• Registrarse
  • Iniciar sesión


  • Página 2 de 4 PrimeroPrimero 1234 ÚltimoÚltimo
    Resultados 11 al 20 de 31

    Como eliminiar Chromesearch?

    Hola Puede ser problema de windows 10, las actualizaciones los puede dejara algo tocados y quizás haga falta instalar de cero. Realiza los siguientes pasos: 1) Descarga HitmanPRO su manual de uso Ejecuta HitmanPRO , ...

    1. #11
      Moderadora Gral.
      Avatar de @Daniela
      Registrado
      abr 2011
      Ubicación
      España
      Mensajes
      24.919

      Re: Como eliminiar Chromesearch?

      Hola

      Puede ser problema de windows 10, las actualizaciones los puede dejara algo tocados y quizás haga falta instalar de cero.

      Realiza los siguientes pasos:

      1) Descarga HitmanPRO su manual de uso

      • Ejecuta HitmanPRO, (en Windows 7 u 8 ejecutar como "Administrador")
      • Presiona el botón: "Siguiente" en las dos pantallas para comenzar.
      • Una vez finalizado el escaneo HitmanPRO incluye 30 días gratuitos para la eliminación de los posibles malwares detectados.
      • En todo caso se puede con su reporte encontrar la ruta especifica de lo detectado y eliminar manualmente.
      • El reporte se genera presionando "Guardar Registro" en donde queramos, para luego abrirlo y copiarnos el contenido en este mismo tema.


      2) Realiza un escaneo en linea ESET Online Scanner

      • Desactiva el Antivirus
      • Después de realizar el escaneo, vuelves a activar el Antivirus
      • Descarga y ejecuta ESET Online (Ver Manual)
      • Marca las casillas de Eliminar las amenazas detectadas y analizar archivos.
      • Haz clic en Configuración adicional y tilda las casillas:
        - Analizar en busca de aplicaciones potencialmente indeseables,
        - Analizar en busca de aplicaciones potencialmente peligrosas
        - Activar la tecnología Anti-Stealth.
      • Pulsa en Iniciar para que empiece a descargar la base firmas de virus y posteriormente empiece a analizar tu sistema.
      • Cuando acabe haz clic en Finalizar
      • Localiza el reporte en C:\Archivos de programa\ESET\ESET Online Scanner\log y nos lo adjuntas en tu próxima respuesta.


      Para el reporte de la nueva versión de Eset Online
      • La ruta por defecto es: C:\users\%userprofile%\appdata\local\temp\log.txt
      • Así que primero tendras que mostrar Archivos y Carpetas Ocultos
      • Cuando lo hayas hecho podras acceder a la carpeta AppData de tu cuenta de usuario, abrela
      • Entras a la carpeta local y ahí encontraras la carpeta Temp
      • Dentro de este directorio debes encontrar el archivo log.txt
      • Ya sabes, abrelo con el bloc de notas, seleccionalo todo, copialo y pegalo en tu próxima respuesta


      Pega los reportes y comenta como sigue.

      Un saludo
      ✿◕‿◕✿ La impaciencia no es buena compañía ✿◕‿◕✿

      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.

    2. #12
      Usuario Avatar de aranttxa
      Registrado
      ene 2010
      Ubicación
      Vigo- Galicia-Spain
      Mensajes
      97

      Re: Como eliminiar Chromesearch?

      eliminación ok del malwarebytes al eliminar la cuenta. Ahora paso a intentar instalarlo de nuevo.


      2017-12-11 17:02:48.462 mb-clean:3.1.0.1031 @ Malwarebytes. All rights reserved.
      2017-12-11 17:02:51.275 Malwarebytes self-protection module is not installed.
      2017-12-11 17:02:51.275 Launching process:"C:\Program Files\Malwarebytes\Anti-Malware\unins000.exe" /LOG /VERYSILENT /SUPPRESSMSGBOXES /NORESTART /log="C:\Users\prueba\AppData\Local\Temp\Mbam3x.log"
      2017-12-11 17:04:09.799 >>>>>> Starting 2nd phase cleanup for Malwarebytes versión 3.3.1.2183 <<<<<<
      2017-12-11 17:04:09.799 HKLM\SYSTEM\CurrentControlSet\Services\ESProtectionDriver does not exist.
      2017-12-11 17:04:09.799 Trying to delete file or folder: C:\WINDOWS\system32\drivers\mbae64.sys
      2017-12-11 17:04:09.799 HKLM\SYSTEM\CurrentControlSet\Services\MBAMChameleon does not exist.
      2017-12-11 17:04:09.799 HKLM\SYSTEM\CurrentControlSet\Services\MBAMFarflt does not exist.
      2017-12-11 17:04:09.799 HKLM\SYSTEM\CurrentControlSet\Services\MBAMProtection does not exist.
      2017-12-11 17:04:09.799 HKLM\SYSTEM\CurrentControlSet\Services\MBAMService does not exist.
      2017-12-11 17:04:09.799 Trying to delete file or folder: C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe
      2017-12-11 17:04:09.799 HKLM\SYSTEM\CurrentControlSet\Services\MBAMSwissArmy does not exist.
      2017-12-11 17:04:09.799 HKLM\SYSTEM\CurrentControlSet\Services\MBAMWebProtection does not exist.
      2017-12-17 17:23:21.318 mb-clean:3.1.0.1031 @ Malwarebytes. All rights reserved.
      2017-12-17 17:23:23.350 No Malwarebytes software installed.
      2017-12-17 17:23:30.366 HKLM\SYSTEM\CurrentControlSet\Services\ESProtectionDriver does not exist.
      2017-12-17 17:23:30.366 HKLM\SYSTEM\CurrentControlSet\Services\MBAMChameleon does not exist.
      2017-12-17 17:23:30.366 HKLM\SYSTEM\CurrentControlSet\Services\MBAMFarflt does not exist.
      2017-12-17 17:23:30.366 HKLM\SYSTEM\CurrentControlSet\Services\MBAMProtection does not exist.
      2017-12-17 17:23:30.366 HKLM\SYSTEM\CurrentControlSet\Services\MBAMService does not exist.
      2017-12-17 17:23:30.366 HKLM\SYSTEM\CurrentControlSet\Services\MBAMSwissArmy does not exist.
      2017-12-17 17:23:30.366 HKLM\SYSTEM\CurrentControlSet\Services\MBAMWebProtection does not exist.
      2017-12-17 17:23:31.679 Trying to delete path C:\ProgramData\Malwarebytes\
      2017-12-17 17:23:31.695 Cannot delete path C:\ProgramData\Malwarebytes\, reason:(El sistema no puede encontrar la ruta especificada.(error=3))
      2017-12-17 17:23:31.695 Trying to delete path C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes\
      2017-12-17 17:23:31.695 Cannot delete path C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes\, reason:(El sistema no puede encontrar la ruta especificada.(error=3))
      2017-12-17 17:23:31.695 Trying to delete path C:\Program Files\Malwarebytes\Anti-Malware\
      2017-12-17 17:23:31.695 Cannot delete path C:\Program Files\Malwarebytes\Anti-Malware\, reason:(El sistema no puede encontrar la ruta especificada.(error=3))
      2017-12-17 17:23:31.695 Trying to delete REG key: HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService
      2017-12-17 17:23:31.695 Trying to delete REG key: HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService
      2017-12-17 17:23:31.695 --------END OF LOG FILE ----------
      2017-12-17 17:23:42.711 mb-clean:3.1.0.1031 @ Malwarebytes. All rights reserved.
      2017-12-17 17:23:44.805 No Malwarebytes software installed.
      2017-12-17 17:23:59.354 HKLM\SYSTEM\CurrentControlSet\Services\ESProtectionDriver does not exist.
      2017-12-17 17:23:59.354 HKLM\SYSTEM\CurrentControlSet\Services\MBAMChameleon does not exist.
      2017-12-17 17:23:59.354 HKLM\SYSTEM\CurrentControlSet\Services\MBAMFarflt does not exist.
      2017-12-17 17:23:59.354 HKLM\SYSTEM\CurrentControlSet\Services\MBAMProtection does not exist.
      2017-12-17 17:23:59.354 HKLM\SYSTEM\CurrentControlSet\Services\MBAMService does not exist.
      2017-12-17 17:23:59.354 HKLM\SYSTEM\CurrentControlSet\Services\MBAMSwissArmy does not exist.
      2017-12-17 17:23:59.354 HKLM\SYSTEM\CurrentControlSet\Services\MBAMWebProtection does not exist.
      2017-12-17 17:24:00.666 Trying to delete path C:\ProgramData\Malwarebytes\
      2017-12-17 17:24:00.666 Cannot delete path C:\ProgramData\Malwarebytes\, reason:(El sistema no puede encontrar la ruta especificada.(error=3))
      2017-12-17 17:24:00.682 Trying to delete path C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes\
      2017-12-17 17:24:00.682 Cannot delete path C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes\, reason:(El sistema no puede encontrar la ruta especificada.(error=3))
      2017-12-17 17:24:00.682 Trying to delete path C:\Program Files\Malwarebytes\Anti-Malware\
      2017-12-17 17:24:00.682 Cannot delete path C:\Program Files\Malwarebytes\Anti-Malware\, reason:(El sistema no puede encontrar la ruta especificada.(error=3))
      2017-12-17 17:24:00.682 --------END OF LOG FILE ----------

    3. #13
      Usuario Avatar de aranttxa
      Registrado
      ene 2010
      Ubicación
      Vigo- Galicia-Spain
      Mensajes
      97

      Re: Como eliminiar Chromesearch?

      Al intentar instalar de nuevo malwarebytes me ocurre lo mismo. Lo instalo, siempre en modo seguro pero al ejecutar no hace nada.
      Sigo ahora con lo siguiente q me habías indicado. Gracias

    4. #14
      Usuario Avatar de aranttxa
      Registrado
      ene 2010
      Ubicación
      Vigo- Galicia-Spain
      Mensajes
      97

      Re: Como eliminiar Chromesearch?

      log hitman

      Código:
      HitmanPro 3.7.20.286
      www.hitmanpro.com
      
         Computer name . . . . : MSI
         Windows . . . . . . . : 10.0.0.16299.X64/8
         User name . . . . . . : MSI\prueba
         UAC . . . . . . . . . : Enabled
         License . . . . . . . : Trial (31 days left)
      
         Scan date . . . . . . : 2017-12-17 17:33:39
         Scan mode . . . . . . : Normal
         Scan duration . . . . : 2m 39s
         Disk access mode  . . : Direct disk access (SRB)
         Cloud . . . . . . . . : Internet
         Reboot  . . . . . . . : Yes
      
         Threats . . . . . . . : 4
         Traces  . . . . . . . : 35
      
         Objects scanned . . . : 2.576.370
         Files scanned . . . . : 36.562
         Remnants scanned  . . : 610.762 files / 1.929.046 keys
      
      Malware _____________________________________________________________________
      
         C:\Program Files\StartWop PC Port\StartWop PC Port.dll -> PendingDelete
            Size . . . . . . . : 2.483.200 bytes
            Age  . . . . . . . : 79.0 days (2017-09-29 16:59:52)
            Entropy  . . . . . : 6.2
            SHA-256  . . . . . : 19C3712A6B91BA4FAAE66ABD3C1D2A2DEB6FB004F7AE33BF27C660A0EE005F9D
          > Bitdefender  . . . : Trojan.Ceram.Gen.1
          > Kaspersky  . . . . : HEUR:Trojan.Win64.Wdfload.gen
            Fuzzy  . . . . . . : 114.0
            Startup
               C:\WINDOWS\system32\Tasks\StartWop PC Port
      
         C:\Users\prueba\Desktop\Patch Adobe Universal CS4 a CC 2015\Patch Adobe Universal CS4 a CC2015.exe -> Quarantined
            Size . . . . . . . : 631.808 bytes
            Age  . . . . . . . : 6.0 days (2017-12-11 16:41:02)
            Entropy  . . . . . : 7.9
            SHA-256  . . . . . : 9EC96E0FACF95D1A08D4761AFF436DAC8318ABD008C7284A4A22347069E8284D
            Product  . . . . . : Universal Adobe Patcher
            Publisher  . . . . : PainteR
            Description  . . . : Universal Adobe Patcher
            Version  . . . . . : 1.5.0.0
            Copyright  . . . . : PainteR
            LanguageID . . . . : 1033
          > HitmanPro  . . . . : App/KeyGen-AAC
            Fuzzy  . . . . . . : 110.0
            Forensic Cluster
               -0.0s C:\Users\prueba\Desktop\Patch Adobe Universal CS4 a CC 2015\
                0.0s C:\Users\prueba\Desktop\Patch Adobe Universal CS4 a CC 2015\Patch Adobe Universal CS4 a CC2015.exe
                0.0s C:\Users\prueba\Desktop\0001.jpg
                0.0s C:\Users\prueba\Desktop\0002.jpg
                0.0s C:\Users\prueba\Desktop\17_04_18_hoja de firmas.pdf
                0.0s C:\Users\prueba\Desktop\2016_LECTURA CONTADORES_2017_11_05_CONTROL RECIBOS VENTANILLA 2.0.xlsm
                0.1s C:\Users\prueba\Desktop\aceptacion condiciones.doc
                0.1s C:\Users\prueba\Desktop\ae.guardamotor.a.exe
                0.1s C:\Users\prueba\Desktop\auga potable 2017.zip
                0.1s C:\Users\prueba\Desktop\auga potable 2017b.zip
                0.1s C:\Users\prueba\Desktop\auga-potable-2017.jpg
                0.1s C:\Users\prueba\Desktop\carlos TABLA PARA ENCHER DOS TIPOS DE CONTRATOS.docx
                0.1s C:\Users\prueba\Desktop\carlos TABLA PARA ENCHER DOS TIPOS DE CONTRATOSb.docx
                0.1s C:\Users\prueba\Desktop\fotos.txt
                0.1s C:\Users\prueba\Desktop\JDownloader 2.lnk
                0.1s C:\Users\prueba\Desktop\Orbit.lnk
                0.2s C:\Users\prueba\Desktop\RECIBOS 2º SEMESTRE 2016 VENTANILLA.pdf
                0.3s C:\Users\prueba\Desktop\TABLA PARA ENCHER DOS TIPOS DE CONTRATOS - Carlos Urrestarazu.docx
                0.3s C:\Users\prueba\Desktop\auga potable 2017\
                0.3s C:\Users\prueba\Desktop\auga potable 2017\auga potable 2017-1.jpg
                0.3s C:\Users\prueba\Desktop\auga potable 2017\auga potable 2017-2.jpg
                0.3s C:\Users\prueba\Desktop\auga potable 2017\recordatorio 2017-1.jpg
                0.3s C:\Users\prueba\Desktop\auga potable 2017b\
                0.3s C:\Users\prueba\Desktop\auga potable 2017b\auga potable 2017b-1.jpg
                0.3s C:\Users\prueba\Desktop\auga potable 2017b\auga potable 2017b-2.jpg
                0.3s C:\Users\prueba\Desktop\estastuto\
                0.3s C:\Users\prueba\Desktop\estastuto\11-05-27_Estatutos_COXAPO_ENVIADOS_AGUAS_GALICIA_Y_CONFEDERACION[2].doc
                0.3s C:\Users\prueba\Desktop\estastuto\12-02-27 Propuesta Martín Carmona 1.JPG
                0.3s C:\Users\prueba\Desktop\estastuto\12-02-27 Propuesta Martín Carmona 2.JPG
                0.3s C:\Users\prueba\Desktop\estastuto\12-02-27_Estatutos_Trabajo_Comisión_COXAPO.doc
                0.4s C:\Users\prueba\Desktop\estastuto\13-01-18 Estatutos Asociación Traídas (COXAPO) (2).doc
                0.4s C:\Users\prueba\Desktop\estastuto\14 10 16 V3 Estatutos Asociación Traídas (COXAGA) version carmona.doc
                0.4s C:\Users\prueba\Desktop\estastuto\14_10_16_Reglamentos coxapo-galicia.doc
                0.5s C:\Users\prueba\Desktop\estastuto\Borrador Estatutos Para las Comunidades de Aguas COXAPO_sin.docx
                0.7s C:\Users\prueba\Desktop\estastuto\consulta prohibicion uso agua.PDF
                0.7s C:\Users\prueba\Desktop\estastuto\DEMARCACION.jpg
                0.7s C:\Users\prueba\Desktop\estastuto\documentacion solicitud estatutos.PDF
                0.7s C:\Users\prueba\Desktop\estastuto\Modelo de Ordenanzas y Reglamentos de Comunidades de Usuarios.pdf
                0.7s C:\Users\prueba\Desktop\estastuto\obriga_pago_equitativo1.JPG
                0.7s C:\Users\prueba\Desktop\estastuto\obriga_pago_equitativo2.JPG
                0.7s C:\Users\prueba\Desktop\estastuto\PROCEDIMIENTO JURADO COMISION v4 socios.doc
                0.7s C:\Users\prueba\Desktop\estastuto\PROCEDIMIENTO JURADO exceso de consumo (1).doc
                0.8s C:\Users\prueba\Desktop\estastuto\PROCEDIMIENTO JURADO exceso de consumo (4).doc
                0.8s C:\Users\prueba\Desktop\estastuto\PROCEDIMIENTO JURADO exceso de consumo.doc
                0.8s C:\Users\prueba\Desktop\estastuto\PROCEDIMIENTO JURADO impagos v4 socios (3).doc
                0.8s C:\Users\prueba\Desktop\estastuto\PROHIBICIÓN DEL USO DEL AGUA.docx
                0.8s C:\Users\prueba\Desktop\estastuto\VO6 Modelo Estatutos COXAPO.pdf
                0.8s C:\Users\prueba\Desktop\estastuto\augas galicia\
                0.8s C:\Users\prueba\Desktop\estastuto\augas galicia\constitucion comunidad de usuarios.pdf
                0.8s C:\Users\prueba\Desktop\estastuto\augas galicia\ModeloConvenioCCUU_gl.pdf
                0.9s C:\Users\prueba\Desktop\estastuto\augas galicia\ModeloEstatutosCCUU_gl.pdf
                0.9s C:\Users\prueba\Desktop\estastuto\augas galicia\solicitude concesion.pdf
                0.9s C:\Users\prueba\Desktop\estastuto\CHMS\
                0.9s C:\Users\prueba\Desktop\estastuto\CHMS\concesion_abastecimiento_mod_01-12-2016.pdf
                0.9s C:\Users\prueba\Desktop\estastuto\CHMS\CONVENIO.doc
                0.9s C:\Users\prueba\Desktop\estastuto\CHMS\HOJA-INFORMATIVA-ACTUALIZADA.doc
                0.9s C:\Users\prueba\Desktop\estastuto\CHMS\ORDENANZAS_REGANTES.doc
                0.9s C:\Users\prueba\Desktop\estastuto\CHMS\ORDENANZAS_USUARIOS.doc
                1.0s C:\Users\prueba\Desktop\estastuto\CHMS\registro_aguas.pdf
                1.0s C:\Users\prueba\Desktop\estastuto\CHMS\SOLICITUD_ADAPTACIÓN_ACTUALIZADA.doc
                1.0s C:\Users\prueba\Desktop\estastuto\CHMS\SOLICITUD_CONSTITUCIÓN_ACTUALIZADA.doc
      
         C:\WINDOWS\SECOH-QAD.dll -> Quarantined
            Size . . . . . . . : 3.584 bytes
            Age  . . . . . . . : 79.0 days (2017-09-29 16:44:54)
            Entropy  . . . . . : 3.2
            SHA-256  . . . . . : 0398221231CFF97E1FDC03D357AC4610AFB8F3CDDE4C90A9EC4D7823B405699E
          > Kaspersky  . . . . : not-a-virus:NetTool.Win64.RPCHook.a
            Fuzzy  . . . . . . : 108.0
      
         C:\WINDOWS\Temp\g7E38.tmp.exe -> Quarantined
            Size . . . . . . . : 515.584 bytes
            Age  . . . . . . . : 2.1 days (2017-12-15 14:06:43)
            Entropy  . . . . . : 6.4
            SHA-256  . . . . . : C14C0139B2D80800F509E9C8EA9A6043295163E8435DA139E7BCBA3A52A0652F
            Running processes  : 12568
          > Bitdefender  . . . : Gen:Variant.Mikey.76327
            Fuzzy  . . . . . . : 114.0
            Network Ports
               192.168.0.19:49847	185.107.80.30:9999
            Forensic Cluster
                0.0s C:\Windows\Temp\g7E38.tmp.exe
                1.1s C:\ProgramData\Killer\Icons\5872ade496f634377225ef5ee15ea942.png
      
      
      Cookies _____________________________________________________________________
      
         C:\Users\prueba\AppData\Local\Google\Chrome\User Data\Default\Cookies:112.2o7.net
         C:\Users\prueba\AppData\Local\Google\Chrome\User Data\Default\Cookies:addthis.com
         C:\Users\prueba\AppData\Local\Google\Chrome\User Data\Default\Cookies:agkn.com
         C:\Users\prueba\AppData\Local\Google\Chrome\User Data\Default\Cookies:atdmt.com
         C:\Users\prueba\AppData\Local\Google\Chrome\User Data\Default\Cookies:bluekai.com
         C:\Users\prueba\AppData\Local\Google\Chrome\User Data\Default\Cookies:demdex.net
         C:\Users\prueba\AppData\Local\Google\Chrome\User Data\Default\Cookies:dotomi.com
         C:\Users\prueba\AppData\Local\Google\Chrome\User Data\Default\Cookies:doubleclick.net
         C:\Users\prueba\AppData\Local\Google\Chrome\User Data\Default\Cookies:dpm.demdex.net
         C:\Users\prueba\AppData\Local\Google\Chrome\User Data\Default\Cookies:everesttech.net
         C:\Users\prueba\AppData\Local\Google\Chrome\User Data\Default\Cookies:imrworldwide.com
         C:\Users\prueba\AppData\Local\Google\Chrome\User Data\Default\Cookies:krxd.net
         C:\Users\prueba\AppData\Local\Google\Chrome\User Data\Default\Cookies:mathtag.com
         C:\Users\prueba\AppData\Local\Google\Chrome\User Data\Default\Cookies:mxptint.net
         C:\Users\prueba\AppData\Local\Google\Chrome\User Data\Default\Cookies:outbrain.com
         C:\Users\prueba\AppData\Local\Google\Chrome\User Data\Default\Cookies:prisacom.112.2o7.net
         C:\Users\prueba\AppData\Local\Google\Chrome\User Data\Default\Cookies:rfihub.com
         C:\Users\prueba\AppData\Local\Google\Chrome\User Data\Default\Cookies:rlcdn.com
         C:\Users\prueba\AppData\Local\Google\Chrome\User Data\Default\Cookies:scorecardresearch.com
         C:\Users\prueba\AppData\Local\Google\Chrome\User Data\Default\Cookies:visualdna.com
         C:\Users\prueba\AppData\Local\Google\Chrome\User Data\Default\Cookies:w55c.net
         C:\Users\prueba\AppData\Local\Google\Chrome\User Data\Default\Cookies:www.googleadservices.com
         C:\Users\prueba\AppData\Roaming\Mozilla\Firefox\Profiles\cp3oow21.default\cookies.sqlite:a1.adform.net
         C:\Users\prueba\AppData\Roaming\Mozilla\Firefox\Profiles\cp3oow21.default\cookies.sqlite:adform.net
         C:\Users\prueba\AppData\Roaming\Mozilla\Firefox\Profiles\cp3oow21.default\cookies.sqlite:doubleclick.net
         C:\Users\prueba\AppData\Roaming\Mozilla\Firefox\Profiles\cp3oow21.default\cookies.sqlite:scorecardresearch.com
         C:\Users\prueba\AppData\Roaming\Mozilla\Firefox\Profiles\cp3oow21.default\cookies.sqlite:www.googleadservices.com

    5. #15
      Usuario Avatar de aranttxa
      Registrado
      ene 2010
      Ubicación
      Vigo- Galicia-Spain
      Mensajes
      97

      Re: Como eliminiar Chromesearch?

      log corto de eset
      C:\$Recycle.Bin\S-1-5-21-2708372172-2702831193-2062053845-1001\$RENF59D.rar una variante de Win32/HackTool.Patcher.CH aplicación potencialmente no segura eliminado
      C:\Program Files (x86)\Cheat Engine 6.4\standalonephase1.dat una variante de Win32/HackTool.CheatEngine.AF aplicación potencialmente no segura desinfectado por eliminación
      C:\Program Files (x86)\SCS Software\American Truck Simulator - Heavy Cargo Pack\bin\win_x86\steam_api.dll una variante de Win32/Packed.VMProtect.ABO troyano desinfectado por eliminación
      C:\Windows\SECOH-QAD.exe Win64/HackKMS.C aplicación potencialmente no segura desinfectado por eliminación
      C:\Windows\Installer\398fe.msi una variante de Win32/Systweak.L aplicación potencialmente no deseada,una variante de Win32/Systweak.N aplicación potencialmente no deseada eliminado
      C:\Windows\System32\drivers\etc\hosts Win32/Qhost troyano desinfectado por eliminación

    6. #16
      Usuario Avatar de aranttxa
      Registrado
      ene 2010
      Ubicación
      Vigo- Galicia-Spain
      Mensajes
      97

      Re: Como eliminiar Chromesearch?

      Por cierto sigue la pagina que comentábamos de búsqueda.

      Log de appdata de eset

      17:43:50 # product=EOS
      # version=8
      # flags=0
      # ESETOnlineScanner_ESL.exe=2.0.19.0
      # EOSSerial=9dc9738ff05f4c4b8b7f9b3dabe30222
      # end=init
      # utc_time=2017-12-17 16:43:50
      # local_time=2017-12-17 17:43:50 (+0100, Hora estándar romance)
      # country="Spain"
      # osver=10.0.16299 NT
      17:45:28 Updating
      17:45:28 Update Init
      17:45:29 Update Download
      17:47:35 esets_scanner_reload returned 0
      17:47:35 g_uiModuleBuild: 35763
      17:47:35 Update Finalize
      17:47:35 Call m_esets_charon_send
      17:47:35 Call m_esets_charon_destroy
      17:47:35 Updated modules version: 35763
      17:47:44 Call m_esets_charon_setup_create
      17:47:44 Call m_esets_charon_create
      17:47:44 m_esets_charon_create OK
      17:47:44 Call m_esets_charon_start_send_thread
      17:47:44 Call m_esets_charon_setup_set
      17:47:44 m_esets_charon_setup_set OK
      17:47:44 Scanner engine: 35763
      18:32:41 # product=EOS
      # version=8
      # flags=0
      # ESETOnlineScanner_ESL.exe=2.0.19.0
      # EOSSerial=9dc9738ff05f4c4b8b7f9b3dabe30222
      # engine=35763
      # end=finished
      # remove_checked=true
      # archives_checked=true
      # unwanted_checked=true
      # unsafe_checked=true
      # antistealth_checked=true
      # sfx_checked=true
      # utc_time=2017-12-17 17:32:41
      # local_time=2017-12-17 18:32:41 (+0100, Hora estándar romance)
      # country="Spain"
      # lang=13322
      # osver=10.0.16299 NT
      # compatibility_mode_1=''
      # compatibility_mode=5893 16776573 100 94 3488 6839482 0 0
      # scanned=2
      # found=6
      # cleaned=6
      # scan_time=2704
      sh=0000000000000000000000000000000000000000 ft=- fh=0000000000000000 vn="una variante de Win32/HackTool.Patcher.CH aplicación potencialmente no segura (eliminado)" ac=C fn="C:\$Recycle.Bin\S-1-5-21-2708372172-2702831193-2062053845-1001\$RENF59D.rar"
      sh=0000000000000000000000000000000000000000 ft=- fh=0000000000000000 vn="una variante de Win32/HackTool.CheatEngine.AF aplicación potencialmente no segura (desinfectado por eliminación)" ac=C fn="C:\Program Files (x86)\Cheat Engine 6.4\standalonephase1.dat"
      sh=0000000000000000000000000000000000000000 ft=- fh=0000000000000000 vn="una variante de Win32/Packed.VMProtect.ABO troyano (desinfectado por eliminación)" ac=C fn="C:\Program Files (x86)\SCS Software\American Truck Simulator - Heavy Cargo Pack\bin\win_x86\steam_api.dll"
      sh=0000000000000000000000000000000000000000 ft=- fh=0000000000000000 vn="Win64/HackKMS.C aplicación potencialmente no segura (desinfectado por eliminación)" ac=C fn="C:\Windows\SECOH-QAD.exe"
      sh=0000000000000000000000000000000000000000 ft=- fh=0000000000000000 vn="una variante de Win32/Systweak.L aplicación potencialmente no deseada,una variante de Win32/Systweak.N aplicación potencialmente no deseada (eliminado)" ac=C fn="C:\Windows\Installer\398fe.msi"
      sh=0000000000000000000000000000000000000000 ft=- fh=0000000000000000 vn="Win32/Qhost troyano (desinfectado por eliminación)" ac=C fn="C:\Windows\System32\drivers\etc\hosts"

    7. #17
      Moderadora Gral.
      Avatar de @Daniela
      Registrado
      abr 2011
      Ubicación
      España
      Mensajes
      24.919

      Re: Como eliminiar Chromesearch?

      Hola

      Descarga Farbar Recovery Scan Tool segun la arquitectura de tu sistema (32 o 64 bits)

      • La guardas en el escritorio >> Esto es muy importante..
      • Doble clic para ejecutar Frst.exe. (Si usas Windows Vista/7/8 o 10 presiona clic derecho y selecciona "Ejecutar como Administrador.")
      • En la ventana del Disclaimer, presiona Yes.

      • En la nueva ventana que se abre, presiona el botón Scan y espera paciente a que concluya el análisis.
      • Se abrirán dos (2) archivos (Logs), Frst.txt y Addition.txt, estos estarán grabados en tu escritorio.

      • Para terminar abres los archivos Frst.txt y Addition.Txt copia y pega todo su contenido en tu próxima respuesta. Utiliza dos mensajes si te dice que es muy largo.


      Un saludo
      ✿◕‿◕✿ La impaciencia no es buena compañía ✿◕‿◕✿

      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.

    8. #18
      Usuario Avatar de aranttxa
      Registrado
      ene 2010
      Ubicación
      Vigo- Galicia-Spain
      Mensajes
      97

      Re: Como eliminiar Chromesearch?

      Additional scan result of Farbar Recovery Scan Tool (x64) Version: 23-12-2017 01
      Ran by prueba (24-12-2017 18:18:18)
      Running from C:\Users\prueba\Desktop
      Windows 10 Home Version 1709 16299.98 (X64) (2017-11-28 20:06:21)
      Boot Mode: Normal
      ==========================================================


      ==================== Accounts: =============================

      Administrador (S-1-5-21-2708372172-2702831193-2062053845-500 - Administrator - Disabled)
      DefaultAccount (S-1-5-21-2708372172-2702831193-2062053845-503 - Limited - Disabled)
      Invitado (S-1-5-21-2708372172-2702831193-2062053845-501 - Limited - Disabled)
      prueba (S-1-5-21-2708372172-2702831193-2062053845-1003 - Administrator - Enabled) => C:\Users\prueba
      WDAGUtilityAccount (S-1-5-21-2708372172-2702831193-2062053845-504 - Limited - Disabled)

      ==================== Security Center ========================

      (If an entry is included in the fixlist, it will be removed.)

      AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
      AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

      ==================== Installed Programs ======================

      (Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

      Actualización de NVIDIA 28.0.0.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 28.0.0.0 - NVIDIA Corporation) Hidden
      Adobe Acrobat DC (HKLM-x32\...\{AC76BA86-1033-FFFF-7760-0C0F074E4100}) (Version: 18.009.20050 - Adobe Systems Incorporated)
      Adobe Audition CC 2017 (HKLM-x32\...\AUDT_10_1_1) (Version: 10.1.1 - Adobe Systems Incorporated)
      Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 4.3.0.256 - Adobe Systems Incorporated)
      Adobe Illustrator CC 2017 (HKLM-x32\...\ILST_21_1_0) (Version: 21.1.0 - Adobe Systems Incorporated)
      Adobe InDesign CC 2017 (HKLM-x32\...\IDSN_12_1_0) (Version: 12.1.0 - Adobe Systems Incorporated)
      Adobe Lightroom (HKLM-x32\...\{8048A5DF-8A70-5BE1-954B-E0FDE1BD0D0D}) (Version: 6.12 - Adobe Systems Incorporated)
      Adobe LiveCycle Designer ES4 (HKLM-x32\...\{85785744-60E1-4827-A04A-E8DBCE7D218E}) (Version: 11.0 - Adobe Systems Incorporated)
      Adobe Media Encoder CC 2017 (HKLM-x32\...\AME_11_1_2) (Version: 11.1.2 - Adobe Systems Incorporated)
      Adobe Photoshop CC 2017 (HKLM-x32\...\PHSP_18_1_1) (Version: 18.1.1 - Adobe Systems Incorporated)
      Adobe Premiere Pro CC 2017 (HKLM-x32\...\PPRO_11_1_2) (Version: 11.1.2 - Adobe Systems Incorporated)
      American Truck Simulator - Heavy Cargo Pack version 1.0 (HKLM-x32\...\American Truck Simulator - Heavy Cargo Pack_is1) (Version: 1.0 - SCS Software)
      Ansel (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Ansel) (Version: 382.05 - NVIDIA Corporation) Hidden
      ApoDispatch Install Configurator (HKLM\...\{ABDDDEE7-C266-403D-A4C7-5316B12A98E5}) (Version: 2.3.2101 - Nahimic) Hidden
      Asistente para actualización a Windows 10 (HKLM-x32\...\{D5C69738-B486-402E-85AC-2456D98A64E4}) (Version: 1.4.9200.22175 - Microsoft Corporation)
      Audacity 2.1.3 (HKLM-x32\...\Audacity®_is1) (Version: 2.1.3 - Audacity Team)
      AudioLaunchpad Install Configurator (HKLM\...\{5358C6D0-4456-40B4-8BE1-C7515AE660B6}) (Version: 2.3.2101 - Nahimic) Hidden
      AutoFirma (HKLM-x32\...\AutoFirma) (Version: 1.5.0 - Gobierno de España)
      Battery Calibration (HKLM-x32\...\{634AC01E-49DB-4AD2-B87C-90D4DCC6AFA1}) (Version: 1.0.1609.1901 - Micro-Star International Co., Ltd.) Hidden
      Battery Calibration (HKLM-x32\...\InstallShield_{634AC01E-49DB-4AD2-B87C-90D4DCC6AFA1}) (Version: 1.0.1609.1901 - Micro-Star International Co., Ltd.)
      BurnRecovery (HKLM-x32\...\{92A6B009-1343-4C44-AFB1-8849137CA3F0}) (Version: 5.0.1608.1201 - Application) Hidden
      BurnRecovery (HKLM-x32\...\InstallShield_{92A6B009-1343-4C44-AFB1-8849137CA3F0}) (Version: 5.0.1608.1201 - Application)
      Canon CanoScan LiDE 220 On-screen Manual (HKLM-x32\...\Canon CanoScan LiDE 220 On-screen Manual) (Version: 7.7.1 - Canon Inc.)
      Canon IJ Scan Utility (HKLM-x32\...\Canon_IJ_Scan_Utility) (Version: 1.1.11.1 - Canon Inc.)
      Canon Quick Menu (HKLM-x32\...\CanonQuickMenu) (Version: 2.4.0 - Canon Inc.)
      CanoScan LiDE 220 Scanner Driver (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_CNQ4811) (Version: 1.00 - Canon Inc.)
      CCleaner (HKLM\...\CCleaner) (Version: 5.36 - Piriform)
      Cheat Engine 6.4 (HKLM-x32\...\Cheat Engine 6.4_is1) (Version: - Cheat Engine)
      CheckDevices Install Configurator (HKLM\...\{947A1173-AC2A-41FE-B10F-0604088F0521}) (Version: 2.3.2101 - Nahimic) Hidden
      Configurador_FNMT (HKLM-x32\...\{438D4C4C-B703-4971-9C3D-33FF8A010ADB}) (Version: 3.6 - FNMT-RCM)
      CyberLink PowerDVD 12 (HKLM-x32\...\InstallShield_{B46BEA36-0B71-4A4E-AE41-87241643FA0A}) (Version: 12.0.5307.55 - CyberLink Corp.)
      Dragon Center (HKLM-x32\...\{C65B26BC-5A6F-4135-9678-55A877655471}) (Version: 1.2.1705.3101 - Micro-Star International Co., Ltd.) Hidden
      Dragon Center (HKLM-x32\...\InstallShield_{C65B26BC-5A6F-4135-9678-55A877655471}) (Version: 1.2.1705.3101 - Micro-Star International Co., Ltd.)
      Eines de correcció del Microsoft Office 2016: català (HKLM\...\{90160000-001F-0403-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
      Ferramentas de verificación de Microsoft Office 2016 - Galego (HKLM\...\{90160000-001F-0456-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
      Firebird SQL Server - MAGIX Edition (HKLM-x32\...\{39AB2E37-1A55-4292-A5D3-971E9F70D0F8}) (Version: 2.1.32.0 - MAGIX AG)
      Genesis68 (HKLM-x32\...\{FFA7C2FB-EA8D-4289-B9E8-1343808E5F5A}) (Version: 1.2.05 - HERMESTI INGENIERIA DOCUMENTAL)
      GenesisSDD (HKLM-x32\...\{AF81D2CB-5551-43A2-A334-806DFC51BCE5}) (Version: - HERMESTI INGENIERIA DOCUMENTAL)
      Google Chrome (HKLM-x32\...\Google Chrome) (Version: 63.0.3239.108 - Google Inc.)
      Google Earth Pro (HKLM-x32\...\{ECF2E224-42F5-4E50-B58E-94CA70E85697}) (Version: 7.3.0.3832 - Google)
      Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.7 - Google Inc.) Hidden
      Gramblr (HKLM\...\Gramblr) (Version: 2.9.103 - Gramblr Team)
      Help Desk (HKLM-x32\...\{7E8181AF-9679-49B3-B133-C265709B6927}) (Version: 1.0.1707.2501 - Micro-Star International Co., Ltd.) Hidden
      Help Desk (HKLM-x32\...\InstallShield_{7E8181AF-9679-49B3-B133-C265709B6927}) (Version: 1.0.1707.2501 - Micro-Star International Co., Ltd.)
      Herramientas de corrección de Microsoft Office 2016: español (HKLM\...\{90160000-001F-0C0A-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
      HitmanPro 3.7 (HKLM\...\HitmanPro37) (Version: 3.7.20.286 - SurfRight B.V.)
      HP Color LaserJet Pro M252 (HKLM-x32\...\{f584356a-5cc7-401c-9245-9eced8f01414}) (Version: 14.0.15343.436 - Hewlett-Packard)
      HP Update (HKLM-x32\...\{912D30CF-F39E-4B31-AD9A-123C6B794EE2}) (Version: 5.005.002.002 - Hewlett-Packard)
      HPCLJProM252 (HKLM-x32\...\{4A85BF98-D131-4FA3-B380-1D6B24834291}) (Version: 1.00.0000 - Hewlett-Packard) Hidden
      HPDXP (HKLM-x32\...\{CCF03F06-5C28-4105-8B81-BB4B2319B4D1}) (Version: 3.0.26.29 - HP) Hidden
      HPLJUTCore (HKLM-x32\...\{AA9C0477-A064-4D76-A0C4-A3A5A11F1D4C}) (Version: 020.000.0001 - HP) Hidden
      HPLJUTM252 (HKLM-x32\...\{0E51FBBC-4147-4264-A786-AFDAF75A3FA7}) (Version: 014.000.0001 - HP) Hidden
      hppLaserJetService (HKLM-x32\...\{0C4C3664-157A-4D69-B474-31EBF2EE1AE3}) (Version: 009.033.00926 - Hewlett-Packard) Hidden
      hppM252LaserJetService (HKLM-x32\...\{CBEE14D1-2D7B-4994-8464-3C49F0DC2490}) (Version: 001.034.00686 - Hewlett-Packard) Hidden
      hpStatusAlerts (HKLM-x32\...\{EACC40D7-58F4-4A7A-9786-953DC9A1850B}) (Version: 170.040.00259 - HP Development Company, L.P.) Hidden
      hpStatusAlertsM252 (HKLM-x32\...\{C34FBD21-5F3F-46D4-95C7-477DB6A450AD}) (Version: 140.046.00129 - Hewlett-Packard) Hidden
      Intel(R) Chipset Device Software (HKLM-x32\...\{bb0592a7-5772-4736-9d55-2402740085db}) (Version: 10.1.1.38 - Intel(R) Corporation) Hidden
      Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.0.2.1183 - Intel Corporation)
      Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 15.2.0.1020 - Intel Corporation)
      Intel® Security Assist (HKLM-x32\...\{CCBE9F01-C2C3-469C-A508-2E23A7495E91}) (Version: 1.0.0.609 - Intel Corporation)
      KB4023057 (HKLM\...\{264FDD69-C4DF-476F-B1B8-7DCEE4AF839B}) (Version: 2.4.0.0 - Microsoft Corporation)
      KB9X Radio Switch Driver (HKLM\...\EC950B206B0E7722C96A318DF396BABFBB057BC0) (Version: 1.1.2.0 - ENE TECHNOLOGY INC.)
      Killer Bandwidth Control Filter Driver (HKLM\...\{77573DC2-C142-420B-BE8B-4FE3CF46EF19}) (Version: 1.1.57.1126 - Rivet Networks) Hidden
      Killer Network Manager (HKLM\...\{0093B9DB-35D7-41BA-87A1-8C364D944CB5}) (Version: 1.1.57.1126 - Rivet Networks) Hidden
      Killer Performance Suite (HKLM\...\{0B988985-38C9-4DD4-9835-5AC17EEC26F7}) (Version: 1.0.762 - Rivet Networks)
      Killer Performance Suite (HKLM-x32\...\{E70DB50B-10B4-46BC-9DE2-AB8B49E061EE}) (Version: 1.1.57.1126 - Rivet Networks)
      Killer Wireless-AC Drivers (HKLM\...\{3EC452AC-3D23-4070-8A42-A894C5F93588}) (Version: 1.1.57.1126 - Rivet Networks) Hidden
      LauncherSetup Install (HKLM\...\{C0AF8952-0B19-4081-85D9-987DBF52FE41}) (Version: 2.3.2101 - Nahimic) Hidden
      LJDXPHelperUI (HKLM-x32\...\{DEB23FB1-04FF-44AC-98B5-EEB243D65A28}) (Version: 140.069.007 - HP) Hidden
      MAGIX Content and Soundpools (HKLM-x32\...\MAGIX_GlobalContent) (Version: 1.0.0.0 - MAGIX Software GmbH)
      MAGIX Music Maker Silver (HKLM\...\{CD1DE5DB-7AF2-4D01-BBB1-9AD581B34403}) (Version: 21.0.3.44 - MAGIX Software GmbH) Hidden
      MAGIX Music Maker Silver (HKLM-x32\...\MX.{CD1DE5DB-7AF2-4D01-BBB1-9AD581B34403}) (Version: 21.0.3.44 - MAGIX Software GmbH)
      MAGIX Music Maker Silver Soundpools (HKLM\...\{CC8B6E22-F579-46A1-A9F3-985F114590F0}) (Version: 1.0.0.0 - MAGIX Software GmbH) Hidden
      MAGIX Photo Manager 16 (HKLM\...\{B33D219F-2504-45A7-863B-999ED3E38B01}) (Version: 12.0.0.26 - MAGIX Software GmbH) Hidden
      MAGIX Photo Manager 16 (HKLM-x32\...\MX.{B33D219F-2504-45A7-863B-999ED3E38B01}) (Version: 12.0.0.26 - MAGIX Software GmbH)
      Malwarebytes versión 3.3.1.2183 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.3.1.2183 - Malwarebytes)
      Microsoft Office Professional Plus 2016 (HKLM\...\Office16.PROPLUS) (Version: 16.0.4266.1001 - Microsoft Corporation)
      Microsoft OneDrive (HKU\S-1-5-21-2708372172-2702831193-2062053845-1003\...\OneDriveSetup.exe) (Version: 17.3.7131.1115 - Microsoft Corporation)
      Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
      Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
      Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
      Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
      Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
      Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
      Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
      Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
      Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
      Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
      Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
      Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation)
      Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
      Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
      Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23918 (HKLM-x32\...\{dab68466-3a7d-41a8-a5cf-415e3ff8ef71}) (Version: 14.0.23918.0 - Microsoft Corporation)
      Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24212 (HKLM-x32\...\{462f63a8-6347-4894-a1b3-dbfe3a4c981d}) (Version: 14.0.24212.0 - Microsoft Corporation)
      Mozilla Firefox 57.0.2 (x64 es-ES) (HKLM\...\Mozilla Firefox 57.0.2 (x64 es-ES)) (Version: 57.0.2 - Mozilla)
      Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 56.0.2 - Mozilla)
      MSI Afterburner 4.2.0 (HKLM-x32\...\Afterburner) (Version: 4.2.0 - MSI Co., LTD)
      MSI Remind Manager (HKLM-x32\...\{3E23F267-3E35-40F9-B6BF-BC034D214717}) (Version: 1.0.1608.1001 - Micro-Star International Co., Ltd.) Hidden
      MSI Remind Manager (HKLM-x32\...\InstallShield_{3E23F267-3E35-40F9-B6BF-BC034D214717}) (Version: 1.0.1608.1001 - Micro-Star International Co., Ltd.)
      MSI True Color (HKLM\...\{B4A2776D-59CD-4193-A19D-DE15CB7FC5AA}) (Version: 1.6.3.005 - Portrait Displays, Inc.)
      MSXML 4.0 SP3 Parser (HKLM-x32\...\{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation)
      Nahimic 2 Audio Driver (HKLM\...\{C526A25E-AB3F-4E66-900B-ACF134FB093D}) (Version: 2.3.2101 - Nahimic) Hidden
      Nahimic 2 Audio Driver (HKLM-x32\...\{38ca1b1f-9d48-476a-98a8-ef8d540ce051}) (Version: 2.3.21 - Nahimic)
      Netfincas Horizontal (HKLM-x32\...\Netfincas Horizontal_is1) (Version: - Netfincas Software)
      NVIDIA Controlador de 3D Vision 382.05 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 382.05 - NVIDIA Corporation)
      NVIDIA Controlador de gráficos 382.05 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 382.05 - NVIDIA Corporation)
      NVIDIA GeForce Experience 3.9.0.61 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.9.0.61 - NVIDIA Corporation)
      NVIDIA PhysX System Software 9.16.0318 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.16.0318 - NVIDIA Corporation)
      Panel de control de NVIDIA 382.05 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 382.05 - NVIDIA Corporation) Hidden
      ProductDaemonSetup Install (HKLM\...\{34BEB8EF-E3F5-4FD0-82EB-F688A1E40FFE}) (Version: 2.3.2101 - Nahimic) Hidden
      ProductNS Install Configurator (HKLM\...\{05ED5DB9-79BB-48F8-B8DA-A04C1E840FA6}) (Version: 2.3.2101 - Nahimic) Hidden
      Qualcomm Atheros Bluetooth Installer (64) (HKLM\...\{628988B4-3FA5-4EA6-BAA3-DA640F6718BD}) (Version: 10.0.0.210 - Qualcomm Atheros)
      Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 10.0.14393.21292 - Realtek Semiconductor Corp.)
      Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8172 - Realtek Semiconductor Corp.)
      Revisores de Texto do Microsoft Office 2016 – Português (Brasil) (HKLM\...\{90160000-001F-0416-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
      RivaTuner Statistics Server 6.4.1 (HKLM-x32\...\RTSS) (Version: 6.4.1 - Unwinder)
      SCM (HKLM\...\{F6E94387-38E9-4D98-9FE1-038F575768BA}) (Version: 13.017.06089 - Application)
      Sizing Options (HKLM-x32\...\{DFAB6DE8-E45F-4D5D-95C0-E54C58993F9F}) (Version: 3.0.1607.2201 - Application) Hidden
      Sizing Options (HKLM-x32\...\InstallShield_{DFAB6DE8-E45F-4D5D-95C0-E54C58993F9F}) (Version: 3.0.1607.2201 - Application)
      SonicMapper Install Configurator (HKLM\...\{C2232191-A1E6-4255-A706-BBC8EF956F64}) (Version: 2.3.2101 - Nahimic) Hidden
      Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
      SteelSeries Engine 3.11.7 (HKLM\...\SteelSeries Engine 3) (Version: 3.11.7 - SteelSeries ApS)
      Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 19.3.4.184 - Synaptics Incorporated)
      Tobii EyeX (HKLM-x32\...\{4E22143A-FCB4-496B-BECF-00D9C8126447}) (Version: 1.9.0.6164 - Tobii AB)
      Tobii EyeX Config (HKLM-x32\...\{5AFAB5C4-892F-4517-A9FE-3860B6DB60B8}) (Version: 3.2.7.366 - Tobii AB)
      Tobii EyeX Interaction (HKLM-x32\...\{33D2C0ED-7451-4897-819D-551E1CDB4036}) (Version: 2.0.4.2420 - Tobii AB)
      Tobii EyeX Start (HKLM-x32\...\{2AF82020-66C4-4690-B232-0435D32F9A2D}) (Version: 2.0.2.2209 - Tobii AB)
      Tobii Face Authentication for Windows Hello - v1.0.11.47 (HKLM-x32\...\{aa88a0e1-5d3c-424b-8ede-be8965d7354d}) (Version: 1.0.11.47 - Tobii AB)
      Tobii Face Authentication for Windows Hello (HKLM\...\{F0923C50-C28B-4F38-A53F-D903C472A27D}) (Version: 1.0.11.47 - Tobii AB) Hidden
      Tobii Game Hub (HKLM-x32\...\{902A49F6-2367-4E35-AD44-D04E9B4D6E20}) (Version: 1.0.2.632 - Tobii AB) Hidden
      Tobii Game Hub (HKLM-x32\...\{ac98f9bd-0587-4259-8c34-835c504dab90}) (Version: 1.0.2.632 - Tobii AB)
      Tobii IS3 Eye Tracker Driver (HKLM-x32\...\{432D9D4E-D79E-4451-BF37-E36174D92E29}) (Version: 2.0.4 - Tobii AB)
      Tobii Service (HKLM-x32\...\{75338507-B01F-4CC0-A056-B3CA3EAB8AA3}) (Version: 1.9.0.6164 - Tobii AB)
      UIInstallUpgrade (HKLM\...\{A8B178EB-1927-4FB7-9D02-78A5FDE9A6B6}) (Version: 2.3.2101 - Nahimic) Hidden
      Update for Skype for Business 2016 (KB3141501) 64-Bit Edition (HKLM\...\{90160000-0011-0000-1000-0000000FF1CE}_Office16.PROPLUS_{D7445990-15D2-466D-BA6D-588F28226F27}) (Version: - Microsoft)
      Update for Skype for Business 2016 (KB3141501) 64-Bit Edition (HKLM\...\{90160000-012B-0C0A-1000-0000000FF1CE}_Office16.PROPLUS_{D7445990-15D2-466D-BA6D-588F28226F27}) (Version: - Microsoft)
      VirtualDJ 8 (HKLM-x32\...\{E1962904-0960-42F6-9072-3EC7D66A5495}) (Version: 8.2.3994.0 - Atomix Productions)
      Vivaldi (HKU\S-1-5-21-2708372172-2702831193-2062053845-1003\...\Vivaldi) (Version: 1.13.1008.34 - Vivaldi)
      Vulkan Run Time Libraries 1.0.42.1 (HKLM\...\VulkanRT1.0.42.1) (Version: 1.0.42.1 - LunarG, Inc.)
      WinRAR 5.50 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.50.0 - win.rar GmbH)
      WinZip 17.5 (HKLM\...\{CD95F661-A5C4-44F5-A6AA-ECDD91C240DD}) (Version: 17.5.10562 - WinZip Computing, S.L. )
      WTFast 4.0 (HKLM-x32\...\{12B4121D-5221-4AFC-9EDC-63B0CA139856}_is1) (Version: 4.0.7.692 - Initex & AAA Internet Publishing)
      XSplit Gamecaster (HKLM-x32\...\{9E8A3821-032E-4230-9C12-C14D3FC8685E}) (Version: 2.8.1605.2342 - SplitmediaLabs)

      ==================== Custom CLSID (Whitelisted): ==========================

      (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

      ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2017-09-26] ()
      ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2017-09-26] ()
      ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2017-09-26] ()
      ContextMenuHandlers1: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2017-09-26] ()
      ContextMenuHandlers1: [Adobe.Acrobat.ContextMenu] -> {A6595CD1-BF77-430A-A452-18696685F7C7} => C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat Elements\ContextMenuShim64.dll [2015-03-17] (Adobe Systems Inc.)
      ContextMenuHandlers1: [EPP] -> {09A47860-11B0-4DA5-AFA5-26D86198A780} => C:\ProgramData\Microsoft\Windows Defender\platform\4.12.17007.17123-0\ShellExt.dll [2017-09-29] (Microsoft Corporation)
      ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2017-08-11] (Alexander Roshal)
      ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2017-08-11] (Alexander Roshal)
      ContextMenuHandlers1-x32: [WinZip] -> {E0D79304-84BE-11CE-9641-444553540000} => c:\Program Files\WinZip\wzshls64.dll [2013-08-03] (WinZip Computing, S.L.)
      ContextMenuHandlers2: [EPP] -> {09A47860-11B0-4DA5-AFA5-26D86198A780} => C:\ProgramData\Microsoft\Windows Defender\platform\4.12.17007.17123-0\ShellExt.dll [2017-09-29] (Microsoft Corporation)
      ContextMenuHandlers4: [EPP] -> {09A47860-11B0-4DA5-AFA5-26D86198A780} => C:\ProgramData\Microsoft\Windows Defender\platform\4.12.17007.17123-0\ShellExt.dll [2017-09-29] (Microsoft Corporation)
      ContextMenuHandlers4: [WinZip] -> {E0D79304-84BE-11CE-9641-444553540000} => c:\Program Files\WinZip\wzshls64.dll [2013-08-03] (WinZip Computing, S.L.)
      ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2017-05-01] (NVIDIA Corporation)
      ContextMenuHandlers6: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2017-09-26] ()
      ContextMenuHandlers6: [Adobe.Acrobat.ContextMenu] -> {A6595CD1-BF77-430A-A452-18696685F7C7} => C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat Elements\ContextMenuShim64.dll [2015-03-17] (Adobe Systems Inc.)
      ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2017-08-11] (Alexander Roshal)
      ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2017-08-11] (Alexander Roshal)
      ContextMenuHandlers6-x32: [WinZip] -> {E0D79304-84BE-11CE-9641-444553540000} => c:\Program Files\WinZip\wzshls64.dll [2013-08-03] (WinZip Computing, S.L.)

      ==================== Scheduled Tasks (Whitelisted) =============

      (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

      Task: {0F9A1B32-6371-475D-A22A-67D734DF69CA} - System32\Tasks\Nvbackend_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
      Task: {1083CED4-3831-4E75-A5D1-6FC57450E60B} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office16\OLicenseHeartbeat.exe [2015-07-31] (Microsoft Corporation)
      Task: {145E8300-31B4-480C-AFF1-BD6F1F26F09A} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [2017-08-18] (NVIDIA Corporation)
      Task: {14743650-F5CF-40BB-A324-9825C8417C13} - System32\Tasks\MSI_Help_Desk_Agent => C:\Program Files (x86)\MSI\Help Desk\MSI Update Agent.exe [2017-07-25] (Micro-Star International Co., Ltd.)
      Task: {16C89790-1556-422D-B06F-8A3A2DB16AE4} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2017-08-18] (NVIDIA Corporation)
      Task: {19FF3CD2-139F-4CEA-9A90-65F29FD2C806} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.12.17007.17123-0\MpCmdRun.exe [2017-12-08] (Microsoft Corporation)
      Task: {1BE0A6F7-4119-448E-AD6E-A0FFB87AB70C} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-09-28] (Google Inc.)
      Task: {26889D20-CDA6-43C7-A3C2-190DF7464108} - System32\Tasks\Nahimic2UILauncherRun => C:\Program Files\Nahimic\Nahimic2\UserInterface\Nahimic2UILauncher.exe [2017-05-19] (Nahimic)
      Task: {29B26215-97E0-401F-B541-5784C0248ABD} - \Microsoft\Windows\UNP\RunCampaignManager -> No File <==== ATTENTION
      Task: {2C892F5D-D5A2-43AF-B3EC-3D7F6B0DB1C7} - System32\Tasks\Intel PTT EK Recertification => C:\Program Files\Intel\iCLS Client\IntelPTTEKRecertification.exe [2016-01-14] (Intel(R) Corporation)
      Task: {2CFB6BD5-C580-481A-87D7-875DE6B95CBF} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.12.17007.17123-0\MpCmdRun.exe [2017-12-08] (Microsoft Corporation)
      Task: {49F0EE6C-E11D-45A1-9BD5-74B9E04481ED} - System32\Tasks\Nahimic2Svc32Run => C:\Program Files\Nahimic\Nahimic2\UserInterface\Nahimic2Svc32.exe [2017-05-19] ()
      Task: {577EFBBE-2660-4D34-B017-37E0EED5B48A} - System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2017-08-18] (NVIDIA Corporation)
      Task: {57C46E69-FAC9-4260-A9A2-EA5921F6F659} - System32\Tasks\HPLJCustParticipation => C:\Program Files (x86)\HP\HPLJUT\HPLJUTSCH.exe [2015-12-05] (HP Development Company, L.P.)
      Task: {5D430F69-13CC-49A3-860E-A613E20D0BCA} - System32\Tasks\PDVDServ12 Task => C:\Program Files (x86)\CyberLink\PowerDVD12\PDVD12Serv.exe [2015-05-11] (CyberLink Corp.)
      Task: {694FF22E-009B-40C0-BF4A-CE33FAB17F42} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2017-10-18] (Piriform Ltd)
      Task: {6C89872B-2D67-44F1-B0C2-2C3B0449DAF1} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.12.17007.17123-0\MpCmdRun.exe [2017-12-08] (Microsoft Corporation)
      Task: {77A96580-E835-4D0D-8998-7A03E87B710E} - System32\Tasks\MSISCMTsk => C:\Program Files (x86)\MSI\MSI Remind Manager\MSISCMTsk.exe [2016-06-22] (Application)
      Task: {7F9B309F-1B63-4AE0-AFAF-ACF26D32E5E8} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [2017-08-18] (NVIDIA Corporation)
      Task: {84E57712-436A-435E-B0B0-EB6C535DE8E4} - \StartWop PC Port -> No File <==== ATTENTION
      Task: {8DC027F1-B5F3-43E8-AD31-86527E01BBCB} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [2017-08-18] (NVIDIA Corporation)
      Task: {A8A9DEDF-95D3-4DD3-9517-6AFCEB64E0F9} - System32\Tasks\MSI_Dragon Center => C:\Program Files (x86)\MSI\Dragon Center\Dragon Center.exe [2017-05-31] (Micro-Star International Co., Ltd.)
      Task: {A9AD648B-BCFB-440B-B03F-13D78657DBC7} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2017-08-18] (NVIDIA Corporation)
      Task: {BD0CF0E2-18C8-42E2-AD24-90D4AD520390} - System32\Tasks\Dragon_Center_updater => C:\ProgramData\MSI\Dragon [Argument = Center\DragonCenter_Updater.exe DragonCenter]
      Task: {C266FC26-20ED-4513-A41C-5806607B5C22} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.12.17007.17123-0\MpCmdRun.exe [2017-12-08] (Microsoft Corporation)
      Task: {C88D5A58-391E-42C3-8777-BA43A5ABA74B} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2017-08-18] (NVIDIA Corporation)
      Task: {C8E192C9-10B4-4303-95C9-4A31EDA4DF3B} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2017-08-18] (NVIDIA Corporation)
      Task: {D0874042-C177-4202-B3C7-4E86156BB849} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\Office16\msoia.exe [2015-07-31] (Microsoft Corporation)
      Task: {DFB8017F-BF0D-484D-98B6-648AC44B7547} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-09-28] (Google Inc.)
      Task: {E236E77E-E7D3-48D5-96A2-4D5054DB6514} - System32\Tasks\Nahimic2Svc64Run => C:\Program Files\Nahimic\Nahimic2\UserInterface\x64\Nahimic2Svc64.exe [2017-05-19] ()
      Task: {E78567D9-0EA8-4401-ADE4-F73D23FC5D76} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\Office16\msoia.exe [2015-07-31] (Microsoft Corporation)
      Task: {FBBCBF16-66E3-49CD-BDCE-29E8E3E20E31} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2017-09-27] (Adobe Systems Incorporated)

      (If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

      Task: C:\WINDOWS\Tasks\CCleaner Update.job => C:\Program Files\CCleaner\CCUpdate.exe
      Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe

      ==================== Shortcuts & WMI ========================

      (The entries could be listed to be restored or removed.)


      Shortcut: C:\Users\prueba\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VirtualDJ\Online Help.lnk -> hxxp://www.virtualdj.com/wiki
      Shortcut: C:\Users\prueba\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VirtualDJ\www.virtualdj.com.lnk -> hxxp://www.virtualdj.com

    9. #19
      Usuario Avatar de aranttxa
      Registrado
      ene 2010
      Ubicación
      Vigo- Galicia-Spain
      Mensajes
      97

      Re: Como eliminiar Chromesearch?

      ==================== Loaded Modules (Whitelisted) ==============

      2017-09-29 14:41 - 2017-09-29 14:41 - 000184432 _____ () C:\WINDOWS\SYSTEM32\inputhost.dll
      2017-09-28 16:41 - 2017-08-18 05:36 - 001267136 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\libprotobuf.dll
      2017-10-28 00:06 - 2017-12-17 17:20 - 011836496 _____ () C:\Program Files\Gramblr\gramblr.exe
      2016-01-21 17:10 - 2016-01-21 17:10 - 003675256 _____ () C:\Program Files (x86)\Tobii\Service\Tobii EyeX Controller Core.exe
      2017-05-19 09:59 - 2017-05-19 09:59 - 000220344 _____ () C:\Program Files\Nahimic\Nahimic2\UserInterface\x64\Nahimic2DevProps.dll
      2017-09-26 01:52 - 2017-09-26 01:52 - 000491600 _____ () C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll
      2017-12-03 14:01 - 2017-11-26 13:23 - 011044864 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
      2017-12-03 14:01 - 2017-11-26 13:01 - 001804288 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
      2017-12-11 17:44 - 2017-12-11 17:44 - 000086528 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.10.572.0_x64__kzf8qxf38zg5c\SkypeHost.exe
      2017-12-11 17:44 - 2017-12-11 17:44 - 000195072 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.10.572.0_x64__kzf8qxf38zg5c\SkypeBackgroundTasks.dll
      2017-12-11 17:44 - 2017-12-11 17:44 - 024735744 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.10.572.0_x64__kzf8qxf38zg5c\SkyWrap.dll
      2017-12-11 17:44 - 2017-12-11 17:44 - 002551808 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.10.572.0_x64__kzf8qxf38zg5c\skypert.dll
      2017-12-11 17:44 - 2017-12-11 17:44 - 000671744 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.10.572.0_x64__kzf8qxf38zg5c\RtmMvrUap.dll
      2017-06-08 09:37 - 2017-06-08 09:37 - 000301848 _____ () C:\Program Files (x86)\SCM\SCM.exe
      2017-05-19 09:56 - 2017-05-19 09:56 - 002059960 _____ () C:\Program Files\Nahimic\Nahimic2\UserInterface\Nahimic2svc32.exe
      2017-05-19 10:00 - 2017-05-19 10:00 - 000513720 _____ () C:\Program Files\Nahimic\Nahimic2\UserInterface\x64\Nahimic2svc64.exe
      2017-12-17 18:53 - 2017-12-14 03:49 - 004063064 _____ () C:\Program Files (x86)\Google\Chrome\Application\63.0.3239.108\libglesv2.dll
      2017-12-17 18:53 - 2017-12-14 03:49 - 000099672 _____ () C:\Program Files (x86)\Google\Chrome\Application\63.0.3239.108\libegl.dll
      2017-09-26 01:52 - 2017-09-26 01:52 - 034879568 _____ () C:\Program Files (x86)\Adobe\Adobe Sync\Coresync\Coresync.exe
      2016-01-21 16:48 - 2016-01-21 16:48 - 000050808 _____ () C:\Program Files (x86)\Tobii\Service\plugins\Tobii.EyeX.Controller.Service.Library.dll
      2016-01-21 16:48 - 2016-01-21 16:48 - 000049784 _____ () C:\Program Files (x86)\Tobii\Service\tecs.hid.dll
      2016-01-21 16:48 - 2016-01-21 16:48 - 000429688 _____ () C:\Program Files (x86)\Tobii\Service\tecs.host.dll
      2016-01-21 16:48 - 2016-01-21 16:48 - 000069752 _____ () C:\Program Files (x86)\Tobii\Service\libtobii_windll.dll
      2016-01-21 17:10 - 2016-01-21 17:10 - 000093304 _____ () C:\Program Files (x86)\Tobii\Service\libtdidll.dll
      2014-01-06 06:21 - 2014-01-06 06:21 - 000489773 _____ () C:\Program Files (x86)\Tobii\Service\libgcc_s_sjlj-1.dll
      2016-01-21 17:10 - 2016-01-21 17:10 - 007219320 _____ () C:\Program Files (x86)\Tobii\Service\algobox.dll
      2017-05-19 09:55 - 2017-05-19 09:55 - 000194744 _____ () C:\Program Files\Nahimic\Nahimic2\UserInterface\Nahimic2DevProps.dll
      2017-12-11 16:38 - 2017-12-11 16:38 - 000102088 _____ () C:\Users\prueba\AppData\Local\Microsoft\OneDrive\17.3.7131.1115\UpdateRingSettings.dll
      2017-09-20 02:42 - 2017-09-20 02:42 - 067115616 _____ () C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\CEF\libcef.dll
      2015-03-17 01:34 - 2015-03-17 01:34 - 000010240 _____ () C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\locale\es_es\acrotray.esp
      2017-09-06 18:11 - 2017-09-06 18:11 - 000118272 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\fs-ext\build\Release\fs-ext.node
      2017-09-06 18:11 - 2017-09-06 18:11 - 000214528 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\node-vulcanjs\build\Release\VulcanJS.node
      2017-09-06 18:11 - 2017-09-06 18:11 - 000117248 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\ref\build\Release\binding.node
      2017-09-06 18:11 - 2017-09-06 18:11 - 000125952 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\ffi\build\Release\ffi_bindings.node
      2017-09-20 03:04 - 2017-09-20 03:04 - 000099424 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\node-ProxyResolver\build\Release\ProxyResolverWin.dll
      2017-09-06 18:11 - 2017-09-06 18:11 - 000086528 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\idle-gc\build\Release\idle-gc.node
      2016-02-11 17:47 - 2016-02-11 17:47 - 001243936 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll
      2017-09-28 16:41 - 2017-08-18 05:36 - 001040320 _____ () C:\Program Files (x86)\NVIDIA Corporation\NvContainer\libprotobuf.dll

      ==================== Alternate Data Streams (Whitelisted) =========

      (If an entry is included in the fixlist, only the ADS will be removed.)

      AlternateDataStreams: C:\WINDOWS\system32\Drivers\gfgwpvuk.sys:changelist [446]

      ==================== Safe Mode (Whitelisted) ===================

      (If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

      HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
      HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

      ==================== Association (Whitelisted) ===============

      (If an entry is included in the fixlist, the registry item will be restored to default or removed.)


      ==================== Internet Explorer trusted/restricted ===============

      (If an entry is included in the fixlist, it will be removed from the registry.)


      ==================== Other Areas ============================

      (Currently there is no automatic fix for this section.)

      HKU\S-1-5-21-2708372172-2702831193-2062053845-1003\Control Panel\Desktop\\Wallpaper -> C:\WINDOWS\web\wallpaper\Windows\img0.jpg
      DNS Servers: 213.60.205.175
      HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
      HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: Off)
      Windows Firewall is disabled.

      ==================== MSCONFIG/TASK MANAGER disabled items ==


      ==================== FirewallRules (Whitelisted) ===============

      (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

      FirewallRules: [{7DD487A7-F568-4229-885E-EAC5A1636B3C}] => (Allow) C:\WINDOWS\system32\rundll32.exe
      FirewallRules: [{4A144866-B77D-4F8A-86BA-836F45BEB9EA}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
      FirewallRules: [{67E33836-A8E6-465E-80BD-3B31D0E9952C}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
      FirewallRules: [{9EF74B3D-B943-4354-A501-7DC9CE77F548}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
      FirewallRules: [{6CCEA1BB-E112-4691-9108-C1E6F4D4AED6}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
      FirewallRules: [TCP Query User{5D984640-877B-4A6B-AC4F-3F9664B6B51A}C:\program files (x86)\google\chrome\application\chrome.exe] => (Allow) C:\program files (x86)\google\chrome\application\chrome.exe
      FirewallRules: [UDP Query User{7C31514D-A6B4-40A9-9321-1434BF97BC28}C:\program files (x86)\google\chrome\application\chrome.exe] => (Allow) C:\program files (x86)\google\chrome\application\chrome.exe
      FirewallRules: [{DCA43CF6-917A-4766-B09F-FD7A28EFAA0B}] => (Allow) C:\Windows\System32\rundll32.exe
      FirewallRules: [{6F1137AC-40C5-4F01-AD26-5A619D465D0F}] => (Allow) C:\Windows\System32\rundll32.exe
      FirewallRules: [{E9912E0F-8B44-4A06-AD93-5C07FEF1E35C}] => (Allow) C:\Windows\System32\rundll32.exe
      FirewallRules: [{B1115D56-2579-4BC2-8151-44A407875A80}] => (Allow) C:\Windows\System32\rundll32.exe
      FirewallRules: [{4E6AAA15-EA57-41F3-9E01-6A75B8B006E1}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
      StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Orbitdownloader\orbitdm.exe] => Enabled:Orbit
      StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Orbitdownloader\orbitnet.exe] => Enabled:Orbit

      ==================== Restore Points =========================

      11-12-2017 14:25:53 Se ha instalado DirectX
      17-12-2017 17:34:46 Windows Update
      20-12-2017 21:06:18 Installed VirtualDJ 8

      ==================== Faulty Device Manager Devices =============


      ==================== Event log errors: =========================

      Application errors:
      ==================
      Error: (12/24/2017 06:08:07 PM) (Source: SideBySide) (EventID: 78) (User: )
      Description: Error al generar el contexto de activación para "C:\Program Files (x86)\Audacity\audacity.exe". Error en el archivo de manifiesto o directiva "" en la línea .
      Una versión de componente requerida por la aplicación está en conflicto con la versión de otro componente activo.
      Los componentes en conflicto son:.
      Componente 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.16299.98_none_cc930a042215c348.manifest.
      Componente 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.16299.98_none_144040db3691ec4e.manifest.

      Error: (12/24/2017 06:06:20 PM) (Source: Tobii.Service.exe) (EventID: 0) (User: )
      Description: 2017-12-24 18:06:20,885 [4] ERROR Tobii.UpdateService.UpdateServer [(null)] - BeginGetAvailableUpdates - Failed to get available updates: Tobii.Update.UpdaterException: GetAvailableUpdates - Failed: System.Net.WebException: No es posible conectar con el servidor remoto ---> System.Net.Sockets.SocketException: No se puede establecer una conexión ya que el equipo de destino denegó expresamente dicha conexión 212.112.188.155:443
      en System.Net.Sockets.Socket.DoConnect(EndPoint endPointSnapshot, SocketAddress socketAddress)
      en System.Net.ServicePoint.ConnectSocketInternal(Boolean connectFailure, Socket s4, Socket s6, Socket& socket, IPAddress& address, ConnectSocketState state, IAsyncResult asyncResult, Exception& exception)
      --- Fin del seguimiento de la pila de la excepción interna ---
      en System.Net.WebClient.UploadValues(Uri address, String method, NameValueCollection data)
      en System.Net.WebClient.UploadValues(String address, NameValueCollection data)
      en Tobii.Update.UpdaterEngine.<>c__DisplayClass26_0.<DownloadUpdateScript>b__0()
      en Tobii.Update.WebClientExtensions.WebActionWithNoProxyFallback[T](WebClient webClient, Func`1 webAction)
      en Tobii.Update.UpdaterEngine.DownloadUpdateScript()
      en Tobii.Update.UpdaterEngine.GetUpdateScript()
      en Tobii.Update.UpdaterEngine.GetAvailableUpdates() ---> System.Net.WebException: No es posible conectar con el servidor remoto ---> System.Net.Sockets.SocketException: No se puede establecer una conexión ya que el equipo de destino denegó expresamente dicha conexión 212.112.188.155:443
      en System.Net.Sockets.Socket.DoConnect(EndPoint endPointSnapshot, SocketAddress socketAddress)
      en System.Net.ServicePoint.ConnectSocketInternal(Boolean connectFailure, Socket s4, Socket s6, Socket& socket, IPAddress& address, ConnectSocketState state, IAsyncResult asyncResult, Exception& exception)
      --- Fin del seguimiento de la pila de la excepción interna ---
      en System.Net.WebClient.UploadValues(Uri address, String method, NameValueCollection data)
      en System.Net.WebClient.UploadValues(String address, NameValueCollection data)
      en Tobii.Update.UpdaterEngine.<>c__DisplayClass26_0.<DownloadUpdateScript>b__0()
      en Tobii.Update.WebClientExtensions.WebActionWithNoProxyFallback[T](WebClient webClient, Func`1 webAction)
      en Tobii.Update.UpdaterEngine.DownloadUpdateScript()
      en Tobii.Update.UpdaterEngine.GetUpdateScript()
      en Tobii.Update.UpdaterEngine.GetAvailableUpdates()
      --- Fin del seguimiento de la pila de la excepción interna ---
      en Tobii.Update.UpdaterEngine.GetAvailableUpdates()
      en Tobii.UpdateService.UpdateServer.<BeginGetAvailableUpdates>b__10_0()

      --- Additional information ---
      System.Net.WebException
      Message: No es posible conectar con el servidor remoto
      Status: ConnectFailure
      HResult: -2146233079
      --- End of additional information ---

      Error: (12/24/2017 06:06:20 PM) (Source: Tobii.Service.exe) (EventID: 0) (User: )
      Description: 2017-12-24 18:06:20,866 [4] ERROR Tobii.Update.UpdaterEngine [(null)] - GetAvailableUpdates - Failed
      System.Net.WebException: No es posible conectar con el servidor remoto ---> System.Net.Sockets.SocketException: No se puede establecer una conexión ya que el equipo de destino denegó expresamente dicha conexión 212.112.188.155:443
      en System.Net.Sockets.Socket.DoConnect(EndPoint endPointSnapshot, SocketAddress socketAddress)
      en System.Net.ServicePoint.ConnectSocketInternal(Boolean connectFailure, Socket s4, Socket s6, Socket& socket, IPAddress& address, ConnectSocketState state, IAsyncResult asyncResult, Exception& exception)
      --- Fin del seguimiento de la pila de la excepción interna ---
      en System.Net.WebClient.UploadValues(Uri address, String method, NameValueCollection data)
      en System.Net.WebClient.UploadValues(String address, NameValueCollection data)
      en Tobii.Update.UpdaterEngine.<>c__DisplayClass26_0.<DownloadUpdateScript>b__0()
      en Tobii.Update.WebClientExtensions.WebActionWithNoProxyFallback[T](WebClient webClient, Func`1 webAction)
      en Tobii.Update.UpdaterEngine.DownloadUpdateScript()
      en Tobii.Update.UpdaterEngine.GetUpdateScript()
      en Tobii.Update.UpdaterEngine.GetAvailableUpdates()

      Error: (12/24/2017 06:04:46 PM) (Source: Tobii.Service.exe) (EventID: 0) (User: )
      Description: 2017-12-24 18:04:46,383 [14] ERROR Tobii.Service.TobiiService [(null)] - EyeX Service: Failed to run plugin EyeX Service: Referencia a objeto no establecida como instancia de un objeto.

      Error: (12/24/2017 06:04:46 PM) (Source: Perflib) (EventID: 1023) (User: )
      Description: Windows no puede cargar el archivo DLL del contador extensible rdyboost. Los primeros cuatro bytes (DWORD) de la sección de datos contienen el código de error de Windows.

      Error: (12/24/2017 06:04:46 PM) (Source: Perflib) (EventID: 1008) (User: )
      Description: Error del procedimiento de apertura para el servicio "BITS" en el archivo DLL "C:\Windows\System32\bitsperf.dll". Los datos de rendimiento para este servicio no estarán disponibles. Los primeros cuatro bytes (DWORD) de la sección de datos contienen el código de error.

      Error: (12/21/2017 11:06:54 AM) (Source: Perflib) (EventID: 1023) (User: )
      Description: Windows no puede cargar el archivo DLL del contador extensible rdyboost. Los primeros cuatro bytes (DWORD) de la sección de datos contienen el código de error de Windows.

      Error: (12/21/2017 11:06:54 AM) (Source: Perflib) (EventID: 1008) (User: )
      Description: Error del procedimiento de apertura para el servicio "BITS" en el archivo DLL "C:\Windows\System32\bitsperf.dll". Los datos de rendimiento para este servicio no estarán disponibles. Los primeros cuatro bytes (DWORD) de la sección de datos contienen el código de error.

      Error: (12/21/2017 09:57:02 AM) (Source: Application Error) (EventID: 1000) (User: )
      Description: Nombre de la aplicación con errores: POWERPNT.EXE, versión: 16.0.4266.1001, marca de tiempo: 0x55ba17c4
      Nombre del módulo con errores: ppcore.dll, versión: 16.0.4498.1002, marca de tiempo: 0x5891cdab
      Código de excepción: 0xc0000005
      Desplazamiento de errores: 0x0000000000061f94
      Identificador del proceso con errores: 0x3754
      Hora de inicio de la aplicación con errores: 0x01d37a399fbefc18
      Ruta de acceso de la aplicación con errores: C:\Program Files\Microsoft Office\Office16\POWERPNT.EXE
      Ruta de acceso del módulo con errores: C:\Program Files\Microsoft Office\Office16\ppcore.dll
      Identificador del informe: da550351-2682-45a8-a11b-ea836e6d8bca
      Nombre completo del paquete con errores:
      Identificador de aplicación relativa del paquete con errores:

      Error: (12/20/2017 04:12:35 PM) (Source: Tobii.Service.exe) (EventID: 0) (User: )
      Description: 2017-12-20 16:12:35,090 [24] ERROR Tobii.UpdateService.UpdateServer [(null)] - BeginGetAvailableUpdates - Failed to get available updates: Tobii.Update.UpdaterException: GetAvailableUpdates - Failed: System.Net.WebException: No se puede resolver el nombre remoto: 'update.oem.tobii.com'
      en System.Net.WebClient.UploadValues(Uri address, String method, NameValueCollection data)
      en System.Net.WebClient.UploadValues(String address, NameValueCollection data)
      en Tobii.Update.UpdaterEngine.<>c__DisplayClass26_0.<DownloadUpdateScript>b__0()
      en Tobii.Update.WebClientExtensions.WebActionWithNoProxyFallback[T](WebClient webClient, Func`1 webAction)
      en Tobii.Update.UpdaterEngine.DownloadUpdateScript()
      en Tobii.Update.UpdaterEngine.GetUpdateScript()
      en Tobii.Update.UpdaterEngine.GetAvailableUpdates() ---> System.Net.WebException: No se puede resolver el nombre remoto: 'update.oem.tobii.com'
      en System.Net.WebClient.UploadValues(Uri address, String method, NameValueCollection data)
      en System.Net.WebClient.UploadValues(String address, NameValueCollection data)
      en Tobii.Update.UpdaterEngine.<>c__DisplayClass26_0.<DownloadUpdateScript>b__0()
      en Tobii.Update.WebClientExtensions.WebActionWithNoProxyFallback[T](WebClient webClient, Func`1 webAction)
      en Tobii.Update.UpdaterEngine.DownloadUpdateScript()
      en Tobii.Update.UpdaterEngine.GetUpdateScript()
      en Tobii.Update.UpdaterEngine.GetAvailableUpdates()
      --- Fin del seguimiento de la pila de la excepción interna ---
      en Tobii.Update.UpdaterEngine.GetAvailableUpdates()
      en Tobii.UpdateService.UpdateServer.<BeginGetAvailableUpdates>b__10_0()

      --- Additional information ---
      System.Net.WebException
      Message: No se puede resolver el nombre remoto: 'update.oem.tobii.com'
      Status: NameResolutionFailure
      HResult: -2146233079
      --- End of additional information ---


      System errors:
      =============
      Error: (12/24/2017 06:16:01 PM) (Source: NetBT) (EventID: 4321) (User: )
      Description: No se pudo registrar el nombre "WORKGROUP :1d" en la interfaz con dirección IP 192.168.0.19.
      El equipo la con dirección IP 192.168.0.10 no admite el nombre reclamado por este equipo.

      Error: (12/24/2017 06:15:37 PM) (Source: Microsoft-Windows-DNS-Client) (EventID: 1012) (User: NT AUTHORITY)
      Description: Error al intentar leer el archivo local de hosts.

      Error: (12/24/2017 06:14:50 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
      Description: La configuración de permisos específico de la aplicación no concede el permiso Activación Local para la aplicación de servidor COM con CLSID
      {D63B10C5-BB46-4990-A94F-E40B9D520160}
      y APPID
      {9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
      al usuario NT AUTHORITY\SERVICIO LOCAL con SID (S-1-5-19) en la dirección LocalHost (con LRPC) que se ejecuta en el contenedor de aplicaciones con SID No disponible (No disponible). Este permiso de seguridad se puede modificar mediante la herramienta administrativa Servicios de componentes.

      Error: (12/24/2017 06:14:28 PM) (Source: Microsoft-Windows-DNS-Client) (EventID: 1012) (User: NT AUTHORITY)
      Description: Error al intentar leer el archivo local de hosts.

      Error: (12/24/2017 06:09:44 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
      Description: La configuración de permisos específico de la aplicación no concede el permiso Activación Local para la aplicación de servidor COM con CLSID
      {D63B10C5-BB46-4990-A94F-E40B9D520160}
      y APPID
      {9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
      al usuario NT AUTHORITY\SERVICIO LOCAL con SID (S-1-5-19) en la dirección LocalHost (con LRPC) que se ejecuta en el contenedor de aplicaciones con SID No disponible (No disponible). Este permiso de seguridad se puede modificar mediante la herramienta administrativa Servicios de componentes.

      Error: (12/24/2017 06:06:56 PM) (Source: Microsoft-Windows-DNS-Client) (EventID: 1012) (User: MSI)
      Description: Error al intentar leer el archivo local de hosts.

      Error: (12/24/2017 06:06:26 PM) (Source: DCOM) (EventID: 10016) (User: MSI)
      Description: La configuración de permisos específico de la aplicación no concede el permiso Activación Local para la aplicación de servidor COM con CLSID
      {D63B10C5-BB46-4990-A94F-E40B9D520160}
      y APPID
      {9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
      al usuario MSI\prueba con SID (S-1-5-21-2708372172-2702831193-2062053845-1003) en la dirección LocalHost (con LRPC) que se ejecuta en el contenedor de aplicaciones con SID No disponible (No disponible). Este permiso de seguridad se puede modificar mediante la herramienta administrativa Servicios de componentes.

      Error: (12/24/2017 06:06:04 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
      Description: La configuración de permisos específico de la aplicación no concede el permiso Activación Local para la aplicación de servidor COM con CLSID
      {6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
      y APPID
      {4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
      al usuario NT AUTHORITY\SERVICIO LOCAL con SID (S-1-5-19) en la dirección LocalHost (con LRPC) que se ejecuta en el contenedor de aplicaciones con SID No disponible (No disponible). Este permiso de seguridad se puede modificar mediante la herramienta administrativa Servicios de componentes.

      Error: (12/24/2017 06:06:04 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
      Description: La configuración de permisos específico de la aplicación no concede el permiso Activación Local para la aplicación de servidor COM con CLSID
      {6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
      y APPID
      {4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
      al usuario NT AUTHORITY\SERVICIO LOCAL con SID (S-1-5-19) en la dirección LocalHost (con LRPC) que se ejecuta en el contenedor de aplicaciones con SID No disponible (No disponible). Este permiso de seguridad se puede modificar mediante la herramienta administrativa Servicios de componentes.

      Error: (12/24/2017 06:06:04 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
      Description: La configuración de permisos específico de la aplicación no concede el permiso Activación Local para la aplicación de servidor COM con CLSID
      {6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
      y APPID
      {4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
      al usuario NT AUTHORITY\SERVICIO LOCAL con SID (S-1-5-19) en la dirección LocalHost (con LRPC) que se ejecuta en el contenedor de aplicaciones con SID No disponible (No disponible). Este permiso de seguridad se puede modificar mediante la herramienta administrativa Servicios de componentes.


      CodeIntegrity:
      ===================================
      Date: 2017-12-20 10:17:02.320
      Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume3\Windows\System32\nvspcap64.dll that did not meet the Store signing level requirements.

      Date: 2017-12-20 10:17:02.291
      Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume3\Windows\System32\nvspcap64.dll that did not meet the Store signing level requirements.

      Date: 2017-12-20 10:17:02.202
      Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume3\Program Files\Nahimic\Nahimic2\UserInterface\x64\Nahimic2DevProps.dll that did not meet the Store signing level requirements.

      Date: 2017-12-20 10:17:02.200
      Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume3\Program Files\Nahimic\Nahimic2\UserInterface\x64\Nahimic2OSD.dll that did not meet the Store signing level requirements.

      Date: 2017-12-20 10:17:02.152
      Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume3\Program Files\Nahimic\Nahimic2\UserInterface\x64\Nahimic2DevProps.dll that did not meet the Store signing level requirements.

      Date: 2017-12-20 10:17:02.150
      Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume3\Program Files\Nahimic\Nahimic2\UserInterface\x64\Nahimic2OSD.dll that did not meet the Store signing level requirements.

      Date: 2017-12-20 10:17:01.967
      Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe) attempted to load \Device\HarddiskVolume3\Windows\System32\nvspcap64.dll that did not meet the Store signing level requirements.

      Date: 2017-12-20 10:17:01.945
      Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe) attempted to load \Device\HarddiskVolume3\Windows\System32\nvspcap64.dll that did not meet the Store signing level requirements.

      Date: 2017-12-20 10:17:01.889
      Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe) attempted to load \Device\HarddiskVolume3\Program Files\Nahimic\Nahimic2\UserInterface\x64\Nahimic2DevProps.dll that did not meet the Store signing level requirements.

      Date: 2017-12-20 10:17:01.874
      Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe) attempted to load \Device\HarddiskVolume3\Program Files\Nahimic\Nahimic2\UserInterface\x64\Nahimic2OSD.dll that did not meet the Store signing level requirements.


      ==================== Memory info ===========================

      Processor: Intel(R) Core(TM) i7-6700HQ CPU @ 2.60GHz
      Percentage of memory in use: 25%
      Total physical RAM: 16338.75 MB
      Available physical RAM: 12174.69 MB
      Total Virtual: 19666.75 MB
      Available Virtual: 14550.12 MB

      ==================== Drives ================================

      Drive c: (Windows) (Fixed) (Total:237.18 GB) (Free:155.44 GB) NTFS
      Drive d: (DALLE) (Fixed) (Total:914.41 GB) (Free:874.65 GB) NTFS

      ==================== MBR & Partition Table ==================

      ========================================================
      Disk: 0 (Size: 238.5 GB) (Disk ID: 1E9B826F)

      Partition: GPT.

      ========================================================
      Disk: 1 (Size: 931.5 GB) (Disk ID: 1E9B824C)

      Partition: GPT.

      ==================== End of Addition.txt ============================

    10. #20
      Usuario Avatar de aranttxa
      Registrado
      ene 2010
      Ubicación
      Vigo- Galicia-Spain
      Mensajes
      97

      Re: Como eliminiar Chromesearch?

      Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 23-12-2017 01
      Ran by prueba (administrator) on MSI (24-12-2017 18:16:53)
      Running from C:\Users\prueba\Desktop
      Loaded Profiles: prueba (Available Profiles: prueba)
      Platform: Windows 10 Home Version 1709 16299.98 (X64) Language: Español (España, internacional)
      Internet Explorer Version 11 (Default browser: Edge)
      Boot Mode: Normal
      Tutorial for Farbar Recovery Scan Tool: ***********************************************************************************************************

      ==================== Processes (Whitelisted) =================

      (If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

      (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
      (Microsoft Corporation) C:\Windows\System32\rundll32.exe
      (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
      (SurfRight B.V.) C:\Program Files\HitmanPro\hmpsched.exe
      (Windows (R) Win 7 DDK provider) C:\Windows\System32\drivers\AdminService.exe
      (FirebirdSQL Project) C:\netfincas\netfincas\bin\fbguard.exe
      (Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe
      (Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
      (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe
      (Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\Dragon Center\MSI_ActiveX_Service.exe
      (HP) C:\Program Files (x86)\HP\HPLaserJetService\HPLaserJetService.exe
      (Rivet Networks) C:\Program Files\Killer Networking\Network Manager\KillerService.exe
      (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
      (Portrait Displays, Inc.) C:\Program Files\Portrait Displays\MSI True Color\MsiTrueColorService.exe
      (Micro-Star International Co., Ltd.) C:\Program Files (x86)\SCM\MSIService.exe
      () C:\Program Files\Gramblr\gramblr.exe
      (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
      (Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
      (Tobii AB) C:\Program Files (x86)\Tobii\Service\Tobii.Service.exe
      (Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.12.17007.17123-0\MsMpEng.exe
      (Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
      (FirebirdSQL Project) C:\netfincas\netfincas\bin\fbserver.exe
      (Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.12.17007.17123-0\NisSrv.exe
      (Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
      () C:\Program Files (x86)\Tobii\Service\Tobii EyeX Controller Core.exe
      (Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
      (SurfRight B.V.) C:\Program Files\HitmanPro\HitmanPro.exe
      (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
      (Tobii AB) C:\Program Files (x86)\Tobii\Tobii EyeX\Tobii.EyeX.Engine.exe
      (Tobii AB) C:\Program Files (x86)\Tobii\Tobii EyeX Interaction\Tobii.EyeX.Interaction.Hub.exe
      (Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
      (Tobii AB) C:\Program Files (x86)\Tobii\Tobii EyeX Interaction\Tobii.EyeX.Interaction.exe
      () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.10.572.0_x64__kzf8qxf38zg5c\SkypeHost.exe
      (Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.7\GoogleCrashHandler.exe
      (Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.7\GoogleCrashHandler64.exe
      (Microsoft Corporation) C:\Windows\System32\dllhost.exe
      (Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe
      (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
      (Portrait Displays, Inc.) C:\Program Files\Portrait Displays\MSI True Color\MsiTrueColor.exe
      (Portrait Displays, Inc) C:\Program Files\Portrait Displays\MSI True Color\MsiTrueColorHelper.exe
      (Micro-Star International Co., Ltd.) C:\Program Files (x86)\MSI\Dragon Center\Dragon Center.exe
      () C:\Program Files (x86)\SCM\SCM.exe
      (Nahimic) C:\Program Files\Nahimic\Nahimic2\UserInterface\Nahimic2UILauncher.exe
      () C:\Program Files\Nahimic\Nahimic2\UserInterface\Nahimic2Svc32.exe
      () C:\Program Files\Nahimic\Nahimic2\UserInterface\x64\Nahimic2Svc64.exe
      (Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
      (Vivaldi Technologies AS) C:\Users\prueba\AppData\Local\Vivaldi\Application\update_notifier.exe
      (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
      (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
      (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
      (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
      (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
      (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
      (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
      (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
      (Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe
      (Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\IPC\AdobeIPCBroker.exe
      (Adobe Systems Inc.) C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\acrotray.exe
      (Hewlett-Packard) C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
      (HP Development Company, L.P.) C:\Program Files (x86)\HP\StatusAlerts\bin\HPStatusAlerts.exe
      (Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ADS\Adobe Desktop Service.exe
      (Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\HEX\Adobe CEF Helper.exe
      (CyberLink Corp.) C:\Program Files (x86)\CyberLink\PowerDVD12\PDVD12Serv.exe
      (CANON INC.) C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE
      (Rivet Networks) C:\Program Files\Killer Networking\Network Manager\NetworkManager.exe
      () C:\Program Files (x86)\Adobe\Adobe Sync\CoreSync\CoreSync.exe
      (Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\CCXProcess.exe
      (Node.js) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\libs\node.exe
      (SteelSeries ApS) C:\Program Files\SteelSeries\SteelSeries Engine 3\SteelSeriesEngine3.exe
      (CANON INC.) C:\Program Files (x86)\Canon\Quick Menu\CNQMUPDT.EXE
      (Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\HEX\Adobe CEF Helper.exe
      (MAGIX AG) C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe
      (Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
      (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
      (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
      (Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
      (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
      (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
      (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
      (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
      (Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
      (Microsoft Corporation) C:\Windows\System32\dllhost.exe
      (Microsoft Corporation) C:\Windows\System32\smartscreen.exe

      ==================== Registry (Whitelisted) ===========================

      (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

      HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [630168 2017-09-29] (Microsoft Corporation)
      HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [9229280 2017-06-02] (Realtek Semiconductor)
      HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [320568 2016-09-20] (Intel Corporation)
      HKLM\...\Run: [MsiTrueColor] => C:\Program Files\Portrait Displays\MSI True Color\MsiTrueColor.exe [4811048 2016-09-09] (Portrait Displays, Inc.)
      HKLM\...\Run: [SCM] => C:\Program Files (x86)\SCM\SCM.exe [301848 2017-06-08] ()
      HKLM\...\Run: [Nahimic2UILauncher] => C:\Program Files\Nahimic\Nahimic2\UserInterface\Nahimic2UILauncher.exe [709816 2017-05-19] (Nahimic)
      HKLM\...\Run: [ShadowPlay] => "C:\Windows\system32\rundll32.exe" C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
      HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [508128 2016-07-01] (Adobe Systems Incorporated)
      HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2407008 2017-09-20] (Adobe Systems Incorporated)
      HKLM-x32\...\Run: [Acrobat Assistant 8.0] => C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Acrotray.exe [1871344 2017-11-04] (Adobe Systems Inc.)
      HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [96056 2013-05-30] (Hewlett-Packard)
      HKLM-x32\...\Run: [StatusAlerts] => C:\Program Files (x86)\HP\StatusAlerts\bin\HPStatusAlerts.exe [329992 2015-06-17] (HP Development Company, L.P.)
      HKLM-x32\...\Run: [CanonQuickMenu] => C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE [1284680 2014-01-17] (CANON INC.)
      HKLM\ DisallowedCertificates: 03D22C9C66915D58C88912B64C1F984B8344EF09 (Comodo Security Solutions) <==== ATTENTION
      HKLM\ DisallowedCertificates: 0F684EC1163281085C6AF20528878103ACEFCAAB (F-Secure Corporation) <==== ATTENTION
      HKLM\ DisallowedCertificates: 1667908C9E22EFBD0590E088715CC74BE4C60884 (FRISK Software International/F-Prot) <==== ATTENTION
      HKLM\ DisallowedCertificates: 18DEA4EFA93B06AE997D234411F3FD72A677EECE (Bitdefender SRL) <==== ATTENTION
      HKLM\ DisallowedCertificates: 2026D13756EB0DB753DF26CB3B7EEBE3E70BB2CF (G DATA Software AG) <==== ATTENTION
      HKLM\ DisallowedCertificates: 249BDA38A611CD746A132FA2AF995A2D3C941264 (Malwarebytes Corporation) <==== ATTENTION
      HKLM\ DisallowedCertificates: 31AC96A6C17C425222C46D55C3CCA6BA12E54DAF (Symantec Corporation) <==== ATTENTION
      HKLM\ DisallowedCertificates: 331E2046A1CCA7BFEF766724394BE6112B4CA3F7 (Trend Micro) <==== ATTENTION
      HKLM\ DisallowedCertificates: 3353EA609334A9F23A701B9159E30CB6C22D4C59 (Webroot Inc.) <==== ATTENTION
      HKLM\ DisallowedCertificates: 373C33726722D3A5D1EDD1F1585D5D25B39BEA1A (SUPERAntiSpyware.com) <==== ATTENTION
      HKLM\ DisallowedCertificates: 3850EDD77CC74EC9F4829AE406BBF9C21E0DA87F (Kaspersky Lab) <==== ATTENTION
      HKLM\ DisallowedCertificates: 3D496FA682E65FC122351EC29B55AB94F3BB03FC (AVG Technologies CZ) <==== ATTENTION
      HKLM\ DisallowedCertificates: 4243A03DB4C3C15149CEA8B38EEA1DA4F26BD159 (PC Tools) <==== ATTENTION
      HKLM\ DisallowedCertificates: 42727E052C0C2E1B35AB53E1005FD9EDC9DE8F01 (K7 Computing Pvt Ltd) <==== ATTENTION
      HKLM\ DisallowedCertificates: 4420C99742DF11DD0795BC15B7B0ABF090DC84DF (Doctor Web Ltd.) <==== ATTENTION
      HKLM\ DisallowedCertificates: 4C0AF5719009B7C9D85C5EAEDFA3B7F090FE5FFF (Emsisoft Ltd) <==== ATTENTION
      HKLM\ DisallowedCertificates: 5240AB5B05D11B37900AC7712A3C6AE42F377C8C (Check Point Software Technologies Ltd.) <==== ATTENTION
      HKLM\ DisallowedCertificates: 5DD3D41810F28B2A13E9A004E6412061E28FA48D (Emsisoft Ltd) <==== ATTENTION
      HKLM\ DisallowedCertificates: 7457A3793086DBB58B3858D6476889E3311E550E (K7 Computing Pvt Ltd) <==== ATTENTION
      HKLM\ DisallowedCertificates: 76A9295EF4343E12DFC5FE05DC57227C1AB00D29 (BullGuard Ltd) <==== ATTENTION
      HKLM\ DisallowedCertificates: 775B373B33B9D15B58BC02B184704332B97C3CAF (McAfee) <==== ATTENTION
      HKLM\ DisallowedCertificates: 872CD334B7E7B3C3D1C6114CD6B221026D505EAB (Comodo Security Solutions) <==== ATTENTION
      HKLM\ DisallowedCertificates: 88AD5DFE24126872B33175D1778687B642323ACF (McAfee) <==== ATTENTION
      HKLM\ DisallowedCertificates: 9132E8B079D080E01D52631690BE18EBC2347C1E (Adaware Software) <==== ATTENTION
      HKLM\ DisallowedCertificates: 982D98951CF3C0CA2A02814D474A976CBFF6BDB1 (Safer Networking Ltd.) <==== ATTENTION
      HKLM\ DisallowedCertificates: 9A08641F7C5F2CCA0888388BE3E5DBDDAAA3B361 (Webroot Inc.) <==== ATTENTION
      HKLM\ DisallowedCertificates: 9C43F665E690AB4D486D4717B456C5554D4BCEB5 (ThreatTrack Security) <==== ATTENTION
      HKLM\ DisallowedCertificates: 9E3F95577B37C74CA2F70C1E1859E798B7FC6B13 (CURIOLAB S.M.B.A.) <==== ATTENTION
      HKLM\ DisallowedCertificates: A1F8DCB086E461E2ABB4B46ADCFA0B48C58B6E99 (Avira Operations GmbH & Co. KG) <==== ATTENTION
      HKLM\ DisallowedCertificates: A5341949ABE1407DD7BF7DFE75460D9608FBC309 (BullGuard Ltd) <==== ATTENTION
      HKLM\ DisallowedCertificates: A59CC32724DD07A6FC33F7806945481A2D13CA2F (ESET) <==== ATTENTION
      HKLM\ DisallowedCertificates: AB7E760DA2485EA9EF5A6EEE7647748D4BA6B947 (AVG Technologies CZ) <==== ATTENTION
      HKLM\ DisallowedCertificates: AD4C5429E10F4FF6C01840C20ABA344D7401209F (Avast Antivirus/Software) <==== ATTENTION
      HKLM\ DisallowedCertificates: AD96BB64BA36379D2E354660780C2067B81DA2E0 (Symantec Corporation) <==== ATTENTION
      HKLM\ DisallowedCertificates: B8EBF0E696AF77F51C96DB4D044586E2F4F8FD84 (Malwarebytes Corporation) <==== ATTENTION
      HKLM\ DisallowedCertificates: CDC37C22FE9272D8F2610206AD397A45040326B8 (Trend Micro) <==== ATTENTION
      HKLM\ DisallowedCertificates: D3F78D747E7C5D6D3AE8ABFDDA7522BFB4CBD598 (Kaspersky Lab) <==== ATTENTION
      HKLM\ DisallowedCertificates: DB303C9B61282DE525DC754A535CA2D6A9BD3D87 (ThreatTrack Security) <==== ATTENTION
      HKLM\ DisallowedCertificates: DB77E5CFEC34459146748B667C97B185619251BA (Avast Antivirus/Software) <==== ATTENTION
      HKLM\ DisallowedCertificates: E22240E837B52E691C71DF248F12D27F96441C00 (Total Defense, Inc.) <==== ATTENTION
      HKLM\ DisallowedCertificates: E513EAB8610CFFD7C87E00BCA15C23AAB407FCEF (AVG Technologies CZ) <==== ATTENTION
      HKLM\ DisallowedCertificates: ED841A61C0F76025598421BC1B00E24189E68D54 (Bitdefender SRL) <==== ATTENTION
      HKLM\ DisallowedCertificates: F83099622B4A9F72CB5081F742164AD1B8D048C9 (ESET) <==== ATTENTION
      HKLM\ DisallowedCertificates: FBB42F089AF2D570F2BF6F493D107A3255A9BB1A (Panda Security S.L) <==== ATTENTION
      HKLM\ DisallowedCertificates: FFFA650F2CB2ABC0D80527B524DD3F9FC172C138 (Doctor Web Ltd.) <==== ATTENTION
      HKU\S-1-5-21-2708372172-2702831193-2062053845-1003\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [10021040 2017-10-18] (Piriform Ltd)
      HKU\S-1-5-21-2708372172-2702831193-2062053845-1003\...\Run: [Vivaldi Update Notifier] => C:\Users\prueba\AppData\Local\Vivaldi\Application\update_notifier.exe [3613768 2017-11-30] (Vivaldi Technologies AS)
      HKU\S-1-5-21-2708372172-2702831193-2062053845-1003\...\Run: [GoogleChromeAutoLaunch_866B100B1B756B3E5CBBDF0E805366BB] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [1592664 2017-12-14] (Google Inc.)
      Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Killer Control Center.lnk [2017-12-10]
      ShortcutTarget: Killer Control Center.lnk -> C:\Program Files\Killer Networking\Killer Control Center\KillerControlCenter.exe (Rivet Networks)
      Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Killer Network Manager.lnk [2017-09-28]
      ShortcutTarget: Killer Network Manager.lnk -> C:\Program Files\Killer Networking\Network Manager\NetworkManager.exe (Rivet Networks)
      Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\SteelSeries Engine 3.lnk [2017-12-11]
      ShortcutTarget: SteelSeries Engine 3.lnk -> C:\Program Files\SteelSeries\SteelSeries Engine 3\SteelSeriesEngine3.exe (SteelSeries ApS)
      GroupPolicy: Restriction - Chrome <==== ATTENTION

      ==================== Internet (Whitelisted) ====================