-06 03:11 - 000143224 _____ C:\Windows\Minidump\070521-41075-01.dmp
2021-07-06 01:03 - 2021-07-06 01:05 - 000225816 _____ (AVAST Software) C:\Users\User\Documents\avast_free_antivirus_setup_online.exe
2021-07-06 01:03 - 2021-07-06 01:05 - 000225816 _____ (AVAST Software) C:\Users\User\Desktop\avast_free_antivirus_setup_online.exe
2021-07-05 21:06 - 2021-07-05 21:06 - 000000000 ____D C:\Windows\System32\Tasks\Safer-Networking
2021-07-05 21:04 - 2021-07-05 21:04 - 000002123 _____ C:\Users\Public\Desktop\Spybot-S&D Start Center.lnk
2021-07-05 21:04 - 2021-07-05 21:04 - 000001041 _____ C:\Users\Public\Desktop\SpywareBlaster.lnk
2021-07-05 21:04 - 2021-07-05 21:04 - 000000000 ____D C:\Program Files\SpywareBlaster
2021-07-05 21:03 - 2021-07-07 11:33 - 000000000 ____D C:\Program Files\Spybot - Search & Destroy 2
2021-07-05 21:03 - 2021-07-07 10:34 - 000000000 ____D C:\ProgramData\Spybot - Search & Destroy
2021-07-05 21:03 - 2018-02-06 23:20 - 000030056 _____ (Safer-Networking Ltd.) C:\Windows\System32\sdnclean.exe
2021-07-05 20:57 - 2021-07-05 20:58 - 008553680 _____ (Malwarebytes) C:\Users\User\Documents\adwcleaner_8.3.0.exe
2021-07-05 20:56 - 2021-07-05 20:57 - 004432784 _____ (BrightFort LLC ) C:\Users\User\Documents\spywareblastersetup60.exe
2021-07-05 20:55 - 2021-07-05 20:59 - 069910960 _____ (Safer-Networking Ltd. ) C:\Users\User\Documents\spybotsd-2.7.64.0.exe
2021-07-05 19:29 - 2021-07-05 19:29 - 000000000 ____D C:\Users\User\AppData\Roaming\Motorola
2021-07-05 15:21 - 2021-07-05 15:21 - 000000000 ____D C:\Users\User\Desktop\Nueva carpeta
2021-07-05 15:16 - 2021-07-07 02:02 - 000001948 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2021-07-05 15:15 - 2021-07-07 01:59 - 000213936 _____ (Malwarebytes) C:\Windows\System32\Drivers\mbamswissarmy.sys
2021-07-05 15:14 - 2021-07-05 15:14 - 000000000 ____D C:\ProgramData\Malwarebytes
2021-07-05 15:14 - 2021-07-05 15:13 - 000163800 _____ (Malwarebytes) C:\Windows\System32\Drivers\mbae.sys
2021-07-05 13:35 - 2021-07-05 13:35 - 000001847 _____ C:\Users\User\Desktop\ShadowExplorer.lnk
2021-07-05 13:35 - 2021-07-05 13:35 - 000000000 ____D C:\Users\User\AppData\Roaming\www.shadowexplorer.com
2021-07-05 13:34 - 2021-07-05 13:35 - 000000000 ____D C:\Program Files\ShadowExplorer
2021-07-05 08:02 - 2021-07-05 08:02 - 000000000 ____D C:\Users\User\AppData\Local\mbam
2021-07-05 06:40 - 2021-07-05 06:40 - 000000000 ____D C:\Program Files\Malwarebytes
2021-07-05 05:05 - 2021-07-05 13:49 - 001358136 _____ C:\Windows\ntbtlog.txt
2021-07-05 04:50 - 2021-07-07 00:19 - 000000000 ____D C:\Windows\pss
2021-07-05 03:26 - 2021-07-05 03:26 - 000000000 ____D C:\Users\User\AppData\Local\Yandex
2021-07-05 03:05 - 2021-07-05 03:05 - 000000558 _____ C:\Users\User\AppData\Local\bowsakkdestx.txt
2021-07-05 03:05 - 2021-07-05 03:05 - 000000000 ____D C:\SystemID
2021-07-05 02:59 - 2021-07-07 11:35 - 020185088 _____ C:\Windows\System32\C_32770.NLS
2021-07-04 19:18 - 2021-07-05 03:47 - 000000000 ____D C:\Program Files\UltData for Android
2021-07-04 15:50 - 2021-07-04 15:50 - 000000000 ____D C:\Users\User\AppData\Roaming\Wondershare
2021-07-04 03:07 - 2021-07-07 06:26 - 000000000 ____D C:\Tenorshare
2021-07-04 02:52 - 2021-07-07 00:57 - 000000000 ____D C:\Program Files\Tenorshare
2021-06-29 19:01 - 2021-07-06 03:10 - 345746991 _____ C:\Windows\MEMORY.DMP
2021-06-29 19:01 - 2021-06-29 19:01 - 000143296 _____ C:\Windows\Minidump\062921-43368-01.dmp