Troyano Floflix

Buen día tengo mi portátil infestado de troyano al investigar parece ser el floflix al ejecutar malwarebytes me detecta que tengo 11 troyanos no se como eliminarlos Ayuda… No me deja instalar Spyhunter y si instale malwarebytes fue en modo seguro de otra manera me aparece error 0xc0000005 en Todo

Este es mi último análisis de malwarebytes :point_down:t2::point_down:t2:

Malwarebytes Anti-Malware
www.malwarebytes.org

Fecha del análisis: 29/09/2020
Hora del análisis: 06:02 p.m.
Archivo de registro: 11 troyanos.txt
Administrador: Sí

Versión: 2.2.0.1024
Base de datos de malwares: v2015.09.22.05
Base de datos de rootkits: v2015.09.18.01
Licencia: Gratis
Protección contra el malware: Desactivado
Protección contra sitios web maliciosos: Desactivado
Autoprotección: Desactivado

SO: Windows 7 Service Pack 1
CPU: x86
Sistema de archivos: NTFS
Usuario: MIGUEL

Tipo de análisis: Análisis personalizado
Resultado: Completado
Objetos analizados: 676602
Tiempo transcurrido: 5 hr, 26 min, 8 seg

Memoria: Activado
Inicio: Activado
Sistema de archivos: Activado
Archivo: Activado
Rootkits: Activado
Heurística: Activado
PUP: Activado
PUM: Activado

Procesos: 0
(No hay elementos maliciosos detectados)

Módulos: 4
Trojan.FakeMS.Gen, C:\Program Files\Common Files\System\symsrv.dll, , [ad407db5ddaeb680e3e36ef7ba46e31d], 
Trojan.FakeMS.Gen, C:\Program Files\Common Files\System\symsrv.dll, , [ad407db5ddaeb680e3e36ef7ba46e31d], 
Trojan.FakeMS.Gen, C:\Program Files\Common Files\System\symsrv.dll, , [ad407db5ddaeb680e3e36ef7ba46e31d], 
Trojan.FakeMS.Gen, C:\Program Files\Common Files\System\symsrv.dll, , [ad407db5ddaeb680e3e36ef7ba46e31d], 

Claves del registro: 0
(No hay elementos maliciosos detectados)

Valores del registro: 0
(No hay elementos maliciosos detectados)

Datos del registro: 1
Trojan.FakeMS.Gen, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\WINDOWS|AppInit_DLLs, C:\PROGRA~1\COMMON~1\System\symsrv.dll, Bueno: (), Malo: (C:\PROGRA~1\COMMON~1\System\symsrv.dll),,[ad407db5ddaeb680e3e36ef7ba46e31d]

Carpetas: 0
(No hay elementos maliciosos detectados)

Archivos: 6
Trojan.FakeMS.Gen, C:\Program Files\Common Files\System\symsrv.dll, , [ad407db5ddaeb680e3e36ef7ba46e31d], 
Trojan.FakeMS.Gen, C:\Users\MIGUEL\AppData\Local\VirtualStore\Program Files\Bonjour\error.log, , [58953200d6b556e063639cc9728eda26], 
Trojan.FakeMS.Gen, C:\Program Files\WIDCOMM\Bluetooth Software\error.log, , [03ea023029621a1c4e7897cea25e4fb1], 
Trojan.FakeMS.Gen, C:\Program Files\WIDCOMM\Bluetooth Software\PSAPl.dll, , [b736b37f1a71d36361655114c73947b9], 
Trojan.FakeMS.Gen, C:\Program Files\WIDCOMM\Bluetooth Software\GDl32.dll, , [9954fe34800b62d45b6b0f56a75903fd], 
Trojan.FakeMS.Gen, C:\Program Files\WIDCOMM\Bluetooth Software\OLE23.dll, , [c825062c4f3cc2749b2b94d104fcfc04], 

Sectores físicos: 0
(No hay elementos maliciosos detectados)


(end)

Espero de verdad me puedan ayudar

Hola @Karina_Monserrat_Lop

[email protected] al Foro!!

No instales SpyHunter ni ningún otro programa que no te solicite.

Realiza lo siguiente:

1.- Desactiva temporalmente tu antivirus y cualquier programa de seguridad.

2.- Descarga, instala y/o actualiza a las siguientes herramientas:

3.- Ejecutas respetando el orden los pasos con todos los programas cerrados incluido los navegadores

CCleaner

Usando su opción Limpiador de acuerdo su Manual:

  • Para borrar Cookies, temporales de Internet y todos los archivos que este te muestre como obsoletos.
  • Cuando lo instales destilda las casillas para no permitir la instalación de Ccleaner Browser/Avast Browser o similar…
  • NO necesitamos este reporte

AdwCleaner

Lo ejecutas.

  • Pulsa en el botón Escanear y espera a que se realice el proceso. Luego pulsa sobre el botón Limpiar.
  • Espera a que se complete. Si te pidiera reiniciar el sistema Aceptas.
  • Guarda el reporte que le aparecerá para copiarlo y pegarlo en tu próxima respuesta.
  • El informe también puede encontrarse en “C:\AdwCleaner\AdwCleaner.txt”

ZHPCleaner

  • Siguiendo su manual, lo instalas y ejecutas. Cuando termine, elimina todo lo que encuentre.

Malwarebytes Versión 4

  • Lo ejecutas siguiendo los pasos de su Manual.
  • Realizas un Análisis Personalizado
  • Revisa especialmente como salvar el reporte.

4.- Luego de finalizar todo lo anterior y reiniciar vuelve a desactiva temporalmente tu antivirus y cualquier programa de seguridad.

5.- Descarga Farbar Recovery Scan Tool. en el escritorio, seleccionando la versión adecuada para la arquitectura (32 o 64bits) de su equipo. >> Como saber si mi Windows es de 32 o 64 bits.?

  • Ejecuta FRST.exe.
  • En el mensaje de la ventana del Disclaimer, pulsamos Yes
  • En la ventana principal pulsamos en el botón Scan/Analizar y esperamos a que concluya el proceso.
  • Se abrirán dos(2) archivos(Logs), Frst.txt y Addition.txt, estos quedaran grabados en el escritorio, debes adjuntar ambos

Guía: Como Ejecutar FRST

6.- En tu próxima respuesta, pegas todos los reportes generados, si no entran en un Post, revisa el Método 4 de la Guía o utilizas mas mensajes.

Guía : ¿Como Pegar reportes en el Foro?

Esperamos esos reporte.

Salu2

Buenos días disculpe tengo este problema

Esto es lo que me aparece después de haberse instalado CCleaner, no permite su ejecución :exploding_head: que hago…?

Hola @Karina_Monserrat_Lop

Cual es tu sistema operativo?

Sigue con los demás pasos.

Salu2

Windows 7, 32 bits seguiré entonces espero no me marquen lo mismo

Hola @Karina_Monserrat_Lop

Cualquier problema tomas nota o imagen y sigues con el siguiente paso.

Salu2

Muy buen día disculpe le comento que ya instale malwarebytes 4.1 pero al querer ejecutar el programa me aparece nuevamente error 0xc0000005 le adjunto la imagen

Le adjunto los 2 reportes

AdwCleaner:

# -------------------------------
# Malwarebytes AdwCleaner 8.0.7.0
# -------------------------------
# Build:    07-22-2020
# Database: 2020-07-20.1 (Local)
# Support:  https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start:    10-01-2020
# Duration: 00:00:52
# OS:       Windows 7 Starter
# Cleaned:  219
# Failed:   7


***** [ Services ] *****

No malicious services cleaned.

***** [ Folders ] *****

Deleted       C:\Program Files\Common Files\PARETOLOGIC
Deleted       C:\Program Files\PARETOLOGIC
Deleted       C:\ProgramData\FileCure
Deleted       C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PARETOLOGIC
Deleted       C:\ProgramData\apn
Deleted       C:\Users\COMERCIALISADORA\AppData\LocalLow\Toolbar4
Deleted       C:\Users\COMERCIALISADORA\AppData\Local\Temp\ASP
Deleted       C:\Users\COMERCIALISADORA\AppData\Local\Temp\apn
Deleted       C:\Users\Invitado\AppData\LocalLow\Check Point Software Technologies LTD
Deleted       C:\Users\Invitado\AppData\LocalLow\Toolbar4
Deleted       C:\Users\Invitado\AppData\Local\Temp\ASP
Deleted       C:\Users\Invitado\AppData\Local\Temp\apn
Deleted       C:\Users\MIGUEL\AppData\LocalLow\Check Point Software Technologies LTD
Deleted       C:\Users\MIGUEL\AppData\LocalLow\Toolbar4
Deleted       C:\Users\MIGUEL\AppData\Local\Beamrise
Deleted       C:\Users\MIGUEL\AppData\Local\Temp\apn
Deleted       C:\Users\MIGUEL\AppData\Roaming\Check Point Software Technologies LTD
Deleted       C:\Windows\System32\config\systemprofile\AppData\LocalLow\Toolbar4

***** [ Files ] *****

Deleted       C:\main.dll

***** [ DLL ] *****

No malicious DLLs cleaned.

***** [ WMI ] *****

No malicious WMI cleaned.

***** [ Shortcuts ] *****

No malicious shortcuts cleaned.

***** [ Tasks ] *****

Deleted       C:\Windows\System32\Tasks\FILECURE STARTUP
Deleted       C:\Windows\System32\Tasks\LAUNCHAPP
Deleted       C:\Windows\System32\Tasks\PARETOLOGIC UPDATE VERSION3
Deleted       C:\Windows\System32\Tasks\PARETOLOGIC UPDATE VERSION3 STARTUP TASK
Deleted       C:\Windows\System32\Tasks\RDREMINDER
Deleted       C:\Windows\Tasks\FILECURE STARTUP.JOB
Deleted       C:\Windows\Tasks\PARETOLOGIC UPDATE VERSION3 STARTUP TASK.JOB
Deleted       C:\Windows\Tasks\PARETOLOGIC UPDATE VERSION3.JOB
Deleted       C:\Windows\Tasks\RDREMINDER.JOB

***** [ Registry ] *****

Deleted       HKCU\Software\Beamrise
Deleted       HKCU\Software\Check Point Software Technologies LTD
Deleted       HKCU\Software\InstalledBrowserExtensions
Deleted       HKCU\Software\InstalledThirdPartyPrograms
Deleted       HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{8acdd076-7141-4655-8487-c35174c89c93}
Deleted       HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\Yahoo! Search
Deleted       HKCU\Software\ParetoLogic
Deleted       HKCU\Software\Softonic
Deleted       HKLM\SOFTWARE\Classes\Record\{05660A04-00F1-3A04-AB3B-BC1074B84D67}
Deleted       HKLM\SOFTWARE\Classes\Record\{37AC0F3B-749F-3B22-811B-5A019EED2E85}
Deleted       HKLM\SOFTWARE\Classes\Record\{4392A6CC-7940-310E-8E16-799A8D93A438}
Deleted       HKLM\SOFTWARE\Classes\Record\{66DF7821-ED6D-3534-893C-0E89E74B0F91}
Deleted       HKLM\SOFTWARE\Classes\Record\{755CAFCC-F016-3B06-8F22-945EAA3AD10D}
Deleted       HKLM\SOFTWARE\Classes\Record\{76552F88-640C-314D-82B6-0D8A740907F7}
Deleted       HKLM\SOFTWARE\Classes\Record\{903F9872-E87F-3B74-83B0-DBE10073B29D}
Deleted       HKLM\SOFTWARE\Classes\Record\{9558EEB4-CDA6-3778-B53B-98076F0A1E90}
Deleted       HKLM\SOFTWARE\Classes\Record\{B25AA9BA-FD52-3E5E-BFE3-9B106779DA6E}
Deleted       HKLM\SOFTWARE\Classes\Record\{C852CF9F-37DC-35AC-926A-7E6CFFF7C501}
Deleted       HKLM\SOFTWARE\Classes\Record\{C9777796-4378-3C90-B52D-7238FFFC2A5C}
Deleted       HKLM\SOFTWARE\Classes\Record\{DB1BC8B2-FDBF-30E7-BE1C-AFF9160059E6}
Deleted       HKLM\SOFTWARE\Classes\Record\{F3D5729C-7DEB-3850-A026-D0E323ECFEF5}
Deleted       HKLM\SOFTWARE\Classes\Record\{FEC70973-CB8B-351C-8047-CAE1274CE249}
Deleted       HKLM\SOFTWARE\Classes\Unknown\shell\openas\command|FileCure.old
Deleted       HKLM\SOFTWARE\Google\Chrome\NativeMessagingHosts\com.apn.native_messaging_host_aaaaadgepjkdffhjbkfjgnnffnfcffbg
Deleted       HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{3B28EC9D-37D7-46D8-8B31-27CD2A282409}
Deleted       HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{3B28EC9D-37D7-46D8-8B31-27CD2A282409}
Deleted       HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{B282C383-6F7C-44CE-9E0E-18C9D32D5876}
Deleted       HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{C47F3753-F9A1-4D7E-AA74-DE656B9AD6CD}
Deleted       HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\LaunchApp
Deleted       HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\RDReminder
Deleted       HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\filecure startup
Deleted       HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|{B77A691C-32B7-4303-94E6-D1663C0AEA31}
Deleted       HKLM\Software\Classes\CLSID\{19D2F415-D58B-46BC-9390-C03DCBC21EB2}
Deleted       HKLM\Software\Classes\CLSID\{3BDF4CE9-E81D-432B-A55E-9F0570CE811F}
Deleted       HKLM\Software\Classes\CLSID\{5A4E3A41-FA55-4BDA-AED7-CEBE6E7BCB52}
Deleted       HKLM\Software\Classes\CLSID\{6E45F3E8-2683-4824-A6BE-08108022FB36}
Deleted       HKLM\Software\Classes\CLSID\{9F0F16DD-4E76-4049-A9B1-7A91E48F0323}
Deleted       HKLM\Software\Classes\CLSID\{A07E5BFF-B16C-4ABA-A30F-514213A945E6}
Deleted       HKLM\Software\Classes\CLSID\{F4288797-CB12-49CE-9DF8-7CDFA1143BEA}
Deleted       HKLM\Software\Classes\Installer\UpgradeCodes\7AB5857A57A0687786597A857BFFFFFF
Deleted       HKLM\Software\Classes\Interface\{01221FCC-4BFB-461C-B08C-F6D2DF309921}
Deleted       HKLM\Software\Classes\Interface\{021B4049-F57D-4565-A693-FD3B04786BFA}
Deleted       HKLM\Software\Classes\Interface\{0362AA09-808D-48E9-B360-FB51A8CBCE09}
Deleted       HKLM\Software\Classes\Interface\{06844020-CD0B-3D3D-A7FE-371153013E49}
Deleted       HKLM\Software\Classes\Interface\{0ADC01BB-303B-3F8E-93DA-12C140E85460}
Deleted       HKLM\Software\Classes\Interface\{10D3722F-23E6-3901-B6C1-FF6567121920}
Deleted       HKLM\Software\Classes\Interface\{1675E62B-F911-3B7B-A046-EB57261212F3}
Deleted       HKLM\Software\Classes\Interface\{192929F2-9273-3894-91B0-F54671C4C861}
Deleted       HKLM\Software\Classes\Interface\{2932897E-3036-43D9-8A64-B06447992065}
Deleted       HKLM\Software\Classes\Interface\{2DE92D29-A042-3C37-BFF8-07C7D8893EFA}
Deleted       HKLM\Software\Classes\Interface\{32B80AD6-1214-45F4-994E-78A5D482C000}
Deleted       HKLM\Software\Classes\Interface\{3A8E103F-B2B7-3BEF-B3B0-88E29B2420E4}
Deleted       HKLM\Software\Classes\Interface\{478CE5D3-D38E-3FFE-8DBE-8C4A0F1C4D8D}
Deleted       HKLM\Software\Classes\Interface\{48B7DA4E-69ED-39E3-BAD5-3E3EFF22CFB0}
Deleted       HKLM\Software\Classes\Interface\{4E6354DE-9115-4AEE-BD21-C46C3E8A49DB}
Deleted       HKLM\Software\Classes\Interface\{5982F405-44E4-3BBB-BAC4-CF8141CBBC5C}
Deleted       HKLM\Software\Classes\Interface\{5D8C3CC3-3C05-38A1-B244-924A23115FE9}
Deleted       HKLM\Software\Classes\Interface\{641593AF-D9FD-30F7-B783-36E16F7A2E08}
Deleted       HKLM\Software\Classes\Interface\{711FC48A-1356-3932-94D8-A8B733DBC7E4}
Deleted       HKLM\Software\Classes\Interface\{72227B7F-1F02-3560-95F5-592E68BACC0C}
Deleted       HKLM\Software\Classes\Interface\{744E0E81-BC79-4719-A58B-C98F7E78EE5D}
Deleted       HKLM\Software\Classes\Interface\{7B5E8CE3-4722-4C0E-A236-A6FF731BEF37}
Deleted       HKLM\Software\Classes\Interface\{7D86A08B-0A8F-4BE0-B693-F05E6947E780}
Deleted       HKLM\Software\Classes\Interface\{890D4F59-5ED0-3CB4-8E0E-74A5A86E7ED0}
Deleted       HKLM\Software\Classes\Interface\{8C68913C-AC3C-4494-8B9C-984D87C85003}
Deleted       HKLM\Software\Classes\Interface\{8D019513-083F-4AA5-933F-7D43A6DA82C4}
Deleted       HKLM\Software\Classes\Interface\{923F6FB8-A390-370E-A0D2-DD505432481D}
Deleted       HKLM\Software\Classes\Interface\{94952EC4-DB66-3F32-BE4C-F0BB875EA98E}
Deleted       HKLM\Software\Classes\Interface\{9BBB26EF-B178-35D6-9D3D-B485F4279FE5}
Deleted       HKLM\Software\Classes\Interface\{A62DDBE0-8D2A-339A-B089-8CBCC5CD322A}
Deleted       HKLM\Software\Classes\Interface\{A82AD04D-0B8E-3A49-947B-6A69A8A9C96D}
Deleted       HKLM\Software\Classes\Interface\{ADEB3CC9-A05D-4FCC-BD09-9025456AA3EA}
Deleted       HKLM\Software\Classes\Interface\{B06D4521-D09C-3F41-8E39-9D784CCA2A75}
Deleted       HKLM\Software\Classes\Interface\{C06DAD42-6F39-4CE1-83CC-9A8B9105E556}
Deleted       HKLM\Software\Classes\Interface\{C2E799D0-43A5-3477-8A98-FC5F3677F35C}
Deleted       HKLM\Software\Classes\Interface\{D16107CD-2AD5-46A8-BA59-303B7C32C500}
Deleted       HKLM\Software\Classes\Interface\{D25B101F-8188-3B43-9D85-201F372BC205}
Deleted       HKLM\Software\Classes\Interface\{D2BA7595-5E44-3F1E-880F-03B3139FA5ED}
Deleted       HKLM\Software\Classes\Interface\{D35F5C81-17D9-3E1C-A1FC-4472542E1D25}
Deleted       HKLM\Software\Classes\Interface\{D8FA96CA-B250-312C-AF34-4FF1DD72589D}
Deleted       HKLM\Software\Classes\Interface\{DAFC1E63-3359-416D-9BC2-E7DCA6F7B0F3}
Deleted       HKLM\Software\Classes\Interface\{DC5E5C44-80FD-3697-9E65-9F286D92F3E7}
Deleted       HKLM\Software\Classes\Interface\{E1B4C9DE-D741-385F-981E-6745FACE6F01}
Deleted       HKLM\Software\Classes\Interface\{E7B623F5-9715-3F9F-A671-D1485A39F8A2}
Deleted       HKLM\Software\Classes\Interface\{ED916A7B-7C68-3198-B87D-2DABC30A5587}
Deleted       HKLM\Software\Classes\Interface\{EFA1BDB2-BB3D-3D9A-8EB5-D0D22E0F64F4}
Deleted       HKLM\Software\Classes\Interface\{F4CBF4DD-F8FE-35BA-BB7E-68304DAAB70B}
Deleted       HKLM\Software\Classes\Interface\{FC073BDA-C115-4A1D-9DF9-9B5C461482E5}
Deleted       HKLM\Software\Classes\Interface\{FC32005D-E27C-32E0-ADFA-152F598B75E7}
Deleted       HKLM\Software\Classes\TypeLib\{212C2C4F-C845-4FBC-9561-C833A13D8DCE}
Deleted       HKLM\Software\Classes\TypeLib\{2BF2028E-3F3C-4C05-AB45-B2F1DCFE0759}
Deleted       HKLM\Software\Classes\TypeLib\{3C5D1D57-16C8-473C-A552-37B8D88596FE}
Deleted       HKLM\Software\Classes\TypeLib\{4A115D8A-6A7B-4C72-92B1-2E2D01F36979}
Deleted       HKLM\Software\Classes\TypeLib\{99DF8440-814E-497F-BDDD-FB93E9E9DF96}
Deleted       HKLM\Software\Classes\TypeLib\{A2D733A7-73B0-4C6B-B0C7-06A432950B66}
Deleted       HKLM\Software\Classes\TypeLib\{C4BAE205-5E02-4E32-876E-F34B4E2D000C}
Deleted       HKLM\Software\Classes\TypeLib\{DB538320-D3C5-433C-BCA9-C4081A054FCF}
Deleted       HKLM\Software\Classes\uus3url-pl
Deleted       HKLM\Software\InstalledThirdPartyPrograms
Deleted       HKLM\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{83CAD530-387D-40FD-82EA-B9E863D92A9B}
Deleted       HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\7AB5857A57A0687786597A857BFFFFFF
Deleted       HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0238BBE24EA3A70408B81E4BB89C15E5
Deleted       HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\158D6D9E3FE81fa428925F22ACB3A965
Deleted       HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\15E6C514FEFC09f45BAFAAE1D7546ED4
Deleted       HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\18C9E3869A16248439FE3FF9EB02207A
Deleted       HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\1DB42320A8525634AA089F0BEC86473B
Deleted       HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\22468B0D6050b2e46B9C4B67A8F59577
Deleted       HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2251BF05A2F606d43BB064BD63CBD87E
Deleted       HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\29799DE249E7DBC459FC6C8F07EB8375
Deleted       HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\3255D95681398614190EDF0A4F3F77DB
Deleted       HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\37D473A7943363D7C51797D321341397
Deleted       HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\37D473A7943363D7C51797D341731497
Deleted       HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\37D473A7943363D7C51799E61B55F463
Deleted       HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\37D473A7943363D7C51799E61B55F497
Deleted       HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\37D473A7943363D7C51799E61B74E563
Deleted       HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\37D473A7943363D7C51799E61B74E597
Deleted       HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\37D473A7943363D7C51799E61BB52463
Deleted       HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\37D473A7943363D7C51799E61BB52497
Deleted       HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\37D473A7943363D7C517C4F4B3147AB4
Deleted       HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\3CDF313E9B28c944FBC7579CF4949414
Deleted       HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\5D8011310B2622942868A458964FFDC5
Deleted       HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6C63F7979DCC2154CB9591969A5CB89D
Deleted       HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6DD31E6C1A73B334383DF186676F4D20
Deleted       HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\71E54748EDD3dc1468548785DC856EDA
Deleted       HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\754590DD06DE8d249B526503432F99D4
Deleted       HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\8036C72171EF4ba46856BF57969F6A36
Deleted       HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\89BB7852687BDC34B9A81E01C7FF9173
Deleted       HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\8CBC85D72B148084ABE8C2F072F781F4
Deleted       HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\8CC5A38A64D6098468BC8395BA0EFF03
Deleted       HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\8DF9A1AC557F56c49B56F6B83E293C15
Deleted       HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\98FD652EB4839214E97B69DD8EEA1D29
Deleted       HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A97C590397DCC454AA8923563BAB10E4
Deleted       HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\AB3204F747B20694B8D49EF92D8DC94B
Deleted       HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B08932C78B697C244BE7BA3E6FF09B62
Deleted       HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\C81E33A400B6F814E90C7A3354E2A3A5
Deleted       HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D14A7F65792054F418578C78367D13F7
Deleted       HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\DFE9F0BD163D827438CB6AD6B100EC48
Deleted       HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\EDBF68C5F16790341B7C6FD7C7F8E4FC
Deleted       HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F739A19A8327dc64C9A8B641A9E89646
Deleted       HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\FFA531D0F3A71504DA7AC6A11CE33739
Deleted       HKLM\Software\Microsoft\Windows\CurrentVersion\Policies\Ext\CLSID|{A09AB6EB-31B5-454C-97EC-9B294D92EE2A}
Deleted       HKLM\Software\PIP
Deleted       HKLM\Software\ParetoLogic
Deleted       HKLM\Software\V9Software
Deleted       HKU\.DEFAULT\Software\ParetoLogic
Deleted       HKU\S-1-5-18\Software\ParetoLogic

***** [ Chromium (and derivatives) ] *****

Not Deleted   Search App by Ask - aaaaadgepjkdffhjbkfjgnnffnfcffbg
Not Deleted   Search App by Ask - aaaaadgepjkdffhjbkfjgnnffnfcffbg
Not Deleted   Search App by Ask - aaaaadgepjkdffhjbkfjgnnffnfcffbg
Not Deleted   Search App by Ask - aaaaadgepjkdffhjbkfjgnnffnfcffbg
Not Deleted   Teoma Search App - fhnobihfdnklhoilcilfogdcegekpgfn
Not Deleted   Teoma Search App - fhnobihfdnklhoilcilfogdcegekpgfn

***** [ Chromium URLs ] *****

Deleted       Search By ZoneAlarm

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries cleaned.

***** [ Firefox URLs ] *****

No malicious Firefox URLs cleaned.

***** [ Hosts File Entries ] *****

No malicious hosts file entries cleaned.

***** [ Preinstalled Software ] *****

Deleted       Preinstalled.HPCleanFLC   File   C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2010.lnk
Deleted       Preinstalled.ISBUtility   Folder   C:\Program Files\SONY\ISB UTILITY
Deleted       Preinstalled.ISBUtility   Registry   HKLM\Software\Microsoft\Windows\CurrentVersion\Run|ISBMgr.exe
Deleted       Preinstalled.ISBUtility   Registry   HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{70991E0A-1108-437E-BA7D-085702C670C0}
Deleted       Preinstalled.SonyPlayMemoriesHome   Registry   HKLM\Software\Microsoft\Windows\CurrentVersion\Run|PMBVolumeWatcher
Deleted       Preinstalled.VAIOCare   File   C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VAIO Care.lnk
Deleted       Preinstalled.VAIOCare   File   C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VAIO Manual.lnk
Deleted       Preinstalled.VAIOCare   Folder   C:\Program Files\SONY\VAIO CARE
Deleted       Preinstalled.VAIOCare   Registry   HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{36C5BBF0-E5BF-4DE1-B684-7E90B0C93FB5}
Deleted       Preinstalled.VAIOContentMetadataIntelligentNetworkServiceManager   Folder   C:\Program Files\SONY\VCM INTELLIGENT NETWORK SERVICE MANAGER
Deleted       Preinstalled.VAIOContentMetadataManagerSettings   Folder   C:\Program Files\SONY\VCM MANAGER SETTINGS
Deleted       Preinstalled.VAIOContentMetadataManagerSettings   Registry   HKLM\Software\Classes\CLSID\{EFF1E591-90CA-4eb7-96CE-E8B57237F4E3}
Deleted       Preinstalled.VAIOContentMonitoringSettings   Folder   C:\Program Files\SONY\VAIO CONTENT MONITORING SETTINGS
Deleted       Preinstalled.VAIOContentMonitoringSettings   Registry   HKLM\Software\Classes\CLSID\{626F6A81-C03F-453A-8A34-7055904B5503}
Deleted       Preinstalled.VAIOControlCenter   Folder   C:\Program Files\SONY\VAIO CONTROL CENTER
Deleted       Preinstalled.VAIOControlCenter   Registry   HKLM\Software\Classes\CLSID\{9753C912-AB34-4C5E-B110-DE41EBEFFDE0}
Deleted       Preinstalled.VAIOControlCenter   Registry   HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{72042FA6-5609-489F-A8EA-3C2DD650F667}
Deleted       Preinstalled.VAIOEntertainmentCommonService   Folder   C:\Program Files\Common Files\SONY SHARED\VAIO ENTERTAINMENT PLATFORM
Deleted       Preinstalled.VAIOEventService   Folder   C:\Program Files\SONY\VAIO EVENT SERVICE
Deleted       Preinstalled.VAIOEventService   Registry   HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{73D8886A-D416-4687-B609-0D3836BA410C}
Deleted       Preinstalled.VAIOGate   Folder   C:\Users\MIGUEL\AppData\Local\VirtualStore\Program Files\SONY\VAIO GATE
Deleted       Preinstalled.VAIOGate   Folder   C:\Windows\System32\Tasks\SONY\VAIO GATE
Deleted       Preinstalled.VAIOGate   Registry   HKLM\Software\Classes\CLSID\{6988D6F2-F24F-4732-8855-A39DB1AA1346}
Deleted       Preinstalled.VAIOGate   Registry   HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{A7C30414-2382-4086-B0D6-01A88ABA21C3}
Deleted       Preinstalled.VAIOImprovement   Folder   C:\Program Files\SONY\VAIO IMPROVEMENT
Deleted       Preinstalled.VAIOImprovement   Registry   HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{3A26D9BD-0F73-432D-B522-2BA18138F7EF}
Deleted       Preinstalled.VAIOMediaGallery   Folder   C:\Program Files\SONY\MEDIA GALLERY
Deleted       Preinstalled.VAIOMediaGallery   Registry   HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{FA870BF1-44A1-4B7D-93E1-C101369AF0C1}
Deleted       Preinstalled.VAIOMediaplus   Folder   C:\Program Files\SONY\VCM INTELLIGENT ANALYZING MANAGER
Deleted       Preinstalled.VAIOMessenger   Folder   C:\Program Files\DDNI\OASIS
Deleted       Preinstalled.VAIOMessenger   Folder   C:\Program Files\DDNI\OASIS2SERVICE 1.0
Deleted       Preinstalled.VAIOMessenger   Folder   C:\ProgramData\DDNI\OASIS2SERVICE
Deleted       Preinstalled.VAIOMessenger   Registry   HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\VAIO Messenger
Deleted       Preinstalled.VAIOMessenger   Registry   HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{E50FC5DB-7CBD-407D-A46E-0C13E45BC386}
Deleted       Preinstalled.VAIOPersonalizationManager   Folder   C:\Program Files\SONY\VAIO PERSONALIZATION MANAGER
Deleted       Preinstalled.VAIOSmartNetwork   Folder   C:\Program Files\SONY\VAIO SMART NETWORK
Deleted       Preinstalled.VAIOSmartNetwork   Registry   HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{0899D75A-C2FC-42EA-A702-5B9A5F24EAD5}
Deleted       Preinstalled.VAIOSurvey   Folder   C:\Program Files\SONY\VAIO SURVEY
Deleted       Preinstalled.VAIOSurvey   Registry   HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\VAIO Satisfaction Survey.3.0
Deleted       Preinstalled.VAIOUpdate   Folder   C:\Program Files\SONY\VAIO UPDATE
Deleted       Preinstalled.VAIOUpdate   Registry   HKLM\Software\Classes\CLSID\{BB10673B-4628-44A9-BFE6-56416E5A54F6}
Deleted       Preinstalled.VAIOUpdate   Registry   HKLM\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{BB10673B-4628-44A9-BFE6-56416E5A54F6}
Deleted       Preinstalled.VAIOUpdate   Registry   HKLM\Software\Microsoft\Windows\CurrentVersion\Ext\Preapproved\{BB10673B-4628-44A9-BFE6-56416E5A54F6}
Deleted       Preinstalled.VAIOUpdate   Registry   HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{9FF95DA2-7DA1-4228-93B7-DED7EC02B6B2}
Not Deleted   Preinstalled.VAIOGate   Folder   C:\Program Files\SONY\VAIO GATE


*************************

[+] Delete Tracing Keys
[+] Reset Winsock

*************************

AdwCleaner[S00].txt - [25738 octets] - [01/10/2020 11:10:49]

########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C00].txt ##########


~ ZHPCleaner v2020.9.30.239 by Nicolas Coolman (2020/09/30)
~ Run by MIGUEL (Administrator)  (01/10/2020 12:56:04)
~ Web: https://www.nicolascoolman.com
~ Blog: https://nicolascoolman.eu/
~ Facebook : https://www.facebook.com/nicolascoolman1
~ State version : 
~ Type : Reparar
~ Report : C:\Users\MIGUEL\Desktop\ZHPCleaner (R).txt
~ Quarantine : C:\Users\MIGUEL\AppData\Roaming\ZHP\ZHPCleaner_Reg.txt
~ System Restore Point : 
~ UAC : Activate
~ Boot Mode : Sans échec (Fail-safe boot)
Windows 7 Starter, 32-bit Service Pack 1 (Build 7601)


---\\  Alternate Data Stream (ADS). (0)
~ No malintencionados o innecesarios artículos encontrados.


---\\  Servicios (0)
~ No malintencionados o innecesarios artículos encontrados.


---\\  Navegadores de Internet (0)
~ No malintencionados o innecesarios artículos encontrados.


---\\  Hosts carpeta (4)
REEMPLAZO: 107.178.255.88 www.statcounter.com
REEMPLAZO: 107.178.255.88 statcounter.com
REEMPLAZO: 107.178.255.88 google-analytics.com
Número de redirecciones encontrados 6/50


---\\  Tareas automáticas programadas. (1)
BORRADOS tareas: [FileCure Default] [C:\Windows\Tasks\FileCure Default.job (Not File) ]  =>SUP.Optional.DefaultSearch


---\\  Explorador ( Archivos, Carpetas ) (177)
MOVIDO carpeta: C:\Users\MIGUEL\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Beamrise.lnk  [Bad : C:\Users\MIGUEL\AppData\Local\Beamrise\Application\beamrise.exe](..)  =>.SUP.Beamrise
MOVIDO carpeta: C:\Users\COMERCIALISADORA\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_nokalcjbbdlpmlbhbpjhfpdggbieahfo_0.localstorage-journal    =>Hijacker.Browser [http://wwwsaltarsmartbi-a.akamaihd.net/update/chro]
MOVIDO carpeta: C:\Users\COMERCIALISADORA\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_nokalcjbbdlpmlbhbpjhfpdggbieahfo_0.localstorage    =>Hijacker.Browser
MOVIDO carpeta: C:\Windows\Tasks\FileCure Default.job    =>SUP.Optional.DefaultSearch
MOVIDO carpeta: C:\Windows\Temp\update.exe    =>Heuristic.Suspect
MOVIDO carpeta: C:\Windows\Prefetch\SALTARSMART.BROWSERADAPTER.EX-DB69134F.pf    =>PUP.Optional.SaltarSmart
MOVIDO carpeta: C:\Windows\Prefetch\UPDATESALTARSMART.EXE-E993D396.pf    =>PUP.Optional.SaltarSmart
MOVIDO carpeta: C:\Windows\Prefetch\UTILSALTARSMART.EXE-DF46393E.pf    =>PUP.Optional.SaltarSmart
MOVIDO carpeta: C:\Documents and Settings\Invitado\Downloads\ParetoLogic FileCure.exe [ParetoLogic Inc. - ParetoLogic FileCure Installer]  =>.SUP.FileCure
MOVIDO carpeta: C:\Users\COMERCIALISADORA\AppData\Local\Google\Chrome\User Data\Default\Extensions\nokalcjbbdlpmlbhbpjhfpdggbieahfo\1.0.1_0\background.js    =>Hijacker.Browser
MOVIDO carpeta: C:\Users\COMERCIALISADORA\AppData\Local\Google\Chrome\User Data\Default\Extensions\nokalcjbbdlpmlbhbpjhfpdggbieahfo\1.0.1_0\content.js    =>Hijacker.Browser
MOVIDO carpeta: C:\Users\COMERCIALISADORA\AppData\Local\Google\Chrome\User Data\Default\Extensions\nokalcjbbdlpmlbhbpjhfpdggbieahfo\1.0.1_0\icon.png    =>Hijacker.Browser
MOVIDO carpeta: C:\Users\COMERCIALISADORA\AppData\Local\Google\Chrome\User Data\Default\Extensions\nokalcjbbdlpmlbhbpjhfpdggbieahfo\1.0.1_0\manifest.json    =>Hijacker.Browser
MOVIDO carpeta: C:\Users\MIGUEL\AppData\Local\chromium\User Data\Default\Extensions\fhnobihfdnklhoilcilfogdcegekpgfn\145.10_0\icon.png    =>.SUP.BrowserExtension
MOVIDO carpeta: C:\Users\MIGUEL\AppData\Local\chromium\User Data\Default\Extensions\fhnobihfdnklhoilcilfogdcegekpgfn\145.10_0\manifest.json    =>.SUP.BrowserExtension
MOVIDO carpeta: C:\Users\MIGUEL\AppData\Local\chromium\User Data\Default\Extensions\fhnobihfdnklhoilcilfogdcegekpgfn\145.10_0\_metadata\verified_contents.json    =>.SUP.BrowserExtension
MOVIDO carpeta: C:\Users\MIGUEL\AppData\Local\chromium\User Data\Default\Extensions\fhnobihfdnklhoilcilfogdcegekpgfn\145.10_0\config\tb-config.js    =>.SUP.BrowserExtension
MOVIDO carpeta: C:\Users\MIGUEL\AppData\Local\chromium\User Data\Default\Extensions\fhnobihfdnklhoilcilfogdcegekpgfn\145.10_0\config\test-widget-config.js    =>.SUP.BrowserExtension
MOVIDO carpeta: C:\Users\MIGUEL\AppData\Local\chromium\User Data\Default\Extensions\fhnobihfdnklhoilcilfogdcegekpgfn\145.10_0\config\widget-config.js    =>.SUP.BrowserExtension
MOVIDO carpeta: C:\Users\MIGUEL\AppData\Local\chromium\User Data\Default\Extensions\fhnobihfdnklhoilcilfogdcegekpgfn\145.10_0\config\widget-config.json    =>.SUP.BrowserExtension
MOVIDO carpeta: C:\Users\MIGUEL\AppData\Local\chromium\User Data\Default\Extensions\fhnobihfdnklhoilcilfogdcegekpgfn\145.10_0\config\skin\widgets\teomaTheme-news\button.png    =>.SUP.BrowserExtension
MOVIDO carpeta: C:\Users\MIGUEL\AppData\Local\chromium\User Data\Default\Extensions\fhnobihfdnklhoilcilfogdcegekpgfn\145.10_0\config\skin\widgets\teomaTheme-video\button.png    =>.SUP.BrowserExtension
MOVIDO carpeta: C:\Users\MIGUEL\AppData\Local\chromium\User Data\Default\Extensions\fhnobihfdnklhoilcilfogdcegekpgfn\145.10_0\config\skin\widgets\teomaTheme-web\button.png    =>.SUP.BrowserExtension
MOVIDO carpeta: C:\Users\MIGUEL\AppData\Local\chromium\User Data\Default\Extensions\fhnobihfdnklhoilcilfogdcegekpgfn\145.10_0\content_script\content-script.js    =>.SUP.BrowserExtension
MOVIDO carpeta: C:\Users\MIGUEL\AppData\Local\chromium\User Data\Default\Extensions\fhnobihfdnklhoilcilfogdcegekpgfn\145.10_0\content_script\frame-script.js    =>.SUP.BrowserExtension
MOVIDO carpeta: C:\Users\MIGUEL\AppData\Local\chromium\User Data\Default\Extensions\fhnobihfdnklhoilcilfogdcegekpgfn\145.10_0\content_script\injector.js    =>.SUP.BrowserExtension
MOVIDO carpeta: C:\Users\MIGUEL\AppData\Local\chromium\User Data\Default\Extensions\fhnobihfdnklhoilcilfogdcegekpgfn\145.10_0\content_script\inline-html.js    =>.SUP.BrowserExtension
MOVIDO carpeta: C:\Users\MIGUEL\AppData\Local\chromium\User Data\Default\Extensions\fhnobihfdnklhoilcilfogdcegekpgfn\145.10_0\content_script\notify-presence.js    =>.SUP.BrowserExtension
MOVIDO carpeta: C:\Users\MIGUEL\AppData\Local\chromium\User Data\Default\Extensions\fhnobihfdnklhoilcilfogdcegekpgfn\145.10_0\content_script\overlay.js    =>.SUP.BrowserExtension
MOVIDO carpeta: C:\Users\MIGUEL\AppData\Local\chromium\User Data\Default\Extensions\fhnobihfdnklhoilcilfogdcegekpgfn\145.10_0\content_script\positioning.js    =>.SUP.BrowserExtension
MOVIDO carpeta: C:\Users\MIGUEL\AppData\Local\chromium\User Data\Default\Extensions\fhnobihfdnklhoilcilfogdcegekpgfn\145.10_0\content_script\toolbar.js    =>.SUP.BrowserExtension
MOVIDO carpeta: C:\Users\MIGUEL\AppData\Local\chromium\User Data\Default\Extensions\fhnobihfdnklhoilcilfogdcegekpgfn\145.10_0\content_script\widget.js    =>.SUP.BrowserExtension
MOVIDO carpeta: C:\Users\MIGUEL\AppData\Local\chromium\User Data\Default\Extensions\fhnobihfdnklhoilcilfogdcegekpgfn\145.10_0\content_script\widget-hosted.js    =>.SUP.BrowserExtension
MOVIDO carpeta: C:\Users\MIGUEL\AppData\Local\chromium\User Data\Default\Extensions\fhnobihfdnklhoilcilfogdcegekpgfn\145.10_0\content_script\hack\facebook.css    =>.SUP.BrowserExtension
MOVIDO carpeta: C:\Users\MIGUEL\AppData\Local\chromium\User Data\Default\Extensions\fhnobihfdnklhoilcilfogdcegekpgfn\145.10_0\content_script\hack\relative.css    =>.SUP.BrowserExtension
MOVIDO carpeta: C:\Users\MIGUEL\AppData\Local\chromium\User Data\Default\Extensions\fhnobihfdnklhoilcilfogdcegekpgfn\145.10_0\content_script\hack\static.css    =>.SUP.BrowserExtension
MOVIDO carpeta: C:\Users\MIGUEL\AppData\Local\chromium\User Data\Default\Extensions\fhnobihfdnklhoilcilfogdcegekpgfn\145.10_0\lib\async-gate.js    =>.SUP.BrowserExtension
MOVIDO carpeta: C:\Users\MIGUEL\AppData\Local\chromium\User Data\Default\Extensions\fhnobihfdnklhoilcilfogdcegekpgfn\145.10_0\lib\browser-shim.js    =>.SUP.BrowserExtension
MOVIDO carpeta: C:\Users\MIGUEL\AppData\Local\chromium\User Data\Default\Extensions\fhnobihfdnklhoilcilfogdcegekpgfn\145.10_0\lib\constant.js    =>.SUP.BrowserExtension
MOVIDO carpeta: C:\Users\MIGUEL\AppData\Local\chromium\User Data\Default\Extensions\fhnobihfdnklhoilcilfogdcegekpgfn\145.10_0\lib\constant.json    =>.SUP.BrowserExtension
MOVIDO carpeta: C:\Users\MIGUEL\AppData\Local\chromium\User Data\Default\Extensions\fhnobihfdnklhoilcilfogdcegekpgfn\145.10_0\lib\DataStore.js    =>.SUP.BrowserExtension
MOVIDO carpeta: C:\Users\MIGUEL\AppData\Local\chromium\User Data\Default\Extensions\fhnobihfdnklhoilcilfogdcegekpgfn\145.10_0\lib\default-config.js    =>.SUP.BrowserExtension
MOVIDO carpeta: C:\Users\MIGUEL\AppData\Local\chromium\User Data\Default\Extensions\fhnobihfdnklhoilcilfogdcegekpgfn\145.10_0\lib\default-config-USE_CONTENT.js    =>.SUP.BrowserExtension
MOVIDO carpeta: C:\Users\MIGUEL\AppData\Local\chromium\User Data\Default\Extensions\fhnobihfdnklhoilcilfogdcegekpgfn\145.10_0\lib\i18n.js    =>.SUP.BrowserExtension
MOVIDO carpeta: C:\Users\MIGUEL\AppData\Local\chromium\User Data\Default\Extensions\fhnobihfdnklhoilcilfogdcegekpgfn\145.10_0\lib\jquery.js    =>.SUP.BrowserExtension
MOVIDO carpeta: C:\Users\MIGUEL\AppData\Local\chromium\User Data\Default\Extensions\fhnobihfdnklhoilcilfogdcegekpgfn\145.10_0\lib\logger.js    =>.SUP.BrowserExtension
MOVIDO carpeta: C:\Users\MIGUEL\AppData\Local\chromium\User Data\Default\Extensions\fhnobihfdnklhoilcilfogdcegekpgfn\145.10_0\lib\polyfill.js    =>.SUP.BrowserExtension
MOVIDO carpeta: C:\Users\MIGUEL\AppData\Local\chromium\User Data\Default\Extensions\fhnobihfdnklhoilcilfogdcegekpgfn\145.10_0\lib\protocol.js    =>.SUP.BrowserExtension
MOVIDO carpeta: C:\Users\MIGUEL\AppData\Local\chromium\User Data\Default\Extensions\fhnobihfdnklhoilcilfogdcegekpgfn\145.10_0\lib\state-machine.js    =>.SUP.BrowserExtension
MOVIDO carpeta: C:\Users\MIGUEL\AppData\Local\chromium\User Data\Default\Extensions\fhnobihfdnklhoilcilfogdcegekpgfn\145.10_0\lib\tb-config-update.js    =>.SUP.BrowserExtension
MOVIDO carpeta: C:\Users\MIGUEL\AppData\Local\chromium\User Data\Default\Extensions\fhnobihfdnklhoilcilfogdcegekpgfn\145.10_0\lib\tb-message.js    =>.SUP.BrowserExtension
MOVIDO carpeta: C:\Users\MIGUEL\AppData\Local\chromium\User Data\Default\Extensions\fhnobihfdnklhoilcilfogdcegekpgfn\145.10_0\lib\update-constant.js    =>.SUP.BrowserExtension
MOVIDO carpeta: C:\Users\MIGUEL\AppData\Local\chromium\User Data\Default\Extensions\fhnobihfdnklhoilcilfogdcegekpgfn\145.10_0\lib\widget-config-update.js    =>.SUP.BrowserExtension
MOVIDO carpeta: C:\Users\MIGUEL\AppData\Local\chromium\User Data\Default\Extensions\fhnobihfdnklhoilcilfogdcegekpgfn\145.10_0\lib\widget-messaging.js    =>.SUP.BrowserExtension
MOVIDO carpeta: C:\Users\MIGUEL\AppData\Local\chromium\User Data\Default\Extensions\fhnobihfdnklhoilcilfogdcegekpgfn\145.10_0\lib\window-position.js    =>.SUP.BrowserExtension
MOVIDO carpeta: C:\Users\MIGUEL\AppData\Local\chromium\User Data\Default\Extensions\fhnobihfdnklhoilcilfogdcegekpgfn\145.10_0\lib\shims\console.js    =>.SUP.BrowserExtension
MOVIDO carpeta: C:\Users\MIGUEL\AppData\Local\chromium\User Data\Default\Extensions\fhnobihfdnklhoilcilfogdcegekpgfn\145.10_0\lib\shims\jquery.js    =>.SUP.BrowserExtension
MOVIDO carpeta: C:\Users\MIGUEL\AppData\Local\chromium\User Data\Default\Extensions\fhnobihfdnklhoilcilfogdcegekpgfn\145.10_0\newtab\_newtab.html    =>.SUP.BrowserExtension
MOVIDO carpeta: C:\Users\MIGUEL\AppData\Local\chromium\User Data\Default\Extensions\fhnobihfdnklhoilcilfogdcegekpgfn\145.10_0\newtab\newtab.html    =>.SUP.BrowserExtension
MOVIDO carpeta: C:\Users\MIGUEL\AppData\Local\chromium\User Data\Default\Extensions\fhnobihfdnklhoilcilfogdcegekpgfn\145.10_0\newtab\css\newtab.css    =>.SUP.BrowserExtension
MOVIDO carpeta: C:\Users\MIGUEL\AppData\Local\chromium\User Data\Default\Extensions\fhnobihfdnklhoilcilfogdcegekpgfn\145.10_0\newtab\images\button-images.png    =>.SUP.BrowserExtension
MOVIDO carpeta: C:\Users\MIGUEL\AppData\Local\chromium\User Data\Default\Extensions\fhnobihfdnklhoilcilfogdcegekpgfn\145.10_0\newtab\images\button-news.png    =>.SUP.BrowserExtension
MOVIDO carpeta: C:\Users\MIGUEL\AppData\Local\chromium\User Data\Default\Extensions\fhnobihfdnklhoilcilfogdcegekpgfn\145.10_0\newtab\images\button-video.png    =>.SUP.BrowserExtension
MOVIDO carpeta: C:\Users\MIGUEL\AppData\Local\chromium\User Data\Default\Extensions\fhnobihfdnklhoilcilfogdcegekpgfn\145.10_0\newtab\images\button-web.png    =>.SUP.BrowserExtension
MOVIDO carpeta: C:\Users\MIGUEL\AppData\Local\chromium\User Data\Default\Extensions\fhnobihfdnklhoilcilfogdcegekpgfn\145.10_0\newtab\js\_newtab.js    =>.SUP.BrowserExtension
MOVIDO carpeta: C:\Users\MIGUEL\AppData\Local\chromium\User Data\Default\Extensions\fhnobihfdnklhoilcilfogdcegekpgfn\145.10_0\newtab\js\background.js    =>.SUP.BrowserExtension
MOVIDO carpeta: C:\Users\MIGUEL\AppData\Local\chromium\User Data\Default\Extensions\fhnobihfdnklhoilcilfogdcegekpgfn\145.10_0\newtab\js\jquery.js    =>.SUP.BrowserExtension
MOVIDO carpeta: C:\Users\MIGUEL\AppData\Local\chromium\User Data\Default\Extensions\fhnobihfdnklhoilcilfogdcegekpgfn\145.10_0\newtab\js\newtab.js    =>.SUP.BrowserExtension
MOVIDO carpeta: C:\Users\MIGUEL\AppData\Local\chromium\User Data\Default\Extensions\fhnobihfdnklhoilcilfogdcegekpgfn\145.10_0\newtab\restoresettings-popup\css\dialog.css    =>.SUP.BrowserExtension
MOVIDO carpeta: C:\Users\MIGUEL\AppData\Local\chromium\User Data\Default\Extensions\fhnobihfdnklhoilcilfogdcegekpgfn\145.10_0\newtab\restoresettings-popup\images\search_assist.png    =>.SUP.BrowserExtension
MOVIDO carpeta: C:\Users\MIGUEL\AppData\Local\chromium\User Data\Default\Extensions\fhnobihfdnklhoilcilfogdcegekpgfn\145.10_0\newtab\restoresettings-popup\js\background.js    =>.SUP.BrowserExtension
MOVIDO carpeta: C:\Users\MIGUEL\AppData\Local\chromium\User Data\Default\Extensions\fhnobihfdnklhoilcilfogdcegekpgfn\145.10_0\newtab\restoresettings-popup\js\dialog.js    =>.SUP.BrowserExtension
MOVIDO carpeta: C:\Users\MIGUEL\AppData\Local\chromium\User Data\Default\Extensions\fhnobihfdnklhoilcilfogdcegekpgfn\145.10_0\newtab\search-suggestion\css\jquery-ui.css    =>.SUP.BrowserExtension
MOVIDO carpeta: C:\Users\MIGUEL\AppData\Local\chromium\User Data\Default\Extensions\fhnobihfdnklhoilcilfogdcegekpgfn\145.10_0\newtab\search-suggestion\css\search-suggestion.css    =>.SUP.BrowserExtension
MOVIDO carpeta: C:\Users\MIGUEL\AppData\Local\chromium\User Data\Default\Extensions\fhnobihfdnklhoilcilfogdcegekpgfn\145.10_0\newtab\search-suggestion\css\images\animated-overlay.gif    =>.SUP.BrowserExtension
MOVIDO carpeta: C:\Users\MIGUEL\AppData\Local\chromium\User Data\Default\Extensions\fhnobihfdnklhoilcilfogdcegekpgfn\145.10_0\newtab\search-suggestion\css\images\ui-bg_diagonals-thick_18_b81900_40x40.png    =>.SUP.BrowserExtension
MOVIDO carpeta: C:\Users\MIGUEL\AppData\Local\chromium\User Data\Default\Extensions\fhnobihfdnklhoilcilfogdcegekpgfn\145.10_0\newtab\search-suggestion\css\images\ui-bg_diagonals-thick_20_666666_40x40.png    =>.SUP.BrowserExtension
MOVIDO carpeta: C:\Users\MIGUEL\AppData\Local\chromium\User Data\Default\Extensions\fhnobihfdnklhoilcilfogdcegekpgfn\145.10_0\newtab\search-suggestion\css\images\ui-bg_flat_10_000000_40x100.png    =>.SUP.BrowserExtension
MOVIDO carpeta: C:\Users\MIGUEL\AppData\Local\chromium\User Data\Default\Extensions\fhnobihfdnklhoilcilfogdcegekpgfn\145.10_0\newtab\search-suggestion\css\images\ui-bg_glass_100_f6f6f6_1x400.png    =>.SUP.BrowserExtension
MOVIDO carpeta: C:\Users\MIGUEL\AppData\Local\chromium\User Data\Default\Extensions\fhnobihfdnklhoilcilfogdcegekpgfn\145.10_0\newtab\search-suggestion\css\images\ui-bg_glass_100_fdf5ce_1x400.png    =>.SUP.BrowserExtension
MOVIDO carpeta: C:\Users\MIGUEL\AppData\Local\chromium\User Data\Default\Extensions\fhnobihfdnklhoilcilfogdcegekpgfn\145.10_0\newtab\search-suggestion\css\images\ui-bg_glass_65_ffffff_1x400.png    =>.SUP.BrowserExtension
MOVIDO carpeta: C:\Users\MIGUEL\AppData\Local\chromium\User Data\Default\Extensions\fhnobihfdnklhoilcilfogdcegekpgfn\145.10_0\newtab\search-suggestion\css\images\ui-bg_gloss-wave_35_f6a828_500x100.png    =>.SUP.BrowserExtension
MOVIDO carpeta: C:\Users\MIGUEL\AppData\Local\chromium\User Data\Default\Extensions\fhnobihfdnklhoilcilfogdcegekpgfn\145.10_0\newtab\search-suggestion\css\images\ui-bg_highlight-soft_100_eeeeee_1x100.png    =>.SUP.BrowserExtension
MOVIDO carpeta: C:\Users\MIGUEL\AppData\Local\chromium\User Data\Default\Extensions\fhnobihfdnklhoilcilfogdcegekpgfn\145.10_0\newtab\search-suggestion\css\images\ui-bg_highlight-soft_75_ffe45c_1x100.png    =>.SUP.BrowserExtension
MOVIDO carpeta: C:\Users\MIGUEL\AppData\Local\chromium\User Data\Default\Extensions\fhnobihfdnklhoilcilfogdcegekpgfn\145.10_0\newtab\search-suggestion\css\images\ui-icons_222222_256x240.png    =>.SUP.BrowserExtension
MOVIDO carpeta: C:\Users\MIGUEL\AppData\Local\chromium\User Data\Default\Extensions\fhnobihfdnklhoilcilfogdcegekpgfn\145.10_0\newtab\search-suggestion\css\images\ui-icons_228ef1_256x240.png    =>.SUP.BrowserExtension
MOVIDO carpeta: C:\Users\MIGUEL\AppData\Local\chromium\User Data\Default\Extensions\fhnobihfdnklhoilcilfogdcegekpgfn\145.10_0\newtab\search-suggestion\css\images\ui-icons_ef8c08_256x240.png    =>.SUP.BrowserExtension
MOVIDO carpeta: C:\Users\MIGUEL\AppData\Local\chromium\User Data\Default\Extensions\fhnobihfdnklhoilcilfogdcegekpgfn\145.10_0\newtab\search-suggestion\css\images\ui-icons_ffd27a_256x240.png    =>.SUP.BrowserExtension
MOVIDO carpeta: C:\Users\MIGUEL\AppData\Local\chromium\User Data\Default\Extensions\fhnobihfdnklhoilcilfogdcegekpgfn\145.10_0\newtab\search-suggestion\css\images\ui-icons_ffffff_256x240.png    =>.SUP.BrowserExtension
MOVIDO carpeta: C:\Users\MIGUEL\AppData\Local\chromium\User Data\Default\Extensions\fhnobihfdnklhoilcilfogdcegekpgfn\145.10_0\newtab\search-suggestion\js\jquery-ui.js    =>.SUP.BrowserExtension
MOVIDO carpeta: C:\Users\MIGUEL\AppData\Local\chromium\User Data\Default\Extensions\fhnobihfdnklhoilcilfogdcegekpgfn\145.10_0\newtab\search-suggestion\js\search-suggestion.js    =>.SUP.BrowserExtension
MOVIDO carpeta: C:\Users\MIGUEL\AppData\Local\chromium\User Data\Default\Extensions\fhnobihfdnklhoilcilfogdcegekpgfn\145.10_0\newtab\search-suggestion\js\storage.js    =>.SUP.BrowserExtension
MOVIDO carpeta: C:\Users\MIGUEL\AppData\Local\chromium\User Data\Default\Extensions\fhnobihfdnklhoilcilfogdcegekpgfn\145.10_0\settings\assets.js    =>.SUP.BrowserExtension
MOVIDO carpeta: C:\Users\MIGUEL\AppData\Local\chromium\User Data\Default\Extensions\fhnobihfdnklhoilcilfogdcegekpgfn\145.10_0\settings\redirect.js    =>.SUP.BrowserExtension
MOVIDO carpeta: C:\Users\MIGUEL\AppData\Local\chromium\User Data\Default\Extensions\fhnobihfdnklhoilcilfogdcegekpgfn\145.10_0\tb_ux\chrome-options.js    =>.SUP.BrowserExtension
MOVIDO carpeta: C:\Users\MIGUEL\AppData\Local\chromium\User Data\Default\Extensions\fhnobihfdnklhoilcilfogdcegekpgfn\145.10_0\tb_ux\ieCS.js    =>.SUP.BrowserExtension
MOVIDO carpeta: C:\Users\MIGUEL\AppData\Local\chromium\User Data\Default\Extensions\fhnobihfdnklhoilcilfogdcegekpgfn\145.10_0\tb_ux\IFrameButton.js    =>.SUP.BrowserExtension
MOVIDO carpeta: C:\Users\MIGUEL\AppData\Local\chromium\User Data\Default\Extensions\fhnobihfdnklhoilcilfogdcegekpgfn\145.10_0\tb_ux\init-toolbar.js    =>.SUP.BrowserExtension
MOVIDO carpeta: C:\Users\MIGUEL\AppData\Local\chromium\User Data\Default\Extensions\fhnobihfdnklhoilcilfogdcegekpgfn\145.10_0\tb_ux\rebuttal.js    =>.SUP.BrowserExtension
MOVIDO carpeta: C:\Users\MIGUEL\AppData\Local\chromium\User Data\Default\Extensions\fhnobihfdnklhoilcilfogdcegekpgfn\145.10_0\tb_ux\reel.js    =>.SUP.BrowserExtension
MOVIDO carpeta: C:\Users\MIGUEL\AppData\Local\chromium\User Data\Default\Extensions\fhnobihfdnklhoilcilfogdcegekpgfn\145.10_0\tb_ux\searchbox.js    =>.SUP.BrowserExtension
MOVIDO carpeta: C:\Users\MIGUEL\AppData\Local\chromium\User Data\Default\Extensions\fhnobihfdnklhoilcilfogdcegekpgfn\145.10_0\tb_ux\shimIE.js    =>.SUP.BrowserExtension
MOVIDO carpeta: C:\Users\MIGUEL\AppData\Local\chromium\User Data\Default\Extensions\fhnobihfdnklhoilcilfogdcegekpgfn\145.10_0\tb_ux\SimpleButton.js    =>.SUP.BrowserExtension
MOVIDO carpeta: C:\Users\MIGUEL\AppData\Local\chromium\User Data\Default\Extensions\fhnobihfdnklhoilcilfogdcegekpgfn\145.10_0\tb_ux\toolbar.js    =>.SUP.BrowserExtension
MOVIDO carpeta: C:\Users\MIGUEL\AppData\Local\chromium\User Data\Default\Extensions\fhnobihfdnklhoilcilfogdcegekpgfn\145.10_0\widgets\options\options.css    =>.SUP.BrowserExtension
MOVIDO carpeta: C:\Users\MIGUEL\AppData\Local\chromium\User Data\Default\Extensions\fhnobihfdnklhoilcilfogdcegekpgfn\145.10_0\widgets\options\options.html    =>.SUP.BrowserExtension
MOVIDO carpeta: C:\Users\MIGUEL\AppData\Local\chromium\User Data\Default\Extensions\fhnobihfdnklhoilcilfogdcegekpgfn\145.10_0\widgets\options\options.js    =>.SUP.BrowserExtension
MOVIDO carpeta: C:\Users\MIGUEL\AppData\Local\chromium\User Data\Default\Extensions\fhnobihfdnklhoilcilfogdcegekpgfn\145.10_0\widgets\options\images\button.png    =>.SUP.BrowserExtension
MOVIDO carpeta: C:\Users\MIGUEL\AppData\Local\chromium\User Data\Default\Extensions\fhnobihfdnklhoilcilfogdcegekpgfn\145.10_0\widgets\options\images\button-blue-1x20.png    =>.SUP.BrowserExtension
MOVIDO carpeta: C:\Users\MIGUEL\AppData\Local\chromium\User Data\Default\Extensions\fhnobihfdnklhoilcilfogdcegekpgfn\145.10_0\widgets\options\images\button-grey-1x26.png    =>.SUP.BrowserExtension
MOVIDO carpeta: C:\Users\MIGUEL\AppData\Local\chromium\User Data\Default\Extensions\fhnobihfdnklhoilcilfogdcegekpgfn\145.10_0\widgets\options\images\icons.png    =>.SUP.BrowserExtension
MOVIDO carpeta: C:\Users\MIGUEL\AppData\Local\chromium\User Data\Default\Extensions\fhnobihfdnklhoilcilfogdcegekpgfn\145.10_0\widgets\options\images\lightblue-1x43.png    =>.SUP.BrowserExtension
MOVIDO carpeta: C:\Users\MIGUEL\AppData\Local\chromium\User Data\Default\Extensions\fhnobihfdnklhoilcilfogdcegekpgfn\145.10_0\widgets\rebuttal\rebuttal.css    =>.SUP.BrowserExtension
MOVIDO carpeta: C:\Users\MIGUEL\AppData\Local\chromium\User Data\Default\Extensions\fhnobihfdnklhoilcilfogdcegekpgfn\145.10_0\widgets\rebuttal\rebuttal.html    =>.SUP.BrowserExtension
MOVIDO carpeta: C:\Users\MIGUEL\AppData\Local\chromium\User Data\Default\Extensions\fhnobihfdnklhoilcilfogdcegekpgfn\145.10_0\widgets\rebuttal\rebuttal.js    =>.SUP.BrowserExtension
MOVIDO carpeta: C:\Users\MIGUEL\AppData\Local\chromium\User Data\Default\Extensions\fhnobihfdnklhoilcilfogdcegekpgfn\145.10_0\widgets\rebuttal\images\warning.png    =>.SUP.BrowserExtension
MOVIDO carpeta: C:\Users\MIGUEL\AppData\Local\chromium\User Data\Default\Extensions\fhnobihfdnklhoilcilfogdcegekpgfn\145.10_0\widgets\search-suggestion\search-suggestion.css    =>.SUP.BrowserExtension
MOVIDO carpeta: C:\Users\MIGUEL\AppData\Local\chromium\User Data\Default\Extensions\fhnobihfdnklhoilcilfogdcegekpgfn\145.10_0\widgets\search-suggestion\search-suggestion.html    =>.SUP.BrowserExtension
MOVIDO carpeta: C:\Users\MIGUEL\AppData\Local\chromium\User Data\Default\Extensions\fhnobihfdnklhoilcilfogdcegekpgfn\145.10_0\widgets\search-suggestion\search-suggestion.js    =>.SUP.BrowserExtension
MOVIDO carpeta: C:\Users\MIGUEL\AppData\Local\chromium\User Data\Default\Extensions\fhnobihfdnklhoilcilfogdcegekpgfn\145.10_0\widgets\templates\feed.html    =>.SUP.BrowserExtension
MOVIDO carpeta: C:\Users\MIGUEL\AppData\Local\chromium\User Data\Default\Extensions\fhnobihfdnklhoilcilfogdcegekpgfn\145.10_0\widgets\templates\menu.html    =>.SUP.BrowserExtension
MOVIDO carpeta: C:\Users\MIGUEL\AppData\Local\chromium\User Data\Default\Extensions\fhnobihfdnklhoilcilfogdcegekpgfn\145.10_0\widgets\templates\css\menu.css    =>.SUP.BrowserExtension
MOVIDO carpeta: C:\Users\MIGUEL\AppData\Local\chromium\User Data\Default\Extensions\fhnobihfdnklhoilcilfogdcegekpgfn\145.10_0\widgets\templates\css\images\footer_gradient.png    =>.SUP.BrowserExtension
MOVIDO carpeta: C:\Users\MIGUEL\AppData\Local\chromium\User Data\Default\Extensions\fhnobihfdnklhoilcilfogdcegekpgfn\145.10_0\widgets\templates\css\images\footer_shadow.png    =>.SUP.BrowserExtension
MOVIDO carpeta: C:\Users\MIGUEL\AppData\Local\chromium\User Data\Default\Extensions\fhnobihfdnklhoilcilfogdcegekpgfn\145.10_0\widgets\templates\css\images\image_placeholder.png    =>.SUP.BrowserExtension
MOVIDO carpeta: C:\Users\MIGUEL\AppData\Local\chromium\User Data\Default\Extensions\fhnobihfdnklhoilcilfogdcegekpgfn\145.10_0\widgets\templates\css\images\item-bg.png    =>.SUP.BrowserExtension
MOVIDO carpeta: C:\Users\MIGUEL\AppData\Local\chromium\User Data\Default\Extensions\fhnobihfdnklhoilcilfogdcegekpgfn\145.10_0\widgets\templates\js\api.js    =>.SUP.BrowserExtension
MOVIDO carpeta: C:\Users\MIGUEL\AppData\Local\chromium\User Data\Default\Extensions\fhnobihfdnklhoilcilfogdcegekpgfn\145.10_0\widgets\templates\js\feed.js    =>.SUP.BrowserExtension
MOVIDO carpeta: C:\Users\MIGUEL\AppData\Local\chromium\User Data\Default\Extensions\fhnobihfdnklhoilcilfogdcegekpgfn\145.10_0\widgets\templates\js\menu.js    =>.SUP.BrowserExtension
MOVIDO archivo: C:\Users\COMERCIALISADORA\AppData\Local\Google\Chrome\User Data\Default\Extensions\nokalcjbbdlpmlbhbpjhfpdggbieahfo  =>Hijacker.Browser [http://wwwsaltarsmartbi-a.akamaihd.net/update/chro]
MOVIDO archivo: C:\Users\COMERCIALISADORA\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\nokalcjbbdlpmlbhbpjhfpdggbieahfo  =>Hijacker.Browser
MOVIDO archivo: C:\Users\MIGUEL\AppData\Local\chromium\User Data\Default\Extensions\fhnobihfdnklhoilcilfogdcegekpgfn  =>.SUP.BrowserExtension
MOVIDO archivo: C:\Program Files\Dll-Files.com Fixer  =>.SUP.DllFilesFixer
MOVIDO archivo: C:\Program Files\KMSpico  =>HackTool.KMSpico
MOVIDO archivo: C:\Program Files\Uninstaller  =>PUP.Optional.RandomSoftware
MOVIDO archivo: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dll-Files Fixer  =>.SUP.DllFilesFixer
MOVIDO archivo: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\KMSpico  =>HackTool.KMSpico
MOVIDO archivo: C:\Users\MIGUEL\AppData\Roaming\dll-files.com  =>.SUP.DllFilesFixer
MOVIDO archivo: C:\Users\COMERCIALISADORA\AppData\Roaming\dll-files.com  =>.SUP.DllFilesFixer
MOVIDO archivo: C:\Program Files\QuickTime  =>Riskware.QuickTime
MOVIDO archivo: C:\Users\COMERCIALISADORA\AppData\Local\Google\Chrome\User Data\Default\Extensions\nokalcjbbdlpmlbhbpjhfpdggbieahfo\1.0.1_0  =>Hijacker.Browser
MOVIDO archivo: C:\Users\MIGUEL\AppData\Local\chromium\User Data\Default\Extensions\fhnobihfdnklhoilcilfogdcegekpgfn\145.10_0  =>.SUP.BrowserExtension
MOVIDO archivo: C:\Users\MIGUEL\AppData\Local\chromium\User Data\Default\Extensions\fhnobihfdnklhoilcilfogdcegekpgfn\145.10_0\_metadata  =>.SUP.BrowserExtension
MOVIDO archivo: C:\Users\MIGUEL\AppData\Local\chromium\User Data\Default\Extensions\fhnobihfdnklhoilcilfogdcegekpgfn\145.10_0\config  =>.SUP.BrowserExtension
MOVIDO archivo: C:\Users\MIGUEL\AppData\Local\chromium\User Data\Default\Extensions\fhnobihfdnklhoilcilfogdcegekpgfn\145.10_0\config\skin  =>.SUP.BrowserExtension
MOVIDO archivo: C:\Users\MIGUEL\AppData\Local\chromium\User Data\Default\Extensions\fhnobihfdnklhoilcilfogdcegekpgfn\145.10_0\config\skin\widgets  =>.SUP.BrowserExtension
MOVIDO archivo: C:\Users\MIGUEL\AppData\Local\chromium\User Data\Default\Extensions\fhnobihfdnklhoilcilfogdcegekpgfn\145.10_0\config\skin\widgets\teomaTheme-news  =>.SUP.BrowserExtension
MOVIDO archivo: C:\Users\MIGUEL\AppData\Local\chromium\User Data\Default\Extensions\fhnobihfdnklhoilcilfogdcegekpgfn\145.10_0\config\skin\widgets\teomaTheme-video  =>.SUP.BrowserExtension
MOVIDO archivo: C:\Users\MIGUEL\AppData\Local\chromium\User Data\Default\Extensions\fhnobihfdnklhoilcilfogdcegekpgfn\145.10_0\config\skin\widgets\teomaTheme-web  =>.SUP.BrowserExtension
MOVIDO archivo: C:\Users\MIGUEL\AppData\Local\chromium\User Data\Default\Extensions\fhnobihfdnklhoilcilfogdcegekpgfn\145.10_0\content_script  =>.SUP.BrowserExtension
MOVIDO archivo: C:\Users\MIGUEL\AppData\Local\chromium\User Data\Default\Extensions\fhnobihfdnklhoilcilfogdcegekpgfn\145.10_0\content_script\hack  =>.SUP.BrowserExtension
MOVIDO archivo: C:\Users\MIGUEL\AppData\Local\chromium\User Data\Default\Extensions\fhnobihfdnklhoilcilfogdcegekpgfn\145.10_0\lib  =>.SUP.BrowserExtension
MOVIDO archivo: C:\Users\MIGUEL\AppData\Local\chromium\User Data\Default\Extensions\fhnobihfdnklhoilcilfogdcegekpgfn\145.10_0\lib\shims  =>.SUP.BrowserExtension
MOVIDO archivo: C:\Users\MIGUEL\AppData\Local\chromium\User Data\Default\Extensions\fhnobihfdnklhoilcilfogdcegekpgfn\145.10_0\newtab  =>.SUP.BrowserExtension
MOVIDO archivo: C:\Users\MIGUEL\AppData\Local\chromium\User Data\Default\Extensions\fhnobihfdnklhoilcilfogdcegekpgfn\145.10_0\newtab\css  =>.SUP.BrowserExtension
MOVIDO archivo: C:\Users\MIGUEL\AppData\Local\chromium\User Data\Default\Extensions\fhnobihfdnklhoilcilfogdcegekpgfn\145.10_0\newtab\images  =>.SUP.BrowserExtension
MOVIDO archivo: C:\Users\MIGUEL\AppData\Local\chromium\User Data\Default\Extensions\fhnobihfdnklhoilcilfogdcegekpgfn\145.10_0\newtab\js  =>.SUP.BrowserExtension
MOVIDO archivo: C:\Users\MIGUEL\AppData\Local\chromium\User Data\Default\Extensions\fhnobihfdnklhoilcilfogdcegekpgfn\145.10_0\newtab\restoresettings-popup  =>.SUP.BrowserExtension
MOVIDO archivo: C:\Users\MIGUEL\AppData\Local\chromium\User Data\Default\Extensions\fhnobihfdnklhoilcilfogdcegekpgfn\145.10_0\newtab\restoresettings-popup\css  =>.SUP.BrowserExtension
MOVIDO archivo: C:\Users\MIGUEL\AppData\Local\chromium\User Data\Default\Extensions\fhnobihfdnklhoilcilfogdcegekpgfn\145.10_0\newtab\restoresettings-popup\images  =>.SUP.BrowserExtension
MOVIDO archivo: C:\Users\MIGUEL\AppData\Local\chromium\User Data\Default\Extensions\fhnobihfdnklhoilcilfogdcegekpgfn\145.10_0\newtab\restoresettings-popup\js  =>.SUP.BrowserExtension
MOVIDO archivo: C:\Users\MIGUEL\AppData\Local\chromium\User Data\Default\Extensions\fhnobihfdnklhoilcilfogdcegekpgfn\145.10_0\newtab\search-suggestion  =>.SUP.BrowserExtension
MOVIDO archivo: C:\Users\MIGUEL\AppData\Local\chromium\User Data\Default\Extensions\fhnobihfdnklhoilcilfogdcegekpgfn\145.10_0\newtab\search-suggestion\css  =>.SUP.BrowserExtension
MOVIDO archivo: C:\Users\MIGUEL\AppData\Local\chromium\User Data\Default\Extensions\fhnobihfdnklhoilcilfogdcegekpgfn\145.10_0\newtab\search-suggestion\css\images  =>.SUP.BrowserExtension
MOVIDO archivo: C:\Users\MIGUEL\AppData\Local\chromium\User Data\Default\Extensions\fhnobihfdnklhoilcilfogdcegekpgfn\145.10_0\newtab\search-suggestion\js  =>.SUP.BrowserExtension
MOVIDO archivo: C:\Users\MIGUEL\AppData\Local\chromium\User Data\Default\Extensions\fhnobihfdnklhoilcilfogdcegekpgfn\145.10_0\settings  =>.SUP.BrowserExtension
MOVIDO archivo: C:\Users\MIGUEL\AppData\Local\chromium\User Data\Default\Extensions\fhnobihfdnklhoilcilfogdcegekpgfn\145.10_0\tb_ux  =>.SUP.BrowserExtension
MOVIDO archivo: C:\Users\MIGUEL\AppData\Local\chromium\User Data\Default\Extensions\fhnobihfdnklhoilcilfogdcegekpgfn\145.10_0\widgets  =>.SUP.BrowserExtension
MOVIDO archivo: C:\Users\MIGUEL\AppData\Local\chromium\User Data\Default\Extensions\fhnobihfdnklhoilcilfogdcegekpgfn\145.10_0\widgets\options  =>.SUP.BrowserExtension
MOVIDO archivo: C:\Users\MIGUEL\AppData\Local\chromium\User Data\Default\Extensions\fhnobihfdnklhoilcilfogdcegekpgfn\145.10_0\widgets\options\images  =>.SUP.BrowserExtension
MOVIDO archivo: C:\Users\MIGUEL\AppData\Local\chromium\User Data\Default\Extensions\fhnobihfdnklhoilcilfogdcegekpgfn\145.10_0\widgets\rebuttal  =>.SUP.BrowserExtension
MOVIDO archivo: C:\Users\MIGUEL\AppData\Local\chromium\User Data\Default\Extensions\fhnobihfdnklhoilcilfogdcegekpgfn\145.10_0\widgets\rebuttal\images  =>.SUP.BrowserExtension
MOVIDO archivo: C:\Users\MIGUEL\AppData\Local\chromium\User Data\Default\Extensions\fhnobihfdnklhoilcilfogdcegekpgfn\145.10_0\widgets\search-suggestion  =>.SUP.BrowserExtension
MOVIDO archivo: C:\Users\MIGUEL\AppData\Local\chromium\User Data\Default\Extensions\fhnobihfdnklhoilcilfogdcegekpgfn\145.10_0\widgets\templates  =>.SUP.BrowserExtension
MOVIDO archivo: C:\Users\MIGUEL\AppData\Local\chromium\User Data\Default\Extensions\fhnobihfdnklhoilcilfogdcegekpgfn\145.10_0\widgets\templates\css  =>.SUP.BrowserExtension
MOVIDO archivo: C:\Users\MIGUEL\AppData\Local\chromium\User Data\Default\Extensions\fhnobihfdnklhoilcilfogdcegekpgfn\145.10_0\widgets\templates\css\images  =>.SUP.BrowserExtension
MOVIDO archivo: C:\Users\MIGUEL\AppData\Local\chromium\User Data\Default\Extensions\fhnobihfdnklhoilcilfogdcegekpgfn\145.10_0\widgets\templates\js  =>.SUP.BrowserExtension


---\\  Registro ( Claves, Valores, Datos) (25)
BORRADOS clave*: [X64] HKLM\SOFTWARE\Clients\StartMenuInternet\Beamrise.FIRQB7WTMZK2HJKFIEOZVYWT44 []  =>PUP.Optional.Beamrise
BORRADOS clave*: HKCU\Software\Microsoft\Internet Explorer\InternetRegistry\REGISTRY\USER\S-1-5-21-1759255200-2635567169-74197307-1001\Software\SaltarSmart [AdditionalScan 246]  =>PUP.Optional.SaltarSmart
BORRADOS clave*: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\DMUninstaller [AdditionalScan 564]  =>Adware.VAFPlayer
BORRADOS clave*: HKEY_USERS\S-1-5-21-1759255200-2635567169-74197307-1001\SOFTWARE\dll-files.com []  =>.SUP.DllFilesFixer
BORRADOS clave**: HKCU\Software\dll-files.com []  =>.SUP.DllFilesFixer
BORRADOS clave*: HKCU\Software\AppDataLow\Software\LyricsSay-16 []  =>Adware.CrossRider
BORRADOS clave*: HKLM\SOFTWARE\Classes\ScriptHost.Tool [Tool Class]  =>PUP.Optional.ScriptHost
BORRADOS clave*: HKLM\SOFTWARE\Classes\ScriptHost.Tool.1 [Tool Class]  =>PUP.Optional.ScriptHost
BORRADOS clave*: HKLM\SOFTWARE\Classes\TbCommonUtils.CommonUtils [CommonUtils Class]  =>Toolbar.Agent
BORRADOS clave*: HKLM\SOFTWARE\Classes\TbCommonUtils.CommonUtils.1 [CommonUtils Class]  =>Toolbar.Agent
BORRADOS clave*: HKLM\SOFTWARE\Classes\AuslogicServer.AuslogicObject [AuslogicServer.AuslogicObject]  =>SUP.Optional.Auslogics
BORRADOS clave*: HKLM\SOFTWARE\Classes\Installer\Products\C4145425D2130535007A7A857BC0F250 [Search App by Ask]  =>PUP.Optional.BrowserTabSearch
BORRADOS clave*: HKLM\SOFTWARE\Classes\CLSID\{948A0277-74BE-4EB9-8A8E-07FC6CD64470} [AuslogicServer.AuslogicObject]  =>SUP.Optional.Auslogics
BORRADOS clave*: HKLM\SOFTWARE\Auslogics []  =>SUP.Optional.Auslogics
BORRADOS clave*: HKLM\SOFTWARE\dll-files.com []  =>.SUP.DllFilesFixer
BORRADOS clave*: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\beamrise.exe [C:\Users\MIGUEL\AppData\Local\Beamrise\Application\beamrise.exe (Not File)]  =>.SUP.Beamrise
BORRADOS clave*: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Dll-Files Fixer_is1 [Dll-Files.com]  =>.SUP.DllFilesFixer
BORRADOS clave*: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{5245414C-312D-5350-00A7-A758B70C2F05} [APN, LLC]  =>Adware.Bandoo
BORRADOS clave*: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{8B29D47F-92E2-4C20-9EE0-F710991F5D7C}_is1 [KMSpico]  =>HackTool.KMSpico
BORRADOS clave*: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{C1C441C4-57FA-4950-BDBA-BABFBAA2AA39} [ParetoLogic, Inc.]  =>.SUP.Paretologic
BORRADOS valor: HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\\Beamrise ["C:\Users\MIGUEL\AppData\Local\Beamrise\Applicatio]  =>.SUP.Beamrise
BORRADOS valor: HKLM\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules\\{8A9D8E30-07D6-4746-B06B-96D5955051E8} [C:\Program Files\KMSpico\KMSELDI.exe]  =>HackTool.KMSpico
BORRADOS valor: HKLM\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules\\{DD53FCA6-33F3-4B93-BF82-48808E8B75F9} [C:\Program Files\KMSpico\KMSELDI.exe]  =>HackTool.KMSpico
BORRADOS valor: HKLM\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules\\{1C289987-C951-4286-B617-DC5D131F1272} [C:\Program Files\KMSpico\AutoPico.exe]  =>HackTool.KMSpico
BORRADOS valor: HKLM\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules\\{3BC9C468-223C-4074-B09B-7CF5611276DA} [C:\Program Files\KMSpico\AutoPico.exe]  =>HackTool.KMSpico


---\\  Resumen de elementos en su estación de trabajo (21)
https://nicolascoolman.eu/forum/Topic/defaultsearch-logiciel-potentiellement-superflu-lps/  =>SUP.Optional.DefaultSearch
https://nicolascoolman.eu/2017/10/04/sup-beamrise/  =>.SUP.Beamrise
https://nicolascoolman.eu/forum/Topic/repaquetage-et-infection/  =>Hijacker.Browser [http://wwwsaltarsmartbi-a.akamaihd.net/update/chro]
https://nicolascoolman.eu/2017/11/10/hijacker-browser-3/  =>Hijacker.Browser
https://nicolascoolman.eu/2017/01/28/heuristic-suspect/  =>Heuristic.Suspect
https://nicolascoolman.eu/forum/Topic/saltarsmart-logiciel-potentiellement-indesirable-pup-lpi/  =>PUP.Optional.SaltarSmart
https://nicolascoolman.eu/forum/Topic/logiciels-potentiellement-superflus-lps/  =>.SUP.FileCure
https://nicolascoolman.eu/2017/10/05/sup-browserextension/  =>.SUP.BrowserExtension
https://nicolascoolman.eu/2017/09/17/sup-dllfilesfixer/  =>.SUP.DllFilesFixer
https://nicolascoolman.eu/2017/02/16/hacktool-kmspico/  =>HackTool.KMSpico
https://nicolascoolman.eu/forum/Topic/repaquetage-et-infection/  =>PUP.Optional.RandomSoftware
https://nicolascoolman.eu/2017/01/15/riskware-quicktime/  =>Riskware.QuickTime
https://nicolascoolman.eu/forum/Topic/repaquetage-et-infection/  =>PUP.Optional.Beamrise
https://nicolascoolman.eu/forum/Topic/vafplayer-logiciel-publicitaire-adware/  =>Adware.VAFPlayer
https://nicolascoolman.eu/2017/03/11/pup-optional-crossrider/  =>Adware.CrossRider
https://nicolascoolman.eu/forum/Topic/scripthost-logiciel-publicitaire-adware/  =>PUP.Optional.ScriptHost
https://nicolascoolman.eu/2017/09/23/barres-doutils-de-navigateur-toolbars/  =>Toolbar.Agent
https://nicolascoolman.eu/forum/Topic/auslogics-logiciel-potentiellement-superflu-lps/  =>SUP.Optional.Auslogics
pup-browsertabsearch/  =>PUP.Optional.BrowserTabSearch
https://nicolascoolman.eu/2017/02/23/adware-bandoo/  =>Adware.Bandoo
https://nicolascoolman.eu/forum/Topic/logiciels-potentiellement-superflus-lps/  =>.SUP.Paretologic


---\\ Limpieza adicional. (0)
~ Clave de registro Tracing borrados (0)
~ Quitar los antiguos informes de ZHPCleaner. (0)


---\\ Resultado de la reparación.
~ Reparación llevada a cabo con éxito
~ Internet Explorer OK


---\\ STATISTIQUES
~ Items escaneado : 2356
~ Items encontrado : 0
~ artículos cancelados : 0
~ Ahorro de espacio (bytes) : 0
~ Items opciones : 8/15


---\\ OPCIONES NO ACTIVAS
~ Análisis temporal de archivos
~ Análisis temporal de carpetas
~ Análisis de CLSID de carpetas vacías
~ Vaciar otro análisis de carpetas
~ Análisis de carpetas locales vacías
~ Análisis de carpetas locales vacías
~ Análisis de archivos de instalación obsoleto


ZHPCleanerTexto preformateado


~ End of clean in 00h03mn22s

---\\  Reporte (2)
ZHPCleaner-[S]-01102020-12_52_00.txt
ZHPCleaner-[R]-01102020-12_59_26.txt

Hola

Continúa con los pasos faltan los reportes de FRST.

Salu2

Reporte FRST

Resultados del Análisis Adicional de Farbar Recovery Scan Tool (x86) Versión: 20-09-2020
Ejecutado por MIGUEL (03-10-2020 12:16:24)
Ejecutado desde C:\Users\MIGUEL\Desktop
Microsoft Windows 7 Starter  Service Pack 1 (X86) (2012-10-04 05:55:32)
Modo de Inicio: Safe Mode (minimal)
==========================================================


==================== Cuentas: =============================

Administrador (S-1-5-21-1759255200-2635567169-74197307-500 - Administrator - Disabled)
COMERCIALISADORA (S-1-5-21-1759255200-2635567169-74197307-1002 - Administrator - Enabled) => C:\Users\COMERCIALISADORA
FAM LC (S-1-5-21-1759255200-2635567169-74197307-1003 - Limited - Enabled) => C:\Users\FAM LC
Invitado (S-1-5-21-1759255200-2635567169-74197307-501 - Limited - Enabled) => C:\Users\Invitado
MIGUEL (S-1-5-21-1759255200-2635567169-74197307-1001 - Administrator - Enabled) => C:\Users\MIGUEL

==================== Centro de Seguridad ========================

(Si una entrada es incluida en el fixlist, será eliminada.)

AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Programas instalados ======================

(Solo los programas de adware con indicador "Oculto", pueden ser añadidos al fixlist para hacerlos visibles. Los programas adware deben ser desinstalados manualmente.)

Adobe Flash Player 10 Plugin (HKLM\...\{E6725026-A650-449C-897B-D6B7A5EEA058}) (Version: 10.2.152.26 - Adobe Systems Incorporated)
Adobe Flash Player 11 ActiveX (HKLM\...\Adobe Flash Player ActiveX) (Version: 11.4.402.278 - Adobe Systems Incorporated)
Adobe Reader X MUI (HKLM\...\{AC76BA86-7AD7-FFFF-7B44-AA0000000001}) (Version: 10.0.0 - Adobe Systems Incorporated)
AhnLab Online Security (Personal) (HKLM\...\AhnLab Online Security) (Version:  - AhnLab, Inc)
ArcSoft Magic-i Visual Effects 2 (HKLM\...\{61438020-DDD4-42FA-99A2-50225441980A}) (Version: 2.0.1.142 - ArcSoft)
ArcSoft WebCam Companion 4 (HKLM\...\{C793AD32-2BB8-4CC4-ABD3-A1469C21593C}) (Version: 4.0.21.392 - ArcSoft)
Aspel-CAJA 3.5 (HKLM\...\{74BADEF2-EB6C-474A-A390-84507909EFAF}) (Version: 3.50.0 - Aspel)
ATI Catalyst Install Manager (HKLM\...\{9F8E6025-423A-2A9F-3951-71E9BE2A85E7}) (Version: 3.0.829.0 - ATI Technologies, Inc.)
aTube Catcher (HKLM\...\aTube Catcher) (Version: 2.9.1347 - DsNET Corp)
aTube Catcher versión 3.8 (HKLM\...\{D43B360E-722D-421B-BC77-20B9E0F8B6CD}_is1) (Version: 3.8 - DsNET Corp)
Avidemux 2.6 - 32 bits (32-bit) (HKLM\...\Avidemux 2.6 - 32 bits) (Version: 2.6.14.160917 - )
Bonjour (HKLM\...\{79155F2B-9895-49D7-8612-D92580E0DE5B}) (Version: 3.0.0.10 - Apple Inc.)
Camtasia Studio 7 (HKLM\...\{53FA9A9F-3C19-4D43-AD6B-DEF365D469BA}) (Version: 7.0.0 - TechSmith Corporation)
CCleaner (HKLM\...\CCleaner) (Version: 5.68 - Piriform)
CDBurnerXP (HKLM\...\{7E265513-8CDA-4631-B696-F40D983F3B07}_is1) (Version: 4.5.5.5571 - CDBurnerXP)
Control ActiveX de Windows Live Mesh para conexiones remotas (HKLM\...\{04668DF2-D32F-4555-9C7E-35523DCD6544}) (Version: 15.4.5722.2 - Microsoft Corporation)
D3DX10 (HKLM\...\{E09C4DB7-630C-4F06-A631-8EA7239923AF}) (Version: 15.4.2368.0902 - Microsoft) Hidden
Dev-C++ 5 beta 9 release (4.9.9.2) (HKLM\...\Dev-C++) (Version:  - )
Epub Reader for Windows 3.4 (HKLM\...\Epub Reader for Windows_is1) (Version:  - )
Estudio para la mejora del producto HP DeskJet 2130 series (HKLM\...\{A289DA34-462C-41AB-B4AA-145FA284DC12}) (Version: 40.11.1124.17107 - HP Inc.)
Firebird 2.5.0.26074 (Win32) (HKLM\...\FBDBServer_2_5_is1) (Version:  - Firebird Project)
Galería fotográfica de Windows Live (HKLM\...\{E85A4EFC-82F2-4CEE-8A8E-62FDAD353A66}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
GIMP 2.4.0-rc3 (HKLM\...\WinGimp-2.0_is1) (Version:  - )
Google Update Helper (HKLM\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.35.341 - Google LLC) Hidden
Google Update Helper (HKLM\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.25.11 - Google Inc.) Hidden
Hacer clic y ejecutar de Microsoft Office 2010 (HKLM\...\{90140000-006D-0C0A-0000-0000000FF1CE}) (Version: 14.0.4763.1000 - Microsoft Corporation) Hidden
Hacer clic y ejecutar de Microsoft Office 2010 (HKLM\...\Office14.Click2Run) (Version: 14.0.4763.1000 - Microsoft Corporation)
HP DeskJet 2130 series Ayuda (HKLM\...\{0ABC47CC-14F8-4D01-B877-4203635C0B06}) (Version: 35.0.0 - Hewlett Packard)
HP DeskJet 2130 series Software básico del dispositivo (HKLM\...\{32468295-0962-4094-A8FE-FB9DEABB125B}) (Version: 40.11.1124.17107 - HP Inc.)
HP Dropbox Plugin (HKLM\...\{7BEBB31E-58C4-4FA5-9AD1-ACBE32BF0D12}) (Version: 36.0.41.58587 - HP)
HP ePrint SW (HKLM\...\{95f692fb-34a0-4fcb-a980-e14f6e075691}) (Version: 5.5.22560 - HP Inc.)
HP Google Drive Plugin (HKLM\...\{63BD9C12-5CE9-4294-B1C3-A09F971FAFB5}) (Version: 36.0.41.58587 - HP)
HP Photo Creations (HKU\S-1-5-21-1759255200-2635567169-74197307-1001\...\HP Photo Creations) (Version: 1.0.0.22192 - HP)
Java DB 10.2.2.0 (HKLM\...\{0ECB59D5-A3FC-4D61-AD3B-6CE679B3F852}) (Version: 10.2.2.0 - Sun Microsystems, Inc)
Java(TM) 6 Update 22 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83216022FF}) (Version: 6.0.220 - Oracle)
Java(TM) 6 Update 3 (HKLM\...\{3248F0A8-6813-11D6-A77B-00B0D0160030}) (Version: 1.6.0.30 - Sun Microsystems, Inc.)
Java(TM) SE Development Kit 6 Update 3 (HKLM\...\{32A3A4F4-B792-11D6-A78A-00B0D0160030}) (Version: 1.6.0.30 - Sun Microsystems, Inc.)
Junk Mail filter update (HKLM\...\{1F6AB0E7-8CDD-4B93-8A23-AA9EB2FEFCE4}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Kodu Game Lab (HKLM\...\{C27FE0CD-51B3-4D2B-A0BD-EF87561429CB}) (Version: 1.0.94 - Microsoft Research)
Malwarebytes version 4.2.1.89 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.2.1.89 - Malwarebytes)
Manual de VAIO (HKLM\...\{C6E893E7-E5EA-4CD5-917C-5443E753FCBD}) (Version: 1.3.0.02180 - Sony Corporation)
Media Gallery (HKLM\...\{6F663FE6-3ED0-4ABF-816C-44744F7ACABA}) (Version: 1.5.0.17250 - Sony Corporation) Hidden
Mesh Runtime (HKLM\...\{8C6D6116-B724-4810-8F2D-D047E6B7D68E}) (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.7.1 (español) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 3082) (Version: 4.7.02558 - Microsoft Corporation)
Microsoft .NET Framework 4.7.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.7.02558 - Microsoft Corporation)
Microsoft Office 365 ProPlus - es-es (HKLM\...\O365ProPlusRetail - es-es) (Version: 16.0.12026.20344 - Microsoft Corporation)
Microsoft OneDrive (HKU\.DEFAULT\...\OneDriveSetup.exe) (Version: 18.151.0729.0013 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-1759255200-2635567169-74197307-1001\...\OneDriveSetup.exe) (Version: 19.192.0926.0012 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50918.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft SQL Server Compact 3.5 SP1 English (HKLM\...\{E59113EB-0285-4BFD-A37A-B79EAC6B8F4B}) (Version: 3.5.5692.0 - Microsoft Corporation)
Microsoft Teams (HKU\S-1-5-21-1759255200-2635567169-74197307-1001\...\Teams) (Version: 1.2.00.22654 - Microsoft Corporation)
Microsoft Visio Profesional 2016 - es-es (HKLM\...\VisioProRetail - es-es) (Version: 16.0.12026.20344 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x86) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x86)) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 3.1 (HKLM\...\{19BFDA5D-1FE2-4F25-97F9-1A79DD04EE20}) (Version: 3.1.10527.0 - Microsoft Corporation)
Mozilla Firefox 72.0.1 (x86 en-US) (HKLM\...\Mozilla Firefox 72.0.1 (x86 en-US)) (Version: 72.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 72.0.1 - Mozilla)
MSXML 4.0 SP3 Parser (HKLM\...\{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB2721691) (HKLM\...\{355B5AC0-CEEE-42C5-AD4D-7F3CFD806C36}) (Version: 4.30.2114.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB2758694) (HKLM\...\{1D95BA90-F4F8-47EC-A882-441C99D30C1E}) (Version: 4.30.2117.0 - Microsoft Corporation)
Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.11929.20254 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-0000-0000000FF1CE}) (Version: 16.0.11929.20254 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-0C0A-0000-0000000FF1CE}) (Version: 16.0.11929.20254 - Microsoft Corporation) Hidden
OOBE (HKLM\...\{18894D16-5448-4BF9-A128-F7E937322F91}) (Version: 11.2.1.10 - Sony Corporation)
Oracle VM VirtualBox 5.0.16 (HKLM\...\{45EB9281-F9E1-44DC-9A82-60CC939245FB}) (Version: 5.0.16 - Oracle Corporation)
Paquete de idioma de Microsoft Visual Studio 2010 Tools para Office Runtime (x86) - ESN (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x86) Language Pack - ESN) (Version: 10.0.50903 - Microsoft Corporation)
PMB (HKLM\...\{B6A98E5F-D6A7-46FB-9E9D-1F7BF443491C}) (Version: 5.5.02.12220 - Sony Corporation)
PMB VAIO Edition Guide (HKLM\...\{66081CDD-C1FE-415F-BB3A-F2622BA27461}) (Version: 1.6.00.06030 - Sony Corporation) Hidden
PMB VAIO Edition Plug-in (HKLM\...\{270380EB-8812-42E1-8289-53700DB840D2}) (Version: 1.6.00.06140 - Sony Corporation) Hidden
PMB VAIO Edition Plug-in (HKLM\...\{79ACFD18-AD87-480B-88E0-CF74DD9BBA63}) (Version: 1.5.10.05300 - Sony Corporation) Hidden
PMB VAIO Edition Plug-in (HKLM\...\{8356CB97-A48F-44CB-837A-A12838DC4669}) (Version: 1.6.00.06010 - Sony Corporation) Hidden
Prezi (HKLM\...\{63B8F931-2BF3-4D5D-9C28-E2EF88D83DFD}) (Version: 5.2.8 - Nombre de su organización)
Prezi Desktop (HKLM\...\{46439f3a-baca-4f7b-9b74-0d7719a73d09}) (Version: 6.18.6.0 - Prezi)
Prezi Desktop (HKLM\...\{82D58861-524D-43A1-BCC6-7C79871B0250}) (Version: 6.18.6.0 - Prezi) Hidden
Realtek High Definition Audio Driver (HKLM\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6167 - Realtek Semiconductor Corp.)
Realtek USB 2.0 Card Reader (HKLM\...\{96AE7E41-E34E-47D0-AC07-1091A8127911}) (Version: 6.1.7600.30127 - Realtek Semiconductor Corp.)
RealUpgrade 1.1 (HKLM\...\{28C2DED6-325B-4CC7-983A-1777C8F7FBAB}) (Version: 1.1.0 - RealNetworks, Inc.) Hidden
Remote Keyboard (HKLM\...\{08D7BC86-7358-464C-8AD0-0D84B5F0A0C9}) (Version: 1.1.1.03020 - Sony Corporation) Hidden
Remote Play with PlayStation 3 (HKLM\...\{5FA51AAF-23FE-42F4-A724-D79F85F41D4B}) (Version: 1.1.0.15070 - Sony Corporation) Hidden
SketchUp 2016 (HKLM\...\{4255B0DE-B5F3-4F12-97F1-D86665D06620}) (Version: 16.0.19911 - Trimble Navigation Limited)
Spotify (HKU\S-1-5-21-1759255200-2635567169-74197307-1001\...\Spotify) (Version: 1.1.15.448.g00fba0e3 - Spotify AB)
SSLx86 (HKLM\...\{63C43435-F428-42BA-8E7B-5848749D9262}) (Version: 1.0.0 - Sony Corporation ) Hidden
Sublime Text Build 3126 (HKLM\...\Sublime Text 3_is1) (Version:  - Sublime HQ Pty Ltd)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 15.1.9.0 - Synaptics Incorporated)
Teams Machine-Wide Installer (HKLM\...\{39AF0813-FA7B-4860-ADBE-93B9B214B914}) (Version: 1.2.0.22654 - Microsoft Corporation)
Transcend Recovery V1.17 (HKLM\...\Transcend Recovery_is1) (Version:  - )
Transferencias VAIO (HKLM\...\{5DDAFB4B-C52E-468A-9E23-3B0CEEB671BF}) (Version: 1.4.0.14230 - Sony Corporation)
UpdateService (HKLM\...\{E3AE96D6-E196-45B4-AF62-2B41998B9E37}) (Version: 1.0.0 - RealNetworks, Inc.) Hidden
VAIO - PMB VAIO Edition Guide (HKLM\...\InstallShield_{66081CDD-C1FE-415F-BB3A-F2622BA27461}) (Version: 1.6.00.06030 - Sony Corporation)
VAIO - PMB VAIO Edition Plug-in (HKLM\...\InstallShield_{270380EB-8812-42E1-8289-53700DB840D2}) (Version: 1.6.00.06140 - Sony Corporation)
VAIO - Teclado a distancia (HKLM\...\{7396FB15-9AB4-4B78-BDD8-24A9C15D2C65}) (Version: 1.0.1.03020 - Sony Corporation)
VAIO - Uso a distancia con PlayStation®3 (HKLM\...\{07441A52-E208-478A-92B7-5C337CA8C131}) (Version: 1.1.0.15070 - Sony Corporation)
VAIO Care (HKLM\...\{D531F5A4-18F6-4130-B9A4-9179D6E349FC}) (Version: 6.4.1.05290 - Sony Corporation) Hidden
VAIO Data Restore Tool (HKLM\...\{57B955CE-B5D3-495D-AF1B-FAEE0540BFEF}) (Version: 1.6.0.13140 - Sony Corporation)
VAIO Data Restore Tool (HKLM\...\{70EED410-697B-4193-A2CB-2F790F82B420}) (Version: 1.6.0.13140 - Sony Corporation) Hidden
VAIO Easy Connect (HKLM\...\{7C80D30A-AC02-4E3F-B95D-29F0E4FF937B}) (Version: 1.0.0.03050 - Sony Corporation)
VAIO Gate Default (HKLM\...\{B7546697-2A80-4256-A24B-1C33163F535B}) (Version: 2.4.0.03240 - Sony Corporation)
VAIO Hardware Diagnostics (HKLM\...\{C72E35E5-C5C6-4328-AD9A-BBCCC816A2E6}) (Version: 4.2.0.14280 - Sony Corporation) Hidden
VAIO Help and Support (HKLM\...\{F5248E24-F52C-4FD1-B76F-102460BAFD6B}) (Version: 14.00.0125 - Sony Corporation)
VAIO Messenger (HKLM\...\{0131D7EF-65FF-478F-8ABD-5ABEE24EC8EF}) (Version: 2.0.118.0 - DDNi) Hidden
VAIO Sample Contents (HKLM\...\{547C9EB4-4CA6-402F-9D1B-8BD30DC71E44}) (Version: 1.4.0.09010 - Sony Corporation)
VCCx86 (HKLM\...\{9B088046-8A01-4355-99DD-8530C022F682}) (Version: 1.0.0 - Sony Corporation) Hidden
VESx86 (HKLM\...\{3A94F54D-A8A4-4B82-B346-92B4D56A2708}) (Version: 1.0.0 - Sony Corporation) Hidden
Visor de Microsoft PowerPoint (HKLM\...\{95140000-00AF-0C0A-0000-0000000FF1CE}) (Version: 14.0.7015.1000 - Microsoft Corporation)
VIx86 (HKLM\...\{D17C2A58-E0EA-4DD7-A2D6-C448FD25B6F6}) (Version: 1.0.0 - Sony Corporation) Hidden
VLC media player (HKLM\...\VLC media player) (Version: 2.2.6 - VideoLAN)
VSNx86 (HKLM\...\{A49A517F-5332-4665-922C-6D9AD31ADD4F}) (Version: 1.0.0 - Sony Corporation) Hidden
VWSTx86 (HKLM\...\{B8991D99-88FD-41F2-8C32-DB70278D5C30}) (Version: 1.0.0 - Sony Corporation) Hidden
WIDCOMM Bluetooth Software (HKLM\...\{436E0B79-2CFB-4E5F-9380-E17C1B25D0C5}) (Version: 6.3.0.6300 - Broadcom Corporation)
Windows Live Essentials (HKLM\...\WinLiveSuite) (Version: 15.4.3508.1109 - Microsoft Corporation)
WinRAR 5.31 (32-bit) (HKLM\...\WinRAR archiver) (Version: 5.31.0 - win.rar GmbH)
Wondershare Filmora(Build 7.8.9) (HKLM\...\Wondershare Filmora_is1) (Version:  - Wondershare Software)
Wondershare Helper Compact 2.5.2 (HKLM\...\{5363CE84-5F09-48A1-8B6C-6BB590FFEDF2}_is1) (Version: 2.5.2 - Wondershare)

==================== Personalizado CLSID (Lista blanca): ==============

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)

CustomCLSID: HKU\S-1-5-21-1759255200-2635567169-74197307-1001_Classes\CLSID\{19A6E644-14E6-4A60-B8D7-DD20610A871D}\InprocServer32 -> C:\Users\MIGUEL\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.19178.2\x86\Microsoft.Teams.AddinLoader.dll (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1759255200-2635567169-74197307-1001_Classes\CLSID\{9356e2bb-6c9a-43c0-a771-5cacbdab6afe}\InprocServer32 -> C:\Users\MIGUEL\AppData\Roaming\HP Photo Creations\RLPNUpload.dll (RocketLife -> RocketLife)
CustomCLSID: HKU\S-1-5-21-1759255200-2635567169-74197307-1001_Classes\CLSID\{A10E0335-AFCA-4E7E-975F-CA30235FB29A}\InprocServer32 -> C:\Users\MIGUEL\AppData\Roaming\Visan\plugins\npRLSecurePluginLayer.dll (RocketLife -> RocketLife, LLP)
CustomCLSID: HKU\S-1-5-21-1759255200-2635567169-74197307-1001_Classes\CLSID\{CB965DF1-B8EA-49C7-BDAD-5457FDC1BF92}\InprocServer32 -> C:\Users\MIGUEL\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.19178.2\x86\Microsoft.Teams.AddinLoader.dll (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1759255200-2635567169-74197307-1001_Classes\CLSID\{cc05a616-ddb3-4cc0-9a21-dc0e9962b444}\InprocServer32 -> C:\Users\MIGUEL\AppData\Roaming\HP Photo Creations\ContentMan.dll (RocketLife -> RocketLife)
CustomCLSID: HKU\S-1-5-21-1759255200-2635567169-74197307-1001_Classes\CLSID\{ff280b55-14f1-49ae-b40f-15f5294ce630}\InprocServer32 -> C:\Users\MIGUEL\AppData\Roaming\HP Photo Creations\RocketEngine.dll (RocketLife -> Visan inc.)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2016-02-04] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers2: [AddtoVAIOGate] -> {6988D6F2-F24F-4732-8855-A39DB1AA1346} =>  -> Ningún archivo
ContextMenuHandlers3: [AddtoVAIOGate] -> {6988D6F2-F24F-4732-8855-A39DB1AA1346} =>  -> Ningún archivo
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2020-10-03] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\atiacmxx.dll [2011-05-24] (Advanced Micro Devices, Inc.) [Archivo no firmado]
ContextMenuHandlers6: [AddtoVAIOGate] -> {6988D6F2-F24F-4732-8855-A39DB1AA1346} =>  -> Ningún archivo
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2020-10-03] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2016-02-04] (win.rar GmbH -> Alexander Roshal)

==================== Codecs (Lista blanca) ====================

(Si una entrada es incluida en el fixlist, el elemento del registro será restaurado a su valor predeterminado o será eliminado. El archivo no será movido.)

HKLM\...\Drivers32: [VIDC.FMVC] => C:\Windows\system32\fmcodec.dll [77824 2008-08-18] (Fox Magic Software) [Archivo no firmado]
HKLM\...\Drivers32: [vidc.tscc] => C:\Windows\system32\tsccvid.dll [411480 2010-03-04] (TechSmith Corporation -> TechSmith Corporation)

==================== Accesos directos & WMI ========================

(Las entradas pueden ser listadas para ser restauradas o eliminadas.)

WMI:subscription\__FilterToConsumerBinding->CommandLineEventConsumer.Name=\"BVTConsumer\"",Filter="__EventFilter.Name=\"BVTFilter\"::
WMI:subscription\__EventFilter->BVTFilter::[Query => SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99]
WMI:subscription\CommandLineEventConsumer->BVTConsumer::[CommandLineTemplate => cscript KernCap.vbs][WorkingDirectory => C:\\tools\\kernrate]

==================== Módulos cargados (Lista blanca) =============

2011-05-24 23:46 - 2011-05-24 23:46 - 000733127 _____ (Advanced Micro Devices, Inc.) [Archivo no firmado] C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\atiacmxx.dll
2011-05-24 23:46 - 2011-05-24 23:46 - 000004608 _____ (Advanced Micro Devices, Inc.) [Archivo no firmado] C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\atiamesp.dll
2011-08-30 23:05 - 2011-08-30 23:05 - 000199983 _____ (Apple Inc.) [Archivo no firmado] C:\Program Files\Bonjour\mdnsNSP.dll
2010-07-29 18:45 - 2010-07-29 18:45 - 000341735 _____ (Broadcom Corporation.) [Archivo no firmado] C:\Program Files\WIDCOMM\Bluetooth Software\btosif.dll
2020-10-03 08:45 - 2020-10-03 08:44 - 001239703 _____ (Igor Pavlov) [Archivo no firmado] C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\7z.dll
2010-09-21 14:03 - 2010-09-21 14:03 - 000223559 _____ (Microsoft Corp.) [Archivo no firmado] C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL
2020-09-30 06:59 - 2020-09-30 06:59 - 000069337 ____N (Microsoft Corporation) [Archivo no firmado] C:\Program Files\Common Files\System\symsrv.dll
2020-01-14 16:50 - 2019-12-16 18:34 - 000379335 _____ (Microsoft Corporation) [Archivo no firmado] C:\Program Files\Internet Explorer\ieproxy.dll
2013-03-26 10:10 - 2013-03-26 10:10 - 000097280 _____ (Microsoft Corporation) [Archivo no firmado] C:\Windows\WinSxS\x86_microsoft.vc80.atl_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d1cb102c435421de\ATL80.DLL
2013-03-26 10:10 - 2013-03-26 10:10 - 001101824 _____ (Microsoft Corporation) [Archivo no firmado] C:\Windows\WinSxS\x86_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_cbf5e994470a1a8f\MFC80.DLL
2013-03-26 10:10 - 2013-03-26 10:10 - 001093120 _____ (Microsoft Corporation) [Archivo no firmado] C:\Windows\WinSxS\x86_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_cbf5e994470a1a8f\MFC80U.DLL
2011-08-18 12:19 - 2010-11-16 18:34 - 000045056 _____ (Sony Corporation) [Archivo no firmado] C:\Program Files\Sony\VAIO Gate\VAIOGateDesktopShellExt.dll

==================== Alternate Data Streams (Lista blanca) ========

(Si una entrada es incluida en el fixlist, solamente los ADS serán eliminados.)

AlternateDataStreams: C:\ProgramData\Reprise:wupeogjxldtlfudivq`qsp`27hfm [0]

==================== Modo Seguro (Lista blanca) ==================

(Si una entrada es incluida en el fixlist, será eliminada del registro. El "AlternateShell" será restaurado.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mbamchameleon => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMSwissArmy => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mbamchameleon => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMSwissArmy => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Option => "OptionValue"="1"

==================== Asociación (Lista blanca) =================

==================== Internet Explorer (Versión 11) (Lista blanca) ==========

HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://go.microsoft.com/fwlink/?LinkID=617910&ResetID=131613650170251101&GUID=00000000-0000-0000-0000-000000000000
HKU\S-1-5-21-1759255200-2635567169-74197307-1001\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://prodigy.msn.com/
HKU\S-1-5-21-1759255200-2635567169-74197307-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://go.microsoft.com/fwlink/?LinkID=617910&ResetID=131613650170563102&GUID=00000000-0000-0000-0000-000000000000
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1
SearchScopes: HKLM -> {1b31c9d2-7135-442b-bb93-7c002172adc6} URL = hxxp://www.bing.com/search?q={searchTerms}&form=SNYVDF&pc=MASA&src=IE-SearchBox
SearchScopes: HKLM -> {8acdd076-7141-4655-8487-c35174c89c93} URL = 
SearchScopes: HKLM -> {f79e5d1c-5148-469e-9f98-a11d8d7863f4} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSERBM&pc=MSERT1
SearchScopes: HKU\S-1-5-21-1759255200-2635567169-74197307-1001 -> DefaultScope {CBF352E7-50CC-4BC6-B3C6-70E6F91C68BC} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1
SearchScopes: HKU\S-1-5-21-1759255200-2635567169-74197307-1001 -> {CBF352E7-50CC-4BC6-B3C6-70E6F91C68BC} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1
SearchScopes: HKU\S-1-5-21-1759255200-2635567169-74197307-1001 -> {f79e5d1c-5148-469e-9f98-a11d8d7863f4} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSERBM&pc=MSERT1
BHO: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2010-11-15] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\Office16\OCHelper.dll [2019-09-08] (Microsoft Corporation -> Microsoft Corporation)
BHO: SSVHelper Class -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre6\bin\ssv.dll [2011-08-18] (Sun Microsystems, Inc. -> Sun Microsystems, Inc.)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21] (Microsoft Corporation -> Microsoft Corp.)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\root\Office16\URLREDIR.DLL [2019-10-04] (Microsoft Corporation -> Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre6\bin\jp2ssv.dll [2011-08-18] (Sun Microsystems, Inc. -> Sun Microsystems, Inc.)
Toolbar: HKU\S-1-5-21-1759255200-2635567169-74197307-1001 -> Sin Nombre - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} -  Ningún archivo
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_03-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2019-10-04] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2019-10-04] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2019-10-04] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2019-10-04] (Microsoft Corporation -> Microsoft Corporation)
Filter: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX86\Microsoft Shared\Office16\MSOXMLMF.DLL [2019-09-08] (Microsoft Corporation) [Archivo no firmado]
StartMenuInternet: IEXPLORE.EXE - iexplore.exe

(Si una entrada es incluida en el fixlist, será eliminada del registro.)

IE trusted site: HKU\S-1-5-21-1759255200-2635567169-74197307-1001\...\sharepoint.com -> hxxps://conalepmexedu-files.sharepoint.com

==================== Hosts contenido: =========================

(Si es necesario, la directiva Hosts: puede ser incluida en el fixlist para restablecer Hosts.)

2009-07-13 21:04 - 2020-10-01 12:56 - 000001850 _____ C:\Windows\system32\drivers\etc\hosts
107.178.255.88 ssl.goo.88 partner.googleadservices.com
107.178.255.88 ssl.goo.88 partner.googleadservices.com
127.0.0.1                   activate.adobe.com
127.0.0.1                   practivate.adobe.com
127.0.0.1                   lmlicenses.wip4.adobe.com
127.0.0.1                   lm.licenses.adobe.com
127.0.0.1                   na1r.services.adobe.com
127.0.0.1                   hlrcv.stage.adobe.com
127.0.0.1                   bandicam.com
127.0.0.1                   ssl.bandisoft.com
0.0.0.0 keystone.mwbsys.com
127.0.0.1                   systweak.com
127.0.0.1                   updateservice1.systweak.com
127.0.0.1                   www.systweak.com
127.0.0.1                   systemspeedup.systweak.com
127.0.0.1                   systweak.com/STCheckGenuineness

==================== Otras Áreas ===========================

(Actualmente no existe una corrección automática para esta sección.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files\Common Files\Microsoft Shared\Windows Live;C:\Program Files\AMD APP\bin\x86;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files\ATI Technologies\ATI.ACE\Core-Static;C:\Program Files\WIDCOMM\Bluetooth Software\;C:\Program Files\Sony\VAIO Startup Setting Tool;C:\Program Files\Windows Live\Shared;C:\Program Files\Aspel\Aspel-CAJA 3.5\
HKU\S-1-5-21-1759255200-2635567169-74197307-1001\Control Panel\Desktop\\Wallpaper -> %windir%\web\wallpaper\windows\img0.jpg
DNS Servers: El medio no está conectado a internet.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)

==================== MSCONFIG/TASK MANAGER elementos deshabilitados ==

(Si una entrada es incluida en el fixlist, será eliminada.)

MSCONFIG\startupreg: Adobe ARM => "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
MSCONFIG\startupreg: Adobe Reader Speed Launcher => "C:\Program Files\Adobe\Reader 10.0\Reader\Reader_sl.exe"

==================== Reglas de firewall (Lista blanca) ================

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)

FirewallRules: [{3DE90089-0054-4E1B-B747-22DF002A6562}] => (Allow) C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{C6D6B0C9-1157-4264-8AB3-F7A06F4D851B}] => (Allow) C:\Program Files\Windows Live\Contacts\wlcomm.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{901F873C-1C3D-4E20-A73B-2BCC00E5BC2B}] => (Allow) LPort=2869
FirewallRules: [{406E87F7-82C1-4276-92AF-41C0EDA38C76}] => (Allow) LPort=1900
FirewallRules: [{3F81265A-7B68-44E1-8668-D6D9EC2D56DB}] => (Allow) C:\Program Files\Windows Live\Messenger\msnmsgr.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{0F7CA81B-9112-4D60-90F0-73CA91F5C7DF}] => (Allow) C:\Program Files\Windows Live\Mesh\MOE.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{C60BF939-77C9-4C92-930F-0DD23C562554}] => (Allow) LPort=11050
FirewallRules: [{F1FD5583-FBD4-4EE9-8944-FF4E11156E85}] => (Allow) LPort=3050
FirewallRules: [{8A63A3C9-FFC9-4A2C-B06F-C3685A1FDDC0}] => (Allow) C:\Program Files\Common Files\Aspel\Aspel-AL\avisoal.exe (ASPEL DE MEXICO S.A. DE C.V. -> Aspel de México, S.A. de C.V.) [Archivo no firmado]
FirewallRules: [{F776144F-D587-4843-A48A-5B4CC29D2720}] => (Allow) C:\Program Files\Common Files\Aspel\Aspel-AL\AspelAL.exe (ASPEL DE MEXICO S.A. DE C.V. -> Aspel de México S.A. de C.V.) [Archivo no firmado]
FirewallRules: [{DF16C98B-4FD4-4D52-B8B0-1694EB81EC3D}] => (Allow) C:\Program Files\Common Files\Aspel\Aspel-AL\avisoal.exe (ASPEL DE MEXICO S.A. DE C.V. -> Aspel de México, S.A. de C.V.) [Archivo no firmado]
FirewallRules: [{2BFC618C-FBA6-48B0-BD0A-AD20D456F04B}] => (Allow) C:\Program Files\Common Files\Aspel\Aspel-AL\AspelAL.exe (ASPEL DE MEXICO S.A. DE C.V. -> Aspel de México S.A. de C.V.) [Archivo no firmado]
FirewallRules: [TCP Query User{0ADA5C56-1896-4F7D-AD9C-4108C4341568}C:\program files\ares\ares.exe] => (Allow) C:\program files\ares\ares.exe => Ningún archivo
FirewallRules: [UDP Query User{11EB2F4A-1C9D-4D18-B424-34795CC75CE7}C:\program files\ares\ares.exe] => (Allow) C:\program files\ares\ares.exe => Ningún archivo
FirewallRules: [TCP Query User{1AD69197-2359-4EF1-8D24-3A742E19B10E}C:\program files\ares\ares.exe] => (Block) C:\program files\ares\ares.exe => Ningún archivo
FirewallRules: [UDP Query User{9D141907-1602-4377-B522-7184E8D66571}C:\program files\ares\ares.exe] => (Block) C:\program files\ares\ares.exe => Ningún archivo
FirewallRules: [{D44EAEE3-2F3A-449D-BFEB-A2F4118DF681}] => (Allow) C:\Windows\System32\ServLicASP.exe (Aspel de México S.A. de C.V.) [Archivo no firmado]
FirewallRules: [{D2D4FBC0-83AC-4005-A3F7-DEDF9B1BFF3E}] => (Allow) C:\Windows\System32\ServLicASP.exe (Aspel de México S.A. de C.V.) [Archivo no firmado]
FirewallRules: [{0A9AAE64-EFAF-4CCE-9E28-E0545E50894D}] => (Allow) C:\Program Files\Firebird\Firebird_2_5\bin\fbserver.exe (Firebird Project) [Archivo no firmado]
FirewallRules: [{ADB7EF51-B68B-40C4-A63B-00FF1ABBD724}] => (Allow) C:\Program Files\Firebird\Firebird_2_5\bin\fbserver.exe (Firebird Project) [Archivo no firmado]
FirewallRules: [TCP Query User{3B0B9EF8-C1D0-414E-A3C0-AB3F6E99923D}C:\program files\common files\aspel\aspel-al\avisoal.exe] => (Block) C:\program files\common files\aspel\aspel-al\avisoal.exe (ASPEL DE MEXICO S.A. DE C.V. -> Aspel de México, S.A. de C.V.) [Archivo no firmado]
FirewallRules: [UDP Query User{F577014C-25FF-4D7B-9D2C-1EB97683D292}C:\program files\common files\aspel\aspel-al\avisoal.exe] => (Block) C:\program files\common files\aspel\aspel-al\avisoal.exe (ASPEL DE MEXICO S.A. DE C.V. -> Aspel de México, S.A. de C.V.) [Archivo no firmado]
FirewallRules: [{136E7BA0-E833-4E34-8B1B-B663B47B7C64}] => (Allow) C:\Users\COMERCIALISADORA\AppData\Local\Chromium\Application\chrome.exe (The Chromium Authors) [Archivo no firmado]
FirewallRules: [{220DCDBC-62A2-4A40-B59A-92F1EE3B9B34}] => (Allow) C:\Users\MIGUEL\AppData\Local\Chromium\Application\chrome.exe => Ningún archivo
FirewallRules: [TCP Query User{11E1EC8C-C50E-48A3-A813-FB16651B6BB5}C:\users\miguel\appdata\roaming\spotify\spotify.exe] => (Block) C:\users\miguel\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [UDP Query User{8FC6D84B-4762-414A-A954-ACB4E7213C1B}C:\users\miguel\appdata\roaming\spotify\spotify.exe] => (Block) C:\users\miguel\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{88501A04-F7B5-45C0-98E0-F7E37E8973E6}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{56D056A2-7193-4B7E-AB5B-C83FAF5B4C84}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{723943D8-131A-41CB-AB46-09D0079CEF79}] => (Allow) C:\Program Files\HP\HP DeskJet 2130 series\Bin\USBSetup.exe (HP Inc.) [Archivo no firmado]
FirewallRules: [{CD78243D-15C8-4BC8-8C60-B980DA498591}] => (Allow) C:\Program Files\HP\HP DeskJet 2130 series\Bin\HPNetworkCommunicatorCom.exe (Hewlett Packard -> HP Inc.)
FirewallRules: [{C4721657-D7C0-45A1-A94C-067C45312EAD}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{9E2F8FCA-2211-4071-9FBD-580665E7928E}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{EA24F970-0691-48C0-8629-9846289E89C8}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{1D5E3712-5AFC-4C4F-9086-2C4112690BCC}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc.) [Archivo no firmado]
FirewallRules: [{5715D3A0-D466-4CF8-94AE-A62C6A601E51}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc.) [Archivo no firmado]
FirewallRules: [{33505E57-284C-43AD-979F-EB64957934E6}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe => Ningún archivo

==================== Puntos de Restauración =========================

06-02-2020 18:55:04 Windows Update
31-03-2020 22:22:28 Windows Update
03-04-2020 20:14:48 Windows Update
04-04-2020 15:27:52 Windows Update
06-04-2020 21:21:35 Windows Update
07-04-2020 16:45:25 Windows Update
07-04-2020 20:06:38 Windows Update
30-04-2020 15:52:30 Windows Update
03-05-2020 10:53:15 Windows Update
05-05-2020 15:18:54 Windows Update
05-05-2020 22:31:23 Windows Update
08-05-2020 22:39:01 Windows Update
09-05-2020 21:30:02 Windows Update
27-05-2020 19:14:28 Windows Update
27-05-2020 20:19:25 Windows Update
30-05-2020 15:16:53 Windows Update
24-07-2020 16:09:28 Windows Update
17-09-2020 08:05:21 Windows Update
17-09-2020 12:01:05 Windows Update
17-09-2020 15:31:12 Windows Update
17-09-2020 15:47:15 Se ha instalado DirectX
17-09-2020 16:00:24 Windows Update
18-09-2020 12:25:09 Windows Update
20-09-2020 00:18:31 Windows Update
23-09-2020 08:40:05 Windows Update
23-09-2020 09:56:00 Operación de restauración
24-09-2020 13:52:45 Windows Update
29-09-2020 09:55:42 Windows Update
30-09-2020 07:14:38 Windows Update
01-10-2020 13:29:45 Windows Update
02-10-2020 07:38:11 Windows Update

==================== Dispositivos defectuosos en el Administrador de dispositivos ============

Name: Security Processor Loader Driver
Description: Security Processor Loader Driver
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer: 
Service: spldr
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.


==================== Errores del registro de eventos: ========================

Errores de aplicación:
==================
Error: (10/03/2020 08:14:29 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: No se pudo reactivar el filtro de eventos con la consulta "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" en el espacio de nombres "//./root/CIMV2" por el error 0x80041003. Los eventos no se podrán entregar a través de este filtro hasta que se corrija este problema.

Error: (10/02/2020 07:50:12 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: No se pudo reactivar el filtro de eventos con la consulta "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" en el espacio de nombres "//./root/CIMV2" por el error 0x80041003. Los eventos no se podrán entregar a través de este filtro hasta que se corrija este problema.

Error: (10/02/2020 07:46:59 AM) (Source: MsiInstaller) (EventID: 11309) (User: NT AUTHORITY)
Description: Product: Microsoft .NET Framework 4.8 -- Error 1309.Error reading from file: C:\7922eda46133a797976d\SetupEngine.dll.  System error 3.  Verify that the file exists and that you can access it.

Error: (10/02/2020 07:46:59 AM) (Source: MsiInstaller) (EventID: 11309) (User: NT AUTHORITY)
Description: Product: Microsoft .NET Framework 4.8 -- Error 1309.Error reading from file: C:\7922eda46133a797976d\SetupEngine.dll.  System error 3.  Verify that the file exists and that you can access it.

Error: (10/02/2020 07:46:58 AM) (Source: MsiInstaller) (EventID: 11309) (User: NT AUTHORITY)
Description: Product: Microsoft .NET Framework 4.8 -- Error 1309.Error reading from file: C:\7922eda46133a797976d\SetupEngine.dll.  System error 3.  Verify that the file exists and that you can access it.

Error: (10/02/2020 07:46:57 AM) (Source: MsiInstaller) (EventID: 11309) (User: NT AUTHORITY)
Description: Product: Microsoft .NET Framework 4.8 -- Error 1309.Error reading from file: C:\7922eda46133a797976d\SetupEngine.dll.  System error 3.  Verify that the file exists and that you can access it.

Error: (10/02/2020 07:46:56 AM) (Source: MsiInstaller) (EventID: 11309) (User: NT AUTHORITY)
Description: Product: Microsoft .NET Framework 4.8 -- Error 1309.Error reading from file: C:\7922eda46133a797976d\SetupEngine.dll.  System error 3.  Verify that the file exists and that you can access it.

Error: (10/02/2020 07:46:55 AM) (Source: MsiInstaller) (EventID: 11309) (User: NT AUTHORITY)
Description: Product: Microsoft .NET Framework 4.8 -- Error 1309.Error reading from file: C:\7922eda46133a797976d\SetupEngine.dll.  System error 3.  Verify that the file exists and that you can access it.


Errores del sistema:
=============
Error: (10/03/2020 12:12:59 PM) (Source: DCOM) (EventID: 10005) (User: )
Description: Error de DCOM "1084" al intentar iniciar el servicio VSS con argumentos "" para ejecutar el servidor:
{E579AB5F-1CC4-44B4-BED9-DE0991FF0623}

Error: (10/03/2020 12:12:35 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: El servicio Servicio de lista de redes depende del servicio Reconocimiento de ubicación de red, el cual no pudo iniciarse debido al siguiente error: 
No se puede iniciar el servicio o grupo de dependencia.

Error: (10/03/2020 08:54:57 AM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: El servicio Servicio de lista de redes depende del servicio Reconocimiento de ubicación de red, el cual no pudo iniciarse debido al siguiente error: 
No se puede iniciar el servicio o grupo de dependencia.

Error: (10/03/2020 08:54:11 AM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: El servicio Servicio de lista de redes depende del servicio Reconocimiento de ubicación de red, el cual no pudo iniciarse debido al siguiente error: 
No se puede iniciar el servicio o grupo de dependencia.

Error: (10/03/2020 08:53:03 AM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: El servicio Servicio de lista de redes depende del servicio Reconocimiento de ubicación de red, el cual no pudo iniciarse debido al siguiente error: 
No se puede iniciar el servicio o grupo de dependencia.

Error: (10/03/2020 08:51:54 AM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: El servicio Servicio de lista de redes depende del servicio Reconocimiento de ubicación de red, el cual no pudo iniciarse debido al siguiente error: 
No se puede iniciar el servicio o grupo de dependencia.

Error: (10/03/2020 08:51:54 AM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: El servicio Servicio de lista de redes depende del servicio Reconocimiento de ubicación de red, el cual no pudo iniciarse debido al siguiente error: 
No se puede iniciar el servicio o grupo de dependencia.

Error: (10/03/2020 08:51:54 AM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: El servicio Servicio de lista de redes depende del servicio Reconocimiento de ubicación de red, el cual no pudo iniciarse debido al siguiente error: 
No se puede iniciar el servicio o grupo de dependencia.


Windows Defender:
===================================
Date: 2018-01-25 08:41:43.456
Description: 
Windows Defender detectó spyware u otro software potencialmente no deseado.
Para obtener más información, consulte lo siguiente:
http://go.microsoft.com/fwlink/?linkid=37020&name=BrowserModifier:Win32/Foxiebro&threatid=235004
Nombre:BrowserModifier:Win32/Foxiebro
Id.:235004
Gravedad:Alta
Categoría:Modificador de explorador
Ruta de acceso encontrada:bho:HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\BROWSER HELPER OBJECTS\{78549bde-b964-4d2a-b7b1-c4ac15ddff64};bho:HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\BROWSER HELPER OBJECTS\{d99a4ec9-00bd-4fe4-85a5-4db018351265};clsid:HKLM\SOFTWARE\CLASSES\CLSID\{78549bde-b964-4d2a-b7b1-c4ac15ddff64};clsid:HKLM\SOFTWARE\CLASSES\CLSID\{d99a4ec9-00bd-4fe4-85a5-4db018351265};file:C:\Program Files\Round World\RoundWorldbho.dll;file:C:\Program Files\SaltarSmart\SaltarSmartBHO.dll;ieaddon:[email protected]\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\SETTINGS\{78549BDE-B964-4D2A-B7B1-C4AC15DDFF64};ieaddon:[email protected]\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\SETTINGS\{D99A4EC9-00BD-4FE4-85A5-4DB018351265};ieaddon:[email protected]\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{78549BDE-B964-4D2A-B7B1-C4AC15DDFF64};ieaddon:[email protected]\SOFTWARE\MICROSOF
Tipo de detección:Concreto
Origen de detección:Protección en tiempo real
Estado:Desconocido
Usuario:\
Nombre de proceso:

Date: 2018-01-25 08:26:25.009
Description: 
Windows Defender detectó spyware u otro software potencialmente no deseado.
Para obtener más información, consulte lo siguiente:
http://go.microsoft.com/fwlink/?linkid=37020&name=BrowserModifier:Win32/Foxiebro&threatid=235004
Nombre:BrowserModifier:Win32/Foxiebro
Id.:235004
Gravedad:Alta
Categoría:Modificador de explorador
Ruta de acceso encontrada:file:C:\Program Files\Round World\RoundWorldbho.dll;file:C:\Program Files\SaltarSmart\SaltarSmartBHO.dll
Tipo de detección:Concreto
Origen de detección:Protección en tiempo real
Estado:Desconocido
Usuario:\
Nombre de proceso:

Date: 2017-09-28 23:48:29.420
Description: 
El examen de Windows Defender se detuvo antes de completarse.
Id. de examen:{C959D9F7-B20E-4792-B112-F48A95786B51}
Tipo de examen:AntiSpyware
Parámetros de examen:Examen rápido
Usuario:MIGUEL-VAIO\MIGUEL

Date: 2017-03-30 17:44:17.929
Description: 
Windows Defender detectó spyware u otro software potencialmente no deseado.
Para obtener más información, consulte lo siguiente:
http://go.microsoft.com/fwlink/?linkid=37020&name=Adware:Win32/Bayads&threatid=222698
Nombre:Adware:Win32/Bayads
Id.:222698
Gravedad:Alta
Categoría:Adware
Ruta de acceso encontrada:file:C:\Users\MIGUEL\AppData\Local\Pay-By-Ads\Yahoo! Search\1.3.19.2\dsrlte.exe;process:pid:6836;process:pid:6836,ProcessStart:131353887025332152;regkey:[email protected]\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN\\Yahoo! Search;runkey:[email protected]\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN\\Yahoo! Search
Tipo de detección:Concreto
Origen de detección:Protección en tiempo real
Estado:Desconocido
Usuario:\
Nombre de proceso:

Date: 2017-03-30 17:31:52.065
Description: 
Windows Defender detectó spyware u otro software potencialmente no deseado.
Para obtener más información, consulte lo siguiente:
http://go.microsoft.com/fwlink/?linkid=37020&name=Adware:Win32/Bayads&threatid=222698
Nombre:Adware:Win32/Bayads
Id.:222698
Gravedad:Alta
Categoría:Adware
Ruta de acceso encontrada:file:C:\Users\MIGUEL\AppData\Local\Pay-By-Ads\Yahoo! Search\1.3.19.2\dsrlte.exe;process:pid:6836
Tipo de detección:Concreto
Origen de detección:Protección en tiempo real
Estado:Desconocido
Usuario:\
Nombre de proceso:

Date: 2020-09-18 22:40:29.347
Description: 
Windows Defender encontró un error al intentar cargar firmas e intentará restablecer un conjunto de firmas conocidas.
Firmas intentadas:Copia de seguridad
Código de error:0x800700c1
Descripción de error:Windows Defender no es una aplicación Win32 válida. 
Versión de firma:1.315.12.0
Versión de motor:1.1.17000.7

Date: 2020-09-18 22:40:28.364
Description: 
Windows Defender encontró un error al intentar actualizar las firmas.
Nueva versión de firma:1.315.271.0
Versión de firma anterior:
Origen de actualización:Carpeta de actualizaciones de firmas
Tipo de firma:AntiSpyware
Tipo de actualización:Completa
Usuario:NT AUTHORITY\SYSTEM
Versión de motor actual:1.1.17400.5
Versión de motor anterior:
Código de error:0x80070666
Descripción de error:Ya está instalada otra versión de este producto. La instalación de esta versión no puede continuar. Para configurar o quitar la versión existente de este producto, use Agregar o quitar programas del Panel de control. 

Date: 2020-09-18 22:40:28.364
Description: 
Windows Defender encontró un error al intentar actualizar el motor.
Nueva versión de motor:1.1.17400.5
Versión de motor anterior:
Origen de actualización:Carpeta de actualizaciones de firmas
Usuario:NT AUTHORITY\SYSTEM
Código de error:0x80070666
Descripción de error:Ya está instalada otra versión de este producto. La instalación de esta versión no puede continuar. Para configurar o quitar la versión existente de este producto, use Agregar o quitar programas del Panel de control. 

Date: 2020-09-18 22:39:10.832
Description: 
Windows Defender encontró un error al intentar cargar firmas e intentará restablecer un conjunto de firmas conocidas.
Firmas intentadas:Copia de seguridad
Código de error:0x800700c1
Descripción de error:Windows Defender no es una aplicación Win32 válida. 
Versión de firma:1.315.12.0
Versión de motor:1.1.17000.7

Date: 2020-09-18 22:39:09.740
Description: 
Windows Defender encontró un error al intentar actualizar las firmas.
Nueva versión de firma:1.315.271.0
Versión de firma anterior:
Origen de actualización:Carpeta de actualizaciones de firmas
Tipo de firma:AntiSpyware
Tipo de actualización:Completa
Usuario:NT AUTHORITY\SYSTEM
Versión de motor actual:1.1.17400.5
Versión de motor anterior:
Código de error:0x80070666
Descripción de error:Ya está instalada otra versión de este producto. La instalación de esta versión no puede continuar. Para configurar o quitar la versión existente de este producto, use Agregar o quitar programas del Panel de control. 

==================== Información de la memoria =========================== 

BIOS: Insyde Corp. R0180Z7 06/13/2011
Placa base: Sony Corporation VAIO
Procesador: AMD E-450 APU with Radeon(tm) HD Graphics
Porcentaje de memoria en uso: 69%
RAM física total: 1642.9 MB
RAM física disponible: 493.47 MB
Virtual total: 3285.8 MB
Virtual disponible: 2226.91 MB

==================== Unidades ================================

Drive c: () (Fixed) (Total:456.5 GB) (Free:342.09 GB) NTFS
Drive e: (UUI) (Removable) (Total:3.63 GB) (Free:2.53 GB) FAT32

\\?\Volume{5f30761f-c9b2-11e0-a52c-806e6f6e6963}\ (System Reserved) (Fixed) (Total:0.1 GB) (Free:0.07 GB) NTFS
\\?\Volume{5f30761e-c9b2-11e0-a52c-806e6f6e6963}\ (Recovery) (Fixed) (Total:9.16 GB) (Free:1.12 GB) NTFS

==================== MBR & Tabla de particiones ====================

==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 465.8 GB) (Disk ID: C6A61084)
Partition 1: (Not Active) - (Size=9.2 GB) - (Type=27)
Partition 2: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=456.5 GB) - (Type=07 NTFS)

==========================================================
Disk: 1 (Size: 3.6 GB) (Disk ID: 001FF20C)
Partition 1: (Active) - (Size=3.6 GB) - (Type=0C)

==================== Final  Addition.txt =======================

Reporte Addition

Resultados del Análisis Adicional de Farbar Recovery Scan Tool (x86) Versión: 20-09-2020
Ejecutado por MIGUEL (03-10-2020 12:16:24)
Ejecutado desde C:\Users\MIGUEL\Desktop
Microsoft Windows 7 Starter  Service Pack 1 (X86) (2012-10-04 05:55:32)
Modo de Inicio: Safe Mode (minimal)
==========================================================


==================== Cuentas: =============================

Administrador (S-1-5-21-1759255200-2635567169-74197307-500 - Administrator - Disabled)
COMERCIALISADORA (S-1-5-21-1759255200-2635567169-74197307-1002 - Administrator - Enabled) => C:\Users\COMERCIALISADORA
FAM LC (S-1-5-21-1759255200-2635567169-74197307-1003 - Limited - Enabled) => C:\Users\FAM LC
Invitado (S-1-5-21-1759255200-2635567169-74197307-501 - Limited - Enabled) => C:\Users\Invitado
MIGUEL (S-1-5-21-1759255200-2635567169-74197307-1001 - Administrator - Enabled) => C:\Users\MIGUEL

==================== Centro de Seguridad ========================

(Si una entrada es incluida en el fixlist, será eliminada.)

AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Programas instalados ======================

(Solo los programas de adware con indicador "Oculto", pueden ser añadidos al fixlist para hacerlos visibles. Los programas adware deben ser desinstalados manualmente.)

Adobe Flash Player 10 Plugin (HKLM\...\{E6725026-A650-449C-897B-D6B7A5EEA058}) (Version: 10.2.152.26 - Adobe Systems Incorporated)
Adobe Flash Player 11 ActiveX (HKLM\...\Adobe Flash Player ActiveX) (Version: 11.4.402.278 - Adobe Systems Incorporated)
Adobe Reader X MUI (HKLM\...\{AC76BA86-7AD7-FFFF-7B44-AA0000000001}) (Version: 10.0.0 - Adobe Systems Incorporated)
AhnLab Online Security (Personal) (HKLM\...\AhnLab Online Security) (Version:  - AhnLab, Inc)
ArcSoft Magic-i Visual Effects 2 (HKLM\...\{61438020-DDD4-42FA-99A2-50225441980A}) (Version: 2.0.1.142 - ArcSoft)
ArcSoft WebCam Companion 4 (HKLM\...\{C793AD32-2BB8-4CC4-ABD3-A1469C21593C}) (Version: 4.0.21.392 - ArcSoft)
Aspel-CAJA 3.5 (HKLM\...\{74BADEF2-EB6C-474A-A390-84507909EFAF}) (Version: 3.50.0 - Aspel)
ATI Catalyst Install Manager (HKLM\...\{9F8E6025-423A-2A9F-3951-71E9BE2A85E7}) (Version: 3.0.829.0 - ATI Technologies, Inc.)
aTube Catcher (HKLM\...\aTube Catcher) (Version: 2.9.1347 - DsNET Corp)
aTube Catcher versión 3.8 (HKLM\...\{D43B360E-722D-421B-BC77-20B9E0F8B6CD}_is1) (Version: 3.8 - DsNET Corp)
Avidemux 2.6 - 32 bits (32-bit) (HKLM\...\Avidemux 2.6 - 32 bits) (Version: 2.6.14.160917 - )
Bonjour (HKLM\...\{79155F2B-9895-49D7-8612-D92580E0DE5B}) (Version: 3.0.0.10 - Apple Inc.)
Camtasia Studio 7 (HKLM\...\{53FA9A9F-3C19-4D43-AD6B-DEF365D469BA}) (Version: 7.0.0 - TechSmith Corporation)
CCleaner (HKLM\...\CCleaner) (Version: 5.68 - Piriform)
CDBurnerXP (HKLM\...\{7E265513-8CDA-4631-B696-F40D983F3B07}_is1) (Version: 4.5.5.5571 - CDBurnerXP)
Control ActiveX de Windows Live Mesh para conexiones remotas (HKLM\...\{04668DF2-D32F-4555-9C7E-35523DCD6544}) (Version: 15.4.5722.2 - Microsoft Corporation)
D3DX10 (HKLM\...\{E09C4DB7-630C-4F06-A631-8EA7239923AF}) (Version: 15.4.2368.0902 - Microsoft) Hidden
Dev-C++ 5 beta 9 release (4.9.9.2) (HKLM\...\Dev-C++) (Version:  - )
Epub Reader for Windows 3.4 (HKLM\...\Epub Reader for Windows_is1) (Version:  - )
Estudio para la mejora del producto HP DeskJet 2130 series (HKLM\...\{A289DA34-462C-41AB-B4AA-145FA284DC12}) (Version: 40.11.1124.17107 - HP Inc.)
Firebird 2.5.0.26074 (Win32) (HKLM\...\FBDBServer_2_5_is1) (Version:  - Firebird Project)
Galería fotográfica de Windows Live (HKLM\...\{E85A4EFC-82F2-4CEE-8A8E-62FDAD353A66}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
GIMP 2.4.0-rc3 (HKLM\...\WinGimp-2.0_is1) (Version:  - )
Google Update Helper (HKLM\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.35.341 - Google LLC) Hidden
Google Update Helper (HKLM\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.25.11 - Google Inc.) Hidden
Hacer clic y ejecutar de Microsoft Office 2010 (HKLM\...\{90140000-006D-0C0A-0000-0000000FF1CE}) (Version: 14.0.4763.1000 - Microsoft Corporation) Hidden
Hacer clic y ejecutar de Microsoft Office 2010 (HKLM\...\Office14.Click2Run) (Version: 14.0.4763.1000 - Microsoft Corporation)
HP DeskJet 2130 series Ayuda (HKLM\...\{0ABC47CC-14F8-4D01-B877-4203635C0B06}) (Version: 35.0.0 - Hewlett Packard)
HP DeskJet 2130 series Software básico del dispositivo (HKLM\...\{32468295-0962-4094-A8FE-FB9DEABB125B}) (Version: 40.11.1124.17107 - HP Inc.)
HP Dropbox Plugin (HKLM\...\{7BEBB31E-58C4-4FA5-9AD1-ACBE32BF0D12}) (Version: 36.0.41.58587 - HP)
HP ePrint SW (HKLM\...\{95f692fb-34a0-4fcb-a980-e14f6e075691}) (Version: 5.5.22560 - HP Inc.)
HP Google Drive Plugin (HKLM\...\{63BD9C12-5CE9-4294-B1C3-A09F971FAFB5}) (Version: 36.0.41.58587 - HP)
HP Photo Creations (HKU\S-1-5-21-1759255200-2635567169-74197307-1001\...\HP Photo Creations) (Version: 1.0.0.22192 - HP)
Java DB 10.2.2.0 (HKLM\...\{0ECB59D5-A3FC-4D61-AD3B-6CE679B3F852}) (Version: 10.2.2.0 - Sun Microsystems, Inc)
Java(TM) 6 Update 22 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83216022FF}) (Version: 6.0.220 - Oracle)
Java(TM) 6 Update 3 (HKLM\...\{3248F0A8-6813-11D6-A77B-00B0D0160030}) (Version: 1.6.0.30 - Sun Microsystems, Inc.)
Java(TM) SE Development Kit 6 Update 3 (HKLM\...\{32A3A4F4-B792-11D6-A78A-00B0D0160030}) (Version: 1.6.0.30 - Sun Microsystems, Inc.)
Junk Mail filter update (HKLM\...\{1F6AB0E7-8CDD-4B93-8A23-AA9EB2FEFCE4}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Kodu Game Lab (HKLM\...\{C27FE0CD-51B3-4D2B-A0BD-EF87561429CB}) (Version: 1.0.94 - Microsoft Research)
Malwarebytes version 4.2.1.89 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.2.1.89 - Malwarebytes)
Manual de VAIO (HKLM\...\{C6E893E7-E5EA-4CD5-917C-5443E753FCBD}) (Version: 1.3.0.02180 - Sony Corporation)
Media Gallery (HKLM\...\{6F663FE6-3ED0-4ABF-816C-44744F7ACABA}) (Version: 1.5.0.17250 - Sony Corporation) Hidden
Mesh Runtime (HKLM\...\{8C6D6116-B724-4810-8F2D-D047E6B7D68E}) (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.7.1 (español) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 3082) (Version: 4.7.02558 - Microsoft Corporation)
Microsoft .NET Framework 4.7.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.7.02558 - Microsoft Corporation)
Microsoft Office 365 ProPlus - es-es (HKLM\...\O365ProPlusRetail - es-es) (Version: 16.0.12026.20344 - Microsoft Corporation)
Microsoft OneDrive (HKU\.DEFAULT\...\OneDriveSetup.exe) (Version: 18.151.0729.0013 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-1759255200-2635567169-74197307-1001\...\OneDriveSetup.exe) (Version: 19.192.0926.0012 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50918.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft SQL Server Compact 3.5 SP1 English (HKLM\...\{E59113EB-0285-4BFD-A37A-B79EAC6B8F4B}) (Version: 3.5.5692.0 - Microsoft Corporation)
Microsoft Teams (HKU\S-1-5-21-1759255200-2635567169-74197307-1001\...\Teams) (Version: 1.2.00.22654 - Microsoft Corporation)
Microsoft Visio Profesional 2016 - es-es (HKLM\...\VisioProRetail - es-es) (Version: 16.0.12026.20344 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x86) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x86)) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 3.1 (HKLM\...\{19BFDA5D-1FE2-4F25-97F9-1A79DD04EE20}) (Version: 3.1.10527.0 - Microsoft Corporation)
Mozilla Firefox 72.0.1 (x86 en-US) (HKLM\...\Mozilla Firefox 72.0.1 (x86 en-US)) (Version: 72.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 72.0.1 - Mozilla)
MSXML 4.0 SP3 Parser (HKLM\...\{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB2721691) (HKLM\...\{355B5AC0-CEEE-42C5-AD4D-7F3CFD806C36}) (Version: 4.30.2114.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB2758694) (HKLM\...\{1D95BA90-F4F8-47EC-A882-441C99D30C1E}) (Version: 4.30.2117.0 - Microsoft Corporation)
Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.11929.20254 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-0000-0000000FF1CE}) (Version: 16.0.11929.20254 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-0C0A-0000-0000000FF1CE}) (Version: 16.0.11929.20254 - Microsoft Corporation) Hidden
OOBE (HKLM\...\{18894D16-5448-4BF9-A128-F7E937322F91}) (Version: 11.2.1.10 - Sony Corporation)
Oracle VM VirtualBox 5.0.16 (HKLM\...\{45EB9281-F9E1-44DC-9A82-60CC939245FB}) (Version: 5.0.16 - Oracle Corporation)
Paquete de idioma de Microsoft Visual Studio 2010 Tools para Office Runtime (x86) - ESN (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x86) Language Pack - ESN) (Version: 10.0.50903 - Microsoft Corporation)
PMB (HKLM\...\{B6A98E5F-D6A7-46FB-9E9D-1F7BF443491C}) (Version: 5.5.02.12220 - Sony Corporation)
PMB VAIO Edition Guide (HKLM\...\{66081CDD-C1FE-415F-BB3A-F2622BA27461}) (Version: 1.6.00.06030 - Sony Corporation) Hidden
PMB VAIO Edition Plug-in (HKLM\...\{270380EB-8812-42E1-8289-53700DB840D2}) (Version: 1.6.00.06140 - Sony Corporation) Hidden
PMB VAIO Edition Plug-in (HKLM\...\{79ACFD18-AD87-480B-88E0-CF74DD9BBA63}) (Version: 1.5.10.05300 - Sony Corporation) Hidden
PMB VAIO Edition Plug-in (HKLM\...\{8356CB97-A48F-44CB-837A-A12838DC4669}) (Version: 1.6.00.06010 - Sony Corporation) Hidden
Prezi (HKLM\...\{63B8F931-2BF3-4D5D-9C28-E2EF88D83DFD}) (Version: 5.2.8 - Nombre de su organización)
Prezi Desktop (HKLM\...\{46439f3a-baca-4f7b-9b74-0d7719a73d09}) (Version: 6.18.6.0 - Prezi)
Prezi Desktop (HKLM\...\{82D58861-524D-43A1-BCC6-7C79871B0250}) (Version: 6.18.6.0 - Prezi) Hidden
Realtek High Definition Audio Driver (HKLM\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6167 - Realtek Semiconductor Corp.)
Realtek USB 2.0 Card Reader (HKLM\...\{96AE7E41-E34E-47D0-AC07-1091A8127911}) (Version: 6.1.7600.30127 - Realtek Semiconductor Corp.)
RealUpgrade 1.1 (HKLM\...\{28C2DED6-325B-4CC7-983A-1777C8F7FBAB}) (Version: 1.1.0 - RealNetworks, Inc.) Hidden
Remote Keyboard (HKLM\...\{08D7BC86-7358-464C-8AD0-0D84B5F0A0C9}) (Version: 1.1.1.03020 - Sony Corporation) Hidden
Remote Play with PlayStation 3 (HKLM\...\{5FA51AAF-23FE-42F4-A724-D79F85F41D4B}) (Version: 1.1.0.15070 - Sony Corporation) Hidden
SketchUp 2016 (HKLM\...\{4255B0DE-B5F3-4F12-97F1-D86665D06620}) (Version: 16.0.19911 - Trimble Navigation Limited)
Spotify (HKU\S-1-5-21-1759255200-2635567169-74197307-1001\...\Spotify) (Version: 1.1.15.448.g00fba0e3 - Spotify AB)
SSLx86 (HKLM\...\{63C43435-F428-42BA-8E7B-5848749D9262}) (Version: 1.0.0 - Sony Corporation ) Hidden
Sublime Text Build 3126 (HKLM\...\Sublime Text 3_is1) (Version:  - Sublime HQ Pty Ltd)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 15.1.9.0 - Synaptics Incorporated)
Teams Machine-Wide Installer (HKLM\...\{39AF0813-FA7B-4860-ADBE-93B9B214B914}) (Version: 1.2.0.22654 - Microsoft Corporation)
Transcend Recovery V1.17 (HKLM\...\Transcend Recovery_is1) (Version:  - )
Transferencias VAIO (HKLM\...\{5DDAFB4B-C52E-468A-9E23-3B0CEEB671BF}) (Version: 1.4.0.14230 - Sony Corporation)
UpdateService (HKLM\...\{E3AE96D6-E196-45B4-AF62-2B41998B9E37}) (Version: 1.0.0 - RealNetworks, Inc.) Hidden
VAIO - PMB VAIO Edition Guide (HKLM\...\InstallShield_{66081CDD-C1FE-415F-BB3A-F2622BA27461}) (Version: 1.6.00.06030 - Sony Corporation)
VAIO - PMB VAIO Edition Plug-in (HKLM\...\InstallShield_{270380EB-8812-42E1-8289-53700DB840D2}) (Version: 1.6.00.06140 - Sony Corporation)
VAIO - Teclado a distancia (HKLM\...\{7396FB15-9AB4-4B78-BDD8-24A9C15D2C65}) (Version: 1.0.1.03020 - Sony Corporation)
VAIO - Uso a distancia con PlayStation®3 (HKLM\...\{07441A52-E208-478A-92B7-5C337CA8C131}) (Version: 1.1.0.15070 - Sony Corporation)
VAIO Care (HKLM\...\{D531F5A4-18F6-4130-B9A4-9179D6E349FC}) (Version: 6.4.1.05290 - Sony Corporation) Hidden
VAIO Data Restore Tool (HKLM\...\{57B955CE-B5D3-495D-AF1B-FAEE0540BFEF}) (Version: 1.6.0.13140 - Sony Corporation)
VAIO Data Restore Tool (HKLM\...\{70EED410-697B-4193-A2CB-2F790F82B420}) (Version: 1.6.0.13140 - Sony Corporation) Hidden
VAIO Easy Connect (HKLM\...\{7C80D30A-AC02-4E3F-B95D-29F0E4FF937B}) (Version: 1.0.0.03050 - Sony Corporation)
VAIO Gate Default (HKLM\...\{B7546697-2A80-4256-A24B-1C33163F535B}) (Version: 2.4.0.03240 - Sony Corporation)
VAIO Hardware Diagnostics (HKLM\...\{C72E35E5-C5C6-4328-AD9A-BBCCC816A2E6}) (Version: 4.2.0.14280 - Sony Corporation) Hidden
VAIO Help and Support (HKLM\...\{F5248E24-F52C-4FD1-B76F-102460BAFD6B}) (Version: 14.00.0125 - Sony Corporation)
VAIO Messenger (HKLM\...\{0131D7EF-65FF-478F-8ABD-5ABEE24EC8EF}) (Version: 2.0.118.0 - DDNi) Hidden
VAIO Sample Contents (HKLM\...\{547C9EB4-4CA6-402F-9D1B-8BD30DC71E44}) (Version: 1.4.0.09010 - Sony Corporation)
VCCx86 (HKLM\...\{9B088046-8A01-4355-99DD-8530C022F682}) (Version: 1.0.0 - Sony Corporation) Hidden
VESx86 (HKLM\...\{3A94F54D-A8A4-4B82-B346-92B4D56A2708}) (Version: 1.0.0 - Sony Corporation) Hidden
Visor de Microsoft PowerPoint (HKLM\...\{95140000-00AF-0C0A-0000-0000000FF1CE}) (Version: 14.0.7015.1000 - Microsoft Corporation)
VIx86 (HKLM\...\{D17C2A58-E0EA-4DD7-A2D6-C448FD25B6F6}) (Version: 1.0.0 - Sony Corporation) Hidden
VLC media player (HKLM\...\VLC media player) (Version: 2.2.6 - VideoLAN)
VSNx86 (HKLM\...\{A49A517F-5332-4665-922C-6D9AD31ADD4F}) (Version: 1.0.0 - Sony Corporation) Hidden
VWSTx86 (HKLM\...\{B8991D99-88FD-41F2-8C32-DB70278D5C30}) (Version: 1.0.0 - Sony Corporation) Hidden
WIDCOMM Bluetooth Software (HKLM\...\{436E0B79-2CFB-4E5F-9380-E17C1B25D0C5}) (Version: 6.3.0.6300 - Broadcom Corporation)
Windows Live Essentials (HKLM\...\WinLiveSuite) (Version: 15.4.3508.1109 - Microsoft Corporation)
WinRAR 5.31 (32-bit) (HKLM\...\WinRAR archiver) (Version: 5.31.0 - win.rar GmbH)
Wondershare Filmora(Build 7.8.9) (HKLM\...\Wondershare Filmora_is1) (Version:  - Wondershare Software)
Wondershare Helper Compact 2.5.2 (HKLM\...\{5363CE84-5F09-48A1-8B6C-6BB590FFEDF2}_is1) (Version: 2.5.2 - Wondershare)

==================== Personalizado CLSID (Lista blanca): ==============

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)

CustomCLSID: HKU\S-1-5-21-1759255200-2635567169-74197307-1001_Classes\CLSID\{19A6E644-14E6-4A60-B8D7-DD20610A871D}\InprocServer32 -> C:\Users\MIGUEL\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.19178.2\x86\Microsoft.Teams.AddinLoader.dll (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1759255200-2635567169-74197307-1001_Classes\CLSID\{9356e2bb-6c9a-43c0-a771-5cacbdab6afe}\InprocServer32 -> C:\Users\MIGUEL\AppData\Roaming\HP Photo Creations\RLPNUpload.dll (RocketLife -> RocketLife)
CustomCLSID: HKU\S-1-5-21-1759255200-2635567169-74197307-1001_Classes\CLSID\{A10E0335-AFCA-4E7E-975F-CA30235FB29A}\InprocServer32 -> C:\Users\MIGUEL\AppData\Roaming\Visan\plugins\npRLSecurePluginLayer.dll (RocketLife -> RocketLife, LLP)
CustomCLSID: HKU\S-1-5-21-1759255200-2635567169-74197307-1001_Classes\CLSID\{CB965DF1-B8EA-49C7-BDAD-5457FDC1BF92}\InprocServer32 -> C:\Users\MIGUEL\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.19178.2\x86\Microsoft.Teams.AddinLoader.dll (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1759255200-2635567169-74197307-1001_Classes\CLSID\{cc05a616-ddb3-4cc0-9a21-dc0e9962b444}\InprocServer32 -> C:\Users\MIGUEL\AppData\Roaming\HP Photo Creations\ContentMan.dll (RocketLife -> RocketLife)
CustomCLSID: HKU\S-1-5-21-1759255200-2635567169-74197307-1001_Classes\CLSID\{ff280b55-14f1-49ae-b40f-15f5294ce630}\InprocServer32 -> C:\Users\MIGUEL\AppData\Roaming\HP Photo Creations\RocketEngine.dll (RocketLife -> Visan inc.)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2016-02-04] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers2: [AddtoVAIOGate] -> {6988D6F2-F24F-4732-8855-A39DB1AA1346} =>  -> Ningún archivo
ContextMenuHandlers3: [AddtoVAIOGate] -> {6988D6F2-F24F-4732-8855-A39DB1AA1346} =>  -> Ningún archivo
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2020-10-03] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\atiacmxx.dll [2011-05-24] (Advanced Micro Devices, Inc.) [Archivo no firmado]
ContextMenuHandlers6: [AddtoVAIOGate] -> {6988D6F2-F24F-4732-8855-A39DB1AA1346} =>  -> Ningún archivo
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2020-10-03] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2016-02-04] (win.rar GmbH -> Alexander Roshal)

==================== Codecs (Lista blanca) ====================

(Si una entrada es incluida en el fixlist, el elemento del registro será restaurado a su valor predeterminado o será eliminado. El archivo no será movido.)

HKLM\...\Drivers32: [VIDC.FMVC] => C:\Windows\system32\fmcodec.dll [77824 2008-08-18] (Fox Magic Software) [Archivo no firmado]
HKLM\...\Drivers32: [vidc.tscc] => C:\Windows\system32\tsccvid.dll [411480 2010-03-04] (TechSmith Corporation -> TechSmith Corporation)

==================== Accesos directos & WMI ========================

(Las entradas pueden ser listadas para ser restauradas o eliminadas.)

WMI:subscription\__FilterToConsumerBinding->CommandLineEventConsumer.Name=\"BVTConsumer\"",Filter="__EventFilter.Name=\"BVTFilter\"::
WMI:subscription\__EventFilter->BVTFilter::[Query => SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99]
WMI:subscription\CommandLineEventConsumer->BVTConsumer::[CommandLineTemplate => cscript KernCap.vbs][WorkingDirectory => C:\\tools\\kernrate]

==================== Módulos cargados (Lista blanca) =============

2011-05-24 23:46 - 2011-05-24 23:46 - 000733127 _____ (Advanced Micro Devices, Inc.) [Archivo no firmado] C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\atiacmxx.dll
2011-05-24 23:46 - 2011-05-24 23:46 - 000004608 _____ (Advanced Micro Devices, Inc.) [Archivo no firmado] C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\atiamesp.dll
2011-08-30 23:05 - 2011-08-30 23:05 - 000199983 _____ (Apple Inc.) [Archivo no firmado] C:\Program Files\Bonjour\mdnsNSP.dll
2010-07-29 18:45 - 2010-07-29 18:45 - 000341735 _____ (Broadcom Corporation.) [Archivo no firmado] C:\Program Files\WIDCOMM\Bluetooth Software\btosif.dll
2020-10-03 08:45 - 2020-10-03 08:44 - 001239703 _____ (Igor Pavlov) [Archivo no firmado] C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\7z.dll
2010-09-21 14:03 - 2010-09-21 14:03 - 000223559 _____ (Microsoft Corp.) [Archivo no firmado] C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL
2020-09-30 06:59 - 2020-09-30 06:59 - 000069337 ____N (Microsoft Corporation) [Archivo no firmado] C:\Program Files\Common Files\System\symsrv.dll
2020-01-14 16:50 - 2019-12-16 18:34 - 000379335 _____ (Microsoft Corporation) [Archivo no firmado] C:\Program Files\Internet Explorer\ieproxy.dll
2013-03-26 10:10 - 2013-03-26 10:10 - 000097280 _____ (Microsoft Corporation) [Archivo no firmado] C:\Windows\WinSxS\x86_microsoft.vc80.atl_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d1cb102c435421de\ATL80.DLL
2013-03-26 10:10 - 2013-03-26 10:10 - 001101824 _____ (Microsoft Corporation) [Archivo no firmado] C:\Windows\WinSxS\x86_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_cbf5e994470a1a8f\MFC80.DLL
2013-03-26 10:10 - 2013-03-26 10:10 - 001093120 _____ (Microsoft Corporation) [Archivo no firmado] C:\Windows\WinSxS\x86_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_cbf5e994470a1a8f\MFC80U.DLL
2011-08-18 12:19 - 2010-11-16 18:34 - 000045056 _____ (Sony Corporation) [Archivo no firmado] C:\Program Files\Sony\VAIO Gate\VAIOGateDesktopShellExt.dll

==================== Alternate Data Streams (Lista blanca) ========

(Si una entrada es incluida en el fixlist, solamente los ADS serán eliminados.)

AlternateDataStreams: C:\ProgramData\Reprise:wupeogjxldtlfudivq`qsp`27hfm [0]

==================== Modo Seguro (Lista blanca) ==================

(Si una entrada es incluida en el fixlist, será eliminada del registro. El "AlternateShell" será restaurado.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mbamchameleon => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMSwissArmy => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mbamchameleon => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMSwissArmy => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Option => "OptionValue"="1"

==================== Asociación (Lista blanca) =================

==================== Internet Explorer (Versión 11) (Lista blanca) ==========

HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://go.microsoft.com/fwlink/?LinkID=617910&ResetID=131613650170251101&GUID=00000000-0000-0000-0000-000000000000
HKU\S-1-5-21-1759255200-2635567169-74197307-1001\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://prodigy.msn.com/
HKU\S-1-5-21-1759255200-2635567169-74197307-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://go.microsoft.com/fwlink/?LinkID=617910&ResetID=131613650170563102&GUID=00000000-0000-0000-0000-000000000000
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1
SearchScopes: HKLM -> {1b31c9d2-7135-442b-bb93-7c002172adc6} URL = hxxp://www.bing.com/search?q={searchTerms}&form=SNYVDF&pc=MASA&src=IE-SearchBox
SearchScopes: HKLM -> {8acdd076-7141-4655-8487-c35174c89c93} URL = 
SearchScopes: HKLM -> {f79e5d1c-5148-469e-9f98-a11d8d7863f4} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSERBM&pc=MSERT1
SearchScopes: HKU\S-1-5-21-1759255200-2635567169-74197307-1001 -> DefaultScope {CBF352E7-50CC-4BC6-B3C6-70E6F91C68BC} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1
SearchScopes: HKU\S-1-5-21-1759255200-2635567169-74197307-1001 -> {CBF352E7-50CC-4BC6-B3C6-70E6F91C68BC} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1
SearchScopes: HKU\S-1-5-21-1759255200-2635567169-74197307-1001 -> {f79e5d1c-5148-469e-9f98-a11d8d7863f4} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSERBM&pc=MSERT1
BHO: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2010-11-15] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\Office16\OCHelper.dll [2019-09-08] (Microsoft Corporation -> Microsoft Corporation)
BHO: SSVHelper Class -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre6\bin\ssv.dll [2011-08-18] (Sun Microsystems, Inc. -> Sun Microsystems, Inc.)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21] (Microsoft Corporation -> Microsoft Corp.)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\root\Office16\URLREDIR.DLL [2019-10-04] (Microsoft Corporation -> Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre6\bin\jp2ssv.dll [2011-08-18] (Sun Microsystems, Inc. -> Sun Microsystems, Inc.)
Toolbar: HKU\S-1-5-21-1759255200-2635567169-74197307-1001 -> Sin Nombre - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} -  Ningún archivo
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_03-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2019-10-04] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2019-10-04] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2019-10-04] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2019-10-04] (Microsoft Corporation -> Microsoft Corporation)
Filter: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX86\Microsoft Shared\Office16\MSOXMLMF.DLL [2019-09-08] (Microsoft Corporation) [Archivo no firmado]
StartMenuInternet: IEXPLORE.EXE - iexplore.exe

(Si una entrada es incluida en el fixlist, será eliminada del registro.)

IE trusted site: HKU\S-1-5-21-1759255200-2635567169-74197307-1001\...\sharepoint.com -> hxxps://conalepmexedu-files.sharepoint.com

==================== Hosts contenido: =========================

(Si es necesario, la directiva Hosts: puede ser incluida en el fixlist para restablecer Hosts.)

2009-07-13 21:04 - 2020-10-01 12:56 - 000001850 _____ C:\Windows\system32\drivers\etc\hosts
107.178.255.88 ssl.goo.88 partner.googleadservices.com
107.178.255.88 ssl.goo.88 partner.googleadservices.com
127.0.0.1                   activate.adobe.com
127.0.0.1                   practivate.adobe.com
127.0.0.1                   lmlicenses.wip4.adobe.com
127.0.0.1                   lm.licenses.adobe.com
127.0.0.1                   na1r.services.adobe.com
127.0.0.1                   hlrcv.stage.adobe.com
127.0.0.1                   bandicam.com
127.0.0.1                   ssl.bandisoft.com
0.0.0.0 keystone.mwbsys.com
127.0.0.1                   systweak.com
127.0.0.1                   updateservice1.systweak.com
127.0.0.1                   www.systweak.com
127.0.0.1                   systemspeedup.systweak.com
127.0.0.1                   systweak.com/STCheckGenuineness

==================== Otras Áreas ===========================

(Actualmente no existe una corrección automática para esta sección.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files\Common Files\Microsoft Shared\Windows Live;C:\Program Files\AMD APP\bin\x86;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files\ATI Technologies\ATI.ACE\Core-Static;C:\Program Files\WIDCOMM\Bluetooth Software\;C:\Program Files\Sony\VAIO Startup Setting Tool;C:\Program Files\Windows Live\Shared;C:\Program Files\Aspel\Aspel-CAJA 3.5\
HKU\S-1-5-21-1759255200-2635567169-74197307-1001\Control Panel\Desktop\\Wallpaper -> %windir%\web\wallpaper\windows\img0.jpg
DNS Servers: El medio no está conectado a internet.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)

==================== MSCONFIG/TASK MANAGER elementos deshabilitados ==

(Si una entrada es incluida en el fixlist, será eliminada.)

MSCONFIG\startupreg: Adobe ARM => "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
MSCONFIG\startupreg: Adobe Reader Speed Launcher => "C:\Program Files\Adobe\Reader 10.0\Reader\Reader_sl.exe"

==================== Reglas de firewall (Lista blanca) ================

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)

FirewallRules: [{3DE90089-0054-4E1B-B747-22DF002A6562}] => (Allow) C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{C6D6B0C9-1157-4264-8AB3-F7A06F4D851B}] => (Allow) C:\Program Files\Windows Live\Contacts\wlcomm.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{901F873C-1C3D-4E20-A73B-2BCC00E5BC2B}] => (Allow) LPort=2869
FirewallRules: [{406E87F7-82C1-4276-92AF-41C0EDA38C76}] => (Allow) LPort=1900
FirewallRules: [{3F81265A-7B68-44E1-8668-D6D9EC2D56DB}] => (Allow) C:\Program Files\Windows Live\Messenger\msnmsgr.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{0F7CA81B-9112-4D60-90F0-73CA91F5C7DF}] => (Allow) C:\Program Files\Windows Live\Mesh\MOE.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{C60BF939-77C9-4C92-930F-0DD23C562554}] => (Allow) LPort=11050
FirewallRules: [{F1FD5583-FBD4-4EE9-8944-FF4E11156E85}] => (Allow) LPort=3050
FirewallRules: [{8A63A3C9-FFC9-4A2C-B06F-C3685A1FDDC0}] => (Allow) C:\Program Files\Common Files\Aspel\Aspel-AL\avisoal.exe (ASPEL DE MEXICO S.A. DE C.V. -> Aspel de México, S.A. de C.V.) [Archivo no firmado]
FirewallRules: [{F776144F-D587-4843-A48A-5B4CC29D2720}] => (Allow) C:\Program Files\Common Files\Aspel\Aspel-AL\AspelAL.exe (ASPEL DE MEXICO S.A. DE C.V. -> Aspel de México S.A. de C.V.) [Archivo no firmado]
FirewallRules: [{DF16C98B-4FD4-4D52-B8B0-1694EB81EC3D}] => (Allow) C:\Program Files\Common Files\Aspel\Aspel-AL\avisoal.exe (ASPEL DE MEXICO S.A. DE C.V. -> Aspel de México, S.A. de C.V.) [Archivo no firmado]
FirewallRules: [{2BFC618C-FBA6-48B0-BD0A-AD20D456F04B}] => (Allow) C:\Program Files\Common Files\Aspel\Aspel-AL\AspelAL.exe (ASPEL DE MEXICO S.A. DE C.V. -> Aspel de México S.A. de C.V.) [Archivo no firmado]
FirewallRules: [TCP Query User{0ADA5C56-1896-4F7D-AD9C-4108C4341568}C:\program files\ares\ares.exe] => (Allow) C:\program files\ares\ares.exe => Ningún archivo
FirewallRules: [UDP Query User{11EB2F4A-1C9D-4D18-B424-34795CC75CE7}C:\program files\ares\ares.exe] => (Allow) C:\program files\ares\ares.exe => Ningún archivo
FirewallRules: [TCP Query User{1AD69197-2359-4EF1-8D24-3A742E19B10E}C:\program files\ares\ares.exe] => (Block) C:\program files\ares\ares.exe => Ningún archivo
FirewallRules: [UDP Query User{9D141907-1602-4377-B522-7184E8D66571}C:\program files\ares\ares.exe] => (Block) C:\program files\ares\ares.exe => Ningún archivo
FirewallRules: [{D44EAEE3-2F3A-449D-BFEB-A2F4118DF681}] => (Allow) C:\Windows\System32\ServLicASP.exe (Aspel de México S.A. de C.V.) [Archivo no firmado]
FirewallRules: [{D2D4FBC0-83AC-4005-A3F7-DEDF9B1BFF3E}] => (Allow) C:\Windows\System32\ServLicASP.exe (Aspel de México S.A. de C.V.) [Archivo no firmado]
FirewallRules: [{0A9AAE64-EFAF-4CCE-9E28-E0545E50894D}] => (Allow) C:\Program Files\Firebird\Firebird_2_5\bin\fbserver.exe (Firebird Project) [Archivo no firmado]
FirewallRules: [{ADB7EF51-B68B-40C4-A63B-00FF1ABBD724}] => (Allow) C:\Program Files\Firebird\Firebird_2_5\bin\fbserver.exe (Firebird Project) [Archivo no firmado]
FirewallRules: [TCP Query User{3B0B9EF8-C1D0-414E-A3C0-AB3F6E99923D}C:\program files\common files\aspel\aspel-al\avisoal.exe] => (Block) C:\program files\common files\aspel\aspel-al\avisoal.exe (ASPEL DE MEXICO S.A. DE C.V. -> Aspel de México, S.A. de C.V.) [Archivo no firmado]
FirewallRules: [UDP Query User{F577014C-25FF-4D7B-9D2C-1EB97683D292}C:\program files\common files\aspel\aspel-al\avisoal.exe] => (Block) C:\program files\common files\aspel\aspel-al\avisoal.exe (ASPEL DE MEXICO S.A. DE C.V. -> Aspel de México, S.A. de C.V.) [Archivo no firmado]
FirewallRules: [{136E7BA0-E833-4E34-8B1B-B663B47B7C64}] => (Allow) C:\Users\COMERCIALISADORA\AppData\Local\Chromium\Application\chrome.exe (The Chromium Authors) [Archivo no firmado]
FirewallRules: [{220DCDBC-62A2-4A40-B59A-92F1EE3B9B34}] => (Allow) C:\Users\MIGUEL\AppData\Local\Chromium\Application\chrome.exe => Ningún archivo
FirewallRules: [TCP Query User{11E1EC8C-C50E-48A3-A813-FB16651B6BB5}C:\users\miguel\appdata\roaming\spotify\spotify.exe] => (Block) C:\users\miguel\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [UDP Query User{8FC6D84B-4762-414A-A954-ACB4E7213C1B}C:\users\miguel\appdata\roaming\spotify\spotify.exe] => (Block) C:\users\miguel\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{88501A04-F7B5-45C0-98E0-F7E37E8973E6}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{56D056A2-7193-4B7E-AB5B-C83FAF5B4C84}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{723943D8-131A-41CB-AB46-09D0079CEF79}] => (Allow) C:\Program Files\HP\HP DeskJet 2130 series\Bin\USBSetup.exe (HP Inc.) [Archivo no firmado]
FirewallRules: [{CD78243D-15C8-4BC8-8C60-B980DA498591}] => (Allow) C:\Program Files\HP\HP DeskJet 2130 series\Bin\HPNetworkCommunicatorCom.exe (Hewlett Packard -> HP Inc.)
FirewallRules: [{C4721657-D7C0-45A1-A94C-067C45312EAD}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{9E2F8FCA-2211-4071-9FBD-580665E7928E}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{EA24F970-0691-48C0-8629-9846289E89C8}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{1D5E3712-5AFC-4C4F-9086-2C4112690BCC}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc.) [Archivo no firmado]
FirewallRules: [{5715D3A0-D466-4CF8-94AE-A62C6A601E51}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc.) [Archivo no firmado]
FirewallRules: [{33505E57-284C-43AD-979F-EB64957934E6}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe => Ningún archivo

==================== Puntos de Restauración =========================

06-02-2020 18:55:04 Windows Update
31-03-2020 22:22:28 Windows Update
03-04-2020 20:14:48 Windows Update
04-04-2020 15:27:52 Windows Update
06-04-2020 21:21:35 Windows Update
07-04-2020 16:45:25 Windows Update
07-04-2020 20:06:38 Windows Update
30-04-2020 15:52:30 Windows Update
03-05-2020 10:53:15 Windows Update
05-05-2020 15:18:54 Windows Update
05-05-2020 22:31:23 Windows Update
08-05-2020 22:39:01 Windows Update
09-05-2020 21:30:02 Windows Update
27-05-2020 19:14:28 Windows Update
27-05-2020 20:19:25 Windows Update
30-05-2020 15:16:53 Windows Update
24-07-2020 16:09:28 Windows Update
17-09-2020 08:05:21 Windows Update
17-09-2020 12:01:05 Windows Update
17-09-2020 15:31:12 Windows Update
17-09-2020 15:47:15 Se ha instalado DirectX
17-09-2020 16:00:24 Windows Update
18-09-2020 12:25:09 Windows Update
20-09-2020 00:18:31 Windows Update
23-09-2020 08:40:05 Windows Update
23-09-2020 09:56:00 Operación de restauración
24-09-2020 13:52:45 Windows Update
29-09-2020 09:55:42 Windows Update
30-09-2020 07:14:38 Windows Update
01-10-2020 13:29:45 Windows Update
02-10-2020 07:38:11 Windows Update

==================== Dispositivos defectuosos en el Administrador de dispositivos ============

Name: Security Processor Loader Driver
Description: Security Processor Loader Driver
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer: 
Service: spldr
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.


==================== Errores del registro de eventos: ========================

Errores de aplicación:
==================
Error: (10/03/2020 08:14:29 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: No se pudo reactivar el filtro de eventos con la consulta "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" en el espacio de nombres "//./root/CIMV2" por el error 0x80041003. Los eventos no se podrán entregar a través de este filtro hasta que se corrija este problema.

Error: (10/02/2020 07:50:12 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: No se pudo reactivar el filtro de eventos con la consulta "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" en el espacio de nombres "//./root/CIMV2" por el error 0x80041003. Los eventos no se podrán entregar a través de este filtro hasta que se corrija este problema.

Error: (10/02/2020 07:46:59 AM) (Source: MsiInstaller) (EventID: 11309) (User: NT AUTHORITY)
Description: Product: Microsoft .NET Framework 4.8 -- Error 1309.Error reading from file: C:\7922eda46133a797976d\SetupEngine.dll.  System error 3.  Verify that the file exists and that you can access it.

Error: (10/02/2020 07:46:59 AM) (Source: MsiInstaller) (EventID: 11309) (User: NT AUTHORITY)
Description: Product: Microsoft .NET Framework 4.8 -- Error 1309.Error reading from file: C:\7922eda46133a797976d\SetupEngine.dll.  System error 3.  Verify that the file exists and that you can access it.

Error: (10/02/2020 07:46:58 AM) (Source: MsiInstaller) (EventID: 11309) (User: NT AUTHORITY)
Description: Product: Microsoft .NET Framework 4.8 -- Error 1309.Error reading from file: C:\7922eda46133a797976d\SetupEngine.dll.  System error 3.  Verify that the file exists and that you can access it.

Error: (10/02/2020 07:46:57 AM) (Source: MsiInstaller) (EventID: 11309) (User: NT AUTHORITY)
Description: Product: Microsoft .NET Framework 4.8 -- Error 1309.Error reading from file: C:\7922eda46133a797976d\SetupEngine.dll.  System error 3.  Verify that the file exists and that you can access it.

Error: (10/02/2020 07:46:56 AM) (Source: MsiInstaller) (EventID: 11309) (User: NT AUTHORITY)
Description: Product: Microsoft .NET Framework 4.8 -- Error 1309.Error reading from file: C:\7922eda46133a797976d\SetupEngine.dll.  System error 3.  Verify that the file exists and that you can access it.

Error: (10/02/2020 07:46:55 AM) (Source: MsiInstaller) (EventID: 11309) (User: NT AUTHORITY)
Description: Product: Microsoft .NET Framework 4.8 -- Error 1309.Error reading from file: C:\7922eda46133a797976d\SetupEngine.dll.  System error 3.  Verify that the file exists and that you can access it.


Errores del sistema:
=============
Error: (10/03/2020 12:12:59 PM) (Source: DCOM) (EventID: 10005) (User: )
Description: Error de DCOM "1084" al intentar iniciar el servicio VSS con argumentos "" para ejecutar el servidor:
{E579AB5F-1CC4-44B4-BED9-DE0991FF0623}

Error: (10/03/2020 12:12:35 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: El servicio Servicio de lista de redes depende del servicio Reconocimiento de ubicación de red, el cual no pudo iniciarse debido al siguiente error: 
No se puede iniciar el servicio o grupo de dependencia.

Error: (10/03/2020 08:54:57 AM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: El servicio Servicio de lista de redes depende del servicio Reconocimiento de ubicación de red, el cual no pudo iniciarse debido al siguiente error: 
No se puede iniciar el servicio o grupo de dependencia.

Error: (10/03/2020 08:54:11 AM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: El servicio Servicio de lista de redes depende del servicio Reconocimiento de ubicación de red, el cual no pudo iniciarse debido al siguiente error: 
No se puede iniciar el servicio o grupo de dependencia.

Error: (10/03/2020 08:53:03 AM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: El servicio Servicio de lista de redes depende del servicio Reconocimiento de ubicación de red, el cual no pudo iniciarse debido al siguiente error: 
No se puede iniciar el servicio o grupo de dependencia.

Error: (10/03/2020 08:51:54 AM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: El servicio Servicio de lista de redes depende del servicio Reconocimiento de ubicación de red, el cual no pudo iniciarse debido al siguiente error: 
No se puede iniciar el servicio o grupo de dependencia.

Error: (10/03/2020 08:51:54 AM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: El servicio Servicio de lista de redes depende del servicio Reconocimiento de ubicación de red, el cual no pudo iniciarse debido al siguiente error: 
No se puede iniciar el servicio o grupo de dependencia.

Error: (10/03/2020 08:51:54 AM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: El servicio Servicio de lista de redes depende del servicio Reconocimiento de ubicación de red, el cual no pudo iniciarse debido al siguiente error: 
No se puede iniciar el servicio o grupo de dependencia.


Windows Defender:
===================================
Date: 2018-01-25 08:41:43.456
Description: 
Windows Defender detectó spyware u otro software potencialmente no deseado.
Para obtener más información, consulte lo siguiente:
http://go.microsoft.com/fwlink/?linkid=37020&name=BrowserModifier:Win32/Foxiebro&threatid=235004
Nombre:BrowserModifier:Win32/Foxiebro
Id.:235004
Gravedad:Alta
Categoría:Modificador de explorador
Ruta de acceso encontrada:bho:HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\BROWSER HELPER OBJECTS\{78549bde-b964-4d2a-b7b1-c4ac15ddff64};bho:HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\BROWSER HELPER OBJECTS\{d99a4ec9-00bd-4fe4-85a5-4db018351265};clsid:HKLM\SOFTWARE\CLASSES\CLSID\{78549bde-b964-4d2a-b7b1-c4ac15ddff64};clsid:HKLM\SOFTWARE\CLASSES\CLSID\{d99a4ec9-00bd-4fe4-85a5-4db018351265};file:C:\Program Files\Round World\RoundWorldbho.dll;file:C:\Program Files\SaltarSmart\SaltarSmartBHO.dll;ieaddon:[email protected]\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\SETTINGS\{78549BDE-B964-4D2A-B7B1-C4AC15DDFF64};ieaddon:[email protected]\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\SETTINGS\{D99A4EC9-00BD-4FE4-85A5-4DB018351265};ieaddon:[email protected]\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{78549BDE-B964-4D2A-B7B1-C4AC15DDFF64};ieaddon:[email protected]\SOFTWARE\MICROSOF
Tipo de detección:Concreto
Origen de detección:Protección en tiempo real
Estado:Desconocido
Usuario:\
Nombre de proceso:

Date: 2018-01-25 08:26:25.009
Description: 
Windows Defender detectó spyware u otro software potencialmente no deseado.
Para obtener más información, consulte lo siguiente:
http://go.microsoft.com/fwlink/?linkid=37020&name=BrowserModifier:Win32/Foxiebro&threatid=235004
Nombre:BrowserModifier:Win32/Foxiebro
Id.:235004
Gravedad:Alta
Categoría:Modificador de explorador
Ruta de acceso encontrada:file:C:\Program Files\Round World\RoundWorldbho.dll;file:C:\Program Files\SaltarSmart\SaltarSmartBHO.dll
Tipo de detección:Concreto
Origen de detección:Protección en tiempo real
Estado:Desconocido
Usuario:\
Nombre de proceso:

Date: 2017-09-28 23:48:29.420
Description: 
El examen de Windows Defender se detuvo antes de completarse.
Id. de examen:{C959D9F7-B20E-4792-B112-F48A95786B51}
Tipo de examen:AntiSpyware
Parámetros de examen:Examen rápido
Usuario:MIGUEL-VAIO\MIGUEL

Date: 2017-03-30 17:44:17.929
Description: 
Windows Defender detectó spyware u otro software potencialmente no deseado.
Para obtener más información, consulte lo siguiente:
http://go.microsoft.com/fwlink/?linkid=37020&name=Adware:Win32/Bayads&threatid=222698
Nombre:Adware:Win32/Bayads
Id.:222698
Gravedad:Alta
Categoría:Adware
Ruta de acceso encontrada:file:C:\Users\MIGUEL\AppData\Local\Pay-By-Ads\Yahoo! Search\1.3.19.2\dsrlte.exe;process:pid:6836;process:pid:6836,ProcessStart:131353887025332152;regkey:[email protected]\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN\\Yahoo! Search;runkey:[email protected]\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN\\Yahoo! Search
Tipo de detección:Concreto
Origen de detección:Protección en tiempo real
Estado:Desconocido
Usuario:\
Nombre de proceso:

Date: 2017-03-30 17:31:52.065
Description: 
Windows Defender detectó spyware u otro software potencialmente no deseado.
Para obtener más información, consulte lo siguiente:
http://go.microsoft.com/fwlink/?linkid=37020&name=Adware:Win32/Bayads&threatid=222698
Nombre:Adware:Win32/Bayads
Id.:222698
Gravedad:Alta
Categoría:Adware
Ruta de acceso encontrada:file:C:\Users\MIGUEL\AppData\Local\Pay-By-Ads\Yahoo! Search\1.3.19.2\dsrlte.exe;process:pid:6836
Tipo de detección:Concreto
Origen de detección:Protección en tiempo real
Estado:Desconocido
Usuario:\
Nombre de proceso:

Date: 2020-09-18 22:40:29.347
Description: 
Windows Defender encontró un error al intentar cargar firmas e intentará restablecer un conjunto de firmas conocidas.
Firmas intentadas:Copia de seguridad
Código de error:0x800700c1
Descripción de error:Windows Defender no es una aplicación Win32 válida. 
Versión de firma:1.315.12.0
Versión de motor:1.1.17000.7

Date: 2020-09-18 22:40:28.364
Description: 
Windows Defender encontró un error al intentar actualizar las firmas.
Nueva versión de firma:1.315.271.0
Versión de firma anterior:
Origen de actualización:Carpeta de actualizaciones de firmas
Tipo de firma:AntiSpyware
Tipo de actualización:Completa
Usuario:NT AUTHORITY\SYSTEM
Versión de motor actual:1.1.17400.5
Versión de motor anterior:
Código de error:0x80070666
Descripción de error:Ya está instalada otra versión de este producto. La instalación de esta versión no puede continuar. Para configurar o quitar la versión existente de este producto, use Agregar o quitar programas del Panel de control. 

Date: 2020-09-18 22:40:28.364
Description: 
Windows Defender encontró un error al intentar actualizar el motor.
Nueva versión de motor:1.1.17400.5
Versión de motor anterior:
Origen de actualización:Carpeta de actualizaciones de firmas
Usuario:NT AUTHORITY\SYSTEM
Código de error:0x80070666
Descripción de error:Ya está instalada otra versión de este producto. La instalación de esta versión no puede continuar. Para configurar o quitar la versión existente de este producto, use Agregar o quitar programas del Panel de control. 

Date: 2020-09-18 22:39:10.832
Description: 
Windows Defender encontró un error al intentar cargar firmas e intentará restablecer un conjunto de firmas conocidas.
Firmas intentadas:Copia de seguridad
Código de error:0x800700c1
Descripción de error:Windows Defender no es una aplicación Win32 válida. 
Versión de firma:1.315.12.0
Versión de motor:1.1.17000.7

Date: 2020-09-18 22:39:09.740
Description: 
Windows Defender encontró un error al intentar actualizar las firmas.
Nueva versión de firma:1.315.271.0
Versión de firma anterior:
Origen de actualización:Carpeta de actualizaciones de firmas
Tipo de firma:AntiSpyware
Tipo de actualización:Completa
Usuario:NT AUTHORITY\SYSTEM
Versión de motor actual:1.1.17400.5
Versión de motor anterior:
Código de error:0x80070666
Descripción de error:Ya está instalada otra versión de este producto. La instalación de esta versión no puede continuar. Para configurar o quitar la versión existente de este producto, use Agregar o quitar programas del Panel de control. 

==================== Información de la memoria =========================== 

BIOS: Insyde Corp. R0180Z7 06/13/2011
Placa base: Sony Corporation VAIO
Procesador: AMD E-450 APU with Radeon(tm) HD Graphics
Porcentaje de memoria en uso: 69%
RAM física total: 1642.9 MB
RAM física disponible: 493.47 MB
Virtual total: 3285.8 MB
Virtual disponible: 2226.91 MB

==================== Unidades ================================

Drive c: () (Fixed) (Total:456.5 GB) (Free:342.09 GB) NTFS
Drive e: (UUI) (Removable) (Total:3.63 GB) (Free:2.53 GB) FAT32

\\?\Volume{5f30761f-c9b2-11e0-a52c-806e6f6e6963}\ (System Reserved) (Fixed) (Total:0.1 GB) (Free:0.07 GB) NTFS
\\?\Volume{5f30761e-c9b2-11e0-a52c-806e6f6e6963}\ (Recovery) (Fixed) (Total:9.16 GB) (Free:1.12 GB) NTFS

==================== MBR & Tabla de particiones ====================

==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 465.8 GB) (Disk ID: C6A61084)
Partition 1: (Not Active) - (Size=9.2 GB) - (Type=27)
Partition 2: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=456.5 GB) - (Type=07 NTFS)

==========================================================
Disk: 1 (Size: 3.6 GB) (Disk ID: 001FF20C)
Partition 1: (Active) - (Size=3.6 GB) - (Type=0C)

==================== Final  Addition.txt =======================

Buenos días excelente inicio de semana me sigue apateciendo error 0xc0000005 y en el modo normal me abre cada 5 min el explorador de windows dejo de funcionar cierra todo lo que tenga abierto y vuelve a hacer lo mismo en 5 min aprox

Hola @Karina_Monserrat_Lop

Realiza lo siguiente:

1.- Botón de Inicio >>> escribes CMD >>> Botón derecho sobre el >>> Ejecutar como Administrador.

En la consola que se abre escribe tal cual el siguiente comando:

sfc /scannow

Presionas Enter

Tomará un tiempo largo.

2.- Al finalizar en la misma consola escribes:

findstr /c:"[SR]" %windir%\Logs\CBS\CBS.log >"%userprofile%\Desktop\sfcdetails.txt"

Nota: La ejecución de estos procesos puede demorar, no olvides reiniciar el equipo para aplicar los cambios cuando termines con todos los comandos.

Nota 2: Los comandos debes copiarlos tal cual respetando los espacios.

Quedará un reporte de nombre sfcdetails.txt en tu escritorio lo pegas en tu próxima respuesta.

Cualquier error tomas una imagen y la subes.

Salu2

Buenos días Srta Sandra este es el siguiente reporte

Reporte Sfdetailles:

2020-10-06 09:20:24, Info                  CSI    00000009 [SR] Verifying 100 (0x00000064) components
2020-10-06 09:20:24, Info                  CSI    0000000a [SR] Beginning Verify and Repair transaction
2020-10-06 09:20:29, Info                  CSI    0000000c [SR] Verify complete
2020-10-06 09:20:31, Info                  CSI    0000000d [SR] Verifying 100 (0x00000064) components
2020-10-06 09:20:31, Info                  CSI    0000000e [SR] Beginning Verify and Repair transaction
2020-10-06 09:20:38, Info                  CSI    00000010 [SR] Verify complete
2020-10-06 09:20:40, Info                  CSI    00000011 [SR] Verifying 100 (0x00000064) components
2020-10-06 09:20:40, Info                  CSI    00000012 [SR] Beginning Verify and Repair transaction
2020-10-06 09:20:47, Info                  CSI    00000014 [SR] Verify complete
2020-10-06 09:20:49, Info                  CSI    00000015 [SR] Verifying 100 (0x00000064) components
2020-10-06 09:20:49, Info                  CSI    00000016 [SR] Beginning Verify and Repair transaction
2020-10-06 09:20:51, Info                  CSI    00000018 [SR] Verify complete
2020-10-06 09:20:53, Info                  CSI    00000019 [SR] Verifying 100 (0x00000064) components
2020-10-06 09:20:53, Info                  CSI    0000001a [SR] Beginning Verify and Repair transaction
2020-10-06 09:20:55, Info                  CSI    0000001c [SR] Verify complete
2020-10-06 09:20:57, Info                  CSI    0000001d [SR] Verifying 100 (0x00000064) components
2020-10-06 09:20:57, Info                  CSI    0000001e [SR] Beginning Verify and Repair transaction
2020-10-06 09:21:01, Info                  CSI    00000020 [SR] Verify complete
2020-10-06 09:21:03, Info                  CSI    00000021 [SR] Verifying 100 (0x00000064) components
2020-10-06 09:21:03, Info                  CSI    00000022 [SR] Beginning Verify and Repair transaction
2020-10-06 09:21:05, Info                  CSI    00000024 [SR] Verify complete
2020-10-06 09:21:07, Info                  CSI    00000025 [SR] Verifying 100 (0x00000064) components
2020-10-06 09:21:07, Info                  CSI    00000026 [SR] Beginning Verify and Repair transaction
2020-10-06 09:21:09, Info                  CSI    00000028 [SR] Verify complete
2020-10-06 09:21:11, Info                  CSI    00000029 [SR] Verifying 100 (0x00000064) components
2020-10-06 09:21:11, Info                  CSI    0000002a [SR] Beginning Verify and Repair transaction
2020-10-06 09:21:13, Info                  CSI    0000002c [SR] Verify complete
2020-10-06 09:21:15, Info                  CSI    0000002d [SR] Verifying 100 (0x00000064) components
2020-10-06 09:21:15, Info                  CSI    0000002e [SR] Beginning Verify and Repair transaction
2020-10-06 09:21:17, Info                  CSI    00000030 [SR] Verify complete
2020-10-06 09:21:19, Info                  CSI    00000031 [SR] Verifying 100 (0x00000064) components
2020-10-06 09:21:19, Info                  CSI    00000032 [SR] Beginning Verify and Repair transaction
2020-10-06 09:21:21, Info                  CSI    00000034 [SR] Verify complete
2020-10-06 09:21:23, Info                  CSI    00000035 [SR] Verifying 100 (0x00000064) components
2020-10-06 09:21:23, Info                  CSI    00000036 [SR] Beginning Verify and Repair transaction
2020-10-06 09:21:25, Info                  CSI    00000038 [SR] Verify complete
2020-10-06 09:21:27, Info                  CSI    00000039 [SR] Verifying 100 (0x00000064) components
2020-10-06 09:21:27, Info                  CSI    0000003a [SR] Beginning Verify and Repair transaction
2020-10-06 09:21:29, Info                  CSI    0000003c [SR] Verify complete
2020-10-06 09:21:31, Info                  CSI    0000003d [SR] Verifying 100 (0x00000064) components
2020-10-06 09:21:31, Info                  CSI    0000003e [SR] Beginning Verify and Repair transaction
2020-10-06 09:21:33, Info                  CSI    00000040 [SR] Verify complete
2020-10-06 09:21:35, Info                  CSI    00000041 [SR] Verifying 100 (0x00000064) components
2020-10-06 09:21:35, Info                  CSI    00000042 [SR] Beginning Verify and Repair transaction
2020-10-06 09:21:37, Info                  CSI    00000044 [SR] Verify complete
2020-10-06 09:21:38, Info                  CSI    00000045 [SR] Verifying 100 (0x00000064) components
2020-10-06 09:21:38, Info                  CSI    00000046 [SR] Beginning Verify and Repair transaction
2020-10-06 09:21:41, Info                  CSI    00000048 [SR] Verify complete
2020-10-06 09:21:42, Info                  CSI    00000049 [SR] Verifying 100 (0x00000064) components
2020-10-06 09:21:42, Info                  CSI    0000004a [SR] Beginning Verify and Repair transaction
2020-10-06 09:21:44, Info                  CSI    0000004c [SR] Verify complete
2020-10-06 09:21:46, Info                  CSI    0000004d [SR] Verifying 100 (0x00000064) components
2020-10-06 09:21:46, Info                  CSI    0000004e [SR] Beginning Verify and Repair transaction
2020-10-06 09:21:48, Info                  CSI    00000050 [SR] Verify complete
2020-10-06 09:21:49, Info                  CSI    00000051 [SR] Verifying 100 (0x00000064) components
2020-10-06 09:21:49, Info                  CSI    00000052 [SR] Beginning Verify and Repair transaction
2020-10-06 09:21:51, Info                  CSI    00000054 [SR] Verify complete
2020-10-06 09:21:53, Info                  CSI    00000055 [SR] Verifying 100 (0x00000064) components
2020-10-06 09:21:53, Info                  CSI    00000056 [SR] Beginning Verify and Repair transaction
2020-10-06 09:21:55, Info                  CSI    00000058 [SR] Verify complete
2020-10-06 09:21:56, Info                  CSI    00000059 [SR] Verifying 100 (0x00000064) components
2020-10-06 09:21:56, Info                  CSI    0000005a [SR] Beginning Verify and Repair transaction
2020-10-06 09:21:58, Info                  CSI    0000005c [SR] Verify complete
2020-10-06 09:21:59, Info                  CSI    0000005d [SR] Verifying 100 (0x00000064) components
2020-10-06 09:21:59, Info                  CSI    0000005e [SR] Beginning Verify and Repair transaction
2020-10-06 09:22:03, Info                  CSI    00000060 [SR] Verify complete
2020-10-06 09:22:04, Info                  CSI    00000061 [SR] Verifying 100 (0x00000064) components
2020-10-06 09:22:04, Info                  CSI    00000062 [SR] Beginning Verify and Repair transaction
2020-10-06 09:22:07, Info                  CSI    00000064 [SR] Verify complete
2020-10-06 09:22:08, Info                  CSI    00000065 [SR] Verifying 100 (0x00000064) components
2020-10-06 09:22:08, Info                  CSI    00000066 [SR] Beginning Verify and Repair transaction
2020-10-06 09:22:12, Info                  CSI    00000068 [SR] Verify complete
2020-10-06 09:22:13, Info                  CSI    00000069 [SR] Verifying 100 (0x00000064) components
2020-10-06 09:22:13, Info                  CSI    0000006a [SR] Beginning Verify and Repair transaction
2020-10-06 09:22:15, Info                  CSI    0000006c [SR] Verify complete
2020-10-06 09:22:17, Info                  CSI    0000006d [SR] Verifying 100 (0x00000064) components
2020-10-06 09:22:17, Info                  CSI    0000006e [SR] Beginning Verify and Repair transaction
2020-10-06 09:22:19, Info                  CSI    00000070 [SR] Verify complete
2020-10-06 09:22:20, Info                  CSI    00000071 [SR] Verifying 100 (0x00000064) components
2020-10-06 09:22:20, Info                  CSI    00000072 [SR] Beginning Verify and Repair transaction
2020-10-06 09:22:23, Info                  CSI    00000074 [SR] Verify complete
2020-10-06 09:22:25, Info                  CSI    00000075 [SR] Verifying 100 (0x00000064) components
2020-10-06 09:22:25, Info                  CSI    00000076 [SR] Beginning Verify and Repair transaction
2020-10-06 09:22:27, Info                  CSI    00000078 [SR] Verify complete
2020-10-06 09:22:28, Info                  CSI    00000079 [SR] Verifying 100 (0x00000064) components
2020-10-06 09:22:28, Info                  CSI    0000007a [SR] Beginning Verify and Repair transaction
2020-10-06 09:22:31, Info                  CSI    0000007c [SR] Verify complete
2020-10-06 09:22:33, Info                  CSI    0000007d [SR] Verifying 100 (0x00000064) components
2020-10-06 09:22:33, Info                  CSI    0000007e [SR] Beginning Verify and Repair transaction
2020-10-06 09:22:35, Info                  CSI    00000080 [SR] Verify complete
2020-10-06 09:22:36, Info                  CSI    00000081 [SR] Verifying 100 (0x00000064) components
2020-10-06 09:22:36, Info                  CSI    00000082 [SR] Beginning Verify and Repair transaction
2020-10-06 09:22:38, Info                  CSI    00000084 [SR] Verify complete
2020-10-06 09:22:40, Info                  CSI    00000085 [SR] Verifying 100 (0x00000064) components
2020-10-06 09:22:40, Info                  CSI    00000086 [SR] Beginning Verify and Repair transaction
2020-10-06 09:22:42, Info                  CSI    00000088 [SR] Verify complete
2020-10-06 09:22:43, Info                  CSI    00000089 [SR] Verifying 100 (0x00000064) components
2020-10-06 09:22:43, Info                  CSI    0000008a [SR] Beginning Verify and Repair transaction
2020-10-06 09:22:48, Info                  CSI    0000008c [SR] Verify complete
2020-10-06 09:22:49, Info                  CSI    0000008d [SR] Verifying 100 (0x00000064) components
2020-10-06 09:22:49, Info                  CSI    0000008e [SR] Beginning Verify and Repair transaction
2020-10-06 09:22:53, Info                  CSI    00000090 [SR] Verify complete
2020-10-06 09:22:54, Info                  CSI    00000091 [SR] Verifying 100 (0x00000064) components
2020-10-06 09:22:54, Info                  CSI    00000092 [SR] Beginning Verify and Repair transaction
2020-10-06 09:22:57, Info                  CSI    00000094 [SR] Verify complete
2020-10-06 09:22:58, Info                  CSI    00000095 [SR] Verifying 100 (0x00000064) components
2020-10-06 09:22:58, Info                  CSI    00000096 [SR] Beginning Verify and Repair transaction
2020-10-06 09:23:05, Info                  CSI    00000098 [SR] Verify complete
2020-10-06 09:23:07, Info                  CSI    00000099 [SR] Verifying 100 (0x00000064) components
2020-10-06 09:23:07, Info                  CSI    0000009a [SR] Beginning Verify and Repair transaction
2020-10-06 09:23:18, Info                  CSI    0000009c [SR] Verify complete
2020-10-06 09:23:19, Info                  CSI    0000009d [SR] Verifying 100 (0x00000064) components
2020-10-06 09:23:19, Info                  CSI    0000009e [SR] Beginning Verify and Repair transaction
2020-10-06 09:23:26, Info                  CSI    000000a1 [SR] Verify complete
2020-10-06 09:23:28, Info                  CSI    000000a2 [SR] Verifying 100 (0x00000064) components
2020-10-06 09:23:28, Info                  CSI    000000a3 [SR] Beginning Verify and Repair transaction
2020-10-06 09:23:34, Info                  CSI    000000a6 [SR] Verify complete
2020-10-06 09:23:36, Info                  CSI    000000a7 [SR] Verifying 100 (0x00000064) components
2020-10-06 09:23:36, Info                  CSI    000000a8 [SR] Beginning Verify and Repair transaction
2020-10-06 09:23:43, Info                  CSI    000000ac [SR] Verify complete
2020-10-06 09:23:43, Info                  CSI    000000ad [SR] Verifying 100 (0x00000064) components
2020-10-06 09:23:43, Info                  CSI    000000ae [SR] Beginning Verify and Repair transaction
2020-10-06 09:23:54, Info                  CSI    000000b8 [SR] Verify complete
2020-10-06 09:23:55, Info                  CSI    000000b9 [SR] Verifying 100 (0x00000064) components
2020-10-06 09:23:55, Info                  CSI    000000ba [SR] Beginning Verify and Repair transaction
2020-10-06 09:24:03, Info                  CSI    000000bc [SR] Verify complete
2020-10-06 09:24:04, Info                  CSI    000000bd [SR] Verifying 100 (0x00000064) components
2020-10-06 09:24:04, Info                  CSI    000000be [SR] Beginning Verify and Repair transaction
2020-10-06 09:24:13, Info                  CSI    000000c0 [SR] Verify complete
2020-10-06 09:24:14, Info                  CSI    000000c1 [SR] Verifying 100 (0x00000064) components
2020-10-06 09:24:14, Info                  CSI    000000c2 [SR] Beginning Verify and Repair transaction
2020-10-06 09:24:20, Info                  CSI    000000c4 [SR] Verify complete
2020-10-06 09:24:21, Info                  CSI    000000c5 [SR] Verifying 100 (0x00000064) components
2020-10-06 09:24:21, Info                  CSI    000000c6 [SR] Beginning Verify and Repair transaction
2020-10-06 09:24:28, Info                  CSI    000000c8 [SR] Verify complete
2020-10-06 09:24:29, Info                  CSI    000000c9 [SR] Verifying 100 (0x00000064) components
2020-10-06 09:24:29, Info                  CSI    000000ca [SR] Beginning Verify and Repair transaction
2020-10-06 09:24:36, Info                  CSI    000000cc [SR] Verify complete
2020-10-06 09:24:37, Info                  CSI    000000cd [SR] Verifying 100 (0x00000064) components
2020-10-06 09:24:37, Info                  CSI    000000ce [SR] Beginning Verify and Repair transaction
2020-10-06 09:24:52, Info                  CSI    000000d2 [SR] Verify complete
2020-10-06 09:24:53, Info                  CSI    000000d3 [SR] Verifying 100 (0x00000064) components
2020-10-06 09:24:53, Info                  CSI    000000d4 [SR] Beginning Verify and Repair transaction
2020-10-06 09:25:04, Info                  CSI    000000d6 [SR] Verify complete
2020-10-06 09:25:05, Info                  CSI    000000d7 [SR] Verifying 100 (0x00000064) components
2020-10-06 09:25:05, Info                  CSI    000000d8 [SR] Beginning Verify and Repair transaction
2020-10-06 09:25:24, Info                  CSI    000000da [SR] Verify complete
2020-10-06 09:25:25, Info                  CSI    000000db [SR] Verifying 100 (0x00000064) components
2020-10-06 09:25:25, Info                  CSI    000000dc [SR] Beginning Verify and Repair transaction
2020-10-06 09:25:35, Info                  CSI    000000de [SR] Verify complete
2020-10-06 09:25:35, Info                  CSI    000000df [SR] Verifying 100 (0x00000064) components
2020-10-06 09:25:35, Info                  CSI    000000e0 [SR] Beginning Verify and Repair transaction
2020-10-06 09:25:40, Info                  CSI    000000e2 [SR] Verify complete
2020-10-06 09:25:41, Info                  CSI    000000e3 [SR] Verifying 100 (0x00000064) components
2020-10-06 09:25:41, Info                  CSI    000000e4 [SR] Beginning Verify and Repair transaction
2020-10-06 09:25:44, Info                  CSI    000000e6 [SR] Verify complete
2020-10-06 09:25:45, Info                  CSI    000000e7 [SR] Verifying 100 (0x00000064) components
2020-10-06 09:25:45, Info                  CSI    000000e8 [SR] Beginning Verify and Repair transaction
2020-10-06 09:26:00, Info                  CSI    00000106 [SR] Verify complete
2020-10-06 09:26:00, Info                  CSI    00000107 [SR] Verifying 100 (0x00000064) components
2020-10-06 09:26:00, Info                  CSI    00000108 [SR] Beginning Verify and Repair transaction
2020-10-06 09:26:05, Info                  CSI    0000010a [SR] Verify complete
2020-10-06 09:26:05, Info                  CSI    0000010b [SR] Verifying 100 (0x00000064) components
2020-10-06 09:26:05, Info                  CSI    0000010c [SR] Beginning Verify and Repair transaction
2020-10-06 09:26:08, Info                  CSI    0000010e [SR] Verify complete
2020-10-06 09:26:09, Info                  CSI    0000010f [SR] Verifying 100 (0x00000064) components
2020-10-06 09:26:09, Info                  CSI    00000110 [SR] Beginning Verify and Repair transaction
2020-10-06 09:26:15, Info                  CSI    00000112 [SR] Verify complete
2020-10-06 09:26:16, Info                  CSI    00000113 [SR] Verifying 100 (0x00000064) components
2020-10-06 09:26:16, Info                  CSI    00000114 [SR] Beginning Verify and Repair transaction
2020-10-06 09:26:23, Info                  CSI    00000116 [SR] Verify complete
2020-10-06 09:26:25, Info                  CSI    00000117 [SR] Verifying 100 (0x00000064) components
2020-10-06 09:26:25, Info                  CSI    00000118 [SR] Beginning Verify and Repair transaction
2020-10-06 09:26:35, Info                  CSI    0000011a [SR] Repairing corrupted file [ml:520{260},l:76{38}]"\??\C:\Program Files\Internet Explorer"\[l:22{11}]"ieproxy.dll" from store
2020-10-06 09:26:38, Info                  CSI    0000011c [SR] Verify complete
2020-10-06 09:26:39, Info                  CSI    0000011d [SR] Verifying 100 (0x00000064) components
2020-10-06 09:26:39, Info                  CSI    0000011e [SR] Beginning Verify and Repair transaction
2020-10-06 09:26:53, Info                  CSI    00000121 [SR] Verify complete
2020-10-06 09:26:54, Info                  CSI    00000122 [SR] Verifying 100 (0x00000064) components
2020-10-06 09:26:54, Info                  CSI    00000123 [SR] Beginning Verify and Repair transaction
2020-10-06 09:26:58, Info                  CSI    00000125 [SR] Verify complete
2020-10-06 09:26:59, Info                  CSI    00000126 [SR] Verifying 100 (0x00000064) components
2020-10-06 09:26:59, Info                  CSI    00000127 [SR] Beginning Verify and Repair transaction
2020-10-06 09:27:02, Info                  CSI    00000129 [SR] Verify complete
2020-10-06 09:27:03, Info                  CSI    0000012a [SR] Verifying 100 (0x00000064) components
2020-10-06 09:27:03, Info                  CSI    0000012b [SR] Beginning Verify and Repair transaction
2020-10-06 09:27:12, Info                  CSI    0000012d [SR] Verify complete
2020-10-06 09:27:13, Info                  CSI    0000012e [SR] Verifying 100 (0x00000064) components
2020-10-06 09:27:13, Info                  CSI    0000012f [SR] Beginning Verify and Repair transaction
2020-10-06 09:27:21, Info                  CSI    00000131 [SR] Verify complete
2020-10-06 09:27:22, Info                  CSI    00000132 [SR] Verifying 100 (0x00000064) components
2020-10-06 09:27:22, Info                  CSI    00000133 [SR] Beginning Verify and Repair transaction
2020-10-06 09:27:33, Info                  CSI    00000136 [SR] Verify complete
2020-10-06 09:27:34, Info                  CSI    00000137 [SR] Verifying 100 (0x00000064) components
2020-10-06 09:27:34, Info                  CSI    00000138 [SR] Beginning Verify and Repair transaction
2020-10-06 09:27:49, Info                  CSI    0000015d [SR] Verify complete
2020-10-06 09:27:50, Info                  CSI    0000015e [SR] Verifying 100 (0x00000064) components
2020-10-06 09:27:50, Info                  CSI    0000015f [SR] Beginning Verify and Repair transaction
2020-10-06 09:28:02, Info                  CSI    00000161 [SR] Verify complete
2020-10-06 09:28:03, Info                  CSI    00000162 [SR] Verifying 100 (0x00000064) components
2020-10-06 09:28:03, Info                  CSI    00000163 [SR] Beginning Verify and Repair transaction
2020-10-06 09:28:32, Info                  CSI    00000165 [SR] Verify complete
2020-10-06 09:28:33, Info                  CSI    00000166 [SR] Verifying 100 (0x00000064) components
2020-10-06 09:28:33, Info                  CSI    00000167 [SR] Beginning Verify and Repair transaction
2020-10-06 09:28:44, Info                  CSI    00000169 [SR] Verify complete
2020-10-06 09:28:45, Info                  CSI    0000016a [SR] Verifying 100 (0x00000064) components
2020-10-06 09:28:45, Info                  CSI    0000016b [SR] Beginning Verify and Repair transaction
2020-10-06 09:28:53, Info                  CSI    0000016d [SR] Verify complete
2020-10-06 09:28:54, Info                  CSI    0000016e [SR] Verifying 100 (0x00000064) components
2020-10-06 09:28:54, Info                  CSI    0000016f [SR] Beginning Verify and Repair transaction
2020-10-06 09:29:01, Info                  CSI    00000171 [SR] Verify complete
2020-10-06 09:29:02, Info                  CSI    00000172 [SR] Verifying 100 (0x00000064) components
2020-10-06 09:29:02, Info                  CSI    00000173 [SR] Beginning Verify and Repair transaction
2020-10-06 09:29:10, Info                  CSI    00000175 [SR] Verify complete
2020-10-06 09:29:11, Info                  CSI    00000176 [SR] Verifying 100 (0x00000064) components
2020-10-06 09:29:11, Info                  CSI    00000177 [SR] Beginning Verify and Repair transaction
2020-10-06 09:29:18, Info                  CSI    0000017a [SR] Verify complete
2020-10-06 09:29:19, Info                  CSI    0000017b [SR] Verifying 100 (0x00000064) components
2020-10-06 09:29:19, Info                  CSI    0000017c [SR] Beginning Verify and Repair transaction
2020-10-06 09:29:25, Info                  CSI    0000017e [SR] Verify complete
2020-10-06 09:29:26, Info                  CSI    0000017f [SR] Verifying 100 (0x00000064) components
2020-10-06 09:29:26, Info                  CSI    00000180 [SR] Beginning Verify and Repair transaction
2020-10-06 09:29:36, Info                  CSI    00000182 [SR] Verify complete
2020-10-06 09:29:37, Info                  CSI    00000183 [SR] Verifying 100 (0x00000064) components
2020-10-06 09:29:37, Info                  CSI    00000184 [SR] Beginning Verify and Repair transaction
2020-10-06 09:29:49, Info                  CSI    00000186 [SR] Verify complete
2020-10-06 09:29:50, Info                  CSI    00000187 [SR] Verifying 100 (0x00000064) components
2020-10-06 09:29:50, Info                  CSI    00000188 [SR] Beginning Verify and Repair transaction
2020-10-06 09:29:58, Info                  CSI    0000018a [SR] Verify complete
2020-10-06 09:29:59, Info                  CSI    0000018b [SR] Verifying 100 (0x00000064) components
2020-10-06 09:29:59, Info                  CSI    0000018c [SR] Beginning Verify and Repair transaction
2020-10-06 09:30:09, Info                  CSI    0000018e [SR] Verify complete
2020-10-06 09:30:10, Info                  CSI    0000018f [SR] Verifying 100 (0x00000064) components
2020-10-06 09:30:10, Info                  CSI    00000190 [SR] Beginning Verify and Repair transaction
2020-10-06 09:30:22, Info                  CSI    00000193 [SR] Verify complete
2020-10-06 09:30:23, Info                  CSI    00000194 [SR] Verifying 100 (0x00000064) components
2020-10-06 09:30:23, Info                  CSI    00000195 [SR] Beginning Verify and Repair transaction
2020-10-06 09:30:30, Info                  CSI    00000197 [SR] Verify complete
2020-10-06 09:30:31, Info                  CSI    00000198 [SR] Verifying 100 (0x00000064) components
2020-10-06 09:30:31, Info                  CSI    00000199 [SR] Beginning Verify and Repair transaction
2020-10-06 09:30:37, Info                  CSI    0000019c [SR] Verify complete
2020-10-06 09:30:38, Info                  CSI    0000019d [SR] Verifying 100 (0x00000064) components
2020-10-06 09:30:38, Info                  CSI    0000019e [SR] Beginning Verify and Repair transaction
2020-10-06 09:30:46, Info                  CSI    000001a0 [SR] Verify complete
2020-10-06 09:30:47, Info                  CSI    000001a1 [SR] Verifying 100 (0x00000064) components
2020-10-06 09:30:47, Info                  CSI    000001a2 [SR] Beginning Verify and Repair transaction
2020-10-06 09:30:53, Info                  CSI    000001a5 [SR] Verify complete
2020-10-06 09:30:54, Info                  CSI    000001a6 [SR] Verifying 100 (0x00000064) components
2020-10-06 09:30:54, Info                  CSI    000001a7 [SR] Beginning Verify and Repair transaction
2020-10-06 09:31:02, Info                  CSI    000001a9 [SR] Verify complete
2020-10-06 09:31:03, Info                  CSI    000001aa [SR] Verifying 100 (0x00000064) components
2020-10-06 09:31:03, Info                  CSI    000001ab [SR] Beginning Verify and Repair transaction
2020-10-06 09:31:12, Info                  CSI    000001ae [SR] Verify complete
2020-10-06 09:31:13, Info                  CSI    000001af [SR] Verifying 100 (0x00000064) components
2020-10-06 09:31:13, Info                  CSI    000001b0 [SR] Beginning Verify and Repair transaction
2020-10-06 09:31:22, Info                  CSI    000001b2 [SR] Verify complete
2020-10-06 09:31:23, Info                  CSI    000001b3 [SR] Verifying 100 (0x00000064) components
2020-10-06 09:31:23, Info                  CSI    000001b4 [SR] Beginning Verify and Repair transaction
2020-10-06 09:31:33, Info                  CSI    000001b6 [SR] Verify complete
2020-10-06 09:31:34, Info                  CSI    000001b7 [SR] Verifying 100 (0x00000064) components
2020-10-06 09:31:34, Info                  CSI    000001b8 [SR] Beginning Verify and Repair transaction
2020-10-06 09:31:43, Info                  CSI    000001ba [SR] Verify complete
2020-10-06 09:31:44, Info                  CSI    000001bb [SR] Verifying 100 (0x00000064) components
2020-10-06 09:31:44, Info                  CSI    000001bc [SR] Beginning Verify and Repair transaction
2020-10-06 09:31:52, Info                  CSI    000001be [SR] Verify complete
2020-10-06 09:31:53, Info                  CSI    000001bf [SR] Verifying 100 (0x00000064) components
2020-10-06 09:31:53, Info                  CSI    000001c0 [SR] Beginning Verify and Repair transaction
2020-10-06 09:31:56, Info                  CSI    000001c2 [SR] Verify complete
2020-10-06 09:31:56, Info                  CSI    000001c3 [SR] Verifying 100 (0x00000064) components
2020-10-06 09:31:56, Info                  CSI    000001c4 [SR] Beginning Verify and Repair transaction
2020-10-06 09:32:03, Info                  CSI    000001c6 [SR] Verify complete
2020-10-06 09:32:03, Info                  CSI    000001c7 [SR] Verifying 100 (0x00000064) components
2020-10-06 09:32:03, Info                  CSI    000001c8 [SR] Beginning Verify and Repair transaction
2020-10-06 09:32:10, Info                  CSI    000001ca [SR] Verify complete
2020-10-06 09:32:11, Info                  CSI    000001cb [SR] Verifying 100 (0x00000064) components
2020-10-06 09:32:11, Info                  CSI    000001cc [SR] Beginning Verify and Repair transaction
2020-10-06 09:32:19, Info                  CSI    000001ce [SR] Verify complete
2020-10-06 09:32:20, Info                  CSI    000001cf [SR] Verifying 100 (0x00000064) components
2020-10-06 09:32:20, Info                  CSI    000001d0 [SR] Beginning Verify and Repair transaction
2020-10-06 09:32:24, Info                  CSI    000001d2 [SR] Verify complete
2020-10-06 09:32:25, Info                  CSI    000001d3 [SR] Verifying 100 (0x00000064) components
2020-10-06 09:32:25, Info                  CSI    000001d4 [SR] Beginning Verify and Repair transaction
2020-10-06 09:32:32, Info                  CSI    000001d6 [SR] Verify complete
2020-10-06 09:32:32, Info                  CSI    000001d7 [SR] Verifying 100 (0x00000064) components
2020-10-06 09:32:32, Info                  CSI    000001d8 [SR] Beginning Verify and Repair transaction
2020-10-06 09:32:48, Info                  CSI    000001da [SR] Verify complete
2020-10-06 09:32:49, Info                  CSI    000001db [SR] Verifying 100 (0x00000064) components
2020-10-06 09:32:49, Info                  CSI    000001dc [SR] Beginning Verify and Repair transaction
2020-10-06 09:33:08, Info                  CSI    000001de [SR] Verify complete
2020-10-06 09:33:08, Info                  CSI    000001df [SR] Verifying 100 (0x00000064) components
2020-10-06 09:33:08, Info                  CSI    000001e0 [SR] Beginning Verify and Repair transaction
2020-10-06 09:33:15, Info                  CSI    000001e2 [SR] Verify complete
2020-10-06 09:33:16, Info                  CSI    000001e3 [SR] Verifying 100 (0x00000064) components
2020-10-06 09:33:16, Info                  CSI    000001e4 [SR] Beginning Verify and Repair transaction
2020-10-06 09:33:20, Info                  CSI    000001e6 [SR] Repairing corrupted file [ml:520{260},l:74{37}]"\??\C:\Program Files\Windows Defender"\[l:18{9}]"MpSvc.dll" from store
2020-10-06 09:33:21, Info                  CSI    000001e8 [SR] Verify complete
2020-10-06 09:33:21, Info                  CSI    000001e9 [SR] Verifying 100 (0x00000064) components
2020-10-06 09:33:21, Info                  CSI    000001ea [SR] Beginning Verify and Repair transaction
2020-10-06 09:33:26, Info                  CSI    000001ec [SR] Verify complete
2020-10-06 09:33:27, Info                  CSI    000001ed [SR] Verifying 100 (0x00000064) components
2020-10-06 09:33:27, Info                  CSI    000001ee [SR] Beginning Verify and Repair transaction
2020-10-06 09:33:31, Info                  CSI    000001f0 [SR] Verify complete
2020-10-06 09:33:32, Info                  CSI    000001f1 [SR] Verifying 100 (0x00000064) components
2020-10-06 09:33:32, Info                  CSI    000001f2 [SR] Beginning Verify and Repair transaction
2020-10-06 09:33:38, Info                  CSI    000001f4 [SR] Verify complete
2020-10-06 09:33:39, Info                  CSI    000001f5 [SR] Verifying 100 (0x00000064) components
2020-10-06 09:33:39, Info                  CSI    000001f6 [SR] Beginning Verify and Repair transaction
2020-10-06 09:33:40, Info                  CSI    000001f8 [SR] Verify complete
2020-10-06 09:33:41, Info                  CSI    000001f9 [SR] Verifying 100 (0x00000064) components
2020-10-06 09:33:41, Info                  CSI    000001fa [SR] Beginning Verify and Repair transaction
2020-10-06 09:33:42, Info                  CSI    000001fc [SR] Verify complete
2020-10-06 09:33:43, Info                  CSI    000001fd [SR] Verifying 100 (0x00000064) components
2020-10-06 09:33:43, Info                  CSI    000001fe [SR] Beginning Verify and Repair transaction
2020-10-06 09:33:50, Info                  CSI    00000200 [SR] Verify complete
2020-10-06 09:33:50, Info                  CSI    00000201 [SR] Verifying 25 (0x00000019) components
2020-10-06 09:33:50, Info                  CSI    00000202 [SR] Beginning Verify and Repair transaction
2020-10-06 09:33:52, Info                  CSI    00000204 [SR] Verify complete
2020-10-06 09:33:52, Info                  CSI    00000205 [SR] Repairing 2 components
2020-10-06 09:33:52, Info                  CSI    00000206 [SR] Beginning Verify and Repair transaction
2020-10-06 09:33:52, Info                  CSI    00000208 [SR] Repairing corrupted file [ml:520{260},l:74{37}]"\??\C:\Program Files\Windows Defender"\[l:18{9}]"MpSvc.dll" from store
2020-10-06 09:33:53, Info                  CSI    0000020a [SR] Repairing corrupted file [ml:520{260},l:76{38}]"\??\C:\Program Files\Internet Explorer"\[l:22{11}]"ieproxy.dll" from store
2020-10-06 09:33:53, Info                  CSI    0000020c [SR] Repair complete
2020-10-06 09:33:53, Info                  CSI    0000020d [SR] Committing transaction
2020-10-06 09:33:53, Info                  CSI    00000211 [SR] Unable to complete Verify and Repair transaction because some of the files that need to be repaired are in use. A reboot is required to complete this operation.
2020-10-06 09:33:53, Info                  CSI    00000212 [SR] Repairing 2 components
2020-10-06 09:33:53, Info                  CSI    00000213 [SR] Beginning Verify and Repair transaction
2020-10-06 09:33:53, Info                  CSI    00000215 [SR] Repairing corrupted file [ml:520{260},l:74{37}]"\??\C:\Program Files\Windows Defender"\[l:18{9}]"MpSvc.dll" from store
2020-10-06 09:33:53, Info                  CSI    00000217 [SR] Repairing corrupted file [ml:520{260},l:76{38}]"\??\C:\Program Files\Internet Explorer"\[l:22{11}]"ieproxy.dll" from store
2020-10-06 09:33:53, Info                  CSI    00000219 [SR] Repair complete

Hola @Karina_Monserrat_Lop

Has olvidado comentar si aun persiste el problema?

Prueba ejecutar Malwarebytes en Modo Normal y nos comentas si se ejecuta.

Salu2

Tiene usted razón una disculpa srta Sandra, persiste el problema y aun no me deja ejecutar ningún programa sale aun error 0xc0000005 y se sigue abriendo lo del explorador de windows

Hola @Karina_Monserrat_Lop

Vuelve a ejecutar FRST tal como lo hiciste la primera vez, pero revisa bien los reportes que pegas, ya que anteriormente pegaste dos veces el mismo reporte de Addition, y necesito ambos.

Salu2

Reporte FRST:

Resultado del análisis realizado por Farbar Recovery Scan Tool (FRST) (x86) Versión: 20-09-2020
Ejecutado por MIGUEL (administrador) sobre MIGUEL-VAIO (Sony Corporation VPCYB35AL) (09-10-2020 08:15:42)
Ejecutado desde C:\Users\MIGUEL\Desktop
Perfiles cargados: MIGUEL
Platform: Microsoft Windows 7 Starter  Service Pack 1 (X86) Idioma: Español (España, internacional)
Navegador predeterminado: Chrome
Modo de Inicio: Safe Mode (minimal)
Tutorial para Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Procesos (Lista blanca) =================

(Si una entrada es incluida en el fixlist, el proceso será cerrado. El archivo no será movido.)

(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe

==================== Registro (Lista blanca) ===================

(Si una entrada es incluida en el fixlist, el elemento del registro será restaurado a su valor predeterminado o será eliminado. El archivo no será movido.)

HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [1951471 2010-10-31] (Synaptics Incorporated)
HKLM\...\Run: [SunJavaUpdateSched] => "C:\Program Files\Java\jre6\bin\jusched.exe"
HKLM\...\Run: [AhnLab Online Security Personal] => C:\Program Files\AhnLab\ASP\AOSPersonal\aosrun.exe [516039 2012-08-08] (AhnLab, Inc.)
HKLM\...\Run: [Wondershare Helper Compact.exe] => C:\Program Files\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe [2137744 2016-10-08] (Wondershare software CO., LIMITED -> Wondershare)
HKLM\...\Run: [TeamsMachineInstaller] => C:\Program Files\Teams Installer\Teams.exe [82543336 2019-08-14] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-1759255200-2635567169-74197307-1001\...\Run: [ares] => "C:\Program Files\Ares\Ares.exe" -h
HKU\S-1-5-21-1759255200-2635567169-74197307-1001\...\Run: [OfficeSyncProcess] => "C:\Program Files\Microsoft Office\Office14\MSOSYNC.EXE"
HKU\S-1-5-21-1759255200-2635567169-74197307-1001\...\Run: [Spotify] => C:\Users\MIGUEL\AppData\Roaming\Spotify\Spotify.exe [24274336 2019-09-21] (Spotify AB -> Spotify Ltd)
HKU\S-1-5-21-1759255200-2635567169-74197307-1001\...\Run: [com.squirrel.Teams.Teams] => C:\Users\MIGUEL\AppData\Local\Microsoft\Teams\Update.exe [1789976 2019-09-12] (Microsoft 3rd Party Application Component -> Microsoft Corporation)
HKU\S-1-5-21-1759255200-2635567169-74197307-1001\...\MountPoints2: D - D:\HiSuiteDownLoader.exe
HKU\S-1-5-21-1759255200-2635567169-74197307-1001\...\MountPoints2: {48e9fac1-17da-11e7-bce4-d6af78bb8972} - D:\Setup.exe
HKU\S-1-5-21-1759255200-2635567169-74197307-1001\...\MountPoints2: {855bd446-daeb-11e9-9437-9d6b03cad13d} - D:\HiSuiteDownLoader.exe
HKU\S-1-5-21-1759255200-2635567169-74197307-1001\...\MountPoints2: {d9a8b4a8-d925-11e3-a9f6-3859f9f2376a} - E:\LGAutoRun.exe
HKU\S-1-5-21-1759255200-2635567169-74197307-1001\...\MountPoints2: {fdb0b46c-544c-11e2-a20a-3859f9f2376a} - D:\Autorun.exe
HKU\S-1-5-21-1759255200-2635567169-74197307-1001\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Windows\system32\ssText3d.scr [293888 2010-11-20] (Microsoft Windows -> Microsoft Corporation)
HKLM\...\Windows NT x86\Print Processors\hpzpp4v2: C:\Windows\System32\spool\prtprocs\W32X86\hpzpp4v2.dll [273920 2006-12-29] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard Corporation)
HKLM\...\Print\Monitors\HP E111 Status Monitor: C:\Windows\system32\hpinkstsE111LM.dll [316040 2017-04-13] (Hewlett Packard -> HP Inc.)
HKLM\...\Print\Monitors\LIDIL hpzll4v2: C:\Windows\system32\hpzll4v2.dll [117760 2006-12-30] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard Company)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{2D46B6DC-2207-486B-B523-A557E6D54B47}] -> C:\Windows\system32\cmd.exe /D /C start C:\Windows\system32\ie4uinit.exe -ClearIconCache
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> "C:\Program Files\Google\Chrome\Application\77.0.3865.120\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level
HKLM\Software\...\Authentication\Credential Providers: [{50968FF7-10C1-4fb3-98B0-CD654D6CB97E}] -> C:\Program Files\WIDCOMM\Bluetooth Software\\BtwCP.dll [2010-07-29] (Broadcom Corporation.)
HKLM\Software\...\Authentication\Credential Providers: [{F8A0B131-5F68-486c-8040-7E8FC3C85BB6}] -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDCREDPROV.DLL [2010-09-21] (Microsoft Corp.)
AppInit_DLLs: C:\PROGRA~1\COMMON~1\System\symsrv.dll => C:\Program Files\Common Files\System\symsrv.dll [69337 2020-09-30] (Microsoft Corporation) <==== ATENCIÓN
BootExecute: autocheck autochk /k:C * 
GroupPolicy: Restricción ? <==== ATENCIÓN
CHR HKLM\SOFTWARE\Policies\Google: Restricción <==== ATENCIÓN

==================== Internet (Lista blanca) ====================

(Si un elemento es incluido en el fixlist, y éste pertenece al registro, será eliminado o restaurado a su valor predeterminado.)

Winsock: Catalog5 07 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [223559 2010-09-21] (Microsoft Corp.)
Winsock: Catalog5 08 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [223559 2010-09-21] (Microsoft Corp.)
Winsock: Catalog5 10 C:\Program Files\Bonjour\mdnsNSP.dll [199983 2011-08-30] (Apple Inc.)
Hosts: Hay más de una entrada en Hosts. Consulte la sección Hosts de Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.8.1 192.168.8.1
Tcpip\..\Interfaces\{2BC6A7AD-6F29-4EAB-BB65-EF8F19F155FC}: [DhcpNameServer] 192.168.8.1 192.168.8.1
Tcpip\..\Interfaces\{6F6FDF6B-237D-4585-AC96-9A1F99896BE6}: [DhcpNameServer] 192.168.42.129
Tcpip\..\Interfaces\{C338E81B-6573-44C1-85EA-2002CEB5F742}: [DhcpNameServer] 192.168.8.1 192.168.8.1

FireFox:
========
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF32.dll [2011-08-18] (Adobe Systems Incorporated -> )
FF Plugin: @ahnlab.com/asp/npaosmgr.1 -> C:\Program Files\AhnLab\ASP\Components\aosmgr\conflict_491\npaosmgr.dll [2013-01-31] (AhnLab, Inc. -> AhnLab, Inc.)
FF Plugin: @ahnlab.com/asp/npmkd25sp -> C:\Program Files\AhnLab\ASP\MyKeyDefense 2.5\npmkd25sp.dll [2013-02-06] (AhnLab, Inc. -> AhnLab, Inc.)
FF Plugin: @java.com/JavaPlugin -> C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll [2011-08-18] (Sun Microsystems, Inc.)
FF Plugin: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2019-09-08] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation ->  Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2019-09-08] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll [2010-11-10] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=15.4.3508.1109 -> C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll [2010-11-10] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin HKU\S-1-5-21-1759255200-2635567169-74197307-1001: @rocketlife.com/RocketLife Secure Plug-In Layer;version=1.0.5 -> C:\Users\MIGUEL\AppData\Roaming\Visan\plugins\npRLSecurePluginLayer.dll [2011-11-15] (RocketLife -> RocketLife, LLP)

Chrome: 
=======
CHR DefaultProfile: Profile 1
CHR Profile: C:\Users\MIGUEL\AppData\Local\Google\Chrome\User Data\System Profile [2020-01-14]

==================== Servicios (Lista blanca) ===================

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)

S3 ACDaemon; C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe [113152 2010-03-18] (ArcSoft, Inc. -> ArcSoft Inc.)
S3 AdobeFlashPlayerUpdateSvc; C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [250288 2012-10-04] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
S2 AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [176128 2011-06-30] (Microsoft Windows Hardware Compatibility Publisher -> AMD)
S2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [372679 2011-05-24] (Advanced Micro Devices, Inc.)
S3 AOS2Service; C:\Program Files\AhnLab\ASP\Smart Update i\aos2svc.exe [155128 2012-08-24] (AhnLab, Inc. -> AhnLab, Inc.)
S3 aossvc; C:\Program Files\AhnLab\ASP\AOSPersonal\aossvc.exe [77312 2012-08-08] (AhnLab, Inc. -> AhnLab, Inc.)
S2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [7416600 2019-10-18] (Microsoft Corporation -> Microsoft Corporation)
S2 FirebirdGuardianDefaultInstance; C:\Program Files\Firebird\Firebird_2_5\bin\fbguard.exe [98304 2010-09-17] (Firebird Project)
S3 FirebirdServerDefaultInstance; C:\Program Files\Firebird\Firebird_2_5\bin\fbserver.exe [3735552 2010-09-17] (Firebird Project)
S2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [5826679 2020-10-03] (Malwarebytes)
S2 uCamMonitor; C:\Program Files\ArcSoft\Magic-i Visual Effects 2\uCamMonitor.exe [183303 2011-02-23] (ArcSoft, Inc.)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [680960 2013-05-26] (Microsoft Windows -> Microsoft Corporation)
S2 wlidsvc; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [1710464 2010-09-21] (Microsoft Corporation -> Microsoft Corp.)
S2 edgeupdate; "C:\Program Files\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /svc [X]
S3 edgeupdatem; "C:\Program Files\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /medsvc [X]
S3 GoogleChromeElevationService; "C:\Program Files\Google\Chrome\Application\77.0.3865.120\elevation_service.exe" [X]
S3 MozillaMaintenance; "C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe" [X]
S2 Oasis2Service; "C:\Program Files\DDNi\Oasis2Service 1.0\Oasis2Service.exe" [X]
S2 SampleCollector; "C:\Program Files\Sony\VAIO Care\VCPerfService.exe" "/service" "/sstates" "/sampleinterval=5000" "/procinterval=5" "/dllinterval=120" "/counter=\Processor(_Total)\% Processor Time:1/counter=\PhysicalDisk(_Total)\Disk Bytes/sec:1" "/counter=\Network Interface(*)\Bytes Total/sec:1" "/expandcounter=\Processor Information(*)\Processor Frequency:1" "/expandcounter=\Processor(*)\% Idle Time:1" "/expandcounter=\Processor(*)\% C1 Time:1" "/expandcounter=\Processor(*)\% C2 Time:1" "/expandcounter=\Processor(*)\% C3 Time:1" "/expandcounter=\Processor(*)\% Processor Time:1" "/directory=C:\ProgramData\Sony Corporation\VAIO Care\inteldata"
S3 SpfService; "C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\SPF\SpfService.exe" [X]
S2 VAIO Event Service; "C:\Program Files\Sony\VAIO Event Service\VESMgr.exe" [X]
S3 VcmIAlzMgr; "C:\Program Files\Sony\VCM Intelligent Analyzing Manager\VcmIAlzMgr.exe" [X]
S3 VcmINSMgr; "C:\Program Files\Sony\VCM Intelligent Network Service Manager\VcmINSMgr.exe" [X]
S3 VCService; "C:\Program Files\Sony\VAIO Care\VCService.exe" [X]
S2 VSNService; "C:\Program Files\Sony\VAIO Smart Network\VSNService.exe" [X]

===================== Controladores (Lista blanca) ===================

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)

S3 AhnFlt2K; C:\Windows\system32\drivers\AhnFlt2K.sys [53088 2011-08-22] (AhnLab, Inc. -> AhnLab, Inc.)
S3 AhnRec2K; C:\Windows\system32\drivers\AhnRec2K.sys [21824 2012-09-23] (AhnLab, Inc. -> AhnLab, Inc.)
S3 AhnRghNt; C:\Windows\system32\drivers\AhnRghNt.sys [62784 2012-09-23] (AhnLab, Inc. -> AhnLab, Inc.)
R3 amdiox86; C:\Windows\System32\DRIVERS\amdiox86.sys [37944 2010-02-18] (Advanced Micro Devices, Inc. -> Advanced Micro Devices)
S3 amdkmdag; C:\Windows\System32\DRIVERS\atikmdag.sys [7800832 2011-06-30] (Microsoft Windows Hardware Compatibility Publisher -> ATI Technologies Inc.)
S3 amdkmdap; C:\Windows\System32\DRIVERS\atikmpag.sys [245760 2011-06-30] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc.)
R0 amd_sata; C:\Windows\System32\drivers\amd_sata.sys [64128 2011-02-17] (Advanced Micro Devices, Inc. -> Advanced Micro Devices)
R0 amd_xata; C:\Windows\System32\drivers\amd_xata.sys [32384 2011-02-17] (Advanced Micro Devices, Inc. -> Advanced Micro Devices)
S1 AMonTDLH; C:\Windows\system32\Drivers\AMonTDLH.sys [90944 2012-09-14] (AhnLab, Inc. -> AhnLab, Inc.)
S3 ArcSoftKsUFilter; C:\Windows\System32\DRIVERS\ArcSoftKsUFilter.sys [17408 2009-05-26] (ArcSoft, Inc. -> ArcSoft, Inc.)
S3 ATamptNt_aos; C:\Program Files\AhnLab\ASP\Smart Update i\atamptnt.sys [187224 2012-09-24] (AhnLab, Inc. -> AhnLab, Inc.)
S3 athr; C:\Windows\System32\DRIVERS\athr.sys [1800704 2010-10-31] (Microsoft Windows Hardware Compatibility Publisher -> Atheros Communications, Inc.)
S3 AtiHDAudioService; C:\Windows\System32\drivers\AtihdW73.sys [100880 2011-06-30] (ATI Technologies, Inc -> Advanced Micro Devices)
S3 btwampfl; C:\Windows\System32\drivers\btwampfl.sys [297000 2010-10-31] (Broadcom Corporation -> Broadcom Corporation.)
S3 btwaudio; C:\Windows\System32\drivers\btwaudio.sys [88616 2010-10-31] (Broadcom Corporation -> Broadcom Corporation.)
S3 btwavdt; C:\Windows\System32\DRIVERS\btwavdt.sys [111656 2010-10-31] (Broadcom Corporation -> Broadcom Corporation.)
S3 btwl2cap; C:\Windows\System32\DRIVERS\btwl2cap.sys [33320 2010-10-31] (Broadcom Corporation -> Broadcom Corporation.)
S3 btwrchid; C:\Windows\System32\DRIVERS\btwrchid.sys [18728 2010-10-31] (Broadcom Corporation -> Broadcom Corporation.)
S3 CdmDrvNt; C:\Windows\system32\Drivers\CdmDrvNt.sys [19616 2009-07-20] (AhnLab, Inc. -> AhnLab, Inc.)
S3 dg_ssudbus; C:\Windows\System32\DRIVERS\ssudbus.sys [109456 2017-05-18] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R2 MBAMChameleon; C:\Windows\System32\Drivers\MbamChameleon.sys [181512 2020-10-03] (Malwarebytes Inc -> Malwarebytes)
S3 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [213912 2020-10-06] (Malwarebytes Inc -> Malwarebytes)
S3 MfFWEnt; C:\Program Files\AhnLab\ASP\MyFirewall 4.0\MfFWEnt.sys [101368 2010-06-28] (AhnLab, Inc. -> AhnLab, Inc.)
S3 MfIPSEnt; C:\Program Files\AhnLab\ASP\MyFirewall 4.0\MfIPSEnt.sys [121536 2010-06-28] (AhnLab, Inc. -> AhnLab, Inc.)
S3 Mkd2Bthf; C:\Windows\System32\drivers\Mkd2Bthf.sys [80728 2012-05-31] (AhnLab, Inc. -> AhnLab, Inc.)
S3 Mkd2kfNt; C:\Windows\System32\drivers\Mkd2kfNt.sys [127064 2012-10-14] (AhnLab, Inc. -> AhnLab, Inc.)
S3 Mkd2Nadr; C:\Windows\System32\drivers\Mkd2Nadr.sys [92376 2012-05-31] (AhnLab, Inc. -> AhnLab, Inc.)
S3 RimUsb; C:\Windows\System32\Drivers\RimUsb.sys [22656 2007-05-14] (Microsoft Windows Hardware Compatibility Publisher -> Research In Motion Limited)
R3 SFEP; C:\Windows\System32\DRIVERS\SFEP.sys [9344 2010-04-26] (Microsoft Windows Hardware Compatibility Publisher -> Sony Corporation)
R3 usbfilter; C:\Windows\System32\DRIVERS\usbfilter.sys [35968 2011-01-07] (Advanced Micro Devices, Inc. -> Advanced Micro Devices)
S1 VBoxNetAdp; C:\Windows\System32\DRIVERS\VBoxNetAdp6.sys [108208 2016-03-04] (Oracle Corporation -> Oracle Corporation)
S1 VBoxNetLwf; C:\Windows\System32\DRIVERS\VBoxNetLwf.sys [174192 2016-03-04] (Oracle Corporation -> Oracle Corporation)

==================== NetSvcs (Lista blanca) ===================

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)


==================== Un mes (creado) ===================

(Si una entrada es incluida en el fixlist, el archivo/carpeta será eliminado/a.)

2020-10-09 08:15 - 2020-10-09 08:15 - 000015869 _____ C:\Users\MIGUEL\Desktop\FRST.txt
2020-10-06 09:40 - 2020-10-06 09:40 - 000032322 _____ C:\Users\MIGUEL\Desktop\sfcdetails.txt
2020-10-03 12:12 - 2020-10-09 08:14 - 000000000 ____D C:\FRST
2020-10-03 12:12 - 2020-10-01 08:37 - 002091463 _____ (Farbar) C:\Users\MIGUEL\Desktop\FRST.exe
2020-10-03 12:12 - 2020-10-01 08:37 - 002013184 ___SH (Farbar) C:\Users\MIGUEL\Desktop\FRST.exe.dat
2020-10-03 08:51 - 2020-10-01 08:37 - 008414384 _____ (Malwarebytes) C:\Users\MIGUEL\Desktop\adwcleaner_8.0.7.exe
2020-10-03 08:46 - 2020-10-06 09:13 - 000213912 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamswissarmy.sys
2020-10-03 08:46 - 2020-10-03 08:46 - 000181512 _____ (Malwarebytes) C:\Windows\system32\Drivers\MbamChameleon.sys
2020-10-03 08:46 - 2020-10-03 08:46 - 000001960 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2020-10-03 08:46 - 2020-10-03 08:46 - 000001948 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2020-10-03 08:44 - 2020-10-03 08:42 - 185373152 _____ (Malwarebytes) C:\Users\MIGUEL\Desktop\MBSetup-0062692.0062692-4.2.1.179.exe
2020-10-03 08:17 - 2020-10-03 08:17 - 000000000 ____D C:\Users\MIGUEL\AppData\Temp
2020-10-01 13:13 - 2020-10-01 13:13 - 000000000 ____D C:\Program Files\Malwarebytes
2020-10-01 12:59 - 2020-10-01 12:59 - 000056904 _____ C:\Users\MIGUEL\Desktop\ZHPCleaner (R).html
2020-10-01 12:59 - 2020-10-01 12:59 - 000038925 _____ C:\Users\MIGUEL\Desktop\ZHPCleaner (R).txt
2020-10-01 12:52 - 2020-10-01 12:52 - 000056058 _____ C:\Users\MIGUEL\Desktop\ZHPCleaner (S).html
2020-10-01 12:26 - 2020-10-01 12:59 - 000000000 ____D C:\Users\MIGUEL\AppData\Roaming\ZHP
2020-10-01 12:26 - 2020-10-01 12:26 - 000000000 ____D C:\Users\MIGUEL\AppData\Local\ZHP
2020-10-01 12:26 - 2020-10-01 08:37 - 003406663 _____ (Nicolas Coolman) C:\Users\MIGUEL\Desktop\ZHPCleaner.exe
2020-10-01 12:15 - 2020-10-01 12:15 - 000000270 _____ C:\Windows\Tasks\AdwCleaner_onReboot.job
2020-10-01 11:08 - 2020-10-01 12:14 - 000000000 ____D C:\AdwCleaner
2020-10-01 08:57 - 2020-10-01 08:57 - 000000965 _____ C:\Users\Public\Desktop\CCleaner.lnk
2020-10-01 08:57 - 2020-10-01 08:57 - 000000300 ____H C:\Windows\Tasks\CCleaner Update.job
2020-10-01 08:57 - 2020-10-01 08:57 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2020-10-01 08:57 - 2020-10-01 08:57 - 000000000 ____D C:\Program Files\CCleaner
2020-10-01 08:53 - 2020-10-01 08:53 - 000000000 ____D C:\Users\MIGUEL\Desktop\Nueva carpeta
2020-09-30 20:37 - 2020-09-30 20:37 - 000000000 ____D C:\ProgramData\TEMP
2020-09-30 20:34 - 2020-09-30 20:34 - 000000000 ____D C:\Users\FAM LC\AppData\Roaming\WinRAR
2020-09-30 20:33 - 2020-09-30 20:33 - 000119600 _____ C:\Users\FAM LC\AppData\Local\GDIPFONTCACHEV1.DAT
2020-09-29 12:30 - 2020-09-29 12:30 - 000000000 ____D C:\Users\MIGUEL\AppData\Local\mbamtray
2020-09-29 12:29 - 2020-10-03 08:44 - 000129056 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbae.sys
2020-09-29 12:29 - 2020-09-29 12:35 - 000000000 ____D C:\ProgramData\Malwarebytes
2020-09-29 09:57 - 2020-09-29 10:05 - 000000000 ____D C:\a43a12a983ef559c1a7f1adc93
2020-09-29 09:45 - 2020-09-29 09:45 - 000000000 ____D C:\Users\MIGUEL\AppData\Roaming\Obsidium
2020-09-25 19:10 - 2020-09-30 09:08 - 000000000 ____D C:\Users\MIGUEL\AppData\Local\ElevatedDiagnostics
2020-09-23 09:34 - 2020-09-23 09:34 - 000003994 _____ C:\Windows\system32\Tasks\User_Feed_Synchronization-{AC789CCE-BD89-49AE-82F2-BF81B6ED5332}
2020-09-23 09:34 - 2020-09-23 09:34 - 000002287 _____ C:\Users\FAM LC\Desktop\Microsoft Teams.lnk
2020-09-23 09:34 - 2020-09-23 09:34 - 000000000 ____D C:\Users\FAM LC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft Corporation
2020-09-23 09:33 - 2020-09-23 09:33 - 000000000 ____D C:\Users\FAM LC\AppData\Roaming\Microsoft Teams
2020-09-23 09:31 - 2020-09-30 20:37 - 000000000 ____D C:\Users\FAM LC\AppData\Local\CrashDumps
2020-09-23 09:31 - 2020-09-23 09:32 - 000000000 ____D C:\Users\FAM LC\AppData\Local\SquirrelTemp
2020-09-23 09:31 - 2020-09-23 09:31 - 000000000 ____D C:\Users\FAM LC\Documents\Directorio de intercambio Bluetooth
2020-09-23 09:31 - 2020-09-23 09:31 - 000000000 ____D C:\Users\FAM LC\AppData\Local\Wondershare
2020-09-23 09:31 - 2020-09-23 09:31 - 000000000 ____D C:\Users\FAM LC\AppData\Local\Broadcom
2020-09-23 09:30 - 2020-09-23 09:31 - 000000000 ____D C:\Users\FAM LC\AppData\Roaming\Sony Corporation
2020-09-23 09:30 - 2020-09-23 09:31 - 000000000 ____D C:\Users\FAM LC
2020-09-23 09:30 - 2020-09-23 09:30 - 000001397 _____ C:\Users\FAM LC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2020-09-23 09:30 - 2020-09-23 09:30 - 000000020 ___SH C:\Users\FAM LC\ntuser.ini
2020-09-23 09:30 - 2020-09-23 09:30 - 000000000 _SHDL C:\Users\FAM LC\Reciente
2020-09-23 09:30 - 2020-09-23 09:30 - 000000000 _SHDL C:\Users\FAM LC\Plantillas
2020-09-23 09:30 - 2020-09-23 09:30 - 000000000 _SHDL C:\Users\FAM LC\Mis documentos
2020-09-23 09:30 - 2020-09-23 09:30 - 000000000 _SHDL C:\Users\FAM LC\Menú Inicio
2020-09-23 09:30 - 2020-09-23 09:30 - 000000000 _SHDL C:\Users\FAM LC\Impresoras
2020-09-23 09:30 - 2020-09-23 09:30 - 000000000 _SHDL C:\Users\FAM LC\Entorno de red
2020-09-23 09:30 - 2020-09-23 09:30 - 000000000 _SHDL C:\Users\FAM LC\Documents\Mis vídeos
2020-09-23 09:30 - 2020-09-23 09:30 - 000000000 _SHDL C:\Users\FAM LC\Documents\Mis imágenes
2020-09-23 09:30 - 2020-09-23 09:30 - 000000000 _SHDL C:\Users\FAM LC\Documents\Mi música
2020-09-23 09:30 - 2020-09-23 09:30 - 000000000 _SHDL C:\Users\FAM LC\Datos de programa
2020-09-23 09:30 - 2020-09-23 09:30 - 000000000 _SHDL C:\Users\FAM LC\Configuración local
2020-09-23 09:30 - 2020-09-23 09:30 - 000000000 _SHDL C:\Users\FAM LC\AppData\Roaming\Microsoft\Windows\Start Menu\Programas
2020-09-23 09:30 - 2020-09-23 09:30 - 000000000 _SHDL C:\Users\FAM LC\AppData\Local\Historial
2020-09-23 09:30 - 2020-09-23 09:30 - 000000000 _SHDL C:\Users\FAM LC\AppData\Local\Datos de programa
2020-09-23 09:30 - 2020-09-23 09:30 - 000000000 _SHDL C:\Users\FAM LC\AppData\Local\Archivos temporales de Internet
2020-09-23 09:30 - 2020-09-23 09:30 - 000000000 ____D C:\Users\FAM LC\AppData\Roaming\Adobe
2020-09-23 09:30 - 2020-09-23 09:30 - 000000000 ____D C:\Users\FAM LC\AppData\Local\VirtualStore
2020-09-23 09:30 - 2017-08-17 20:41 - 000002090 _____ C:\Users\FAM LC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft OneDrive.lnk
2020-09-23 09:30 - 2014-06-25 22:15 - 000000000 ____D C:\Users\FAM LC\AppData\Local\Microsoft Help
2020-09-23 09:30 - 2014-02-14 10:53 - 000000000 ____D C:\Users\FAM LC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AMD VISION Engine Control Center
2020-09-23 09:30 - 2014-02-14 10:53 - 000000000 ____D C:\Users\FAM LC\AppData\Roaming\ATI
2020-09-23 09:30 - 2014-02-14 10:53 - 000000000 ____D C:\Users\FAM LC\AppData\Local\ATI
2020-09-23 09:30 - 2014-02-14 10:53 - 000000000 ____D C:\Users\FAM LC\AppData\Local\AMD
2020-09-23 09:30 - 2014-02-14 10:52 - 000000000 ____D C:\Users\FAM LC\AppData\Roaming\AhnLab
2020-09-17 15:49 - 2010-02-04 10:01 - 000528216 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_6.dll
2020-09-17 15:49 - 2010-02-04 10:01 - 000238936 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_6.dll
2020-09-17 15:49 - 2010-02-04 10:01 - 000074072 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_4.dll
2020-09-17 15:49 - 2010-02-04 10:01 - 000022360 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_7.dll
2020-09-17 15:49 - 2009-09-04 17:44 - 000238936 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_5.dll
2020-09-17 15:49 - 2009-09-04 17:29 - 005501792 _____ (Microsoft Corporation) C:\Windows\system32\d3dcsx_42.dll
2020-09-17 15:49 - 2009-09-04 17:29 - 001974616 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_42.dll
2020-09-17 15:49 - 2009-09-04 17:29 - 000235344 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_42.dll
2020-09-17 15:49 - 2009-03-09 15:27 - 004178264 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_41.dll
2020-09-17 15:49 - 2008-10-27 10:04 - 000514384 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_3.dll
2020-09-17 15:49 - 2008-10-27 10:04 - 000235856 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_3.dll
2020-09-17 15:49 - 2008-10-27 10:04 - 000070992 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_2.dll
2020-09-17 15:49 - 2008-10-27 10:04 - 000023376 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_5.dll
2020-09-17 15:49 - 2008-10-10 04:52 - 004379984 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_40.dll
2020-09-17 15:49 - 2008-10-10 04:52 - 002036576 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_40.dll
2020-09-17 15:49 - 2008-10-10 04:52 - 000452440 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_40.dll
2020-09-17 15:49 - 2008-07-31 10:41 - 000238088 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_2.dll
2020-09-17 15:49 - 2008-07-31 10:41 - 000068616 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_1.dll
2020-09-17 15:49 - 2008-07-31 10:40 - 000509448 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_2.dll
2020-09-17 15:49 - 2008-07-10 11:01 - 000467984 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_39.dll
2020-09-17 15:49 - 2008-07-10 11:00 - 003851784 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_39.dll
2020-09-17 15:49 - 2008-07-10 11:00 - 001493528 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_39.dll
2020-09-17 15:49 - 2008-05-30 14:19 - 000507400 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_1.dll
2020-09-17 15:49 - 2008-05-30 14:18 - 000238088 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_1.dll
2020-09-17 15:49 - 2008-05-30 14:17 - 000065032 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_0.dll
2020-09-17 15:49 - 2008-05-30 14:17 - 000025608 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_4.dll
2020-09-17 15:49 - 2008-05-30 14:11 - 003850760 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_38.dll
2020-09-17 15:49 - 2008-05-30 14:11 - 001491992 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_38.dll
2020-09-17 15:49 - 2008-05-30 14:11 - 000467984 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_38.dll
2020-09-17 15:49 - 2008-03-05 16:03 - 000479752 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_0.dll
2020-09-17 15:49 - 2008-03-05 16:03 - 000238088 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_0.dll
2020-09-17 15:49 - 2008-03-05 16:00 - 000025608 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_3.dll
2020-09-17 15:49 - 2008-03-05 15:56 - 003786760 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_37.dll
2020-09-17 15:49 - 2008-03-05 15:56 - 001420824 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_37.dll
2020-09-17 15:49 - 2008-02-05 23:07 - 000462864 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_37.dll
2020-09-17 15:49 - 2007-10-22 03:39 - 000267272 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_10.dll
2020-09-17 15:49 - 2007-10-22 03:37 - 000017928 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_2.dll
2020-09-17 15:49 - 2007-10-12 15:14 - 003734536 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_36.dll
2020-09-17 15:49 - 2007-10-12 15:14 - 001374232 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_36.dll
2020-09-17 15:49 - 2007-10-02 09:56 - 000444776 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_36.dll
2020-09-17 15:49 - 2007-07-20 00:57 - 000267112 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_9.dll
2020-09-17 15:49 - 2007-07-19 18:14 - 001358192 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_35.dll
2020-09-17 15:49 - 2007-07-19 18:14 - 000444776 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_35.dll
2020-09-17 15:49 - 2007-06-20 20:46 - 000266088 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_8.dll
2020-09-17 15:49 - 2007-05-16 16:45 - 003497832 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_34.dll
2020-09-17 15:49 - 2007-05-16 16:45 - 001124720 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_34.dll
2020-09-17 15:49 - 2007-05-16 16:45 - 000443752 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_34.dll
2020-09-17 15:49 - 2007-04-04 18:55 - 000261480 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_7.dll
2020-09-17 15:49 - 2007-03-15 16:57 - 000443752 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_33.dll
2020-09-17 15:49 - 2007-03-12 16:42 - 001123696 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_33.dll
2020-09-17 15:49 - 2007-03-05 12:42 - 000015128 _____ (Microsoft Corporation) C:\Windows\system32\x3daudio1_1.dll
2020-09-17 15:49 - 2007-01-24 15:27 - 000255848 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_6.dll
2020-09-17 15:49 - 2006-12-08 12:02 - 000251672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_5.dll
2020-09-17 15:49 - 2006-11-29 13:06 - 000440080 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10.dll
2020-09-17 15:49 - 2006-09-28 16:05 - 000237848 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_4.dll
2020-09-17 15:49 - 2006-07-28 09:30 - 000236824 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_3.dll
2020-09-17 15:49 - 2006-07-28 09:30 - 000062744 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_2.dll
2020-09-17 15:49 - 2006-05-31 07:24 - 000230168 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_2.dll
2020-09-17 15:49 - 2006-03-31 12:39 - 000229584 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_1.dll
2020-09-17 15:49 - 2006-03-31 12:39 - 000062672 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_1.dll
2020-09-17 15:49 - 2006-02-03 08:43 - 002332368 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_29.dll
2020-09-17 15:49 - 2006-02-03 08:42 - 000230096 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_0.dll
2020-09-17 15:49 - 2006-02-03 08:41 - 000014032 _____ (Microsoft Corporation) C:\Windows\system32\x3daudio1_0.dll
2020-09-17 15:49 - 2005-12-05 18:09 - 002323664 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_28.dll
2020-09-17 15:49 - 2005-07-22 19:59 - 002319568 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_27.dll
2020-09-17 15:49 - 2005-05-26 15:34 - 002297552 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_26.dll
2020-09-17 15:49 - 2005-03-18 17:19 - 002337488 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_25.dll
2020-09-17 15:49 - 2005-02-05 19:45 - 002222800 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_24.dll
2020-09-17 15:32 - 2020-09-18 12:38 - 000000000 ___HD C:\Windows\msdownld.tmp
2020-09-17 15:32 - 2020-09-18 12:38 - 000000000 ____D C:\Windows\system32\directx
2020-09-17 15:32 - 2020-09-17 15:37 - 000000000 ____D C:\9dbe5adb4e77d703524a975213fe
2020-09-17 09:40 - 2020-09-17 09:40 - 001373855 _____ (Google LLC) C:\Users\MIGUEL\Downloads\ChromeSetup.exe
2020-09-17 09:16 - 2020-09-17 09:17 - 000006252 _____ C:\Windows\system32\dlcoer.dll.000
2020-09-16 09:49 - 2020-09-27 12:20 - 000000000 ____D C:\Users\MIGUEL\Documents\respaldo docts
2020-09-16 09:48 - 2020-10-09 08:15 - 000000000 ____D C:\Users\MIGUEL\Desktop\respaldo

==================== Un mes (modificado) ==================

(Si una entrada es incluida en el fixlist, el archivo/carpeta será eliminado/a.)

2020-10-09 08:15 - 2020-05-30 15:05 - 002966280 _____ C:\Windows\ntbtlog.txt
2020-10-09 08:14 - 2009-07-13 23:52 - 000000000 ____D C:\Program Files\Windows Defender
2020-10-06 12:27 - 2012-10-04 01:04 - 000000000 ____D C:\Users\MIGUEL\AppData\Local\CrashDumps
2020-10-06 12:24 - 2012-10-04 00:57 - 000000838 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2020-10-06 12:23 - 2009-07-13 23:34 - 000019872 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2020-10-06 12:23 - 2009-07-13 23:34 - 000019872 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2020-10-06 12:21 - 2009-07-13 23:53 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2020-10-02 07:41 - 2011-08-18 13:52 - 000752058 _____ C:\Windows\system32\perfh00A.dat
2020-10-02 07:41 - 2011-08-18 13:52 - 000160810 _____ C:\Windows\system32\perfc00A.dat
2020-10-02 07:41 - 2010-11-20 16:01 - 001688776 _____ C:\Windows\system32\PerfStringBackup.INI
2020-10-02 07:41 - 2009-07-13 21:37 - 000000000 ____D C:\Windows\inf
2020-10-01 13:27 - 2012-10-04 00:56 - 000119600 _____ C:\Users\MIGUEL\AppData\Local\GDIPFONTCACHEV1.DAT
2020-10-01 12:15 - 2011-08-18 11:28 - 000000000 ____D C:\Program Files\Sony
2020-10-01 12:15 - 2011-08-18 11:04 - 000000000 ____D C:\ProgramData\DDNi
2020-10-01 12:15 - 2011-08-18 11:04 - 000000000 ____D C:\Program Files\DDNi
2020-10-01 08:43 - 2009-07-13 23:33 - 000462688 _____ C:\Windows\system32\FNTCACHE.DAT
2020-09-30 08:01 - 2013-01-01 15:07 - 000000048 _____ C:\RB.rdat
2020-09-30 08:01 - 2013-01-01 15:07 - 000000048 _____ C:\License_Time.rdat
2020-09-30 06:59 - 2009-07-13 21:37 - 000000000 ____D C:\Windows\TAPI
2020-09-30 06:59 - 2009-07-13 21:37 - 000000000 ____D C:\Program Files\Common Files\System
2020-09-29 12:20 - 2009-07-13 21:37 - 000000000 ____D C:\Windows\tracing
2020-09-29 10:20 - 2012-10-04 00:37 - 000000000 ____D C:\Users\MIGUEL\AppData\Roaming\SoftGrid Client
2020-09-29 09:36 - 2017-06-11 15:09 - 000000000 ____D C:\Program Files\WinRAR
2020-09-25 21:37 - 2009-07-13 23:52 - 000000000 ____D C:\Windows\Offline Web Pages
2020-09-25 20:21 - 2019-10-14 17:07 - 000000000 ____D C:\Program Files\Bonjour
2020-09-25 12:00 - 2009-07-13 21:37 - 000000000 ____D C:\Windows\system32\NDF
2020-09-23 11:11 - 2009-07-13 23:53 - 000032636 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2020-09-23 09:35 - 2015-01-22 00:17 - 000196608 _____ C:\Windows\system32\Ikeext.etl
2020-09-23 09:31 - 2009-07-13 23:52 - 000000000 ____D C:\Program Files\Windows Sidebar
2020-09-18 23:33 - 2014-10-27 16:37 - 000000282 __RSH C:\ProgramData\ntuser.pol
2020-09-18 14:45 - 2012-10-04 01:00 - 000003994 _____ C:\Windows\system32\Tasks\User_Feed_Synchronization-{EB9F7A8A-94C4-4023-9BB7-9CE508C97708}
2020-09-18 14:28 - 2013-06-05 21:00 - 000000918 _____ C:\Windows\system32\sstates.sdt
2020-09-18 14:28 - 2013-06-05 21:00 - 000000040 _____ C:\Windows\system32\sstate_prev.sdt
2020-09-17 17:56 - 2013-02-10 19:12 - 000070692 _____ C:\test.xml
2020-09-17 14:42 - 2017-07-26 19:56 - 000000000 ____D C:\Users\MIGUEL\AppData\Roaming\Spotify
2020-09-17 12:40 - 2013-08-15 18:10 - 000000000 ____D C:\Windows\system32\MRT
2020-09-17 12:02 - 2013-04-26 16:05 - 126817144 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2020-09-17 11:29 - 2020-01-15 17:43 - 000001117 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2020-09-17 11:29 - 2019-09-08 22:26 - 000002368 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Excel.lnk
2020-09-17 11:29 - 2019-09-08 22:26 - 000002324 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneNote 2016.lnk
2020-09-17 11:29 - 2018-01-25 09:19 - 000001039 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sublime Text 3.lnk
2020-09-17 11:29 - 2017-10-08 22:07 - 000002376 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Visio.lnk
2020-09-17 11:29 - 2017-08-17 20:23 - 000002461 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype Empresarial.lnk
2020-09-17 11:29 - 2017-08-17 20:23 - 000002393 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Access.lnk
2020-09-17 11:29 - 2017-08-17 20:23 - 000002375 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerPoint.lnk
2020-09-17 11:29 - 2017-08-17 20:23 - 000002366 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outlook.lnk
2020-09-17 11:29 - 2017-08-17 20:23 - 000002320 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Publisher.lnk
2020-09-17 11:29 - 2017-04-04 02:48 - 000001855 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Prezi Desktop.lnk
2020-09-17 11:29 - 2017-04-02 16:48 - 000001845 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CDBurnerXP.lnk
2020-09-17 11:29 - 2012-10-10 21:38 - 000002553 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Visor de Microsoft PowerPoint .lnk
2020-09-17 11:29 - 2012-10-04 00:14 - 000002168 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2020-09-17 11:29 - 2011-08-18 12:43 - 000002193 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VAIO Smart Network.lnk
2020-09-17 11:29 - 2011-08-18 12:20 - 000001229 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VAIO Transfer.lnk
2020-09-17 11:29 - 2011-08-18 12:19 - 000002068 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VAIO Gate.lnk
2020-09-17 11:29 - 2011-08-18 12:12 - 000001794 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VAIO Easy Connect.lnk
2020-09-17 11:29 - 2011-08-18 12:11 - 000002199 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VAIO Data Restore Tool.lnk
2020-09-17 11:29 - 2011-08-18 12:07 - 000001143 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Remote Keyboard.lnk
2020-09-17 11:29 - 2011-08-18 11:56 - 000001081 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PMB.lnk
2020-09-17 11:29 - 2011-08-18 11:53 - 000001257 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Media Gallery.lnk
2020-09-17 11:29 - 2011-08-18 11:46 - 000002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader X.lnk
2020-09-17 11:29 - 2011-08-18 11:39 - 000001475 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VAIO Control Center.lnk
2020-09-17 11:29 - 2009-07-13 23:42 - 000001330 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sidebar.lnk
2020-09-17 11:28 - 2019-10-14 17:08 - 000002739 _____ C:\ProgramData\Microsoft\Windows\Start Menu\HP ePrint SW.lnk
2020-09-17 11:28 - 2019-10-12 11:59 - 000002196 _____ C:\Users\MIGUEL\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft OneDrive.lnk
2020-09-17 11:28 - 2017-08-17 20:23 - 000002412 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Word.lnk
2020-09-17 11:28 - 2017-07-26 19:59 - 000001758 _____ C:\Users\MIGUEL\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Spotify.lnk
2020-09-17 11:28 - 2017-03-31 17:15 - 000002224 _____ C:\Users\MIGUEL\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chromium.lnk
2020-09-17 11:28 - 2012-10-04 00:59 - 000001042 _____ C:\Users\MIGUEL\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2020-09-17 11:28 - 2011-08-18 12:39 - 000001320 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live Photo Gallery.lnk
2020-09-17 11:28 - 2011-08-18 12:39 - 000001251 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live Movie Maker.lnk
2020-09-17 11:28 - 2011-08-18 12:38 - 000002432 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live Messenger.lnk
2020-09-17 11:28 - 2011-08-18 12:38 - 000001404 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live Mail.lnk
2020-09-17 11:28 - 2009-07-13 23:46 - 000001515 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2020-09-17 11:28 - 2009-07-13 23:46 - 000001282 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Default Programs.lnk
2020-09-17 11:28 - 2009-07-13 23:42 - 000001352 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Anytime Upgrade.lnk
2020-09-17 11:28 - 2009-07-13 23:42 - 000001246 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\XPS Viewer.lnk
2020-09-17 11:28 - 2009-07-13 23:42 - 000001210 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Fax and Scan.lnk
2020-09-17 11:28 - 2009-07-13 23:37 - 000001266 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Windows Update.lnk
2020-09-17 10:12 - 2012-10-04 08:31 - 000000000 ____D C:\Users\COMERCIALISADORA
2020-09-17 09:40 - 2013-05-09 08:24 - 000003524 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA1ce4cb8859987c4
2020-09-17 09:40 - 2012-10-04 00:11 - 000003396 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore

==================== Archivos en la raíz de algunos directorios ========

2019-11-23 16:49 - 2019-11-23 19:57 - 006922240 _____ () C:\Program Files\GUT9637.tmp
2017-04-07 20:00 - 2017-04-07 20:00 - 007680000 _____ () C:\Program Files\GUTC6D8.tmp
2019-10-21 09:07 - 2019-10-21 09:07 - 000117247 _____ () C:\Users\MIGUEL\AppData\Roaming\Bemomohi
2019-12-20 14:04 - 2019-12-20 14:04 - 000302776 _____ () C:\Users\MIGUEL\AppData\Roaming\Dobamatehug
2019-10-12 11:06 - 2019-10-12 11:06 - 000241436 _____ () C:\Users\MIGUEL\AppData\Roaming\Gemupisepehu
2019-11-21 13:01 - 2019-11-21 13:01 - 000201533 _____ () C:\Users\MIGUEL\AppData\Roaming\Kapak
2019-09-06 00:01 - 2019-09-06 00:01 - 000157496 _____ () C:\Users\MIGUEL\AppData\Roaming\Kebunuge
2019-10-30 11:01 - 2019-10-30 11:01 - 000295435 _____ () C:\Users\MIGUEL\AppData\Roaming\Ketamaroto
2020-01-04 13:01 - 2020-01-04 13:01 - 000165104 _____ () C:\Users\MIGUEL\AppData\Roaming\Kobegagi
2019-09-22 14:01 - 2019-09-22 14:01 - 000296500 _____ () C:\Users\MIGUEL\AppData\Roaming\Mumorehebufu
2020-03-31 20:01 - 2020-03-31 20:01 - 000135885 _____ () C:\Users\MIGUEL\AppData\Roaming\Natikuburah
2019-10-04 11:01 - 2019-10-04 11:01 - 000202696 _____ () C:\Users\MIGUEL\AppData\Roaming\Nokakedoma
2019-10-06 11:06 - 2019-10-06 11:06 - 000139002 _____ () C:\Users\MIGUEL\AppData\Roaming\Ragodap
2019-09-14 13:01 - 2019-09-14 13:01 - 000221033 _____ () C:\Users\MIGUEL\AppData\Roaming\Ratolopede
2020-01-14 16:01 - 2020-01-14 16:01 - 000131176 _____ () C:\Users\MIGUEL\AppData\Roaming\Rememupeta
2020-05-27 20:01 - 2020-05-27 20:01 - 000151239 _____ () C:\Users\MIGUEL\AppData\Roaming\Tonaneruheso
2013-10-14 23:25 - 2013-10-17 22:11 - 000000006 _____ () C:\Users\MIGUEL\AppData\Roaming\userdict-csj
2015-02-22 01:01 - 2020-05-27 20:01 - 000000626 _____ () C:\Users\MIGUEL\AppData\Roaming\WB.CFG
2015-03-28 15:12 - 2015-11-08 23:43 - 000008704 _____ () C:\Users\MIGUEL\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2015-02-23 12:19 - 2015-02-23 12:19 - 000274045 _____ () C:\Users\MIGUEL\AppData\Local\dsi1.dat
2015-02-23 12:19 - 2015-02-23 12:19 - 000161916 _____ () C:\Users\MIGUEL\AppData\Local\dsi2.dat
2019-11-23 11:04 - 2019-11-23 11:04 - 000000001 _____ () C:\Users\MIGUEL\AppData\Local\llftool.4.25.agreement
2017-05-03 21:15 - 2017-05-03 21:15 - 000000000 _____ () C:\Users\MIGUEL\AppData\Local\{F9FA9E52-FEB5-4BA6-A7BB-524550A6193F}

==================== SigCheck ============================

(No existe una corrección automática para los archivos que no pasan la verificación.)


LastRegBack: 2017-09-25 15:58
==================== Final de FRST.txt ========================

Este es el resultado de el reporte Adittion una disculpa no me habia dado cuenta tiene usted razón ahora si aquí están los correctos saludos

Resultados del Análisis Adicional de Farbar Recovery Scan Tool (x86) Versión: 20-09-2020
Ejecutado por MIGUEL (09-10-2020 08:17:40)
Ejecutado desde C:\Users\MIGUEL\Desktop
Microsoft Windows 7 Starter  Service Pack 1 (X86) (2012-10-04 05:55:32)
Modo de Inicio: Safe Mode (minimal)
==========================================================


==================== Cuentas: =============================

Administrador (S-1-5-21-1759255200-2635567169-74197307-500 - Administrator - Disabled)
COMERCIALISADORA (S-1-5-21-1759255200-2635567169-74197307-1002 - Administrator - Enabled) => C:\Users\COMERCIALISADORA
FAM LC (S-1-5-21-1759255200-2635567169-74197307-1003 - Limited - Enabled) => C:\Users\FAM LC
Invitado (S-1-5-21-1759255200-2635567169-74197307-501 - Limited - Enabled) => C:\Users\Invitado
MIGUEL (S-1-5-21-1759255200-2635567169-74197307-1001 - Administrator - Enabled) => C:\Users\MIGUEL

==================== Centro de Seguridad ========================

(Si una entrada es incluida en el fixlist, será eliminada.)

AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Programas instalados ======================

(Solo los programas de adware con indicador "Oculto", pueden ser añadidos al fixlist para hacerlos visibles. Los programas adware deben ser desinstalados manualmente.)

Adobe Flash Player 10 Plugin (HKLM\...\{E6725026-A650-449C-897B-D6B7A5EEA058}) (Version: 10.2.152.26 - Adobe Systems Incorporated)
Adobe Flash Player 11 ActiveX (HKLM\...\Adobe Flash Player ActiveX) (Version: 11.4.402.278 - Adobe Systems Incorporated)
Adobe Reader X MUI (HKLM\...\{AC76BA86-7AD7-FFFF-7B44-AA0000000001}) (Version: 10.0.0 - Adobe Systems Incorporated)
AhnLab Online Security (Personal) (HKLM\...\AhnLab Online Security) (Version:  - AhnLab, Inc)
ArcSoft Magic-i Visual Effects 2 (HKLM\...\{61438020-DDD4-42FA-99A2-50225441980A}) (Version: 2.0.1.142 - ArcSoft)
ArcSoft WebCam Companion 4 (HKLM\...\{C793AD32-2BB8-4CC4-ABD3-A1469C21593C}) (Version: 4.0.21.392 - ArcSoft)
Aspel-CAJA 3.5 (HKLM\...\{74BADEF2-EB6C-474A-A390-84507909EFAF}) (Version: 3.50.0 - Aspel)
ATI Catalyst Install Manager (HKLM\...\{9F8E6025-423A-2A9F-3951-71E9BE2A85E7}) (Version: 3.0.829.0 - ATI Technologies, Inc.)
aTube Catcher (HKLM\...\aTube Catcher) (Version: 2.9.1347 - DsNET Corp)
aTube Catcher versión 3.8 (HKLM\...\{D43B360E-722D-421B-BC77-20B9E0F8B6CD}_is1) (Version: 3.8 - DsNET Corp)
Avidemux 2.6 - 32 bits (32-bit) (HKLM\...\Avidemux 2.6 - 32 bits) (Version: 2.6.14.160917 - )
Bonjour (HKLM\...\{79155F2B-9895-49D7-8612-D92580E0DE5B}) (Version: 3.0.0.10 - Apple Inc.)
Camtasia Studio 7 (HKLM\...\{53FA9A9F-3C19-4D43-AD6B-DEF365D469BA}) (Version: 7.0.0 - TechSmith Corporation)
CCleaner (HKLM\...\CCleaner) (Version: 5.68 - Piriform)
CDBurnerXP (HKLM\...\{7E265513-8CDA-4631-B696-F40D983F3B07}_is1) (Version: 4.5.5.5571 - CDBurnerXP)
Control ActiveX de Windows Live Mesh para conexiones remotas (HKLM\...\{04668DF2-D32F-4555-9C7E-35523DCD6544}) (Version: 15.4.5722.2 - Microsoft Corporation)
D3DX10 (HKLM\...\{E09C4DB7-630C-4F06-A631-8EA7239923AF}) (Version: 15.4.2368.0902 - Microsoft) Hidden
Dev-C++ 5 beta 9 release (4.9.9.2) (HKLM\...\Dev-C++) (Version:  - )
Epub Reader for Windows 3.4 (HKLM\...\Epub Reader for Windows_is1) (Version:  - )
Estudio para la mejora del producto HP DeskJet 2130 series (HKLM\...\{A289DA34-462C-41AB-B4AA-145FA284DC12}) (Version: 40.11.1124.17107 - HP Inc.)
Firebird 2.5.0.26074 (Win32) (HKLM\...\FBDBServer_2_5_is1) (Version:  - Firebird Project)
Galería fotográfica de Windows Live (HKLM\...\{E85A4EFC-82F2-4CEE-8A8E-62FDAD353A66}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
GIMP 2.4.0-rc3 (HKLM\...\WinGimp-2.0_is1) (Version:  - )
Google Update Helper (HKLM\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.35.341 - Google LLC) Hidden
Google Update Helper (HKLM\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.25.11 - Google Inc.) Hidden
Hacer clic y ejecutar de Microsoft Office 2010 (HKLM\...\{90140000-006D-0C0A-0000-0000000FF1CE}) (Version: 14.0.4763.1000 - Microsoft Corporation) Hidden
Hacer clic y ejecutar de Microsoft Office 2010 (HKLM\...\Office14.Click2Run) (Version: 14.0.4763.1000 - Microsoft Corporation)
HP DeskJet 2130 series Ayuda (HKLM\...\{0ABC47CC-14F8-4D01-B877-4203635C0B06}) (Version: 35.0.0 - Hewlett Packard)
HP DeskJet 2130 series Software básico del dispositivo (HKLM\...\{32468295-0962-4094-A8FE-FB9DEABB125B}) (Version: 40.11.1124.17107 - HP Inc.)
HP Dropbox Plugin (HKLM\...\{7BEBB31E-58C4-4FA5-9AD1-ACBE32BF0D12}) (Version: 36.0.41.58587 - HP)
HP ePrint SW (HKLM\...\{95f692fb-34a0-4fcb-a980-e14f6e075691}) (Version: 5.5.22560 - HP Inc.)
HP Google Drive Plugin (HKLM\...\{63BD9C12-5CE9-4294-B1C3-A09F971FAFB5}) (Version: 36.0.41.58587 - HP)
HP Photo Creations (HKU\S-1-5-21-1759255200-2635567169-74197307-1001\...\HP Photo Creations) (Version: 1.0.0.22192 - HP)
Java DB 10.2.2.0 (HKLM\...\{0ECB59D5-A3FC-4D61-AD3B-6CE679B3F852}) (Version: 10.2.2.0 - Sun Microsystems, Inc)
Java(TM) 6 Update 22 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83216022FF}) (Version: 6.0.220 - Oracle)
Java(TM) 6 Update 3 (HKLM\...\{3248F0A8-6813-11D6-A77B-00B0D0160030}) (Version: 1.6.0.30 - Sun Microsystems, Inc.)
Java(TM) SE Development Kit 6 Update 3 (HKLM\...\{32A3A4F4-B792-11D6-A78A-00B0D0160030}) (Version: 1.6.0.30 - Sun Microsystems, Inc.)
Junk Mail filter update (HKLM\...\{1F6AB0E7-8CDD-4B93-8A23-AA9EB2FEFCE4}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Kodu Game Lab (HKLM\...\{C27FE0CD-51B3-4D2B-A0BD-EF87561429CB}) (Version: 1.0.94 - Microsoft Research)
Malwarebytes version 4.2.1.89 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.2.1.89 - Malwarebytes)
Manual de VAIO (HKLM\...\{C6E893E7-E5EA-4CD5-917C-5443E753FCBD}) (Version: 1.3.0.02180 - Sony Corporation)
Media Gallery (HKLM\...\{6F663FE6-3ED0-4ABF-816C-44744F7ACABA}) (Version: 1.5.0.17250 - Sony Corporation) Hidden
Mesh Runtime (HKLM\...\{8C6D6116-B724-4810-8F2D-D047E6B7D68E}) (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.7.1 (español) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 3082) (Version: 4.7.02558 - Microsoft Corporation)
Microsoft .NET Framework 4.7.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.7.02558 - Microsoft Corporation)
Microsoft Office 365 ProPlus - es-es (HKLM\...\O365ProPlusRetail - es-es) (Version: 16.0.12026.20344 - Microsoft Corporation)
Microsoft OneDrive (HKU\.DEFAULT\...\OneDriveSetup.exe) (Version: 18.151.0729.0013 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-1759255200-2635567169-74197307-1001\...\OneDriveSetup.exe) (Version: 19.192.0926.0012 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50918.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft SQL Server Compact 3.5 SP1 English (HKLM\...\{E59113EB-0285-4BFD-A37A-B79EAC6B8F4B}) (Version: 3.5.5692.0 - Microsoft Corporation)
Microsoft Teams (HKU\S-1-5-21-1759255200-2635567169-74197307-1001\...\Teams) (Version: 1.2.00.22654 - Microsoft Corporation)
Microsoft Visio Profesional 2016 - es-es (HKLM\...\VisioProRetail - es-es) (Version: 16.0.12026.20344 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x86) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x86)) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 3.1 (HKLM\...\{19BFDA5D-1FE2-4F25-97F9-1A79DD04EE20}) (Version: 3.1.10527.0 - Microsoft Corporation)
Mozilla Firefox 72.0.1 (x86 en-US) (HKLM\...\Mozilla Firefox 72.0.1 (x86 en-US)) (Version: 72.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 72.0.1 - Mozilla)
MSXML 4.0 SP3 Parser (HKLM\...\{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB2721691) (HKLM\...\{355B5AC0-CEEE-42C5-AD4D-7F3CFD806C36}) (Version: 4.30.2114.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB2758694) (HKLM\...\{1D95BA90-F4F8-47EC-A882-441C99D30C1E}) (Version: 4.30.2117.0 - Microsoft Corporation)
Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.11929.20254 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-0000-0000000FF1CE}) (Version: 16.0.11929.20254 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-0C0A-0000-0000000FF1CE}) (Version: 16.0.11929.20254 - Microsoft Corporation) Hidden
OOBE (HKLM\...\{18894D16-5448-4BF9-A128-F7E937322F91}) (Version: 11.2.1.10 - Sony Corporation)
Oracle VM VirtualBox 5.0.16 (HKLM\...\{45EB9281-F9E1-44DC-9A82-60CC939245FB}) (Version: 5.0.16 - Oracle Corporation)
Paquete de idioma de Microsoft Visual Studio 2010 Tools para Office Runtime (x86) - ESN (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x86) Language Pack - ESN) (Version: 10.0.50903 - Microsoft Corporation)
PMB (HKLM\...\{B6A98E5F-D6A7-46FB-9E9D-1F7BF443491C}) (Version: 5.5.02.12220 - Sony Corporation)
PMB VAIO Edition Guide (HKLM\...\{66081CDD-C1FE-415F-BB3A-F2622BA27461}) (Version: 1.6.00.06030 - Sony Corporation) Hidden
PMB VAIO Edition Plug-in (HKLM\...\{270380EB-8812-42E1-8289-53700DB840D2}) (Version: 1.6.00.06140 - Sony Corporation) Hidden
PMB VAIO Edition Plug-in (HKLM\...\{79ACFD18-AD87-480B-88E0-CF74DD9BBA63}) (Version: 1.5.10.05300 - Sony Corporation) Hidden
PMB VAIO Edition Plug-in (HKLM\...\{8356CB97-A48F-44CB-837A-A12838DC4669}) (Version: 1.6.00.06010 - Sony Corporation) Hidden
Prezi (HKLM\...\{63B8F931-2BF3-4D5D-9C28-E2EF88D83DFD}) (Version: 5.2.8 - Nombre de su organización)
Prezi Desktop (HKLM\...\{46439f3a-baca-4f7b-9b74-0d7719a73d09}) (Version: 6.18.6.0 - Prezi)
Prezi Desktop (HKLM\...\{82D58861-524D-43A1-BCC6-7C79871B0250}) (Version: 6.18.6.0 - Prezi) Hidden
Realtek High Definition Audio Driver (HKLM\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6167 - Realtek Semiconductor Corp.)
Realtek USB 2.0 Card Reader (HKLM\...\{96AE7E41-E34E-47D0-AC07-1091A8127911}) (Version: 6.1.7600.30127 - Realtek Semiconductor Corp.)
RealUpgrade 1.1 (HKLM\...\{28C2DED6-325B-4CC7-983A-1777C8F7FBAB}) (Version: 1.1.0 - RealNetworks, Inc.) Hidden
Remote Keyboard (HKLM\...\{08D7BC86-7358-464C-8AD0-0D84B5F0A0C9}) (Version: 1.1.1.03020 - Sony Corporation) Hidden
Remote Play with PlayStation 3 (HKLM\...\{5FA51AAF-23FE-42F4-A724-D79F85F41D4B}) (Version: 1.1.0.15070 - Sony Corporation) Hidden
SketchUp 2016 (HKLM\...\{4255B0DE-B5F3-4F12-97F1-D86665D06620}) (Version: 16.0.19911 - Trimble Navigation Limited)
Spotify (HKU\S-1-5-21-1759255200-2635567169-74197307-1001\...\Spotify) (Version: 1.1.15.448.g00fba0e3 - Spotify AB)
SSLx86 (HKLM\...\{63C43435-F428-42BA-8E7B-5848749D9262}) (Version: 1.0.0 - Sony Corporation ) Hidden
Sublime Text Build 3126 (HKLM\...\Sublime Text 3_is1) (Version:  - Sublime HQ Pty Ltd)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 15.1.9.0 - Synaptics Incorporated)
Teams Machine-Wide Installer (HKLM\...\{39AF0813-FA7B-4860-ADBE-93B9B214B914}) (Version: 1.2.0.22654 - Microsoft Corporation)
Transcend Recovery V1.17 (HKLM\...\Transcend Recovery_is1) (Version:  - )
Transferencias VAIO (HKLM\...\{5DDAFB4B-C52E-468A-9E23-3B0CEEB671BF}) (Version: 1.4.0.14230 - Sony Corporation)
UpdateService (HKLM\...\{E3AE96D6-E196-45B4-AF62-2B41998B9E37}) (Version: 1.0.0 - RealNetworks, Inc.) Hidden
VAIO - PMB VAIO Edition Guide (HKLM\...\InstallShield_{66081CDD-C1FE-415F-BB3A-F2622BA27461}) (Version: 1.6.00.06030 - Sony Corporation)
VAIO - PMB VAIO Edition Plug-in (HKLM\...\InstallShield_{270380EB-8812-42E1-8289-53700DB840D2}) (Version: 1.6.00.06140 - Sony Corporation)
VAIO - Teclado a distancia (HKLM\...\{7396FB15-9AB4-4B78-BDD8-24A9C15D2C65}) (Version: 1.0.1.03020 - Sony Corporation)
VAIO - Uso a distancia con PlayStation®3 (HKLM\...\{07441A52-E208-478A-92B7-5C337CA8C131}) (Version: 1.1.0.15070 - Sony Corporation)
VAIO Care (HKLM\...\{D531F5A4-18F6-4130-B9A4-9179D6E349FC}) (Version: 6.4.1.05290 - Sony Corporation) Hidden
VAIO Data Restore Tool (HKLM\...\{57B955CE-B5D3-495D-AF1B-FAEE0540BFEF}) (Version: 1.6.0.13140 - Sony Corporation)
VAIO Data Restore Tool (HKLM\...\{70EED410-697B-4193-A2CB-2F790F82B420}) (Version: 1.6.0.13140 - Sony Corporation) Hidden
VAIO Easy Connect (HKLM\...\{7C80D30A-AC02-4E3F-B95D-29F0E4FF937B}) (Version: 1.0.0.03050 - Sony Corporation)
VAIO Gate Default (HKLM\...\{B7546697-2A80-4256-A24B-1C33163F535B}) (Version: 2.4.0.03240 - Sony Corporation)
VAIO Hardware Diagnostics (HKLM\...\{C72E35E5-C5C6-4328-AD9A-BBCCC816A2E6}) (Version: 4.2.0.14280 - Sony Corporation) Hidden
VAIO Help and Support (HKLM\...\{F5248E24-F52C-4FD1-B76F-102460BAFD6B}) (Version: 14.00.0125 - Sony Corporation)
VAIO Messenger (HKLM\...\{0131D7EF-65FF-478F-8ABD-5ABEE24EC8EF}) (Version: 2.0.118.0 - DDNi) Hidden
VAIO Sample Contents (HKLM\...\{547C9EB4-4CA6-402F-9D1B-8BD30DC71E44}) (Version: 1.4.0.09010 - Sony Corporation)
VCCx86 (HKLM\...\{9B088046-8A01-4355-99DD-8530C022F682}) (Version: 1.0.0 - Sony Corporation) Hidden
VESx86 (HKLM\...\{3A94F54D-A8A4-4B82-B346-92B4D56A2708}) (Version: 1.0.0 - Sony Corporation) Hidden
Visor de Microsoft PowerPoint (HKLM\...\{95140000-00AF-0C0A-0000-0000000FF1CE}) (Version: 14.0.7015.1000 - Microsoft Corporation)
VIx86 (HKLM\...\{D17C2A58-E0EA-4DD7-A2D6-C448FD25B6F6}) (Version: 1.0.0 - Sony Corporation) Hidden
VLC media player (HKLM\...\VLC media player) (Version: 2.2.6 - VideoLAN)
VSNx86 (HKLM\...\{A49A517F-5332-4665-922C-6D9AD31ADD4F}) (Version: 1.0.0 - Sony Corporation) Hidden
VWSTx86 (HKLM\...\{B8991D99-88FD-41F2-8C32-DB70278D5C30}) (Version: 1.0.0 - Sony Corporation) Hidden
WIDCOMM Bluetooth Software (HKLM\...\{436E0B79-2CFB-4E5F-9380-E17C1B25D0C5}) (Version: 6.3.0.6300 - Broadcom Corporation)
Windows Live Essentials (HKLM\...\WinLiveSuite) (Version: 15.4.3508.1109 - Microsoft Corporation)
WinRAR 5.31 (32-bit) (HKLM\...\WinRAR archiver) (Version: 5.31.0 - win.rar GmbH)
Wondershare Filmora(Build 7.8.9) (HKLM\...\Wondershare Filmora_is1) (Version:  - Wondershare Software)
Wondershare Helper Compact 2.5.2 (HKLM\...\{5363CE84-5F09-48A1-8B6C-6BB590FFEDF2}_is1) (Version: 2.5.2 - Wondershare)

==================== Personalizado CLSID (Lista blanca): ==============

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)

CustomCLSID: HKU\S-1-5-21-1759255200-2635567169-74197307-1001_Classes\CLSID\{19A6E644-14E6-4A60-B8D7-DD20610A871D}\InprocServer32 -> C:\Users\MIGUEL\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.19178.2\x86\Microsoft.Teams.AddinLoader.dll (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1759255200-2635567169-74197307-1001_Classes\CLSID\{9356e2bb-6c9a-43c0-a771-5cacbdab6afe}\InprocServer32 -> C:\Users\MIGUEL\AppData\Roaming\HP Photo Creations\RLPNUpload.dll (RocketLife -> RocketLife)
CustomCLSID: HKU\S-1-5-21-1759255200-2635567169-74197307-1001_Classes\CLSID\{A10E0335-AFCA-4E7E-975F-CA30235FB29A}\InprocServer32 -> C:\Users\MIGUEL\AppData\Roaming\Visan\plugins\npRLSecurePluginLayer.dll (RocketLife -> RocketLife, LLP)
CustomCLSID: HKU\S-1-5-21-1759255200-2635567169-74197307-1001_Classes\CLSID\{CB965DF1-B8EA-49C7-BDAD-5457FDC1BF92}\InprocServer32 -> C:\Users\MIGUEL\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.19178.2\x86\Microsoft.Teams.AddinLoader.dll (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1759255200-2635567169-74197307-1001_Classes\CLSID\{cc05a616-ddb3-4cc0-9a21-dc0e9962b444}\InprocServer32 -> C:\Users\MIGUEL\AppData\Roaming\HP Photo Creations\ContentMan.dll (RocketLife -> RocketLife)
CustomCLSID: HKU\S-1-5-21-1759255200-2635567169-74197307-1001_Classes\CLSID\{ff280b55-14f1-49ae-b40f-15f5294ce630}\InprocServer32 -> C:\Users\MIGUEL\AppData\Roaming\HP Photo Creations\RocketEngine.dll (RocketLife -> Visan inc.)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2016-02-04] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers2: [AddtoVAIOGate] -> {6988D6F2-F24F-4732-8855-A39DB1AA1346} =>  -> Ningún archivo
ContextMenuHandlers3: [AddtoVAIOGate] -> {6988D6F2-F24F-4732-8855-A39DB1AA1346} =>  -> Ningún archivo
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2020-10-03] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\atiacmxx.dll [2011-05-24] (Advanced Micro Devices, Inc.) [Archivo no firmado]
ContextMenuHandlers6: [AddtoVAIOGate] -> {6988D6F2-F24F-4732-8855-A39DB1AA1346} =>  -> Ningún archivo
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2020-10-03] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2016-02-04] (win.rar GmbH -> Alexander Roshal)

==================== Codecs (Lista blanca) ====================

(Si una entrada es incluida en el fixlist, el elemento del registro será restaurado a su valor predeterminado o será eliminado. El archivo no será movido.)

HKLM\...\Drivers32: [VIDC.FMVC] => C:\Windows\system32\fmcodec.dll [77824 2008-08-18] (Fox Magic Software) [Archivo no firmado]
HKLM\...\Drivers32: [vidc.tscc] => C:\Windows\system32\tsccvid.dll [411480 2010-03-04] (TechSmith Corporation -> TechSmith Corporation)

==================== Accesos directos & WMI ========================

(Las entradas pueden ser listadas para ser restauradas o eliminadas.)

WMI:subscription\__FilterToConsumerBinding->CommandLineEventConsumer.Name=\"BVTConsumer\"",Filter="__EventFilter.Name=\"BVTFilter\"::
WMI:subscription\__EventFilter->BVTFilter::[Query => SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99]
WMI:subscription\CommandLineEventConsumer->BVTConsumer::[CommandLineTemplate => cscript KernCap.vbs][WorkingDirectory => C:\\tools\\kernrate]

==================== Módulos cargados (Lista blanca) =============

2010-07-29 18:45 - 2010-07-29 18:45 - 000341735 _____ (Broadcom Corporation.) [Archivo no firmado] C:\Program Files\WIDCOMM\Bluetooth Software\btosif.dll
2020-09-30 06:59 - 2020-09-30 06:59 - 000069337 ____N (Microsoft Corporation) [Archivo no firmado] C:\Program Files\Common Files\System\symsrv.dll
2019-09-08 14:39 - 2019-09-08 14:42 - 000150039 _____ (Microsoft Corporation) [Archivo no firmado] C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX86\Microsoft Shared\Office16\MSOXMLMF.DLL
2013-03-26 10:10 - 2013-03-26 10:10 - 000097280 _____ (Microsoft Corporation) [Archivo no firmado] C:\Windows\WinSxS\x86_microsoft.vc80.atl_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d1cb102c435421de\ATL80.DLL
2013-03-26 10:10 - 2013-03-26 10:10 - 001101824 _____ (Microsoft Corporation) [Archivo no firmado] C:\Windows\WinSxS\x86_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_cbf5e994470a1a8f\MFC80.DLL
2013-03-26 10:10 - 2013-03-26 10:10 - 001093120 _____ (Microsoft Corporation) [Archivo no firmado] C:\Windows\WinSxS\x86_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_cbf5e994470a1a8f\MFC80U.DLL

==================== Alternate Data Streams (Lista blanca) ========

(Si una entrada es incluida en el fixlist, solamente los ADS serán eliminados.)

AlternateDataStreams: C:\ProgramData\Reprise:wupeogjxldtlfudivq`qsp`27hfm [0]

==================== Modo Seguro (Lista blanca) ==================

(Si una entrada es incluida en el fixlist, será eliminada del registro. El "AlternateShell" será restaurado.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mbamchameleon => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMSwissArmy => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mbamchameleon => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMSwissArmy => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Option => "OptionValue"="1"

==================== Asociación (Lista blanca) =================

==================== Internet Explorer (Versión 11) (Lista blanca) ==========

HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://go.microsoft.com/fwlink/?LinkID=617910&ResetID=131613650170251101&GUID=00000000-0000-0000-0000-000000000000
HKU\S-1-5-21-1759255200-2635567169-74197307-1001\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://prodigy.msn.com/
HKU\S-1-5-21-1759255200-2635567169-74197307-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://go.microsoft.com/fwlink/?LinkID=617910&ResetID=131613650170563102&GUID=00000000-0000-0000-0000-000000000000
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1
SearchScopes: HKLM -> {1b31c9d2-7135-442b-bb93-7c002172adc6} URL = hxxp://www.bing.com/search?q={searchTerms}&form=SNYVDF&pc=MASA&src=IE-SearchBox
SearchScopes: HKLM -> {8acdd076-7141-4655-8487-c35174c89c93} URL = 
SearchScopes: HKLM -> {f79e5d1c-5148-469e-9f98-a11d8d7863f4} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSERBM&pc=MSERT1
SearchScopes: HKU\S-1-5-21-1759255200-2635567169-74197307-1001 -> DefaultScope {CBF352E7-50CC-4BC6-B3C6-70E6F91C68BC} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1
SearchScopes: HKU\S-1-5-21-1759255200-2635567169-74197307-1001 -> {CBF352E7-50CC-4BC6-B3C6-70E6F91C68BC} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1
SearchScopes: HKU\S-1-5-21-1759255200-2635567169-74197307-1001 -> {f79e5d1c-5148-469e-9f98-a11d8d7863f4} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSERBM&pc=MSERT1
BHO: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2010-11-15] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\Office16\OCHelper.dll [2019-09-08] (Microsoft Corporation -> Microsoft Corporation)
BHO: SSVHelper Class -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre6\bin\ssv.dll [2011-08-18] (Sun Microsystems, Inc. -> Sun Microsystems, Inc.)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21] (Microsoft Corporation -> Microsoft Corp.)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\root\Office16\URLREDIR.DLL [2019-10-04] (Microsoft Corporation -> Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre6\bin\jp2ssv.dll [2011-08-18] (Sun Microsystems, Inc. -> Sun Microsystems, Inc.)
Toolbar: HKU\S-1-5-21-1759255200-2635567169-74197307-1001 -> Sin Nombre - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} -  Ningún archivo
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_03-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2019-10-04] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2019-10-04] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2019-10-04] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2019-10-04] (Microsoft Corporation -> Microsoft Corporation)
Filter: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX86\Microsoft Shared\Office16\MSOXMLMF.DLL [2019-09-08] (Microsoft Corporation) [Archivo no firmado]
StartMenuInternet: IEXPLORE.EXE - iexplore.exe

(Si una entrada es incluida en el fixlist, será eliminada del registro.)

IE trusted site: HKU\S-1-5-21-1759255200-2635567169-74197307-1001\...\sharepoint.com -> hxxps://conalepmexedu-files.sharepoint.com

==================== Hosts contenido: =========================

(Si es necesario, la directiva Hosts: puede ser incluida en el fixlist para restablecer Hosts.)

2009-07-13 21:04 - 2020-10-01 12:56 - 000001850 _____ C:\Windows\system32\drivers\etc\hosts
107.178.255.88 ssl.goo.88 partner.googleadservices.com
107.178.255.88 ssl.goo.88 partner.googleadservices.com
127.0.0.1                   activate.adobe.com
127.0.0.1                   practivate.adobe.com
127.0.0.1                   lmlicenses.wip4.adobe.com
127.0.0.1                   lm.licenses.adobe.com
127.0.0.1                   na1r.services.adobe.com
127.0.0.1                   hlrcv.stage.adobe.com
127.0.0.1                   bandicam.com
127.0.0.1                   ssl.bandisoft.com
0.0.0.0 keystone.mwbsys.com
127.0.0.1                   systweak.com
127.0.0.1                   updateservice1.systweak.com
127.0.0.1                   www.systweak.com
127.0.0.1                   systemspeedup.systweak.com
127.0.0.1                   systweak.com/STCheckGenuineness

==================== Otras Áreas ===========================

(Actualmente no existe una corrección automática para esta sección.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files\Common Files\Microsoft Shared\Windows Live;C:\Program Files\AMD APP\bin\x86;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files\ATI Technologies\ATI.ACE\Core-Static;C:\Program Files\WIDCOMM\Bluetooth Software\;C:\Program Files\Sony\VAIO Startup Setting Tool;C:\Program Files\Windows Live\Shared;C:\Program Files\Aspel\Aspel-CAJA 3.5\
HKU\S-1-5-21-1759255200-2635567169-74197307-1001\Control Panel\Desktop\\Wallpaper -> %windir%\web\wallpaper\windows\img0.jpg
DNS Servers: El medio no está conectado a internet.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)

==================== MSCONFIG/TASK MANAGER elementos deshabilitados ==

(Si una entrada es incluida en el fixlist, será eliminada.)

MSCONFIG\startupreg: Adobe ARM => "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
MSCONFIG\startupreg: Adobe Reader Speed Launcher => "C:\Program Files\Adobe\Reader 10.0\Reader\Reader_sl.exe"

==================== Reglas de firewall (Lista blanca) ================

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)

FirewallRules: [{3DE90089-0054-4E1B-B747-22DF002A6562}] => (Allow) C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{C6D6B0C9-1157-4264-8AB3-F7A06F4D851B}] => (Allow) C:\Program Files\Windows Live\Contacts\wlcomm.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{901F873C-1C3D-4E20-A73B-2BCC00E5BC2B}] => (Allow) LPort=2869
FirewallRules: [{406E87F7-82C1-4276-92AF-41C0EDA38C76}] => (Allow) LPort=1900
FirewallRules: [{3F81265A-7B68-44E1-8668-D6D9EC2D56DB}] => (Allow) C:\Program Files\Windows Live\Messenger\msnmsgr.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{0F7CA81B-9112-4D60-90F0-73CA91F5C7DF}] => (Allow) C:\Program Files\Windows Live\Mesh\MOE.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{C60BF939-77C9-4C92-930F-0DD23C562554}] => (Allow) LPort=11050
FirewallRules: [{F1FD5583-FBD4-4EE9-8944-FF4E11156E85}] => (Allow) LPort=3050
FirewallRules: [{8A63A3C9-FFC9-4A2C-B06F-C3685A1FDDC0}] => (Allow) C:\Program Files\Common Files\Aspel\Aspel-AL\avisoal.exe (ASPEL DE MEXICO S.A. DE C.V. -> Aspel de México, S.A. de C.V.) [Archivo no firmado]
FirewallRules: [{F776144F-D587-4843-A48A-5B4CC29D2720}] => (Allow) C:\Program Files\Common Files\Aspel\Aspel-AL\AspelAL.exe (ASPEL DE MEXICO S.A. DE C.V. -> Aspel de México S.A. de C.V.) [Archivo no firmado]
FirewallRules: [{DF16C98B-4FD4-4D52-B8B0-1694EB81EC3D}] => (Allow) C:\Program Files\Common Files\Aspel\Aspel-AL\avisoal.exe (ASPEL DE MEXICO S.A. DE C.V. -> Aspel de México, S.A. de C.V.) [Archivo no firmado]
FirewallRules: [{2BFC618C-FBA6-48B0-BD0A-AD20D456F04B}] => (Allow) C:\Program Files\Common Files\Aspel\Aspel-AL\AspelAL.exe (ASPEL DE MEXICO S.A. DE C.V. -> Aspel de México S.A. de C.V.) [Archivo no firmado]
FirewallRules: [TCP Query User{0ADA5C56-1896-4F7D-AD9C-4108C4341568}C:\program files\ares\ares.exe] => (Allow) C:\program files\ares\ares.exe => Ningún archivo
FirewallRules: [UDP Query User{11EB2F4A-1C9D-4D18-B424-34795CC75CE7}C:\program files\ares\ares.exe] => (Allow) C:\program files\ares\ares.exe => Ningún archivo
FirewallRules: [TCP Query User{1AD69197-2359-4EF1-8D24-3A742E19B10E}C:\program files\ares\ares.exe] => (Block) C:\program files\ares\ares.exe => Ningún archivo
FirewallRules: [UDP Query User{9D141907-1602-4377-B522-7184E8D66571}C:\program files\ares\ares.exe] => (Block) C:\program files\ares\ares.exe => Ningún archivo
FirewallRules: [{D44EAEE3-2F3A-449D-BFEB-A2F4118DF681}] => (Allow) C:\Windows\System32\ServLicASP.exe (Aspel de México S.A. de C.V.) [Archivo no firmado]
FirewallRules: [{D2D4FBC0-83AC-4005-A3F7-DEDF9B1BFF3E}] => (Allow) C:\Windows\System32\ServLicASP.exe (Aspel de México S.A. de C.V.) [Archivo no firmado]
FirewallRules: [{0A9AAE64-EFAF-4CCE-9E28-E0545E50894D}] => (Allow) C:\Program Files\Firebird\Firebird_2_5\bin\fbserver.exe (Firebird Project) [Archivo no firmado]
FirewallRules: [{ADB7EF51-B68B-40C4-A63B-00FF1ABBD724}] => (Allow) C:\Program Files\Firebird\Firebird_2_5\bin\fbserver.exe (Firebird Project) [Archivo no firmado]
FirewallRules: [TCP Query User{3B0B9EF8-C1D0-414E-A3C0-AB3F6E99923D}C:\program files\common files\aspel\aspel-al\avisoal.exe] => (Block) C:\program files\common files\aspel\aspel-al\avisoal.exe (ASPEL DE MEXICO S.A. DE C.V. -> Aspel de México, S.A. de C.V.) [Archivo no firmado]
FirewallRules: [UDP Query User{F577014C-25FF-4D7B-9D2C-1EB97683D292}C:\program files\common files\aspel\aspel-al\avisoal.exe] => (Block) C:\program files\common files\aspel\aspel-al\avisoal.exe (ASPEL DE MEXICO S.A. DE C.V. -> Aspel de México, S.A. de C.V.) [Archivo no firmado]
FirewallRules: [{136E7BA0-E833-4E34-8B1B-B663B47B7C64}] => (Allow) C:\Users\COMERCIALISADORA\AppData\Local\Chromium\Application\chrome.exe (The Chromium Authors) [Archivo no firmado]
FirewallRules: [{220DCDBC-62A2-4A40-B59A-92F1EE3B9B34}] => (Allow) C:\Users\MIGUEL\AppData\Local\Chromium\Application\chrome.exe => Ningún archivo
FirewallRules: [TCP Query User{11E1EC8C-C50E-48A3-A813-FB16651B6BB5}C:\users\miguel\appdata\roaming\spotify\spotify.exe] => (Block) C:\users\miguel\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [UDP Query User{8FC6D84B-4762-414A-A954-ACB4E7213C1B}C:\users\miguel\appdata\roaming\spotify\spotify.exe] => (Block) C:\users\miguel\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{88501A04-F7B5-45C0-98E0-F7E37E8973E6}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{56D056A2-7193-4B7E-AB5B-C83FAF5B4C84}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{723943D8-131A-41CB-AB46-09D0079CEF79}] => (Allow) C:\Program Files\HP\HP DeskJet 2130 series\Bin\USBSetup.exe (HP Inc.) [Archivo no firmado]
FirewallRules: [{CD78243D-15C8-4BC8-8C60-B980DA498591}] => (Allow) C:\Program Files\HP\HP DeskJet 2130 series\Bin\HPNetworkCommunicatorCom.exe (Hewlett Packard -> HP Inc.)
FirewallRules: [{C4721657-D7C0-45A1-A94C-067C45312EAD}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{9E2F8FCA-2211-4071-9FBD-580665E7928E}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{EA24F970-0691-48C0-8629-9846289E89C8}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{1D5E3712-5AFC-4C4F-9086-2C4112690BCC}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc.) [Archivo no firmado]
FirewallRules: [{5715D3A0-D466-4CF8-94AE-A62C6A601E51}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc.) [Archivo no firmado]
FirewallRules: [{33505E57-284C-43AD-979F-EB64957934E6}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe => Ningún archivo

==================== Puntos de Restauración =========================

06-02-2020 18:55:04 Windows Update
31-03-2020 22:22:28 Windows Update
03-04-2020 20:14:48 Windows Update
04-04-2020 15:27:52 Windows Update
06-04-2020 21:21:35 Windows Update
07-04-2020 16:45:25 Windows Update
07-04-2020 20:06:38 Windows Update
30-04-2020 15:52:30 Windows Update
03-05-2020 10:53:15 Windows Update
05-05-2020 15:18:54 Windows Update
05-05-2020 22:31:23 Windows Update
08-05-2020 22:39:01 Windows Update
09-05-2020 21:30:02 Windows Update
27-05-2020 19:14:28 Windows Update
27-05-2020 20:19:25 Windows Update
30-05-2020 15:16:53 Windows Update
24-07-2020 16:09:28 Windows Update
17-09-2020 08:05:21 Windows Update
17-09-2020 12:01:05 Windows Update
17-09-2020 15:31:12 Windows Update
17-09-2020 15:47:15 Se ha instalado DirectX
17-09-2020 16:00:24 Windows Update
18-09-2020 12:25:09 Windows Update
20-09-2020 00:18:31 Windows Update
23-09-2020 08:40:05 Windows Update
23-09-2020 09:56:00 Operación de restauración
24-09-2020 13:52:45 Windows Update
29-09-2020 09:55:42 Windows Update
30-09-2020 07:14:38 Windows Update
01-10-2020 13:29:45 Windows Update
02-10-2020 07:38:11 Windows Update

==================== Dispositivos defectuosos en el Administrador de dispositivos ============

Name: Security Processor Loader Driver
Description: Security Processor Loader Driver
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer: 
Service: spldr
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.


==================== Errores del registro de eventos: ========================

Errores de aplicación:
==================
Error: (10/09/2020 08:14:00 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: No se pudo reactivar el filtro de eventos con la consulta "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" en el espacio de nombres "//./root/CIMV2" por el error 0x80041003. Los eventos no se podrán entregar a través de este filtro hasta que se corrija este problema.

Error: (10/06/2020 12:25:55 PM) (Source: Application Error) (EventID: 1005) (User: )
Description: Windows no puede tener acceso al archivo  por alguna de las siguientes razones:
Hay un problema con la conexión de red, con el disco donde se almacena este archivo o con los controladores
de almacenamiento instalados en este equipo; o bien no se encuentra el disco.
Windows cerró el programa Explorador de Windows por este error.

Programa: Explorador de Windows
Archivo: 

El valor del error se muestra en la sección Datos adicionales.
Acción del usuario
1. Abra el archivo de nuevo.
Podría ser sólo un problema temporal que se corrige al ejecutar el programa de nuevo.
2.
Si todavía no se puede tener acceso al archivo y 
	- Está en la red,
el administrador de red debe comprobar que no exista ningún problema con la red y que es posible ponerse en contacto con el servidor.
	- Está en un disco extraíble, como un disquete o un CD-ROM, compruebe que el disco esté insertado en el equipo.
3. Compruebe y repare el sistema de archivos ejecutando CHKDSK. Para ejecutar CHKDSK, haga clic en Inicio y después en Ejecutar; escriba CMD y después haga clic en Aceptar. En el símbolo del sistema, escriba CHKDSK /F y después presione Entrar.
4. Si el problema continúa, restaure el archivo a partir de una copia de seguridad.
5. Compruebe si se pueden abrir otros archivos en el mismo disco. Si no se pueden abrir, el disco podría estar dañado. Si se trata de un disco duro, póngase en contacto con el administrador o con el fabricante del hardware del equipo
para obtener ayuda adicional.

Datos adicionales
Valor del error:00000000
Tipo de disco: 0

Error: (10/06/2020 12:25:55 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nombre de la aplicación con errores: explorer.exe, versión: 6.1.7601.23537, marca de tiempo: 0x57c44cc4
Nombre del módulo con errores: unknown, versión: 0.0.0.0, marca de tiempo: 0x00000000
Código de excepción: 0xc0000096
Desplazamiento de errores: 0x03623491
Id. del proceso con errores: 0x1338
Hora de inicio de la aplicación con errores: 0x01d69c0598846768
Ruta de acceso de la aplicación con errores: C:\Windows\explorer.exe
Ruta de acceso del módulo con errores: unknown
Id. del informe: fd649bc3-07f8-11eb-b269-d6af78bb8972

Error: (10/06/2020 12:24:41 PM) (Source: Application Error) (EventID: 1005) (User: )
Description: Windows no puede tener acceso al archivo  por alguna de las siguientes razones:
Hay un problema con la conexión de red, con el disco donde se almacena este archivo o con los controladores
de almacenamiento instalados en este equipo; o bien no se encuentra el disco.
Windows cerró el programa Explorador de Windows por este error.

Programa: Explorador de Windows
Archivo: 

El valor del error se muestra en la sección Datos adicionales.
Acción del usuario
1. Abra el archivo de nuevo.
Podría ser sólo un problema temporal que se corrige al ejecutar el programa de nuevo.
2.
Si todavía no se puede tener acceso al archivo y 
	- Está en la red,
el administrador de red debe comprobar que no exista ningún problema con la red y que es posible ponerse en contacto con el servidor.
	- Está en un disco extraíble, como un disquete o un CD-ROM, compruebe que el disco esté insertado en el equipo.
3. Compruebe y repare el sistema de archivos ejecutando CHKDSK. Para ejecutar CHKDSK, haga clic en Inicio y después en Ejecutar; escriba CMD y después haga clic en Aceptar. En el símbolo del sistema, escriba CHKDSK /F y después presione Entrar.
4. Si el problema continúa, restaure el archivo a partir de una copia de seguridad.
5. Compruebe si se pueden abrir otros archivos en el mismo disco. Si no se pueden abrir, el disco podría estar dañado. Si se trata de un disco duro, póngase en contacto con el administrador o con el fabricante del hardware del equipo
para obtener ayuda adicional.

Datos adicionales
Valor del error:00000000
Tipo de disco: 0

Error: (10/06/2020 12:24:41 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nombre de la aplicación con errores: explorer.exe, versión: 6.1.7601.23537, marca de tiempo: 0x57c44cc4
Nombre del módulo con errores: unknown, versión: 0.0.0.0, marca de tiempo: 0x00000000
Código de excepción: 0xc0000096
Desplazamiento de errores: 0x03003491
Id. del proceso con errores: 0x139c
Hora de inicio de la aplicación con errores: 0x01d69c054557f26b
Ruta de acceso de la aplicación con errores: C:\Windows\explorer.exe
Ruta de acceso del módulo con errores: unknown
Id. del informe: d11ae194-07f8-11eb-b269-d6af78bb8972

Error: (10/06/2020 12:22:55 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: No se pudo reactivar el filtro de eventos con la consulta "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" en el espacio de nombres "//./root/CIMV2" por el error 0x80041003. Los eventos no se podrán entregar a través de este filtro hasta que se corrija este problema.

Error: (10/06/2020 12:22:14 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nombre de la aplicación con errores: Spotify.exe, versión: 1.1.15.448, marca de tiempo: 0x5d70391e
Nombre del módulo con errores: KERNELBASE.dll, versión: 6.1.7601.24545, marca de tiempo: 0x5e0eb7d0
Código de excepción: 0xc06d007e
Desplazamiento de errores: 0x0000845d
Id. del proceso con errores: 0xc28
Hora de inicio de la aplicación con errores: 0x01d69c052bced379
Ruta de acceso de la aplicación con errores: C:\Users\MIGUEL\AppData\Roaming\Spotify\Spotify.exe
Ruta de acceso del módulo con errores: C:\Windows\system32\KERNELBASE.dll
Id. del informe: 792d7124-07f8-11eb-b269-d6af78bb8972

Error: (10/06/2020 12:22:06 PM) (Source: Application Error) (EventID: 1005) (User: )
Description: Windows no puede tener acceso al archivo  por alguna de las siguientes razones:
Hay un problema con la conexión de red, con el disco donde se almacena este archivo o con los controladores
de almacenamiento instalados en este equipo; o bien no se encuentra el disco.
Windows cerró el programa Explorador de Windows por este error.

Programa: Explorador de Windows
Archivo: 

El valor del error se muestra en la sección Datos adicionales.
Acción del usuario
1. Abra el archivo de nuevo.
Podría ser sólo un problema temporal que se corrige al ejecutar el programa de nuevo.
2.
Si todavía no se puede tener acceso al archivo y 
	- Está en la red,
el administrador de red debe comprobar que no exista ningún problema con la red y que es posible ponerse en contacto con el servidor.
	- Está en un disco extraíble, como un disquete o un CD-ROM, compruebe que el disco esté insertado en el equipo.
3. Compruebe y repare el sistema de archivos ejecutando CHKDSK. Para ejecutar CHKDSK, haga clic en Inicio y después en Ejecutar; escriba CMD y después haga clic en Aceptar. En el símbolo del sistema, escriba CHKDSK /F y después presione Entrar.
4. Si el problema continúa, restaure el archivo a partir de una copia de seguridad.
5. Compruebe si se pueden abrir otros archivos en el mismo disco. Si no se pueden abrir, el disco podría estar dañado. Si se trata de un disco duro, póngase en contacto con el administrador o con el fabricante del hardware del equipo
para obtener ayuda adicional.

Datos adicionales
Valor del error:00000000
Tipo de disco: 0


Errores del sistema:
=============
Error: (10/09/2020 08:14:58 AM) (Source: DCOM) (EventID: 10005) (User: )
Description: Error de DCOM "1084" al intentar iniciar el servicio VSS con argumentos "" para ejecutar el servidor:
{E579AB5F-1CC4-44B4-BED9-DE0991FF0623}

Error: (10/09/2020 08:13:26 AM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: El servicio Servicio de lista de redes depende del servicio Reconocimiento de ubicación de red, el cual no pudo iniciarse debido al siguiente error: 
No se puede iniciar el servicio o grupo de dependencia.

Error: (10/09/2020 08:13:26 AM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: El servicio Servicio de lista de redes depende del servicio Reconocimiento de ubicación de red, el cual no pudo iniciarse debido al siguiente error: 
No se puede iniciar el servicio o grupo de dependencia.

Error: (10/09/2020 08:13:26 AM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: El servicio Servicio de lista de redes depende del servicio Reconocimiento de ubicación de red, el cual no pudo iniciarse debido al siguiente error: 
No se puede iniciar el servicio o grupo de dependencia.

Error: (10/09/2020 08:13:26 AM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: El servicio Servicio de lista de redes depende del servicio Reconocimiento de ubicación de red, el cual no pudo iniciarse debido al siguiente error: 
No se puede iniciar el servicio o grupo de dependencia.

Error: (10/09/2020 08:13:26 AM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: El servicio Servicio de lista de redes depende del servicio Reconocimiento de ubicación de red, el cual no pudo iniciarse debido al siguiente error: 
No se puede iniciar el servicio o grupo de dependencia.

Error: (10/09/2020 08:13:25 AM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: El servicio Servicio de lista de redes depende del servicio Reconocimiento de ubicación de red, el cual no pudo iniciarse debido al siguiente error: 
No se puede iniciar el servicio o grupo de dependencia.

Error: (10/09/2020 08:13:25 AM) (Source: DCOM) (EventID: 10005) (User: )
Description: Error de DCOM "1084" al intentar iniciar el servicio WSearch con argumentos "" para ejecutar el servidor:
{9E175B6D-F52A-11D8-B9A5-505054503030}


Windows Defender:
===================================
Date: 2018-01-25 08:41:43.456
Description: 
Windows Defender detectó spyware u otro software potencialmente no deseado.
Para obtener más información, consulte lo siguiente:
http://go.microsoft.com/fwlink/?linkid=37020&name=BrowserModifier:Win32/Foxiebro&threatid=235004
Nombre:BrowserModifier:Win32/Foxiebro
Id.:235004
Gravedad:Alta
Categoría:Modificador de explorador
Ruta de acceso encontrada:bho:HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\BROWSER HELPER OBJECTS\{78549bde-b964-4d2a-b7b1-c4ac15ddff64};bho:HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\BROWSER HELPER OBJECTS\{d99a4ec9-00bd-4fe4-85a5-4db018351265};clsid:HKLM\SOFTWARE\CLASSES\CLSID\{78549bde-b964-4d2a-b7b1-c4ac15ddff64};clsid:HKLM\SOFTWARE\CLASSES\CLSID\{d99a4ec9-00bd-4fe4-85a5-4db018351265};file:C:\Program Files\Round World\RoundWorldbho.dll;file:C:\Program Files\SaltarSmart\SaltarSmartBHO.dll;ieaddon:[email protected]\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\SETTINGS\{78549BDE-B964-4D2A-B7B1-C4AC15DDFF64};ieaddon:[email protected]\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\SETTINGS\{D99A4EC9-00BD-4FE4-85A5-4DB018351265};ieaddon:[email protected]\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{78549BDE-B964-4D2A-B7B1-C4AC15DDFF64};ieaddon:[email protected]\SOFTWARE\MICROSOF
Tipo de detección:Concreto
Origen de detección:Protección en tiempo real
Estado:Desconocido
Usuario:\
Nombre de proceso:

Date: 2018-01-25 08:26:25.009
Description: 
Windows Defender detectó spyware u otro software potencialmente no deseado.
Para obtener más información, consulte lo siguiente:
http://go.microsoft.com/fwlink/?linkid=37020&name=BrowserModifier:Win32/Foxiebro&threatid=235004
Nombre:BrowserModifier:Win32/Foxiebro
Id.:235004
Gravedad:Alta
Categoría:Modificador de explorador
Ruta de acceso encontrada:file:C:\Program Files\Round World\RoundWorldbho.dll;file:C:\Program Files\SaltarSmart\SaltarSmartBHO.dll
Tipo de detección:Concreto
Origen de detección:Protección en tiempo real
Estado:Desconocido
Usuario:\
Nombre de proceso:

Date: 2017-09-28 23:48:29.420
Description: 
El examen de Windows Defender se detuvo antes de completarse.
Id. de examen:{C959D9F7-B20E-4792-B112-F48A95786B51}
Tipo de examen:AntiSpyware
Parámetros de examen:Examen rápido
Usuario:MIGUEL-VAIO\MIGUEL

Date: 2017-03-30 17:44:17.929
Description: 
Windows Defender detectó spyware u otro software potencialmente no deseado.
Para obtener más información, consulte lo siguiente:
http://go.microsoft.com/fwlink/?linkid=37020&name=Adware:Win32/Bayads&threatid=222698
Nombre:Adware:Win32/Bayads
Id.:222698
Gravedad:Alta
Categoría:Adware
Ruta de acceso encontrada:file:C:\Users\MIGUEL\AppData\Local\Pay-By-Ads\Yahoo! Search\1.3.19.2\dsrlte.exe;process:pid:6836;process:pid:6836,ProcessStart:131353887025332152;regkey:[email protected]\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN\\Yahoo! Search;runkey:[email protected]\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN\\Yahoo! Search
Tipo de detección:Concreto
Origen de detección:Protección en tiempo real
Estado:Desconocido
Usuario:\
Nombre de proceso:

Date: 2017-03-30 17:31:52.065
Description: 
Windows Defender detectó spyware u otro software potencialmente no deseado.
Para obtener más información, consulte lo siguiente:
http://go.microsoft.com/fwlink/?linkid=37020&name=Adware:Win32/Bayads&threatid=222698
Nombre:Adware:Win32/Bayads
Id.:222698
Gravedad:Alta
Categoría:Adware
Ruta de acceso encontrada:file:C:\Users\MIGUEL\AppData\Local\Pay-By-Ads\Yahoo! Search\1.3.19.2\dsrlte.exe;process:pid:6836
Tipo de detección:Concreto
Origen de detección:Protección en tiempo real
Estado:Desconocido
Usuario:\
Nombre de proceso:

Date: 2020-10-09 08:15:45.651
Description: 
Windows Defender encontró un error al intentar cargar firmas e intentará restablecer un conjunto de firmas conocidas.
Firmas intentadas:Copia de seguridad
Código de error:0x800700c1
Descripción de error:Windows Defender no es una aplicación Win32 válida. 
Versión de firma:1.315.12.0
Versión de motor:1.1.17000.7

Date: 2020-10-09 08:15:27.680
Description: 
Windows Defender encontró un error al intentar cargar firmas e intentará restablecer un conjunto de firmas conocidas.
Firmas intentadas:Actual
Código de error:0x800700c1
Descripción de error:Windows Defender no es una aplicación Win32 válida. 
Versión de firma:1.323.1734.0
Versión de motor:1.1.17400.5

Date: 2020-09-18 22:40:29.347
Description: 
Windows Defender encontró un error al intentar cargar firmas e intentará restablecer un conjunto de firmas conocidas.
Firmas intentadas:Copia de seguridad
Código de error:0x800700c1
Descripción de error:Windows Defender no es una aplicación Win32 válida. 
Versión de firma:1.315.12.0
Versión de motor:1.1.17000.7

Date: 2020-09-18 22:40:28.364
Description: 
Windows Defender encontró un error al intentar actualizar las firmas.
Nueva versión de firma:1.315.271.0
Versión de firma anterior:
Origen de actualización:Carpeta de actualizaciones de firmas
Tipo de firma:AntiSpyware
Tipo de actualización:Completa
Usuario:NT AUTHORITY\SYSTEM
Versión de motor actual:1.1.17400.5
Versión de motor anterior:
Código de error:0x80070666
Descripción de error:Ya está instalada otra versión de este producto. La instalación de esta versión no puede continuar. Para configurar o quitar la versión existente de este producto, use Agregar o quitar programas del Panel de control. 

Date: 2020-09-18 22:40:28.364
Description: 
Windows Defender encontró un error al intentar actualizar el motor.
Nueva versión de motor:1.1.17400.5
Versión de motor anterior:
Origen de actualización:Carpeta de actualizaciones de firmas
Usuario:NT AUTHORITY\SYSTEM
Código de error:0x80070666
Descripción de error:Ya está instalada otra versión de este producto. La instalación de esta versión no puede continuar. Para configurar o quitar la versión existente de este producto, use Agregar o quitar programas del Panel de control. 

==================== Información de la memoria =========================== 

BIOS: Insyde Corp. R0180Z7 06/13/2011
Placa base: Sony Corporation VAIO
Procesador: AMD E-450 APU with Radeon(tm) HD Graphics
Porcentaje de memoria en uso: 62%
RAM física total: 1642.9 MB
RAM física disponible: 618.05 MB
Virtual total: 3285.8 MB
Virtual disponible: 2301.91 MB

==================== Unidades ================================

Drive c: () (Fixed) (Total:456.5 GB) (Free:342.06 GB) NTFS

\\?\Volume{5f30761f-c9b2-11e0-a52c-806e6f6e6963}\ (System Reserved) (Fixed) (Total:0.1 GB) (Free:0.07 GB) NTFS
\\?\Volume{5f30761e-c9b2-11e0-a52c-806e6f6e6963}\ (Recovery) (Fixed) (Total:9.16 GB) (Free:1.12 GB) NTFS

==================== MBR & Tabla de particiones ====================

==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 465.8 GB) (Disk ID: C6A61084)
Partition 1: (Not Active) - (Size=9.2 GB) - (Type=27)
Partition 2: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=456.5 GB) - (Type=07 NTFS)

==================== Final  Addition.txt =======================

Hola @Karina_Monserrat_Lop

Disculpa la demora en la respuesta he estado muy complicada.

Dime tienes aun una licencia valida de :slight_smile:

  • AhnLab Online Security

Si la respuesta es NO lo desinstalas de la siguiente manera:

Paso 1:

Desinstala con Revo Uninstaller en su Modo Avanzado:

  • AhnLab Online Security
  • Y todas las versiones obsoletas que tienes de Java.

Manual de Revo Uninstaller.

Reinicias el equipo.

Paso 2:

Con mucha atención sigue estos pasos:

1.- Muy Importante >>> Realizar una copia de Seguridad de su Registro.

  • Descarga/Ejecuta DelFix desde el escritorio de Windows.
  • Clic Derecho, “Ejecutar como Administrador”.
  • En la ventana principal, marca solamente la casilla “Create Registry Backup”.
  • Clic en Run.

Al terminar se abrirá un reporte llamado DelFix.txt, guárdelo por si fuera necesario y cierre la herramienta…

Luego ve a::

2.- Inicio >>> Ejecutar >>> Escribe notepad.exe o abra un nuevo archivo Notepad y copie y pegue lo siguiente:

Start::
CloseProcesses:
HKU\S-1-5-21-1759255200-2635567169-74197307-1001\...\MountPoints2: D - D:\HiSuiteDownLoader.exe
HKU\S-1-5-21-1759255200-2635567169-74197307-1001\...\MountPoints2: {48e9fac1-17da-11e7-bce4-d6af78bb8972} - D:\Setup.exe
HKU\S-1-5-21-1759255200-2635567169-74197307-1001\...\MountPoints2: {855bd446-daeb-11e9-9437-9d6b03cad13d} - D:\HiSuiteDownLoader.exe
HKU\S-1-5-21-1759255200-2635567169-74197307-1001\...\MountPoints2: {d9a8b4a8-d925-11e3-a9f6-3859f9f2376a} - E:\LGAutoRun.exe
HKU\S-1-5-21-1759255200-2635567169-74197307-1001\...\MountPoints2: {fdb0b46c-544c-11e2-a20a-3859f9f2376a} - D:\Autorun.exe
HKLM\Software\Microsoft\Active Setup\Installed Components: [{2D46B6DC-2207-486B-B523-A557E6D54B47}] -> C:\Windows\system32\cmd.exe /D /C start C:\Windows\system32\ie4uinit.exe -ClearIconCache
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> "C:\Program Files\Google\Chrome\Application\77.0.3865.120\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level
AppInit_DLLs: C:\PROGRA~1\COMMON~1\System\symsrv.dll => C:\Program Files\Common Files\System\symsrv.dll [69337 2020-09-30] (Microsoft Corporation) <==== ATENCIÓN
BootExecute: autocheck autochk /k:C * 
GroupPolicy: Restricción ? <==== ATENCIÓN
CHR HKLM\SOFTWARE\Policies\Google: Restricción <==== ATENCIÓN
S2 edgeupdate; "C:\Program Files\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /svc [X]
S3 edgeupdatem; "C:\Program Files\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /medsvc [X]
S3 GoogleChromeElevationService; "C:\Program Files\Google\Chrome\Application\77.0.3865.120\elevation_service.exe" [X]
S3 MozillaMaintenance; "C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe" [X]
S2 Oasis2Service; "C:\Program Files\DDNi\Oasis2Service 1.0\Oasis2Service.exe" [X]
S3 SpfService; "C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\SPF\SpfService.exe" [X]
S2 VAIO Event Service; "C:\Program Files\Sony\VAIO Event Service\VESMgr.exe" [X]
S3 VcmIAlzMgr; "C:\Program Files\Sony\VCM Intelligent Analyzing Manager\VcmIAlzMgr.exe" [X]
S3 VcmINSMgr; "C:\Program Files\Sony\VCM Intelligent Network Service Manager\VcmINSMgr.exe" [X]
S3 VCService; "C:\Program Files\Sony\VAIO Care\VCService.exe" [X]
S2 VSNService; "C:\Program Files\Sony\VAIO Smart Network\VSNService.exe" [X]
2020-09-29 09:57 - 2020-09-29 10:05 - 000000000 ____D C:\a43a12a983ef559c1a7f1adc93
2020-09-17 15:32 - 2020-09-18 12:38 - 000000000 ___HD C:\Windows\msdownld.tmp
2020-09-30 06:59 - 2009-07-13 21:37 - 000000000 ____D C:\Program Files\Common Files\System
2019-11-23 16:49 - 2019-11-23 19:57 - 006922240 _____ () C:\Program Files\GUT9637.tmp
2017-04-07 20:00 - 2017-04-07 20:00 - 007680000 _____ () C:\Program Files\GUTC6D8.tmp
2019-10-21 09:07 - 2019-10-21 09:07 - 000117247 _____ () C:\Users\MIGUEL\AppData\Roaming\Bemomohi
2019-12-20 14:04 - 2019-12-20 14:04 - 000302776 _____ () C:\Users\MIGUEL\AppData\Roaming\Dobamatehug
2019-10-12 11:06 - 2019-10-12 11:06 - 000241436 _____ () C:\Users\MIGUEL\AppData\Roaming\Gemupisepehu
2019-11-21 13:01 - 2019-11-21 13:01 - 000201533 _____ () C:\Users\MIGUEL\AppData\Roaming\Kapak
2019-09-06 00:01 - 2019-09-06 00:01 - 000157496 _____ () C:\Users\MIGUEL\AppData\Roaming\Kebunuge
2019-10-30 11:01 - 2019-10-30 11:01 - 000295435 _____ () C:\Users\MIGUEL\AppData\Roaming\Ketamaroto
2020-01-04 13:01 - 2020-01-04 13:01 - 000165104 _____ () C:\Users\MIGUEL\AppData\Roaming\Kobegagi
2019-09-22 14:01 - 2019-09-22 14:01 - 000296500 _____ () C:\Users\MIGUEL\AppData\Roaming\Mumorehebufu
2020-03-31 20:01 - 2020-03-31 20:01 - 000135885 _____ () C:\Users\MIGUEL\AppData\Roaming\Natikuburah
2019-10-04 11:01 - 2019-10-04 11:01 - 000202696 _____ () C:\Users\MIGUEL\AppData\Roaming\Nokakedoma
2019-10-06 11:06 - 2019-10-06 11:06 - 000139002 _____ () C:\Users\MIGUEL\AppData\Roaming\Ragodap
2019-09-14 13:01 - 2019-09-14 13:01 - 000221033 _____ () C:\Users\MIGUEL\AppData\Roaming\Ratolopede
2020-01-14 16:01 - 2020-01-14 16:01 - 000131176 _____ () C:\Users\MIGUEL\AppData\Roaming\Rememupeta
2020-05-27 20:01 - 2020-05-27 20:01 - 000151239 _____ () C:\Users\MIGUEL\AppData\Roaming\Tonaneruheso
ContextMenuHandlers2: [AddtoVAIOGate] -> {6988D6F2-F24F-4732-8855-A39DB1AA1346} =>  -> Ningún archivo
ContextMenuHandlers3: [AddtoVAIOGate] -> {6988D6F2-F24F-4732-8855-A39DB1AA1346} =>  -> Ningún archivo
WMI:subscription\__FilterToConsumerBinding->CommandLineEventConsumer.Name=\"BVTConsumer\"",Filter="__EventFilter.Name=\"BVTFilter\"::
WMI:subscription\__EventFilter->BVTFilter::[Query => SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99]
WMI:subscription\CommandLineEventConsumer->BVTConsumer::[CommandLineTemplate => cscript KernCap.vbs][WorkingDirectory => C:\\tools\\kernrate]
AlternateDataStreams: C:\ProgramData\Reprise:wupeogjxldtlfudivq`qsp`27hfm [0]
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://go.microsoft.com/fwlink/?LinkID=617910&ResetID=131613650170251101&GUID=00000000-0000-0000-0000-000000000000
HKU\S-1-5-21-1759255200-2635567169-74197307-1001\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://prodigy.msn.com/
HKU\S-1-5-21-1759255200-2635567169-74197307-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://go.microsoft.com/fwlink/?LinkID=617910&ResetID=131613650170563102&GUID=00000000-0000-0000-0000-000000000000
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1
SearchScopes: HKLM -> {1b31c9d2-7135-442b-bb93-7c002172adc6} URL = hxxp://www.bing.com/search?q={searchTerms}&form=SNYVDF&pc=MASA&src=IE-SearchBox
SearchScopes: HKLM -> {8acdd076-7141-4655-8487-c35174c89c93} URL = 
SearchScopes: HKLM -> {f79e5d1c-5148-469e-9f98-a11d8d7863f4} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSERBM&pc=MSERT1
SearchScopes: HKU\S-1-5-21-1759255200-2635567169-74197307-1001 -> DefaultScope {CBF352E7-50CC-4BC6-B3C6-70E6F91C68BC} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1
SearchScopes: HKU\S-1-5-21-1759255200-2635567169-74197307-1001 -> {CBF352E7-50CC-4BC6-B3C6-70E6F91C68BC} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1
SearchScopes: HKU\S-1-5-21-1759255200-2635567169-74197307-1001 -> {f79e5d1c-5148-469e-9f98-a11d8d7863f4} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSERBM&pc=MSERT1
Toolbar: HKU\S-1-5-21-1759255200-2635567169-74197307-1001 -> Sin Nombre - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} -  Ningún archivo
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_03-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab
FirewallRules: [{220DCDBC-62A2-4A40-B59A-92F1EE3B9B34}] => (Allow) C:\Users\MIGUEL\AppData\Local\Chromium\Application\chrome.exe => Ningún archivo
FirewallRules: [{33505E57-284C-43AD-979F-EB64957934E6}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe => Ningún archivo

CMD: ipconfig /flushdns
CMD: ipconfig /renew
CMD: bitsadmin /reset /allusers
CMD: netsh winsock reset
CMD: netsh advfirewall reset
CMD: netsh advfirewall set allprofiles state ON
CMD: netsh int ipv4 reset
CMD: netsh int ipv6 reset
RemoveProxy:
EmptyTemp:
Hosts:
End::
  • Lo guarda bajo el nombre de fixlist.txt en el escritorio <<< Esto es muy importante.

Nota: Es necesario que el ejecutable Frst.exe/Frst64.exe y fixlist.txt se encuentren en la misma ubicación (escritorio) o si no la herramienta no trabajará.

3.- Inicie su ordenador en >>> Modo Seguro >>> Aplicable a Windows 10. o Windows 7.

  • Ejecute Frst.exe o Frst64.exe. según el caso.
  • Presione el botón Fix/Corregir y aguarde a que termine.
  • La Herramienta guardará el reporte en su escritorio (Fixlog.txt).
  • Reinicia y lo pega en su próxima respuesta.

Paso 3:

Reinstalas Java a su ultima versión.

Nos comentas…

Salu2