• Registrarse
  • Iniciar sesión


  • Página 1 de 2 12 ÚltimoÚltimo
    Resultados 1 al 10 de 17

    Malwarebytes: Unable to connect the service

    ...

    1. #1
      Usuario Avatar de rcio_18
      Registrado
      may 2012
      Ubicación
      españa
      Mensajes
      133

      Pregunta Malwarebytes: Unable to connect the service

      No puedo abrir malwarebytes, me sale ese mensaje: Unable to connect the service , hace tiempo que no lo uso pero siempre me ha ido bien, lo desinstale con your-uninstaller, y despues volvi a instalar de esta página el programa actual pero nada, que puedo hacer?

    2. #2
      Warrior Avatar de @Miguelgrado
      Registrado
      dic 2005
      Ubicación
      Asturias-España
      Mensajes
      19.424

      Re: Malwarebytes: Unable to connect the service

      Hola

      Ejecuta la herramienta de desinstalacion de Malwarebytes >> Herramientas de desinstalación de Antivirus, AntiSpyware y Firewall.



      Luego ejecutas en orden y me pegas los logs que se van generado de cada herramienta y NO reinstales nada hasta que te indique





      Ejecutas desde el escritorio >> https://toolslib.net/downloads/viewd...5-avcertclean/


      Me pegas el log que genera


      Paso 1.-: Descarga Malwarebytes Anti-Rootkit Beta >>Malwarebytes Anti-Rootkit | InfoSpyware y descomprima el contenido en su escritorio
      Paso 2.- : Desactiva tu antivirus >> Cómo deshabilitar temporalmente su Antivirus

      Abra la carpeta Mbar. Doble clic en el archivo Mbar.exe
      • En la interfaz del programa haga clic en Next.
      • Haga clic en el botón Update. Terminando clic en Next
      • Para iniciar el análisis clic en el botón Scan
      • Terminando, si hay infección clic en CleanUp, si no hay, clic en Exit.


      Al finalizar abra la carpeta Mbar, los archivos mbar-log.txt , copie y pegue todo su contenido en la siguiente respuesta y comentando los resultados.



      Descarga >> https://www.infospyware.com/antispyware/adwcleaner y colócalo en el escritorio:


      - Ejecútalo con todos los programas cerrados y con el antivirus deshabilitado >>Cómo deshabilitar temporalmente su Antivirus.
      - Si usas Windows Vista/ W 7/W 8, ejecútalo como administrador. (Botón derecho >> Ejecutar como Administrador) , aceptas la licencia (j’acepte) ..


      Presionas y das en Escanear y esperas a que el programa haga lo suyo.
      Ejecutamos Limpiar para realizar la limpieza y si nos pide reiniciar el pc lo hacemos.

      - Al terminar se abrirá un reporte en un archivo de texto, cuyo contenido deberás copiar y pegar en tu próxima respuesta.


      El reporte se encuentra también en C:\AdwCleaner- AdwCleaner[CX].txt



      1-Descarga Farbar Recovery Scan Tool By Farbar (Descarga el archivo dependiendo de la arquitectura de tu sistema).>> Como saber si mi sistema es de 32 o de 64 Bits

      • La guardas en el escritorio >> Esto es muy importante..
      • Con todos los programas /ventanas cerrados, doble clic para ejecutar Frst.exe.
      • En la ventana del Disclaimer, presiona Yes.
      • En la nueva ventana que se abre, presiona el botón Scan y espera paciente a que concluya el análisis.

      • Se abrirán dos (2) archivos (Logs), Frst.txt y Addition.txt, estos estarán grabados en tu escritorio.

      • Para terminar abres los archivos Frst.txt y Addition.Txt copia y pega todo su contenido en tu próxima respuesta. Utiliza dos mensajes si te dice que es muy largo.
      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.

    3. #3
      Usuario Avatar de rcio_18
      Registrado
      may 2012
      Ubicación
      españa
      Mensajes
      133

      Re: Malwarebytes: Unable to connect the service

      el primer programa creo que no me funciona, me sale esto


      y después un log que pone esto:

      == Scan for security software untrusted certificates | Support: <mailto:[email protected]>
      == This software will look for known security vendor certificate in the Windows Untrusted Store and remove the legit ones. This should allow your security software to launch again properly.

      [+] Writing logfile

    4. #4
      Warrior Avatar de @Miguelgrado
      Registrado
      dic 2005
      Ubicación
      Asturias-España
      Mensajes
      19.424

      Re: Malwarebytes: Unable to connect the service

      Esta correcto...sigue con lo demas
      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.

    5. #5
      Usuario Avatar de rcio_18
      Registrado
      may 2012
      Ubicación
      españa
      Mensajes
      133

      Re: Malwarebytes: Unable to connect the service

      Malwarebytes Anti-Rootkit BETA 1.10.3.1001
      www.malwarebytes.org

      Database version:
      main: v2017.12.21.08
      rootkit: v2017.10.14.01

      Windows 10 x86 NTFS
      Internet Explorer 11.1715.14393.0
      Alicia :: ALICIA [administrator]

      21/12/2017 22:52:20
      mbar-log-2017-12-21 (22-52-20).txt

      Scan type: Quick scan
      Scan options enabled: Anti-Rootkit | Drivers | MBR | Physical Sectors | Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken
      Scan options disabled:
      Objects scanned: 371963
      Time elapsed: 45 minute(s), 24 second(s)

      Memory Processes Detected: 0
      (No malicious items detected)

      Memory Modules Detected: 0
      (No malicious items detected)

      Registry Keys Detected: 0
      (No malicious items detected)

      Registry Values Detected: 0
      (No malicious items detected)

      Registry Data Items Detected: 0
      (No malicious items detected)

      Folders Detected: 0
      (No malicious items detected)

      Files Detected: 0
      (No malicious items detected)

      Physical Sectors Detected: 0
      (No malicious items detected)

      (end)

    6. #6
      Usuario Avatar de rcio_18
      Registrado
      may 2012
      Ubicación
      españa
      Mensajes
      133

      Re: Malwarebytes: Unable to connect the service

      # AdwCleaner 7.0.5.0 - Logfile created on Thu Dec 21 22:42:12 2017
      # Updated on 2017/29/11 by Malwarebytes
      # Database: 12-21-2017.1
      # Running on Windows 10 Home (X86)
      # Mode: scan
      # Support: https://www.malwarebytes.com/support

      ***** [ Services ] *****

      No malicious services found.

      ***** [ Folders ] *****

      PUP.Optional.Legacy, C:\Program Files\Tencent
      PUP.Optional.Legacy, C:\Users\Alicia\AppData\Roaming\Tencent


      ***** [ Files ] *****

      No malicious files found.

      ***** [ DLL ] *****

      No malicious DLLs found.

      ***** [ WMI ] *****

      No malicious WMI found.

      ***** [ Shortcuts ] *****

      No malicious shortcuts found.

      ***** [ Tasks ] *****

      No malicious tasks found.

      ***** [ Registry ] *****

      PUP.Optional.Legacy, [Value] - HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules | {811E24F8-957E-41C6-B47B-118E518D70D9}
      PUP.Optional.Legacy, [Value] - HKU\S-1-5-21-1025315540-1862783278-3756375316-1000\Software\Microsoft\Windows\CurrentVersion\Run | Wechat
      PUP.Optional.Legacy, [Value] - HKU\S-1-5-21-1025315540-1862783278-3756375316-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run | Wechat
      PUP.Optional.Legacy, [Value] - HKCU\Software\Microsoft\Windows\CurrentVersion\Run | Wechat
      PUP.Optional.AceStream, [Value] - HKCU\Software\RegisteredApplications | AceStream


      ***** [ Firefox (and derivatives) ] *****

      No malicious Firefox entries.

      ***** [ Chromium (and derivatives) ] *****

      PUP.Optional.SearchManager.ShrtCln, Plugin found: Search Manager -
      PUP.Optional.SearchManager.ChrPRST, Plugin found: Search Manager -

      /!\ Please Reset the Chrome Synchronization before cleaning the Chrome Preferences: https://support.google.com/chrome/answer/3097271


      *************************



      ########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt ##########

    7. #7
      Usuario Avatar de rcio_18
      Registrado
      may 2012
      Ubicación
      españa
      Mensajes
      133

      Re: Malwarebytes: Unable to connect the service

      # AdwCleaner 7.0.5.0 - Logfile created on Thu Dec 21 22:44:16 2017
      # Updated on 2017/29/11 by Malwarebytes
      # Running on Windows 10 Home (X86)
      # Mode: clean
      # Support: https://www.malwarebytes.com/support

      ***** [ Services ] *****

      No malicious services deleted.

      ***** [ Folders ] *****

      Deleted: C:\Program Files\Tencent
      Deleted: C:\Users\Alicia\AppData\Roaming\Tencent


      ***** [ Files ] *****

      No malicious files deleted.

      ***** [ DLL ] *****

      No malicious DLLs cleaned.

      ***** [ WMI ] *****

      No malicious WMI cleaned.

      ***** [ Shortcuts ] *****

      No malicious shortcuts cleaned.

      ***** [ Tasks ] *****

      No malicious tasks deleted.

      ***** [ Registry ] *****

      Deleted: [Value] - HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|{811E24F8-957E-41C6-B47B-118E518D70D9}
      Deleted: [Value] - HKU\S-1-5-21-1025315540-1862783278-3756375316-1000\Software\Microsoft\Windows\CurrentVersion\Run|Wechat
      Deleted: [Value] - HKU\S-1-5-21-1025315540-1862783278-3756375316-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run|Wechat
      Deleted: [Value] - HKCU\Software\Microsoft\Windows\CurrentVersion\Run|Wechat
      Deleted: [Value] - HKCU\Software\RegisteredApplications|AceStream


      ***** [ Firefox (and derivatives) ] *****

      No malicious Firefox entries deleted.

      ***** [ Chromium (and derivatives) ] *****

      Plugin deleted: Search Manager -
      Plugin deleted: Search Manager -


      *************************

      ::Tracing keys deleted
      ::Winsock settings cleared
      ::Additional Actions: 0



      *************************

      C:/AdwCleaner/AdwCleaner[S0].txt - [1878 B] - [2017/12/21 22:42:12]


      ########## EOF - C:\AdwCleaner\AdwCleaner[C0].txt ##########

    8. #8
      Usuario Avatar de rcio_18
      Registrado
      may 2012
      Ubicación
      españa
      Mensajes
      133

      Re: Malwarebytes: Unable to connect the service

      Additional scan result of Farbar Recovery Scan Tool (x86) Version: 17-12-2017
      Ran by Alicia (21-12-2017 23:50:41)
      Running from C:\Users\Alicia\Downloads\REVIEWS AMAZON
      Windows 10 Home Version 1607 14393.1715 (X86) (2016-09-21 12:21:45)
      Boot Mode: Normal
      ==========================================================


      ==================== Accounts: =============================

      Administrador (S-1-5-21-1025315540-1862783278-3756375316-500 - Administrator - Disabled)
      Alicia (S-1-5-21-1025315540-1862783278-3756375316-1000 - Administrator - Enabled) => C:\Users\Alicia
      Casimiro (S-1-5-21-1025315540-1862783278-3756375316-1001 - Administrator - Enabled) => C:\Users\Casimiro
      DefaultAccount (S-1-5-21-1025315540-1862783278-3756375316-503 - Limited - Disabled)
      Invitado (S-1-5-21-1025315540-1862783278-3756375316-501 - Limited - Disabled) => C:\Users\Invitado
      invitadoss (S-1-5-21-1025315540-1862783278-3756375316-1005 - Limited - Enabled) => C:\Users\Invitadoss

      ==================== Security Center ========================

      (If an entry is included in the fixlist, it will be removed.)


      ==================== Installed Programs ======================

      (Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

      . . . (HKLM\...\{73A43153-E77E-45E6-A18F-E549F8EB5664}) (Version: 2.7.1.1 - Intel) Hidden
      µTorrent (HKU\S-1-5-21-1025315540-1862783278-3756375316-1000\...\uTorrent) (Version: 3.4.9.43295 - BitTorrent Inc.)
      32 Bit HP CIO Components Installer (HKLM\...\{A80FA752-C491-4ED9-ABF0-4278563160B2}) (Version: 7.1.8 - Hewlett-Packard) Hidden
      7-Zip 16.00 (HKLM\...\7-Zip) (Version: 16.00 - Igor Pavlov)
      Actualización del controlador del Centro de dispositivos de Windows Mobile (HKLM\...\{E7044E25-3038-4A76-9064-344AC038043E}) (Version: 6.1.6965.0 - Microsoft Corporation)
      Adobe Acrobat Reader DC - Español (HKLM\...\{AC76BA86-7AD7-1034-7B44-AC0F074E4100}) (Version: 18.009.20050 - Adobe Systems Incorporated)
      Adobe AIR (HKLM\...\Adobe AIR) (Version: 23.0.0.257 - Adobe Systems Incorporated)
      Adobe Flash Player 25 NPAPI (HKLM\...\Adobe Flash Player NPAPI) (Version: 25.0.0.127 - Adobe Systems Incorporated)
      AIO_Scan (HKLM\...\{104066F4-5897-4067-85D3-4C88B67CCF75}) (Version: 130.0.421.000 - Hewlett-Packard) Hidden
      AirXonix version 1.36 (HKLM\...\AirXonix_is1) (Version: - )
      Any Video Converter Ultimate 6.1.9 (HKLM\...\Any Video Converter Ultimate_is1) (Version: - Any-Video-Converter.com)
      Athan Basic 4.5 (HKLM\...\Athan) (Version: - )
      aTube Catcher versión 3.8 (HKLM\...\{D43B360E-722D-421B-BC77-20B9E0F8B6CD}_is1) (Version: 3.8 - DsNET Corp)
      AVS Video Editor 7.3.1 (HKLM\...\AVS Video Editor_is1) (Version: 7.3.1.277 - Online Media Technologies Ltd.)
      Bandicam (HKLM\...\Bandicam) (Version: 3.3.0.1175 - Bandisoft.com)
      Bandisoft MPEG-1 Decoder (HKLM\...\BandiMPEG1) (Version: - Bandisoft.com)
      BBS Tools (HKLM\...\BBS Tools) (Version: 1.0.34 - BBS_Tools)
      BenVista PhotoZoom Pro 6.1 (HKU\S-1-5-21-1025315540-1862783278-3756375316-1000\...\PhotoZoom Pro 6) (Version: 6.1 - BenVista Ltd.)
      Bit4id - miniLector (HKLM\...\Bit4id - miniLector) (Version: 2.0 - Bit4id)
      Bonjour (HKLM\...\{D168AAD0-6686-47C1-B599-CDD4888B9D1A}) (Version: 3.1.0.1 - Apple Inc.)
      BufferChm (HKLM\...\{FA0FF682-CC70-4C57-93CD-E276F3E7537E}) (Version: 140.0.298.000 - Hewlett-Packard) Hidden
      CCleaner (HKLM\...\CCleaner) (Version: 5.37 - Piriform)
      Centro de dispositivos de Windows Mobile (HKLM\...\{904CCF62-818D-4675-BC76-D37EB399F917}) (Version: 6.1.6965.0 - Microsoft Corporation)
      Cok Free MP3 Recorder 3.0 (HKLM\...\Cok Free MP3 Recorder_is1) (Version: 3.0 - Cok Free Software)
      Copy (HKLM\...\{9BE466FF-70B7-4DA8-807C-DB4C3610FDAA}) (Version: 140.0.298.000 - Hewlett-Packard) Hidden
      Creative Jukebox Driver (HKLM\...\Creative Jukebox Driver) (Version: - )
      Creative MediaSource 5 (HKLM\...\{BEEFC4F8-2909-48B3-AFAA-55D3533FDEDD}) (Version: 5.26 - Creative Technology Limited)
      CyberGhost 6 (HKLM\...\CyberGhost 6_is1) (Version: - CyberGhost S.A.)
      DeviceDiscovery (HKLM\...\{1458BB78-1DC5-4BC0-B9A3-2B644F5A8105}) (Version: 140.0.298.000 - Hewlett-Packard) Hidden
      DJ_AIO_NS_LP_DocCD (HKLM\...\{C5C00116-FFD7-465e-8316-6055F320E7E5}) (Version: 90.0.222.000 - Hewlett-Packard) Hidden
      DJ_AIO_ProductContext (HKLM\...\{D7CDAC3E-0962-41D6-829D-6AB524120B43}) (Version: 140.0.425.000 - Hewlett-Packard) Hidden
      DJ_AIO_Software (HKLM\...\{F2C4B91A-250C-4A68-94EB-9643151F892B}) (Version: 140.0.428.000 - Hewlett-Packard) Hidden
      DJ_AIO_Software_min (HKLM\...\{EED759C0-F201-4422-86FA-264075B882ED}) (Version: 140.0.425.000 - Hewlett-Packard) Hidden
      DocProc (HKLM\...\{9B362566-EC1B-4700-BB9C-EC661BDE2175}) (Version: 140.0.185.000 - Hewlett-Packard) Hidden
      dr.fone toolkit para Android (Version 8.3.3) (HKLM\...\{7B08A1E1-3644-4237-B39D-762B5F5564D0}_is1) (Version: 8.3.3.64 - Wondershare Technology Co.,Ltd.)
      Dropbox (HKLM\...\Dropbox) (Version: 40.4.46 - Dropbox, Inc.)
      Easy File Locker 2.2 (HKLM\...\Easy File Locker) (Version: 2.2 - XOSLAB.COM)
      Eines de correcció del Microsoft Office 2013: català (HKLM\...\{90150000-001F-0403-0000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
      eRclient 2.0.10.210 (HKU\S-1-5-21-1025315540-1862783278-3756375316-1000\...\{5CBD4386-2DE5-43A2-AED7-E690BF9B0F04}_is1) (Version: 2.0.10.210 - eRmail Company, s. r. o.)
      ESET Smart Security (HKLM\...\{F3925F8F-4F7C-4F94-A433-5C7C58F1A7B2}) (Version: 10.1.235.1 - ESET, spol. s r.o.)
      F4100 (HKLM\...\{5C3AF724-B144-4AC1-B2CB-FB6D447116F1}) (Version: 140.0.425.000 - Hewlett-Packard) Hidden
      F4100_Help (HKLM\...\{A6B90148-02C5-4fd3-8D7A-EF2386835CB9}) (Version: 90.0.222.000 - Hewlett-Packard) Hidden
      Facebook Video Calling 3.1.0.521 (HKLM\...\{2091F234-EB58-4B80-8C96-8EB78C808CF7}) (Version: 3.1.521 - Skype Limited)
      Ferramentas de verificación de Microsoft Office 2013 - Galego (HKLM\...\{90150000-001F-0456-0000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
      File Repair (HKLM\...\File Repair_is1) (Version: - File Repair)
      Free PDF to Word Converter 5.1.0.383 (HKLM\...\Free PDF to Word Converter_is1) (Version: 5.1.0.383 - Smart Soft)
      Google Chrome (HKLM\...\Google Chrome) (Version: 63.0.3239.84 - Google Inc.)
      Google Update Helper (HKLM\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.7 - Google Inc.) Hidden
      GPBaseService2 (HKLM\...\{BB3447F6-9553-4AA9-960E-0DB5310C5779}) (Version: 140.0.297.000 - Hewlett-Packard) Hidden
      Hercules Blog Webcam (HKLM\...\{0760DE01-36E3-44BF-9F3B-EDED55D7B105}) (Version: 3.2.2.1 - Hercules)
      Hercules Webcam Station Evolution (HKLM\...\{B60D61FD-1CB1-4ED5-974E-8C959F14208E}) (Version: 4.1.1.2 - Hercules)
      HP Customer Participation Program 14.0 (HKLM\...\HPExtendedCapabilities) (Version: 14.0 - HP)
      HP Deskjet All-In-One Software (HKLM\...\{2CB8566A-8EA6-417A-BAB1-1B10A88C79BB}) (Version: 14.0 - HP)
      HP Imaging Device Functions 14.0 (HKLM\...\HP Imaging Device Functions) (Version: 14.0 - HP)
      HP Solution Center 14.0 (HKLM\...\HP Solution Center & Imaging Support Tools) (Version: 14.0 - HP)
      HP Update (HKLM\...\{912D30CF-F39E-4B31-AD9A-123C6B794EE2}) (Version: 5.005.002.002 - Hewlett-Packard)
      HPPhotoSmartDiscLabelContent1 (HKLM\...\{681B698F-C997-42C3-B184-B489C6CA24C9}) (Version: 2.04.0000 - Hewlett-Packard) Hidden
      HPProductAssistant (HKLM\...\{150B6201-E9E6-4DFB-960E-CCBD53FBDDED}) (Version: 140.0.298.000 - Hewlett-Packard) Hidden
      HPSSupply (HKLM\...\{AC35A885-0F8F-4857-B7DA-6E8DFB43E6B3}) (Version: 140.0.297.000 - Hewlett-Packard) Hidden
      HTC Driver Installer (HKLM\...\{4CEEE5D0-F905-4688-B9F9-ECC710507796}) (Version: 4.1.0.001 - HTC Corporation)
      Intel(R) Management Engine Components (HKLM\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.5.23.1766 - Intel Corporation)
      Intel(R) Processor Graphics (HKLM\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.4425 - Intel Corporation)
      Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 12.9.0.1001 - Intel Corporation)
      Intel® Driver Update Utility (HKLM\...\{29539bc2-b48e-4b56-93e8-420e38a6d551}) (Version: 2.7.1.1 - Intel)
      Java 8 Update 121 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F32180121F0}) (Version: 8.0.1210.13 - Oracle Corporation)
      JuegoDomino (HKLM\...\{0F2E223E-1BCD-4A4E-9125-F450B68CCCC2}) (Version: 1.08.009 - )
      KC Softwares SUMo (HKLM\...\KC Softwares SUMo_is1) (Version: 5.1.3.353 - KC Softwares)
      Kingo ROOT version 1.4.6.2750 (HKLM\...\{AE7675D6-0B31-494F-ABFA-822E1A0FDF17}_is1) (Version: 1.4.6.2750 - Kingosoft Technology Ltd.)
      LAME v3.99.3 (for Windows) (HKLM\...\LAME_is1) (Version: - )
      MarketResearch (HKLM\...\{D360FA88-17C8-4F14-B67F-13AAF9607B12}) (Version: 140.0.299.000 - Hewlett-Packard) Hidden
      Microsoft Office Professional Plus 2013 (HKLM\...\Office15.PROPLUS) (Version: 15.0.4569.1506 - Microsoft Corporation)
      Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50907.0 - Microsoft Corporation)
      Microsoft Smart Card Base Components (HKLM\...\SmartcardBase) (Version: - )
      Microsoft Visual C++ 2005 Redistributable - x86 8.0.61001 (HKLM\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
      Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
      Microsoft Visual C++ 2010 Redistributable - x86 10.0.40219 (HKLM\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
      Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM\...\{f0080ca2-80ae-4958-b6eb-e8fa916d744a}) (Version: 11.0.61030.0 - Корпорация Майкрософт)
      Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40660 (HKLM\...\{10dc8dbf-d3d7-4e23-be07-120fe5c66b78}) (Version: 12.0.40660.0 - Корпорация Майкрософт)
      Microsoft Visual C++ 2017 RC Redistributable (x86) - 14.10.24728 (HKLM\...\{38602f72-a7f8-456b-84e5-6e200dc99917}) (Version: 14.10.24728.0 - Microsoft Corporation)
      Microsoft Visual Studio 2010 Tools for Office Runtime (x86) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x86)) (Version: 10.0.50903 - Microsoft Corporation)
      Mozilla Firefox 57.0.2 (x86 es-ES) (HKLM\...\Mozilla Firefox 57.0.2 (x86 es-ES)) (Version: 57.0.2 - Mozilla)
      MSXML 4.0 SP2 (KB954430) (HKLM\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
      MSXML 4.0 SP2 (KB973688) (HKLM\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
      Mus 2005 de Juan Parra (HKLM\...\Mus 2000 de Juan Parra_is1) (Version: - Juan Parra)
      Nik Collection (HKLM\...\Nik Collection) (Version: 1.2.11 - Google)
      OCR Software by I.R.I.S. 14.0 (HKLM\...\HPOCR) (Version: 14.0 - HP)
      OpenAL (HKLM\...\OpenAL) (Version: - )
      OpenMG Limited Patch 4.7-07-14-05-01 (HKLM\...\OpenMG HotFix4.7-07-13-22-01) (Version: - )
      OpenMG Secure Module 4.7.00 (HKLM\...\{CCD663AE-610D-4BDF-AAB0-E914B044527D}) (Version: 4.7.00.12140 - Sony Corporation) Hidden
      OpenMG Secure Module 4.7.00 (HKLM\...\InstallShield_{CCD663AE-610D-4BDF-AAB0-E914B044527D}) (Version: 4.7.00.12140 - Sony Corporation)
      Opera Stable 43.0.2442.1192 (HKU\S-1-5-21-1025315540-1862783278-3756375316-1000\...\Opera 43.0.2442.1192) (Version: 43.0.2442.1192 - Opera Software)
      Opticon USB Drivers Installer (HKLM\...\Opticon USB Installer) (Version: - )
      Outils de vérification linguistique 2013 de Microsoft Office*- Français (HKLM\...\{90150000-001F-040C-0000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
      Paquete de compatibilidad para 2007 Office system (HKLM\...\{90120000-0020-0C0A-0000-0000000FF1CE}) (Version: 12.0.6514.5001 - Microsoft Corporation)
      Paquete de controladores de Windows - Silicon Laboratories (silabenm) Ports (03/19/2014 6.7.0.0) (HKLM\...\B97004A400E30DCF940971EFA7A0C13C6B0A4B66) (Version: 03/19/2014 6.7.0.0 - Silicon Laboratories)
      Paquete de idioma de Microsoft Visual Studio 2010 Tools para Office Runtime (x86) - ESN (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x86) Language Pack - ESN) (Version: 10.0.50903 - Microsoft Corporation)
      PdaNet+ for Android 4.19 (HKLM\...\PdaNet_is1) (Version: - June Fabrics Technology Inc)
      PDFCreator (HKLM\...\{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}) (Version: 2.3.2 - pdfforge GmbH)
      Pixillion Image Converter (HKLM\...\Pixillion) (Version: 3.04 - NCH Software)
      RapiCapWin 1.0.10 (HKLM\...\RapiCapWin_is1) (Version: 1.0.10 - Andres Carizza)
      Realtek Ethernet Controller Driver (HKLM\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.80.218.2014 - Realtek)
      Realtek High Definition Audio Driver (HKLM\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8186 - Realtek Semiconductor Corp.)
      Recuva (HKLM\...\Recuva) (Version: 1.53 - Piriform)
      Revisores de Texto do Microsoft Office 2013 – Português do Brasil (HKLM\...\{90150000-001F-0416-0000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
      RouterKeygen (HKLM\...\RouterKeygen) (Version: 1.1.0 - Rui Araújo)
      Samsung Kies (HKLM\...\{758C8301-2696-4855-AF45-534B1200980A}) (Version: 2.6.4.16113.3 - Samsung Electronics Co., Ltd.) Hidden
      Samsung Kies (HKLM\...\InstallShield_{758C8301-2696-4855-AF45-534B1200980A}) (Version: 2.6.4.16113.3 - Samsung Electronics Co., Ltd.)
      Samsung USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.5.61.0 - Samsung Electronics Co., Ltd.)
      Scan (HKLM\...\{06A1D88C-E102-4527-AF70-29FFD7AF215A}) (Version: 140.0.253.000 - Hewlett-Packard) Hidden
      Secunia PSI (3.0.0.11005) (HKLM\...\Secunia PSI) (Version: 3.0.0.11005 - Secunia)
      Service Pack 1 for Microsoft Office 2013 (KB2850036) 32-Bit Edition (HKLM\...\{90150000-0011-0000-0000-0000000FF1CE}_Office15.PROPLUS_{7F6C4883-A18C-459A-82C1-A2F9403F2DA6}) (Version: - Microsoft)
      Servicios de impresión de Bonjour (HKLM\...\{9D210D79-AEC5-453B-960C-4DD2C73931E1}) (Version: 2.0.2.0 - Apple Inc.)
      Setup KAZA DT 300 (HKLM\...\{07432956-2E08-49B1-8B9B-EE8479B6145F}) (Version: 2.0.0 - CDP)
      Skype Click to Call (HKLM\...\{873F8E7C-10E6-449F-BD7E-5FBA7C8E1C9B}) (Version: 8.5.0.9167 - Microsoft Corporation)
      Skype™ 7.40 (HKLM\...\{3B7E914A-93D5-4A29-92BB-AF8C3F66C431}) (Version: 7.40.151 - Skype Technologies S.A.)
      Smart Switch (HKLM\...\{74FA5314-85C8-4E2A-907D-D9ECCCB770A7}) (Version: 4.1.17054.16 - Samsung Electronics Co., Ltd.) Hidden
      Smart Switch (HKLM\...\InstallShield_{74FA5314-85C8-4E2A-907D-D9ECCCB770A7}) (Version: 4.1.17054.16 - Samsung Electronics Co., Ltd.)
      SmartWebPrinting (HKLM\...\{DC635845-46D3-404B-BCB1-FC4A91091AFA}) (Version: 130.0.457.000 - Hewlett-Packard) Hidden
      Software para dispositivos de chipset Intel® (HKLM\...\{619e726e-d2b4-4e28-9568-c964fd81ee6c}) (Version: 10.1.1.14 - Intel(R) Corporation) Hidden
      SolutionCenter (HKLM\...\{BC5DD87B-0143-4D14-AAE6-97109614DC6B}) (Version: 140.0.299.000 - Hewlett-Packard) Hidden
      SonicStage 4.3 (HKLM\...\{A0EB195B-5876-48E6-879D-33D4B2102610}) (Version: 4.3 - Sony Corporation)
      Status (HKLM\...\{5B025634-7D5B-4B8D-BE2A-7943C1CF2D5D}) (Version: 140.0.342.000 - Hewlett-Packard) Hidden
      TAP-Windows 9.21.2 (HKLM\...\TAP-Windows) (Version: 9.21.2 - )
      TeamViewer 12 (HKLM\...\TeamViewer) (Version: 12.0.72365 - TeamViewer)
      TL-WN822N/TL-WN821N Driver (HKLM\...\{62FE0726-9652-4CD2-9F09-C769D8699C21}) (Version: 1.0.0 - TP-LINK)
      TomTom HOME (HKLM\...\{B581E191-A2C1-4CE3-907E-9FE3C728750C}) (Version: 2.9.91 - Nombre de su organización)
      TomTom HOME Visual Studio Merge Modules (HKLM\...\{8F3C31C5-9C3A-4AA8-8EFA-71290A7AD533}) (Version: 1.0.2 - TomTom International B.V.)
      Toolbox (HKLM\...\{292F0F52-B62D-4E71-921B-89A682402201}) (Version: 140.0.596.000 - Hewlett-Packard) Hidden
      TP-LINK Wireless Configuration Utility (HKLM\...\{319D91C6-3D44-436C-9F79-36C0D22372DC}) (Version: 1.0.0 - TP-LINK)
      TrayApp (HKLM\...\{CD31E63D-47FD-491C-8117-CF201D0AFAB5}) (Version: 140.0.297.000 - Hewlett-Packard) Hidden
      Unity Web Player (HKU\S-1-5-21-1025315540-1862783278-3756375316-1000\...\UnityWebPlayer) (Version: 4.6.5f1 - Unity Technologies ApS)
      UnloadSupport (HKLM\...\{4E7C28C7-D5DA-4E9F-A1CA-60490B54AE35}) (Version: 11.0.0 - Hewlett-Packard) Hidden
      USB-to-serial adapter driver (Driver Removal) (HKLM\...\CYG_COMM&10C4&803B) (Version: - )
      USB-to-serial adapter driver (Driver Removal) (HKLM\...\SLABCOMM&10C4&803B) (Version: - )
      Visual Studio C++ 10.0 Runtime (HKLM\...\{4412F224-3849-4461-A3E9-DEEF8D252790}) (Version: 10.0.0 - TomTom International B.V.)
      VLC media player (HKLM\...\VLC media player) (Version: 2.2.4 - VideoLAN)
      WebReg (HKLM\...\{8EE94FD8-5F52-4463-A340-185D16328158}) (Version: 140.0.297.017 - Hewlett-Packard) Hidden
      WeChat (HKLM\...\WeChat) (Version: 2.6.0.56 - 腾讯科技(深圳)有限公司)
      Windows 10 Update and Privacy Settings (HKLM\...\{542CC2C2-ABAF-4604-8723-DA296AF74540}) (Version: 1.0.14.0 - Microsoft Corporation)
      Windows Driver Package - Google, Inc. (WinUSB) AndroidUsbDeviceClass (08/27/2012 7.0.0000.00001) (HKLM\...\8F9C586770119C5E2691CBF69E16EE1E8513B728) (Version: 08/27/2012 7.0.0000.00001 - Google, Inc.)
      Windows Driver Package - MediaTek Inc. (usbser) Ports (05/30/2011 1.1123.0) (HKLM\...\9F57DFB5B4E90E617CAF60510F56318C1F80CC8C) (Version: 05/30/2011 1.1123.0 - MediaTek Inc.)
      Windows Driver Package - MediaTek Inc. (usbser) Ports (11/15/2007 5.1.2600.0) (HKLM\...\1C5CFF9BD49397D32DDD8D47E3AC26557809E1C5) (Version: 11/15/2007 5.1.2600.0 - MediaTek Inc.)
      Windows Driver Package - OPTO ELECTRONICS CO.,LTD (optousb) Ports (06/02/2008 2.0.5.5) (HKLM\...\0BCA6D24013166B380927D270B90FF6D447A4AAA) (Version: 06/02/2008 2.0.5.5 - OPTO ELECTRONICS CO.,LTD)
      WinDS PRO 2016.04.08 (HKLM\...\{4237FF56-4BD0-481E-BD44-C1A8DDA9C753}_is1) (Version: 2016.04.08 - WinDS PRO Central)
      WinDS PRO Apps 2015.12.16 (HKLM\...\{92C4C953-5CE1-4DC3-97D5-BBD1A63EF706}_is1) (Version: 2015.12.16 - WinDS PRO Central)
      WinDS PRO Zero (HKU\S-1-5-21-1025315540-1862783278-3756375316-1000\...\1f42f26def8c6ced) (Version: 1.0.0.6 - WinDS PRO)
      WinPcap 4.1.3 (HKLM\...\WinPcapInst) (Version: 4.1.0.2980 - Riverbed Technology, Inc.)
      WinRAR 5.40 (32-bit) (HKLM\...\WinRAR archiver) (Version: 5.40.0 - win.rar GmbH)
      Wondershare Filmora(Build 7.5.0) (HKLM\...\Wondershare Filmora_is1) (Version: - Wondershare Software)
      Wondershare Helper Compact 2.5.0 (HKLM\...\{5363CE84-5F09-48A1-8B6C-6BB590FFEDF2}_is1) (Version: 2.5.0 - Wondershare)

      ==================== Custom CLSID (Whitelisted): ==========================

      (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

      CustomCLSID: HKU\S-1-5-21-1025315540-1862783278-3756375316-1000_Classes\CLSID\{00020420-0000-0000-C000-000000000046}\InprocServer32 -> C:\Windows\system32\oleaut32.dll (Microsoft Corporation)
      CustomCLSID: HKU\S-1-5-21-1025315540-1862783278-3756375316-1000_Classes\CLSID\{00020421-0000-0000-C000-000000000046}\InprocServer32 -> C:\Windows\system32\oleaut32.dll (Microsoft Corporation)
      CustomCLSID: HKU\S-1-5-21-1025315540-1862783278-3756375316-1000_Classes\CLSID\{00020422-0000-0000-C000-000000000046}\InprocServer32 -> C:\Windows\system32\oleaut32.dll (Microsoft Corporation)
      CustomCLSID: HKU\S-1-5-21-1025315540-1862783278-3756375316-1000_Classes\CLSID\{00020423-0000-0000-C000-000000000046}\InprocServer32 -> C:\Windows\system32\oleaut32.dll (Microsoft Corporation)
      CustomCLSID: HKU\S-1-5-21-1025315540-1862783278-3756375316-1000_Classes\CLSID\{00020424-0000-0000-C000-000000000046}\InprocServer32 -> C:\Windows\system32\oleaut32.dll (Microsoft Corporation)
      CustomCLSID: HKU\S-1-5-21-1025315540-1862783278-3756375316-1000_Classes\CLSID\{00020425-0000-0000-C000-000000000046}\InprocServer32 -> C:\Windows\system32\oleaut32.dll (Microsoft Corporation)
      CustomCLSID: HKU\S-1-5-21-1025315540-1862783278-3756375316-1000_Classes\CLSID\{090746F9-9F39-42C0-920A-4852C2EDE704}\InprocServer32 -> C:\Users\Alicia\AppData\Local\Temp\{238E453B-1B69-445B-8375-DD32DAC7ED2E}\APAX.dll => No File
      CustomCLSID: HKU\S-1-5-21-1025315540-1862783278-3756375316-1000_Classes\CLSID\{444785F1-DE89-4295-863A-D46C3A781394}\InprocServer32 -> C:\Users\Alicia\AppData\LocalLow\Unity\WebPlayer\loader\UnityWebPluginAX.ocx (Unity Technologies ApS)
      CustomCLSID: HKU\S-1-5-21-1025315540-1862783278-3756375316-1000_Classes\CLSID\{780927D9-C564-4C09-8892-43E6EF2A8AFB}\InprocServer32 -> C:\Users\Alicia\AppData\Local\Temp\{238E453B-1B69-445B-8375-DD32DAC7ED2E}\APAX.dll => No File
      CustomCLSID: HKU\S-1-5-21-1025315540-1862783278-3756375316-1000_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\WINDOWS\system32\igfxEM.exe (Intel Corporation)
      CustomCLSID: HKU\S-1-5-21-1025315540-1862783278-3756375316-1000_Classes\CLSID\{97CB95C2-6AE7-46B5-9450-93B0AF64D642}\InprocServer32 -> C:\Users\Alicia\AppData\Local\Temp\{238E453B-1B69-445B-8375-DD32DAC7ED2E}\APAX.dll => No File
      CustomCLSID: HKU\S-1-5-21-1025315540-1862783278-3756375316-1000_Classes\CLSID\{D2FE9F72-1206-49A3-9EF7-B2304D69A59B}\InprocServer32 -> C:\Users\Alicia\AppData\Local\Temp\{2412A504-0FE6-4599-9386-E21654636A30}\APAX.dll => No File
      ShellIconOverlayIdentifiers: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files\Dropbox\Client\DropboxExt.19.0.dll [2017-12-05] (Dropbox, Inc.)
      ShellIconOverlayIdentifiers: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files\Dropbox\Client\DropboxExt.19.0.dll [2017-12-05] (Dropbox, Inc.)
      ShellIconOverlayIdentifiers: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files\Dropbox\Client\DropboxExt.19.0.dll [2017-12-05] (Dropbox, Inc.)
      ShellIconOverlayIdentifiers: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files\Dropbox\Client\DropboxExt.19.0.dll [2017-12-05] (Dropbox, Inc.)
      ShellIconOverlayIdentifiers: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files\Dropbox\Client\DropboxExt.19.0.dll [2017-12-05] (Dropbox, Inc.)
      ShellIconOverlayIdentifiers: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files\Dropbox\Client\DropboxExt.19.0.dll [2017-12-05] (Dropbox, Inc.)
      ShellIconOverlayIdentifiers: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files\Dropbox\Client\DropboxExt.19.0.dll [2017-12-05] (Dropbox, Inc.)
      ShellIconOverlayIdentifiers: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files\Dropbox\Client\DropboxExt.19.0.dll [2017-12-05] (Dropbox, Inc.)
      ShellIconOverlayIdentifiers: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files\Dropbox\Client\DropboxExt.19.0.dll [2017-12-05] (Dropbox, Inc.)
      ShellIconOverlayIdentifiers: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files\Dropbox\Client\DropboxExt.19.0.dll [2017-12-05] (Dropbox, Inc.)
      ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2016-05-10] (Igor Pavlov)
      ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => -> No File
      ContextMenuHandlers1: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files\Dropbox\Client\DropboxExt.19.0.dll [2017-12-05] (Dropbox, Inc.)
      ContextMenuHandlers1: [ESET Smart Security - Context Menu Shell Extension] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Smart Security\shellExt.dll [2017-10-10] (ESET)
      ContextMenuHandlers1: [PDFCreator.ShellContextMenu] -> {d9cea52e-100d-4159-89ea-76e845bc13e1} => C:\WINDOWS\system32\mscoree.dll [2016-07-16] (Microsoft Corporation)
      ContextMenuHandlers1: [WinRAR] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2016-08-14] (Alexander Roshal)
      ContextMenuHandlers2: [ESET Smart Security - Context Menu Shell Extension] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Smart Security\shellExt.dll [2017-10-10] (ESET)
      ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2016-05-10] (Igor Pavlov)
      ContextMenuHandlers4: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files\Dropbox\Client\DropboxExt.19.0.dll [2017-12-05] (Dropbox, Inc.)
      ContextMenuHandlers4: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} => -> No File
      ContextMenuHandlers4: [RecuvaShellExt] -> {435E5DF5-2510-463C-B223-BDA47006D002} => C:\Program Files\Recuva\RecuvaShell.dll [2016-06-06] (Piriform Ltd)
      ContextMenuHandlers5: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files\Dropbox\Client\DropboxExt.19.0.dll [2017-12-05] (Dropbox, Inc.)
      ContextMenuHandlers5: [Gadgets] -> {6B9228DA-9C15-419e-856C-19E768A13BDC} => -> No File
      ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
      ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\system32\igfxDTCM.dll [2016-05-12] (Intel Corporation)
      ContextMenuHandlers5: [igfxOSP] -> {FA507C3F-30C6-4DCA-9EE5-2656072EEC14} => C:\WINDOWS\system32\igfxOSP.dll [2016-05-12] (Intel Corporation)
      ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2016-05-10] (Igor Pavlov)
      ContextMenuHandlers6: [ESET Smart Security - Context Menu Shell Extension] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Smart Security\shellExt.dll [2017-10-10] (ESET)
      ContextMenuHandlers6: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} => -> No File
      ContextMenuHandlers6: [RecuvaShellExt] -> {435E5DF5-2510-463C-B223-BDA47006D002} => C:\Program Files\Recuva\RecuvaShell.dll [2016-06-06] (Piriform Ltd)
      ContextMenuHandlers6: [WinRAR] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2016-08-14] (Alexander Roshal)

      ==================== Scheduled Tasks (Whitelisted) =============

      (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

      Task: {1F60BD96-A8F9-425F-817E-07E8399800D9} - \GlaryInitialize 5 -> No File <==== ATTENTION
      Task: {284C823E-710A-4BF6-B3F1-8BBAD0096BF7} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2017-11-08] (Piriform Ltd)
      Task: {32B69A67-7B4A-4FFA-A6E4-6B204928E6A1} - System32\Tasks\{6B46BB6C-D81E-4B4B-B704-60305698E7C0} => C:\Windows\system32\pcalua.exe -a "D:\COSAS ALICIA\emulador y juegos\Crash Bandicoot Cortex Strikes Back.exe" -d "D:\COSAS ALICIA\emulador y juegos"
      Task: {49C8FB9A-1524-4BAA-9472-3873AD216EE6} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [2017-11-08] (Piriform Ltd)
      Task: {4B5FCE68-0C64-4E35-A0D0-B28891945BDC} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [2014-01-23] (Microsoft Corporation)
      Task: {5A4D5CF0-38C8-4292-A5F7-6A2A166D23E0} - System32\Tasks\{36253A7D-C937-4C41-9FE7-379F576B398F} => C:\Windows\system32\pcalua.exe -a "C:\Users\Alicia\Downloads\DENUNCIAS FB JUGADORES\P4S_PCDRV_US_1_01_00.exe" -d "C:\Users\Alicia\Downloads\DENUNCIAS FB JUGADORES"
      Task: {60A69ABC-E583-4DFA-9133-7945FAD11A48} - System32\Tasks\{CD284A84-B1F0-40A0-A779-64316978D613} => C:\WINDOWS\system32\pcalua.exe -a "C:\Users\Alicia\Downloads\REVIVIR ANDROID\ANDROID 6\DRIVERS\InstallDriver.exe" -d "C:\Users\Alicia\Downloads\REVIVIR ANDROID\ANDROID 6\DRIVERS"
      Task: {612AD343-5667-454B-B4AB-FC54D9FE62C2} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [2014-01-23] (Microsoft Corporation)
      Task: {7C468B1E-7C9C-4807-B374-1146815D3F51} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe [2014-01-23] (Microsoft Corporation)
      Task: {7FC84265-0F26-4642-BED7-C0DEFF3DBF30} - System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1025315540-1862783278-3756375316-1001 => C:\Users\Alicia\AppData\Local\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe
      Task: {8B4A4816-6142-4F7C-AD9C-78056540603C} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\WINDOWS\explorer.exe /NOUACCHECK
      Task: {91CBF49C-1801-44F1-905C-E8FFB65B19E8} - System32\Tasks\OneDrive Standalone Update Task v2 => C:\Users\Alicia\AppData\Local\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe
      Task: {93A9CE5D-5600-4F8B-9649-1EEE76217132} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-08-06] (Google Inc.)
      Task: {A321381B-9045-465A-8A95-CF36A6F76E35} - System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1025315540-1862783278-3756375316-1005 => C:\Users\Alicia\AppData\Local\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe
      Task: {A96B6955-A58E-485B-BBBB-08D2404660AA} - System32\Tasks\{E9F2E931-CDDA-46AA-86E0-DB3D1678EC5E} => C:\WINDOWS\system32\pcalua.exe -a "C:\Users\Alicia\Downloads\PUBLICAR\ANDROID 6\DRIVERS\InstallDriver.exe" -d "C:\Users\Alicia\Downloads\PUBLICAR\ANDROID 6\DRIVERS"
      Task: {ABD4F88E-CA2B-4398-BD13-CB9354582DC8} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\Program Files\Windows Defender\\MpCmdRun.exe [2017-08-08] (Microsoft Corporation)
      Task: {B3311BE9-0C8F-4194-8B85-392BDC7FCFD9} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2017-09-27] (Adobe Systems Incorporated)
      Task: {C4B87FE7-5583-4C31-842B-445DF8ED125B} - System32\Tasks\{809A4C37-9CD5-4521-B494-4750D6F521ED} => C:\WINDOWS\system32\pcalua.exe -a C:\Users\Alicia\AppData\Local\Microsoft\Windows\INetCache\IE\8AKFF5YJ\ConsumerInputSetup-3.2.4-4285-IE.exe -d C:\Users\Alicia\Desktop
      Task: {CB3FE4C2-FBC4-4EF0-91A0-8C8253510614} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2017-03-15] (Adobe Systems Incorporated)
      Task: {CDD964B5-4D47-47AA-B737-A84B4AA2214A} - System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1025315540-1862783278-3756375316-1004 => C:\Users\Alicia\AppData\Local\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe
      Task: {DC505472-39F0-48E6-BB37-074F9E7FFFEC} - System32\Tasks\{12AA68D0-A396-4163-877A-A0983C84CFB5} => C:\WINDOWS\system32\pcalua.exe -a C:\Users\Alicia\Downloads\optousb32.exe -d C:\WINDOWS\system32
      Task: {F25EF8C9-0AC9-419F-8EC9-1ACF1A9B5D38} - System32\Tasks\{AA9D0BCF-F1B5-4674-9ECC-32C2A038F2F4} => C:\Windows\system32\pcalua.exe -a "C:\Users\Alicia\Downloads\DENUNCIAS FB JUGADORES\CMS5_PCAPP_LB_5_10_38.exe" -d "C:\Users\Alicia\Downloads\DENUNCIAS FB JUGADORES"
      Task: {F5FDEE15-984D-470A-A1C1-DACC4242E188} - System32\Tasks\Opera scheduled Autoupdate 1489253344 => C:\Program Files\Opera\launcher.exe [2017-03-10] (Opera Software)
      Task: {F691629B-4017-4834-877D-D7F9EB2A328C} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-08-06] (Google Inc.)
      Task: {FB7CD53D-E9EA-4784-BEB1-E70A2E7FC720} - System32\Tasks\{0DB925CA-FB20-4145-BDC8-CF3AA2F2380F} => C:\WINDOWS\system32\pcalua.exe -a "C:\Program Files\Sony\SonicStage\Omgjbox.exe" -d C:\Users\Alicia\Desktop

      (If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

      Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe

      ==================== Shortcuts & WMI ========================

      (The entries could be listed to be restored or removed.)


      ==================== Loaded Modules (Whitelisted) ==============

      2016-07-16 09:25 - 2016-07-16 09:25 - 000190976 _____ () C:\WINDOWS\SYSTEM32\ism32k.dll
      2017-09-13 11:55 - 2017-09-07 07:29 - 002048496 _____ () C:\WINDOWS\system32\CoreUIComponents.dll
      2016-07-16 17:50 - 2017-01-06 18:29 - 000017384 _____ () C:\Users\Alicia\AppData\Local\Kingosoft\Kingo Root\update_54326\bin\KingoSoftService.exe
      2016-09-21 13:38 - 2016-09-21 13:38 - 000679624 _____ () C:\Users\Alicia\AppData\Local\Microsoft\OneDrive\17.3.6390.0509\ClientTelemetry.dll
      2016-07-16 09:25 - 2016-07-16 09:25 - 000108032 _____ () C:\Windows\ShellExperiences\Windows.UI.Shell.SharedUtilities.dll
      2017-03-14 21:43 - 2017-03-04 07:24 - 000321536 _____ () C:\Windows\ShellExperiences\QuickActions.dll
      2017-03-14 21:41 - 2017-03-04 07:04 - 006726656 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
      2017-09-13 11:54 - 2017-09-07 06:29 - 001150464 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
      2016-09-21 13:39 - 2016-09-21 13:39 - 000526848 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CSGSuggestLib.dll
      2017-09-13 11:54 - 2017-09-07 06:29 - 000779776 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Actions.dll
      2017-09-13 11:54 - 2017-09-07 06:29 - 001724928 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
      2017-09-13 11:54 - 2017-09-07 06:34 - 003158528 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
      2014-04-11 18:22 - 2013-12-10 00:27 - 001242584 _____ () C:\Program Files\Intel\Intel(R) Management Engine Components\LMS\ACE.dll
      2017-07-18 19:13 - 2017-07-18 19:14 - 017818112 _____ () C:\Program Files\WindowsApps\9E2F88E3.Twitter_5.8.1.0_x86__wgeqdkkx372wm\Twitter.Windows.dll
      2017-12-21 22:18 - 2017-12-21 22:19 - 000075264 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.10.572.0_x86__kzf8qxf38zg5c\SkypeHost.exe
      2017-12-21 22:18 - 2017-12-21 22:19 - 000166400 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.10.572.0_x86__kzf8qxf38zg5c\SkypeBackgroundTasks.dll
      2017-12-21 22:18 - 2017-12-21 22:19 - 017771008 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.10.572.0_x86__kzf8qxf38zg5c\SkyWrap.dll
      2017-12-21 22:18 - 2017-12-21 22:19 - 001789440 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.10.572.0_x86__kzf8qxf38zg5c\skypert.dll
      2017-03-14 21:41 - 2017-03-04 06:57 - 000093184 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Dss.BackgroundTask.dll
      2017-03-14 21:41 - 2017-03-04 06:57 - 000094720 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\DeviceSideServicesActionUriHandler.dll
      2017-03-14 21:41 - 2017-03-04 06:57 - 000379904 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.NodeWinrtWrap.dll
      2016-07-16 09:26 - 2016-07-16 18:21 - 000033792 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\dss_service\node_modules\winrt-projections\bin\Winrt_Projections.node
      2016-07-16 09:26 - 2016-07-16 18:21 - 000525312 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\dss_service\node_modules\windows.web.http\bin\NodeRT_Windows_Web_Http.node
      2016-07-16 09:26 - 2016-07-16 18:21 - 000667136 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\dss_service\node_modules\windows.web.http.headers\bin\NodeRT_Windows_Web_Http_Headers.node
      2016-07-16 09:26 - 2016-07-16 18:21 - 000184320 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\dss_service\node_modules\windows.web.http.filters\bin\NodeRT_Windows_Web_Http_Filters.node
      2016-07-16 09:26 - 2016-07-16 18:21 - 000382976 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\dss_service\node_modules\windows.storage.streams\bin\NodeRT_Windows_Storage_Streams.node
      2016-07-16 09:26 - 2016-07-16 18:21 - 000277504 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\dss_service\node_modules\windows.foundation\bin\NodeRT_Windows_Foundation.node
      2017-12-13 12:17 - 2017-12-13 21:33 - 000048128 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsStore_11711.1001.5.0_x86__8wekyb3d8bbwe\WinStoreTasksWrapper.dll
      2017-12-21 22:50 - 2017-12-21 22:51 - 029032448 _____ () C:\Program Files\WindowsApps\Microsoft.XboxApp_36.36.12003.0_x86__8wekyb3d8bbwe\XboxApp.dll
      2016-07-16 18:23 - 2016-07-16 18:23 - 000169984 _____ () C:\Program Files\WindowsApps\Microsoft.XboxApp_36.36.12003.0_x86__8wekyb3d8bbwe\StoreRatingPromotion.dll
      2017-07-16 20:41 - 2017-07-16 20:42 - 003638272 _____ () C:\Program Files\WindowsApps\Microsoft.XboxIdentityProvider_11.29.23003.0_x86__8wekyb3d8bbwe\XboxIdp.dll
      2017-07-16 20:41 - 2017-07-16 20:42 - 000044544 _____ () C:\Program Files\WindowsApps\Microsoft.XboxIdentityProvider_11.29.23003.0_x86__8wekyb3d8bbwe\XboxIdp.Native.dll

      ==================== Alternate Data Streams (Whitelisted) =========

      (If an entry is included in the fixlist, only the ADS will be removed.)

      AlternateDataStreams: C:\ProgramData\TEMP:1CE11B51 [152]

      ==================== Safe Mode (Whitelisted) ===================

      (If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" value will be restored.)

      HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AppXSvc => ""="Service"
      HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\BFE => ""="Service"
      HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\BITS => ""="Service"
      HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\ClipSvc => ""="Service"
      HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MpsSvc => ""="Service"
      HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\msiserver => ""="Service"
      HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SharedAccess => ""="Service"
      HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRemoveSafeBoot => ""="Service"
      HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\vss => ""="Service"
      HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WSService => ""="Service"
      HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\AppXSvc => ""="Service"
      HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\BITS => ""="Service"
      HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\ClipSvc => ""="Service"
      HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\msiserver => ""="Service"
      HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\SamSs => ""="Service"
      HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\srv => ""="Driver"
      HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\srv2 => ""="Driver"
      HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\srvnet => ""="Driver"
      HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRemoveSafeBoot => ""="Service"
      HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\vss => ""="Service"
      HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\WSService => ""="Service"

      ==================== Association (Whitelisted) ===============

      (If an entry is included in the fixlist, the registry item will be restored to default or removed.)


      ==================== Internet Explorer trusted/restricted ===============

      (If an entry is included in the fixlist, it will be removed from the registry.)

      IE restricted site: HKU\S-1-5-21-1025315540-1862783278-3756375316-1000\...\007guard.com -> install.007guard.com
      IE restricted site: HKU\S-1-5-21-1025315540-1862783278-3756375316-1000\...\008i.com -> 008i.com
      IE restricted site: HKU\S-1-5-21-1025315540-1862783278-3756375316-1000\...\008k.com -> 008k.com
      IE restricted site: HKU\S-1-5-21-1025315540-1862783278-3756375316-1000\...\00hq.com -> www.00hq.com
      IE restricted site: HKU\S-1-5-21-1025315540-1862783278-3756375316-1000\...\010402.com -> 010402.com
      IE restricted site: HKU\S-1-5-21-1025315540-1862783278-3756375316-1000\...\032439.com -> 80gw6ry3i3x3qbrkwhxhw.032439.com
      IE restricted site: HKU\S-1-5-21-1025315540-1862783278-3756375316-1000\...\0scan.com -> 0scan.com
      IE restricted site: HKU\S-1-5-21-1025315540-1862783278-3756375316-1000\...\1-2005-search.com -> 1-2005-search.com
      IE restricted site: HKU\S-1-5-21-1025315540-1862783278-3756375316-1000\...\1-domains-registrations.com -> 1-domains-registrations.com
      IE restricted site: HKU\S-1-5-21-1025315540-1862783278-3756375316-1000\...\1000gratisproben.com -> 1000gratisproben.com
      IE restricted site: HKU\S-1-5-21-1025315540-1862783278-3756375316-1000\...\1001namen.com -> 1001 Namen
      IE restricted site: HKU\S-1-5-21-1025315540-1862783278-3756375316-1000\...\100888290cs.com -> mir.100888290cs.com
      IE restricted site: HKU\S-1-5-21-1025315540-1862783278-3756375316-1000\...\100sexlinks.com -> 100sexlinks.com*-*This website is for sale!*-*Sexlinks Resources and Information.
      IE restricted site: HKU\S-1-5-21-1025315540-1862783278-3756375316-1000\...\10sek.com -> www.10sek.com
      IE restricted site: HKU\S-1-5-21-1025315540-1862783278-3756375316-1000\...\12-26.net -> user1.12-26.net
      IE restricted site: HKU\S-1-5-21-1025315540-1862783278-3756375316-1000\...\12-27.net -> user1.12-27.net
      IE restricted site: HKU\S-1-5-21-1025315540-1862783278-3756375316-1000\...\123fporn.info -> Dangers related to **** sites | **** related viruses
      IE restricted site: HKU\S-1-5-21-1025315540-1862783278-3756375316-1000\...\123haustiereundmehr.com -> 123haustiereundmehr - Delighting 123haustiereundmehr Buffs
      IE restricted site: HKU\S-1-5-21-1025315540-1862783278-3756375316-1000\...\123moviedownload.com -> 123Movies Best Movies
      IE restricted site: HKU\S-1-5-21-1025315540-1862783278-3756375316-1000\...\123simsen.com -> www.123simsen.com

      There are 7867 more sites.


      ==================== Hosts content: ==========================

      (If needed Hosts: directive could be included in the fixlist to reset Hosts.)

      2017-06-22 19:23 - 2017-10-08 18:42 - 000000945 _____ C:\WINDOWS\system32\Drivers\etc\hosts

      127.0.0.1 localhost
      127.0.0.1 tools.avanquest.com
      127.0.0.1 api.avanquest.com
      127.0.0.1 aims.avanquest.com

      ==================== Other Areas ============================

      (Currently there is no automatic fix for this section.)

      HKU\S-1-5-21-1025315540-1862783278-3756375316-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Alicia\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper
      DNS Servers: 192.168.10.1
      HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
      HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
      Windows Firewall is enabled.

      ==================== MSCONFIG/TASK MANAGER disabled items ==

      MSCONFIG\Services: Apple Mobile Device => 2
      MSCONFIG\Services: ihelpermsgpushsvr => 2
      MSCONFIG\Services: iPod Service => 3
      MSCONFIG\Services: lfsvc => 3
      MSCONFIG\Services: MozillaMaintenance => 3
      MSCONFIG\Services: PDF Architect 4 Manager => 2
      MSCONFIG\Services: SystemUsageReportSvc_WILLAMETTE => 2
      MSCONFIG\Services: USER_ESRV_SVC_WILLAMETTE => 3
      MSCONFIG\startupfolder: C:^Users^Alicia^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^PdaNet Desktop.lnk => C:\Windows\pss\PdaNet Desktop.lnk.Startup
      MSCONFIG\startupreg: AceStream => C:\Users\Alicia\AppData\Roaming\ACEStream\engine\ace_engine.exe
      MSCONFIG\startupreg: Adobe ARM => "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
      MSCONFIG\startupreg: Athan => C:\Program Files\Athan\Athan.exe
      MSCONFIG\startupreg: CamserviceBlog => C:\Program Files\Hercules\Blog Webcam\XtrCtrl.exe /startup
      MSCONFIG\startupreg: CCleaner Monitoring => "C:\Program Files\CCleaner\CCleaner.exe" /MONITOR
      MSCONFIG\startupreg: Facebook Update => "C:\Users\Alicia\AppData\Local\Facebook\Update\FacebookUpdate.exe" /c /nocrashserver
      MSCONFIG\startupreg: iTunesHelper => "C:\Program Files\iTunes\iTunesHelper.exe"
      HKLM\...\StartupApproved\StartupFolder: => "HP Digital Imaging Monitor.lnk"
      HKLM\...\StartupApproved\StartupFolder: => "TP-LINK Wireless Configuration Utility.lnk"
      HKLM\...\StartupApproved\Run: => "RTHDVCPL"
      HKLM\...\StartupApproved\Run: => "Windows Mobile Device Center"
      HKLM\...\StartupApproved\Run: => "IAStorIcon"
      HKLM\...\StartupApproved\Run: => "HP Software Update"
      HKLM\...\StartupApproved\Run: => "Wondershare Helper Compact.exe"
      HKLM\...\StartupApproved\Run: => "CamserviceBlog"
      HKLM\...\StartupApproved\Run: => "SunJavaUpdateSched"
      HKLM\...\StartupApproved\Run: => "KiesTrayAgent"
      HKLM\...\StartupApproved\Run: => "Dropbox"
      HKLM\...\StartupApproved\Run: => "WindowsDefender"
      HKU\S-1-5-21-1025315540-1862783278-3756375316-1000\...\StartupApproved\StartupFolder: => "PdaNet Desktop.lnk"
      HKU\S-1-5-21-1025315540-1862783278-3756375316-1000\...\StartupApproved\Run: => "CCleaner Monitoring"
      HKU\S-1-5-21-1025315540-1862783278-3756375316-1000\...\StartupApproved\Run: => "eRclient"
      HKU\S-1-5-21-1025315540-1862783278-3756375316-1000\...\StartupApproved\Run: => "Skype"
      HKU\S-1-5-21-1025315540-1862783278-3756375316-1000\...\StartupApproved\Run: => "TomTomHOME.exe"
      HKU\S-1-5-21-1025315540-1862783278-3756375316-1000\...\StartupApproved\Run: => "BlueStacks Agent"
      HKU\S-1-5-21-1025315540-1862783278-3756375316-1000\...\StartupApproved\Run: => "GUDelayStartup"
      HKU\S-1-5-21-1025315540-1862783278-3756375316-1000\...\StartupApproved\Run: => "CyberGhost"

      ==================== FirewallRules (Whitelisted) ===============

      (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

      FirewallRules: [{66C6889D-5985-4463-9649-D26F88E00649}] => (Allow) C:\Users\Alicia\AppData\Roaming\uTorrent\uTorrent.exe
      FirewallRules: [{29FBBF8A-1021-4A35-BCC7-89C1D5F645D4}] => (Allow) C:\Users\Alicia\AppData\Roaming\uTorrent\uTorrent.exe
      FirewallRules: [{A0D3F2CB-0B42-408E-8B53-A63C8AEE7DF8}] => (Allow) C:\Users\Alicia\AppData\Roaming\uTorrent\uTorrent.exe
      FirewallRules: [{4F8F3FE4-BCA5-4D76-BFE5-E3D9F331B0DB}] => (Allow) C:\Users\Alicia\AppData\Roaming\uTorrent\uTorrent.exe
      FirewallRules: [{2B3058BA-4431-467C-8D6B-3389983F113A}] => (Allow) C:\Users\Alicia\AppData\Roaming\uTorrent\uTorrent.exe
      FirewallRules: [{F3480E1F-74B3-48D4-ACAD-6AB095938BCB}] => (Allow) C:\Users\Alicia\AppData\Roaming\uTorrent\uTorrent.exe
      FirewallRules: [{82C8A727-FBF7-456F-9225-1D2B0EFD084A}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpqusgh.exe
      FirewallRules: [{1A93B8EE-DF92-425A-B973-F8A513ABDF95}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpqusgm.exe
      FirewallRules: [{E1F7B44C-98D7-49F5-A0AB-584F56BE2538}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpqgpc01.exe
      FirewallRules: [{F9B93443-E7E0-43B0-92AA-208EB8EC4836}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpqgplgtupl.exe
      FirewallRules: [{8F2F9817-9C52-4C8B-B2A4-E636B204139D}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpqcopy2.exe
      FirewallRules: [{6868CC02-70D0-4A12-8CDC-D85E6DECC939}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpqste08.exe
      FirewallRules: [{5CBEDAC8-0628-46AC-8B16-2D46AF4FB5AF}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
      FirewallRules: [{9B60AEAB-6A99-4305-8CB1-BEB1BA4746CB}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
      FirewallRules: [{92E91944-670B-4350-9274-82487C8F07BA}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
      FirewallRules: [{C3657F9E-635A-4EF9-B00A-FC6FB5A07CC1}] => (Allow) LPort=48114
      FirewallRules: [{437554DE-F9CE-44C7-A77E-BCA020EF3E56}] => (Allow) LPort=48113
      FirewallRules: [{F674018F-AA8C-4F66-9F71-6100776CFF6D}] => (Allow) C:\Program Files\HP\hp software update\hpwucli.exe
      FirewallRules: [{F239D652-C494-4321-83BA-993625F61AFC}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpiscnapp.exe
      FirewallRules: [{DFB4053C-613F-4F0E-B5B3-F5176AB98062}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpqnrs08.exe
      FirewallRules: [{F0D8C9E5-6320-4ADB-B926-A64CDBE1C526}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpfccopy.exe
      FirewallRules: [{AF4C9726-B184-452A-972E-2BEB2FAC3780}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpqkygrp.exe
      FirewallRules: [{37898823-7E5F-4B04-9A9D-92C09979EFF7}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hposid01.exe
      FirewallRules: [{153CD464-913A-4993-A38A-2028896090D1}] => (Allow) C:\Program Files\Skype\Phone\Skype.exe
      FirewallRules: [{6A4C9012-2DC1-4C74-80F7-86CAFAAD7A38}] => (Allow) C:\Program Files\common files\hp\digital imaging\bin\hpqphotocrm.exe
      FirewallRules: [{522B9B19-49A0-448B-9B13-6539A48E440E}] => (Allow) C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
      FirewallRules: [{307A2CA3-26E5-4AF7-95B6-9E2D53312C22}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
      FirewallRules: [{BDF5C4F8-CA13-48CF-89D8-5EC50A4B39F0}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
      FirewallRules: [{5133B40E-7428-492D-8D83-CE38C8CFE5C3}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
      FirewallRules: [{A689942C-5323-46DB-AA4E-38764302430F}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
      FirewallRules: [{38A897BD-85E7-4655-8D9F-4FBC568D0C09}] => (Allow) C:\Program Files\TeamViewer\TeamViewer.exe
      FirewallRules: [{C2E3A707-44A0-4556-B226-4588D59A6C5D}] => (Allow) C:\Program Files\TeamViewer\TeamViewer.exe
      FirewallRules: [{44E5F5C8-E597-456C-97C9-EEAD736C0F14}] => (Allow) C:\Program Files\TeamViewer\TeamViewer_Service.exe
      FirewallRules: [{396DE2CB-5574-4985-A8C9-6F11279E3D99}] => (Allow) C:\Program Files\TeamViewer\TeamViewer_Service.exe
      FirewallRules: [{A775CCFC-7755-4215-BA0A-3409E8F399BF}] => (Allow) C:\Program Files\Bignox\BigNoxVM\RT\NoxVMHandle.exe
      FirewallRules: [{E2BFF60D-2D3E-4243-AF4A-C77470F6EFF8}] => (Allow) C:\Program Files\Opera\43.0.2442.1192\opera.exe
      FirewallRules: [WMP-In-UDP-x86] => (Allow) %ProgramFiles(x86)%\Windows Media Player\wmplayer.exe
      FirewallRules: [WMP-Out-UDP-x86] => (Allow) %ProgramFiles(x86)%\Windows Media Player\wmplayer.exe
      FirewallRules: [WMP-Out-TCP-x86] => (Allow) %ProgramFiles(x86)%\Windows Media Player\wmplayer.exe
      FirewallRules: [{32C5DA6B-1D6F-4180-B061-9FC172558990}] => (Allow) %ProgramFiles(x86)%\Windows Media Player\wmplayer.exe
      FirewallRules: [{F6202490-FCD1-4887-BE3B-C2069D93760A}] => (Allow) %ProgramFiles(x86)%\Windows Media Player\wmplayer.exe
      FirewallRules: [{0BA1D169-BED8-4049-9560-1D95E04ECDE9}] => (Allow) %ProgramFiles(x86)%\Windows Media Player\wmplayer.exe
      FirewallRules: [{59DBC17C-5517-4703-A7F5-5ADE2403DF9B}] => (Allow) C:\Program Files\Dropbox\Client\Dropbox.exe
      FirewallRules: [{FD25764C-22FA-41D4-A1D2-1A328528D93F}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe

      ==================== Restore Points =========================

      Could not list restore points
      Check "winmgmt" service or repair WMI.


      ==================== Faulty Device Manager Devices =============

      Could not list Devices. Check "winmgmt" service or repair WMI.


      ==================== Event log errors: =========================

      Application errors:
      ==================
      Error: (12/21/2017 07:48:33 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: ALICIA)
      Description: No se pudo activar la aplicación 9E2F88E3.Twitter_wgeqdkkx372wm!x554f661dyd360y462cy8743yf8a99b7d41dbx debido al error: -2144927142. Consulte el registro Microsoft-Windows-TWinUI/Operational para obtener más información.

      Error: (12/21/2017 07:07:53 PM) (Source: Application Error) (EventID: 1000) (User: )
      Description: Nombre de la aplicación con errores: WiFiTask.exe, versión: 10.0.14393.187, marca de tiempo: 0x57cf9d82
      Nombre del módulo con errores: ntdll.dll, versión: 10.0.14393.1715, marca de tiempo: 0x59b0d8ee
      Código de excepción: 0xc0000005
      Desplazamiento de errores: 0x00056ab8
      Identificador del proceso con errores: 0x11ac
      Hora de inicio de la aplicación con errores: 0x01d37a86927f7448
      Ruta de acceso de la aplicación con errores: C:\WINDOWS\System32\WiFiTask.exe
      Ruta de acceso del módulo con errores: C:\WINDOWS\SYSTEM32\ntdll.dll
      Identificador del informe: 92ae235a-a04c-44b2-b64c-da414ed66662
      Nombre completo del paquete con errores:
      Identificador de aplicación relativa del paquete con errores:

      Error: (12/21/2017 11:27:22 AM) (Source: Office 2013 Licensing Service) (EventID: 0) (User: )
      Description: Event-ID 0

      Error: (12/20/2017 11:27:56 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: ALICIA)
      Description: No se pudo activar la aplicación Microsoft.WindowsStore_8wekyb3d8bbwe!App debido al error: -2144927142. Consulte el registro Microsoft-Windows-TWinUI/Operational para obtener más información.

      Error: (12/20/2017 11:27:56 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: ALICIA)
      Description: No se pudo activar la aplicación microsoft.windowscommunicationsapps_8wekyb3d8bbwe!ppleae38af2e007f4358a809ac99a64a67c1 debido al error: -2144927142. Consulte el registro Microsoft-Windows-TWinUI/Operational para obtener más información.

      Error: (12/20/2017 10:24:44 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: ALICIA)
      Description: No se pudo activar la aplicación Microsoft.WindowsStore_8wekyb3d8bbwe!App debido al error: -2144927142. Consulte el registro Microsoft-Windows-TWinUI/Operational para obtener más información.

      Error: (12/20/2017 10:24:44 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: ALICIA)
      Description: No se pudo activar la aplicación microsoft.windowscommunicationsapps_8wekyb3d8bbwe!ppleae38af2e007f4358a809ac99a64a67c1 debido al error: -2144927142. Consulte el registro Microsoft-Windows-TWinUI/Operational para obtener más información.

      Error: (12/20/2017 03:27:32 PM) (Source: Office 2013 Licensing Service) (EventID: 0) (User: )
      Description: Event-ID 0

      Error: (12/20/2017 02:52:08 AM) (Source: Windows Search Service) (EventID: 3104) (User: )
      Description: No se pudo enumerar las sesiones de usuario para generar los conjuntos de filtros.

      Detalles:
      (HRESULT : 0x80040210) (0x80040210)

      Error: (12/19/2017 11:36:26 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
      Description: Error en Servicios de cifrado mientras se procesaba el objeto "System Writer" de la llamada OnIdentity().

      Details:
      AddLegacyDriverFiles: Unable to back up image of binary Protocolo de detección de nivel de vínculo de Microsoft.

      System Error:
      Acceso denegado.
      .


      System errors:
      =============
      Error: (12/21/2017 11:52:04 PM) (Source: DCOM) (EventID: 10005) (User: ALICIA)
      Description: Error de DCOM "1083" al intentar iniciar el servicio winmgmt con argumentos "No disponible" para ejecutar el servidor:
      {8BC3F05E-D86B-11D0-A075-00C04FB68820}

      Error: (12/21/2017 11:52:04 PM) (Source: DCOM) (EventID: 10005) (User: ALICIA)
      Description: Error de DCOM "1083" al intentar iniciar el servicio winmgmt con argumentos "No disponible" para ejecutar el servidor:
      {8BC3F05E-D86B-11D0-A075-00C04FB68820}

      Error: (12/21/2017 11:51:19 PM) (Source: DCOM) (EventID: 10010) (User: ALICIA)
      Description: El servidor {37998346-3765-45B1-8C66-AA88CA6B20B8} no se registró con DCOM dentro del tiempo de espera requerido.

      Error: (12/21/2017 11:50:45 PM) (Source: DCOM) (EventID: 10005) (User: ALICIA)
      Description: Error de DCOM "1083" al intentar iniciar el servicio winmgmt con argumentos "No disponible" para ejecutar el servidor:
      {8BC3F05E-D86B-11D0-A075-00C04FB68820}

      Error: (12/21/2017 11:50:41 PM) (Source: DCOM) (EventID: 10005) (User: ALICIA)
      Description: Error de DCOM "1083" al intentar iniciar el servicio winmgmt con argumentos "No disponible" para ejecutar el servidor:
      {8BC3F05E-D86B-11D0-A075-00C04FB68820}

    9. #9
      Usuario Avatar de rcio_18
      Registrado
      may 2012
      Ubicación
      españa
      Mensajes
      133

      Re: Malwarebytes: Unable to connect the service

      Error: (12/21/2017 11:50:41 PM) (Source: DCOM) (EventID: 10005) (User: ALICIA)
      Description: Error de DCOM "1083" al intentar iniciar el servicio winmgmt con argumentos "No disponible" para ejecutar el servidor:
      {8BC3F05E-D86B-11D0-A075-00C04FB68820}

      Error: (12/21/2017 11:50:41 PM) (Source: DCOM) (EventID: 10005) (User: ALICIA)
      Description: Error de DCOM "1083" al intentar iniciar el servicio winmgmt con argumentos "No disponible" para ejecutar el servidor:
      {8BC3F05E-D86B-11D0-A075-00C04FB68820}

      Error: (12/21/2017 11:50:41 PM) (Source: DCOM) (EventID: 10005) (User: ALICIA)
      Description: Error de DCOM "1083" al intentar iniciar el servicio winmgmt con argumentos "No disponible" para ejecutar el servidor:
      {8BC3F05E-D86B-11D0-A075-00C04FB68820}

      Error: (12/21/2017 11:50:37 PM) (Source: DCOM) (EventID: 10005) (User: NT AUTHORITY)
      Description: Error de DCOM "1083" al intentar iniciar el servicio winmgmt con argumentos "No disponible" para ejecutar el servidor:
      {8BC3F05E-D86B-11D0-A075-00C04FB68820}

      Error: (12/21/2017 11:50:34 PM) (Source: DCOM) (EventID: 10005) (User: NT AUTHORITY)
      Description: Error de DCOM "1083" al intentar iniciar el servicio winmgmt con argumentos "No disponible" para ejecutar el servidor:
      {8BC3F05E-D86B-11D0-A075-00C04FB68820}

      Error: (12/21/2017 11:50:34 PM) (Source: DCOM) (EventID: 10005) (User: NT AUTHORITY)
      Description: Error de DCOM "1083" al intentar iniciar el servicio winmgmt con argumentos "No disponible" para ejecutar el servidor:
      {8BC3F05E-D86B-11D0-A075-00C04FB68820}


      CodeIntegrity:
      ===================================
      Date: 2017-12-21 23:20:52.419
      Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\ProgramData\ESET\ESET Smart Security\updfiles\base_nonnups\nod7D2C.dll.nup.raw because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

      Date: 2017-12-21 23:20:52.101
      Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\ProgramData\ESET\ESET Smart Security\updfiles\base_nonnups\nod7D2C.dll.nup.raw because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

      Date: 2017-12-21 23:20:51.852
      Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\ProgramData\ESET\ESET Smart Security\updfiles\base_nonnups\nod7D2C.dll.nup.raw because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

      Date: 2017-12-21 23:20:51.556
      Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\ProgramData\ESET\ESET Smart Security\updfiles\base_nonnups\nod7D2C.dll.nup.raw because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

      Date: 2017-12-21 23:20:51.256
      Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\ProgramData\ESET\ESET Smart Security\updfiles\base_nonnups\nod7D2C.dll.nup.raw because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

      Date: 2017-12-21 23:20:50.995
      Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\ProgramData\ESET\ESET Smart Security\updfiles\base_nonnups\nod7D2C.dll.nup.raw because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

      Date: 2017-12-21 22:45:05.443
      Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\ProgramData\ESET\ESET Smart Security\updfiles\base_nonnups\nod7D2C.dll.nup.raw because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

      Date: 2017-12-21 22:45:05.131
      Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\ProgramData\ESET\ESET Smart Security\updfiles\base_nonnups\nod7D2C.dll.nup.raw because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

      Date: 2017-12-21 22:45:04.912
      Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\ProgramData\ESET\ESET Smart Security\updfiles\base_nonnups\nod7D2C.dll.nup.raw because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

      Date: 2017-12-21 22:45:04.608
      Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\ProgramData\ESET\ESET Smart Security\updfiles\base_nonnups\nod7D2C.dll.nup.raw because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.


      ==================== Memory info ===========================

      Processor: Intel(R) Celeron(R) CPU G1620 @ 2.70GHz

    10. #10
      Usuario Avatar de rcio_18
      Registrado
      may 2012
      Ubicación
      españa
      Mensajes
      133

      Re: Malwarebytes: Unable to connect the service

      Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 17-12-2017
      Ran by Alicia (administrator) on ALICIA (21-12-2017 23:48:59)
      Running from C:\Users\Alicia\Downloads\REVIEWS AMAZON
      Loaded Profiles: Alicia (Available Profiles: Alicia & Casimiro & invitadoss & Invitado & DefaultAppPool)
      Platform: Windows 10 Home Version 1607 14393.1715 (X86) Language: Español (España, internacional)
      Internet Explorer Version 11 (Default browser: Chrome)
      Boot Mode: Normal
      Tutorial for Farbar Recovery Scan Tool: ***********************************************************************************************************

      ==================== Processes (Whitelisted) =================

      (If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

      (ESET) C:\Program Files\ESET\ESET Smart Security\ekrn.exe
      (Intel Corporation) C:\Windows\System32\igfxCUIService.exe
      (Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
      (Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe
      (Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
      () C:\Users\Alicia\AppData\Local\Kingosoft\Kingo Root\update_54326\bin\KingoSoftService.exe
      (TomTom) C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe
      (DEVGURU Co., LTD.) C:\Program Files\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe
      (TeamViewer GmbH) C:\Program Files\TeamViewer\TeamViewer_Service.exe
      (Wondershare) C:\Program Files\Wondershare\WAF\2.4.3.227\WsAppService.exe
      (Wondershare) C:\Program Files\Wondershare\Wondershare dr.fone toolkit para Android\Library\DriverInstaller\DriverInstall.exe
      (Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
      (Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe
      (Microsoft Corporation) C:\Windows\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
      (Microsoft Corporation) C:\Windows\System32\dllhost.exe
      (Microsoft Corporation) C:\Windows\System32\smartscreen.exe
      (ESET) C:\Program Files\ESET\ESET Smart Security\egui.exe
      (Google Inc.) C:\Program Files\Google\Update\1.3.33.7\GoogleCrashHandler.exe
      (Intel Corporation) C:\Windows\System32\igfxHK.exe
      (Dropbox, Inc.) C:\Program Files\Dropbox\Update\DropboxUpdate.exe
      (Intel Corporation) C:\Program Files\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
      (Intel Corporation) C:\Program Files\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
      (Secunia) C:\Program Files\Secunia\PSI\sua.exe
      (Microsoft Corporation) C:\Windows\System32\backgroundTaskHost.exe
      (Microsoft Corporation) C:\Windows\System32\backgroundTaskHost.exe
      () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.10.572.0_x86__kzf8qxf38zg5c\SkypeHost.exe
      (Microsoft Corporation) C:\Windows\System32\backgroundTaskHost.exe
      (Microsoft Corporation) C:\Windows\System32\backgroundTaskHost.exe
      (Microsoft Corporation) C:\Windows\System32\backgroundTaskHost.exe
      (Microsoft Corporation) C:\Windows\System32\backgroundTaskHost.exe
      (Microsoft Corporation) C:\Windows\System32\dllhost.exe
      (Microsoft Corporation) C:\Windows\System32\wermgr.exe

      ==================== Registry (Whitelisted) ===========================

      (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

      HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [287592 2013-11-21] (Intel Corporation)
      HKLM\...\Run: [HP Software Update] => C:\Program Files\HP\HP Software Update\HPWuSchd2.exe [96056 2013-05-30] (Hewlett-Packard)
      HKLM\...\Run: [Windows Mobile Device Center] => C:\WINDOWS\WindowsMobile\wmdc.exe [648072 2007-05-31] (Microsoft Corporation)
      HKLM\...\Run: [Wondershare Helper Compact.exe] => C:\Program Files\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe [2131344 2016-06-20] (Wondershare)
      HKLM\...\Run: [CamserviceBlog] => C:\Program Files\Hercules\Blog Webcam\XtrCtrl.exe [2913576 2009-10-19] (Guillemot Corporation S.A.)
      HKLM\...\Run: [Dropbox] => C:\Program Files\Dropbox\Client\Dropbox.exe [3567928 2017-12-05] (Dropbox, Inc.)
      HKLM\...\Run: [KiesTrayAgent] => C:\Program Files\Samsung\Kies\KiesTrayAgent.exe [318128 2016-11-16] (Samsung Electronics Co., Ltd.)
      HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI.exe [8189440 2017-06-29] (Realtek Semiconductor)
      HKLM\...\Run: [WindowsDefender] => C:\Program Files\Windows Defender\MSASCuiL.exe [483840 2017-04-28] (Microsoft Corporation)
      HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET Smart Security\ecmds.exe [297592 2017-10-10] (ESET)
      HKU\S-1-5-21-1025315540-1862783278-3756375316-1000\...\Run: [eRclient] => C:\Users\Alicia\AppData\Roaming\eRclient\eRclient.exe [1269248 2014-08-13] (eRmail Company, s. r. o.)
      HKU\S-1-5-21-1025315540-1862783278-3756375316-1000\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner.exe [7814600 2017-11-08] (Piriform Ltd)
      HKU\S-1-5-21-1025315540-1862783278-3756375316-1000\...\Run: [CyberGhost] => C:\Program Files\CyberGhost 6\CyberGhost.exe [1248848 2017-08-31] (CyberGhost S.A.)
      HKU\S-1-5-21-1025315540-1862783278-3756375316-1000\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Windows\system32\Bubbles.scr [795648 2016-07-16] (Microsoft Corporation)
      Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\HP Digital Imaging Monitor.lnk [2015-12-05]
      ShortcutTarget: HP Digital Imaging Monitor.lnk -> C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe (Hewlett-Packard Co.)

      ==================== Internet (Whitelisted) ====================

      (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

      Winsock: Catalog5 07 C:\Program Files\Bonjour\mdnsNSP.dll [122128 2015-08-12] (Apple Inc.)
      Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
      Tcpip\Parameters: [DhcpNameServer] 192.168.10.1
      Tcpip\..\Interfaces\{3f06f2fa-e9f1-4afd-9055-b99ddf58d041}: [DhcpNameServer] 192.168.10.1
      Tcpip\..\Interfaces\{d2a620f3-62a0-4548-a822-7e67be432490}: [DhcpNameServer] 8.8.8.8 8.8.4.4 80.58.61.254 80.58.61.250

      Internet Explorer:
      ==================
      HKU\S-1-5-21-1025315540-1862783278-3756375316-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://google.es/
      BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_121\bin\ssv.dll [2017-02-05] (Oracle Corporation)
      BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_121\bin\jp2ssv.dll [2017-02-05] (Oracle Corporation)
      Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL [2017-08-15] (Microsoft Corporation)
      Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll [2017-07-18] (Skype Technologies)

      Edge:
      ======
      Edge HomeButtonPage: HKU\S-1-5-21-1025315540-1862783278-3756375316-1000 -> hxxp://google.es/

      FireFox:
      ========
      FF ProfilePath: C:\Users\Alicia\AppData\Roaming\TomTom\HOME\Profiles\qn9srt34.default [2016-08-21]
      FF Extension: (Map status indicator) - C:\Program Files\TomTom HOME 2\xul\extensions\[email protected] [2016-08-21] [Legacy] [not signed]
      FF ProfilePath: C:\Users\Alicia\AppData\Roaming\Mozilla\Firefox\Profiles\hrv2p8oj.default [2017-12-21]
      FF Homepage: Mozilla\Firefox\Profiles\hrv2p8oj.default -> google.es
      FF NetworkProxy: Mozilla\Firefox\Profiles\hrv2p8oj.default -> type", 0
      FF Extension: (FoxyProxy Standard) - C:\Users\Alicia\AppData\Roaming\Mozilla\Firefox\Profiles\hrv2p8oj.default\Extensions\[email protected] [2017-12-12]
      FF Extension: (Unlimited Free VPN - Hola) - C:\Users\Alicia\AppData\Roaming\Mozilla\Firefox\Profiles\hrv2p8oj.default\Extensions\[email protected] [2017-12-06]
      FF Extension: (IE Tab 2 (FF 3.6+)) - C:\Users\Alicia\AppData\Roaming\Mozilla\Firefox\Profiles\hrv2p8oj.default\Extensions\{1BC9BA34-1EED-42ca-A505-6D2F1A935BBB} [2016-07-22] [Legacy]
      FF Extension: (Vigilante de la Red) - C:\Users\Alicia\AppData\Roaming\Mozilla\Firefox\Profiles\hrv2p8oj.default\Extensions\{8A7A9618-8495-11E0-B749-E4EB4724019B} [2015-05-12] [Legacy] [not signed]
      FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF32_25_0_0_127.dll [2017-03-15] ()
      FF Plugin: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-12-10] (Intel Corporation)
      FF Plugin: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-12-10] (Intel Corporation)
      FF Plugin: @java.com/DTPlugin,version=11.121.2 -> C:\Program Files\Java\jre1.8.0_121\bin\dtplugin\npDeployJava1.dll [2017-02-05] (Oracle Corporation)
      FF Plugin: @java.com/JavaPlugin,version=11.121.2 -> C:\Program Files\Java\jre1.8.0_121\bin\plugin2\npjp2.dll [2017-02-05] (Oracle Corporation)
      FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] ( Microsoft Corporation)
      FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~2\Office15\NPSPWRAP.DLL [2014-01-23] (Microsoft Corporation)
      FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2017-11-15] (Google Inc.)
      FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2017-11-15] (Google Inc.)
      FF Plugin: @videolan.org/vlc,version=2.1.3 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
      FF Plugin: @videolan.org/vlc,version=2.1.5 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
      FF Plugin: @videolan.org/vlc,version=2.2.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
      FF Plugin: @videolan.org/vlc,version=2.2.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
      FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2017-11-04] (Adobe Systems Inc.)
      FF Plugin HKU\S-1-5-21-1025315540-1862783278-3756375316-1000: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Alicia\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2015-04-27] (Unity Technologies ApS)

      Chrome:
      =======
      CHR DefaultProfile: Default
      CHR HomePage: Default -> hxxps://www.google.es/
      CHR StartupUrls: Default -> "hxxp://www.google.es/"
      CHR Profile: C:\Users\Alicia\AppData\Local\Google\Chrome\User Data\Default [2017-12-21]
      CHR Extension: (Traductor de Google) - C:\Users\Alicia\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2017-10-19]
      CHR Extension: (Presentaciones) - C:\Users\Alicia\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-10-12]
      CHR Extension: (I'm a Gentleman) - C:\Users\Alicia\AppData\Local\Google\Chrome\User Data\Default\Extensions\afjaicccalbbickikgdegaihmajaidpd [2017-07-31]
      CHR Extension: (Flash Video Downloader) - C:\Users\Alicia\AppData\Local\Google\Chrome\User Data\Default\Extensions\aiimdkdngfcipjohbjenkahhlhccpdbc [2017-11-09]
      CHR Extension: (Documentos) - C:\Users\Alicia\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-12]
      CHR Extension: (Google Drive) - C:\Users\Alicia\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-21]
      CHR Extension: (Search Manager) - C:\Users\Alicia\AppData\Local\Google\Chrome\User Data\Default\Extensions\bahkljhhdeciiaodlkppoonappfnheoi [2017-12-21]
      CHR Extension: (YouTube) - C:\Users\Alicia\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-24]
      CHR Extension: (DownAlbum) - C:\Users\Alicia\AppData\Local\Google\Chrome\User Data\Default\Extensions\cgjnhhjpfcdhbhlcmmjppicjmgfkppok [2017-11-01]
      CHR Extension: (Búsqueda de Google) - C:\Users\Alicia\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-26]
      CHR Extension: (Swap My Cookies) - C:\Users\Alicia\AppData\Local\Google\Chrome\User Data\Default\Extensions\dffhipnliikkblkhpjapbecpmoilcama [2017-06-12]
      CHR Extension: (Cookie Manager) - C:\Users\Alicia\AppData\Local\Google\Chrome\User Data\Default\Extensions\emopibfciaefpfailpejmbkemajnmijg [2017-09-07]
      CHR Extension: (Toolkit For Facebook) - C:\Users\Alicia\AppData\Local\Google\Chrome\User Data\Default\Extensions\fcachklhcihfinmagjnlomehfdhndhep [2017-10-19]
      CHR Extension: (ZenMate VPN - Mejor seguridad para Internet) - C:\Users\Alicia\AppData\Local\Google\Chrome\User Data\Default\Extensions\fdcgdnkidjaadafnichfpabhfomcebme [2017-12-05]
      CHR Extension: (Hojas de cálculo) - C:\Users\Alicia\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-10-12]
      CHR Extension: (Panic Button Plus) - C:\Users\Alicia\AppData\Local\Google\Chrome\User Data\Default\Extensions\fifhdbcbihllaneapjoabnoaoejhieok [2015-10-18]
      CHR Extension: (Documentos de Google sin conexión) - C:\Users\Alicia\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-03-15]
      CHR Extension: (Unlimited Free VPN - Hola) - C:\Users\Alicia\AppData\Local\Google\Chrome\User Data\Default\Extensions\gkojfkhlekighikafcpjkiklfbnlmeio [2017-12-15]
      CHR Extension: (TinEye Reverse Image Search) - C:\Users\Alicia\AppData\Local\Google\Chrome\User Data\Default\Extensions\haebnnbpedcbhciplfhjjkbafijpncjl [2017-07-31]
      CHR Extension: (IE Tab) - C:\Users\Alicia\AppData\Local\Google\Chrome\User Data\Default\Extensions\hehijbfgiekmjfkfjpbkbammjbdenadd [2017-12-14]
      CHR Extension: (Video Downloader GetThemAll) - C:\Users\Alicia\AppData\Local\Google\Chrome\User Data\Default\Extensions\nbkekaeindpfpcoldfckljplboolgkfm [2017-07-31]
      CHR Extension: (MultiLogin) - C:\Users\Alicia\AppData\Local\Google\Chrome\User Data\Default\Extensions\nknfhhmhoflkcijaodalbncnmidocced [2017-09-11]
      CHR Extension: (Sistema de pagos de Chrome Web Store) - C:\Users\Alicia\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-08-23]
      CHR Extension: (Gmail) - C:\Users\Alicia\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-08-06]
      CHR Extension: (Chrome Media Router) - C:\Users\Alicia\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-12-14]
      CHR Profile: C:\Users\Alicia\AppData\Local\Google\Chrome\User Data\Profile 1 [2017-06-22]
      CHR Extension: (Presentaciones de Google) - C:\Users\Alicia\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-01-10]
      CHR Extension: (Google Docs) - C:\Users\Alicia\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aohghmighlieiainnegkcijnfilokake [2016-01-10]
      CHR Extension: (Google Drive) - C:\Users\Alicia\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-01-10]
      CHR Extension: (YouTube) - C:\Users\Alicia\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-01-10]
      CHR Extension: (Búsqueda de Google) - C:\Users\Alicia\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2016-01-10]
      CHR Extension: (Hojas de cálculo de Google) - C:\Users\Alicia\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-01-10]
      CHR Extension: (Documentos de Google sin conexión) - C:\Users\Alicia\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-06-16]
      CHR Extension: (Sistema de pagos de Chrome Web Store) - C:\Users\Alicia\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-06-16]
      CHR Extension: (Gmail) - C:\Users\Alicia\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-01-10]
      CHR Profile: C:\Users\Alicia\AppData\Local\Google\Chrome\User Data\System Profile [2017-12-21]
      CHR HKLM\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx
      CHR HKLM\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - hxxps://clients2.google.com/service/update2/crx

      ==================== Services (Whitelisted) ====================

      (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

      S2 CG6Service; C:\Program Files\CyberGhost 6\CyberGhost.Service.exe [232528 2017-08-31] (CyberGhost S.A.)
      S3 cphs; C:\WINDOWS\system32\IntelCpHeciSvc.exe [280696 2016-05-12] (Intel Corporation)
      S2 dbupdate; C:\Program Files\Dropbox\Update\DropboxUpdate.exe [143144 2016-12-16] (Dropbox, Inc.)
      S3 dbupdatem; C:\Program Files\Dropbox\Update\DropboxUpdate.exe [143144 2016-12-16] (Dropbox, Inc.)
      R2 DbxSvc; C:\WINDOWS\system32\DbxSvc.exe [43336 2017-12-05] (Dropbox, Inc.)
      R2 ekrn; C:\Program Files\ESET\ESET Smart Security\ekrn.exe [2089176 2017-10-10] (ESET)
      S3 ICCS; C:\Program Files\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe [169752 2012-04-24] (Intel Corporation)
      S3 IDriverT; C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe [69632 2005-11-14] (Macrovision Corporation) [File not signed]
      R2 igfxCUIService1.0.0.0; C:\WINDOWS\system32\igfxCUIService.exe [274040 2016-05-12] (Intel Corporation)
      R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [595968 2013-08-27] (Intel(R) Corporation) [File not signed]
      S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [642520 2013-08-27] (Intel(R) Corporation)
      R2 jhi_service; C:\Program Files\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2013-12-10] (Intel Corporation)
      S2 KMService; C:\Windows\system32\srvany.exe [8192 2010-06-16] () [File not signed]
      S3 MSCSPTISRV; C:\Program Files\Common Files\Sony Shared\AVLib\MSCSPTISRV.exe [45056 2006-12-14] (Sony Corporation) [File not signed]
      R2 Net Driver HPZ12; C:\Windows\system32\HPZinw12.dll [44032 2010-08-06] (Hewlett-Packard) [File not signed]
      S3 PACSPTISVR; C:\Program Files\Common Files\Sony Shared\AVLib\PACSPTISVR.exe [57344 2006-12-14] () [File not signed]
      R2 Pml Driver HPZ12; C:\Windows\system32\HPZipm12.dll [53760 2010-08-06] (Hewlett-Packard) [File not signed]
      S3 rpcapd; C:\Program Files\WinPcap\rpcapd.exe [118520 2013-03-01] (Riverbed Technology, Inc.)
      S3 Secunia PSI Agent; C:\Program Files\Secunia\PSI\PSIA.exe [1570520 2016-02-02] (Secunia)
      R2 Secunia Update Agent; C:\Program Files\Secunia\PSI\sua.exe [837848 2016-02-02] (Secunia)
      S3 SonicStage Back-End Service; C:\Program Files\Common Files\Sony Shared\AVLib\SsBeSvc.exe [112184 2007-02-05] (Sony Corporation)
      S3 SPTISRV; C:\Program Files\Common Files\Sony Shared\AVLib\SPTISRV.exe [69632 2006-12-14] (Sony Corporation) [File not signed]
      S3 SSScsiSV; C:\Program Files\Common Files\Sony Shared\AVLib\SSScsiSV.exe [75320 2007-02-05] (Sony Corporation)
      R2 ss_conn_service; C:\Program Files\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe [752224 2017-01-16] (DEVGURU Co., LTD.)
      R2 TeamViewer; C:\Program Files\TeamViewer\TeamViewer_Service.exe [10351856 2016-12-15] (TeamViewer GmbH)
      R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [271488 2017-04-28] (Microsoft Corporation)
      R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [84928 2017-08-08] (Microsoft Corporation)
      R2 WsAppService; C:\Program Files\Wondershare\WAF\2.4.3.227\WsAppService.exe [492768 2017-06-21] (Wondershare)
      R2 WsDrvInst; C:\Program Files\Wondershare\Wondershare dr.fone toolkit para Android\Library\DriverInstaller\DriverInstall.exe [118048 2017-06-22] (Wondershare)
      R2 KingoSoftService; C:\Users\Alicia\AppData\Local\Kingosoft\Kingo Root\update_54326\bin\KingoSoftService.exe "C:\Users\Alicia\AppData\Local\Kingosoft\Kingo Root\update_54326\bin\checkupdate.exe"

      ===================== Drivers (Whitelisted) ======================

      (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

      S3 A38CCID; C:\WINDOWS\system32\DRIVERS\a38ccid.sys [72376 2015-08-19] (Advanced Card Systems Ltd.)
      S3 AmUStor; C:\WINDOWS\system32\drivers\AmUStor.SYS [75416 2017-03-14] (Alcor Micro, Corp.)
      R3 anvsnddrv; C:\WINDOWS\system32\drivers\anvsnddrv.sys [32896 2011-11-28] (AnvSoft Inc.) [File not signed]
      S3 APL531; C:\WINDOWS\System32\Drivers\BLvidv.sys [285952 2007-07-13] (Akkord Corporation)
      S3 AR9271; C:\WINDOWS\system32\DRIVERS\athuw.sys [1763584 2011-07-28] (Atheros Communications, Inc.)
      S3 arusb_win7; C:\WINDOWS\system32\DRIVERS\arusb_win7.sys [629248 2010-12-21] (Atheros Communications, Inc.)
      S3 athur; C:\WINDOWS\System32\drivers\athur.sys [1570304 2011-04-20] (Atheros Communications, Inc.)
      S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus.sys [109456 2017-05-18] (Samsung Electronics Co., Ltd.)
      S3 dot4; C:\WINDOWS\system32\DRIVERS\Dot4.sys [137632 2015-08-11] (Windows (R) Win 7 DDK provider)
      S3 Dot4Print; C:\WINDOWS\System32\drivers\Dot4Prt.sys [22432 2015-08-11] (Windows (R) Win 7 DDK provider)
      R1 eamonm; C:\WINDOWS\System32\DRIVERS\eamonm.sys [113544 2017-09-25] (ESET)
      R0 edevmon; C:\WINDOWS\System32\DRIVERS\edevmon.sys [90656 2017-04-07] (ESET)
      S0 eelam; C:\WINDOWS\System32\DRIVERS\eelam.sys [14880 2017-10-11] (ESET)
      R1 ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [141480 2017-10-11] (ESET)
      R2 ekbdflt; C:\WINDOWS\system32\DRIVERS\ekbdflt.sys [43920 2017-04-07] (ESET)
      R1 epfw; C:\WINDOWS\system32\DRIVERS\epfw.sys [69304 2017-04-07] (ESET)
      R1 epfwwfp; C:\WINDOWS\system32\DRIVERS\epfwwfp.sys [87528 2017-09-25] (ESET)
      S3 ggsomc; C:\WINDOWS\System32\drivers\ggsomc.sys [26328 2017-03-08] (Sony Mobile Communications)
      S3 hxctlflt; C:\WINDOWS\System32\Drivers\hxctlflt.sys [99968 2009-02-09] (Guillemot Corporation)
      R0 iaStorA; C:\WINDOWS\System32\drivers\iaStorA.sys [489832 2013-11-21] (Intel Corporation)
      S3 intaud_WaveExtensible; C:\WINDOWS\system32\drivers\intelaud.sys [44016 2015-12-01] (Intel Corporation)
      R3 iwdbus; C:\WINDOWS\System32\drivers\iwdbus.sys [35320 2015-12-01] (Intel Corporation)
      S3 Jukebox3; C:\WINDOWS\system32\DRIVERS\ctpdusb.sys [17280 2006-01-19] (Creative Technology Ltd.)
      R3 MEI; C:\WINDOWS\System32\drivers\TeeDriverW8.sys [163896 2016-03-29] (Intel Corporation)
      S3 NetAdapterCx; C:\WINDOWS\System32\drivers\NetAdapterCx.sys [62976 2016-07-16] ()
      R2 NPF; C:\WINDOWS\System32\drivers\npf.sys [36600 2013-03-01] (Riverbed Technology, Inc.)
      S3 optousb; C:\WINDOWS\system32\DRIVERS\optousb.sys [18432 2008-04-04] (OPTO ELECTRONICS CO.,LTD.)
      S3 optovcm; C:\WINDOWS\system32\DRIVERS\optovcm.sys [26368 2008-04-04] (OPTO ELECTRONICS CO.,LTD.)
      R3 pneteth; C:\WINDOWS\System32\drivers\pneteth.sys [13440 2011-11-25] (June Fabrics Technology Inc.)
      S3 PSI; C:\WINDOWS\System32\DRIVERS\psi_mf_x86.sys [16024 2016-02-02] (Secunia)
      S3 pwdrvio; C:\Windows\system32\pwdrvio.sys [15688 2013-09-30] ()
      S3 pwdspio; C:\Windows\system32\pwdspio.sys [10320 2013-09-30] ()
      R0 PxHelp20; C:\WINDOWS\System32\Drivers\PxHelp20.sys [36624 2006-10-18] (Sonic Solutions) [File not signed]
      R3 rt640x86; C:\WINDOWS\System32\drivers\rt640x86.sys [795648 2017-02-20] (Realtek )
      S3 RtlWlanu; C:\WINDOWS\system32\DRIVERS\rtwlanu.sys [6617448 2017-11-16] (Realtek Semiconductor Corporation )
      S3 silabenm; C:\WINDOWS\system32\DRIVERS\silabenm.sys [16128 2014-04-11] (Silicon Laboratories)
      S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [147344 2017-05-18] (Samsung Electronics Co., Ltd.)
      S3 ssudserd; C:\WINDOWS\system32\DRIVERS\ssudserd.sys [147344 2017-05-18] (Samsung Electronics Co., Ltd.)
      S3 sthid; C:\WINDOWS\System32\drivers\sthid.sys [18144 2015-07-23] (Splashtop Inc.)
      S3 tap-tb-0901; C:\WINDOWS\System32\drivers\tap-tb-0901.sys [33280 2015-08-10] (The OpenVPN Project)
      R3 tap0901; C:\WINDOWS\System32\drivers\tap0901.sys [23040 2016-04-21] (The OpenVPN Project)
      S3 tapSF0901; C:\WINDOWS\System32\DRIVERS\tapSF0901.sys [33728 2014-05-06] (Spotflux, Inc.)
      S3 USBAAPL; C:\WINDOWS\System32\Drivers\usbaapl.sys [45056 2015-06-10] (Apple, Inc.) [File not signed]
      S3 usbrndis6; C:\WINDOWS\System32\drivers\usb80236.sys [16384 2016-07-16] (Microsoft Corporation)
      R1 VBoxUSBMon; C:\WINDOWS\system32\DRIVERS\VBoxUSBMon.sys [104064 2017-03-07] (BigNox Corporation)
      S0 WdBoot; C:\WINDOWS\System32\drivers\WdBoot.sys [37912 2016-07-16] (Microsoft Corporation)
      R0 WdFilter; C:\WINDOWS\System32\drivers\WdFilter.sys [244576 2016-07-16] (Microsoft Corporation)
      S3 wdf_usb; C:\WINDOWS\system32\drivers\usb2ser.sys [128704 2016-08-16] (MBB)
      S3 wdm_usb; C:\WINDOWS\system32\DRIVERS\usb2ser.sys [128704 2016-08-16] (MBB)
      R3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [100192 2016-07-16] (Microsoft Corporation)
      S3 WUDFWpdMtp; C:\WINDOWS\system32\DRIVERS\WUDFRd.sys [161280 2016-07-16] (Microsoft Corporation)
      R1 xlkfs; C:\WINDOWS\System32\DRIVERS\xlkfs.sys [39664 2016-05-26] (XOSLAB.COM)
      R3 XSplit_Dummy; C:\WINDOWS\system32\drivers\xspltspk.sys [22104 2015-05-25] (SplitmediaLabs Limited)
      S3 asmthub3; \SystemRoot\System32\drivers\asmthub3.sys [X]
      S3 asmtxhci; \SystemRoot\system32\DRIVERS\asmtxhci.sys [X]
      U5 hw_usbdev; C:\Windows\System32\Drivers\hw_usbdev.sys [102272 2016-11-25] (Huawei Technologies Co., Ltd.)
      U5 silabser; C:\Windows\System32\Drivers\silabser.sys [67968 2014-04-11] (Silicon Laboratories)

      ==================== NetSvcs (Whitelisted) ===================

      (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


      ==================== One Month Created files and folders ========

      (If an entry is included in the fixlist, the file/folder will be moved.)

      2017-12-21 23:48 - 2017-12-21 23:48 - 000000000 ____D C:\FRST
      2017-12-21 23:40 - 2017-12-21 23:44 - 000000000 ____D C:\AdwCleaner
      2017-12-21 22:52 - 2017-12-21 22:52 - 000222648 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\2553B5A3.sys
      2017-12-21 22:12 - 2017-12-21 22:12 - 000222648 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\4251D559.sys
      2017-12-21 22:12 - 2017-12-21 22:12 - 000000000 ____D C:\ProgramData\Malwarebytes
      2017-12-21 22:11 - 2017-12-21 23:37 - 000000000 ____D C:\ProgramData\Malwarebytes' Anti-Malware (portable)
      2017-12-21 22:11 - 2017-12-21 22:51 - 000166848 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamchameleon.sys
      2017-12-21 22:10 - 2017-12-21 23:38 - 000000000 ____D C:\Users\Alicia\Desktop\mbar
      2017-12-21 21:43 - 2017-12-21 22:10 - 000001334 _____ C:\Users\Alicia\Desktop\mbar-1.10.3.1001.exe - Acceso directo.lnk
      2017-12-21 21:42 - 2017-12-21 23:48 - 000001222 _____ C:\Users\Alicia\Desktop\FRST.exe - Acceso directo.lnk
      2017-12-21 21:42 - 2017-12-21 21:44 - 000001343 _____ C:\Users\Alicia\Desktop\avcertclean_1.1.2.exe - Acceso directo.lnk
      2017-12-21 21:38 - 2017-12-21 21:38 - 000002552 _____ C:\Users\Alicia\Desktop\mb-clean-results.txt
      2017-12-21 21:21 - 2017-12-21 21:30 - 000348168 _____ C:\WINDOWS\system32\FNTCACHE.DAT
      2017-12-21 19:12 - 2017-12-21 21:38 - 000000000 ____D C:\Program Files\Malwarebytes
      2017-12-21 18:58 - 2017-12-21 21:38 - 000001833 _____ C:\Users\Alicia\Desktop\mb-clean-3.1.0.1031.exe - Acceso directo.lnk
      2017-12-21 18:15 - 2017-12-21 18:15 - 000000000 ____D C:\ProgramData\MB3CoreBackup
      2017-12-21 12:21 - 2017-12-21 12:21 - 000000100 _____ C:\Users\Alicia\Desktop\LISTA-VENDEDORES.txt
      2017-12-14 21:11 - 2017-12-21 21:47 - 000000000 ____D C:\Users\Alicia\Downloads\Vendedores - Hojas de cálculo de Google_files
      2017-12-14 21:11 - 2017-12-14 21:11 - 000726113 _____ C:\Users\Alicia\Downloads\Vendedores - Hojas de cálculo de Google.html
      2017-12-14 12:52 - 2017-12-14 12:53 - 001129816 _____ (Google Inc.) C:\Users\Alicia\Downloads\ChromeSetup.exe
      2017-12-13 20:59 - 2017-12-13 20:59 - 000000279 _____ C:\Users\Alicia\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Papelera de reciclaje.lnk
      2017-12-12 15:45 - 2017-12-12 15:45 - 000000201 _____ C:\Users\Alicia\Desktop\comandos error pagina.txt
      2017-12-10 21:51 - 2017-12-10 21:51 - 000000189 _____ C:\Users\Alicia\Documents\CODIGOS.txt
      2017-12-08 20:31 - 2017-12-08 20:31 - 000310229 _____ C:\Users\Alicia\Downloads\Diary_complete_SP.pdf
      2017-12-07 11:15 - 2017-12-07 11:15 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
      2017-12-05 12:42 - 2017-12-05 23:40 - 000000000 ____D C:\Users\Alicia\Downloads\WECHAT
      2017-12-05 11:40 - 2017-12-21 19:03 - 000000000 ____D C:\Users\Alicia\Documents\WeChat Files
      2017-12-05 11:38 - 2017-12-05 11:38 - 000001136 _____ C:\Users\Public\Desktop\WeChat.lnk
      2017-12-05 11:38 - 2017-12-05 11:38 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WeChat
      2017-12-05 02:06 - 2017-12-05 02:06 - 000043336 _____ (Dropbox, Inc.) C:\WINDOWS\system32\DbxSvc.exe
      2017-12-05 02:06 - 2017-12-05 02:06 - 000035432 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-dev.sys
      2017-12-05 02:06 - 2017-12-05 02:06 - 000035408 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-stable.sys
      2017-12-05 02:06 - 2017-12-05 02:06 - 000035408 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-canary.sys
      2017-11-25 15:53 - 2017-11-25 15:53 - 000000000 ____D C:\Users\Casimiro\AppData\Roaming\NCH Software
      2017-11-22 22:13 - 2017-11-22 22:13 - 000000000 ____D C:\Users\Invitadoss\AppData\Local\NetworkTiles
      2017-11-21 15:26 - 2017-11-21 15:26 - 001913283 _____ C:\Users\Alicia\Downloads\tutorial-calendario.pdf

      ==================== One Month Modified files and folders ========

      (If an entry is included in the fixlist, the file/folder will be moved.)

      2017-12-21 23:48 - 2017-06-13 20:28 - 000000000 ____D C:\Users\Alicia\Downloads\REVIEWS AMAZON
      2017-12-21 23:44 - 2016-09-21 13:11 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
      2017-12-21 23:44 - 2016-07-16 03:22 - 001572864 _____ C:\WINDOWS\system32\config\BBI
      2017-12-21 23:19 - 2016-07-16 09:29 - 000000000 ____D C:\WINDOWS\AppReadiness
      2017-12-21 22:51 - 2016-07-16 09:29 - 000000000 ___HD C:\Program Files\WindowsApps
      2017-12-21 22:11 - 2016-07-16 09:28 - 000000000 ____D C:\WINDOWS\INF
      2017-12-21 21:41 - 2014-04-11 18:29 - 000000000 __SHD C:\Users\Alicia\IntelGraphicsProfiles
      2017-12-21 21:35 - 2016-07-16 18:18 - 000860528 _____ C:\WINDOWS\system32\perfh00A.dat
      2017-12-21 21:35 - 2016-07-16 18:18 - 000176294 _____ C:\WINDOWS\system32\perfc00A.dat
      2017-12-21 21:28 - 2017-06-14 01:00 - 000000000 ___SD C:\WINDOWS\UpdateAssistantV2
      2017-12-21 21:28 - 2016-07-16 09:30 - 000209408 _____ (Microsoft Corporation) C:\WINDOWS\system32\msclmd.dll
      2017-12-21 21:28 - 2016-07-16 09:29 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
      2017-12-21 21:28 - 2016-07-16 09:29 - 000000000 ___RD C:\Program Files\Windows Defender
      2017-12-21 21:28 - 2016-07-16 09:29 - 000000000 ____D C:\WINDOWS\system32\oobe
      2017-12-21 21:28 - 2016-07-16 09:29 - 000000000 ____D C:\WINDOWS\system32\inetsrv
      2017-12-21 21:28 - 2016-07-16 09:29 - 000000000 ____D C:\WINDOWS\ShellExperiences
      2017-12-21 21:16 - 2014-04-11 18:52 - 000000000 ____D C:\ProgramData\TEMP
      2017-12-21 21:05 - 2016-09-21 12:44 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
      2017-12-21 19:44 - 2016-07-16 09:19 - 000000000 ____D C:\WINDOWS\CbsTemp
      2017-12-21 19:03 - 2016-11-19 16:30 - 000000000 ____D C:\Users\Alicia\AppData\LocalLow\Mozilla
      2017-12-19 13:41 - 2016-07-16 09:29 - 000000000 ____D C:\WINDOWS\rescache
      2017-12-18 18:24 - 2014-04-08 01:01 - 000000000 ____D C:\Users\Alicia\Documents\CHAMAKH Y OTROS
      2017-12-18 10:57 - 2014-04-08 01:41 - 000000000 ____D C:\Users\Alicia\AppData\Roaming\Skype
      2017-12-17 11:17 - 2014-04-12 17:21 - 000000000 __SHD C:\Users\Casimiro\IntelGraphicsProfiles
      2017-12-17 09:46 - 2015-08-07 14:34 - 000002408 _____ C:\Users\Casimiro\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
      2017-12-17 09:46 - 2015-08-07 14:34 - 000000000 ___RD C:\Users\Casimiro\OneDrive
      2017-12-16 14:26 - 2016-07-16 09:29 - 000000000 ___SD C:\WINDOWS\Downloaded Program Files
      2017-12-16 02:48 - 2016-09-21 12:49 - 000000000 ____D C:\Users\Alicia
      2017-12-14 16:31 - 2017-09-15 00:57 - 000000000 __SHD C:\Users\Invitadoss\IntelGraphicsProfiles
      2017-12-14 12:53 - 2015-08-06 11:57 - 000002292 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
      2017-12-13 02:01 - 2016-07-16 09:29 - 000000000 ____D C:\WINDOWS\system32\appraiser
      2017-12-12 22:10 - 2014-04-07 19:26 - 000000000 ____D C:\WINDOWS\system32\MRT
      2017-12-12 22:04 - 2017-10-11 13:48 - 130448288 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT-KB890830.exe
      2017-12-12 22:04 - 2014-04-07 19:26 - 130448288 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
      2017-12-11 12:33 - 2016-02-22 00:29 - 000000000 ____D C:\Users\Alicia\Downloads\PUBLICAR
      2017-12-10 21:12 - 2014-05-06 14:15 - 000000000 ____D C:\Users\Alicia\Documents\CURRICULUMS
      2017-12-10 16:32 - 2017-10-29 11:45 - 000000004 _____ C:\Users\Alicia\Desktop\SORTEAMUS.txt
      2017-12-10 16:25 - 2014-08-05 15:45 - 000001038 _____ C:\Users\Public\Desktop\CCleaner.lnk
      2017-12-10 16:25 - 2014-04-08 01:26 - 000000000 ____D C:\Program Files\CCleaner
      2017-12-09 18:02 - 2016-09-24 17:45 - 000000000 ____D C:\Program Files\Mozilla Firefox
      2017-12-09 18:02 - 2014-04-07 20:31 - 000001121 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
      2017-12-09 17:58 - 2016-07-16 09:29 - 000000000 ____D C:\WINDOWS\system32\NDF
      2017-12-08 14:04 - 2017-11-06 10:39 - 000000000 ____D C:\Program Files\rempl
      2017-12-07 21:57 - 2017-09-15 01:01 - 000002414 _____ C:\Users\Invitadoss\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
      2017-12-07 21:57 - 2017-09-15 01:01 - 000000000 ___RD C:\Users\Invitadoss\OneDrive
      2017-12-07 11:16 - 2016-12-16 19:33 - 000000000 ____D C:\Program Files\Dropbox
      2017-12-02 15:11 - 2014-08-25 09:00 - 000000000 ____D C:\Users\Casimiro\Desktop\fotos cumple 14
      2017-12-02 02:06 - 2016-10-14 14:10 - 000835576 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerApp.exe
      2017-12-02 02:06 - 2016-10-14 14:10 - 000177656 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerCPLApp.cpl
      2017-11-29 22:40 - 2015-11-08 16:23 - 000002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
      2017-11-29 22:25 - 2014-04-08 19:19 - 000000000 ____D C:\Program Files\TeamViewer
      2017-11-25 22:43 - 2017-11-12 18:01 - 000000000 ____D C:\Program Files\CyberGhost 6
      2017-11-21 12:06 - 2014-04-07 19:46 - 000450720 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe

      ==================== Files in the root of some directories =======

      2014-06-11 14:56 - 2014-06-11 14:56 - 000000000 ____D () C:\ProgramData\C__Users_Alicia_Downloads_Free Hide IP v3.8.2.2_Crack_FreeHideIP.exe
      2017-12-10 16:27 - 2017-12-10 16:27 - 000000008 _____ () C:\Program Files\014D00D7.log
      2015-08-02 14:39 - 2015-09-23 20:52 - 000003072 _____ () C:\Users\Alicia\AppData\Roaming\Albumaker Prefsv3
      2016-07-06 13:19 - 2016-07-06 13:20 - 000000163 _____ () C:\Users\Alicia\AppData\Roaming\PLGComp.ini
      2017-06-11 12:39 - 2017-06-11 12:39 - 000000000 ____H () C:\Users\Alicia\AppData\Local\BIT4E0D.tmp
      2016-06-12 11:59 - 2017-02-22 23:51 - 000424448 _____ (Dirección General de la Policía) C:\Users\Alicia\AppData\Local\DNIeService.exe
      2016-05-16 15:41 - 2016-05-16 15:41 - 000000036 _____ () C:\Users\Alicia\AppData\Local\housecall.guid.cache
      2015-03-27 20:52 - 2015-03-27 20:52 - 000000001 _____ () C:\Users\Alicia\AppData\Local\llftool.4.12.agreement
      2017-03-07 01:04 - 2017-03-07 01:04 - 000000552 _____ () C:\Users\Alicia\AppData\Local\TroubleshooterConfig.json
      2016-07-16 17:50 - 2017-03-06 19:36 - 000000190 _____ () C:\Users\Alicia\AppData\Local\uts.ini
      2017-06-11 12:38 - 2017-06-11 12:38 - 000000000 _____ () C:\Users\Alicia\AppData\Local\{7DF6E0C8-C48E-4E11-A6ED-FAEA67C67DBC}

      ==================== Bamital & volsnap ======================

      (There is no automatic fix for files that do not pass verification.)

      C:\WINDOWS\explorer.exe => File is digitally signed
      C:\WINDOWS\system32\winlogon.exe => File is digitally signed
      C:\WINDOWS\system32\wininit.exe => File is digitally signed
      C:\WINDOWS\system32\svchost.exe => File is digitally signed
      C:\WINDOWS\system32\services.exe => File is digitally signed
      C:\WINDOWS\system32\User32.dll => File is digitally signed
      C:\WINDOWS\system32\userinit.exe => File is digitally signed
      C:\WINDOWS\system32\rpcss.dll => File is digitally signed
      C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
      C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed

      LastRegBack: 2017-12-19 13:32

      ==================== End of FRST.txt ============================

    Página 1 de 2 12 ÚltimoÚltimo