• Registrarse
  • Iniciar sesión


  • Página 1 de 3 123 ÚltimoÚltimo
    Resultados 1 al 10 de 22

    Cómo elimino us-west-2.compute.amazonaws.com de mi PC?

    ...

    1. #1
      Usuario Avatar de Alvim
      Registrado
      ago 2007
      Ubicación
      México
      Mensajes
      69

      Cómo elimino us-west-2.compute.amazonaws.com de mi PC?

      Hola a todos.

      Hace varios días que mi PC se alenta, además al navegar en la red, tarda para entrar a cualquier sitio y para navegar, con el Process Hacker veo que hay mucha comunicacion con us-west-2.compute.amazonaws.com por lo que pienso que estoy infectado de algún malware

      Tengo instalado Eset Smart Security con licencia actuallizado, Malwarebytes gratuito

      Ya desinstalé dos programas que recientemente había instalado, limpié el registro con CCleaner, analizé mi PC con ADW Cleaner y Junkware Removal Tool, pero no me reportan ninguna infección.

      Por favor me pueden decir cómo eliminar la comunicación con compute.amazonaws.com?

      Con el ProcessHacker en la ventana de Network me aparece todo esto:

      alg.exe (2088), localhost, 1025, , 14554, TCP, Listen
      ekrn.exe (1320), pc-1, 1847, 104.24.30.22, 80, TCP, Established
      ekrn.exe (1320), pc-1, 1841, qro01s13-in-f35.1e100.net, 443, TCP, Established
      ekrn.exe (1320), localhost, 30606, localhost, 1854, TCP, Established
      ekrn.exe (1320), localhost, 30606, localhost, 1838, TCP, Established
      ekrn.exe (1320), pc-1, 1857, qro02s11-in-f10.1e100.net, 80, TCP, Established
      ekrn.exe (1320), pc-1, 1849, 104.24.30.22, 80, TCP, Established
      ekrn.exe (1320), localhost, 30606, localhost, 1855, TCP, Established
      ekrn.exe (1320), localhost, 30606, localhost, 1823, TCP, Established
      ekrn.exe (1320), localhost, 30606, localhost, 1840, TCP, Established
      ekrn.exe (1320), pc-1, 1852, 104.24.30.22, 80, TCP, Established
      ekrn.exe (1320), localhost, 30606, localhost, 1842, TCP, Established
      ekrn.exe (1320), pc-1, 1853, 104.24.30.22, 80, TCP, Established
      ekrn.exe (1320), pc-1, 1787, 104.24.2.76, 443, TCP, Established
      ekrn.exe (1320), pc-1, 1833, sea15s11-in-f164.1e100.net, 443, TCP, Established
      ekrn.exe (1320), localhost, 30606, localhost, 1828, TCP, Established
      ekrn.exe (1320), localhost, 30606, localhost, 1844, TCP, Established
      ekrn.exe (1320), localhost, 30606, localhost, 1846, TCP, Established
      ekrn.exe (1320), localhost, 30606, localhost, 1830, TCP, Established
      ekrn.exe (1320), pc-1, 1839, qro01s13-in-f42.1e100.net, 443, TCP, Established
      ekrn.exe (1320), localhost, 30606, localhost, 1848, TCP, Established
      ekrn.exe (1320), localhost, 30606, localhost, 1832, TCP, Established
      ekrn.exe (1320), pc-1, 1824, qro01s13-in-f14.1e100.net, 443, TCP, Established
      ekrn.exe (1320), pc-1, 1843, 104.24.30.22, 80, TCP, Established
      ekrn.exe (1320), pc-1, 1831, server-13-32-171-22.dfw54.r.cloudfront.net, 443, TCP, Established
      ekrn.exe (1320), pc-1, 1856, 104.19.195.102, 443, TCP, Established
      ekrn.exe (1320), localhost, 30606, localhost, 1850, TCP, Established
      ekrn.exe (1320), localhost, 30606, localhost, 1786, TCP, Established
      ekrn.exe (1320), pc-1, 1845, 104.24.30.22, 80, TCP, Established
      ekrn.exe (1320), localhost, 30606, localhost, 1851, TCP, Established
      ekrn.exe (1320), pc-1, 1829, sea15s11-in-f163.1e100.net, 443, TCP, Established
      ekrn.exe (1320), localhost, 30606, , 2071, TCP, Listen
      ekrn.exe (1320), pc-1, 1820, , , UDP,
      ekrn.exe (1320), localhost, 1058, , , UDP,
      ekrn.exe (1320), pc-1, 1716, , , UDP,
      ekrn.exe (1320), pc-1, 1061, , , UDP,
      firefox.exe (976), localhost, 1190, localhost, 1189, TCP, Established
      firefox.exe (976), localhost, 1189, localhost, 1190, TCP, Established
      firefox.exe (976), localhost, 1838, localhost, 30606, TCP, Established
      firefox.exe (976), localhost, 1854, localhost, 30606, TCP, Established
      firefox.exe (976), localhost, 1855, localhost, 30606, TCP, Established
      firefox.exe (976), localhost, 1823, localhost, 30606, TCP, Established
      firefox.exe (976), localhost, 1840, localhost, 30606, TCP, Established
      firefox.exe (976), localhost, 1842, localhost, 30606, TCP, Established
      firefox.exe (976), localhost, 1828, localhost, 30606, TCP, Established
      firefox.exe (976), localhost, 1844, localhost, 30606, TCP, Established
      firefox.exe (976), localhost, 1846, localhost, 30606, TCP, Established
      firefox.exe (976), localhost, 1830, localhost, 30606, TCP, Established
      firefox.exe (976), localhost, 1848, localhost, 30606, TCP, Established
      firefox.exe (976), localhost, 1832, localhost, 30606, TCP, Established
      firefox.exe (976), localhost, 1786, localhost, 30606, TCP, Established
      firefox.exe (976), localhost, 1850, localhost, 30606, TCP, Established
      firefox.exe (976), localhost, 1851, localhost, 30606, TCP, Established
      lsass.exe (1164), pc-1, 500, , , UDP,
      lsass.exe (1164), pc-1, 4500, , , UDP,
      svchost.exe (1504), pc-1, 135, , 2240, TCP, Listen
      svchost.exe (1628), pc-1, 123, , , UDP,
      svchost.exe (1628), localhost, 123, , , UDP,
      svchost.exe (2008), pc-1, 2869, , 24702, TCP, Listen
      svchost.exe (2008), pc-1, 1900, , , UDP,
      svchost.exe (2008), localhost, 1900, , , UDP,
      System (4), pc-1, 445, , 53284, TCP, Listen
      System (4), pc-1, 139, , 37053, TCP, Listen
      System (4), pc-1, 137, , , UDP,
      System (4), pc-1, 445, , , UDP,
      System (4), pc-1, 138, , , UDP,
      Waiting connections, localhost, 1757, localhost, 30606, TCP, Time wait
      Waiting connections, pc-1, 1858, um09.eset.com, 80, TCP, Time wait
      Waiting connections, pc-1, 1864, 38-90-226-13.ptr.eset.com, 80, TCP, Time wait
      Waiting connections, pc-1, 1766, qro01s13-in-f35.1e100.net, 443, TCP, Time wait
      Waiting connections, pc-1, 1758, qro01s13-in-f13.1e100.net, 443, TCP, Time wait
      Waiting connections, pc-1, 1825, tsm12.eset.com, 443, TCP, Time wait
      Waiting connections, pc-1, 1756, qro01s13-in-f14.1e100.net, 443, TCP, Time wait
      Waiting connections, pc-1, 1826, tsm12.eset.com, 443, TCP, Time wait
      Waiting connections, localhost, 1765, localhost, 30606, TCP, Time wait
      Waiting connections, pc-1, 1827, 138.91.246.4, 443, TCP, Time wait
      Waiting connections, pc-1, 1860, tsm10.eset.com, 443, TCP, Time wait
      Waiting connections, pc-1, 1861, tsm10.eset.com, 443, TCP, Time wait
      Waiting connections, localhost, 30606, localhost, 1816, TCP, Time wait
      Waiting connections, pc-1, 1862, tsm10.eset.com, 443, TCP, Time wait
      Waiting connections, pc-1, 1863, tsm10.eset.com, 443, TCP, Time wait
      Waiting connections, localhost, 30606, localhost, 1818, TCP, Time wait
      Waiting connections, localhost, 1755, localhost, 30606, TCP, Time wait
      Waiting connections, pc-1, 1859, 38-90-226-13.ptr.eset.com, 80, TCP, Time wait
      Waiting connections, localhost, 30606, localhost, 1836, TCP, Time wait
      Waiting connections, pc-1, 1835, ec2-52-211-43-169.eu-west-1.compute.amazonaws.com, 443, TCP, Time wait
      Waiting connections, localhost, 1834, localhost, 30606, TCP, Time wait

      Ejecuté el Rkill y el log éste:

      Rkill 2.9.1 by Lawrence Abrams (Grinler)
      http://www.bleepingcomputer.com/
      Copyright 2008-2017 BleepingComputer.com
      More Information about Rkill can be found at this link:
      http://www.bleepingcomputer.com/forums/topic308364.html

      Program started at: 11/24/2017 02:21:47 PM in x86 mode.
      Windows Version: Microsoft Windows XP Service Pack 3

      Checking for Windows services to stop:

      * No malware services found to stop.

      Checking for processes to terminate:

      * C:\Documents and Settings\Alvaro\Escritorio\winlockless.exe (PID: 1700) [UP-HEUR]

      1 proccess terminated!

      Checking Registry for malware related settings:

      * No issues found in the Registry.

      Resetting .EXE, .COM, & .BAT associations in the Windows Registry.

      Performing miscellaneous checks:

      * Windows Firewall Disabled

      [HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
      "EnableFirewall" = dword:00000000

      * Reparse Point/Junctions Found (Most likely legitimate)!

      * C:\WINDOWS\Microsoft.NET\assembly\GAC_32\System.EnterpriseServices\v4.0_4.0.0.0__b03f5f7f11d50a3a => C:\WINDOWS\WinSxS\x86_System.EnterpriseServices_b03f5f7f11d50a3a_4.0.0.0_x-ww_29b51492 [Dir]
      * C:\WINDOWS\Microsoft.NET\assembly\GAC_MSIL\Microsoft.Workflow.Compiler\v4.0_4.0.0.0__31bf3856ad364e35 => C:\WINDOWS\WinSxS\MSIL_Microsoft.Workflow.Compiler_31bf3856ad364e35_4.0.0.0_x-ww_97359ba5 [Dir]

      Searching for Missing Digital Signatures:

      * No issues found.

      Checking HOSTS File:

      * Cannot edit the HOSTS file.
      * Permissions could not be fixed. Use Hosts-perm.bat to fix permissions: http://www.bleepingcomputer.com/download/hosts-permbat/

      * HOSTS file entries found:

      127.0.0.1 localhost

      Program finished at: 11/24/2017 02:22:29 PM
      Execution time: 0 hours(s), 0 minute(s), and 42 seconds(s)
      Última edición por @Miguelgrado fecha: 24/11/17 a las 15:53:49

    2. #2
      Warrior Avatar de @Miguelgrado
      Registrado
      dic 2005
      Ubicación
      Asturias-España
      Mensajes
      19.424

      Re: Cómo elimino us-west-2.compute.amazonaws.com de mi PC?

      Usas algo de Ubuntu??

      Pra saber que programa usa esa conexión, puedes probar con >>https://www.glasswire.com/

      Te mostrara todas las conexiones de cada programa a los servidores

      Comentas y ademas me pegas esto


      1-Descarga Farbar Recovery Scan Tool By Farbar (Descarga el archivo dependiendo de la arquitectura de tu sistema).>> Como saber si mi sistema es de 32 o de 64 Bits

      • La guardas en el escritorio >> Esto es muy importante..
      • Con todos los programas /ventanas cerrados, doble clic para ejecutar Frst.exe.
      • En la ventana del Disclaimer, presiona Yes.
      • En la nueva ventana que se abre, presiona el botón Scan y espera paciente a que concluya el análisis.

      • Se abrirán dos (2) archivos (Logs), Frst.txt y Addition.txt, estos estarán grabados en tu escritorio.

      • Para terminar abres los archivos Frst.txt y Addition.Txt copia y pega todo su contenido en tu próxima respuesta. Utiliza dos mensajes si te dice que es muy largo.
      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.

    3. #3
      Usuario Avatar de Alvim
      Registrado
      ago 2007
      Ubicación
      México
      Mensajes
      69

      Re: Cómo elimino us-west-2.compute.amazonaws.com de mi PC?

      @Miguelgrado, muchas gracias por contestar.

      Te comento:

      No he podido instalar Glasswire en Windows XP SP3, me indica que no es para esta versión de Windows y no he podido encontrar otra versión.

      Te copio los reportes de Farbar Recovery:

      Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 24-11-2017 01
      Ran by Alvaro (administrator) on PC-1 (24-11-2017 21:32:32)
      Running from C:\Documents and Settings\Alvaro\Escritorio
      Loaded Profiles: Alvaro (Available Profiles: Alvaro & Administrador)
      Platform: Microsoft Windows XP Professional Service Pack 3 (X86) Language: Español (alfabetización internacional)
      Internet Explorer Version 8 (Default browser: FF)
      Boot Mode: Normal
      Tutorial for Farbar Recovery Scan Tool: ***********************************************************************************************************

      ==================== Processes (Whitelisted) =================

      (If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

      (ESET) C:\Archivos de programa\ESET\ESET Security\ekrn.exe
      (Microsoft Corporation) C:\Archivos de programa\Archivos comunes\Microsoft Shared\VS7DEBUG\MDM.EXE
      (Microsoft Corporation) C:\Archivos de programa\Microsoft SQL Server\MSSQL$MICROSOFTSMLBIZ\Binn\sqlservr.exe
      () C:\Archivos de programa\NVIDIA Corporation\Performance Drivers\nvPDsvc.exe
      ( ) C:\WINDOWS\system32\lxcjcoms.exe
      (ESET) C:\Archivos de programa\ESET\ESET Security\egui.exe
      (Realtek Semiconductor Corp.) C:\WINDOWS\RTHDCPL.EXE
      (Microsoft Corporation) C:\Archivos de programa\Microsoft IntelliType Pro\itype.exe
      (Microsoft Corporation) C:\Archivos de programa\Microsoft SQL Server\80\Tools\Binn\sqlmangr.exe

      ==================== Registry (Whitelisted) ===========================

      (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

      HKLM\...\Run: [RTHDCPL] => C:\Windows\RTHDCPL.EXE [16806912 2008-07-31] (Realtek Semiconductor Corp.)
      HKLM\...\Run: [Alcmtr] => C:\Windows\ALCMTR.EXE [57344 2008-06-19] (Realtek Semiconductor Corp.)
      HKLM\...\Run: [itype] => c:\Archivos de programa\Microsoft IntelliType Pro\itype.exe [1505144 2009-11-11] (Microsoft Corporation)
      HKLM\...\Run: [Adobe ARM] => C:\Archivos de programa\Archivos comunes\Adobe\ARM\1.0\AdobeARM.exe [959904 2014-05-08] (Adobe Systems Incorporated)
      HKLM\...\Run: [ToolBoxFX] => C:\Archivos de programa\HP\ToolBoxFX\bin\HPTLBXFX.exe [49152 2006-06-15] (HP)
      HKLM\...\Run: [] => [X]
      HKLM\...\Run: [HP Software Update] => C:\Archivos de programa\HP\HP Software Update\HPWuSchd2.exe [49152 2005-02-16] (Hewlett-Packard Co.)
      HKLM\...\Run: [LXCJCATS] => rundll32 C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\LXCJtime.dll,[email protected]************************************************************************************************************************ (the data entry has 59 more characters).
      HKLM\...\Run: [lxcjmon.exe] => C:\Archivos de programa\Lexmark 8300 Series\lxcjmon.exe [200704 2005-09-30] (Lexmark International, Inc.)
      HKLM\...\Run: [EzPrint] => C:\Archivos de programa\Lexmark 8300 Series\ezprint.exe [94208 2006-04-19] (Lexmark International Inc.)
      HKLM\...\Run: [SunJavaUpdateSched] => C:\Archivos de programa\Archivos comunes\Java\Java Update\jusched.exe [587288 2017-09-05] (Oracle Corporation)
      Startup: C:\Documents and Settings\All Users\Menú Inicio\Programas\Inicio\Administrador de servicios.lnk [2017-03-22]
      ShortcutTarget: Administrador de servicios.lnk -> C:\Archivos de programa\Microsoft SQL Server\80\Tools\Binn\sqlmangr.exe (Microsoft Corporation)
      Startup: C:\Documents and Settings\All Users\Menú Inicio\Programas\Inicio\Printkey2000.lnk [2017-03-24]
      ShortcutTarget: Printkey2000.lnk -> C:\Utiles\PrintKey2000\Printkey2000.exe (Fred's Software)
      Startup: C:\Documents and Settings\Alvaro\Menú Inicio\Programas\Inicio\winlockless.lnk [2017-07-01]
      ShortcutTarget: winlockless.lnk -> C:\Documents and Settings\Alvaro\Escritorio\winlockless.exe (Hispasec)
      BootExecute: autocheck autochk *

      ==================== Internet (Whitelisted) ====================

      (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

      Tcpip\Parameters: [DhcpNameServer] 192.168.1.254
      Tcpip\..\Interfaces\{B42D1114-16CB-42D8-8CCC-4FC92A727555}: [DhcpNameServer] 192.168.1.254

      Internet Explorer:
      ==================
      HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.msn.com/es-mx/?ocid=iehp
      HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.msn.com/es-mx/?ocid=iehp
      HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.msn.com/es-mx/?ocid=iehp
      HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.msn.com/es-mx/?ocid=iehp
      HKU\S-1-5-21-1844237615-616249376-839522115-1003\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
      HKU\S-1-5-21-1844237615-616249376-839522115-1003\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/es-mx/?ocid=iehp
      BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Archivos de programa\Java\jre1.8.0_151\bin\ssv.dll [2017-10-23] (Oracle Corporation)
      BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Archivos de programa\Java\jre1.8.0_151\bin\jp2ssv.dll [2017-10-23] (Oracle Corporation)
      Handler: http\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Archivos de programa\Archivos comunes\SYSTEM\OLE DB\msdaipp.dll [2005-09-20] (Microsoft Corporation)
      Handler: http\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Archivos de programa\Archivos comunes\SYSTEM\OLE DB\msdaipp.dll [2005-09-20] (Microsoft Corporation)
      Handler: https\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Archivos de programa\Archivos comunes\SYSTEM\OLE DB\msdaipp.dll [2005-09-20] (Microsoft Corporation)
      Handler: https\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Archivos de programa\Archivos comunes\SYSTEM\OLE DB\msdaipp.dll [2005-09-20] (Microsoft Corporation)
      Handler: ipp\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Archivos de programa\Archivos comunes\SYSTEM\OLE DB\msdaipp.dll [2005-09-20] (Microsoft Corporation)
      Handler: ms-itss - {0A9007C0-4076-11D3-8789-0000F8105754} - C:\Archivos de programa\Archivos comunes\Microsoft Shared\Information Retrieval\MSITSS.DLL [2000-04-19] (Microsoft Corporation)
      Handler: msdaipp\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Archivos de programa\Archivos comunes\SYSTEM\OLE DB\msdaipp.dll [2005-09-20] (Microsoft Corporation)
      Handler: msdaipp\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Archivos de programa\Archivos comunes\SYSTEM\OLE DB\msdaipp.dll [2005-09-20] (Microsoft Corporation)

      FireFox:
      ========
      FF ProfilePath: C:\Documents and Settings\Alvaro\Datos de programa\Mozilla\Firefox\Profiles\ns5jaelp.default-1511551416750 [2017-11-24]
      FF Extension: (YouTube Download Plus) - C:\Documents and Settings\Alvaro\Datos de programa\Mozilla\Firefox\Profiles\ns5jaelp.default-1511551416750\Extensions\[email protected] [2017-11-24]
      FF Extension: (Privacy Badger) - C:\Documents and Settings\Alvaro\Datos de programa\Mozilla\Firefox\Profiles\ns5jaelp.default-1511551416750\Extensions\[email protected] [2017-11-24]
      FF Extension: (Download Status Bar) - C:\Documents and Settings\Alvaro\Datos de programa\Mozilla\Firefox\Profiles\ns5jaelp.default-1511551416750\Extensions\{6c28e999-e900-4635-a39d-b1ec90ba0c0f}.xpi [2017-11-24] [Lagacy]
      FF Extension: (Adblock Plus) - C:\Documents and Settings\Alvaro\Datos de programa\Mozilla\Firefox\Profiles\ns5jaelp.default-1511551416750\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2017-11-24]
      FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF32_27_0_0_183.dll [2017-10-30] ()
      FF Plugin: @adobe.com/ShockwavePlayer -> C:\WINDOWS\system32\Adobe\Director\np32dsw_1229199.dll [2017-03-31] (Adobe Systems, Inc.)
      FF Plugin: @java.com/DTPlugin,version=11.151.2 -> C:\Archivos de programa\Java\jre1.8.0_151\bin\dtplugin\npDeployJava1.dll [2017-10-23] (Oracle Corporation)
      FF Plugin: @java.com/JavaPlugin,version=11.151.2 -> C:\Archivos de programa\Java\jre1.8.0_151\bin\plugin2\npjp2.dll [2017-10-23] (Oracle Corporation)
      FF Plugin: @microsoft.com/WPF,version=3.5 -> c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll [2008-07-29] (Microsoft Corporation)
      FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Archivos de programa\Google\Update\1.3.33.5\npGoogleUpdate3.dll [No File]
      FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Archivos de programa\Google\Update\1.3.33.5\npGoogleUpdate3.dll [No File]
      FF Plugin: @videolan.org/vlc,version=2.2.6 -> C:\Multimedia\VLC\npvlc.dll [2017-05-24] (VideoLAN)
      FF Plugin: Adobe Reader -> C:\Archivos de programa\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2014-08-05] (Adobe Systems Inc.)
      StartMenuInternet: FIREFOX.EXE - C:\Navegadores\Mozilla Firefox\firefox.exe

      ==================== Services (Whitelisted) ====================

      (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

      R2 ekrn; C:\Archivos de programa\ESET\ESET Security\ekrn.exe [2069936 2017-06-13] (ESET)
      R3 lxcj_device; C:\WINDOWS\system32\lxcjcoms.exe [491520 2005-10-24] ( )
      S2 MBAMService; C:\Def\Malwarebytes\Anti-Malware\mbamservice.exe [4563920 2017-11-01] (Malwarebytes)
      R2 MDM; C:\Archivos de programa\Archivos comunes\Microsoft Shared\VS7DEBUG\MDM.EXE [322120 2003-06-19] (Microsoft Corporation)
      R2 MSSQL$MICROSOFTSMLBIZ; C:\Archivos de programa\Microsoft SQL Server\MSSQL$MICROSOFTSMLBIZ\Binn\sqlservr.exe [9150464 2005-05-04] (Microsoft Corporation) [File not signed]
      S3 MSSQLServerADHelper; C:\Archivos de programa\Microsoft SQL Server\80\Tools\Binn\sqladhlp.exe [73728 2005-05-03] (Microsoft Corporation) [File not signed]
      R2 NVIDIA Performance Driver Service; C:\Archivos de programa\NVIDIA Corporation\Performance Drivers\nvPDsvc.exe [3575808 2008-12-11] () [File not signed]
      R2 NwSapAgent; C:\WINDOWS\System32\ipxsap.dll [66560 2006-03-02] (Microsoft Corporation)
      S3 ose; C:\Archivos de programa\Archivos comunes\Microsoft Shared\Source Engine\OSE.EXE [89136 2003-07-28] (Microsoft Corporation)
      S3 SQLAgent$MICROSOFTSMLBIZ; C:\Archivos de programa\Microsoft SQL Server\MSSQL$MICROSOFTSMLBIZ\Binn\sqlagent.EXE [323584 2005-05-03] (Microsoft Corporation) [File not signed]
      S3 WMPNetworkSvc; C:\Archivos de programa\Windows Media Player\WMPNetwk.exe [916480 2009-02-04] (Microsoft Corporation)

      ===================== Drivers (Whitelisted) ======================

      (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

      R1 eamonm; C:\WINDOWS\System32\DRIVERS\eamonm.sys [113512 2017-06-22] (ESET)
      R0 edevmon; C:\WINDOWS\System32\DRIVERS\edevmon.sys [90656 2017-05-04] (ESET)
      R1 ehdrv; C:\WINDOWS\System32\DRIVERS\ehdrv.sys [139384 2017-05-04] (ESET)
      R2 ekbdflt; C:\WINDOWS\System32\DRIVERS\ekbdflt.sys [43920 2017-05-04] (ESET)
      R1 epfw; C:\WINDOWS\System32\DRIVERS\epfw.sys [69304 2017-05-04] (ESET)
      R3 Epfwndis; C:\WINDOWS\System32\DRIVERS\Epfwndis.sys [57352 2017-05-04] (ESET)
      R1 epfwtdi; C:\WINDOWS\System32\DRIVERS\epfwtdi.sys [78128 2017-05-04] (ESET)
      R1 GUBootStartup; C:\WINDOWS\System32\drivers\GUBootStartup.sys [17472 2017-11-20] (Glarysoft Ltd)
      S3 GUMHFilters; C:\Archivos de programa\Glarysoft\Malware Hunter\Native\winxp_x86\GUMHFilter.sys [41008 2017-10-24] (Glarysoft Ltd)
      R1 GUSBootStartup; C:\WINDOWS\System32\drivers\GUSBootStartup.sys [17472 2017-11-20] (Glarysoft Ltd)
      S3 HPFXBULK; C:\WINDOWS\System32\drivers\hpfxbulk.sys [9344 2006-06-12] (Hewlett Packard)
      R2 npf; C:\WINDOWS\System32\drivers\npf.sys [36600 2014-04-17] (Riverbed Technology, Inc.)
      R3 NVHDA; C:\WINDOWS\System32\drivers\nvhda32.sys [124264 2013-02-18] (NVIDIA Corporation)
      R2 NwlnkIpx; C:\WINDOWS\System32\DRIVERS\nwlnkipx.sys [88320 2008-04-14] (Microsoft Corporation)
      R2 NwlnkNb; C:\WINDOWS\System32\DRIVERS\nwlnknb.sys [63232 2006-03-02] (Microsoft Corporation)
      R2 NwlnkSpx; C:\WINDOWS\System32\DRIVERS\nwlnkspx.sys [55936 2006-03-02] (Microsoft Corporation)
      R1 SCDEmu; C:\WINDOWS\system32\Drivers\SCDEmu.sys [124616 2017-06-06] (Power Software Ltd)
      R3 SNTNLUSB; C:\WINDOWS\System32\DRIVERS\SNTNLUSB.SYS [38472 2010-10-20] (SafeNet, Inc.)
      R2 StarOpen; C:\WINDOWS\system32\Drivers\StarOpen.sys [13120 2016-02-21] ()
      S3 cpuz137; \??\D:\Programas-\Kits-Repar-Recup\PcWizard-2014\pc-wizard_2014.2.13\pcwiz_x32.sys [X]
      S3 esihdrv; \??\C:\DOCUME~1\Alvaro\CONFIG~1\Temp\esihdrv.sys [X]
      S4 IntelIde; no ImagePath
      U5 ScsiPort; C:\WINDOWS\system32\drivers\scsiport.sys [96384 2008-04-14] (Microsoft Corporation)
      U1 WS2IFSL; no ImagePath

      ==================== NetSvcs (Whitelisted) ===================

      (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


      ==================== One Month Created files and folders ========

      (If an entry is included in the fixlist, the file/folder will be moved.)

      2017-11-24 21:32 - 2017-11-24 21:32 - 000000402 _____ C:\Documents and Settings\Alvaro\Escritorio\Addition.txt
      2017-11-24 21:31 - 2017-11-24 21:32 - 000012946 _____ C:\Documents and Settings\Alvaro\Escritorio\FRST.txt
      2017-11-24 21:31 - 2017-11-24 21:31 - 000000000 ____D C:\FRST
      2017-11-24 21:29 - 2017-11-24 21:29 - 001789440 _____ (Farbar) C:\Documents and Settings\Alvaro\Escritorio\FRST.exe
      2017-11-24 21:05 - 2017-11-24 21:05 - 000000000 ____D C:\WINDOWS\LastGood
      2017-11-24 20:59 - 2017-11-24 21:10 - 000000000 ____D C:\Documents and Settings\Alvaro\Escritorio\ComoRemoverWin32-ELEXinfection-ESET
      2017-11-24 20:42 - 2017-11-24 21:00 - 000000000 ____D C:\Documents and Settings\Alvaro\Escritorio\Actualización de seguridad para Windows XP SP3 (KB4012598)
      2017-11-24 19:57 - 2017-11-24 19:58 - 030756192 _____ (SecureMix LLC) C:\Documents and Settings\Alvaro\Escritorio\GlassWireSetup.exe
      2017-11-24 14:34 - 2017-11-24 14:34 - 000000640 _____ C:\Documents and Settings\All Users\Menú Inicio\AB Commander LITE.lnk
      2017-11-24 14:34 - 2017-11-24 14:34 - 000000000 ____D C:\Documents and Settings\All Users\Menú Inicio\Programas\AB Commander LITE
      2017-11-24 14:34 - 2017-11-24 14:34 - 000000000 ____D C:\Documents and Settings\All Users\Escritorio\AB Commander LITE
      2017-11-24 14:26 - 2017-11-24 14:59 - 000000000 ____D C:\Documents and Settings\All Users\Datos de programa\TEMP
      2017-11-24 14:26 - 2017-11-24 14:27 - 000000000 ____D C:\Archivos de programa\SpywareBlaster
      2017-11-24 14:26 - 2017-11-24 14:26 - 000000806 _____ C:\Documents and Settings\All Users\Escritorio\SpywareBlaster.lnk
      2017-11-24 14:26 - 2017-11-24 14:26 - 000000000 ____D C:\Documents and Settings\All Users\Menú Inicio\Programas\SpywareBlaster
      2017-11-24 14:21 - 2017-11-24 14:22 - 000003714 _____ C:\Documents and Settings\Alvaro\Escritorio\Rkill.txt
      2017-11-24 14:05 - 2017-11-24 14:05 - 001792640 _____ (Bleeping Computer, LLC) C:\Documents and Settings\Alvaro\Escritorio\WiNlOgOn.exe
      2017-11-24 13:22 - 2017-11-24 14:34 - 000000000 ____D C:\Navegadores
      2017-11-24 13:22 - 2017-11-24 13:22 - 000000703 _____ C:\Documents and Settings\All Users\Menú Inicio\Programas\Mozilla Firefox.lnk
      2017-11-24 13:22 - 2017-11-24 13:22 - 000000697 _____ C:\Documents and Settings\All Users\Escritorio\Mozilla Firefox.lnk
      2017-11-24 12:08 - 2017-11-24 12:09 - 000068542 _____ C:\WINDOWS\ntbtlog.txt
      2017-11-20 14:44 - 2017-11-20 14:44 - 000000000 ____D C:\Documents and Settings\All Users\GlarySoft
      2017-11-20 14:42 - 2017-11-20 14:42 - 000017472 _____ (Glarysoft Ltd) C:\WINDOWS\system32\Drivers\GUSBootStartup.sys
      2017-11-20 14:42 - 2017-11-20 14:42 - 000017472 _____ (Glarysoft Ltd) C:\WINDOWS\system32\Drivers\GUBootStartup.sys
      2017-11-20 14:42 - 2017-11-20 14:42 - 000002581 _____ C:\GUDownLoaddebug.txt
      2017-11-20 14:42 - 2017-11-20 14:42 - 000000913 _____ C:\Documents and Settings\All Users\Menú Inicio\Programas\Malware Hunter.lnk
      2017-11-20 14:42 - 2017-11-20 14:42 - 000000907 _____ C:\Documents and Settings\All Users\Escritorio\Malware Hunter.lnk
      2017-11-20 14:42 - 2017-11-20 14:42 - 000000672 _____ C:\Documents and Settings\All Users\Menú Inicio\Programas\Glary Utilities 5.lnk
      2017-11-20 14:42 - 2017-11-20 14:42 - 000000666 _____ C:\Documents and Settings\All Users\Escritorio\Glary Utilities 5.lnk
      2017-11-20 14:42 - 2017-11-20 14:42 - 000000302 _____ C:\WINDOWS\Tasks\GlaryInitialize 5.job
      2017-11-20 14:42 - 2017-11-20 14:42 - 000000000 ____D C:\Documents and Settings\Alvaro\Datos de programa\GlarySoft
      2017-11-20 14:42 - 2017-11-20 14:42 - 000000000 ____D C:\Documents and Settings\Alvaro\Datos de programa\DiskDefrag
      2017-11-20 14:42 - 2017-11-20 14:42 - 000000000 ____D C:\Documents and Settings\All Users\Menú Inicio\Programas\Glarysoft
      2017-11-20 14:42 - 2017-11-20 14:42 - 000000000 ____D C:\Documents and Settings\All Users\Menú Inicio\Programas\Glary Utilities 5
      2017-11-20 14:42 - 2017-11-20 14:42 - 000000000 ____D C:\Documents and Settings\All Users\Datos de programa\GlarySoft
      2017-11-20 14:42 - 2017-11-20 14:42 - 000000000 ____D C:\Archivos de programa\Glarysoft
      2017-11-20 10:19 - 2017-11-20 10:19 - 000001804 _____ C:\Documents and Settings\All Users\Escritorio\Protección de banca y pagos en linea.lnk
      2017-11-20 10:19 - 2017-11-20 10:19 - 000000000 ____D C:\Documents and Settings\All Users\Menú Inicio\Programas\ESET
      2017-11-20 10:19 - 2017-11-20 10:19 - 000000000 ____D C:\Documents and Settings\All Users\Datos de programa\ESET
      2017-11-20 10:19 - 2017-11-20 10:19 - 000000000 ____D C:\Archivos de programa\ESET
      2017-11-17 10:37 - 2017-11-24 20:26 - 000221112 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
      2017-11-17 10:36 - 2017-11-17 10:36 - 000001606 _____ C:\Documents and Settings\All Users\Escritorio\Malwarebytes.lnk
      2017-11-17 10:36 - 2017-11-17 10:36 - 000000000 ____D C:\Documents and Settings\All Users\Menú Inicio\Programas\Malwarebytes
      2017-11-17 10:36 - 2017-11-17 10:36 - 000000000 ____D C:\Documents and Settings\All Users\Datos de programa\Malwarebytes
      2017-11-17 10:36 - 2017-11-01 08:54 - 000059896 _____ C:\WINDOWS\system32\Drivers\mbae.sys
      2017-11-16 14:09 - 2017-11-17 10:39 - 000000000 ____D C:\Documents and Settings\Alvaro\Escritorio\Int-MalwareBits
      2017-11-13 12:02 - 2017-11-13 12:02 - 000000000 ____D C:\Documents and Settings\All Users\Datos de programa\MB3CoreBackup
      2017-10-30 19:20 - 2017-10-30 19:20 - 000000000 ____D C:\Documents and Settings\Alvaro\Configuración local\Datos de programa\CEF

      ==================== One Month Modified files and folders ========

      (If an entry is included in the fixlist, the file/folder will be moved.)

      2017-11-24 21:32 - 2017-03-21 19:02 - 000000000 ____D C:\Documents and Settings\Alvaro\Escritorio
      2017-11-24 21:32 - 2017-03-21 19:02 - 000000000 ____D C:\Documents and Settings\Alvaro\Configuración local\Temp
      2017-11-24 21:30 - 2017-03-22 09:23 - 000000000 ____D C:\Documents and Settings\Alvaro\Configuración local\Datos de programa\ApplicationHistory
      2017-11-24 21:29 - 2017-03-24 19:58 - 000000664 _____ C:\WINDOWS\system32\d3d9caps.dat
      2017-11-24 21:24 - 2017-03-21 19:02 - 000000304 ___SH C:\Documents and Settings\Alvaro\ntuser.ini
      2017-11-24 21:24 - 2006-03-02 05:00 - 000012984 _____ C:\WINDOWS\system32\wpa.dbl
      2017-11-24 21:21 - 2017-03-21 19:02 - 000000000 ___RD C:\Documents and Settings\Alvaro\Menú Inicio\Programas
      2017-11-24 21:06 - 2017-03-21 12:01 - 000000000 ___HD C:\WINDOWS\inf
      2017-11-24 15:17 - 2017-03-21 12:01 - 000000000 RSHDC C:\WINDOWS\system32\dllcache
      2017-11-24 14:34 - 2017-03-21 11:26 - 000000000 ___RD C:\Documents and Settings\All Users\Menú Inicio\Programas
      2017-11-24 14:34 - 2017-03-21 11:26 - 000000000 ___RD C:\Documents and Settings\All Users\Menú Inicio
      2017-11-24 14:34 - 2017-03-21 11:26 - 000000000 ____D C:\Documents and Settings\All Users\Escritorio
      2017-11-24 14:29 - 2017-03-21 19:02 - 000000000 ___HD C:\Documents and Settings\Alvaro\Plantillas
      2017-11-24 14:26 - 2017-03-21 11:28 - 000000000 ____D C:\Archivos de programa
      2017-11-24 14:26 - 2017-03-21 11:26 - 000000000 __RHD C:\Documents and Settings\All Users\Datos de programa
      2017-11-24 13:37 - 2017-10-13 19:14 - 000000000 ____D C:\Documents and Settings\Alvaro\Escritorio\Analisis
      2017-11-24 13:23 - 2017-08-21 16:45 - 000000000 ____D C:\Documents and Settings\Alvaro\Escritorio\Old Firefox Data
      2017-11-23 23:38 - 2017-03-22 11:18 - 000000000 ____D C:\Documents and Settings\Alvaro\Mis documentos\Descargas
      2017-11-23 21:14 - 2017-04-01 23:51 - 001701402 _____ C:\Documents and Settings\LocalService\Configuración local\Datos de programa\WPFFontCache_v0400-S-1-5-21-1844237615-616249376-839522115-1003-0.dat
      2017-11-23 21:14 - 2017-03-30 01:30 - 000391506 _____ C:\Documents and Settings\LocalService\Configuración local\Datos de programa\WPFFontCache_v0400-System.dat
      2017-11-23 20:38 - 2017-03-21 11:25 - 000431776 _____ C:\WINDOWS\system32\FNTCACHE.DAT
      2017-11-23 15:06 - 2017-04-05 20:12 - 000000000 ____D C:\Documents and Settings\Alvaro\Datos de programa\AIMP
      2017-11-23 10:48 - 2017-03-22 11:39 - 000118400 _____ C:\Documents and Settings\Alvaro\Configuración local\Datos de programa\GDIPFONTCACHEV1.DAT
      2017-11-23 10:39 - 2006-03-02 05:00 - 000000250 _____ C:\WINDOWS\system.ini
      2017-11-22 21:51 - 2017-03-23 08:59 - 000002343 _____ C:\Documents and Settings\All Users\Menú Inicio\Programas\Adobe Reader XI.lnk
      2017-11-22 20:48 - 2017-03-21 19:02 - 000000000 __SHD C:\Documents and Settings\Alvaro\Configuración local\Archivos temporales de Internet
      2017-11-22 15:02 - 2017-03-21 19:02 - 000000000 ____D C:\Documents and Settings\Alvaro
      2017-11-20 14:44 - 2017-03-21 11:25 - 000000000 ____D C:\Documents and Settings\All Users
      2017-11-20 14:42 - 2017-03-21 19:02 - 000000000 __RHD C:\Documents and Settings\Alvaro\Datos de programa
      2017-11-20 14:41 - 2017-03-22 11:15 - 000000000 ____D C:\Def
      2017-11-20 14:36 - 2017-06-12 11:47 - 000000000 ____D C:\AdwCleaner
      2017-11-20 14:24 - 2017-06-12 11:47 - 001790024 _____ (Malwarebytes) C:\Documents and Settings\Alvaro\Escritorio\JRT.exe
      2017-11-20 13:23 - 2017-03-21 19:02 - 000000000 ___RD C:\Documents and Settings\Alvaro\Mis documentos
      2017-11-18 20:28 - 2006-03-02 05:00 - 000000624 _____ C:\WINDOWS\win.ini
      2017-11-18 19:47 - 2017-10-10 18:51 - 000000192 ___SH C:\Documents and Settings\Administrador.PC-1\ntuser.ini
      2017-11-16 13:39 - 2017-03-22 11:16 - 000000000 ____D C:\Programas-3
      2017-11-10 14:54 - 2017-08-01 11:50 - 000000000 ____D C:\Documents and Settings\Alvaro\Datos de programa\vlc
      2017-11-10 14:43 - 2017-04-03 12:21 - 000010752 _____ C:\Documents and Settings\Alvaro\Configuración local\Datos de programa\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
      2017-11-09 12:38 - 2017-03-22 15:14 - 000000372 _____ C:\Documents and Settings\Alvaro\Mis documentos\spider.sav
      2017-11-07 10:14 - 2017-04-03 11:53 - 000000000 ____D C:\Archivos de programa\Lx_cats
      2017-11-03 21:03 - 2017-03-23 08:59 - 000001772 _____ C:\Documents and Settings\All Users\Escritorio\Adobe Reader XI.lnk
      2017-11-03 21:03 - 2017-03-23 08:58 - 000000000 ____D C:\Documents and Settings\All Users\Datos de programa\Adobe
      2017-11-03 20:39 - 2017-10-04 19:30 - 000000000 ____D C:\Documents and Settings\All Users\Datos de programa\VSO
      2017-10-31 10:13 - 2017-03-21 19:02 - 000000000 ___HD C:\Documents and Settings\Alvaro\Configuración local\Datos de programa
      2017-10-30 18:50 - 2017-03-23 09:00 - 000803328 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerApp.exe
      2017-10-30 18:50 - 2017-03-23 09:00 - 000144896 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerCPLApp.cpl
      2017-10-30 18:50 - 2017-03-23 09:00 - 000000000 ____D C:\Documents and Settings\Alvaro\Configuración local\Datos de programa\Adobe
      2017-10-30 18:50 - 2017-03-21 18:50 - 000000000 ____D C:\WINDOWS\system32\Macromed
      2017-10-29 19:44 - 2006-03-02 05:00 - 000613856 _____ C:\WINDOWS\system32\perfh00A.dat
      2017-10-29 19:44 - 2006-03-02 05:00 - 000134502 _____ C:\WINDOWS\system32\perfc00A.dat
      2017-10-29 19:43 - 2017-03-21 11:28 - 001411186 _____ C:\WINDOWS\system32\PerfStringBackup.INI
      2017-10-28 19:10 - 2017-03-21 19:02 - 000000000 ___RD C:\Documents and Settings\Alvaro\Mis documentos\Mis imágenes

      ==================== Files in the root of some directories =======

      2017-03-22 13:00 - 2017-03-22 13:00 - 000000024 ___SH () C:\Documents and Settings\Alvaro\Datos de programa\1D959CA221C7573.sys
      2017-10-04 19:30 - 2017-10-13 19:05 - 000087608 _____ () C:\Documents and Settings\Alvaro\Datos de programa\inst.exe
      2017-10-04 19:30 - 2017-10-13 19:05 - 000007887 _____ () C:\Documents and Settings\Alvaro\Datos de programa\pcouffin.cat
      2017-10-04 19:30 - 2017-10-13 19:05 - 000001144 _____ () C:\Documents and Settings\Alvaro\Datos de programa\pcouffin.inf
      2017-10-04 19:30 - 2017-10-13 19:05 - 000000055 _____ () C:\Documents and Settings\Alvaro\Datos de programa\pcouffin.log
      2017-10-04 19:30 - 2017-10-13 19:05 - 000047360 _____ (VSO Software) C:\Documents and Settings\Alvaro\Datos de programa\pcouffin.sys
      2017-03-22 13:00 - 2017-03-22 13:00 - 000000024 ___SH () C:\Documents and Settings\Alvaro\Datos de programa\System5908ConfigCollection.dat
      2017-04-03 12:21 - 2017-11-10 14:43 - 000010752 _____ () C:\Documents and Settings\Alvaro\Configuración local\Datos de programa\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
      2017-03-22 09:23 - 2017-03-22 09:23 - 000000135 _____ () C:\Documents and Settings\Alvaro\Configuración local\Datos de programa\fusioncache.dat
      2017-07-22 12:44 - 2017-07-22 12:44 - 000000218 _____ () C:\Documents and Settings\Alvaro\Configuración local\Datos de programa\recently-used.xbel
      2017-03-23 09:09 - 2017-03-23 09:18 - 000000662 _____ () C:\Documents and Settings\All Users\Datos de programa\hpzinstall.log

      ==================== Bamital & volsnap ======================

      (There is no automatic fix for files that do not pass verification.)

      C:\WINDOWS\explorer.exe => File is digitally signed
      C:\WINDOWS\system32\winlogon.exe => File is digitally signed
      C:\WINDOWS\system32\svchost.exe => File is digitally signed
      C:\WINDOWS\system32\services.exe => File is digitally signed
      C:\WINDOWS\system32\User32.dll => File is digitally signed
      C:\WINDOWS\system32\userinit.exe => File is digitally signed
      C:\WINDOWS\system32\rpcss.dll => File is digitally signed
      C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
      C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed

      ==================== End of FRST.txt ============================

    4. #4
      Usuario Avatar de Alvim
      Registrado
      ago 2007
      Ubicación
      México
      Mensajes
      69
      Adicionalmente te comento que tengo instalado Open Office

      Gracias por atender mi petición de ayuda

      @Miguelgrado

      Tengo otro problema, mi navegador predeterminado es Firefox y al acceder a cuentas de banco uso la ventana de protección y pagos en línea, pero ahora no se abre en Firefox, solo en el Explorer.
      Última edición por @Miguelgrado fecha: 25/11/17 a las 09:52:57

    5. #5
      Warrior Avatar de @Miguelgrado
      Registrado
      dic 2005
      Ubicación
      Asturias-España
      Mensajes
      19.424

      Re: Cómo elimino us-west-2.compute.amazonaws.com de mi PC?

      Falta el Addition.txt
      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.

    6. #6
      Usuario Avatar de Alvim
      Registrado
      ago 2007
      Ubicación
      México
      Mensajes
      69

      Re: Cómo elimino us-west-2.compute.amazonaws.com de mi PC?

      @MIguelgrado
      Es éste:

      Additional scan result of Farbar Recovery Scan Tool (x86) Version: 24-11-2017 01
      Ran by Alvaro (24-11-2017 21:32:56)
      Running from C:\Documents and Settings\Alvaro\Escritorio
      Microsoft Windows XP Professional Service Pack 3 (X86) (2017-03-22 00:58:19)
      Boot Mode: Normal
      ==========================================================


      ==================== Accounts: =============================

      Administrador (S-1-5-21-1844237615-616249376-839522115-500 - Administrator - Enabled) => %SystemDrive%\Documents and Settings\Administrador.PC-1
      Alvaro (S-1-5-21-1844237615-616249376-839522115-1003 - Administrator - Enabled) => %SystemDrive%\Documents and Settings\Alvaro
      Asistente de ayuda (S-1-5-21-1844237615-616249376-839522115-1000 - Limited - Disabled)
      ASPNET (S-1-5-21-1844237615-616249376-839522115-1006 - Limited - Enabled)
      Federico (S-1-5-21-1844237615-616249376-839522115-1004 - Administrator - Enabled)
      Invitado (S-1-5-21-1844237615-616249376-839522115-501 - Limited - Enabled)
      SUPPORT_388945a0 (S-1-5-21-1844237615-616249376-839522115-1002 - Limited - Disabled)

      ==================== Security Center ========================

      (If an entry is included in the fixlist, it will be removed.)

      AV: ESET Smart Security (Enabled - Up to date) {E5E70D32-0101-4F12-8FB0-D96ACA4F34C0}
      FW: Firewall personal de ESET (Disabled) {E5E70D32-0101-4340-86A3-A7B0F1C8FFE0}

      ==================== Installed Programs ======================

      (Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

      AB Commander LITE (HKLM\...\AB Commander LITE) (Version: - )
      ABBYY FineReader 8.0 Professional Edition (HKLM\...\{AAF80000-22B9-4CE9-98D6-2CCF359BAC07}) (Version: 8.00.1126.4609 - ABBYY Software House)
      Actualización de seguridad para el Reproductor de Windows Media (KB2378111) (HKLM\...\KB2378111_WM9) (Version: - Microsoft Corporation)
      Actualización de seguridad para el Reproductor de Windows Media (KB2803821-v2) (HKLM\...\KB2803821-v2_WM9) (Version: - Microsoft Corporation)
      Actualización de seguridad para el Reproductor de Windows Media (KB2834904-v2) (HKLM\...\KB2834904-v2_WM11) (Version: - Microsoft Corporation)
      Actualización de seguridad para el Reproductor de Windows Media (KB952069) (HKLM\...\KB952069_WM9) (Version: - Microsoft Corporation)
      Actualización de seguridad para el Reproductor de Windows Media (KB954155) (HKLM\...\KB954155_WM9) (Version: - Microsoft Corporation)
      Actualización de seguridad para el Reproductor de Windows Media (KB973540) (HKLM\...\KB973540_WM9) (Version: - Microsoft Corporation)
      Actualización de seguridad para el Reproductor de Windows Media (KB975558) (HKLM\...\KB975558_WM8) (Version: - Microsoft Corporation)
      Actualización de seguridad para el Reproductor de Windows Media (KB978695) (HKLM\...\KB978695_WM9) (Version: - Microsoft Corporation)
      Actualización de seguridad para el Reproductor de Windows Media 11 (KB954154) (HKLM\...\KB954154_WM11) (Version: - Microsoft Corporation)
      Actualización de seguridad para Microsoft Windows (KB2564958) (HKLM\...\KB2564958) (Version: - Microsoft Corporation)
      Actualización de seguridad para Windows Internet Explorer 8 (KB2510531) (HKLM\...\KB2510531-IE8) (Version: 1 - Microsoft Corporation)
      Actualización de seguridad para Windows Internet Explorer 8 (KB2909921) (HKLM\...\KB2909921-IE8) (Version: 1 - Microsoft Corporation)
      Actualización de seguridad para Windows XP (KB2115168) (HKLM\...\KB2115168) (Version: 1 - Microsoft Corporation)
      Actualización de seguridad para Windows XP (KB2229593) (HKLM\...\KB2229593) (Version: 1 - Microsoft Corporation)
      Actualización de seguridad para Windows XP (KB2296011) (HKLM\...\KB2296011) (Version: 1 - Microsoft Corporation)
      Actualización de seguridad para Windows XP (KB2347290) (HKLM\...\KB2347290) (Version: 1 - Microsoft Corporation)
      Actualización de seguridad para Windows XP (KB2387149) (HKLM\...\KB2387149) (Version: 1 - Microsoft Corporation)
      Actualización de seguridad para Windows XP (KB2393802) (HKLM\...\KB2393802) (Version: 1 - Microsoft Corporation)
      Actualización de seguridad para Windows XP (KB2419632) (HKLM\...\KB2419632) (Version: 1 - Microsoft Corporation)
      Actualización de seguridad para Windows XP (KB2423089) (HKLM\...\KB2423089) (Version: 1 - Microsoft Corporation)
      Actualización de seguridad para Windows XP (KB2443105) (HKLM\...\KB2443105) (Version: 1 - Microsoft Corporation)
      Actualización de seguridad para Windows XP (KB2478960) (HKLM\...\KB2478960) (Version: 1 - Microsoft Corporation)
      Actualización de seguridad para Windows XP (KB2478971) (HKLM\...\KB2478971) (Version: 1 - Microsoft Corporation)
      Actualización de seguridad para Windows XP (KB2479943) (HKLM\...\KB2479943) (Version: 1 - Microsoft Corporation)
      Actualización de seguridad para Windows XP (KB2481109) (HKLM\...\KB2481109) (Version: 1 - Microsoft Corporation)
      Actualización de seguridad para Windows XP (KB2483185) (HKLM\...\KB2483185) (Version: 1 - Microsoft Corporation)
      Actualización de seguridad para Windows XP (KB2485663) (HKLM\...\KB2485663) (Version: 1 - Microsoft Corporation)
      Actualización de seguridad para Windows XP (KB2506212) (HKLM\...\KB2506212) (Version: 1 - Microsoft Corporation)
      Actualización de seguridad para Windows XP (KB2507938) (HKLM\...\KB2507938) (Version: 1 - Microsoft Corporation)
      Actualización de seguridad para Windows XP (KB2508429) (HKLM\...\KB2508429) (Version: 1 - Microsoft Corporation)
      Actualización de seguridad para Windows XP (KB2509553) (HKLM\...\KB2509553) (Version: 1 - Microsoft Corporation)
      Actualización de seguridad para Windows XP (KB2510581) (HKLM\...\KB2510581) (Version: 1 - Microsoft Corporation) Hidden
      Actualización de seguridad para Windows XP (KB2535512) (HKLM\...\KB2535512) (Version: 1 - Microsoft Corporation)
      Actualización de seguridad para Windows XP (KB2536276-v2) (HKLM\...\KB2536276-v2) (Version: 2 - Microsoft Corporation)
      Actualización de seguridad para Windows XP (KB2544893-v2) (HKLM\...\KB2544893-v2) (Version: 2 - Microsoft Corporation)
      Actualización de seguridad para Windows XP (KB2566454) (HKLM\...\KB2566454) (Version: 1 - Microsoft Corporation)
      Actualización de seguridad para Windows XP (KB2570947) (HKLM\...\KB2570947) (Version: 1 - Microsoft Corporation)
      Actualización de seguridad para Windows XP (KB2584146) (HKLM\...\KB2584146) (Version: 1 - Microsoft Corporation)
      Actualización de seguridad para Windows XP (KB2585542) (HKLM\...\KB2585542) (Version: 1 - Microsoft Corporation)
      Actualización de seguridad para Windows XP (KB2592799) (HKLM\...\KB2592799) (Version: 1 - Microsoft Corporation)
      Actualización de seguridad para Windows XP (KB2598479) (HKLM\...\KB2598479) (Version: 1 - Microsoft Corporation)
      Actualización de seguridad para Windows XP (KB2603381) (HKLM\...\KB2603381) (Version: 1 - Microsoft Corporation)
      Actualización de seguridad para Windows XP (KB2619339) (HKLM\...\KB2619339) (Version: 1 - Microsoft Corporation)
      Actualización de seguridad para Windows XP (KB2620712) (HKLM\...\KB2620712) (Version: 1 - Microsoft Corporation)
      Actualización de seguridad para Windows XP (KB2631813) (HKLM\...\KB2631813) (Version: 1 - Microsoft Corporation)
      Actualización de seguridad para Windows XP (KB2653956) (HKLM\...\KB2653956) (Version: 1 - Microsoft Corporation)
      Actualización de seguridad para Windows XP (KB2655992) (HKLM\...\KB2655992) (Version: 1 - Microsoft Corporation)
      Actualización de seguridad para Windows XP (KB2659262) (HKLM\...\KB2659262) (Version: 1 - Microsoft Corporation)
      Actualización de seguridad para Windows XP (KB2661637) (HKLM\...\KB2661637) (Version: 1 - Microsoft Corporation)
      Actualización de seguridad para Windows XP (KB2676562) (HKLM\...\KB2676562) (Version: 1 - Microsoft Corporation)
      Actualización de seguridad para Windows XP (KB2686509) (HKLM\...\KB2686509) (Version: 1 - Microsoft Corporation)
      Actualización de seguridad para Windows XP (KB2691442) (HKLM\...\KB2691442) (Version: 1 - Microsoft Corporation)
      Actualización de seguridad para Windows XP (KB2698365) (HKLM\...\KB2698365) (Version: 1 - Microsoft Corporation)
      Actualización de seguridad para Windows XP (KB2705219-v2) (HKLM\...\KB2705219-v2) (Version: 2 - Microsoft Corporation)
      Actualización de seguridad para Windows XP (KB2712808) (HKLM\...\KB2712808) (Version: 1 - Microsoft Corporation)
      Actualización de seguridad para Windows XP (KB2719985) (HKLM\...\KB2719985) (Version: 1 - Microsoft Corporation)
      Actualización de seguridad para Windows XP (KB2723135-v2) (HKLM\...\KB2723135-v2) (Version: 2 - Microsoft Corporation)
      Actualización de seguridad para Windows XP (KB2727528) (HKLM\...\KB2727528) (Version: 1 - Microsoft Corporation)
      Actualización de seguridad para Windows XP (KB2757638) (HKLM\...\KB2757638) (Version: 1 - Microsoft Corporation)
      Actualización de seguridad para Windows XP (KB2770660) (HKLM\...\KB2770660) (Version: 1 - Microsoft Corporation)
      Actualización de seguridad para Windows XP (KB2780091) (HKLM\...\KB2780091) (Version: 1 - Microsoft Corporation)
      Actualización de seguridad para Windows XP (KB2802968) (HKLM\...\KB2802968) (Version: 1 - Microsoft Corporation)
      Actualización de seguridad para Windows XP (KB2807986) (HKLM\...\KB2807986) (Version: 1 - Microsoft Corporation)
      Actualización de seguridad para Windows XP (KB2813345) (HKLM\...\KB2813345) (Version: 1 - Microsoft Corporation)
      Actualización de seguridad para Windows XP (KB2820917) (HKLM\...\KB2820917) (Version: 1 - Microsoft Corporation)
      Actualización de seguridad para Windows XP (KB2834886) (HKLM\...\KB2834886) (Version: 1 - Microsoft Corporation)
      Actualización de seguridad para Windows XP (KB2847311) (HKLM\...\KB2847311) (Version: 1 - Microsoft Corporation)
      Actualización de seguridad para Windows XP (KB2850869) (HKLM\...\KB2850869) (Version: 1 - Microsoft Corporation)
      Actualización de seguridad para Windows XP (KB2859537) (HKLM\...\KB2859537) (Version: 1 - Microsoft Corporation)
      Actualización de seguridad para Windows XP (KB2862152) (HKLM\...\KB2862152) (Version: 1 - Microsoft Corporation)
      Actualización de seguridad para Windows XP (KB2862330) (HKLM\...\KB2862330) (Version: 1 - Microsoft Corporation)
      Actualización de seguridad para Windows XP (KB2862335) (HKLM\...\KB2862335) (Version: 1 - Microsoft Corporation)
      Actualización de seguridad para Windows XP (KB2864063) (HKLM\...\KB2864063) (Version: 1 - Microsoft Corporation)
      Actualización de seguridad para Windows XP (KB2868038) (HKLM\...\KB2868038) (Version: 1 - Microsoft Corporation)
      Actualización de seguridad para Windows XP (KB2868626) (HKLM\...\KB2868626) (Version: 1 - Microsoft Corporation)
      Actualización de seguridad para Windows XP (KB2876217) (HKLM\...\KB2876217) (Version: 1 - Microsoft Corporation)
      Actualización de seguridad para Windows XP (KB2876331) (HKLM\...\KB2876331) (Version: 1 - Microsoft Corporation)
      Actualización de seguridad para Windows XP (KB2879017) (HKLM\...\KB2879017) (Version: 1 - Microsoft Corporation) Hidden
      Actualización de seguridad para Windows XP (KB2892075) (HKLM\...\KB2892075) (Version: 1 - Microsoft Corporation)
      Actualización de seguridad para Windows XP (KB2893294) (HKLM\...\KB2893294) (Version: 1 - Microsoft Corporation)
      Actualización de seguridad para Windows XP (KB2898715) (HKLM\...\KB2898715) (Version: 1 - Microsoft Corporation)
      Actualización de seguridad para Windows XP (KB2900986) (HKLM\...\KB2900986) (Version: 1 - Microsoft Corporation)
      Actualización de seguridad para Windows XP (KB2909212) (HKLM\...\KB2909212) (Version: 1 - Microsoft Corporation) Hidden
      Actualización de seguridad para Windows XP (KB2914368) (HKLM\...\KB2914368) (Version: 1 - Microsoft Corporation)
      Actualización de seguridad para Windows XP (KB2916036) (HKLM\...\KB2916036) (Version: 1 - Microsoft Corporation)
      Actualización de seguridad para Windows XP (KB2922229) (HKLM\...\KB2922229) (Version: 1 - Microsoft Corporation)
      Actualización de seguridad para Windows XP (KB2929961) (HKLM\...\KB2929961) (Version: 1 - Microsoft Corporation)
      Actualización de seguridad para Windows XP (KB2930275) (HKLM\...\KB2930275) (Version: 1 - Microsoft Corporation)
      Actualización de seguridad para Windows XP (KB4012583) (HKLM\...\KB4012583) (Version: 1 - Microsoft Corporation)
      Actualización de seguridad para Windows XP (KB4012598) (HKLM\...\KB4012598) (Version: 1 - Microsoft Corporation)
      Actualización de seguridad para Windows XP (KB923561) (HKLM\...\KB923561) (Version: 1 - Microsoft Corporation)
      Actualización de seguridad para Windows XP (KB923789) (HKLM\...\KB923789) (Version: - Microsoft Corporation)
      Actualización de seguridad para Windows XP (KB941569) (HKLM\...\KB941569) (Version: - Microsoft Corporation)
      Actualización de seguridad para Windows XP (KB946648) (HKLM\...\KB946648) (Version: 1 - Microsoft Corporation)
      Actualización de seguridad para Windows XP (KB950762) (HKLM\...\KB950762) (Version: 1 - Microsoft Corporation)
      Actualización de seguridad para Windows XP (KB950974) (HKLM\...\KB950974) (Version: 1 - Microsoft Corporation)
      Actualización de seguridad para Windows XP (KB951376-v2) (HKLM\...\KB951376-v2) (Version: 2 - Microsoft Corporation)
      Actualización de seguridad para Windows XP (KB952004) (HKLM\...\KB952004) (Version: 1 - Microsoft Corporation)
      Actualización de seguridad para Windows XP (KB952954) (HKLM\...\KB952954) (Version: 1 - Microsoft Corporation)
      Actualización de seguridad para Windows XP (KB956572) (HKLM\...\KB956572) (Version: 1 - Microsoft Corporation)
      Actualización de seguridad para Windows XP (KB956844) (HKLM\...\KB956844) (Version: 1 - Microsoft Corporation)
      Actualización de seguridad para Windows XP (KB959426) (HKLM\...\KB959426) (Version: 1 - Microsoft Corporation)
      Actualización de seguridad para Windows XP (KB960803) (HKLM\...\KB960803) (Version: 1 - Microsoft Corporation)
      Actualización de seguridad para Windows XP (KB960859) (HKLM\...\KB960859) (Version: 1 - Microsoft Corporation)
      Actualización de seguridad para Windows XP (KB969059) (HKLM\...\KB969059) (Version: 1 - Microsoft Corporation)
      Actualización de seguridad para Windows XP (KB970430) (HKLM\...\KB970430) (Version: 1 - Microsoft Corporation)
      Actualización de seguridad para Windows XP (KB971657) (HKLM\...\KB971657) (Version: 1 - Microsoft Corporation)
      Actualización de seguridad para Windows XP (KB972270) (HKLM\...\KB972270) (Version: 1 - Microsoft Corporation)
      Actualización de seguridad para Windows XP (KB973507) (HKLM\...\KB973507) (Version: 1 - Microsoft Corporation)
      Actualización de seguridad para Windows XP (KB973869) (HKLM\...\KB973869) (Version: 1 - Microsoft Corporation)
      Actualización de seguridad para Windows XP (KB973904) (HKLM\...\KB973904) (Version: 1 - Microsoft Corporation)
      Actualización de seguridad para Windows XP (KB974112) (HKLM\...\KB974112) (Version: 1 - Microsoft Corporation)
      Actualización de seguridad para Windows XP (KB974318) (HKLM\...\KB974318) (Version: 1 - Microsoft Corporation)
      Actualización de seguridad para Windows XP (KB974392) (HKLM\...\KB974392) (Version: 1 - Microsoft Corporation)
      Actualización de seguridad para Windows XP (KB974571) (HKLM\...\KB974571) (Version: 1 - Microsoft Corporation)
      Actualización de seguridad para Windows XP (KB975025) (HKLM\...\KB975025) (Version: 1 - Microsoft Corporation)
      Actualización de seguridad para Windows XP (KB975467) (HKLM\...\KB975467) (Version: 1 - Microsoft Corporation)
      Actualización de seguridad para Windows XP (KB975560) (HKLM\...\KB975560) (Version: 1 - Microsoft Corporation)
      Actualización de seguridad para Windows XP (KB975713) (HKLM\...\KB975713) (Version: 1 - Microsoft Corporation) Hidden
      Actualización de seguridad para Windows XP (KB977816) (HKLM\...\KB977816) (Version: 1 - Microsoft Corporation)
      Actualización de seguridad para Windows XP (KB977914) (HKLM\...\KB977914) (Version: 1 - Microsoft Corporation)
      Actualización de seguridad para Windows XP (KB978338) (HKLM\...\KB978338) (Version: 1 - Microsoft Corporation)
      Actualización de seguridad para Windows XP (KB978542) (HKLM\...\KB978542) (Version: 1 - Microsoft Corporation)
      Actualización de seguridad para Windows XP (KB978706) (HKLM\...\KB978706) (Version: 1 - Microsoft Corporation)
      Actualización de seguridad para Windows XP (KB979309) (HKLM\...\KB979309) (Version: 1 - Microsoft Corporation)
      Actualización de seguridad para Windows XP (KB979482) (HKLM\...\KB979482) (Version: 1 - Microsoft Corporation)
      Actualización de seguridad para Windows XP (KB979687) (HKLM\...\KB979687) (Version: 1 - Microsoft Corporation)
      Actualización de seguridad para Windows XP (KB981997) (HKLM\...\KB981997) (Version: 1 - Microsoft Corporation)
      Actualización de seguridad para Windows XP (KB982132) (HKLM\...\KB982132) (Version: 1 - Microsoft Corporation)
      Actualización de seguridad para Windows XP (KB982665) (HKLM\...\KB982665) (Version: 1 - Microsoft Corporation)
      Actualización para Windows Internet Explorer 8 (KB2598845) (HKLM\...\KB2598845-IE8) (Version: 1 - Microsoft Corporation)
      Actualización para Windows Internet Explorer 8 (KB2632503) (HKLM\...\KB2632503-IE8) (Version: 1 - Microsoft Corporation)
      Actualización para Windows Internet Explorer 8 (KB976749) (HKLM\...\KB976749-IE8) (Version: 1 - Microsoft Corporation)
      Actualización para Windows XP (KB2345886) (HKLM\...\KB2345886) (Version: 1 - Microsoft Corporation)
      Actualización para Windows XP (KB2492386) (HKLM\...\KB2492386) (Version: 1 - Microsoft Corporation)
      Actualización para Windows XP (KB2749655) (HKLM\...\KB2749655) (Version: 1 - Microsoft Corporation)
      Actualización para Windows XP (KB2808679) (HKLM\...\KB2808679) (Version: 1 - Microsoft Corporation)
      Actualización para Windows XP (KB2904266) (HKLM\...\KB2904266) (Version: 1 - Microsoft Corporation)
      Actualización para Windows XP (KB2934207) (HKLM\...\KB2934207) (Version: 1 - Microsoft Corporation)
      Actualización para Windows XP (KB951978) (HKLM\...\KB951978) (Version: 1 - Microsoft Corporation) Hidden
      Actualización para Windows XP (KB955759) (HKLM\...\KB955759) (Version: 1 - Microsoft Corporation)
      Actualización para Windows XP (KB968389) (HKLM\...\KB968389) (Version: 1 - Microsoft Corporation)
      Actualización para Windows XP (KB971029) (HKLM\...\KB971029) (Version: 1 - Microsoft Corporation)
      Actualización para Windows XP (KB973815) (HKLM\...\KB973815) (Version: 1 - Microsoft Corporation)
      Adobe Flash Player 27 NPAPI (HKLM\...\Adobe Flash Player NPAPI) (Version: 27.0.0.183 - Adobe Systems Incorporated)
      Adobe Reader XI (11.0.08) - Español (HKLM\...\{AC76BA86-7AD7-1034-7B44-AB0000000001}) (Version: 11.0.08 - Adobe Systems Incorporated)
      Adobe Shockwave Player 12.2 (HKLM\...\Adobe Shockwave Player) (Version: 12.2.9.199 - Adobe Systems, Inc.)
      AIMP (HKLM\...\AIMP) (Version: v4.13.1897, 25.06.2017 - AIMP DevTeam)
      Audacity 2.1.3 (HKLM\...\Audacity®_is1) (Version: 2.1.3 - Audacity Team)
      Autodesk DWG TrueView 2014 (HKLM\...\DWG TrueView 2014) (Version: 19.1.18.0 - Autodesk)
      CCleaner (HKLM\...\CCleaner) (Version: 4.16 - Piriform)
      CDBurnerXP (HKLM\...\{7E265513-8CDA-4631-B696-F40D983F3B07}_is1) (Version: 4.5.7.6521 - CDBurnerXP)
      CorePLS_Full_QFolder (HKLM\...\{8C0118CC-F720-45FF-A4DA-44AD77B2E73C}) (Version: 1.00.0000 - Hewlett-Packard) Hidden
      CorePLS_Min_QFolder (HKLM\...\{6441FECE-0E73-4326-81BF-68503E897820}) (Version: 1.00.0000 - Hewlett-Packard) Hidden
      CustomerResearchQFolder (HKLM\...\{6F5E2F4A-377D-4700-B0E3-8F7F7507EA15}) (Version: 1.00.0000 - Hewlett-Packard) Hidden
      DWG TrueView 2014 (HKLM\...\{5783F2D7-D028-0409-0000-0060B0CE6BBA}) (Version: 19.1.18.0 - Autodesk) Hidden
      ESET Smart Security (HKLM\...\{894E3708-C476-4E2C-AF25-CF8BE0B08FAB}) (Version: 10.1.219.1 - ESET, spol. s r.o.)
      Estimaciones (HKLM\...\{0F0D1CB5-F9B0-4482-B146-D49791A1A88B}) (Version: - )
      Estimaciones2009 (HKLM\...\{8A02E71C-28A4-4A03-9A67-E733CFED544E}) (Version: 1.00.2009 - )
      FileAlyzer 2 (HKLM\...\{29D3773E-54F4-23C2-D523-236A4453B845}_is1) (Version: 2.0.5.57 - Safer Networking Limited)
      Glary Utilities 5.88 (HKLM\...\Glary Utilities 5) (Version: 5.88.0.109 - Glarysoft Ltd)
      Google Update Helper (HKLM\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.5 - Google Inc.) Hidden
      High Definition Audio Driver Package - KB888111 (HKLM\...\KB888111WXPSP2) (Version: 20040219.000000 - Microsoft Corporation)
      HP Extended Capabilities 6.0 (HKLM\...\HPExtendedCapabilities) (Version: 6.0 - HP)
      HP LaserJet P2015 Series 1.0 (HKLM\...\HP LaserJet P2015) (Version: 1.0 - HP)
      HP Software Update (HKLM\...\{ECFDD6BD-E0C0-41CC-A171-E6D6AF4C0E93}) (Version: 3.0.6.003 - Hewlett-Packard)
      hppFonts (HKLM\...\{69E6C13B-CF6B-47A6-B7A5-77FE82B2CB40}) (Version: 000.106.00040 - Hewlett-Packard) Hidden
      hppIOFiles (HKLM\...\{561D20B1-766E-4EA5-8A1D-B7357D903673}) (Version: 001.001.00024 - Hewlett-Packard) Hidden
      hppLJP2015 (HKLM\...\{135BA9A6-495A-4FE9-B1A1-AB4DA449CAB1}) (Version: 000.104.00224 - Hewlett-Packard) Hidden
      hppManualsP2015 (HKLM\...\{F38D0F99-1BFC-47AB-AC36-8D9D43700CFB}) (Version: 000.104.00210 - Nombre de su organización) Hidden
      hppMSRedist (HKLM\...\{58ECE031-9AAD-4011-B34A-BC78E77527E2}) (Version: 1.01.0000 - Hewlett-Packard) Hidden
      hppTLBXFXP2015 (HKLM\...\{7A178F2E-92F6-437C-A709-69685D1C0F2B}) (Version: 001.000.00012 - Hewlett-Packard) Hidden
      hppusgP2015 (HKLM\...\{CFB61D8C-D651-4D7C-80B4-C78676A0AF1F}) (Version: 001.000.00012 - Hewlett-Packard) Hidden
      hppWebRegMM (HKLM\...\{EDAE4F43-833C-443B-8DB5-129F897DF3E8}) (Version: 000.001.00001 - Hewlett-Packard) Hidden
      hpzTLBXFX (HKLM\...\{93C069D4-2F86-4570-A6DF-BFABBA1E4AFD}) (Version: 002.002.00170 - Hewlett-Packard) Hidden
      Inkscape 0.92.1 (HKLM\...\Inkscape) (Version: 0.92.1 - Inkscape Project)
      Intel® Driver & Support Assistant (HKLM\...\{01f3f6b8-1a81-4b10-b51f-f69af12e1d69}) (Version: 3.0.0.9 - Intel)
      IsoBuster 2.3 (HKLM\...\IsoBuster_is1) (Version: 2.3 - Smart Projects)
      Java 8 Update 151 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F32180151F0}) (Version: 8.0.1510.12 - Oracle Corporation)
      jv16 PowerTools 2014 (HKLM\...\jv16 PowerTools 2014) (Version: - Macecraft Software)
      Kit de instalación automatizada de Windows (HKLM\...\{31E8F586-4EF7-4500-844D-BA8756474FF1}) (Version: 1.1.0.0 - Microsoft Corporation)
      Lexmark 8300 Series (HKLM\...\Lexmark 8300 Series) (Version: - )
      Llenado2009 (HKLM\...\{B4AA596D-A3AA-449E-92FD-D2666B5588AF}) (Version: 1.00.2009 - )
      Malware Hunter 1.48.0.442 (HKLM\...\Malware Hunter) (Version: 1.48.0.442 - Glarysoft Ltd)
      Malwarebytes versión 3.3.1.2183 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.3.1.2183 - Malwarebytes)
      MarketResearch (HKLM\...\{AAA11090-6E99-4655-AAF5-57EB5F677D0C}) (Version: 60.0.155.000 - Hewlett-Packard) Hidden
      Microsoft .NET Framework 1.1 (HKLM\...\Microsoft .NET Framework 1.1 (1033)) (Version: - )
      Microsoft .NET Framework 1.1 Security Update (KB2833941) (HKLM\...\M2833941) (Version: - )
      Microsoft .NET Framework 1.1 Spanish Language Pack (HKLM\...\{83169D43-4660-4347-BC95-E9D6E6BE65CE}) (Version: 1.1.4322 - Microsoft)
      Microsoft .NET Framework 2.0 Service Pack 2 (HKLM\...\{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}) (Version: 2.2.30729 - Microsoft Corporation)
      Microsoft .NET Framework 2.0 Service Pack 2 Language Pack - ESN (HKLM\...\{85AC0FFA-643D-3103-9310-7086ECB0C36C}) (Version: 2.2.30729 - Microsoft Corporation)
      Microsoft .NET Framework 3.0 Service Pack 2 (HKLM\...\{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}) (Version: 3.2.30729 - Microsoft Corporation)
      Microsoft .NET Framework 3.0 Service Pack 2 Language Pack - ESN (HKLM\...\{BDEDB104-4067-3D5E-81F0-DBEBFE856B45}) (Version: 3.2.30729 - Microsoft Corporation)
      Microsoft .NET Framework 3.5 SP1 (HKLM\...\Microsoft .NET Framework 3.5 SP1) (Version: - Microsoft Corporation)
      Microsoft .NET Framework 4 Client Profile (HKLM\...\Microsoft .NET Framework 4 Client Profile) (Version: 4.0.30319 - Microsoft Corporation)
      Microsoft .NET Framework 4 Extended (HKLM\...\Microsoft .NET Framework 4 Extended) (Version: 4.0.30319 - Microsoft Corporation)
      Microsoft Compression Client Pack 1.0 for Windows XP (HKLM\...\MSCompPackV1) (Version: 1 - Microsoft Corporation)
      Microsoft IntelliType Pro 7.1 (HKLM\...\{11E94FDB-C895-45F1-B756-1C9B8C36C8F1}) (Version: 7.10.344.0 - Microsoft)
      Microsoft Office Outlook 2003 con Business Contact Manager (actualización) (HKLM\...\{BA68600E-96D9-4E92-80F2-26B9681B5A66}) (Version: 2.0.4013.0 - Microsoft Corporation)
      Microsoft Office Small Business Edition 2003 (HKLM\...\{91CA0C0A-6000-11D3-8CFE-0150048383C9}) (Version: 11.0.8173.0 - Microsoft Corporation)
      Microsoft SQL Server Desktop Engine (MICROSOFTSMLBIZ) (HKLM\...\{E09B48B5-E141-427A-AB0C-D3605127224A}) (Version: 8.00.2039 - Microsoft Corporation)
      Microsoft User-Mode Driver Framework Feature Pack 1.0 (HKLM\...\Wudf01000) (Version: - Microsoft Corporation)
      Microsoft Visual C++ 2005 Redistributable (HKLM\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
      Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
      Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
      Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
      Mozilla Firefox 52.5.0 ESR (x86 es-MX) (HKLM\...\Mozilla Firefox 52.5.0 ESR (x86 es-MX)) (Version: 52.5.0 - Mozilla)
      MSXML 6.0 Parser (KB933579) (HKLM\...\{0A869A65-8C94-4F7C-A5C7-972D3C8CED9E}) (Version: 6.10.1200.0 - Microsoft Corporation)
      MyDefrag v4.3.1 (HKLM\...\MyDefrag v4.3.1_is1) (Version: 4.0.0.0 - J.C. Kessels)
      NVIDIA Drivers (HKLM\...\NVIDIA Drivers) (Version: 1.3 - )
      NVIDIA Performance Drivers (HKLM\...\{4C0A8D65-4286-4B58-87FE-18AD24289285}) (Version: 1.0.0.2 - NVIDIA Corporation)
      OpenOffice 4.1.3 (HKLM\...\{EF451311-C2EC-4245-911F-4847C2294A82}) (Version: 4.13.9783 - Apache Software Foundation)
      Paquete de compatibilidad para 2007 Office system (HKLM\...\{90120000-0020-0C0A-0000-0000000FF1CE}) (Version: 12.0.6514.5001 - Microsoft Corporation)
      Paquete de idioma de Microsoft .NET Framework 3.5 SP1 - esn (HKLM\...\Microsoft .NET Framework 3.5 Language Pack SP1 - esn) (Version: - Microsoft Corporation)
      Paquete de idioma de Microsoft .NET Framework 4 Client Profile ESN (HKLM\...\Microsoft .NET Framework 4 Client Profile ESN Language Pack) (Version: 4.0.30319 - Microsoft Corporation)
      Paquete de idioma de Microsoft .NET Framework 4 Extended ESN (HKLM\...\Microsoft .NET Framework 4 Extended ESN Language Pack) (Version: 4.0.30319 - Microsoft Corporation)
      PhotoScape (HKLM\...\PhotoScape) (Version: - )
      PowerArchiver 2010 Spanish (HKLM\...\{5824C4A9-2977-445C-9F7E-E1AF9089D077}) (Version: 11.50.66 - ConeXware, Inc.)
      PowerISO (HKLM\...\PowerISO) (Version: 6.9 - Power Software Ltd)
      Precios Unitarios 2003 (HKLM\...\{56E99D5A-77E5-430A-B7EA-C942A76F0A88}) (Version: - )
      Precios Unitarios 2003 (HKLM\...\{8E52612C-F094-49E8-ABDF-0CC9991E08E2}) (Version: - )
      Precios2009 (HKLM\...\{28F6F49C-D8F4-4326-A051-7D27C93BF051}) (Version: 1.00.2009 - Neodata) Hidden
      Precios2009 (HKLM\...\{E56324F4-955A-4385-B876-F1F926615D07}) (Version: 1.00.2009 - )
      PrintKey2000 (HKLM\...\PrintKey2000) (Version: - )
      Process Hacker 2.39 (r124) (HKLM\...\Process_Hacker2_is1) (Version: 2.39.0.124 - wj32)
      Product_SF_Full_QFolder (HKLM\...\{1F73D672-6175-4A1D-B3C1-420439D03D0F}) (Version: 1.00.0000 - Hewlett-Packard) Hidden
      Product_SF_Min_QFolder (HKLM\...\{414C803A-6115-4DB6-BD4E-FD81EA6BC71C}) (Version: 1.00.0000 - Hewlett-Packard) Hidden
      Realtek High Definition Audio Driver (HKLM\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 5.10.0.5683 - Realtek Semiconductor Corp.)
      RegAlyzer (HKLM\...\{296B2D8E-CE82-92AF-B2E8-A646E7CB78A2}_is1) (Version: 1.6.2.16 - Safer-Networking Ltd.)
      Reproductor de Windows Media 11 (HKLM\...\Windows Media Player) (Version: - )
      Revisión para el Reproductor de Windows Media 11 (KB939683) (HKLM\...\KB939683) (Version: - Microsoft Corporation)
      Revisión para Windows XP (KB942288-v3) (HKLM\...\KB942288-v3) (Version: 3 - Microsoft Corporation)
      Revisión para Windows XP (KB952287) (HKLM\...\KB952287) (Version: 1 - Microsoft Corporation)
      Revisión para Windows XP (KB961118) (HKLM\...\KB961118) (Version: 1 - Microsoft Corporation)
      Revo Uninstaller 2.0.3 (HKLM\...\{A28DBDA2-3CC7-4ADC-8BFE-66D7743C6C97}_is1) (Version: 2.0.3 - VS Revo Group, Ltd.)
      Sentinel Protection Installer 7.6.3 (HKLM\...\{954D9E32-BE47-43F4-9BFF-6DB46F17EAF2}) (Version: 7.6.3 - SafeNet, Inc.)
      SpywareBlaster 5.5 (HKLM\...\SpywareBlaster_is1) (Version: 5.5.0 - BrightFort LLC)
      swMSM (HKLM\...\{612C34C7-5E90-47D8-9B5C-0F717DD82726}) (Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
      Utilidad Intel(R) para identificación de procesadores (HKLM\...\{A92A4DB0-CD37-42D1-BE1D-603D53C24328}) (Version: 1.0.0.0 - Intel Corporation)
      VLC media player (HKLM\...\VLC media player) (Version: 2.2.6 - VideoLAN)
      WebFldrs XP (HKLM\...\{350C9C0A-3D7C-4EE8-BAA9-00BCB3D54227}) (Version: 9.50.7523 - Microsoft Corporation) Hidden
      Windows Genuine Advantage Notifications (KB905474) (HKLM\...\WgaNotify) (Version: 1.9.0040.0 - Microsoft Corporation)
      Windows Internet Explorer 8 (HKLM\...\ie8) (Version: 20090308.140743 - Microsoft Corporation)
      Windows Management Framework Core (HKLM\...\KB968930) (Version: - Microsoft Corporation)
      Windows Media Format 11 runtime (HKLM\...\Windows Media Format Runtime) (Version: - )
      Windows XP Service Pack 3 (HKLM\...\Windows XP Service Pack) (Version: 20080414.031514 - Microsoft Corporation)
      WinPcap 4.1.3 (HKLM\...\WinPcapInst) (Version: 4.1.0.2980 - CACE Technologies)
      WinRAR 5.50 (32-bit) (HKLM\...\WinRAR archiver) (Version: 5.50.0 - win.rar GmbH)
      XML Paper Specification Shared Components Language Pack 1.0 (HKLM\...\XPSEPSCLP) (Version: - Microsoft Corporation) Hidden

      ==================== Custom CLSID (Whitelisted): ==========================

      (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

      CustomCLSID: HKU\S-1-5-21-1844237615-616249376-839522115-1003_Classes\CLSID\{3faa4380-a399-11cf-a466-00805fe418f6}\InprocServer32 -> C:\Archivos de programa\Autodesk\DWG TrueView 2014\en-US\dwgviewrficn.dll (Autodesk, Inc.)
      CustomCLSID: HKU\S-1-5-21-1844237615-616249376-839522115-1003_Classes\CLSID\{6A221957-2D85-42A7-8E19-BE33950D1DEB}\localserver32 -> C:\Archivos de programa\Autodesk\DWG TrueView 2014\dwgviewr.exe (Autodesk, Inc.)
      ShellIconOverlayIdentifiers: [ MEGA (Pending)] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => -> No File
      ShellIconOverlayIdentifiers: [ MEGA (Synced)] -> {05B38830-F4E9-4329-978B-1DD28605D202} => -> No File
      ShellIconOverlayIdentifiers: [ MEGA (Syncing)] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => -> No File
      ShellIconOverlayIdentifiers: [AutoCAD Digital Signatures Icon Overlay Handler] -> {36A21736-36C2-4C11-8ACB-D4136F2B57BD} => C:\WINDOWS\system32\AcSignIcon.dll [2013-02-08] (Autodesk, Inc.)
      ContextMenuHandlers1: [AcShellExtension.AcContextMenuHandler] -> {2E7A2C6C-B938-40a4-BA1C-C7EC982DC202} => C:\Archivos de programa\Archivos comunes\Autodesk Shared\AcShellEx\AcShellExtension.dll [2013-02-08] (Autodesk)
      ContextMenuHandlers1: [AIMP] -> {1F77B17B-F531-44DB-ACA4-76ABB5010A28} => C:\Multimedia\AIMP\System\aimp_menu32.dll [2017-07-10] (AIMP DevTeam)
      ContextMenuHandlers1: [ESET Smart Security - Context Menu Shell Extension] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Archivos de programa\ESET\ESET Security\shellExt.dll [2017-06-13] (ESET)
      ContextMenuHandlers1: [Glary Utilities] -> {B3C418F8-922B-4faf-915E-59BC14448CF7} => C:\Def\Glary Utilities 5\ContextHandler.dll [2017-11-17] (Glarysoft Ltd)
      ContextMenuHandlers1: [Glarysoft MalwareHunter] -> {EA847F47-97F1-4D78-AB99-C63CA1C327F0} => C:\Archivos de programa\Glarysoft\Malware Hunter\MHContextHandler.dll [2017-06-29] (Glarysoft Ltd)
      ContextMenuHandlers1: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => -> No File
      ContextMenuHandlers1: [PowerArchiver] -> {d03d3e68-0c44-3d45-b15f-bcfd8a8b4c7e} => C:\Herram\PowerArchiver\PASHLEXT.DLL [2009-07-17] (ConeXware, Inc.)
      ContextMenuHandlers1: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} => C:\Archivos de programa\PowerISO\PWRISOSH.DLL [2017-06-06] (Power Software Ltd)
      ContextMenuHandlers1: [WinRAR] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Herram\WinRAR\rarext.dll [2017-08-11] (Alexander Roshal)
      ContextMenuHandlers2: [ESET Smart Security - Context Menu Shell Extension] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Archivos de programa\ESET\ESET Security\shellExt.dll [2017-06-13] (ESET)
      ContextMenuHandlers2: [Glary Utilities] -> {B3C418F8-922B-4faf-915E-59BC14448CF7} => C:\Def\Glary Utilities 5\ContextHandler.dll [2017-11-17] (Glarysoft Ltd)
      ContextMenuHandlers2: [Glarysoft MalwareHunter] -> {EA847F47-97F1-4D78-AB99-C63CA1C327F0} => C:\Archivos de programa\Glarysoft\Malware Hunter\MHContextHandler.dll [2017-06-29] (Glarysoft Ltd)
      ContextMenuHandlers2: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => -> No File
      ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Def\Malwarebytes\Anti-Malware\mbshlext.dll [2017-11-01] (Malwarebytes)
      ContextMenuHandlers3: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => -> No File
      ContextMenuHandlers4: [AIMP] -> {1F77B17B-F531-44DB-ACA4-76ABB5010A28} => C:\Multimedia\AIMP\System\aimp_menu32.dll [2017-07-10] (AIMP DevTeam)
      ContextMenuHandlers4: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => -> No File
      ContextMenuHandlers4: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} => C:\Archivos de programa\PowerISO\PWRISOSH.DLL [2017-06-06] (Power Software Ltd)
      ContextMenuHandlers5: [00nView] -> {1E9B04FB-F9E5-4718-997B-B8DA88302A48} => C:\WINDOWS\system32\nvshell.dll [2007-10-04] ()
      ContextMenuHandlers5: [NvCplDesktopContext] -> {A70C977A-BF00-412C-90B7-034C51DA2439} => C:\WINDOWS\system32\nvcpl.dll [2007-10-04] (NVIDIA Corporation)
      ContextMenuHandlers6: [ESET Smart Security - Context Menu Shell Extension] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Archivos de programa\ESET\ESET Security\shellExt.dll [2017-06-13] (ESET)
      ContextMenuHandlers6: [FineReader8] -> {F7091C74-EBB1-49D7-94C7-FE4886CCC18D} => C:\Programas-1\ABBYY FineReader 8.0 Professional Edition\FECMenu.dll [2007-01-26] (ABBYY Software)
      ContextMenuHandlers6: [Glary Utilities] -> {B3C418F8-922B-4faf-915E-59BC14448CF7} => C:\Def\Glary Utilities 5\ContextHandler.dll [2017-11-17] (Glarysoft Ltd)
      ContextMenuHandlers6: [Glarysoft MalwareHunter] -> {EA847F47-97F1-4D78-AB99-C63CA1C327F0} => C:\Archivos de programa\Glarysoft\Malware Hunter\MHContextHandler.dll [2017-06-29] (Glarysoft Ltd)
      ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Def\Malwarebytes\Anti-Malware\mbshlext.dll [2017-11-01] (Malwarebytes)
      ContextMenuHandlers6: [PowerArchiver] -> {d03d3e68-0c44-3d45-b15f-bcfd8a8b4c7e} => C:\Herram\PowerArchiver\PASHLEXT.DLL [2009-07-17] (ConeXware, Inc.)
      ContextMenuHandlers6: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} => C:\Archivos de programa\PowerISO\PWRISOSH.DLL [2017-06-06] (Power Software Ltd)
      ContextMenuHandlers6: [WinRAR] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Herram\WinRAR\rarext.dll [2017-08-11] (Alexander Roshal)

      ==================== Scheduled Tasks=============================

      (If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

      Task: C:\WINDOWS\Tasks\GlaryInitialize 5.job => C:\Def\Glary Utilities 5\Initialize.exe
      Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Archivos de programa\Google\Update\GoogleUpdate.exe
      Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Archivos de programa\Google\Update\GoogleUpdate.exe
      Task: C:\WINDOWS\Tasks\MyDefrag v4.3.1 Daily.job => C:\Herram\MyDefrag v4.3.1\Scripts\AutomaticDaily.MyD
      Task: C:\WINDOWS\Tasks\MyDefrag v4.3.1 Monthly.job => C:\Herram\MyDefrag v4.3.1\Scripts\AutomaticMonthly.MyD
      Task: C:\WINDOWS\Tasks\Notificación de inicio de sesión de fin de servicio de Microsoft Windows XP.job => C:\WINDOWS\system32\xp_eos.exe
      Task: C:\WINDOWS\Tasks\Notificación mensual de fin de servicio de Microsoft Windows XP.job => C:\WINDOWS\system32\xp_eos.exe

      ==================== Shortcuts & WMI ========================

      (The entries could be listed to be restored or removed.)


      Shortcut: C:\Documents and Settings\Alvaro\Entorno de red\Mis sitios Web en MSN\target.lnk -> hxxp://www.msnusers.co

      ==================== Loaded Modules (Whitelisted) ==============

      2008-12-11 06:08 - 2008-12-11 06:08 - 003575808 _____ () C:\Archivos de programa\NVIDIA Corporation\Performance Drivers\nvPDsvc.exe

      ==================== Alternate Data Streams (Whitelisted) =========

      (If an entry is included in the fixlist, only the ADS will be removed.)

      AlternateDataStreams: C:\Documents and Settings\All Users\Datos de programa\TEMP:5C321E34 [125]

      ==================== Safe Mode (Whitelisted) ===================

      (If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" value will be restored.)

      HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
      HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

      ==================== Association (Whitelisted) ===============

      (If an entry is included in the fixlist, the registry item will be restored to default or removed.)

      HKU\S-1-5-21-1844237615-616249376-839522115-1003\Software\Classes\.scr: DWGTrueViewScriptFile => C:\WINDOWS\system32\notepad.exe "%1"

      ==================== Internet Explorer trusted/restricted ===============

      (If an entry is included in the fixlist, it will be removed from the registry.)

      IE restricted site: HKU\S-1-5-21-1844237615-616249376-839522115-1003\...\008i.com -> 008i.com
      IE restricted site: HKU\S-1-5-21-1844237615-616249376-839522115-1003\...\008k.com -> 008k.com
      IE restricted site: HKU\S-1-5-21-1844237615-616249376-839522115-1003\...\00hq.com -> 00hq.com
      IE restricted site: HKU\S-1-5-21-1844237615-616249376-839522115-1003\...\0190-dialers.com -> 0190-dialers.com
      IE restricted site: HKU\S-1-5-21-1844237615-616249376-839522115-1003\...\01i.info -> 01i.info
      IE restricted site: HKU\S-1-5-21-1844237615-616249376-839522115-1003\...\02pmnzy5eo29bfk4.com -> 02pmnzy5eo29bfk4.com
      IE restricted site: HKU\S-1-5-21-1844237615-616249376-839522115-1003\...\0411dd.com -> 0411dd.com
      IE restricted site: HKU\S-1-5-21-1844237615-616249376-839522115-1003\...\0511zfhl.com -> 0511zfhl.com
      IE restricted site: HKU\S-1-5-21-1844237615-616249376-839522115-1003\...\05p.com -> 05p.com
      IE restricted site: HKU\S-1-5-21-1844237615-616249376-839522115-1003\...\0632qyw.com -> 0632qyw.com
      IE restricted site: HKU\S-1-5-21-1844237615-616249376-839522115-1003\...\07ic5do2myz3vzpk.com -> 07ic5do2myz3vzpk.com
      IE restricted site: HKU\S-1-5-21-1844237615-616249376-839522115-1003\...\08nigbmwk43i01y6.com -> 08nigbmwk43i01y6.com
      IE restricted site: HKU\S-1-5-21-1844237615-616249376-839522115-1003\...\093qpeuqpmz6ebfa.com -> 093qpeuqpmz6ebfa.com
      IE restricted site: HKU\S-1-5-21-1844237615-616249376-839522115-1003\...\0calories.net -> 0calories.net
      IE restricted site: HKU\S-1-5-21-1844237615-616249376-839522115-1003\...\0cj.net -> 0cj.net
      IE restricted site: HKU\S-1-5-21-1844237615-616249376-839522115-1003\...\0scan.com -> 0scan.com
      IE restricted site: HKU\S-1-5-21-1844237615-616249376-839522115-1003\...\1-britney-spears-nude.com -> 1-britney-spears-nude.com
      IE restricted site: HKU\S-1-5-21-1844237615-616249376-839522115-1003\...\1-domains-registrations.com -> 1-domains-registrations.com
      IE restricted site: HKU\S-1-5-21-1844237615-616249376-839522115-1003\...\1-se.com -> 1-se.com
      IE restricted site: HKU\S-1-5-21-1844237615-616249376-839522115-1003\...\1001movie.com -> 1001movie.com

      There are 6091 more sites.


      ==================== Hosts content: ===============================

      (If needed Hosts: directive could be included in the fixlist to reset Hosts.)

      2006-03-02 05:00 - 2006-03-02 05:00 - 000000792 _____ C:\WINDOWS\system32\Drivers\etc\hosts

      127.0.0.1 localhost

      ==================== Other Areas ============================

      (Currently there is no automatic fix for this section.)

      HKU\S-1-5-21-1844237615-616249376-839522115-1003\Control Panel\Desktop\\Wallpaper -> C:\Documents and Settings\Alvaro\Configuración local\Datos de programa\Microsoft\Wallpaper1.bmp
      DNS Servers: 192.168.1.254
      Windows Firewall is disabled.

      ==================== MSCONFIG/TASK MANAGER disabled items ==


      ==================== FirewallRules (Whitelisted) ===============

      (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

      StandardProfile\AuthorizedApplications: [C:\WINDOWS\system32\lxcjcoms.exe] => Enabled:8300 Series Server
      StandardProfile\AuthorizedApplications: [C:\WINDOWS\system32\spool\drivers\w32x86\3\lxcjpswx.exe] => Enabled:8300 Series Printer Status
      StandardProfile\AuthorizedApplications: [C:\WINDOWS\system32\dpvsetup.exe] => Enabled:Microsoft DirectPlay Voice Test
      StandardProfile\AuthorizedApplications: [C:\WINDOWS\system32\rundll32.exe] => Enabled:Ejecutar un archivo DLL como una aplicación
      StandardProfile\AuthorizedApplications: [C:\Archivos de programa\EPSON Software\Event Manager\EEventManager.exe] => Enabled:EEventManager.exe
      StandardProfile\AuthorizedApplications: [C:\Navegadores\Mozilla Firefox\firefox.exe] => Enabled:Firefox (C:\Navegadores\Mozilla Firefox)
      DomainProfile\GloballyOpenPorts: [1900:UDP] => :LocalSubNet:Enabled:@xpsp2res.dll,-22007
      DomainProfile\GloballyOpenPorts: [2869:TCP] => :LocalSubNet:Enabled:@xpsp2res.dll,-22008
      DomainProfile\GloballyOpenPorts: [139:TCP] => Enabled:@xpsp2res.dll,-22004
      DomainProfile\GloballyOpenPorts: [445:TCP] => Enabled:@xpsp2res.dll,-22005
      DomainProfile\GloballyOpenPorts: [137:UDP] => Enabled:@xpsp2res.dll,-22001
      DomainProfile\GloballyOpenPorts: [138:UDP] => Enabled:@xpsp2res.dll,-22002
      StandardProfile\GloballyOpenPorts: [1900:UDP] => :LocalSubNet:Enabled:@xpsp2res.dll,-22007
      StandardProfile\GloballyOpenPorts: [2869:TCP] => :LocalSubNet:Enabled:@xpsp2res.dll,-22008
      StandardProfile\GloballyOpenPorts: [139:TCP] => :LocalSubNet:Disabled:@xpsp2res.dll,-22004
      StandardProfile\GloballyOpenPorts: [445:TCP] => :LocalSubNet:Disabled:@xpsp2res.dll,-22005
      StandardProfile\GloballyOpenPorts: [137:UDP] => :LocalSubNet:Disabled:@xpsp2res.dll,-22001
      StandardProfile\GloballyOpenPorts: [138:UDP] => :LocalSubNet:Disabled:@xpsp2res.dll,-22002
      StandardProfile\GloballyOpenPorts: [5985:TCP] => Disabled:Administración remota de Windows
      StandardProfile\GloballyOpenPorts: [80:TCP] => Disabled:Administración remota de Windows - Modo de compatibilidad (HTTP de entrada)
      StandardProfile\GloballyOpenPorts: [135:TCP] => Enabled:TCP Port 135
      StandardProfile\GloballyOpenPorts: [5000:TCP] => Enabled:TCP Port 5000
      StandardProfile\GloballyOpenPorts: [5001:TCP] => Enabled:TCP Port 5001
      StandardProfile\GloballyOpenPorts: [5002:TCP] => Enabled:TCP Port 5002
      StandardProfile\GloballyOpenPorts: [5003:TCP] => Enabled:TCP Port 5003
      StandardProfile\GloballyOpenPorts: [5004:TCP] => Enabled:TCP Port 5004
      StandardProfile\GloballyOpenPorts: [5005:TCP] => Enabled:TCP Port 5005
      StandardProfile\GloballyOpenPorts: [5006:TCP] => Enabled:TCP Port 5006
      StandardProfile\GloballyOpenPorts: [5007:TCP] => Enabled:TCP Port 5007
      StandardProfile\GloballyOpenPorts: [5008:TCP] => Enabled:TCP Port 5008
      StandardProfile\GloballyOpenPorts: [5009:TCP] => Enabled:TCP Port 5009
      StandardProfile\GloballyOpenPorts: [5010:TCP] => Enabled:TCP Port 5010
      StandardProfile\GloballyOpenPorts: [5011:TCP] => Enabled:TCP Port 5011
      StandardProfile\GloballyOpenPorts: [5012:TCP] => Enabled:TCP Port 5012
      StandardProfile\GloballyOpenPorts: [5013:TCP] => Enabled:TCP Port 5013
      StandardProfile\GloballyOpenPorts: [5014:TCP] => Enabled:TCP Port 5014
      StandardProfile\GloballyOpenPorts: [5015:TCP] => Enabled:TCP Port 5015
      StandardProfile\GloballyOpenPorts: [5016:TCP] => Enabled:TCP Port 5016
      StandardProfile\GloballyOpenPorts: [5017:TCP] => Enabled:TCP Port 5017
      StandardProfile\GloballyOpenPorts: [5018:TCP] => Enabled:TCP Port 5018
      StandardProfile\GloballyOpenPorts: [5019:TCP] => Enabled:TCP Port 5019
      StandardProfile\GloballyOpenPorts: [5020:TCP] => Enabled:TCP Port 5020

      ==================== Restore Points =========================

      10-10-2017 19:14:58 Punto de control del sistema
      31-10-2017 10:12:50 Revo Uninstaller's restore point - Spotify
      03-11-2017 21:03:23 Revo Uninstaller's restore point - Adobe Reader XI (11.0.08) - Español
      16-11-2017 13:45:01 Revo Uninstaller's restore point - Malwarebytes versión 3.3.1.2183
      20-11-2017 14:25:19 JRT Pre-Junkware Removal
      20-11-2017 14:31:29 Revo Uninstaller's restore point - VSO Downloader 5.0.1.49
      20-11-2017 14:32:01 Revo Uninstaller's restore point - VSO ConvertXtoVideo Ultimate 2
      20-11-2017 14:37:32 JRT Pre-Junkware Removal
      24-11-2017 11:59:50 Revo Uninstaller's restore point - Mozilla Firefox 52.5.0 ESR (x86 es-MX)
      24-11-2017 21:06:03 Se ha instalado Windows XP KB4012598.

      ==================== Faulty Device Manager Devices =============

      Name: NVIDIA GeForce 7100 / NVIDIA nForce 630i
      Description: NVIDIA GeForce 7100 / NVIDIA nForce 630i
      Class Guid: {4D36E968-E325-11CE-BFC1-08002BE10318}
      Manufacturer: NVIDIA
      Service: nv
      Problem: : This device cannot find enough free resources that it can use. If you want to use this device, you will need to disable one of the other devices on this system. (Code12)
      Resolution: Two devices have been assigned the same input/output (I/O) ports, the same interrupt, or the same Direct Memory Access channel (either by the BIOS, the operating system, or a combination of the two). This error message can also appear if the BIOS did not allocate enough resources to the device (for example, if a universal serial bus (USB) controller does not get an interrupt from the BIOS because of a corrupt Multiprocessor System (MPS) table).
      You can use Device Manager to determine where the conflict is and disable the conflicting device.
      On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.


      ==================== Event log errors: =========================

      Application errors:
      ==================
      Error: (11/24/2017 09:32:20 PM) (Source: Application Error) (EventID: 1000) (User: )
      Description: Aplicación con errores: frst.exe, versión: 24.11.2017.1, módulo con error: frst.exe, versión 24.11.2017.1, dirección de error 0x000211de.
      Procesando suceso específico de medio para [frst.exe!ws!]

      Error: (11/19/2017 08:24:44 PM) (Source: Application Error) (EventID: 1000) (User: )
      Description: Aplicación con errores: processhacker.exe, versión: 2.39.0.124, módulo con error: networktools.dll, versión 1.6.0.0, dirección de error 0x00001c9c.
      Procesando suceso específico de medio para [processhacker.exe!ws!]

      Error: (11/16/2017 01:27:09 PM) (Source: Application Hang) (EventID: 1002) (User: )
      Description: Aplicación que no responde: taskmgr.exe, versión 5.1.2600.5512, módulo que no responde hungapp, versión 0.0.0.0, dirección que no responde 0x00000000.

      Error: (11/16/2017 01:26:03 PM) (Source: Application Error) (EventID: 1000) (User: )
      Description: Aplicación con errores: processhacker.exe, versión: 2.39.0.124, módulo con error: networktools.dll, versión 1.6.0.0, dirección de error 0x00001c9c.
      Procesando suceso específico de medio para [processhacker.exe!ws!]

      Error: (11/09/2017 01:54:24 PM) (Source: Application Error) (EventID: 1000) (User: )
      Description: Aplicación con errores: acrord32.exe, versión: 11.0.8.4, módulo con error: acrord32.dll, versión 11.0.8.4, dirección de error 0x000d750c.
      Procesando suceso específico de medio para [acrord32.exe!ws!]

      Error: (11/08/2017 11:53:45 AM) (Source: Application Error) (EventID: 1000) (User: )
      Description: Aplicación con errores: acrord32.exe, versión: 11.0.8.4, módulo con error: abcmdr32.dll, versión 0.3.0.3, dirección de error 0x0000bcc1.
      Procesando suceso específico de medio para [acrord32.exe!ws!]

      Error: (11/07/2017 09:56:57 AM) (Source: Microsoft Office 11) (EventID: 2000) (User: )
      Description: Accepted Safe Mode action : Microsoft Office Excel.

      Error: (10/24/2017 01:33:14 PM) (Source: Application Error) (EventID: 1000) (User: )
      Description: Aplicación con errores: WPFFontCache_v0400.exe, versión: 4.0.30319.1014, módulo con error: MSVCR100_CLR0400.dll, versión 10.0.30319.1, dirección de error 0x0008f33a.
      Procesando suceso específico de medio para [WPFFontCache_v0400.exe!ws!]

      Error: (10/13/2017 09:30:17 PM) (Source: Application Error) (EventID: 1000) (User: )
      Description: Aplicación con errores: vsodownloader.exe, versión: 5.0.1.49, módulo con error: vsodownloader.exe, versión 5.0.1.49, dirección de error 0x003b7641.
      Procesando suceso específico de medio para [vsodownloader.exe!ws!]

      Error: (10/13/2017 09:28:50 PM) (Source: Application Error) (EventID: 1000) (User: )
      Description: Aplicación con errores: vsodownloader.exe, versión: 5.0.1.49, módulo con error: vsodownloader.exe, versión 5.0.1.49, dirección de error 0x003b7641.
      Procesando suceso específico de medio para [vsodownloader.exe!ws!]


      System errors:
      =============
      Error: (11/24/2017 01:13:10 PM) (Source: DCOM) (EventID: 10005) (User: NT AUTHORITY)
      Description: DCOM ha obtenido un error "%%1084 = El servicio no puede iniciarse en modo a prueba de errores" al intentar iniciar el servicio EventSystem con argumentos ""
      para ejecutar el servidor:
      {1BE1F766-5536-11D1-B726-00C04FB926AF}

      Error: (11/24/2017 01:03:02 PM) (Source: DCOM) (EventID: 10005) (User: PC-1)
      Description: DCOM ha obtenido un error "%%1084 = El servicio no puede iniciarse en modo a prueba de errores" al intentar iniciar el servicio StiSvc con argumentos ""
      para ejecutar el servidor:
      {A1F4E726-8CF1-11D1-BF92-0060081ED811}

      Error: (11/24/2017 01:03:02 PM) (Source: DCOM) (EventID: 10005) (User: PC-1)
      Description: DCOM ha obtenido un error "%%1084 = El servicio no puede iniciarse en modo a prueba de errores" al intentar iniciar el servicio StiSvc con argumentos ""
      para ejecutar el servidor:
      {A1F4E726-8CF1-11D1-BF92-0060081ED811}

      Error: (11/24/2017 01:01:36 PM) (Source: DCOM) (EventID: 10005) (User: PC-1)
      Description: DCOM ha obtenido un error "%%1084 = El servicio no puede iniciarse en modo a prueba de errores" al intentar iniciar el servicio StiSvc con argumentos ""
      para ejecutar el servidor:
      {A1F4E726-8CF1-11D1-BF92-0060081ED811}

      Error: (11/24/2017 01:00:54 PM) (Source: DCOM) (EventID: 10005) (User: PC-1)
      Description: DCOM ha obtenido un error "%%1084 = El servicio no puede iniciarse en modo a prueba de errores" al intentar iniciar el servicio StiSvc con argumentos ""
      para ejecutar el servidor:
      {A1F4E726-8CF1-11D1-BF92-0060081ED811}

      Error: (11/24/2017 01:00:54 PM) (Source: DCOM) (EventID: 10005) (User: PC-1)
      Description: DCOM ha obtenido un error "%%1084 = El servicio no puede iniciarse en modo a prueba de errores" al intentar iniciar el servicio StiSvc con argumentos ""
      para ejecutar el servidor:
      {A1F4E726-8CF1-11D1-BF92-0060081ED811}

      Error: (11/24/2017 12:17:33 PM) (Source: DCOM) (EventID: 10005) (User: PC-1)
      Description: DCOM ha obtenido un error "%%1084 = El servicio no puede iniciarse en modo a prueba de errores" al intentar iniciar el servicio StiSvc con argumentos ""
      para ejecutar el servidor:
      {A1F4E726-8CF1-11D1-BF92-0060081ED811}

      Error: (11/24/2017 12:17:33 PM) (Source: DCOM) (EventID: 10005) (User: PC-1)
      Description: DCOM ha obtenido un error "%%1084 = El servicio no puede iniciarse en modo a prueba de errores" al intentar iniciar el servicio StiSvc con argumentos ""
      para ejecutar el servidor:
      {A1F4E726-8CF1-11D1-BF92-0060081ED811}

      Error: (11/24/2017 1238 PM) (Source: Service Control Manager) (EventID: 7026) (User: )
      Description: El controlador de inicialización siguiente no se cargó correctamente:
      eamonm
      ehdrv
      Fips
      GUBootStartup
      GUSBootStartup
      intelppm
      SCDEmu

      Error: (11/24/2017 12:09:53 PM) (Source: DCOM) (EventID: 10005) (User: NT AUTHORITY)
      Description: DCOM ha obtenido un error "%%1084 = El servicio no puede iniciarse en modo a prueba de errores" al intentar iniciar el servicio EventSystem con argumentos ""
      para ejecutar el servidor:
      {1BE1F766-5536-11D1-B726-00C04FB926AF}


      ==================== Memory info ===========================

      Processor: Intel(R) Core(TM)2 Duo CPU E8400 @ 3.00GHz
      Percentage of memory in use: 17%
      Total physical RAM: 3327.17 MB
      Available physical RAM: 2731.01 MB
      Total Virtual: 5216.23 MB
      Available Virtual: 4877.89 MB

      ==================== Drives ================================

      Drive c: (HD1) (Fixed) (Total:149.05 GB) (Free:43.8 GB) NTFS ==>[drive with boot components (Windows XP)]
      Drive d: (HD2) (Fixed) (Total:149.05 GB) (Free:10.34 GB) NTFS
      Drive e: (DD2) (Fixed) (Total:149.04 GB) (Free:11.4 GB) NTFS

      ==================== MBR & Partition Table ==================

      ========================================================
      Disk: 0 (Size: 149.1 GB) (Disk ID: DF86822A)
      Partition 1: (Active) - (Size=149 GB) - (Type=07 NTFS)

      ========================================================
      Disk: 1 (MBR Code: Windows XP) (Size: 149.1 GB) (Disk ID: 2B5B2B5B)
      Partition 1: (Not Active) - (Size=149 GB) - (Type=07 NTFS)

      ========================================================
      Disk: 2 (MBR Code: Windows XP) (Size: 149.1 GB) (Disk ID: 0F8E0F8E)
      Partition 1: (Not Active) - (Size=149 GB) - (Type=07 NTFS)

      ==================== End of Addition.txt ============================

    7. #7
      Warrior Avatar de @Miguelgrado
      Registrado
      dic 2005
      Ubicación
      Asturias-España
      Mensajes
      19.424

      Re: Cómo elimino us-west-2.compute.amazonaws.com de mi PC?

      No me respondiste a la pregunta si usabas Ubuntu??




      Realiza lo siguiente por favor:

      En el equipo con los demas programas cerrados:
      Inicio >>> Ejecutar >>>Escribes notepad.exe.

      Ahora copia y pega estos archivos dentro del Notepad: (Se excluye la palabra código)
      Código:
      Start
      CreateRestorePoint:
      CloseProcesses:
      
      HKLM\...\Run: [] => [X]
      S3 esihdrv; \??\C:\DOCUME~1\Alvaro\CONFIG~1\Temp\esihdrv.sys [X]
      S4 IntelIde; no ImagePath
      ShellIconOverlayIdentifiers: [ MEGA (Pending)] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => -> No File
      ShellIconOverlayIdentifiers: [ MEGA (Synced)] -> {05B38830-F4E9-4329-978B-1DD28605D202} => -> No File
      ShellIconOverlayIdentifiers: [ MEGA (Syncing)] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => -> No File
      ContextMenuHandlers1: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => -> No File
      ContextMenuHandlers2: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => -> No File
      ContextMenuHandlers3: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => -> No File
      ContextMenuHandlers4: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => -> No File
      Shortcut: C:\Documents and Settings\Alvaro\Entorno de red\Mis sitios Web en MSN\target.lnk -> hxxp://www.msnusers.co
      
      
      HOSTS:
      REMOVEPROXY:
      EMPTYTEMP:
      CMD: netsh winsock reset
      CMD: ipconfig /renew
      CMD: ipconfig /flushdns
      CMD: bitsadmin /reset /allusers
      END
      Lo guardas bajo el nombre de fixlist.txt en el escritorio <<< Esto es muy importante.<<

      Nota: Es importante que la Hta Frst.exe y fixlist.txt se encuentren en la misma ubicación (escritorio) o si no no trabajara.
      Ejecutas Frst.exe.

      Presionas el botón Fix y aguardas a que termine.
      La Herramienta guardara el reporte en tu escritorio (Fixlog.txt).
      ATENCION!!!! El siguiente Script de reparación fue hecho específicamente por un miembro del staff para este usuario, si tiene un problema similar por favor abra su propio tema para recibir ayuda personalizada. Usar Scripts de otros usuarios puede causar daños a su equipo
      Lo pegas en tu próxima respuesta, comentado como va el problema
      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.

    8. #8
      Usuario Avatar de Alvim
      Registrado
      ago 2007
      Ubicación
      México
      Mensajes
      69

      Re: Cómo elimino us-west-2.compute.amazonaws.com de mi PC?

      No uso Ubunto

    9. #9
      Usuario Avatar de Alvim
      Registrado
      ago 2007
      Ubicación
      México
      Mensajes
      69

      Re: Cómo elimino us-west-2.compute.amazonaws.com de mi PC?

      Este es el reporte Fixlog.txt

      Fix result of Farbar Recovery Scan Tool (x86) Version: 24-11-2017 01
      Ran by Alvaro (25-11-2017 12:12:48) Run:1
      Running from C:\Documents and Settings\Alvaro\Escritorio
      Loaded Profiles: Alvaro (Available Profiles: Alvaro & Administrador)
      Boot Mode: Normal

      ==============================================

      fixlist content:
      *****************
      Start
      CreateRestorePoint:
      CloseProcesses:

      HKLM\...\Run: [] => [X]
      S3 esihdrv; \??\C:\DOCUME~1\Alvaro\CONFIG~1\Temp\esihdrv.sys [X]
      S4 IntelIde; no ImagePath
      ShellIconOverlayIdentifiers: [ MEGA (Pending)] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => -> No File
      ShellIconOverlayIdentifiers: [ MEGA (Synced)] -> {05B38830-F4E9-4329-978B-1DD28605D202} => -> No File
      ShellIconOverlayIdentifiers: [ MEGA (Syncing)] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => -> No File
      ContextMenuHandlers1: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => -> No File
      ContextMenuHandlers2: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => -> No File
      ContextMenuHandlers3: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => -> No File
      ContextMenuHandlers4: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => -> No File
      Shortcut: C:\Documents and Settings\Alvaro\Entorno de red\Mis sitios Web en MSN\target.lnk -> hxxp://www.msnusers.co


      HOSTS:
      REMOVEPROXY:
      EMPTYTEMP:
      CMD: netsh winsock reset
      CMD: ipconfig /renew
      CMD: ipconfig /flushdns
      CMD: bitsadmin /reset /allusers
      END
      *****************

      Restore point was successfully created.
      Processes closed successfully.
      HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\ => value not found.
      HKLM\System\CurrentControlSet\Services\esihdrv => key removed successfully.
      esihdrv => service removed successfully.
      HKLM\System\CurrentControlSet\Services\IntelIde => key removed successfully.
      IntelIde => service removed successfully.
      HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ MEGA (Pending) => key removed successfully.
      HKLM\Software\Classes\CLSID\{056D528D-CE28-4194-9BA3-BA2E9197FF8C} => key not found.
      HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ MEGA (Synced) => key removed successfully.
      HKLM\Software\Classes\CLSID\{05B38830-F4E9-4329-978B-1DD28605D202} => key not found.
      HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ MEGA (Syncing) => key removed successfully.
      HKLM\Software\Classes\CLSID\{0596C850-7BDD-4C9D-AFDF-873BE6890637} => key not found.
      HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\MEGA (Context menu) => key removed successfully.
      HKLM\Software\Classes\CLSID\{0229E5E7-09E9-45CF-9228-0228EC7D5F17} => key not found.
      HKLM\Software\Classes\Drive\ShellEx\ContextMenuHandlers\MEGA (Context menu) => key removed successfully.
      HKLM\Software\Classes\CLSID\{0229E5E7-09E9-45CF-9228-0228EC7D5F17} => key not found.
      HKLM\Software\Classes\AllFileSystemObjects\ShellEx\ContextMenuHandlers\MEGA (Context menu) => key removed successfully.
      HKLM\Software\Classes\CLSID\{0229E5E7-09E9-45CF-9228-0228EC7D5F17} => key not found.
      HKLM\Software\Classes\Directory\ShellEx\ContextMenuHandlers\MEGA (Context menu) => key removed successfully.
      HKLM\Software\Classes\CLSID\{0229E5E7-09E9-45CF-9228-0228EC7D5F17} => key not found.
      C:\Documents and Settings\Alvaro\Entorno de red\Mis sitios Web en MSN\target.lnk => moved successfully
      C:\Windows\System32\Drivers\etc\hosts => moved successfully
      Hosts restored successfully.

      ========= RemoveProxy: =========

      HKU\S-1-5-21-1844237615-616249376-839522115-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings => value removed successfully.
      HKU\S-1-5-21-1844237615-616249376-839522115-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings => value removed successfully.


      ========= End of RemoveProxy: =========


      ========= netsh winsock reset =========


      Restablecer satisfactoriamente el cat*logo Winsock.
      Debe reiniciar el equipo para finalizar el restablecimiento.


      ========= End of CMD: =========


      ========= ipconfig /renew =========



      Configuración IP de Windows





      Adaptador Ethernet Conexión de área local :



      Sufijo de conexión específica DNS :

      Dirección IP. . . . . . . . . . . : 192.168.1.69

      Máscara de subred . . . . . . . . : 255.255.255.0

      Puerta de enlace predeterminada : 192.168.1.254


      ========= End of CMD: =========


      ========= ipconfig /flushdns =========



      Configuración IP de Windows



      Se vació con éxito la caché de resolución de DNS.


      ========= End of CMD: =========


      ========= bitsadmin /reset /allusers =========

      "bitsadmin" no se reconoce como un comando interno o externo,
      programa o archivo por lotes ejecutable.

      ========= End of CMD: =========


      =========== EmptyTemp: ==========

      BITS transfer queue => 0 B
      DOMStoree, IE Recovery, AppCache, Feeds Cache, Thumbcache => 247931 B
      Java, Flash, Steam htmlcache => 68638 B
      Windows/system/dllcache/drivers => 3112231 B
      Edge => 0 B
      Chrome => 0 B
      Firefox => 13608969 B
      Opera => 0 B

      Temp, IE cache, history, cookies, recent:
      Documents and Settings => 0 B
      Default User => 66164 B
      All Users => 0 B
      systemprofile => 115316 B
      LocalService => 66644 B
      NetworkService => 66164 B
      Alvaro => 11130370 B
      Administrador.PC-1 => 237874 B

      RecycleBin => 25376 B
      EmptyTemp: => 27.4 MB temporary data Removed.

      ================================


      The system needed a reboot.

      ==== End of Fixlog 12:13:32 ====

    10. #10
      Usuario Avatar de Alvim
      Registrado
      ago 2007
      Ubicación
      México
      Mensajes
      69

      Re: Cómo elimino us-west-2.compute.amazonaws.com de mi PC?

      Despúes de reiniciar, al iniciar Firefox continúa conectándose a varios sitiios, al conectarme a la web bancaria se conecta a muchos más y no se inicia la ventana de Protección de banca y pagos de Eset Smart Security

      Estos sitios al iniciar firefox:

      alg.exe (2572), localhost, 1034, , 39074, TCP, Listen
      ekrn.exe (1336), localhost, 30606, , 6359, TCP, Listen
      ekrn.exe (1336), pc-1, 1213, , , UDP,
      ekrn.exe (1336), pc-1, 1102, , , UDP,
      ekrn.exe (1336), localhost, 1070, , , UDP,
      ekrn.exe (1336), localhost, 30606, localhost, 1521, TCP, Established
      ekrn.exe (1336), pc-1, 1522, 104.24.31.22, 80, TCP, Established
      explorer.exe (724), localhost, 1098, , , UDP,
      firefox.exe (832), localhost, 1409, localhost, 1408, TCP, Established
      firefox.exe (832), localhost, 1408, localhost, 1409, TCP, Established
      firefox.exe (832), localhost, 1521, localhost, 30606, TCP, Established
      lsass.exe (1168), pc-1, 500, , , UDP,
      lsass.exe (1168), pc-1, 4500, , , UDP,
      svchost.exe (1516), pc-1, 135, , 38926, TCP, Listen
      svchost.exe (1640), pc-1, 123, , , UDP,
      svchost.exe (1640), localhost, 123, , , UDP,
      svchost.exe (1640), localhost, 1046, , , UDP,
      svchost.exe (2020), pc-1, 2869, , 8211, TCP, Listen
      svchost.exe (2020), pc-1, 1900, , , UDP,
      svchost.exe (2020), localhost, 1900, , , UDP,
      System (4), pc-1, 445, , 38958, TCP, Listen
      System (4), pc-1, 139, , 30856, TCP, Listen
      System (4), pc-1, 137, , , UDP,
      System (4), pc-1, 445, , , UDP,
      System (4), pc-1, 138, , , UDP,
      Waiting connections, localhost, 30606, localhost, 1515, TCP, Time wait
      Waiting connections, localhost, 30606, localhost, 1517, TCP, Time wait


      y éstos otros al conectarme a la web bancaria:


      alg.exe (2572), localhost, 1034, , 39074, TCP, Listen
      ekrn.exe (1336), localhost, 30606, , 6359, TCP, Listen
      ekrn.exe (1336), pc-1, 1213, , , UDP,
      ekrn.exe (1336), pc-1, 1102, , , UDP,
      ekrn.exe (1336), localhost, 1070, , , UDP,
      ekrn.exe (1336), localhost, 30606, localhost, 1533, TCP, Established
      ekrn.exe (1336), pc-1, 1524, server-13-32-168-49.dfw54.r.cloudfront.net, 443, TCP, Established
      ekrn.exe (1336), localhost, 30606, localhost, 1523, TCP, Established
      ekrn.exe (1336), localhost, 30606, localhost, 1525, TCP, Established
      ekrn.exe (1336), pc-1, 1527, server-13-32-168-49.dfw54.r.cloudfront.net, 443, TCP, Established
      ekrn.exe (1336), localhost, 30606, localhost, 1526, TCP, Established
      ekrn.exe (1336), pc-1, 1528, server-13-32-168-49.dfw54.r.cloudfront.net, 443, TCP, Established
      ekrn.exe (1336), localhost, 30606, localhost, 1529, TCP, Established
      ekrn.exe (1336), pc-1, 1531, server-13-32-168-49.dfw54.r.cloudfront.net, 443, TCP, Established
      ekrn.exe (1336), localhost, 30606, localhost, 1530, TCP, Established
      ekrn.exe (1336), pc-1, 1532, server-13-32-168-49.dfw54.r.cloudfront.net, 443, TCP, Established
      ekrn.exe (1336), pc-1, 1534, server-13-32-168-49.dfw54.r.cloudfront.net, 443, TCP, Established
      ekrn.exe (1336), localhost, 30606, localhost, 1535, TCP, Established
      ekrn.exe (1336), pc-1, 1542, ec2-34-249-232-228.eu-west-1.compute.amazonaws.com, 443, TCP, Established
      ekrn.exe (1336), localhost, 30606, localhost, 1541, TCP, Established
      ekrn.exe (1336), pc-1, 1536, sea15s11-in-f4.1e100.net, 443, TCP, Established
      ekrn.exe (1336), pc-1, 1546, a23-76-135-130.deploy.static.akamaitechnologies.com, 80, TCP, Established
      ekrn.exe (1336), localhost, 30606, localhost, 1545, TCP, Established
      ekrn.exe (1336), pc-1, 1550, a23-76-135-130.deploy.static.akamaitechnologies.com, 80, TCP, Established
      ekrn.exe (1336), localhost, 30606, localhost, 1549, TCP, Established
      ekrn.exe (1336), pc-1, 1568, qro01s13-in-f42.1e100.net, 80, TCP, Established
      ekrn.exe (1336), pc-1, 1565, 93.184.216.180, 80, TCP, Established
      ekrn.exe (1336), localhost, 30606, localhost, 1566, TCP, Established
      ekrn.exe (1336), pc-1, 1574, a23-54-235-27.deploy.static.akamaitechnologies.com, 80, TCP, Established
      ekrn.exe (1336), pc-1, 1552, a23-76-135-130.deploy.static.akamaitechnologies.com, 80, TCP, Established
      ekrn.exe (1336), localhost, 30606, localhost, 1551, TCP, Established
      ekrn.exe (1336), pc-1, 1576, a23-54-235-27.deploy.static.akamaitechnologies.com, 80, TCP, Established
      ekrn.exe (1336), pc-1, 1554, a23-76-135-130.deploy.static.akamaitechnologies.com, 80, TCP, Established
      ekrn.exe (1336), localhost, 30606, localhost, 1553, TCP, Established
      ekrn.exe (1336), localhost, 30606, localhost, 1569, TCP, Established
      ekrn.exe (1336), localhost, 30606, localhost, 1557, TCP, Established
      ekrn.exe (1336), localhost, 30606, localhost, 1573, TCP, Established
      ekrn.exe (1336), localhost, 30606, localhost, 1558, TCP, Established
      ekrn.exe (1336), localhost, 30606, localhost, 1575, TCP, Established
      ekrn.exe (1336), pc-1, 1559, 93.184.216.180, 80, TCP, Established
      ekrn.exe (1336), pc-1, 1572, ec2-54-66-250-9.ap-southeast-2.compute.amazonaws.com, 443, TCP, Established
      ekrn.exe (1336), localhost, 30606, localhost, 1563, TCP, Established
      ekrn.exe (1336), pc-1, 1567, qro01s13-in-f42.1e100.net, 80, TCP, Established
      ekrn.exe (1336), pc-1, 1583, ec2-184-169-178-107.us-west-1.compute.amazonaws.com, 80, TCP, Established
      ekrn.exe (1336), localhost, 30606, localhost, 1582, TCP, Established
      ekrn.exe (1336), localhost, 30606, localhost, 1599, TCP, Established
      ekrn.exe (1336), pc-1, 1585, ec2-184-169-178-107.us-west-1.compute.amazonaws.com, 80, TCP, Established
      ekrn.exe (1336), localhost, 30606, localhost, 1584, TCP, Established
      ekrn.exe (1336), pc-1, 1600, 93.184.216.180, 80, TCP, Established
      ekrn.exe (1336), localhost, 30606, localhost, 1601, TCP, Established
      ekrn.exe (1336), pc-1, 1608, 104.19.195.102, 443, TCP, Established
      ekrn.exe (1336), pc-1, 1587, ec2-184-169-178-107.us-west-1.compute.amazonaws.com, 80, TCP, Established
      ekrn.exe (1336), localhost, 30606, localhost, 1586, TCP, Established
      ekrn.exe (1336), localhost, 30606, localhost, 1602, TCP, Established
      ekrn.exe (1336), pc-1, 1588, ec2-184-169-159-179.us-west-1.compute.amazonaws.com, 80, TCP, Established
      ekrn.exe (1336), pc-1, 1603, 93.184.216.180, 80, TCP, Established
      ekrn.exe (1336), pc-1, 1604, 93.184.216.180, 80, TCP, Established
      ekrn.exe (1336), localhost, 30606, localhost, 1605, TCP, Established
      ekrn.exe (1336), localhost, 30606, localhost, 1589, TCP, Established
      ekrn.exe (1336), pc-1, 1591, ec2-184-72-52-192.us-west-1.compute.amazonaws.com, 80, TCP, Established
      ekrn.exe (1336), localhost, 30606, localhost, 1590, TCP, Established
      ekrn.exe (1336), pc-1, 1606, 93.184.216.180, 80, TCP, Established
      ekrn.exe (1336), pc-1, 1592, ec2-184-169-178-107.us-west-1.compute.amazonaws.com, 80, TCP, Established
      ekrn.exe (1336), localhost, 30606, localhost, 1607, TCP, Established
      ekrn.exe (1336), localhost, 30606, localhost, 1579, TCP, Established
      ekrn.exe (1336), pc-1, 1581, ec2-184-169-159-179.us-west-1.compute.amazonaws.com, 80, TCP, Established
      ekrn.exe (1336), localhost, 30606, localhost, 1580, TCP, Established
      ekrn.exe (1336), pc-1, 1612, qro01s13-in-f35.1e100.net, 80, TCP, Established
      ekrn.exe (1336), localhost, 30606, localhost, 1615, TCP, Established
      ekrn.exe (1336), pc-1, 1616, 104.24.31.22, 80, TCP, Established
      ekrn.exe (1336), localhost, 30606, localhost, 1609, TCP, Established
      ekrn.exe (1336), localhost, 30606, localhost, 1610, TCP, Established
      ekrn.exe (1336), pc-1, 1611, qro01s13-in-f35.1e100.net, 80, TCP, Established
      ekrn.exe (1336), pc-1, 1618, ec2-184-169-159-179.us-west-1.compute.amazonaws.com, 80, TCP, Established
      ekrn.exe (1336), localhost, 30606, localhost, 1617, TCP, Established
      ekrn.exe (1336), pc-1, 1622, ec2-184-169-159-179.us-west-1.compute.amazonaws.com, 80, TCP, Established
      ekrn.exe (1336), localhost, 30606, localhost, 1621, TCP, Established
      explorer.exe (724), localhost, 1098, , , UDP,
      firefox.exe (832), localhost, 1409, localhost, 1408, TCP, Established
      firefox.exe (832), localhost, 1408, localhost, 1409, TCP, Established
      firefox.exe (832), localhost, 1533, localhost, 30606, TCP, Established
      firefox.exe (832), localhost, 1523, localhost, 30606, TCP, Established
      firefox.exe (832), localhost, 1525, localhost, 30606, TCP, Established
      firefox.exe (832), localhost, 1526, localhost, 30606, TCP, Established
      firefox.exe (832), localhost, 1529, localhost, 30606, TCP, Established
      firefox.exe (832), localhost, 1530, localhost, 30606, TCP, Established
      firefox.exe (832), localhost, 1535, localhost, 30606, TCP, Established
      firefox.exe (832), localhost, 1541, localhost, 30606, TCP, Established
      firefox.exe (832), localhost, 1545, localhost, 30606, TCP, Established
      firefox.exe (832), localhost, 1549, localhost, 30606, TCP, Established
      firefox.exe (832), localhost, 1566, localhost, 30606, TCP, Established
      firefox.exe (832), localhost, 1551, localhost, 30606, TCP, Established
      firefox.exe (832), localhost, 1569, localhost, 30606, TCP, Established
      firefox.exe (832), localhost, 1553, localhost, 30606, TCP, Established
      firefox.exe (832), localhost, 1557, localhost, 30606, TCP, Established
      firefox.exe (832), localhost, 1573, localhost, 30606, TCP, Established
      firefox.exe (832), localhost, 1558, localhost, 30606, TCP, Established
      firefox.exe (832), localhost, 1575, localhost, 30606, TCP, Established
      firefox.exe (832), localhost, 1563, localhost, 30606, TCP, Established
      firefox.exe (832), localhost, 1582, localhost, 30606, TCP, Established
      firefox.exe (832), localhost, 1599, localhost, 30606, TCP, Established
      firefox.exe (832), localhost, 1584, localhost, 30606, TCP, Established
      firefox.exe (832), localhost, 1601, localhost, 30606, TCP, Established
      firefox.exe (832), localhost, 1602, localhost, 30606, TCP, Established
      firefox.exe (832), localhost, 1586, localhost, 30606, TCP, Established
      firefox.exe (832), localhost, 1605, localhost, 30606, TCP, Established
      firefox.exe (832), localhost, 1589, localhost, 30606, TCP, Established
      firefox.exe (832), localhost, 1590, localhost, 30606, TCP, Established
      firefox.exe (832), localhost, 1607, localhost, 30606, TCP, Established
      firefox.exe (832), localhost, 1579, localhost, 30606, TCP, Established
      firefox.exe (832), localhost, 1580, localhost, 30606, TCP, Established
      firefox.exe (832), localhost, 1615, localhost, 30606, TCP, Established
      firefox.exe (832), localhost, 1609, localhost, 30606, TCP, Established
      firefox.exe (832), localhost, 1610, localhost, 30606, TCP, Established
      firefox.exe (832), localhost, 1617, localhost, 30606, TCP, Established
      firefox.exe (832), localhost, 1621, localhost, 30606, TCP, Established
      lsass.exe (1168), pc-1, 500, , , UDP,
      lsass.exe (1168), pc-1, 4500, , , UDP,
      svchost.exe (1516), pc-1, 135, , 38926, TCP, Listen
      svchost.exe (1640), pc-1, 123, , , UDP,
      svchost.exe (1640), localhost, 123, , , UDP,
      svchost.exe (1640), localhost, 1046, , , UDP,
      svchost.exe (2020), pc-1, 2869, , 8211, TCP, Listen
      svchost.exe (2020), pc-1, 1900, , , UDP,
      svchost.exe (2020), localhost, 1900, , , UDP,
      System (4), pc-1, 445, , 38958, TCP, Listen
      System (4), pc-1, 139, , 30856, TCP, Listen
      System (4), pc-1, 137, , , UDP,
      System (4), pc-1, 445, , , UDP,
      System (4), pc-1, 138, , , UDP,
      Waiting connections, localhost, 30606, localhost, 1517, TCP, Time wait
      Waiting connections, localhost, 30606, localhost, 1521, TCP, Time wait
      Waiting connections, pc-1, 1544, a23-76-135-130.deploy.static.akamaitechnologies.com, 80, TCP, Time wait
      Waiting connections, localhost, 1537, localhost, 30606, TCP, Time wait
      Waiting connections, localhost, 1539, localhost, 30606, TCP, Time wait
      Waiting connections, pc-1, 1538, server-13-32-171-22.dfw54.r.cloudfront.net, 443, TCP, Time wait
      Waiting connections, pc-1, 1540, server-13-32-171-22.dfw54.r.cloudfront.net, 443, TCP, Time wait
      Waiting connections, pc-1, 1556, a23-76-135-130.deploy.static.akamaitechnologies.com, 80, TCP, Time wait
      Waiting connections, pc-1, 1548, a23-76-135-130.deploy.static.akamaitechnologies.com, 80, TCP, Time wait
      Waiting connections, pc-1, 1578, a23-54-235-27.deploy.static.akamaitechnologies.com, 80, TCP, Time wait
      Waiting connections, pc-1, 1571, ec2-54-66-250-9.ap-southeast-2.compute.amazonaws.com, 443, TCP, Time wait
      Waiting connections, pc-1, 1562, qro01s13-in-f42.1e100.net, 80, TCP, Time wait
      Waiting connections, localhost, 1560, localhost, 30606, TCP, Time wait
      Waiting connections, localhost, 1561, localhost, 30606, TCP, Time wait
      Waiting connections, localhost, 1577, localhost, 30606, TCP, Time wait
      Waiting connections, pc-1, 1564, qro01s13-in-f42.1e100.net, 80, TCP, Time wait
      Waiting connections, pc-1, 1598, ec2-184-169-178-107.us-west-1.compute.amazonaws.com, 80, TCP, Time wait
      Waiting connections, localhost, 1593, localhost, 30606, TCP, Time wait
      Waiting connections, pc-1, 1595, ec2-184-169-159-179.us-west-1.compute.amazonaws.com, 80, TCP, Time wait
      Waiting connections, localhost, 1594, localhost, 30606, TCP, Time wait
      Waiting connections, pc-1, 1597, ec2-184-169-178-107.us-west-1.compute.amazonaws.com, 80, TCP, Time wait
      Waiting connections, localhost, 1596, localhost, 30606, TCP, Time wait
      Waiting connections, localhost, 1613, localhost, 30606, TCP, Time wait
      Waiting connections, pc-1, 1614, 104.24.31.22, 80, TCP, Time wait
      Waiting connections, pc-1, 1620, ec2-184-169-159-179.us-west-1.compute.amazonaws.com, 80, TCP, Time wait
      Waiting connections, localhost, 1619, localhost, 30606, TCP, Time wait

    Página 1 de 3 123 ÚltimoÚltimo