Resultados del Análisis Adicional de Farbar Recovery Scan Tool (x64) Versión: 13-09-2020 Ejecutado por Hugo (15-09-2020 10:22:04) Ejecutado desde C:\descargas Windows 7 Professional Service Pack 1 (X64) (2020-05-25 20:05:38) Modo de Inicio: Normal ========================================================== ==================== Cuentas: ============================= Administrador (S-1-5-21-2107374650-62763987-4101249605-500 - Administrator - Disabled) ASPNET (S-1-5-21-2107374650-62763987-4101249605-1011 - Limited - Enabled) HomeGroupUser$ (S-1-5-21-2107374650-62763987-4101249605-1009 - Limited - Enabled) Hugo (S-1-5-21-2107374650-62763987-4101249605-1001 - Administrator - Enabled) => C:\Users\Hugo Invitado (S-1-5-21-2107374650-62763987-4101249605-501 - Limited - Disabled) UpdatusUser (S-1-5-21-2107374650-62763987-4101249605-1003 - Limited - Enabled) => C:\Users\UpdatusUser ==================== Centro de Seguridad ======================== (Si una entrada es incluida en el fixlist, será eliminada.) AV: ESET Security (Enabled - Up to date) {885D845F-AF19-0124-FECE-FFF49D00F440} AS: ESET Security (Enabled - Up to date) {333C65BB-8923-0EAA-C47E-C486E687BEFD} AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Programas instalados ====================== (Solo los programas de adware con indicador "Oculto", pueden ser añadidos al fixlist para hacerlos visibles. Los programas adware deben ser desinstalados manualmente.) µTorrent (HKU\S-1-5-21-2107374650-62763987-4101249605-1001\...\uTorrent) (Version: 3.5.5.45724 - BitTorrent Inc.) 4K Video Downloader 4.10 (HKLM\...\{29F889EE-CD6A-48B7-8197-9E37E54336C9}) (Version: 4.10.0.3230 - Open Media LLC) 7-Zip 19.00 (x64 edition) (HKLM\...\{23170F69-40C1-2702-1900-000001000000}) (Version: 19.00.00.0 - Igor Pavlov) 7-Zip 19.00 (x64) (HKLM\...\7-Zip) (Version: 19.00 - Igor Pavlov) Activador Windows 7 (HKLM-x32\...\Activador Windows 7) (Version: - ) Adobe Acrobat XI Pro (HKLM-x32\...\{AC76BA86-1033-FFFF-7760-000000000006}) (Version: 11.0.23 - Adobe Systems) Adobe Digital Editions 4.5 (HKLM-x32\...\Adobe Digital Editions 4.5) (Version: 4.5.11 - Adobe Systems Incorporated) Adobe Flash Player 32 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 32.0.0.371 - Adobe) Adobe Flash Player 32 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 32.0.0.363 - Adobe) Adobe Reader 9 - Español (HKLM-x32\...\{AC76BA86-7AD7-1034-7B44-A90000000001}) (Version: 9.0.0 - Adobe Systems Incorporated) Advanced System Optimizer (HKLM-x32\...\{A1E21995-127E-4B7F-8C4D-CB04AA8A58EF}_is1) (Version: 3.9.3645.18056 - Systweak Software) <==== ATENCIÓN Advanced SystemCare (HKLM-x32\...\Advanced SystemCare_is1) (Version: 13.5.0 - IObit) Air Explorer Pro (HKLM-x32\...\Air Explorer Pro 2.8.1) (Version: - ) Allgemeine Runtime Files (x86) (HKLM\...\{1F6D1DB5-82B5-41A4-85A2-0A382C142A35}_is1) (Version: 1.0.5.1 - Sereby Corporation) Another Desktop (HKLM-x32\...\Another Desktop) (Version: 2.3.0 - OK SOFT) Anti-Twin (Installation 23-05-2018) (HKLM-x32\...\Anti-Twin 2018-05-23 20.53.59) (Version: - Joerg Rosenthal, Germany) Apple Application Support (32 bits) (HKLM-x32\...\{C56BA005-F02C-461B-ACA5-A0CE3E32578F}) (Version: 6.5 - Apple Inc.) Apple Application Support (64 bits) (HKLM\...\{C8087B7C-8496-45BE-92FB-91D31EB73969}) (Version: 6.5 - Apple Inc.) Apple Mobile Device Support (HKLM\...\{64695C4A-C68F-46B5-A734-50EBF124A68E}) (Version: 11.3.3.4 - Apple Inc.) Ashampoo Burning Studio 20 (HKLM-x32\...\{91B33C97-155F-C10C-D4D6-CABA03805EE4}_is1) (Version: 20.0.2 - Ashampoo GmbH & Co. KG) Ashampoo Internet Accelerator 3 (HKLM-x32\...\{4209F371-C803-200D-89A4-5479B6569259}_is1) (Version: 3.3.0 - Ashampoo GmbH & Co. KG) Ashampoo UnInstaller 9.00.10 (HKLM-x32\...\Ashampoo UnInstaller_is1) (Version: 9.00.10 - lrepacks.ru) Ashampoo WinOptimizer FREE (HKLM-x32\...\{4209F371-8668-980C-19C9-F8698AB75135}_is1) (Version: 17.00.25 - Ashampoo GmbH & Co. KG) Asterisk Key 8.3 (HKLM-x32\...\Asterisk Key) (Version: - ) Asterisk Password Decryptor (HKLM-x32\...\{3024B24D-405D-43C6-A347-D355819F2F6F}) (Version: 3.31.107 - KRyLack Software) Attribute Changer 9.50a (HKLM\...\{27263813-8BDE-4CD2-84D3-02536743428A}_is1) (Version: 9.50a - Romain Petges) aTube Catcher versión 3.8 (HKLM-x32\...\{D43B360E-722D-421B-BC77-20B9E0F8B6CD}_is1) (Version: 3.8 - DsNET Corp) Autorun Organizer versión 4.40 (HKLM\...\Autorun Organizer_is1) (Version: 4.40 - ChemTable Software) Avira System Speedup (HKLM-x32\...\Avira System Speedup_is1) (Version: 6.4.1.10871 - Avira Operations GmbH & Co. KG) Better File Rename 6.17 (HKLM\...\Better File Rename 6_is1) (Version: - publicspace.net) Betternet for Windows 5.0.5 (HKLM-x32\...\{2E77104D-96E1-4A9C-86F2-C7CF9C709999}) (Version: 5.0.5 - Betternet Technologies Inc.) Bit Che (HKLM-x32\...\{D9DA5C41-964F-455F-B5E7-3664519440E8}_is1) (Version: 3.5 build 50 - Convivea Inc.) BlueStacks App Player (HKLM\...\BlueStacks) (Version: 4.30.53.1704 - BlueStack Systems, Inc.) calibre 64bit (HKLM\...\{0FD8DB9D-5D78-4919-9413-0940F43334DD}) (Version: 4.23.0 - Kovid Goyal) Camtasia Studio 8 (HKLM-x32\...\{BFA04EE0-8240-4667-8D53-45496A901C33}) (Version: 8.1.2.1327 - TechSmith Corporation) CCleaner (HKLM\...\CCleaner) (Version: 5.70 - Piriform) CheckDrive (HKLM-x32\...\{B83513EC-2E4D-4621-816D-4CCF397BE702}_is1) (Version: 1.20 - Abelssoft) Cimaware OfficeFIX (HKU\S-1-5-21-2107374650-62763987-4101249605-1001\...\Cimaware OfficeFIX 6.xx) (Version: 6.125 - Cimaware Software) Cisco Webex Meetings (HKLM-x32\...\ActiveTouchMeetingClient) (Version: 40.2.8 - Cisco Webex LLC) CleanMem (HKLM-x32\...\CleanMem) (Version: v2.5.0 - PcWinTech.com) Clover 3.0 (HKLM-x32\...\Clover) (Version: 3.0 - EJIE Technology) Complete Internet Repair 5.2.3.3988 (HKLM\...\Complete Internet Repair_is1) (Version: 5.2.3.3988 - lrepacks.ru) Copernic Agent Personal (HKLM-x32\...\Copernic Agent Personal) (Version: - Copernic) Copy Protect 2.0.5 (HKLM-x32\...\{D4C61A8F-CFE2-4C0F-9FC0-DFD9706C1CC0}_is1) (Version: - NewSoftwares.net Inc.) CrystalDiskInfo 8.6.0 (HKLM\...\CrystalDiskInfo_is1) (Version: 8.6.0 - Crystal Dew World) DeepL (HKU\S-1-5-21-2107374650-62763987-4101249605-1001\...\DeepL) (Version: 1.11.0 - DeepL GmbH) Directory Lister v2 64bit versión 2.40 (HKLM\...\Directory Lister Pro 64bit_is1) (Version: 2.40 - KRKSoft) Disk Drill 4.0.487 (HKLM-x32\...\{ae856d23-fec1-4ee0-a9ed-7ca0914d6016}) (Version: 4.0.487 - CleverFiles) Disk Drill 4.0.487 (x64) (HKLM\...\{4F139EEC-CC3E-4F90-AFA8-3DE2CC25B96E}) (Version: 4.0.487 - CleverFiles) Hidden Dokan Library 1.2.0.1000 (x64) (HKLM\...\{65A3A964-3DC3-0102-0000-180809151012}) (Version: 1.2.0.1000 - Dokany Project) Hidden Dokan Library 1.2.0.1000 Bundle (HKLM-x32\...\{c2f619b0-68fd-4433-970e-cd66cd7a2775}) (Version: 1.2.0.1000 - Dokany Project) Dr. Folder versión 2.5.2.2 (HKLM\...\{1E989158-7B7C-4A69-9038-B010AF3F775A}_is1) (Version: 2.5.2.2 - YL Computing) DriverMax 11 (HKLM-x32\...\DMX5_is1) (Version: 11.18.0.38 - Innovative Solutions) DVD Drive Repair 2.0.0.1025 (HKLM\...\DVD Drive Repair_is1) (Version: 2.0.0.1025 - Rizonesoft) EaseUS Data Recovery Wizard Technician 12.0 (HKLM\...\EaseUS Data Recovery Wizard_is1) (Version: 12.0 - lrepacks.ru) EditPlus (64 bit) (HKLM\...\EditPlus) (Version: - ES-Computing) Eines de correcció del Microsoft Office 2016: català (HKLM\...\{90160000-001F-0403-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden EPUB Converter 12.3.6 (HKLM-x32\...\{13EF34D5-9C31-4751-9EFB-A44B7C38FBFA}) (Version: 12.3.6 - AniceSoft) EPUB File Reader (HKLM-x32\...\{818C5857-5C74-4CAC-9F43-E5597086852D}_is1) (Version: - epubfilereader.com) Epubor Ultimate (HKLM-x32\...\Epubor Ultimate) (Version: 3.0.11.212 - Epubor Inc.) ESET Security (HKLM\...\{C26AA376-9D1B-4B7B-A1F0-DC41E8530176}) (Version: 13.2.18.0 - ESET, spol. s r.o.) Everything 1.4.1.895 (x64) (HKLM\...\Everything) (Version: 1.4.1.895 - David Carpenter) Eye 110 (HKLM-x32\...\{C679F9B9-C65D-4C65-BD6C-BF90B859E281}) (Version: 1.0.414 - ) FastCopy (HKU\S-1-5-21-2107374650-62763987-4101249605-1001\...\FastCopy) (Version: 3.86 - H.Shirouzu) Ferramentas de verificación de Microsoft Office 2016 - Galego (HKLM\...\{90160000-001F-0456-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden File Identifier (HKLM-x32\...\{C257E434-E8F1-4E06-A616-598E4933553E}_is1) (Version: 1.0.13 - Sharpened Productions) File Viewer Plus 3 (HKLM-x32\...\{14AA67B8-9215-4E7F-8C9C-1C3239668C7E}_is1) (Version: 3.2.2 - Sharpened Productions) FileMenu Tools 7.5 (HKLM\...\FileMenu Tools_is1) (Version: 7.5 - LopeSoft) FileMenu Tools 7.7 (HKLM\...\FileMenuTools_is1) (Version: 7.7 - LopeSoft) Files Inspector versión 2.0 (HKLM\...\Files Inspector_is1) (Version: 2.0 - ChemTable Software) FINDIT5 (HKLM-x32\...\{40C54AF8-1E5D-48D1-8824-22362476B233}) (Version: 5.3 - MHouben) FMW 1 (HKLM\...\{36133E9F-B129-4206-9FB4-13F707787542}) (Version: 1.226.3 - AVG Technologies) FormatFactory (HKLM-x32\...\FormatFactory 4.3.0.0) (Version: - ) FormatFactory (HKLM-x32\...\FormatFactory 4.4.0.0) (Version: - ) FortiClient VPN (HKLM\...\{A43400FD-C5F7-4E6D-B258-E271AB41FC93}) (Version: 6.2.6.0951 - Fortinet Technologies Inc) Freedom Scientific FSReader 3.0 (HKLM\...\{771ACF6D-1A05-4195-9739-3EBBDE3A2AA3}) (Version: 3.0.4953.101 - Freedom Scientific) Hidden Freedom Scientific FSReader 3.0 (HKLM\...\FSReader3.0) (Version: 3.0.4953.101 - Freedom Scientific) FxSound Enhancer (HKLM-x32\...\FxSound Enhancer) (Version: - FxSound) GIF Viewer 3.2 (v2) (HKLM-x32\...\GIF Viewer) (Version: 3.2 (v2) - Stefan Wobbe) Glary Utilities 5.145 (HKLM-x32\...\Glary Utilities 5) (Version: 5.145.0.171 - Glarysoft Ltd) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 84.0.4147.89 - Google LLC) Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.35.451 - Google LLC) Hidden HD Tune Pro 5.70 (HKLM-x32\...\HD Tune Pro_is1) (Version: - EFD Software) HDD Guardian 0.7.1 (HKLM-x32\...\{F67EF53C-11BF-4EC8-B025-EC85CABA50B5}) (Version: - ) Herramientas de corrección de Microsoft Office 2016: español (HKLM\...\{90160000-001F-0C0A-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden ImageGlass (HKLM\...\{D539FBEF-4AA8-4415-B66F-6367DA5D0186}_is1) (Version: 5.0.5.7 - Duong Dieu Phap) ImgBurn (HKLM-x32\...\ImgBurn) (Version: 2.5.8.0 - LIGHTNING UK!) Internet Download Accelerator version 6.16 (HKLM-x32\...\Internet Download Accelerator_is1) (Version: 6.16 - WestByte) IObit Driver Booster 7.5.0.750 (HKLM-x32\...\IObit Driver Booster_is1) (Version: 7.5.0.750 - lrepacks.ru) IObit Uninstaller 9.6.0.3 (HKLM-x32\...\IObit Uninstaller_is1) (Version: 9.6.0.3 - lrepacks.ru) IrfanView 4.54 (64-bit) (HKLM\...\IrfanView64) (Version: 4.54 - Irfan Skiljan) iSkysoft iTube Studio(Build 4.2.2.0) (HKLM-x32\...\iSkysoft iTube Studio_is1) (Version: 4.2.2.0 - iSkysoft Software) Java 8 Update 251 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180251F0}) (Version: 8.0.2510.8 - Oracle Corporation) Java 8 Update 251 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180251F0}) (Version: 8.0.2510.8 - Oracle Corporation) JDownloader 2 (HKLM\...\jdownloader2) (Version: 2.0 - AppWork GmbH) JDownloader 2 (HKLM-x32\...\jdownloader2) (Version: 2.0 - AppWork GmbH) JDownloader 2 (HKLM-x32\...\jdownloader2-1) (Version: 2.0 - AppWork GmbH) JPG To PDF 3 (HKLM-x32\...\JPG To PDF_is1) (Version: - JPG To PDF Developer Team) JRiver Media Center 23 (64-bit) (HKLM\...\Media Center 23 (64-bit)) (Version: 23 - JRiver, Inc.) JRiver Media Center 24 (64-bit) (HKLM\...\Media Center 24 (64-bit)) (Version: 24 - JRiver, Inc.) KC Softwares Startup Sentinel (HKLM-x32\...\KC Softwares Startup Sentinel_is1) (Version: 1.7.3.21 - KC Softwares) LAV Filters 0.74.1 (HKLM-x32\...\lavfilters_is1) (Version: 0.74.1 - Hendrik Leppkes) LogonStudio (HKLM-x32\...\LogonStudio) (Version: 1.7 - Stardock Corporation) MailWasher (HKLM-x32\...\{65D951D3-E141-4880-8EC2-6EA2F6610B2F}) (Version: 7.11.05 - Firetrust) Main Services (HKLM\...\{E502CB81-9DB4-4E96-984A-90213A97FED6}) (Version: 1.4.0 - System Native) Hidden <==== ATENCIÓN MakeMKV v1.15.1 (HKLM-x32\...\MakeMKV) (Version: v1.15.1 - GuinpinSoft inc) Microsoft .NET Framework 1.1 (HKLM-x32\...\Microsoft .NET Framework 1.1 (1033)) (Version: - ) Microsoft .NET Framework 4.8 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.8.03761 - Microsoft Corporation) Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 85.0.564.51 - Microsoft Corporation) Microsoft Edge Update (HKLM-x32\...\Microsoft Edge Update) (Version: 1.3.135.29 - ) Microsoft Fix it Center (HKLM\...\{B7588D45-AFDC-4C93-9E2E-A100F3554B64}) (Version: 1.0.0100 - Microsoft Corporation) Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{F2508213-9989-4E85-A078-72BE483917EF}) (Version: 3.5.88.0 - Microsoft Corporation) Microsoft Games for Windows Marketplace (HKLM-x32\...\{4CB0307C-565E-4441-86BE-0DF2E4FB828C}) (Version: 3.5.50.0 - Microsoft Corporation) Microsoft Office Professional Plus 2016 (HKLM\...\Office16.PROPLUS) (Version: 16.0.4266.1001 - Microsoft Corporation) Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50918.0 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61187 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61186 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.7523 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.7523 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.7523 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.7523 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61135 (HKLM\...\{37B8F9C7-03FB-3253-8781-2517C99D7C00}) (Version: 11.0.61135 - Microsoft Corporation) Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61135 (HKLM\...\{CF2BEA3C-26EA-32F8-AA9B-331F7E34BA97}) (Version: 11.0.61135 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40664 (HKLM-x32\...\{4ffaf7b8-a84a-4813-840c-8b1f1343ae54}) (Version: 12.0.40664.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40664 (HKLM-x32\...\{dd1e9bde-2ad6-4e92-8c07-7d4723eab8b8}) (Version: 12.0.40664.0 - Microsoft Corporation) Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.25.28508 (HKLM-x32\...\{6913e92a-b64e-41c9-a5e6-cef39207fe89}) (Version: 14.25.28508.3 - Microsoft Corporation) Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.25.28508 (HKLM-x32\...\{65e650ff-30be-469d-b63a-418d71ea1765}) (Version: 14.25.28508.3 - Microsoft Corporation) Microsoft Visual J# 2.0 Redistributable Package - SE (x64) (HKLM\...\Microsoft Visual J# 2.0 Redistributable Package - SE (x64)) (Version: - Microsoft Corporation) Microsoft XNA Framework Redistributable 3.0 (HKLM-x32\...\{3898934B-05AE-41CD-96BE-70DA9BFBCE1F}) (Version: 3.0.11010.0 - Microsoft Corporation) Microsoft XNA Framework Redistributable 3.1 (HKLM-x32\...\{19BFDA5D-1FE2-4F25-97F9-1A79DD04EE20}) (Version: 3.1.10527.0 - Microsoft Corporation) Microtask 1.0.3 (HKLM\...\a3b0c45c-57f0-4e43-83b5-642ca9987ccd) (Version: 1.0.3 - Microtask) Mobipocket Reader 6.2 (HKLM-x32\...\{342126E1-173C-4585-BFBE-3EBDD20E3E9E}) (Version: 6.2.608 - Mobipocket.com) Mp3tag v3.01 (HKLM-x32\...\Mp3tag) (Version: 3.01 - Florian Heidenreich) MS Barcode versión 9.0 (HKLM-x32\...\{A78617A8-B011-40E3-AB23-484F8302450E}_is1) (Version: 9.0 - ExtendOffice) MusicBrainz Picard (HKLM-x32\...\MusicBrainz Picard) (Version: 2.3.2 - MusicBrainz) NetWorx 6.2 (HKLM\...\NetWorx_is1) (Version: - Softperfect) NVIDIA Display Control Panel (HKLM\...\NVIDIA Display Control Panel) (Version: 6.14.11.9739 - NVIDIA Corporation) NVIDIA Drivers (HKLM\...\NVIDIA Drivers) (Version: 1.10.62.40 - NVIDIA Corporation) NVIDIA Software del sistema PhysX 9.19.0218 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.19.0218 - NVIDIA Corporation) Office Tab Enterprise 12.00 (HKLM\...\{DE469D65-1DEB-4058-BF95-C642D733668D}_is1) (Version: 12.00 - Detong Technology Ltd.) OneClickFirewall (HKLM\...\OneClickFirewall) (Version: 1.0.0.2 - hxxp://winaero.com) OpenAL (HKLM-x32\...\OpenAL) (Version: - ) Opera Stable 70.0.3728.178 (HKU\S-1-5-21-2107374650-62763987-4101249605-1001\...\Opera 70.0.3728.178) (Version: 70.0.3728.178 - Opera Software) Panel de control de NVIDIA 309.08 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 309.08 - NVIDIA Corporation) Hidden PassFab Product Key Recovery (HKLM-x32\...\{PassFabProductKeyRecovery}_is1) (Version: 6.2.0.6 - PassFab, Inc.) PCFresh 2018 (HKLM-x32\...\600FCE8D-A34B-4C4D-A8ED-1CDBACD7C9E0_is1) (Version: 4.09 - Abelssoft) PotPlayer-64 bit (HKLM\...\PotPlayer64) (Version: 200730 - Kakao Corp.) PowerArchiver 2015 (HKLM-x32\...\PowerArchiver 2015 15.00.42) (Version: 15.00.42 - ConeXware, Inc.) PowerArchiver 2019 (HKLM\...\PowerArchiver_is1) (Version: 19.00.59 - ConeXware, Inc.) PowerISO (HKLM-x32\...\PowerISO) (Version: 7.7 - Power Software Ltd) Process Hacker (HKLM\...\ProcessHacker) (Version: 3.x - Process Hacker) PVSonyDll (HKLM\...\{3D3E663D-4E7E-4577-A560-7ECDDD45548A}) (Version: 1.00.0001 - NVIDIA Corporation) Hidden QTranslate 6.5.0 (HKLM-x32\...\QTranslate) (Version: 6.5.0 - QuestSoft) RAR to ZIP Converter (HKLM-x32\...\{F1A6CF54-43BB-4397-B4BD-50C7947FEDAD}_is1) (Version: - rartozipconverter.com) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.8967.1 - Realtek Semiconductor Corp.) Recuva (HKLM\...\Recuva) (Version: 1.53 - Piriform) Reg Organizer (HKLM-x32\...\Reg Organizer 8.43 Final) (Version: - ) Reg Organizer versión 8.28 (HKLM-x32\...\Reg Organizer_is1) (Version: 8.28 - ChemTable Software) Registry Life versión 5.22 (HKLM\...\Registry Life_is1) (Version: 5.22 - ChemTable Software) Remove Empty Directories version 2.2 (HKLM-x32\...\{06F25DC8-71E2-44E2-805A-F15E15B51C74}_is1) (Version: 2.2 - Jonas John) Revisores de Texto do Microsoft Office 2016 – Português (Brasil) (HKLM\...\{90160000-001F-0416-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden Revo Uninstaller Pro 4.3.1 (HKLM\...\Revo Uninstaller Pro_is1) (Version: 4.3.1 - lrepacks.ru) Revo Uninstaller Pro 4.3.3 (HKLM\...\{67579783-0FB7-4F7B-B881-E5BE47C9DBE0}_is1) (Version: 4.3.3 - VS Revo Group, Ltd.) RogueKiller versión 14.4.0.0 (HKLM\...\8B3D7924-ED89-486B-8322-E8594065D5CB_is1) (Version: 14.4.0.0 - Adlice Software) R-Studio (HKLM-x32\...\R-Studio) (Version: - R-Tools Technology Inc.) Safe Startup (HKLM\...\stgu) (Version: 4.11 - PrivacyRoot.com) Secret Disk versión 2020.02 (HKLM-x32\...\Secret Disk_is1) (Version: 2020.02 - PrivacyRoot IFG) Sentinel System Driver Installer 7.5.0 (HKLM-x32\...\{FAEE61D3-2A5E-4F7F-926F-77AAC08CE4DD}) (Version: 7.5.0 - SafeNet, Inc.) SimCity 4 Deluxe Edition (HKLM-x32\...\1207664593_is1) (Version: 1.1.641 - GOG.com) Skype versión 8.63 (HKLM-x32\...\Skype_is1) (Version: 8.63 - Skype Technologies S.A.) Soft Data Fax Modem with SmartCP (HKLM\...\CNXT_MODEM_PCI_VEN_14F1&DEV_2F20&SUBSYS_200C14F1) (Version: 7.80.4.50 - Conexant Systems) Soft Organizer (HKLM-x32\...\Soft Organizer) (Version: - Soft Organizer) Software Informer 1.5.1344.0 (HKLM\...\Software Informer_is1) (Version: - Informer Technologies, Inc.) SolSuite 2020 v20.0 (HKLM-x32\...\SolSuite_is1) (Version: 20.0 - TreeCardGames) Solsuite Solitaire 2018 v18.6 + Graphics Pack by ManHunter-PCL Repack JCVO (HKLM-x32\...\Solsuite Solitaire 2018 v18.6 + Graphics Pack by~F2421255_is1) (Version: 2018.18.6.0 - TreeCardGames) SterJo Password Unmask (HKLM-x32\...\{2DC8F8C4-B559-4DB5-B715-91087C4F8FED}_is1) (Version: 1.2 - SterJo Software) SumatraPDF (HKLM\...\SumatraPDF) (Version: 3.2 - Krzysztof Kowalczyk) System Ninja version 3.2 (HKLM-x32\...\{6E67710E-206D-43AB-BF21-E7CD63056C55}_is1) (Version: 3.2 - SingularLabs) Take Command 25 (HKLM\...\{BAF36A48-9665-455E-BF90-BD92E703CDB1}) (Version: 25.0.24.0 - JP Software) TAP-Windows 9.21.2 (HKLM\...\TAP-Windows) (Version: 9.21.2 - ) Telegram Desktop versión 2.1 (HKU\S-1-5-21-2107374650-62763987-4101249605-1001\...\{53F49750-6209-4FBF-9CA8-7A333C87D1ED}_is1) (Version: 2.1 - Telegram FZ-LLC) The Bat! v9.1.18 (64-bit) (HKLM\...\{7F045DD7-BA58-47C7-9488-A9887298D0FC}) (Version: 9.1.18 - Ritlabs, SRL) TNod User & Password Finder (HKLM\...\TNod) (Version: 1.6.4.0 - Tukero[X]Team) Total Commander 64+32-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 9.21a - Ghisler Software GmbH) TotalCSVConverter (HKLM-x32\...\Total CSV Converter_is1) (Version: - Softplicity, Inc.) Tweaking.com - Windows Repair (HKLM-x32\...\Tweaking.com - Windows Repair) (Version: 4.8.1 - Tweaking.com) UltraISO Premium V9.73 (HKLM-x32\...\UltraISO_is1) (Version: 9.73 - EZB Systems, Inc.) Universal Extractor (HKLM\...\Universal Extractor) (Version: v1.6.1.2032 - Copyright (C) Jared Breland) Universal Viewer Pro version 6.7.0.0 (HKLM-x32\...\Universal Viewer Pro_is1) (Version: 6.7.0.0 - UVviewsoft) Unlocker 1.9.2 (HKLM\...\Unlocker) (Version: 1.9.2 - Cedrick Collomb) UnRarIt.Net (HKLM-x32\...\{21C1D723-D756-4C40-B563-F3773E8A2FC8}) (Version: 13.03.10 - Nils Maier) Update for Skype for Business 2016 (KB4484501) 64-Bit Edition (HKLM\...\{90160000-0011-0000-1000-0000000FF1CE}_Office16.PROPLUS_{5758925D-D737-4467-8928-BE143AB9699B}) (Version: - Microsoft) Update for Skype for Business 2016 (KB4484501) 64-Bit Edition (HKLM\...\{90160000-00C1-0000-1000-0000000FF1CE}_Office16.PROPLUS_{5758925D-D737-4467-8928-BE143AB9699B}) (Version: - Microsoft) Update for Skype for Business 2016 (KB4484501) 64-Bit Edition (HKLM\...\{90160000-012B-0C0A-1000-0000000FF1CE}_Office16.PROPLUS_{5758925D-D737-4467-8928-BE143AB9699B}) (Version: - Microsoft) USB Safely Remove 6.1 (HKLM-x32\...\USB Safely Remove_is1) (Version: - SafelyRemove.com) Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies) Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.) VLC media player (HKLM\...\VLC media player) (Version: 3.0.11 - VideoLAN) VLC media player (HKLM-x32\...\VLC media player) (Version: 3.0.11 - VideoLAN) Winamp (HKLM-x32\...\Winamp) (Version: 5.666 - Nullsoft, Inc) Windows Live ID Sign-in Assistant (HKLM\...\{9B48B0AC-C813-4174-9042-476A887592C7}) (Version: 6.500.3165.0 - Microsoft Corporation) WinNc (HKLM-x32\...\{B7BE27B0-D17F-4873-8EB4-F5DBA5EEBFB4}_is1) (Version: 8.2.0.0 - Dunes MultiMedia) WinPcap 4.1.3 (HKLM-x32\...\WinPcapInst) (Version: 4.1.0.2980 - Riverbed Technology, Inc.) WinRAR 5.91 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.91.0 - win.rar GmbH) WinZip 24.0 (HKLM\...\{CD95F661-A5C4-44F5-A6AA-ECDD91C24121}) (Version: 24.0.13618 - Corel Corporation) Wise Game Booster 1.5.3 (HKLM-x32\...\Wise Game Booster_is1) (Version: 1.5.3 - WiseCleaner.com, Inc.) Wise Memory Optimizer 3.6.8 (HKLM-x32\...\Wise Memory Optimizer_is1) (Version: 3.6.8 - WiseCleaner.com, Inc.) Wondershare Helper Compact 2.5.3 (HKLM-x32\...\{5363CE84-5F09-48A1-8B6C-6BB590FFEDF2}_is1) (Version: 2.5.3 - Wondershare) Wondershare Recoverit(Build 9.0.2.3) (HKLM-x32\...\{829555DC-31E5-4FEA-B350-8FCF24CECD95}_is1) (Version: 9.0.2.3 - Wondershare Software Co.,Ltd.) XnViewMP 0.90 (HKLM\...\XnViewMP_is1) (Version: 0.90 - Gougelet Pierre-e) Менеджер браузеров (HKLM-x32\...\{FABA89D9-D588-4770-9F85-F6FF9F064257}) (Version: 3.0.6.829 - Яндекс) Hidden ==================== Personalizado CLSID (Lista blanca): ============== (Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.) CustomCLSID: HKU\S-1-5-21-2107374650-62763987-4101249605-1001_Classes\CLSID\{54d57692-7860-47c9-9afe-c2c6f4415728}\InprocServer32 -> C:\Windows\system32\kernel32.dll (Microsoft Windows -> Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-2107374650-62763987-4101249605-1001_Classes\CLSID\{CB2B673F-D441-4CD4-AFBE-DC4037CA4220}\InprocServer32 -> C:\Program Files\WinZip\adxloader64.WinZipExpressForOffice.dll (Corel Corporation -> ) ContextMenuHandlers1-x32: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\7-Zip\7-zip32.dll [2019-02-21] (Igor Pavlov) [Archivo no firmado] ContextMenuHandlers1: [Adobe.Acrobat.ContextMenu] -> {A6595CD1-BF77-430A-A452-18696685F7C7} => C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat Elements\ContextMenuShim64.dll [2012-09-23] (Adobe Systems, Incorporated -> Adobe Systems Inc.) ContextMenuHandlers1: [EditPlus] -> {36D94110-787C-4828-9C1B-0DAFEBC36069} => C:\EditPlus\eppshell64.dll [2018-03-27] (ES-Computing -> ) ContextMenuHandlers1: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2020-08-29] (ESET, spol. s r.o. -> ESET) ContextMenuHandlers1: [FormatFactoryShell] -> {A3777921-CFD3-4A6B-89BF-08E6B95716E8} => C:\Program Files (x86)\FormatFactory\ShellEx64_104.dll [2018-03-19] (Free Time) [Archivo no firmado] ContextMenuHandlers1: [Glary Utilities] -> {B3C418F8-922B-4faf-915E-59BC14448CF7} => C:\Glary Utilities\x64\ContextHandler.dll [2020-03-04] (Glarysoft LTD -> Glarysoft Ltd) ContextMenuHandlers1: [Mp3tagShell] -> {6351E20C-35FA-4BE3-98FB-4CABF1363E12} => C:\Program Files (x86)\Mp3tag\Mp3tagShell64.dll [2020-03-27] (Florian Heidenreich) [Archivo no firmado] ContextMenuHandlers1: [PowerArchiver] -> {d03d3e68-0c44-3d45-b15f-bcfd8a8b4c7e} => C:\PowerArchiver\PASHLEXT.DLL [2019-02-14] (ConeXware, Inc. -> ConeXware, Inc.) ContextMenuHandlers1: [PowerArchiver64] -> {d03d3e78-0c44-3d45-b15f-bcfd8a8b4c7e} => C:\PowerArchiver\PASHLEXT64.DLL [2019-02-14] (ConeXware, Inc. -> ConeXware, Inc.) ContextMenuHandlers1: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} => C:\Program Files (x86)\PowerISO\PWRISOSH.DLL [2020-06-22] (Power Software Limited -> Power Software Ltd) ContextMenuHandlers1-x32: [SecureExt] -> {D23C3BA7-6DC3-4DDF-9BDF-12599E852A40} => C:\Program Files (x86)\Advanced System Optimizer 3\SecureShell.dll [2020-02-12] (SYSTWEAK SOFTWARE PVT. LTD. -> Systweak Software) ContextMenuHandlers1: [SystemSpeedupFilesMenu] -> {14cb2bd0-2375-3d10-9b5d-5e18865c8959} => C:\Program Files (x86)\Avira\System Speedup\Avira.SystemSpeedup.UI.ShellExtension.DLL [2020-01-30] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) ContextMenuHandlers1: [TweakPower] -> {D1AF3AAE-2AB0-1691-0119-3E6C13D38EFD} => -> Ningún archivo ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2020-06-25] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2020-06-25] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers1: [WinZip] -> {E0D79304-84BE-11CE-9641-444553540000} => C:\Program Files\WinZip\wzshls64.dll [2019-09-01] (Corel Corporation -> WinZip Computing) ContextMenuHandlers2: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2020-08-29] (ESET, spol. s r.o. -> ESET) ContextMenuHandlers2: [Glary Utilities] -> {B3C418F8-922B-4faf-915E-59BC14448CF7} => C:\Glary Utilities\x64\ContextHandler.dll [2020-03-04] (Glarysoft LTD -> Glarysoft Ltd) ContextMenuHandlers2: [Mp3tagShell] -> {6351E20C-35FA-4BE3-98FB-4CABF1363E12} => C:\Program Files (x86)\Mp3tag\Mp3tagShell64.dll [2020-03-27] (Florian Heidenreich) [Archivo no firmado] ContextMenuHandlers2-x32: [SecureExt] -> {D23C3BA7-6DC3-4DDF-9BDF-12599E852A40} => C:\Program Files (x86)\Advanced System Optimizer 3\SecureShell.dll [2020-02-12] (SYSTWEAK SOFTWARE PVT. LTD. -> Systweak Software) ContextMenuHandlers2: [UltraISO] -> {AD392E40-428C-459F-961E-9B147782D099} => C:\UltraISO\isoshl64.dll [2014-01-02] (SHENZHEN YIBO DIGITAL SYSTEMS DEVELOPMENT CO. LTD. -> EZB Systems, Inc.) ContextMenuHandlers3: [ACShell] -> {D3F9A525-8824-497A-BE36-B23E22F141FC} => C:\Program Files\Attribute Changer\acshell.dll [2020-02-15] (Romain Petges) [Archivo no firmado] ContextMenuHandlers3: [FileMenuTools] -> {C1B2C38F-3DCA-4E3D-BC34-D5B87B636543} => C:\Program Files\LopeSoft\FileMenu Tools\FileMenuTools64.dll [2019-10-05] (LopeSoft) [Archivo no firmado] ContextMenuHandlers3: [UnlockerShellExtension] -> {DDE4BEEB-DDE6-48fd-8EB5-035C09923F83} => C:\Unlocker\UnlockerCOM.dll [2010-07-15] (Empty Loop -> ) ContextMenuHandlers4-x32: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\7-Zip\7-zip32.dll [2019-02-21] (Igor Pavlov) [Archivo no firmado] ContextMenuHandlers4: [DrFolderExtension] -> {4ca4fa65-0669-3a6b-8c16-f5c69eaf9fc9} => C:\Dr. Folder\DrFolderExtension.DLL [2018-04-13] () [Archivo no firmado] ContextMenuHandlers4: [FileMenuTools] -> {C1B2C38F-3DCA-4E3D-BC34-D5B87B636543} => C:\Program Files\LopeSoft\FileMenu Tools\FileMenuTools64.dll [2019-10-05] (LopeSoft) [Archivo no firmado] ContextMenuHandlers4: [FormatFactoryShell] -> {A3777921-CFD3-4A6B-89BF-08E6B95716E8} => C:\Program Files (x86)\FormatFactory\ShellEx64_104.dll [2018-03-19] (Free Time) [Archivo no firmado] ContextMenuHandlers4: [Mp3tagShell] -> {6351E20C-35FA-4BE3-98FB-4CABF1363E12} => C:\Program Files (x86)\Mp3tag\Mp3tagShell64.dll [2020-03-27] (Florian Heidenreich) [Archivo no firmado] ContextMenuHandlers4: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} => C:\Program Files (x86)\PowerISO\PWRISOSH.DLL [2020-06-22] (Power Software Limited -> Power Software Ltd) ContextMenuHandlers4: [RecuvaShellExt] -> {435E5DF5-2510-463C-B223-BDA47006D002} => C:\Program Files\Recuva\RecuvaShell64.dll [2016-06-06] (Piriform Ltd -> Piriform Ltd) ContextMenuHandlers4: [SystemSpeedupFoldersMenu] -> {700866bb-c8e9-3e71-b359-abb28baed0e8} => C:\Program Files (x86)\Avira\System Speedup\Avira.SystemSpeedup.UI.ShellExtension.DLL [2020-01-30] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) ContextMenuHandlers4: [UltraISO] -> {AD392E40-428C-459F-961E-9B147782D099} => C:\UltraISO\isoshl64.dll [2014-01-02] (SHENZHEN YIBO DIGITAL SYSTEMS DEVELOPMENT CO. LTD. -> EZB Systems, Inc.) ContextMenuHandlers4: [WinZip] -> {E0D79304-84BE-11CE-9641-444553540000} => C:\Program Files\WinZip\wzshls64.dll [2019-09-01] (Corel Corporation -> WinZip Computing) ContextMenuHandlers5: [FileMenuTools] -> {C1B2C38F-3DCA-4E3D-BC34-D5B87B636543} => C:\Program Files\LopeSoft\FileMenu Tools\FileMenuTools64.dll [2019-10-05] (LopeSoft) [Archivo no firmado] ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\system32\nvshext.dll [2015-01-30] (NVIDIA Corporation -> NVIDIA Corporation) ContextMenuHandlers5: [SystemSpeedupDesktopMenu] -> {0cab5786-30e8-3185-9b3b-ccefbf1b8afe} => C:\Program Files (x86)\Avira\System Speedup\Avira.SystemSpeedup.UI.ShellExtension.DLL [2020-01-30] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) ContextMenuHandlers6-x32: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\7-Zip\7-zip32.dll [2019-02-21] (Igor Pavlov) [Archivo no firmado] ContextMenuHandlers6: [Adobe.Acrobat.ContextMenu] -> {A6595CD1-BF77-430A-A452-18696685F7C7} => C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat Elements\ContextMenuShim64.dll [2012-09-23] (Adobe Systems, Incorporated -> Adobe Systems Inc.) ContextMenuHandlers6: [DirLister] -> {EF479680-EA35-4EA9-B093-7114F3E3E0DA} => C:\Directory Lister\DirListerExt64.dll [2018-11-26] (KRKsoft -> KRKsoft.com) ContextMenuHandlers6: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2020-08-29] (ESET, spol. s r.o. -> ESET) ContextMenuHandlers6: [FileMenuTools] -> {C1B2C38F-3DCA-4E3D-BC34-D5B87B636543} => C:\Program Files\LopeSoft\FileMenu Tools\FileMenuTools64.dll [2019-10-05] (LopeSoft) [Archivo no firmado] ContextMenuHandlers6: [Glary Utilities] -> {B3C418F8-922B-4faf-915E-59BC14448CF7} => C:\Glary Utilities\x64\ContextHandler.dll [2020-03-04] (Glarysoft LTD -> Glarysoft Ltd) ContextMenuHandlers6: [PowerArchiver] -> {d03d3e68-0c44-3d45-b15f-bcfd8a8b4c7e} => C:\PowerArchiver\PASHLEXT.DLL [2019-02-14] (ConeXware, Inc. -> ConeXware, Inc.) ContextMenuHandlers6: [PowerArchiver64] -> {d03d3e78-0c44-3d45-b15f-bcfd8a8b4c7e} => C:\PowerArchiver\PASHLEXT64.DLL [2019-02-14] (ConeXware, Inc. -> ConeXware, Inc.) ContextMenuHandlers6: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} => C:\Program Files (x86)\PowerISO\PWRISOSH.DLL [2020-06-22] (Power Software Limited -> Power Software Ltd) ContextMenuHandlers6: [RecuvaShellExt] -> {435E5DF5-2510-463C-B223-BDA47006D002} => C:\Program Files\Recuva\RecuvaShell64.dll [2016-06-06] (Piriform Ltd -> Piriform Ltd) ContextMenuHandlers6-x32: [SecureExt] -> {D23C3BA7-6DC3-4DDF-9BDF-12599E852A40} => C:\Program Files (x86)\Advanced System Optimizer 3\SecureShell.dll [2020-02-12] (SYSTWEAK SOFTWARE PVT. LTD. -> Systweak Software) ContextMenuHandlers6: [UltraISO] -> {AD392E40-428C-459F-961E-9B147782D099} => C:\UltraISO\isoshl64.dll [2014-01-02] (SHENZHEN YIBO DIGITAL SYSTEMS DEVELOPMENT CO. LTD. -> EZB Systems, Inc.) ContextMenuHandlers6: [UnlockerShellExtension] -> {DDE4BEEB-DDE6-48fd-8EB5-035C09923F83} => C:\Unlocker\UnlockerCOM.dll [2010-07-15] (Empty Loop -> ) ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2020-06-25] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2020-06-25] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers6: [WinZip] -> {E0D79304-84BE-11CE-9641-444553540000} => C:\Program Files\WinZip\wzshls64.dll [2019-09-01] (Corel Corporation -> WinZip Computing) ==================== Codecs (Lista blanca) ==================== (Si una entrada es incluida en el fixlist, el elemento del registro será restaurado a su valor predeterminado o será eliminado. El archivo no será movido.) HKLM\...\Drivers32: [VIDC.FMVC] => C:\Windows\SysWOW64\fmcodec.dll [77824 2008-08-18] (Fox Magic Software) [Archivo no firmado] ==================== Accesos directos & WMI ======================== (Las entradas pueden ser listadas para ser restauradas o eliminadas.) ShortcutWithArgument: C:\Users\Hugo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplicaciones de Chrome\_anclar programa en barra de tareas e.._.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory=Default --app-id=ofbimicokoinaagcmgemddgaldajodnk ==================== Módulos cargados (Lista blanca) ============= 2018-02-04 01:54 - 2008-02-23 06:19 - 000018944 _____ () [Archivo no firmado] C:\Another Desktop\MAr\HT.dll 2017-03-28 14:24 - 2017-03-28 14:24 - 000133120 _____ () [Archivo no firmado] C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Locale\es_es\PDFMaker\PDFMOfficeAddin.ESP 2012-09-23 21:44 - 2012-09-23 21:44 - 000010240 _____ (Adobe Systems Inc.) [Archivo no firmado] C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\locale\es_es\Acrobat Elements\ContextMenuShim64.esp 2020-07-31 19:46 - 2020-04-14 09:04 - 000144384 _____ (Ashampoo GmbH & Co. KG) [Archivo no firmado] C:\Program Files (x86)\Ashampoo\Ashampoo UnInstaller\UIContextHandler64.dll 2020-03-27 13:50 - 2020-03-27 13:50 - 000398336 _____ (Florian Heidenreich) [Archivo no firmado] C:\Program Files (x86)\Mp3tag\Mp3tagShell64.dll 2020-03-10 11:54 - 2020-03-10 11:54 - 001298962 _____ (Fortinet Inc.) [Archivo no firmado] C:\Program Files\Fortinet\FortiClient\utilsdll.dll 2018-03-19 06:40 - 2018-03-19 06:40 - 000101376 _____ (Free Time) [Archivo no firmado] C:\Program Files (x86)\FormatFactory\ShellEx64_104.dll 2020-02-16 17:37 - 2020-02-16 17:37 - 000007168 _____ (IMI Kurwica) [Archivo no firmado] C:\Windows\system32\esu.dll 2020-06-20 16:01 - 2020-05-11 06:40 - 000442144 _____ (IObit Information Technology -> ) [Archivo no firmado] C:\Program Files (x86)\IObit\Advanced SystemCare\madExcept_.bpl 2020-06-20 16:01 - 2020-05-07 07:37 - 000278016 _____ (IObit) [Archivo no firmado] C:\Program Files (x86)\IObit\Advanced SystemCare\OFCommon.dll 2019-10-05 18:51 - 2019-10-05 13:25 - 011269120 _____ (LopeSoft) [Archivo no firmado] C:\Program Files\LopeSoft\FileMenu Tools\FileMenuTools64.dll 2009-08-18 11:24 - 2009-08-18 11:24 - 000167424 _____ (Microsoft Corporation) [Archivo no firmado] c:\Program Files\Common Files\Microsoft Shared\Windows Live\sqmapi.dll 2020-06-14 16:56 - 2020-09-03 22:58 - 002651136 _____ (Microsoft Corporation) [Archivo no firmado] c:\windows\system32\wuaueng2.dll 2020-08-24 00:08 - 2020-08-24 00:08 - 000796672 _____ (Microsoft Corporation) [Archivo no firmado] C:\Windows\WinSxS\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6229_none_88dcc0bf2fb1b808\MSVCR80.dll 2020-03-08 00:07 - 2019-09-01 23:20 - 000089088 _____ (publicspace.net) [Archivo no firmado] C:\Better File Series 6\BfrExt6.dll 2020-08-05 22:32 - 2020-02-15 10:47 - 000491520 _____ (Romain Petges) [Archivo no firmado] C:\Program Files\Attribute Changer\acshell.dll ==================== Alternate Data Streams (Lista blanca) ======== (Si una entrada es incluida en el fixlist, solamente los ADS serán eliminados.) AlternateDataStreams: C:\ProgramData\TEMP:58A5270D [376] ==================== Modo Seguro (Lista blanca) ================== (Si una entrada es incluida en el fixlist, será eliminada del registro. El "AlternateShell" será restaurado.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AppXSvc => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\BFE => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\BITS => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\camsvc => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\ClipSvc => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\dps => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\lfsvc => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MpsSvc => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\msiserver => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\semgrsvc => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SharedAccess => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\shellhwdetection => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TokenBroker => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRemoveSafeBoot => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\vss => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WSService => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\AppXSvc => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\BITS => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\camsvc => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\ClipSvc => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\dps => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\lfsvc => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\msiserver => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\SamSs => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\semgrsvc => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\shellhwdetection => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\srv => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\srv2 => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\srvnet => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TokenBroker => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRemoveSafeBoot => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\vss => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\WSService => ""="Service" ==================== Asociación (Lista blanca) ================= ==================== Internet Explorer (Versión 11) (Lista blanca) ========== HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://go.microsoft.com/fwlink/?LinkID=617912&ResetID=132086542501059000&GUID=0B3597EA-DAC9-4764-A860-DE4EDCBDE5ED HKU\S-1-5-21-2107374650-62763987-4101249605-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://go.microsoft.com/fwlink/p/?LinkId=620947&OCID=AVRES007&pc=UE06 SearchScopes: HKU\S-1-5-21-2107374650-62763987-4101249605-1001 -> DefaultScope {FFEBBF0A-C22C-4172-89FF-45215A135AC7} URL = BHO: ExplorerWnd Helper -> {10921475-03CE-4E04-90CE-E2E7EF20C814} -> C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallExplorer.dll [2020-01-31] (IObit Information Technology -> IObit) BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\Office16\OCHelper.dll [2020-08-12] (Microsoft Corporation -> Microsoft Corporation) BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_251\bin\ssv.dll [2020-08-23] (Oracle America, Inc. -> Oracle Corporation) BHO: Adobe Acrobat Create PDF Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\x64\AcroIEFavClient.dll [2017-03-28] (Adobe Systems, Incorporated -> Adobe Systems Incorporated) BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office16\URLREDIR.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation) BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_251\bin\jp2ssv.dll [2020-08-23] (Oracle America, Inc. -> Oracle Corporation) BHO: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\x64\AcroIEFavClient.dll [2017-03-28] (Adobe Systems, Incorporated -> Adobe Systems Incorporated) BHO-x32: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2012-09-23] (Adobe Systems, Incorporated -> Adobe Systems Incorporated) BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\Office16\OCHelper.dll [2020-08-12] (Microsoft Corporation -> Microsoft Corporation) BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_251\bin\ssv.dll [2020-08-23] (Oracle America, Inc. -> Oracle Corporation) BHO-x32: Adobe Acrobat Create PDF Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll [2017-03-28] (Adobe Systems, Incorporated -> Adobe Systems Incorporated) BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office16\URLREDIR.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation) BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_251\bin\jp2ssv.dll [2020-08-23] (Oracle America, Inc. -> Oracle Corporation) BHO-x32: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll [2017-03-28] (Adobe Systems, Incorporated -> Adobe Systems Incorporated) Toolbar: HKLM - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\x64\AcroIEFavClient.dll [2017-03-28] (Adobe Systems, Incorporated -> Adobe Systems Incorporated) Toolbar: HKLM-x32 - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll [2017-03-28] (Adobe Systems, Incorporated -> Adobe Systems Incorporated) Handler: mso-minsb.16 - {3459B272-CC19-4448-86C9-DDC3B4B2FAD3} - C:\Program Files\Microsoft Office\Office16\MSOSB.DLL [2019-06-12] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: mso-minsb.16 - {3459B272-CC19-4448-86C9-DDC3B4B2FAD3} - C:\Program Files (x86)\Microsoft Office\Office16\MSOSB.DLL [2019-06-12] (Microsoft Corporation -> Microsoft Corporation) Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\Office16\MSOSB.DLL [2019-06-12] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\Office16\MSOSB.DLL [2019-06-12] (Microsoft Corporation -> Microsoft Corporation) (Si una entrada es incluida en el fixlist, será eliminada del registro.) IE trusted site: HKU\S-1-5-21-2107374650-62763987-4101249605-1001\...\localhost -> localhost IE restricted site: HKU\S-1-5-21-2107374650-62763987-4101249605-1001\...\007guard.com -> install.007guard.com IE restricted site: HKU\S-1-5-21-2107374650-62763987-4101249605-1001\...\008i.com -> 008i.com IE restricted site: HKU\S-1-5-21-2107374650-62763987-4101249605-1001\...\008k.com -> www.008k.com IE restricted site: HKU\S-1-5-21-2107374650-62763987-4101249605-1001\...\00hq.com -> www.00hq.com IE restricted site: HKU\S-1-5-21-2107374650-62763987-4101249605-1001\...\010402.com -> 010402.com IE restricted site: HKU\S-1-5-21-2107374650-62763987-4101249605-1001\...\032439.com -> 80gw6ry3i3x3qbrkwhxhw.032439.com IE restricted site: HKU\S-1-5-21-2107374650-62763987-4101249605-1001\...\0scan.com -> www.0scan.com IE restricted site: HKU\S-1-5-21-2107374650-62763987-4101249605-1001\...\1-2005-search.com -> www.1-2005-search.com IE restricted site: HKU\S-1-5-21-2107374650-62763987-4101249605-1001\...\1-domains-registrations.com -> www.1-domains-registrations.com IE restricted site: HKU\S-1-5-21-2107374650-62763987-4101249605-1001\...\1000gratisproben.com -> www.1000gratisproben.com IE restricted site: HKU\S-1-5-21-2107374650-62763987-4101249605-1001\...\1001namen.com -> www.1001namen.com IE restricted site: HKU\S-1-5-21-2107374650-62763987-4101249605-1001\...\100888290cs.com -> mir.100888290cs.com IE restricted site: HKU\S-1-5-21-2107374650-62763987-4101249605-1001\...\100sexlinks.com -> www.100sexlinks.com IE restricted site: HKU\S-1-5-21-2107374650-62763987-4101249605-1001\...\10sek.com -> www.10sek.com IE restricted site: HKU\S-1-5-21-2107374650-62763987-4101249605-1001\...\12-26.net -> user1.12-26.net IE restricted site: HKU\S-1-5-21-2107374650-62763987-4101249605-1001\...\12-27.net -> user1.12-27.net IE restricted site: HKU\S-1-5-21-2107374650-62763987-4101249605-1001\...\123fporn.info -> www.123fporn.info IE restricted site: HKU\S-1-5-21-2107374650-62763987-4101249605-1001\...\123haustiereundmehr.com -> www.123haustiereundmehr.com IE restricted site: HKU\S-1-5-21-2107374650-62763987-4101249605-1001\...\123moviedownload.com -> www.123moviedownload.com IE restricted site: HKU\S-1-5-21-2107374650-62763987-4101249605-1001\...\123simsen.com -> www.123simsen.com Hay 7936 más sitios. IE restricted site: HKU\S-1-5-21-2107374650-62763987-4101249605-1003\...\007guard.com -> install.007guard.com IE restricted site: HKU\S-1-5-21-2107374650-62763987-4101249605-1003\...\008i.com -> 008i.com IE restricted site: HKU\S-1-5-21-2107374650-62763987-4101249605-1003\...\008k.com -> www.008k.com IE restricted site: HKU\S-1-5-21-2107374650-62763987-4101249605-1003\...\00hq.com -> www.00hq.com IE restricted site: HKU\S-1-5-21-2107374650-62763987-4101249605-1003\...\010402.com -> 010402.com IE restricted site: HKU\S-1-5-21-2107374650-62763987-4101249605-1003\...\032439.com -> 80gw6ry3i3x3qbrkwhxhw.032439.com IE restricted site: HKU\S-1-5-21-2107374650-62763987-4101249605-1003\...\0scan.com -> www.0scan.com IE restricted site: HKU\S-1-5-21-2107374650-62763987-4101249605-1003\...\1-2005-search.com -> www.1-2005-search.com IE restricted site: HKU\S-1-5-21-2107374650-62763987-4101249605-1003\...\1-domains-registrations.com -> www.1-domains-registrations.com IE restricted site: HKU\S-1-5-21-2107374650-62763987-4101249605-1003\...\1000gratisproben.com -> www.1000gratisproben.com IE restricted site: HKU\S-1-5-21-2107374650-62763987-4101249605-1003\...\1001namen.com -> www.1001namen.com IE restricted site: HKU\S-1-5-21-2107374650-62763987-4101249605-1003\...\100888290cs.com -> mir.100888290cs.com IE restricted site: HKU\S-1-5-21-2107374650-62763987-4101249605-1003\...\100sexlinks.com -> www.100sexlinks.com IE restricted site: HKU\S-1-5-21-2107374650-62763987-4101249605-1003\...\10sek.com -> www.10sek.com IE restricted site: HKU\S-1-5-21-2107374650-62763987-4101249605-1003\...\12-26.net -> user1.12-26.net IE restricted site: HKU\S-1-5-21-2107374650-62763987-4101249605-1003\...\12-27.net -> user1.12-27.net IE restricted site: HKU\S-1-5-21-2107374650-62763987-4101249605-1003\...\123fporn.info -> www.123fporn.info IE restricted site: HKU\S-1-5-21-2107374650-62763987-4101249605-1003\...\123haustiereundmehr.com -> www.123haustiereundmehr.com IE restricted site: HKU\S-1-5-21-2107374650-62763987-4101249605-1003\...\123moviedownload.com -> www.123moviedownload.com IE restricted site: HKU\S-1-5-21-2107374650-62763987-4101249605-1003\...\123simsen.com -> www.123simsen.com Hay 7938 más sitios. ==================== Hosts contenido: ========================= (Si es necesario, la directiva Hosts: puede ser incluida en el fixlist para restablecer Hosts.) 2009-07-13 23:34 - 2020-09-14 22:14 - 000000060 _____ C:\Windows\system32\drivers\etc\hosts 127.0.0.1 sharpened.com ==================== Otras Áreas =========================== (Actualmente no existe una corrección automática para esta sección.) HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\ProgramData\Oracle\Java\javapath;%CommonProgramFiles%\Microsoft Shared\Windows Live;C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files\RogueKiller;C:\Calibre\ HKU\S-1-5-21-2107374650-62763987-4101249605-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Hugo\Documents\Another Desktop\VCfg\Another Desktop Fondo.bmp HKU\S-1-5-21-2107374650-62763987-4101249605-1003\Control Panel\Desktop\\Wallpaper -> DNS Servers: 8.8.8.8 - 200.28.4.129 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 0) Firewall de Windows está habilitado. ==================== MSCONFIG/TASK MANAGER elementos deshabilitados == (Si una entrada es incluida en el fixlist, será eliminada.) MSCONFIG\startupreg: Maintance => MSCONFIG\startupreg: Acrobat Assistant 8.0 => "C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Acrotray.exe" MSCONFIG\startupreg: AdobeAAMUpdater-1.0 => "C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" MSCONFIG\startupreg: Advanced SystemCare => "C:\Program Files (x86)\IObit\Advanced SystemCare\ASCTray.exe" /Auto MSCONFIG\startupreg: AntDM => MSCONFIG\startupreg: Ashampoo Uninstaller Guard => "C:\Program Files (x86)\Ashampoo\Ashampoo UnInstaller\UI9Guard.exe" -TRAY MSCONFIG\startupreg: Avira System Speedup User Starter => "C:\Program Files (x86)\Avira\System Speedup\Avira.SystemSpeedup.Core.Common.Starter.exe" MSCONFIG\startupreg: BitTorrent => "C:\Users\Hugo\AppData\Roaming\BitTorrent\BitTorrent.exe" MSCONFIG\startupreg: CCleaner Smart Cleaning => "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR MSCONFIG\startupreg: ftweak_RAMRush => C:\RAMRush\RAMRush.exe MSCONFIG\startupreg: GUDelayStartup => "C:\Glary Utilities\StartupManager.exe" -delayrun MSCONFIG\startupreg: PAC207_Monitor => C:\Windows\PixArt\PAC207\Monitor.exe MSCONFIG\startupreg: Process Hacker => "C:\ProcessHacker\ProcessHacker.exe" MSCONFIG\startupreg: PWRISOVM.EXE => C:\Program Files (x86)\PowerISO\PWRISOVM.EXE -startup MSCONFIG\startupreg: Safe Startup Maintance => "C:\Program Files\Safe Startup\net1.exe" windowsStartup MSCONFIG\startupreg: Skype for Desktop => C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe MSCONFIG\startupreg: SunJavaUpdateSched => "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" MSCONFIG\startupreg: uTorrent => "C:\Users\Hugo\AppData\Roaming\uTorrent\uTorrent.exe" MSCONFIG\startupreg: WinZip UN => C:\Program Files\WinZip\WZUpdateNotifier.exe -show ==================== Reglas de firewall (Lista blanca) ================ (Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.) FirewallRules: [SPPSVC-In-TCP-NoScope] => (Allow) C:\Windows\system32\sppsvc.exe (Microsoft Windows -> Microsoft Corporation) FirewallRules: [SPPSVC-In-TCP] => (Allow) C:\Windows\system32\sppsvc.exe (Microsoft Windows -> Microsoft Corporation) FirewallRules: [TCP Query User{6C499118-C41C-4DCA-8B13-E3DFAB6BB245}C:\program files (x86)\google\chrome\application\chrome.exe] => (Allow) C:\program files (x86)\google\chrome\application\chrome.exe (Google LLC -> Google LLC) FirewallRules: [UDP Query User{1820DF5A-9567-47EF-9BF8-73C886132387}C:\program files (x86)\google\chrome\application\chrome.exe] => (Allow) C:\program files (x86)\google\chrome\application\chrome.exe (Google LLC -> Google LLC) FirewallRules: [{81F8A90A-E808-419D-9AE2-F14B93AD6201}] => (Allow) C:\Users\Hugo\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.) FirewallRules: [{50A77CC7-7B15-4A07-80B3-E9BD3EF90192}] => (Allow) C:\Users\Hugo\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.) FirewallRules: [{7E261FCD-AA50-44A2-AD40-83D5A70EF2F2}] => (Allow) C:\Program Files\Microsoft Office\Office16\lync.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{B816EBD0-6693-4E1E-BE3D-C45C277CBE1E}] => (Allow) C:\Program Files\Microsoft Office\Office16\lync.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{378662C2-4486-49F0-A5F5-A2D8D11B30DE}] => (Allow) C:\Program Files\Microsoft Office\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{4EA70091-E2B0-48DE-8B78-B6E6BD596275}] => (Allow) C:\Program Files\Microsoft Office\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{2A9353C4-F5AE-40CE-BF15-0C79327C2784}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) FirewallRules: [TCP Query User{A2DA4C93-AA9D-4663-9E96-F59D2319ECF9}C:\winamp\winamp.exe] => (Allow) C:\winamp\winamp.exe (Nullsoft Inc. -> Nullsoft, Inc.) FirewallRules: [UDP Query User{2C618A2F-3F92-4E55-B898-8DCFDAD07B72}C:\winamp\winamp.exe] => (Allow) C:\winamp\winamp.exe (Nullsoft Inc. -> Nullsoft, Inc.) FirewallRules: [{9B0F876A-3F65-4F05-BB2D-2A55A3EB8BA1}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{0E2D47B0-CBAF-4235-8FBC-0F6AF4FCBADD}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{AC6B7D30-4829-4B44-A36E-F63C7226CD23}] => (Allow) LPort=57209 FirewallRules: [{2FA08457-C11C-4786-BC4A-70873F9B0717}] => (Allow) LPort=57209 FirewallRules: [{9941DF48-D88F-4697-B3C8-128239DD1AD7}] => (Allow) C:\Users\Hugo\AppData\Local\Programs\Opera\70.0.3728.154\opera.exe (Opera Software AS -> Opera Software) FirewallRules: [{2C02547D-4DE5-4125-BADE-EB1579C3D3C6}] => (Allow) C:\Users\Hugo\AppData\Local\Programs\Opera\70.0.3728.178\opera.exe (Opera Software AS -> Opera Software) ==================== Puntos de Restauración ========================= 13-09-2020 22:26:23 Windows Update 14-09-2020 01:26:56 Windows Update 14-09-2020 09:49:29 Software Distribution Service 3.0 14-09-2020 15:37:52 Software Distribution Service 3.0 ==================== Dispositivos defectuosos en el Administrador de dispositivos ============ Name: Controlador de volumen FileSytem de WPD Description: Controlador de volumen FileSytem de WPD Class Guid: {eec5ad98-8080-425f-922a-dabf3de3f69a} Manufacturer: Microsoft Service: WUDFRd Problem: : This device cannot start. (Code10) Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device. On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard. Name: ESET Firewall Description: ESET Firewall Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1} Manufacturer: Service: EpfwLWF Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24) Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed. Devices stay in this state if they have been prepared for removal. After you remove the device, this error disappears.Remove the device, and this error should be resolved. Name: Controlador de volumen FileSytem de WPD Description: Controlador de volumen FileSytem de WPD Class Guid: {eec5ad98-8080-425f-922a-dabf3de3f69a} Manufacturer: Microsoft Service: WUDFRd Problem: : This device cannot start. (Code10) Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device. On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard. Name: Controlador de volumen FileSytem de WPD Description: Controlador de volumen FileSytem de WPD Class Guid: {eec5ad98-8080-425f-922a-dabf3de3f69a} Manufacturer: Microsoft Service: WUDFRd Problem: : This device cannot start. (Code10) Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device. On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard. Name: Controlador de volumen FileSytem de WPD Description: Controlador de volumen FileSytem de WPD Class Guid: {eec5ad98-8080-425f-922a-dabf3de3f69a} Manufacturer: Microsoft Service: WUDFRd Problem: : This device cannot start. (Code10) Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device. On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard. ==================== Errores del registro de eventos: ======================== Errores de aplicación: ================== Error: (09/15/2020 10:09:36 AM) (Source: Application Hang) (EventID: 1002) (User: ) Description: El programa explorer.exe, versión 6.1.7601.23537, dejó de interactuar con Windows y se cerró. Para ver si hay más información disponible acerca del problema, compruebe el historial de problemas en el panel de control Centro de actividades. Identificador de proceso: 17f4 Hora de inicio: 01d68b13f2b620b0 Hora de finalización: 170 Ruta de acceso de la aplicación: C:\Windows\explorer.exe Identificador de informe: 2c259721-f754-11ea-aeb1-00090faa0001 Error: (09/15/2020 12:04:46 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nombre de la aplicación con errores: Asterisco98.exe, versión: 1.0.0.0, marca de tiempo: 0x39e58de5 Nombre del módulo con errores: Asterisco98.exe, versión: 1.0.0.0, marca de tiempo: 0x39e58de5 Código de excepción: 0xc0000005 Desplazamiento de errores: 0x0001ce81 Id. del proceso con errores: 0xa28 Hora de inicio de la aplicación con errores: 0x01d68b0cf7740ab0 Ruta de acceso de la aplicación con errores: J:\Respaldos\Util\Asterisco98.exe Ruta de acceso del módulo con errores: J:\Respaldos\Util\Asterisco98.exe Id. del informe: 354173a0-f700-11ea-aeb1-00090faa0001 Error: (09/15/2020 12:04:33 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nombre de la aplicación con errores: Asterisco98.exe, versión: 1.0.0.0, marca de tiempo: 0x39e58de5 Nombre del módulo con errores: Asterisco98.exe, versión: 1.0.0.0, marca de tiempo: 0x39e58de5 Código de excepción: 0xc0000005 Desplazamiento de errores: 0x0001ce81 Id. del proceso con errores: 0xa50 Hora de inicio de la aplicación con errores: 0x01d68b0cef689020 Ruta de acceso de la aplicación con errores: C:\Util\Util\Asterisco98.exe Ruta de acceso del módulo con errores: C:\Util\Util\Asterisco98.exe Id. del informe: 2d7524f0-f700-11ea-aeb1-00090faa0001 Error: (09/15/2020 12:04:31 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nombre de la aplicación con errores: Asterisco98.exe, versión: 1.0.0.0, marca de tiempo: 0x39e58de5 Nombre del módulo con errores: unknown, versión: 0.0.0.0, marca de tiempo: 0x00000000 Código de excepción: 0xc0000005 Desplazamiento de errores: 0x00000000 Id. del proceso con errores: 0x984 Hora de inicio de la aplicación con errores: 0x01d68b0cec13e6e0 Ruta de acceso de la aplicación con errores: C:\Util\Util\Asterisco98.exe Ruta de acceso del módulo con errores: unknown Id. del informe: 2c230270-f700-11ea-aeb1-00090faa0001 Error: (09/14/2020 10:14:45 PM) (Source: Windows Search Service) (EventID: 10021) (User: ) Description: No se pudo obtener la información del Registro del contador de rendimiento de WSearchIdxPi para la instancia debido al siguiente error: La operación se completó correctamente. 0x0. Error: (09/14/2020 10:14:40 PM) (Source: Windows Search Service) (EventID: 3007) (User: ) Description: No se puede inicializar la supervisión de rendimiento para el objeto Recopilador; no se cargaron los contadores o no se pudo abrir el objeto de memoria compartida. Esto sólo afecta a la disponibilidad de contadores del rendimiento. Reinicie el equipo. Contexto: aplicación , catálogo SystemIndex Error: (09/14/2020 10:14:38 PM) (Source: Windows Search Service) (EventID: 3006) (User: ) Description: No se puede inicializar la supervisión del rendimiento para el servicio Recopilador; no se cargaron los contadores o no se puede abrir el objeto de memoria compartida. Esto sólo afecta a la disponibilidad de contadores del rendimiento. Reinicie el equipo. Error: (09/14/2020 10:02:21 PM) (Source: Windows Search Service) (EventID: 10021) (User: ) Description: No se pudo obtener la información del Registro del contador de rendimiento de WSearchIdxPi para la instancia debido al siguiente error: La operación se completó correctamente. 0x0. Errores del sistema: ============= Error: (09/15/2020 10:24:31 AM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY) Description: Se recibió la siguiente alerta irrecuperable: 80. Error: (09/15/2020 10:24:30 AM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY) Description: Se recibió la siguiente alerta irrecuperable: 70. Error: (09/15/2020 10:04:31 AM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY) Description: Se recibió la siguiente alerta irrecuperable: 80. Error: (09/15/2020 10:04:31 AM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY) Description: Se recibió la siguiente alerta irrecuperable: 70. Error: (09/15/2020 12:14:05 AM) (Source: Schannel) (EventID: 4120) (User: NT AUTHORITY) Description: Se generó la siguiente alerta irrecuperable: 10. El estado del error interno es 10. Error: (09/15/2020 12:14:05 AM) (Source: Schannel) (EventID: 4120) (User: NT AUTHORITY) Description: Se generó la siguiente alerta irrecuperable: 10. El estado del error interno es 10. Error: (09/14/2020 10:42:36 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY) Description: Error de instalación: error de Windows al instalar la siguiente actualización, error 0x80070661: 2020 (09) Paquete acumulativo de actualizaciones de calidad mensual de seguridad para Windows 7 para sistemas basados en x64 (KB4577051). Error: (09/14/2020 10:20:40 PM) (Source: DCOM) (EventID: 10010) (User: ) Description: El servidor {752073A1-23F2-4396-85F0-8FDB879ED0ED} no se registró con DCOM dentro del tiempo de espera requerido. CodeIntegrity: =================================== Date: 2020-07-29 16:47:59.382 Description: Integridad de código no puede comprobar la integridad de imagen del archivo \Device\HarddiskVolume1\descargas\K7RansomwareScn.exe porque el conjunto de hashes de imagen por página no se encuentra en el sistema. Date: 2020-07-29 16:47:57.994 Description: Integridad de código no puede comprobar la integridad de imagen del archivo \Device\HarddiskVolume1\descargas\K7RansomwareScn.exe porque el conjunto de hashes de imagen por página no se encuentra en el sistema. Date: 2020-07-29 16:47:56.559 Description: Integridad de código no puede comprobar la integridad de imagen del archivo \Device\HarddiskVolume1\descargas\K7RansomwareScn.exe porque el conjunto de hashes de imagen por página no se encuentra en el sistema. Date: 2020-07-29 16:47:55.950 Description: Integridad de código no puede comprobar la integridad de imagen del archivo \Device\HarddiskVolume1\descargas\K7RansomwareScn.exe porque el conjunto de hashes de imagen por página no se encuentra en el sistema. Date: 2020-07-29 16:47:54.858 Description: Integridad de código no puede comprobar la integridad de imagen del archivo \Device\HarddiskVolume1\descargas\K7RansomwareScn.exe porque el conjunto de hashes de imagen por página no se encuentra en el sistema. Date: 2020-07-29 16:47:54.297 Description: Integridad de código no puede comprobar la integridad de imagen del archivo \Device\HarddiskVolume1\descargas\K7RansomwareScn.exe porque el conjunto de hashes de imagen por página no se encuentra en el sistema. Date: 2020-07-29 16:47:53.704 Description: Integridad de código no puede comprobar la integridad de imagen del archivo \Device\HarddiskVolume1\descargas\K7RansomwareScn.exe porque el conjunto de hashes de imagen por página no se encuentra en el sistema. Date: 2020-07-29 16:47:53.049 Description: Integridad de código no puede comprobar la integridad de imagen del archivo \Device\HarddiskVolume1\descargas\K7RansomwareScn.exe porque el conjunto de hashes de imagen por página no se encuentra en el sistema. ==================== Información de la memoria =========================== BIOS: Phoenix Technologies, LTD 5.04 08/10/2007 Placa base: ASUSTek Computer INC. Acacia Procesador: AMD Athlon(tm) 64 X2 Dual Core Processor 3600+ Porcentaje de memoria en uso: 93% RAM física total: 2942.55 MB RAM física disponible: 188.4 MB Virtual total: 5883.25 MB Virtual disponible: 2235.11 MB ==================== Unidades ================================ Drive c: () (Fixed) (Total:298.09 GB) (Free:57.74 GB) NTFS ==>[unidad con componentes de arranque (obtenido de BCD)] Drive f: (F) (Removable) (Total:7.22 GB) (Free:2.87 GB) NTFS Drive j: (Iomega HDD) (Fixed) (Total:931.51 GB) (Free:199.97 GB) NTFS \\?\Volume{0aa6a8a7-f866-11e7-984b-001d603191c2}\ () (Removable) (Total:0 GB) (Free:0 GB) \\?\Volume{0aa6a8ad-f866-11e7-984b-001d603191c2}\ () (Removable) (Total:0 GB) (Free:0 GB) \\?\Volume{0aa6a8a3-f866-11e7-984b-001d603191c2}\ () (Removable) (Total:0 GB) (Free:0 GB) \\?\Volume{0aa6a8a9-f866-11e7-984b-001d603191c2}\ () (Removable) (Total:0 GB) (Free:0 GB) ==================== MBR & Tabla de particiones ==================== ========================================================== Disk: 0 (MBR Code: Windows 7/8/10) (Size: 298.1 GB) (Disk ID: 51134C71) Partition 1: (Active) - (Size=298.1 GB) - (Type=07 NTFS) ========================================================== Disk: 1 (MBR Code: Windows 7/8/10) (Size: 931.5 GB) (Disk ID: CBCE2081) Partition 1: (Not Active) - (Size=931.5 GB) - (Type=07 NTFS) ========================================================== Disk: 6 (Protective MBR) (Size: 7.2 GB) (Disk ID: 00000000) Partition: GPT. ==================== Final de Addition.txt =======================