Resultado del análisis realizado por Farbar Recovery Scan Tool (FRST) (x64) Versión: 13-09-2020 Ejecutado por Hugo (administrador) sobre HUGO-PC (HP-Pavilion GQ431AA-ABM s3210la) (14-09-2020 19:53:19) Ejecutado desde C:\descargas Perfiles cargados: Hugo & UpdatusUser Platform: Windows 7 Professional Service Pack 1 (X64) Idioma: Español (España, internacional) Navegador predeterminado: Chrome Modo de Inicio: Normal Tutorial para Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Procesos (Lista blanca) ================= (Si una entrada es incluida en el fixlist, el proceso será cerrado. El archivo no será movido.) () [Archivo no firmado] C:\Program Files (x86)\AntiTwin\AntiTwin.exe (Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe (Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Optimizer Host\Avira.OptimizerHost.exe (Crystal Rich Ltd -> Crystal Rich Ltd) [Archivo no firmado] C:\Program Files (x86)\USB Safely Remove\USBSafelyRemove.exe (Crystal Rich Ltd -> Crystal Rich Ltd) C:\Program Files (x86)\USB Safely Remove\USBSRService.exe (David Carpenter -> ) C:\Everything\Everything.exe (ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\eguiProxy.exe (ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\ekrn.exe (Fortinet Technologies (Canada) Inc. -> Fortinet Inc.) C:\Program Files\Fortinet\FortiClient\FCDBLog.exe (Fortinet Technologies (Canada) Inc. -> Fortinet Inc.) C:\Program Files\Fortinet\FortiClient\FortiSettings.exe (Fortinet Technologies (Canada) Inc. -> Fortinet Inc.) C:\Program Files\Fortinet\FortiClient\FortiSSLVPNdaemon.exe (Fortinet Technologies (Canada) Inc. -> Fortinet Inc.) C:\Program Files\Fortinet\FortiClient\FortiTray.exe (Fortinet Technologies (Canada) Inc. -> Fortinet Inc.) C:\Program Files\Fortinet\FortiClient\scheduler.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <9> (IObit Information Technology -> IObit) C:\Program Files (x86)\IObit\Advanced SystemCare\ASCService.exe (IObit Information Technology -> IObit) C:\Program Files (x86)\IObit\Advanced SystemCare\Suo10_SmartRAM.exe (Kovid Goyal -> ) C:\Calibre\calibre.exe (Kovid Goyal -> ) C:\Calibre\calibre-parallel.exe <2> (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\prevhost.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe <2> (OK SOFT) [Archivo no firmado] C:\Another Desktop\AnotherDesktop.exe (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe ==================== Registro (Lista blanca) =================== (Si una entrada es incluida en el fixlist, el elemento del registro será restaurado a su valor predeterminado o será eliminado. El archivo no será movido.) HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [19677488 2020-06-15] (Realtek Semiconductor Corp. -> Realtek Semiconductor) HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET Security\ecmdS.exe [185648 2020-08-29] (ESET, spol. s r.o. -> ESET) HKLM\...\Run: [Everything] => C:\Everything\Everything.exe [2199656 2018-02-09] (David Carpenter -> ) HKLM-x32\...\Run: [] => [X] HKLM\...\Policies\Explorer: [NoInternetOpenWith] 1 HKU\S-1-5-21-2107374650-62763987-4101249605-1001\...\Run: [USB Safely Remove] => C:\Program Files (x86)\USB Safely Remove\USBSafelyRemove.exe [6544992 2019-10-13] (Crystal Rich Ltd -> Crystal Rich Ltd) [Archivo no firmado] HKU\S-1-5-21-2107374650-62763987-4101249605-1001\...\Run: [SmartRAM] => C:\Program Files (x86)\IObit\Advanced SystemCare\Suo10_SmartRAM.exe [564496 2020-08-27] (IObit Information Technology -> IObit) HKU\S-1-5-21-2107374650-62763987-4101249605-1001\...\Policies\Explorer: [LinkResolveIgnoreLinkInfo] 1 HKU\S-1-5-21-2107374650-62763987-4101249605-1001\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1 HKU\S-1-5-21-2107374650-62763987-4101249605-1001\...\Policies\Explorer: [NoResolveSearch] 1 HKU\S-1-5-21-2107374650-62763987-4101249605-1003\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [516096 2010-11-21] (Microsoft Windows -> Microsoft Corporation) HKLM\...\Print\Monitors\Adobe PDF Port Monitor: C:\Windows\system32\AdobePDF.dll [65488 2020-06-29] (Adobe Inc. -> Adobe Systems Inc) HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> "C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.116\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\84.0.4147.89\Installer\chrmstp.exe [2020-07-17] (Google LLC -> Google LLC) HKLM\Software\...\Authentication\Credential Providers: [{F8A0B131-5F68-486c-8040-7E8FC3C85BB6}] -> c:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDCREDPROV.DLL [2009-08-18] (Microsoft Corporation -> Microsoft Corporation) Startup: C:\Users\Hugo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Another Desktop.lnk [2019-01-01] ShortcutTarget: Another Desktop.lnk -> C:\Another Desktop\AnotherDesktop.exe (OK SOFT) [Archivo no firmado] BootExecute: autocheck autochk * ==================== Tareas programadas (Lista blanca) ============ (Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.) Task: {0CD5DB21-7EF4-4B6C-8055-32EA2EA58587} - System32\Tasks\WinZip Update Notifier 3 => C:\Program Files\WinZip\WZUpdateNotifier.exe [2814096 2019-09-01] (Corel Corporation -> Corel Corporation) Task: {13786329-BF32-433D-A1F6-8E43FBD59793} - System32\Tasks\{F9605DEB-DEA8-4C8D-BF0A-D5C61AD6D815} => C:\Windows\system32\pcalua.exe -a J:\Fuentes\EspasaAntónimosSinónimosFrancesIngles.exe -d J:\Fuentes Task: {139A80AF-959A-4B58-B4C3-F99CDD75696F} - \StartupStar Firewall -> Ningún archivo <==== ATENCIÓN Task: {2034B440-5695-4A8C-A869-94BFF946F330} - System32\Tasks\Application Starter - f911bd504a5d978e41eaea2ab889a86f => C:\DriverMax\innostp.exe [1066648 2020-07-01] (Innovative Solutions Grup SRL -> Innovative Solutions) Task: {20925605-D875-452A-99CE-E585CAE7542D} - System32\Tasks\GU5SkipUAC => C:\Glary Utilities\Integrator.exe [918960 2020-06-28] (Glarysoft LTD -> Glarysoft Ltd) Task: {251F9233-6FBF-44D8-A8A6-BDF0CC129B21} - \AviraSystemSpeedupUpdate -> Ningún archivo <==== ATENCIÓN Task: {2BCA8670-7428-4506-ACD6-F04BEA8645F0} - System32\Tasks\Clean System Memory => C:\Windows\syswow64\CleanMem.exe [61440 2014-08-20] (PcWinTech.com) [Archivo no firmado] Task: {2DBAB9C1-03E7-48C7-8469-A83039C527BB} - System32\Tasks\Uninstaller_SkipUac_Hugo => C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe [6028288 2020-07-09] (IObit) [Archivo no firmado] Task: {3E0FF791-F649-4548-92A3-755B46B3AD75} - System32\Tasks\BraveSoftwareUpdateTaskMachineUA => C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [159368 2019-08-18] (Brave Software, Inc. -> BraveSoftware Inc.) Task: {46DEA1A3-37A0-4685-BBFD-B431BD78A037} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1331792 2020-05-07] (Adobe Inc. -> Adobe Inc.) Task: {495F4F64-EFD3-4350-9A85-C0EB6B46850D} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\Office16\msoia.exe [416432 2015-07-31] (Microsoft Corporation -> Microsoft Corporation) Task: {4BC4F40A-B257-4413-9977-A03627134CC5} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [686384 2020-08-05] (Piriform Software Ltd -> Piriform Software Ltd) Task: {4F812307-227D-46C3-808C-7F45CA05027E} - System32\Tasks\SoftwareInformerService => C:\Software Informer\softinfo.exe [1689600 2020-07-09] (Informer Technologies, Inc.) [Archivo no firmado] Task: {5618D1AA-A42E-46AB-B5CB-689266866E5D} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office16\OLicenseHeartbeat.exe [316632 2015-07-31] (Microsoft Corporation -> Microsoft Corporation) Task: {561B1695-1BED-464E-A908-279EC9A54738} - System32\Tasks\ASO-AutoCheckUpdate7Days => C:\Program Files (x86)\Advanced System Optimizer 3\CheckUpdate.exe [3251624 2020-02-12] (SYSTWEAK SOFTWARE PVT. LTD. -> Systweak Software) Task: {5BCDC8A1-9065-417C-BC9B-D983E5CE9573} - System32\Tasks\{4D536B1F-9B38-41BE-BC7D-027BBF0F18BA} => C:\Windows\system32\pcalua.exe -a "C:\Program Files (x86)\IObit\Driver Booster\SetupHlp.exe" -d "C:\Program Files (x86)\IObit\Driver Booster" Task: {5DAD7B68-8FBB-4D19-B0CC-E89684D3322A} - System32\Tasks\Opera scheduled assistant Autoupdate 1549411404 => C:\Users\Hugo\AppData\Local\Programs\Opera\launcher.exe [1529880 2020-09-08] (Opera Software AS -> Opera Software) Task: {6182A982-FC91-4E84-AE4A-D489F45DB2B7} - System32\Tasks\DriverMaxAgent => C:\DriverMax\drivermax.exe [8182936 2020-07-02] (Innovative Solutions Grup SRL -> Innovative Solutions) [Archivo no firmado] Task: {65012BC6-C786-4DEC-8999-D9C1170444AB} - System32\Tasks\Tweaking.com - Windows Repair Tray Icon => C:\Program Files (x86)\Tweaking.com\Windows Repair\WR_Tray_Icon.exe [220816 2019-09-30] (Tweaking LLC -> Tweaking.com) Task: {6F1D5806-6594-434A-BE86-8092140C015C} - System32\Tasks\WinZip Update Notifier 1 => C:\Program Files\WinZip\WZUpdateNotifier.exe [2814096 2019-09-01] (Corel Corporation -> Corel Corporation) Task: {7B8C73CD-0E93-4461-894C-2A12317C3846} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-11-16] (Google Inc -> Google LLC) Task: {7E2A2583-394A-4147-ADB6-D91CE2ABD212} - System32\Tasks\{ED58EE79-339F-4061-BC4B-FB40008382C1} => C:\Windows\system32\pcalua.exe -a C:\Users\Hugo\AppData\Roaming\ZHP\Quarantine\ZHPCleaner\TweakPower\Uninstaller.exe -d C:\Users\Hugo\AppData\Roaming\ZHP\Quarantine\ZHPCleaner\TweakPower Task: {90CCEEFA-AC56-47CA-9CE3-1FBC5BB1A667} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_363_pepper.exe [1454136 2020-04-18] (Adobe Inc. -> Adobe) Task: {9388CBC2-FE96-4031-8A78-8D8C5D72CAD1} - System32\Tasks\WinZip Update Notifier 2 => C:\Program Files\WinZip\WZUpdateNotifier.exe [2814096 2019-09-01] (Corel Corporation -> Corel Corporation) Task: {9F814F66-9C7E-411E-A664-CC1406740E27} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [24770744 2020-08-05] (Piriform Software Ltd -> Piriform Software Ltd) Task: {A1D60D55-A6B8-401B-BC05-2938E02DF2F2} - System32\Tasks\Microsoft\Windows Defender\MP Scheduled Scan => d:\program files\windows defender\MpCmdRun.exe Task: {A1FAF500-EEC7-4114-8260-DE3D0C85432D} - System32\Tasks\ASC_SkipUac_Hugo => C:\Program Files (x86)\IObit\Advanced SystemCare\ASC.exe [8955664 2020-05-11] (IObit Information Technology -> IObit) [Archivo no firmado] Task: {B21A0852-C911-4D69-B275-C4C2CBF5244F} - System32\Tasks\Soft Organizer Applications Updates Check => C:\Program Files (x86)\Soft Organizer\SoftOrganizer.exe [6011904 2018-12-24] (Chemtable Software) [Archivo no firmado] Task: {B22EF3B1-4ADB-4D5F-9A06-DCE434B1A08D} - System32\Tasks\BraveSoftwareUpdateTaskMachineCore => C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [159368 2019-08-18] (Brave Software, Inc. -> BraveSoftware Inc.) Task: {C07C1B17-FB88-442A-8E24-F318917344FF} - System32\Tasks\DriverMaxWelcome => C:\DriverMax\drivermax.exe [8182936 2020-07-02] (Innovative Solutions Grup SRL -> Innovative Solutions) [Archivo no firmado] Task: {C4E8B14A-4159-4C58-BDAD-281DBBFC97E8} - System32\Tasks\Microsoft\Windows Defender\MpIdleTask => d:\program files\windows defender\MpCmdRun.exe Task: {D3FC82B8-458A-41F0-B8B5-E00DE5281B53} - System32\Tasks\Opera scheduled Autoupdate 1534705585 => C:\Users\Hugo\AppData\Local\Programs\Opera\launcher.exe [1529880 2020-09-08] (Opera Software AS -> Opera Software) Task: {D5D7BE49-28DC-46F5-AC53-0783236EFD70} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-11-16] (Google Inc -> Google LLC) Task: {F0572FB7-7E4C-4D2F-AA1B-481E65D6F2B3} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\Office16\msoia.exe [416432 2015-07-31] (Microsoft Corporation -> Microsoft Corporation) Task: {F069C59B-5F0B-4CB8-BD67-8B248BEF3BBD} - System32\Tasks\AdobeGCInvoker-1.0 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3325520 2020-06-04] (Adobe Inc. -> Adobe Systems, Incorporated) (Si una entrada es incluida en el fixlist, el archivo de tarea (.job) será movido. El archivo que está siendo ejecutado por la tarea no será movido.) Task: C:\Windows\Tasks\ASO-AutoCheckUpdate7Days.job => C:\Program Files (x86)\Advanced System Optimizer 3\CheckUpdate.exe ==================== Internet (Lista blanca) ==================== (Si un elemento es incluido en el fixlist, y éste pertenece al registro, será eliminado o restaurado a su valor predeterminado.) Winsock: Catalog5 08 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [134528 2009-08-18] (Microsoft Corporation -> Microsoft Corporation) Winsock: Catalog5 09 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [134528 2009-08-18] (Microsoft Corporation -> Microsoft Corporation) Winsock: Catalog5-x64 08 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [168304 2009-08-18] (Microsoft Corporation -> Microsoft Corporation) Winsock: Catalog5-x64 09 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [168304 2009-08-18] (Microsoft Corporation -> Microsoft Corporation) Hosts: 127.0.0.1 sharpened.com Tcpip\Parameters: [DhcpNameServer] 200.28.4.129 200.28.4.130 Tcpip\..\Interfaces\{4F58DC35-0EA3-460D-B5EB-A07D1594EA94}: [DhcpNameServer] 200.28.4.129 200.28.4.130 Tcpip\..\Interfaces\{7F0E3773-A3E8-4DEB-98E4-EDDF52450E2C}: [DhcpNameServer] 8.8.8.8 Edge: ====== Edge Profile: C:\Users\Hugo\AppData\Local\Microsoft\Edge\User Data\Default [2020-08-25] Edge DownloadDir: C:\descargas Edge HomePage: Default -> hxxp://go.microsoft.com/fwlink/p/?LinkId=620947&OCID=AVRES007&pc=UE06 Edge Extension: (Absolute Enable Right Click & Copy) - C:\Users\Hugo\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jdocbkpgdakpekjlhemmfcncgdjeiika [2020-06-19] FireFox: ======== FF ProfilePath: C:\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\nahd6ha2.default [2020-09-14] FF user.js: detected! => C:\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\nahd6ha2.default\user.js [2020-06-20] FF Extension: (Sin Nombre) - C:\Users\Hugo\AppData\Roaming\Mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384}\data [2020-05-25] [no firmado] FF Extension: (Sin Nombre) - C:\Users\Hugo\AppData\Roaming\Mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384}\defaults [2020-05-25] [no firmado] FF Extension: (Internet Download Accelerator) - C:\Users\Hugo\AppData\Roaming\Mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384}\ida@westbyte.com.xpi [2017-10-27] FF Extension: (Internet Download Accelerator Toolbar) - C:\Users\Hugo\AppData\Roaming\Mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384}\idabarff@westbyte.com.xpi [2017-02-10] [Heredado] FF Extension: (Sin Nombre) - C:\Users\Hugo\AppData\Roaming\Mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384}\lib [2020-05-25] [no firmado] FF Extension: (Sin Nombre) - C:\Users\Hugo\AppData\Roaming\Mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384}\resources [2020-05-25] [no firmado] FF Extension: (UpToLike - все в одной кнопке) - C:\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\nahd6ha2.default\Extensions\jid1-9BFgAD0myB3P5A@jetpack [2020-05-25] [Heredado] [no firmado] FF HKLM\...\Firefox\Extensions: [web2pdfextension.17@acrobat.adobe.com] - C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi FF Extension: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi [2017-11-01] FF HKLM-x32\...\Firefox\Extensions: [web2pdfextension.17@acrobat.adobe.com] - C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi FF Plugin: @java.com/DTPlugin,version=11.251.2 -> C:\Program Files\Java\jre1.8.0_251\bin\dtplugin\npDeployJava1.dll [2020-08-23] (Oracle America, Inc. -> Oracle Corporation) FF Plugin: @java.com/JavaPlugin,version=11.251.2 -> C:\Program Files\Java\jre1.8.0_251\bin\plugin2\npjp2.dll [2020-08-23] (Oracle America, Inc. -> Oracle Corporation) FF Plugin: @videolan.org/vlc,version=3.0.11 -> C:\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN) FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll [2015-07-29] (Adobe Systems Incorporated -> Adobe Systems) FF Plugin-x32: @java.com/DTPlugin,version=11.251.2 -> C:\Program Files (x86)\Java\jre1.8.0_251\bin\dtplugin\npDeployJava1.dll [2020-08-23] (Oracle America, Inc. -> Oracle Corporation) FF Plugin-x32: @java.com/JavaPlugin,version=11.251.2 -> C:\Program Files (x86)\Java\jre1.8.0_251\bin\plugin2\npjp2.dll [2020-08-23] (Oracle America, Inc. -> Oracle Corporation) FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2020-06-16] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @videolan.org/vlc,version=3.0.10 -> C:\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN) FF Plugin-x32: @videolan.org/vlc,version=3.0.11 -> C:\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN) FF Plugin-x32: @videolan.org/vlc,version=3.0.9.2 -> C:\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN) FF Plugin-x32: Adobe Acrobat -> C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Air\nppdf32.dll [2017-11-01] (Adobe Systems, Incorporated -> Adobe Systems Inc.) FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll [2015-07-29] (Adobe Systems Incorporated -> Adobe Systems) Chrome: ======= CHR DefaultProfile: Default CHR Profile: C:\Users\Hugo\AppData\Local\Google\Chrome\User Data\Default [2020-09-14] CHR DownloadDir: C:\descargas CHR Notifications: Default -> hxxps://www.facebook.com CHR HomePage: Default -> about:newtab?source=home CHR StartupUrls: Default -> "about:newtab?source=home","hxxps://www.google.com/","hxxps://mail.ru/cnt/10445?gp=811570" CHR NewTab: Default -> Active:"chrome-extension://mnemjleajnmodijhnibpekloajfdjjja/jot.html" CHR Session Restore: Default -> está habilitado. CHR Extension: (Presentaciones) - C:\Users\Hugo\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2020-07-17] CHR Extension: (Documentos) - C:\Users\Hugo\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2020-07-17] CHR Extension: (Google Drive) - C:\Users\Hugo\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-05-25] CHR Extension: (YouTube) - C:\Users\Hugo\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2020-05-25] CHR Extension: (Adobe Acrobat) - C:\Users\Hugo\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2020-08-05] CHR Extension: (Hojas de cálculo) - C:\Users\Hugo\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2020-07-17] CHR Extension: (Documentos de Google sin conexión) - C:\Users\Hugo\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-08-17] CHR Extension: (Absolute Enable Right Click & Copy) - C:\Users\Hugo\AppData\Local\Google\Chrome\User Data\Default\Extensions\jdocbkpgdakpekjlhemmfcncgdjeiika [2020-05-25] CHR Extension: (Jot) - C:\Users\Hugo\AppData\Local\Google\Chrome\User Data\Default\Extensions\mnemjleajnmodijhnibpekloajfdjjja [2020-05-25] CHR Extension: (Sistema de pagos de Chrome Web Store) - C:\Users\Hugo\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2020-05-25] CHR Extension: (\) - C:\Users\Hugo\AppData\Local\Google\Chrome\User Data\Default\Extensions\ofbimicokoinaagcmgemddgaldajodnk [2020-09-14] CHR Extension: (uBlock Plus Adblocker) - C:\Users\Hugo\AppData\Local\Google\Chrome\User Data\Default\Extensions\oofnbdifeelbaidfgpikinijekkjcicg [2020-05-25] CHR Extension: (Gmail) - C:\Users\Hugo\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-05-25] CHR Extension: (Chrome Media Router) - C:\Users\Hugo\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-07-17] CHR Profile: C:\Users\Hugo\AppData\Local\Google\Chrome\User Data\Guest Profile [2020-06-18] CHR Profile: C:\Users\Hugo\AppData\Local\Google\Chrome\User Data\System Profile [2020-06-18] CHR Extension: (Adblocker for Youtube™) - C:\Users\Hugo\AppData\Local\Google\Chrome\User Data\System Profile\Extensions\leppigdgdllmofaaknlncdiedoeellbj [2020-05-25] CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCChromeExtn\WCChromeExtn.crx [2017-11-01] Opera: ======= OPR DownloadDir: C:\descargas OPR StartupUrls: "hxxps://www.yandex.ru/?win=346&clid=2310121-135" OPR Session Restore: -> está habilitado. OPR Extension: (AdBlock — best ad blocker) - C:\Users\Hugo\AppData\Roaming\Opera Software\Opera Stable\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2020-08-21] OPR Extension: (uBlock Origin) - C:\Users\Hugo\AppData\Roaming\Opera Software\Opera Stable\Extensions\kccohkcpppjjkkjppopfnflnebibpida [2020-08-21] OPR Extension: (Install Chrome Extensions) - C:\Users\Hugo\AppData\Roaming\Opera Software\Opera Stable\Extensions\kipjbhgniklcnglfaldilecjomjaddfi [2020-05-25] OPR Extension: (Adblocker for Youtube™) - C:\Users\Hugo\AppData\Roaming\Opera Software\Opera Stable\Extensions\najdlnokhipbhcnfadjmdnieblmciedc [2020-05-25] ==================== Servicios (Lista blanca) =================== (Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.) S3 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169032 2020-05-07] (Adobe Inc. -> Adobe Inc.) S4 AdobeFlashPlayerUpdateSvc; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-06-07] (Adobe Inc. -> Adobe) R2 AdvancedSystemCareService13; C:\Program Files (x86)\IObit\Advanced SystemCare\ASCService.exe [1290000 2020-06-01] (IObit Information Technology -> IObit) R2 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [3673680 2020-06-04] (Adobe Inc. -> Adobe Systems, Incorporated) R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [3406416 2020-06-04] (Adobe Inc. -> Adobe Systems, Incorporated) S3 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [83768 2018-04-27] (Apple Inc. -> Apple Inc.) R2 AviraOptimizerHost; C:\Program Files (x86)\Avira\Optimizer Host\Avira.OptimizerHost.exe [2989888 2020-01-20] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) S3 brave; C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [159368 2019-08-18] (Brave Software, Inc. -> BraveSoftware Inc.) S3 bravem; C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [159368 2019-08-18] (Brave Software, Inc. -> BraveSoftware Inc.) S3 CdRomArbiterService; C:\Program Files\Common Files\cdarbsvc\cdarbsvc_v1.0.0_x64.exe [8704 2020-04-23] (GuinpinSoft inc) [Archivo no firmado] S3 cfbackd; C:\Program Files\CleverFiles\Disk Drill\cfbackd.w32.exe [281256 2019-08-14] (508 Software LLC -> CleverFiles) S3 Chemtable Startup Checking; C:\Program Files (x86)\Reg Organizer\StartupCheckingService.exe [ ] R2 ekrn; C:\Program Files\ESET\ESET Security\ekrn.exe [2371760 2020-08-29] (ESET, spol. s r.o. -> ESET) R3 ekrnEpfw; C:\Program Files\ESET\ESET Security\ekrn.exe [2371760 2020-08-29] (ESET, spol. s r.o. -> ESET) R2 FA_Scheduler; C:\Program Files\Fortinet\FortiClient\scheduler.exe [141712 2020-03-10] (Fortinet Technologies (Canada) Inc. -> Fortinet Inc.) R2 HsfXAudioService; C:\Windows\SysWOW64\XAudio64.dll [436736 2009-04-29] (Microsoft Windows Hardware Compatibility Publisher -> Conexant Systems, Inc.) S3 MatSvc; C:\Program Files\Microsoft Fix it Center\Matsvc.exe [343856 2011-06-13] (Microsoft Corporation -> Microsoft Corporation) S3 Media Center 23 Service; C:\J RiverMedia Center\JRService.exe [449424 2019-01-24] (JRiver, Inc. -> JRiver, Inc.) S3 Media Center 24 Service; C:\J RiverMedia Center\JRService.exe [449424 2019-01-24] (JRiver, Inc. -> JRiver, Inc.) S3 rkrtservice; C:\Program Files\RogueKiller\RogueKillerSvc.exe [16766008 2020-04-01] (Adlice -> ) S3 rpcapd; C:\Program Files (x86)\WinPcap\rpcapd.exe [118520 2013-02-28] (Riverbed Technology, Inc. -> Riverbed Technology, Inc.) R2 USBSafelyRemoveService; C:\Program Files (x86)\USB Safely Remove\USBSRService.exe [1736800 2018-09-08] (Crystal Rich Ltd -> Crystal Rich Ltd) S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2020-05-27] (Microsoft Windows -> Microsoft Corporation) R2 wlidsvc; c:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2291568 2009-08-18] (Microsoft Corporation -> Microsoft Corporation) S3 WsAppService; C:\Program Files (x86)\Wondershare\WAF\2.4.3.242\WsAppService.exe [495720 2018-08-29] (Wondershare Technology Co.,Ltd -> Wondershare) R2 wuauserv; C:\Windows\system32\wuaueng2.dll [2651136 2020-09-03] (Microsoft Corporation) [Archivo no firmado] ===================== Controladores (Lista blanca) =================== (Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.) S3 aftap0901; C:\Windows\System32\DRIVERS\aftap0901.sys [48624 2018-03-06] (AnchorFree Inc -> The OpenVPN Project) R3 AmUStor; C:\Windows\System32\drivers\AmUStor.SYS [127936 2019-09-07] (Alcorlink Corp. -> ) R3 AscFileFilter; C:\Program Files (x86)\IObit\Advanced SystemCare\drivers\win7_amd64\AscFileFilter.sys [27528 2019-07-15] (IObit CO., LTD -> IObit) R3 AscRegistryFilter; C:\Program Files (x86)\IObit\Advanced SystemCare\drivers\win7_amd64\AscRegistryFilter.sys [28064 2019-07-15] (IObit CO., LTD -> IObit) S3 BlueStacksDrv; C:\Program Files\BlueStacks\BstkDrv.sys [303712 2018-09-21] (Bluestack Systems, Inc. -> Bluestack System Inc.) R3 CAXHWBS2; C:\Windows\System32\DRIVERS\CAXHWBS2.sys [411136 2009-02-13] (Microsoft Windows Hardware Compatibility Publisher -> Conexant Systems, Inc.) S3 cpuz145; C:\Windows\temp\cpuz145\cpuz145_x64.sys [49968 2020-08-25] (CPUID -> CPUID) R1 dokan1; C:\Windows\System32\DRIVERS\dokan1.sys [87424 2018-08-09] (D3L -> Dokan Project) R1 eamonm; C:\Windows\System32\DRIVERS\eamonm.sys [158512 2020-08-29] (ESET, spol. s r.o. -> ESET) R0 edevmon; C:\Windows\System32\DRIVERS\edevmon.sys [106640 2020-08-29] (ESET, spol. s r.o. -> ESET) R1 ehdrv; C:\Windows\System32\DRIVERS\ehdrv.sys [195976 2020-08-29] (ESET, spol. s r.o. -> ESET) S1 EpfwLWF; C:\Windows\System32\DRIVERS\EpfwLWF.sys [61520 2018-04-02] (ESET, spol. s r.o. -> ESET) R1 epfwwfp; C:\Windows\System32\DRIVERS\epfwwfp.sys [116488 2020-08-29] (ESET, spol. s r.o. -> ESET) S3 ESETCleanersDriver; C:\Windows\system32\Drivers\ESETCleanersDriver.sys [181160 2019-01-26] (ESET, spol. s r.o. -> ESET) R1 FortiFilter; C:\Windows\System32\DRIVERS\FortiFilter.sys [25312 2020-03-10] (Fortinet Technologies -> Fortinet Inc) S3 Fortips; C:\Windows\System32\drivers\fortips.sys [148272 2020-03-10] (Fortinet Technologies (Canada) Inc. -> Fortinet Inc) R3 ftsvnic; C:\Windows\System32\DRIVERS\ftsvnic.sys [71248 2020-03-10] (Fortinet Technologies (Canada) Inc. -> Fortinet Inc.) R3 ft_vnic; C:\Windows\System32\DRIVERS\ftvnic.sys [16928 2020-03-10] (Fortinet Technologies -> Fortinet Inc.) R1 GUBootStartup; C:\Windows\System32\drivers\GUBootStartup.sys [28936 2018-07-20] (Glarysoft LTD -> Glarysoft Ltd) R3 HSF_DP; C:\Windows\System32\DRIVERS\CAX_DP.sys [1485824 2009-02-13] (Microsoft Windows Hardware Compatibility Publisher -> Conexant Systems, Inc.) R1 HWiNFO32; C:\Windows\SysWOW64\drivers\HWiNFO64A.SYS [27552 2018-01-13] (Martin Malik - REALiX -> REALiX(tm)) R2 inpoutx64; C:\Windows\System32\Drivers\inpoutx64.sys [15008 2018-06-17] (Red Fox UK Limited -> Highresolution Enterprises [www.highrez.co.uk]) S3 iobit_monitor_server; C:\Program Files (x86)\IObit\Advanced SystemCare\drivers\Monitor_win7_x64.sys [14680 2018-07-04] (IObit Information Technology -> IObit) R1 ISODrive; C:\UltraISO\drivers\ISODrv64.sys [125616 2020-06-07] (SHENZHEN YIBO DIGITAL SYSTEMS DEVELOPMENT CO. LTD. -> EZB Systems, Inc.) R2 mdmxsdk; C:\Windows\System32\DRIVERS\mdmxsdk.sys [17024 2006-06-17] (Microsoft Windows Hardware Compatibility Publisher -> Conexant) R1 networx; C:\Windows\System32\drivers\networx.sys [93256 2018-05-30] (SoftPerfect Pty. Ltd. -> Windows (R) Win 7 DDK provider) R2 NPF; C:\Windows\System32\drivers\npf.sys [36600 2013-02-28] (Riverbed Technology, Inc. -> Riverbed Technology, Inc.) R3 PGR1394b; C:\Windows\System32\DRIVERS\PGR1394.sys [135616 2018-06-29] (Microsoft Windows Hardware Compatibility Publisher -> Point Grey Research) R3 pppop; C:\Windows\System32\DRIVERS\pppop64.sys [54344 2020-03-10] (Fortinet Technologies (Canada) Inc. -> Fortinet Inc.) R2 Sentinel64; C:\Windows\System32\Drivers\Sentinel64.sys [145448 2008-07-11] (SafeNet, Inc. -> SafeNet, Inc.) R3 tap0901; C:\Windows\System32\DRIVERS\tap0901.sys [27136 2016-04-21] (OpenVPN Technologies, Inc. -> The OpenVPN Project) R2 UI5IFS; C:\Program Files (x86)\Ashampoo\Ashampoo UnInstaller\IFS64.sys [40520 2020-04-14] (Ashampoo GmbH & Co. KG -> ) S3 VST64HWBS2; C:\Windows\System32\DRIVERS\VSTBS26.SYS [411136 2009-06-10] (Microsoft Windows -> Conexant Systems, Inc.) S3 VST64_DPV; C:\Windows\System32\DRIVERS\VSTDPV6.SYS [1485312 2009-06-10] (Microsoft Windows -> Conexant Systems, Inc.) R3 winachsf; C:\Windows\System32\DRIVERS\CAX_CNXT.sys [740864 2009-02-13] (Microsoft Windows Hardware Compatibility Publisher -> Conexant Systems, Inc.) R2 XAudio; C:\Windows\System32\DRIVERS\XAudio64.sys [10240 2009-04-29] (Microsoft Windows Hardware Compatibility Publisher -> Conexant Systems, Inc.) ==================== NetSvcs (Lista blanca) =================== (Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)