Carperta MGU1M en. Archivos de Programa

Cerrado
kaninox
Mensajes: 106
Registrado: 21 May 2007, 05:46

Carperta MGU1M en. Archivos de Programa

Mensaje por kaninox » 15 Sep 2018, 02:15

MGU1M-VIRUS.rar
virus password
(7.41 MiB) Descargado 123 veces
Hola estimados, muy buenas les comento que tratando hoy de copiar una imagen de disco instale el famoso IMGBURN de su pagina oficial pero por la premura le di siguiente siguiente al instalador dándome cuenta luego que tenia mi pc con varios problemas los cuales he ido solucionando, pero me quedo un proceso tomado cada vez que enciendo la PC, que se llama: YzhiNDM4MmE0MWU4Y.exe
El cual proviene de una carpeta alojada en "Program Files", entre en modo a prueba de fallos pero para mi sorpresa no la pude ver ni como archivo oculto, solo cuando entro con mi sesion :/ que tipo de Carpeta es esta? por que me ejecuta ese proceso. lo encuentro bastante sospechoso.

Les enviare al correo las muestras correspondientes de la carpeta para su análisis si es factible.

Espero me puedan ayudar u orientar en mi consulta o problema.

Saludos

Saludos cordiales.

Avatar de Usuario
msc hotline sat
Mensajes: 93500
Registrado: 09 Mar 2004, 20:39
Ubicación: BARCELONA (ESPAÑA)
Contactar:

Re: Carperta MGU1M en. Archivos de Programa

Mensaje por msc hotline sat » 17 Sep 2018, 13:20

Efectivamente, en el RAR que nos envia existen dos ficheros EXE, el MjE3=Dh.exe y el que Vd dice no encontrar, YzhiNDM4MmE0MWU4Y.EXE, que al parecer son iguales, ofreciendo este informe en el preanalisis de virustotal:

https://www.virustotal.com/es/file/76b2 ... 537182669/


Como podrá ver en el informe, NOD32 lo detecta como Win32/Adware.Zdengo.BIJ , y nosotros lo pasamos a controlar a partir del próximo ELISTARA con el mismo nombre.


Vea si añadiendo .VIR a dicho fichero queda resuelto el problema, y sino, lance el SPROCES y posteenos el informe resultante C:\sproclog.txt para poder ayudarle a eliminar claves relativas al mismo.


Esperamos sus noticias

saludos

ms, 17-9-2018

kaninox
Mensajes: 106
Registrado: 21 May 2007, 05:46

Re: Carperta MGU1M en. Archivos de Programa

Mensaje por kaninox » 21 Sep 2018, 01:18

Estimado, le comento que corri elistara me figuro como eliminado el virus pero al reiniciar me vuelve a aparecer la carpeta con los archivos aunque los renombre a .VIR :/
adjunto el sprocess y el informe elistara

Código: Seleccionar todo

(21-9-2018  00:03:50 GMT)
SProces v9.1  (c)2017 S.G.H. / Satinfo S.L.
-------------------------------------------
Sistema Operativo: Windows 7 Ultimate (v6.1)  (64 bits)
Internet Explorer: (v10.0.9200.17089) 0
Equipo: INFORMATICA2
Usuario: Alejandro
Sesión de Usuario: Alejandro

88 Procesos Activos:
C:\WINDOWS\SYSTEM32\SMSS.EXE
C:\WINDOWS\SYSTEM32\CSRSS.EXE
C:\WINDOWS\SYSTEM32\CSRSS.EXE
C:\WINDOWS\SYSTEM32\WININIT.EXE
C:\WINDOWS\SYSTEM32\WINLOGON.EXE
C:\WINDOWS\SYSTEM32\SERVICES.EXE
C:\WINDOWS\SYSTEM32\LSASS.EXE
C:\WINDOWS\SYSTEM32\LSM.EXE
C:\WINDOWS\SYSTEM32\SVCHOST.EXE
C:\WINDOWS\SYSTEM32\NVVSVC.EXE
C:\PROGRAM FILES (X86)\NVIDIA CORPORATION\3D VISION\NVSCPAPISVR.EXE
C:\WINDOWS\SYSTEM32\SVCHOST.EXE
C:\WINDOWS\SYSTEM32\MSMPENG.EXE
C:\WINDOWS\SYSTEM32\SVCHOST.EXE
C:\WINDOWS\SYSTEM32\SVCHOST.EXE
C:\WINDOWS\SYSTEM32\SVCHOST.EXE
C:\WINDOWS\SYSTEM32\SVCHOST.EXE
C:\WINDOWS\SYSTEM32\SVCHOST.EXE
C:\WINDOWS\SYSTEM32\NVXDSYNC.EXE
C:\WINDOWS\SYSTEM32\NVVSVC.EXE
C:\WINDOWS\SYSTEM32\SVCHOST.EXE
C:\WINDOWS\SYSTEM32\SPOOLSV.EXE
C:\WINDOWS\SYSTEM32\SVCHOST.EXE
C:\PROGRAM FILES (X86)\COMMON FILES\ABBYY\FINEREADER\11.00\LICENSING\CE\NETWORKLICENSESERVER.EXE
C:\WINDOWS\SYSTEM32\TASKHOST.EXE
C:\PROGRAM FILES (X86)\COMMON FILES\ADOBE\ARM\1.0\ARMSVC.EXE
D:\SERVIDOR\XAMPP\APACHE\BIN\HTTPD.EXE
C:\WINDOWS\SYSTEM32\DWM.EXE
C:\WINDOWS\SYSTEM32\EXPLORER.EXE
C:\WINDOWS\SYSTEM32\APPLEMOBILEDEVICESERVICE.EXE
C:\WINDOWS\SYSTEM32\MSSECES.EXE
C:\PROGRAM FILES (X86)\ROCKETDOCK\ROCKETDOCK.EXE
C:\WINDOWS\SYSTEM32\MDNSRESPONDER.EXE
C:\WINDOWS\PREY\WPXSVC.EXE
C:\WINDOWS\SYSTEM32\EWSERVER.EXE
C:\WINDOWS\SYSTEM32\NODE.EXE
C:\WINDOWS\SYSTEM32\CONHOST.EXE
C:\WINDOWS\SYSTEM32\SVCHOST.EXE
C:\PROGRAM FILES (X86)\HP\HPLASERJETSERVICE\HPLASERJETSERVICE.EXE
D:\SERVIDOR\XAMPP\APACHE\BIN\HTTPD.EXE
C:\PROGRAM FILES\MGU1M\YZHINDM4MME0MWU4Y.EXE
C:\WINDOWS\SYSTEM32\SQLSERVR.EXE
C:\PROGRAM FILES\MGU1M\YZHINDM4MME0MWU4Y.EXE
C:\WINDOWS\PREY\VERSIONS\1.8.1\NODE_MODULES\TRIGGERS\BIN\LIGHTEVT.EXE
D:\SERVIDOR\XAMPP\MYSQL\BIN\MYSQLD.EXE
C:\WINDOWS\SYSTEM32\SVCHOST.EXE
C:\WINDOWS\SYSTEM32\RUNDLL32.EXE
C:\WINDOWS\SYSWOW64\RUNDLL32.EXE
C:\PROGRAM FILES (X86)\SONY\PLAYMEMORIES HOME\PMBDEVICEINFOPROVIDER.EXE
C:\WINDOWS\SYSTEM32\SVCHOST.EXE
C:\WINDOWS\SYSTEM32\PRINTERCACHE.EXE
C:\WINDOWS\SYSTEM32\REMOTESOLVERDISPATCHERSERVICE.EXE
C:\WINDOWS\SYSTEM32\DISPATCHER.EXE
C:\PROGRAM FILES (X86)\MICROSOFT SQL SERVER\90\SHARED\SQLBROWSER.EXE
C:\WINDOWS\SYSTEM32\CONHOST.EXE
C:\WINDOWS\SYSTEM32\SQLWRITER.EXE
C:\WINDOWS\SYSTEM32\NODE.EXE
C:\WINDOWS\SYSTEM32\CONHOST.EXE
C:\PROGRAM FILES (X86)\TEAMVIEWER\TEAMVIEWER_SERVICE.EXE
C:\WINDOWS\SYSTEM32\WLIDSVC.EXE
C:\WINDOWS\SYSTEM32\WSAPPSERVICE.EXE
C:\WINDOWS\SYSTEM32\WLIDSVCM.EXE
C:\WINDOWS\SYSTEM32\NODE.EXE
C:\WINDOWS\SYSTEM32\APP.EXE
C:\WINDOWS\SYSTEM32\CONHOST.EXE
C:\WINDOWS\SYSTEM32\TASK.EXE
C:\WINDOWS\SYSTEM32\FIREFOX.EXE
C:\WINDOWS\SYSTEM32\FIREFOX.EXE
C:\WINDOWS\SYSTEM32\FIREFOX.EXE
C:\WINDOWS\SYSTEM32\FIREFOX.EXE
C:\WINDOWS\SYSTEM32\FIREFOX.EXE
C:\WINDOWS\SYSTEM32\SEARCHINDEXER.EXE
C:\WINDOWS\SYSTEM32\SVCHOST.EXE
C:\PROGRAM FILES (X86)\FIREFOX\BIN\FIREFOXUPDATE.EXE
C:\WINDOWS\SYSTEM32\SPPSVC.EXE
C:\WINDOWS\SYSTEM32\TASKENG.EXE
C:\PROGRAM FILES (X86)\MICROLEAVES\ONLINE APPLICATION\VERSION 2.6.0\ONLINE-GUARDIAN.EXE
C:\PROGRAM FILES (X86)\MICROLEAVES\ONLINE APPLICATION\VERSION 2.6.0\ONLINE-GUARDIAN.EXE
C:\PROGRAM FILES (X86)\MICROLEAVES\ONLINE APPLICATION\VERSION 2.6.0\ONLINE-GUARDIAN.EXE
C:\WINDOWS\SYSTEM32\WUAUCLT.EXE
C:\PROGRAM FILES (X86)\MICROLEAVES\ONLINE APPLICATION\VERSION 2.6.0\ONLINE-GUARDIAN.EXE
C:\PROGRAM FILES (X86)\MICROLEAVES\ONLINE APPLICATION\VERSION 2.6.0\ONLINE-GUARDIAN.EXE
C:\PROGRAM FILES (X86)\MICROLEAVES\ONLINE APPLICATION\VERSION 2.6.0\ONLINE-GUARDIAN.EXE
C:\WINDOWS\SYSTEM32\TRUSTEDINSTALLER.EXE
C:\WINDOWS\SYSTEM32\SVCHOST.EXE
C:\WINDOWS\SYSTEM32\TASKENG.EXE
C:\PROGRAM FILES (X86)\COMMON FILES\JAVA\JAVA UPDATE\JUSCHED.EXE
C:\USERS\ALEJANDRO\DESKTOP\SPROCES.EXE

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
R0 - HKUS\S-1-5-21-187877695-3076786098-3722317423-1001\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank (User 'Usuario')
R0 - HKUS\S-1-5-21-187877695-3076786098-3722317423-1001\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch (User 'Usuario')
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = local;*.local (0)
F2 - REG:system.ini: UserInit=userinit.exe, (HKLM x86)
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (MD5: 4439E8B55CF0B2EA122F4FDC780270A2)
O2 - BHO: Browser Ad Secure - {D9833D5B-70E0-4E25-ADB2-FA8A4C1DD37D} - C:\Users\Alejandro\AppData\Local\FCE\IE\adxloader64.dll (MD5: B3657505563267E53699515AE5BC0DC1)
O2 - BHO (x86): Wondershare Video Converter Ultimate 7.1.0 - {451C804F-C205-4F03-B48E-537EC94937BF} - C:\PROGRA~3\WONDER~1\VIDEOC~1\WSBROW~1.DLL (MD5: E270EE3A7210E99B64EA0B6493824195)
O2 - BHO (x86): Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_151\bin\ssv.dll (MD5: AAB46444CFE24C7D91B722BCCC7F0F57)
O2 - BHO (x86): Aplicación auxiliar de inicio de sesión en la cuenta Microsoft - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (MD5: E527FAC0EC3AA363C09C2E0AD13BC882)
O2 - BHO (x86): Adobe PDF Conversion Toolbar Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (MD5: F2DCB030FBDD320F858871515C18C5D1)
O2 - BHO (x86): SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (MD5: 70CE1DA6684A7043B0008C2F2E286E27)
O2 - BHO (x86): Browser Ad Secure - {D9833D5B-70E0-4E25-ADB2-FA8A4C1DD37D} - C:\Users\Alejandro\AppData\Local\FCE\IE\adxloader.dll (MD5: 85DD61A4A4C296BD9A235D0CF628E50E)
O2 - BHO (x86): Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_151\bin\jp2ssv.dll (MD5: 0D347135814EBBE028925DB68BD61086)
O2 - BHO (x86): SmartSelect - {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (MD5: F2DCB030FBDD320F858871515C18C5D1)
O3 - Toolbar (x86): Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (MD5: F2DCB030FBDD320F858871515C18C5D1)
O4 - HKCU\..\Run: [RocketDock] "C:\Program Files (x86)\RocketDock\RocketDock.exe" (MD5: 7DFCCC67990B6DE7F30F553A4E4612A4)
O4 - HKCU\..\Run: [AdobeBridge] 
O4 - HKUS\S-1-5-21-3309746368-2663584995-1869735751-500\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'administrador')
O4 - HKUS\S-1-5-21-3309746368-2663584995-1869735751-500\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'administrador') (MD5: 0FA760BF380B08D0B67B5507CD8B32AA)
O4 - HKLM\..\Run: [MSC] "C:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey (MD5: A6AAD37CDCAE75CB62D039E3A4D8F5E3)
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'Servicio Local')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'Servicio Local') (MD5: 0FA760BF380B08D0B67B5507CD8B32AA)
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'Servicio de red')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'Servicio de red') (MD5: 0FA760BF380B08D0B67B5507CD8B32AA)
O8 - Extra context menu item: E&xportar a Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000 (User 'Usuario')
O9 - Extra button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (MD5: 70CE1DA6684A7043B0008C2F2E286E27) (HKLM x86)
O9 - Extra button: Referencia - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\OFFICE11\REFIEBAR.DLL (MD5: 22BDC1E6E606C9BAE68141D7099309AB) (HKLM x86)
O10 - Unknown file in Winsock LSP: C:\PROGRAM FILES (X86)\COMMON FILES\MICROSOFT SHARED\WINDOWS LIVE\WLIDNSP.DLL
O10 - Unknown file in Winsock LSP: C:\PROGRAM FILES (X86)\COMMON FILES\MICROSOFT SHARED\WINDOWS LIVE\WLIDNSP.DLL
O10 - Unknown file in Winsock LSP: C:\PROGRAM FILES (X86)\BONJOUR\MDNSNSP.DLL
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics (x86)
O16 - DPF (x86): {51E7F2F2-DF6C-46F1-A7F2-855361D917A3} (DHSurveillanceCtrl Control) - http://172.16.13.31/webrec.cab
O16 - DPF (x86): {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{8056D787-5BBE-4460-9AE8-78DC8033D4F4}: NameServer = 192.168.3.253,192.168.3.5
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - (no file)
O18 - Protocol: ms-help - {314111C7-A502-11D2-BBCA-00C04F8EC294} - (no file)
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - (no file)
O18 - Protocol: mso-offdap11 - {32505114-5902-49B2-880A-1F7738E5A384} - (no file)
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - (no file)
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - (no file)
O18 - Protocol: WSWSVCUchrome - (no CLSID) - (no file)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - (no file)
O22 - ShellExecuteHooks:  - {39BE6DD8-FFDC-11E6-B0D9-64006A5CFC23} - (no file)

Información Adicional:
----------------------
Acceso Rapido ('Alejandro'): Aegisub.lnk = C:\Program Files (x86)\Aegisub\aegisub32.exe  (MD5: ED67349F7DACE0444FD5EDCAB5039737)
Acceso Rapido ('Alejandro'): Aiseesoft Video Converter Ultimate.lnk = C:\Program Files (x86)\Aiseesoft Studio\Aiseesoft Video Converter Ultimate\Aiseesoft Video Converter Ultimate.exe  (MD5: A3793025341877A8412D530DD45CD249)
Acceso Rapido ('Alejandro'): Iniciar Microsoft Office Outlook.lnk = C:\Program Files (x86)\Microsoft Office\OFFICE11\OUTLOOK.EXE  /recycle
Acceso Rapido ('Alejandro'): Launch Internet Explorer Browser.lnk = C:\Program Files (x86)\Internet Explorer\iexplore.exe  (MD5: 82B4F3BE7E4A22B28CCAFAB3002255E5)
Acceso Rapido ('Alejandro'): L?unch Int?rnet E?pl?r?r Browser.lnk =  
Acceso Rapido ('Alejandro'): Mozilla Thunderbird.lnk = C:\Program Files (x86)\Mozilla Thunderbird\thunderbird.exe  (MD5: DACB80A4F26944E1688A14806F957073)
Acceso Rapido ('Alejandro'): Shows Desktop.lnk =  
Acceso Rapido ('Alejandro'): SolidWorks 2014 x64 Edition.lnk = C:\Windows\Installer\{4FFA60C4-9A8B-4C9E-8265-2241B266304C}\i386_SldWorks.exe  (MD5: 8B9D2D0E6185BA29210D7694C35307F0)
Acceso Rapido ('Alejandro'): SolidWorks Explorer 2014.lnk = C:\Windows\Installer\{0C10FAF1-35D5-416A-B7C1-4168ED9485FA}\NewShortcut1.exe  (MD5: 985783C1D8E389F3FEC52C2A43500FFF)
Acceso Rapido ('Alejandro'): Subtitle Workshop.lnk = C:\Program Files (x86)\URUSoft\Subtitle Workshop\SubtitleWorkshop.exe  (MD5: 174A5E62C9376C1914F6D9772509523A)
Acceso Rapido ('Alejandro'): Window Switcher.lnk =  
Acceso Rapido ('Alejandro'): Wondershare Video Converter Ultimate.lnk = C:\Program Files (x86)\Wondershare\Video Converter Ultimate\VideoConverterUltimate.exe  (MD5: E60C5EADC8BDBF1054A195C8669D6D54)
Acceso Rapido ('Alejandro'): ??zill? Fir?f?x.lnk =  
Acceso Rapido ('Usuario'): Launch Internet Explorer Browser.lnk = C:\Program Files (x86)\Internet Explorer\iexplore.exe  (MD5: 82B4F3BE7E4A22B28CCAFAB3002255E5)
Acceso Rapido ('Usuario'): Shows Desktop.lnk =  
Acceso Rapido ('Usuario'): Subtitle Workshop.lnk = C:\Program Files (x86)\URUSoft\Subtitle Workshop\SubtitleWorkshop.exe  (MD5: 174A5E62C9376C1914F6D9772509523A)
Acceso Rapido ('Usuario'): Window Switcher.lnk =  
Tarea Programada: C:\WINDOWS\Tasks\DropboxUpdateTaskUserS-1-5-21-187877695-3076786098-3722317423-1000Core.job
Tarea Programada: C:\WINDOWS\Tasks\DropboxUpdateTaskUserS-1-5-21-187877695-3076786098-3722317423-1000UA.job
Tarea Programada: C:\WINDOWS\Tasks\Online Application V2G1.job
Tarea Programada: C:\WINDOWS\Tasks\Online Application V2G2.job
Tarea Programada: C:\WINDOWS\Tasks\Online Application V2G3.job
Tarea Programada: C:\WINDOWS\Tasks\Online Application V2G4.job
Tarea Programada: C:\WINDOWS\Tasks\Online Application V2G5.job
Tarea Programada: C:\WINDOWS\Tasks\Online Application V2G6.job
Tarea Programada: C:\WINDOWS\Tasks\Updater_Online_Application.job

Listado de Servicios (Carga Automatica):
----------------------------------------
O23 - Service: 3DM - Unknown owner - C:\windows\system32\svchost.exe -k 3DM -s - C:\Users\Alejandro\AppData\Local\3DM\Kitty.dll (file missing)
O23 - Service: ABBYY FineReader 11 CE Licensing Service (ABBYY.Licensing.FineReader.Corporate.11.0) - ABBYY - C:\Program Files (x86)\Common Files\ABBYY\FineReader\11.00\Licensing\CE\NetworkLicenseServer.exe (MD5: 8912B38E7906BDE9999E4BBDC4E65BDC)
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (MD5: AE86FE2A70C377C0F1AD5B20E66F4C2F)
O23 - Service: Apache2.2 - Apache Software Foundation - D:\Servidor\xampp\apache\bin\httpd.exe (MD5: FB32F046A2578755FA0DA5052C6A9CD3)
O23 - Service: Apple Mobile Device Service - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe (MD5: 3B3774C868868257533EC7E715BB6D53)
O23 - Service: Apple Azure Service (AppleAzureSrv) - Unknown owner - %SystemRoot%\System32\svchost.exe -k AppleAppsServices - C:\ProgramData\common\Apple\Apps\AzureTools.dll (file missing)
O23 - Service: Servicio Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe (MD5: B5C2F92EE1106DFE7BB1CCE4D35B6037)
O23 - Service: Cron Service (CronService) - Fork, Ltd. - C:\Windows\Prey\wpxsvc.exe (MD5: E0F25019195B8417F0F2BDA2D337EEE4)
O23 - Service: CWASRE - Unknown owner - C:\Windows\System32\svchost.exe -k CWASRE - C:\Users\Alejandro\AppData\Local\CWASRE\Snare.dll (file missing)
O23 - Service: SolidWorks Electrical Collaborative Server (ewserver) - Trace Software International - C:\Program Files\SolidWorks Corp\SolidWorks Electrical\server\EwServer.exe (MD5: AB60E9A5E0EC478D46C23B1455097E6C)
O23 - Service: Update Service(FirefoxU) (FirefoxU) - Unknown owner - C:\Program Files (x86)\Firefox\bin\FirefoxUpdate.exe (MD5: BDCF95EE0310B366EDCC2278BCEE5473)
O23 - Service: HP LaserJet Service - HP - C:\Program Files (x86)\HP\HPLaserJetService\HPLaserJetService.exe (MD5: 9C42E435F629CD8512BECFA082762425)
O23 - Service: Internet Information Service (IISvr) - Unknown owner - %SystemRoot%\System32\svchost.exe -k IISGroup - C:\Program Files (x86)\IIS\Microsoft Web Deploy V3\te\msdeploy.resources.dll (file missing)
O23 - Service: Kitty - Unknown owner - C:\windows\system32\svchost.exe -k Kitty -s - C:\Users\Alejandro\AppData\Local\Kitty\Kitty.dll (file missing)
O23 - Service: MGU1M - Unknown owner - C:\Program Files\MGU1M\YzhiNDM4MmE0MWU4Y.exe (MD5: 18421BAE5120487252C7494F1B47086D)
O23 - Service: VC IDE Base Service (MVCSrv) - Unknown owner - %SystemRoot%\System32\svchost.exe -k MVCService - C:\ProgramData\Package Cache\{0C8D9D70-FA5A-4CA9-763F-D8D93BC099B6}v10.1.14393.795\Installers\Universal_CRT_Tools_x86-x86_en-us.dll (file missing)
O23 - Service: MySQL - Unknown owner - D:\Servidor\xampp\mysql\bin\mysqld.exe" --defaults-file="D:\Servidor\xampp\mysql\bin\my.ini (file missing)
O23 - Service: Net Driver HPZ12 - Hewlett-Packard - %SystemRoot%\System32\svchost.exe -k HPZ12 - C:\Windows\system32\HPZinw12.dll (MD5: 2334DC48997BA203B794DF3EE70521DB)
O23 - Service: NGY5NmIzO - Unknown owner - C:\WINDOWS\SYSTEM32\rundll32.exe C:\Windows\kiskwxlebjmngbwl.kis (file missing)
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe (MD5: DFDA089BB2CD0FF7E789E2EF6BA1E4BA)
O23 - Service: PMBDeviceInfoProvider - Sony Corporation - C:\Program Files (x86)\Sony\PlayMemories Home\PMBDeviceInfoProvider.exe (MD5: 840AC13DA861C31665FE805E3B53EAE0)
O23 - Service: Pml Driver HPZ12 - Hewlett-Packard - %SystemRoot%\System32\svchost.exe -k HPZ12 - C:\Windows\system32\HPZipm12.dll (MD5: AC78DF349F0E4CFB8B667C0CFFF83CCE)
O23 - Service: Printer Cache (printercache.exe) - CloudBees, Inc. - C:\Users\Alejandro\AppData\Roaming\Cache\daemon\printercache.exe (MD5: E0EEF2861571B63A45EE59D802CCFA8C)
O23 - Service: Remote Solver for Flow Simulation 2014 (RemoteSolverDispatcher) - Mentor Graphics Corporation - C:\Program Files\SolidWorks Corp\SolidWorks Flow Simulation\binCFW\remotesolverdispatcherservice.exe (MD5: CE8CEF1350B429BE66633A5F40AEDD86)
O23 - Service: snare - Unknown owner - C:\Windows\System32\svchost.exe -k snare - C:\Users\Alejandro\AppData\Local\snare\Snare.dll (file missing)
O23 - Service: SNAREA - Unknown owner - C:\Windows\System32\svchost.exe -k SNAREA - C:\Users\Alejandro\AppData\Local\SNAREA\Snare.dll (file missing)
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe (MD5: 6086B60F2E36D06A063CB07ED0524332)
O23 - Service: Microsoft Software Id Service (swpsvr) - Unknown owner - %SystemRoot%\System32\svchost.exe -k swpidvr - C:\ProgramData\Microsoft\Windows\system\appidsvr.dll (file missing)
O23 - Service: TeamViewer 13 (TeamViewer) - TeamViewer GmbH - C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (MD5: F5A7D2558C98E31AF03885822CD60789)
O23 - Service: @%SystemRoot%\System32\uxtuneup.dll,-4096 (UxTuneUp) - TuneUp Software - %SystemRoot%\System32\svchost.exe -k netsvcs - C:\WINDOWS\System32\uxtuneup.dll (MD5: 0D179E8977527A8A031F3F32832BC867)
O23 - Service: VNASRE - Unknown owner - C:\Windows\System32\svchost.exe -k VNASRE - C:\Users\Alejandro\AppData\Local\VNASRE\Snare.dll (file missing)
O23 - Service: WANARE - Unknown owner - C:\Windows\System32\svchost.exe -k WANARE - C:\Users\Alejandro\AppData\Local\WANARE\Snare.dll (file missing)
O23 - Service: WfpGameProtect (wfpgameprotect) - Unknown owner - C:\Users\ALEJAN~1\AppData\Local\Temp\7F6A.tmp.sys (file missing)
O23 - Service: WPhone Develop Tools Service (WPDTSrv) - Unknown owner - %SystemRoot%\System32\svchost.exe -k WPDService - C:\ProgramData\Microsoft\Phone Tools\CoreCon\12.0\addons\SDKFilesVer.dll (file missing)
O23 - Service: Wondershare Application Framework Service (WsAppService) - Wondershare - C:\Program Files (x86)\Wondershare\WAF\2.4.3.236\WsAppService.exe (MD5: 1D446EE17A76D3462E5A3C2202414DE1)

Listado de Servicios (Carga Manual):
------------------------------------
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe (MD5: 9B1F0A236A67D1D45576AB0AE1ACA24C)
O23 - Service: adp94xx - Adaptec, Inc. - C:\WINDOWS\system32\DRIVERS\adp94xx.sys (MD5: 2F6B34B83843F0C5118B63AC634F5BF4)
O23 - Service: adpahci - Adaptec, Inc. - C:\WINDOWS\system32\DRIVERS\adpahci.sys (MD5: 597F78224EE9224EA1A13D6350CED962)
O23 - Service: adpu320 - Adaptec, Inc. - C:\WINDOWS\system32\DRIVERS\adpu320.sys (MD5: E109549C90F62FB570B9540C4B148E54)
O23 - Service: aliide - Acer Laboratories Inc. - C:\WINDOWS\system32\drivers\aliide.sys (MD5: 5812713A477A3AD7363C7438CA2EE038)
O23 - Service: amdsata - Advanced Micro Devices - C:\WINDOWS\system32\drivers\amdsata.sys (MD5: D4121AE6D0C0E7E13AA221AA57EF2D49)
O23 - Service: amdsbs - AMD Technologies Inc. - C:\WINDOWS\system32\DRIVERS\amdsbs.sys (MD5: F67F933E79241ED32FF46A4F29B5120B)
O23 - Service: arc - Adaptec, Inc. - C:\WINDOWS\system32\DRIVERS\arc.sys (MD5: C484F8CEB1717C540242531DB7845C4E)
O23 - Service: arcsas - Adaptec, Inc. - C:\WINDOWS\system32\DRIVERS\arcsas.sys (MD5: 019AF6924AEFE7839F61C830227FE79C)
O23 - Service: Broadcom NetXtreme II VBD (b06bdrv) - Broadcom Corporation - C:\WINDOWS\system32\DRIVERS\bxvbda.sys (MD5: 3E5B191307609F7514148C6832BB0842)
O23 - Service: Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0 (b57nd60a) - Broadcom Corporation - C:\WINDOWS\SYSTEM32\DRIVERS\b57nd60a.sys (MD5: B5ACE6968304A3900EEB1EBFD9622DF2)
O23 - Service: Brother USB Mass-Storage Lower Filter Driver (BrFiltLo) - Brother Industries, Ltd. - C:\WINDOWS\system32\DRIVERS\BrFiltLo.sys (MD5: F09EEE9EDC320B5E1501F749FDE686C8)
O23 - Service: Brother USB Mass-Storage Upper Filter Driver (BrFiltUp) - Brother Industries, Ltd. - C:\WINDOWS\system32\DRIVERS\BrFiltUp.sys (MD5: B114D3098E9BDB8BEA8B053685831BE6)
O23 - Service: Brother MFC Serial Port Interface Driver (WDM) (Brserid) - Brother Industries Ltd. - C:\WINDOWS\System32\Drivers\Brserid.sys (MD5: 43BEA8D483BF1870F018E2D02E06A5BD)
O23 - Service: Brother WDM Serial driver (BrSerWdm) - Brother Industries Ltd. - C:\WINDOWS\System32\Drivers\BrSerWdm.sys (MD5: A6ECA2151B08A09CACECA35C07F05B42)
O23 - Service: Brother MFC USB Fax Only Modem (BrUsbMdm) - Brother Industries Ltd. - C:\WINDOWS\System32\Drivers\BrUsbMdm.sys (MD5: B79968002C277E869CF38BD22CD61524)
O23 - Service: Brother MFC USB Serial WDM Driver (BrUsbSer) - Brother Industries Ltd. - C:\WINDOWS\System32\Drivers\BrUsbSer.sys (MD5: A87528880231C54E75EA7A44943B38BF)
O23 - Service: cmdide - CMD Technology, Inc. - C:\WINDOWS\system32\drivers\cmdide.sys (MD5: E19D3F095812725D88F9001985B94EDD)
O23 - Service: SW Distributed TS Coordinator Service (CoordinatorServiceHost) - Dassault Systèmes SolidWorks Corp. - C:\Program Files\SolidWorks Corp\SolidWorks\swScheduler\DTSCoordinatorService.exe (MD5: B2020AFF41BE89261231DB2BEAAFE79F)
O23 - Service: cpuz134 - Unknown owner - C:\Users\ALEJAN~1\AppData\Local\Temp\cpuz134\cpuz134_x64.sys (file missing)
O23 - Service: cpuz138 - Unknown owner - C:\Users\ALEJAN~1\AppData\Local\Temp\cpuz138\cpuz138_x64.sys (file missing)
O23 - Service: CrystalSysInfo - Unknown owner - C:\Program Files\MediaCoder\SysInfoX64.sys (MD5: 5228B7A738DC90A06AE4F4A7412CB1E9)
O23 - Service: Cisco Systems VPN Adapter for 64-bit Windows (CVirtA) - Cisco Systems, Inc. - C:\WINDOWS\SYSTEM32\DRIVERS\CVirtA64.sys (MD5: 44BDDEB03C84A1C993C992FFB5700357)
O23 - Service: Cisco Systems Inc. IPSec Driver (CVPNDRVA) - Unknown owner - C:\Windows\system32\Drivers\CVPNDRVA.sys (MD5: CC8E52DAA9826064BA464DBE531F2BB5)
O23 - Service: Deterministic Network Enhancer Miniport (DNE) - Deterministic Networks, Inc. - C:\WINDOWS\SYSTEM32\DRIVERS\dne64x.sys (MD5: 05CB5910B3CA6019FC3CCA815EE06FFB)
O23 - Service: Broadcom NetXtreme II 10 GigE VBD (ebdrv) - Broadcom Corporation - C:\WINDOWS\system32\DRIVERS\evbda.sys (MD5: DC5D737F51BE844D8C82C695EB17372F)
O23 - Service: elxstor - Emulex - C:\WINDOWS\system32\DRIVERS\elxstor.sys (MD5: 0E5DA5369A0FCAEA12456DD852545184)
O23 - Service: epmntdrv - Unknown owner - C:\Windows\system32\epmntdrv.sys (MD5: 9EAFB3B3B60B8AD958985152A9309ACA)
O23 - Service: EuGdiDrv - Unknown owner - C:\Windows\system32\EuGdiDrv.sys (MD5: FB949ED2C93C878A189039F3D7730942)
O23 - Service: FLEXnet Licensing Service - Flexera Software, Inc. - C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe (MD5: 73081CF28F0AE20A52CA4F67CEE6E6B0)
O23 - Service: FLEXnet Licensing Service 64 - Flexera Software LLC - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe (MD5: 1B04D931B3EFA5FE67FA7D8510722222)
O23 - Service: GEAR ASPI Filter Driver (GEARAspiWDM) - GEAR Software Inc. - C:\WINDOWS\SYSTEM32\DRIVERS\GEARAspiWDM.sys (MD5: 8E98D21EE06192492A5671A6144D092F)
O23 - Service: SEMC USB Flash Driver Filter (ggflt) - Sony Ericsson Mobile Communications - C:\WINDOWS\SYSTEM32\DRIVERS\ggflt.sys (MD5: 16C2A6BCDDA8952C2035DEC861492A19)
O23 - Service: SEMC USB Flash Driver (ggsemc) - Sony Ericsson Mobile Communications - C:\WINDOWS\SYSTEM32\DRIVERS\ggsemc.sys (MD5: 6B503DF845EABF3457E49FBBDA26C10E)
O23 - Service: Hauppauge Consumer Infrared Receiver (hcw85cir) - Hauppauge Computer Works, Inc. - C:\WINDOWS\system32\drivers\hcw85cir.sys (MD5: F2523EF6460FC42405B12248338AB2F0)
O23 - Service: HID NDIS Driver Service for EEM device (heemndis) - HID Global - C:\WINDOWS\SYSTEM32\DRIVERS\heemndis.sys (MD5: AAAA8065F55BEF2C5420A077930AE968)
O23 - Service: HID USB Driver for EEM Device (heemusb) - HID Global - C:\WINDOWS\SYSTEM32\DRIVERS\heemusb.sys (MD5: 00656BFEA39591D887DF096ABB87FDDD)
O23 - Service: HP DS Service - Hewlett-Packard Company - C:\Program Files (x86)\HP\HPBDSService\HPBDSService.exe (MD5: 86724A200BF1F08A03FB563660FCD928)
O23 - Service: HpSAMD - Hewlett-Packard Company - C:\WINDOWS\system32\drivers\HpSAMD.sys (MD5: 39D2ABCD392F3D8A6DCE7B60AE7B8EFC)
O23 - Service: Controladora RAID de Intel para Windows 7 (iaStorV) - Intel Corporation - C:\WINDOWS\system32\drivers\iaStorV.sys (MD5: AAAF44DB3BD0B9D1FB6969B23ECC8366)
O23 - Service: iirsp - Intel Corp./ICP vortex GmbH - C:\WINDOWS\system32\DRIVERS\iirsp.sys (MD5: 5C18831C61933628F5BB0EA2675B9D21)
O23 - Service: Servicio del iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe (MD5: EECB45F889E99174DA56FBDF37962D25)
O23 - Service: Controlador de minipuerto NDIS para controladora Ethernet Atheros AR8131/AR8132 PCI-E (NDIS 6.20) (L1C) - Atheros Communications, Inc. - C:\WINDOWS\SYSTEM32\DRIVERS\L1C62x64.sys (MD5: 033B4AED2C5519072C0D81E00804D003)
O23 - Service: LSI_FC - LSI Corporation - C:\WINDOWS\system32\DRIVERS\lsi_fc.sys (MD5: 1A93E54EB0ECE102495A51266DCDB6A6)
O23 - Service: LSI_SAS - LSI Corporation - C:\WINDOWS\system32\DRIVERS\lsi_sas.sys (MD5: 1047184A9FDC8BDBFF857175875EE810)
O23 - Service: LSI_SAS2 - LSI Corporation - C:\WINDOWS\system32\DRIVERS\lsi_sas2.sys (MD5: 30F5C0DE1EE8B5BC9306C1F0E4A75F93)
O23 - Service: LSI_SCSI - LSI Corporation - C:\WINDOWS\system32\DRIVERS\lsi_scsi.sys (MD5: 0504EACAFF0D3C8AED161C4B0D369D4A)
O23 - Service: Macromedia Licensing Service - Unknown owner - C:\Program Files (x86)\Common Files\Macromedia Shared\Service\Macromedia Licensing.exe (MD5: 4C14B1315E7BE1838E11C34D368E94BF)
O23 - Service: megasas - LSI Corporation - C:\WINDOWS\system32\DRIVERS\megasas.sys (MD5: A55805F747C6EDB6A9080D7C633BD0F4)
O23 - Service: MegaSR - LSI Corporation, Inc. - C:\WINDOWS\system32\DRIVERS\MegaSR.sys (MD5: BAF74CE0072480C3B6B7C13B2A94D6B3)
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe (MD5: 7016D6ED42BECBBF4B598190AD6E3F11)
O23 - Service: Apple Mobile Device Ethernet Service (Netaapl) - Apple Inc. - C:\WINDOWS\SYSTEM32\DRIVERS\netaapl64.sys (MD5: EE00C544C025958AF50C7B199F3C8595)
O23 - Service: nfrd960 - IBM Corporation - C:\WINDOWS\system32\DRIVERS\nfrd960.sys (MD5: 77889813BE4D166CDAB78DDBA990DA92)
O23 - Service: nvlddmkm - NVIDIA Corporation - C:\WINDOWS\SYSTEM32\DRIVERS\nvlddmkm.sys (MD5: B34E9BFBD9C61048EF6281C3E7EC210A)
O23 - Service: nvraid - NVIDIA Corporation - C:\WINDOWS\system32\drivers\nvraid.sys (MD5: 0A92CB65770442ED0DC44834632F66AD)
O23 - Service: nvstor - NVIDIA Corporation - C:\WINDOWS\system32\drivers\nvstor.sys (MD5: DAB0E87525C10052BF65F06152F37E4A)
O23 - Service: OPTO ELECTRONICS optousb (optousb) - OPTO ELECTRONICS CO.,LTD. - C:\WINDOWS\SYSTEM32\DRIVERS\optousb.sys (MD5: 8ACDBF1ABA7EA3280B3F8C9BF0454B1E)
O23 - Service: OPTO ELECTRONICS optovcm (optovcm) - OPTO ELECTRONICS CO.,LTD. - C:\WINDOWS\SYSTEM32\DRIVERS\optovcm.sys (MD5: 28AB5778EAA05B0DF2921713A959B30C)
O23 - Service: VSO Software pcouffin (pcouffin) - VSO Software - C:\WINDOWS\SYSTEM32\Drivers\pcouffin.sys (MD5: AF7CE12C4F3DC8CB2B07685C916BBCFE)
O23 - Service: PPPoP WAN Adapter (pppop) - Fortinet Inc. - C:\WINDOWS\SYSTEM32\DRIVERS\pppop64.sys (MD5: 972442CA1CB9D6F553E3CCDC13A0C420)
O23 - Service: ql2300 - QLogic Corporation - C:\WINDOWS\system32\DRIVERS\ql2300.sys (MD5: A53A15A11EBFD21077463EE2C7AFEEF0)
O23 - Service: ql40xx - QLogic Corporation - C:\WINDOWS\system32\DRIVERS\ql40xx.sys (MD5: 4F6D12B51DE1AAEFF7DC58C4D75423C8)
O23 - Service: Sony Ericsson seehcri Device Driver (seehcri) - Sony Ericsson Mobile Communications - C:\WINDOWS\SYSTEM32\DRIVERS\seehcri.sys (MD5: EDE7A1D2715AAC2190D51DC07AFD44E3)
O23 - Service: Prolific Serial port WDF driver (Ser2pl) - Prolific Technology Inc. - C:\WINDOWS\SYSTEM32\DRIVERS\ser2pl64.sys (MD5: D666EBEC6374B2018CF61EE204C3CF50)
O23 - Service: SiSRaid2 - Silicon Integrated Systems Corp. - C:\WINDOWS\system32\DRIVERS\SiSRaid2.sys (MD5: 843CAF1E5FDE1FFD5FF768F23A51E2E1)
O23 - Service: SiSRaid4 - Silicon Integrated Systems - C:\WINDOWS\system32\DRIVERS\sisraid4.sys (MD5: 6A6C106D42E9FFFF8B9FCB4F754F6DA4)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe (MD5: A9C057A9463C25490CF99EA8DF8A4B35)
O23 - Service: SolidWorks Licensing Service - SolidWorks - C:\Program Files (x86)\Common Files\SolidWorks Shared\Service\SolidWorksLicensing.exe (MD5: 4945020BC094C322571184A6E8056B3A)
O23 - Service: SRS Labs Audio Sandbox (WDM) (SRS_SSCFilter) - Unknown owner - C:\WINDOWS\SYSTEM32\drivers\srs_sscfilter_amd64.sys (MD5: 83BE26217FD07B3613D151D24AAA9BEB)
O23 - Service: stexstor - Promise Technology - C:\WINDOWS\system32\DRIVERS\stexstor.sys (MD5: F3817967ED533D08327DC73BC4D5542A)
O23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe (MD5: F577910A133A592234EBAAD3F3AFA258)
O23 - Service: Synth3dVsc - Unknown owner - C:\WINDOWS\SYSTEM32\drivers\synth3dvsc.sys (file missing)
O23 - Service: tsusbhub - Unknown owner - C:\WINDOWS\SYSTEM32\drivers\tsusbhub.sys (file missing)
O23 - Service: TuneUp Utilities Service (TuneUp.UtilitiesSvc) - TuneUp Software - C:\Program Files (x86)\TuneUp Utilities 2011\TuneUpUtilitiesService64.exe (MD5: BF9611D319551AD70C8AA057D97EF57D)
O23 - Service: TuneUpUtilitiesDrv - TuneUp Software - C:\Program Files (x86)\TuneUp Utilities 2011\TuneUpUtilitiesDriver64.sys (MD5: DCC94C51D27C7EC0DADECA8F64C94FCF)
O23 - Service: Apple Mobile USB Driver (USBAAPL64) - Apple, Inc. - C:\WINDOWS\SYSTEM32\Drivers\usbaapl64.sys (MD5: F957092C63CD71D85903CA0D8370F473)
O23 - Service: VGPU - Unknown owner - C:\WINDOWS\SYSTEM32\drivers\rdvgkmd.sys (file missing)
O23 - Service: viaide - VIA Technologies, Inc. - C:\WINDOWS\system32\drivers\viaide.sys (MD5: E5689D93FFE4E5D66C0178761240DD54)
O23 - Service: vsmraid - VIA Technologies Inc.,Ltd - C:\WINDOWS\system32\DRIVERS\vsmraid.sys (MD5: 5E2016EA6EBACA03C04FEAC5F330D997)
O23 - Service: ZTE Proprietary USB Driver (ZTEusbmdm6k) - Unknown owner - C:\WINDOWS\SYSTEM32\DRIVERS\ZTEusbmdm6k.sys (file missing)
O23 - Service: ZTE NMEA Port (ZTEusbnmea) - Unknown owner - C:\WINDOWS\SYSTEM32\DRIVERS\ZTEusbnmea.sys (file missing)
O23 - Service: ZTE Diagnostic Port (ZTEusbser6k) - Unknown owner - C:\WINDOWS\SYSTEM32\DRIVERS\ZTEusbser6k.sys (file missing)

Listado de Servicios (Deshabilitados):
--------------------------------------
O23 - Service: Cisco Systems, Inc. VPN Service (CVPND) - Cisco Systems, Inc. - C:\Program Files (x86)\Cisco Systems\VPN Client\cvpnd.exe (MD5: 66257CB4E4FB69887CDDC71663741435)

118 Servicios.
 35 de Carga Automatica.
 82 de Carga Manual.
  1 Deshabilitados.

Listado de Programas Instalados:
--------------------------------
Windows Driver Package - FTDI CDM Driver Package - Bus/D2XX Driver (07/12/2013 2.08.30) -> C:\PROGRA~1\DIFX\862E75C35EC9FF84\dpinst-amd64.exe /u C:\Windows\System32\DriverStore\FileRepository\ftdibus.inf_amd64_neutral_0a3c2df775f027fe\ftdibus.inf
Paquete de controladores de Windows - HID Global (NdisWDM) Net  (01/21/2011 1.0.0.4) -> C:\PROGRA~1\DIFX\0169CE3A95F06636\DPInst.exe /u C:\Windows\System32\DriverStore\FileRepository\netdrv.inf_amd64_neutral_b6369248a9a0b014\netdrv.inf
Windows Driver Package - FTDI CDM Driver Package - VCP Driver (01/27/2014 2.10.00) -> C:\PROGRA~1\DIFX\862E75C35EC9FF84\dpinst-amd64.exe /u C:\Windows\System32\DriverStore\FileRepository\ftdiport.inf_amd64_neutral_9b2b9fd5d576957d\ftdiport.inf
Windows Driver Package - FTDI CDM Driver Package - Bus/D2XX Driver (01/27/2014 2.10.00) -> C:\PROGRA~1\DIFX\862E75C35EC9FF84\dpinst-amd64.exe /u C:\Windows\System32\DriverStore\FileRepository\ftdibus.inf_amd64_neutral_fe4babd0c66b4519\ftdibus.inf
Adobe Flash Player 11 ActiveX 64-bit -> C:\Windows\system32\Macromed\Flash\FlashUtil64_11_2_202_235_ActiveX.exe -maintain activex
Windows Driver Package - FTDI CDM Driver Package - VCP Driver (07/12/2013 2.08.30) -> C:\PROGRA~1\DIFX\862E75C35EC9FF84\dpinst-amd64.exe /u C:\Windows\System32\DriverStore\FileRepository\ftdiport.inf_amd64_neutral_0174995d0b71bf25\ftdiport.inf
Canon Inkjet Printer Driver Add-On Module -> C:\Program Files\Common Files\Canon\IJ\InboxPrnV100\SETUP.EXE -R
CCleaner -> "C:\Program Files\CCleaner\uninst.exe"
Instalación de DivX -> C:\ProgramData\DivX\Setup\DivXSetup.exe /uninstall
MediaCoder x64 2011 -> C:\Program Files\MediaCoder\uninst.exe
Microsoft Security Essentials -> C:\Program Files\Microsoft Security Client\Setup.exe /x
Mozilla Firefox 62.0 (x64 es-CL) -> "C:\Program Files\Mozilla Firefox\uninstall\helper.exe"
Mozilla Maintenance Service -> "C:\Program Files (x86)\Mozilla Maintenance Service\uninstall.exe"
Sweet Home 3D version 5.7 -> "C:\Program Files\Sweet Home 3D\unins000.exe"
Unlocker 1.9.1-x64 -> C:\Program Files\Unlocker\uninst.exe
VLC media player -> C:\Program Files\VideoLAN\VLC\uninstall.exe
WinRAR 5.40 (64-bit) -> C:\Program Files\WinRAR\uninstall.exe
HP LaserJet M203-M206 Software básico del dispositivo -> MsiExec.exe /I{099E0607-81B6-4B8C-8717-0CF5F3FFB1E1}
SolidWorks Explorer 2014 SP0 x64 Edition -> MsiExec.exe /I{0C10FAF1-35D5-416A-B7C1-4168ED9485FA}
SolidWorks Plastics 2014 SP0 x64 Edition -> MsiExec.exe /X{104E8BAF-2E2A-4467-A5C0-92ED92F26547}
JavaFX 2.0.2 (64-bit) -> MsiExec.exe /X{1111706F-666A-4037-7777-202648764D10}
MergeModule_x64 -> MsiExec.exe /I{12DCC5A7-0100-4433-B4FF-217A3C5DC83B}
Microsoft_VC80_MFCLOC_x86_x64 -> MsiExec.exe /I{1E9FC118-651D-4934-97BE-E53CAE5C7D45}
JavaFX 2.0.2 SDK (64-bit) -> MsiExec.exe /X{2222706F-666A-4037-7777-202648764D10}
7-Zip 9.20 (x64 edition) -> MsiExec.exe /I{23170F69-40C1-2702-0920-000001000000}
Microsoft Security Client -> MsiExec.exe /X{23F2C78C-E131-4CA0-8F84-3473FB7728BA}
Python 2.7.2 (64-bit) -> MsiExec.exe /I{2E295B5B-1AD4-4D36-97C2-A316084722C0}
Apple Mobile Device Support -> MsiExec.exe /I{2E4AF2A6-50EA-4260-9BA4-5E582D11879A}
SolidWorks Electrical 2014 SP0 x64 Edition -> MsiExec.exe /I{3F08399F-67CD-4950-AED0-64A9590FE626}
Microsoft_VC80_CRT_x86_x64 -> MsiExec.exe /I{4569AD91-47F4-4D9E-8FC9-717EC32D7AE1}
Cisco Systems VPN Client 5.0.07.0290 -> MsiExec.exe /X{467D5E81-8349-4892-9E81-C3674ED8E451}
SolidWorks Flow Simulation 2014 SP0 x64 Edition  -> MsiExec.exe /I{4DC5DE7E-E67D-4A2B-8E67-EB7B28045247}
SolidWorks 2014 x64 Edition SP0 -> MsiExec.exe /X{4FFA60C4-9A8B-4C9E-8265-2241B266304C}
Bonjour -> MsiExec.exe /X{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}
64 Bit HP CIO Components Installer -> MsiExec.exe /I{5737101A-27C4-408A-8A57-D1DC78DF84B4}
Java(TM) SE Development Kit 7 Update 2 (64-bit) -> MsiExec.exe /I{64A3A4F4-B792-11D6-A78A-00B0D0170020}
Microsoft Antimalware Service ES-ES Language Pack -> MsiExec.exe /X{7D481DFF-88C5-4685-B0EA-D167F0B46CF1}
Microsoft_VC90_ATL_x86_x64 -> MsiExec.exe /I{8557397C-A42D-486F-97B3-A2CBC2372593}
Microsoft Silverlight -> MsiExec.exe /X{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}
SolidWorks eDrawings 2014 x64 Edition SP0 -> MsiExec.exe /I{8A66D41F-61C1-4DBE-9C27-F663C4ADE9A8}
Microsoft Visual Basic for Applications 7.1 (x64) -> MsiExec.exe /I{90120064-0070-0000-0000-4000000FF1CE}
Microsoft Visual Basic for Applications 7.1 (x64) English -> MsiExec.exe /I{90F60409-7000-11D3-8CFE-0150048383C9}
Microsoft Visual Basic for Applications 7.1 (x64) Spanish -> MsiExec.exe /I{90F60C0A-7000-11D3-8CFE-0150048383C9}
Microsoft_VC80_ATL_x86_x64 -> MsiExec.exe /I{925D058B-564A-443A-B4B2-7E90C6432E55}
Microsoft_VC90_CRT_x86_x64 -> MsiExec.exe /I{92A3CA0D-55CD-4C5D-BA95-5C2600C20F26}
iTunes -> MsiExec.exe /I{955524E7-79EB-4CA9-BA4D-FD2DF587651B}
Microsoft_VC90_MFC_x86_x64 -> MsiExec.exe /I{A472B9E4-0AFF-4F7B-B25D-F64F8E928AAB}
Apple Application Support (64 bits) -> MsiExec.exe /I{A6B0442B-E159-444B-B49D-6B9AC531EAE3}
Adobe Acrobat 9 Pro Extended 64-bit Add-On -> MsiExec.exe /I{AC76BA86-1033-0000-0064-0003D0000004}
NVIDIA Controlador de 3D Vision 275.33 -> "C:\Windows\SysWOW64\RunDll32.EXE" "C:\Program Files\NVIDIA Corporation\Installer2\installer.2\NVI2.DLL",UninstallPackage Display.3DVision
NVIDIA Controlador de gráficos 275.33 -> "C:\Windows\SysWOW64\RunDll32.EXE" "C:\Program Files\NVIDIA Corporation\Installer2\installer.2\NVI2.DLL",UninstallPackage Display.Driver
NVIDIA Controlador de la controladora 3D Vision 275.33 -> "C:\Windows\SysWOW64\RunDll32.EXE" "C:\Program Files\NVIDIA Corporation\Installer2\installer.2\NVI2.DLL",UninstallPackage Display.NVIRUSB
NVIDIA Software del sistema PhysX 9.10.0514 -> "C:\Windows\SysWOW64\RunDll32.EXE" "C:\Program Files\NVIDIA Corporation\Installer2\installer.2\NVI2.DLL",UninstallPackage Display.PhysX
64 Bit HP CIO Components Installer -> MsiExec.exe /I{C788B026-20BD-4E96-B698-533F1D6C5013}
Microsoft_VC80_MFC_x86_x64 -> MsiExec.exe /I{C8C1BAD5-54E6-4146-AD07-3A8AD36569C3}
Windows Live ID Sign-in Assistant -> MsiExec.exe /I{CE52672C-A0E9-4450-8875-88A221D5CD50}
Microsoft Security Client ES-ES Language Pack -> MsiExec.exe /I{DC911ADF-7B60-40F2-A112-FB1EB6402D07}
SolidWorks 2014 x64 Spanish Resources -> MsiExec.exe /X{E548E17E-189D-4E04-B5F1-17749F86EA0C}
Estudio para la mejora del producto HP LaserJet M203-M206 -> MsiExec.exe /I{E5E4BFC6-D2B9-4B93-B70A-975F116948F5}
MSVCRT110_amd64 -> MsiExec.exe /I{E9FA781F-3E80-4399-825A-AD3E11C28C77}
SolidWorks Composer 2014 SP0 x64 Edition -> MsiExec.exe /I{EB45AA0F-96A7-4583-9E6F-6CA4DCFE67CE}
HP Unified IO -> MsiExec.exe /I{F4D304D9-7647-4253-957E-44286B8631F4}
ABBYY PDF Transformer 3.0 -> MsiExec.exe /X{FA300000-0001-6400-0000-074957833700}
ABBYY PDF Transformer 3.0 -> MsiExec.exe /I {FA300000-0001-6400-0000-074957833700}
Adobe AIR -> C:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Resources\Adobe AIR Updater.exe -arp:uninstall
Adobe Flash Player 31 NPAPI -> C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_31_0_0_108_Plugin.exe -maintain plugin
Adobe Fireworks CS3 -> C:\Program Files (x86)\Common Files\Adobe\Installers\acdba697c8e97ccf389c34694f7f507\Setup.exe
Asure ID -> "C:\ProgramData\{FC7BDB42-C365-4321-9104-5CFD1C2B9124}\Asure_ID_Setup.exe" REMOVE=TRUE MODIFY=FALSE
Auto Gordian Knot 2.55 -> C:\Program Files (x86)\AutoGK\uninst.exe
AVI ReComp 1.5.5 -> C:\Program Files (x86)\AVI ReComp\Uninstall.exe
AviSynth 2.5 -> "C:\Program Files (x86)\AviSynth 2.5\Uninstall.exe"
Canon My Printer -> "C:\Program Files\Canon\MyPrinter\uninst.exe" /UninstallRemove C:\Program Files\Canon\MyPrinter\uninst.ini
Caratulador -> "C:\Program Files (x86)\Yursoft\Caratulador\uninstall.exe"
Adobe Help Manager -> msiexec /qb /x {AF37176A-78CA-545B-34EF-8B6A21514DD1}
Adobe Media Player -> msiexec /qb /x {39F6E2B4-CFE8-C30A-66E8-489651F0F34C}
Cool Edit Pro 2.0 -> C:\Program Files (x86)\coolpro2\cep2unin.exe
Instalación de DivX -> C:\ProgramData\DivX\Setup\DivXSetup.exe /uninstall /bundleGroupId divx.com
DTC1000 Card Printer -> "C:\ProgramData\{2E141A4F-6BC6-4F56-BD14-79C92981A04A}\setup.exe" REMOVE=TRUE MODIFY=FALSE
EASEUS Partition Master 9.1.0 Home Edition -> "C:\Program Files (x86)\EASEUS\EASEUS Partition Master 9.1.0 Home Edition\unins000.exe"
EEM Driver v1.0.0.4 -> "C:\ProgramData\{8A2D657C-5A42-4645-99B5-9DB0AF6F098A}\EEMDriver.exe" REMOVE=TRUE MODIFY=FALSE
FileZilla Client 3.32.0 -> C:\Program Files (x86)\FileZilla FTP Client\uninstall.exe
Free M4a to MP3 Converter 6.2 -> "C:\Program Files (x86)\Free M4a to MP3 Converter\unins000.exe"
GetASFStream -> "C:\Program Files\GetASFStream\epuninst.exe" /s
Brother P-touch Editor 5.0 -> C:\Program Files (x86)\InstallShield Installation Information\{DF9A6075-9308-4572-8932-A4316243C4D9}\Setup2.exe -l1034 -removeonly
MEGAsync -> C:\Users\Alejandro\AppData\Local\MEGAsync\uninst.exe
Mozilla Thunderbird 52.9.1 (x86 es-ES) -> C:\Program Files (x86)\Mozilla Thunderbird\uninstall\helper.exe
MySQL-Front 3.1 -> "C:\Program Files (x86)\MySQL-Front\unins000.exe"
Nero 8 Micro 8.1.1.4 -> "C:\Program Files (x86)\Nero\unins000.exe"
Notepad++ -> C:\Program Files (x86)\Notepad++\uninstall.exe
NVIDIA 3D Vision Controller Driver -> "C:\Program Files (x86)\InstallShield Installation Information\{714B9C6C-70FC-4750-98E2-61520B906C45}\setup.exe" -runfromtemp -l0x0009 -removeonly
NVIDIA Stereoscopic 3D Driver -> "C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvStInst.exe" /uninstall /ask
OPN200X PC App. EGF3094H -> C:\Program Files (x86)\Opticon\OPN200X\uninst.exe
Opticon USB Drivers Installer -> C:\PROGRA~2\Opticon\USB_Drivers_Installer\Uninstall.exe
PDF Unlocker -> "C:\Program Files (x86)\PDF Unlocker\unins000.exe"
Revo Uninstaller 1.95 -> C:\Program Files (x86)\VS Revo Group\Revo Uninstaller\uninst.exe
RocketDock 1.3.5 -> "C:\Program Files (x86)\RocketDock\unins000.exe"
Smart Defrag 2 -> "C:\Program Files (x86)\IObit\Smart Defrag 2\unins000.exe"
SolidWorks 2014 x64 Edition SP0 -> "C:\Windows\SolidWorks\IM_20140-40000-1100-100\sldim\sldIM.exe" /remove "C:\Windows\SolidWorks\IM_20140-40000-1100-100\sldim\sldIM_installed.xml"
Subtitle Workshop 2.51 -> "C:\Program Files (x86)\URUSoft\Subtitle Workshop\uninstall.exe"
SuperImpactor -> msiexec.exe /i {82EDDFC5-8506-4213-B998-9F72F02D97A8} AI_UNINSTALLER_CTP=1
Surfer 11 -> "C:\ProgramData\{5C3D0B38-D37A-48ED-9EAB-F3360CC16436}\Surfer(11.0.642)_Installer.exe" REMOVE=TRUE MODIFY=FALSE
TeamViewer 13 -> "C:\Program Files (x86)\TeamViewer\uninstall.exe"
TuneUp Utilities 2011 -> C:\Program Files (x86)\TuneUp Utilities 2011\TUInstallHelper.exe --Trigger-Uninstall
UltraISO Premium V9.52 -> "C:\Program Files (x86)\UltraISO\unins000.exe"
Vector Magic -> C:\Program Files (x86)\Vector Magic\Desinstalador.exe
VobSub 2.23 -> C:\Program Files (x86)\Gabest\VobSub\uninstall.exe
WinFF 0.41 -> "C:\Program Files (x86)\WinFF\unins000.exe"
Windows Live Essentials -> C:\Program Files (x86)\Windows Live\Installer\wlarp.exe
Compresor WinRAR -> C:\Program Files (x86)\WinRAR\uninstall.exe
Wondershare Video Converter Ultimate(Build 8.5.0.1) -> "C:\Program Files (x86)\Wondershare\Video Converter Ultimate\unins000.exe"
XviD MPEG4 Video Codec (remove only) -> "C:\Program Files (x86)\XviD\xvid-uninstall.exe"
PDFCreator -> C:\Program Files (x86)\PDFCreator\unins000.exe
Windows Live UX Platform -> MsiExec.exe /I{00F9DB8C-65D7-4D47-AB5F-F698EE38580D}
Microsoft_VC90_ATL_x86 -> MsiExec.exe /I{033E378E-6AD3-4AD5-BDEB-CBD69B31046C}
Adobe Help Viewer CS3 -> MsiExec.exe /I{04AF207D-9A77-465A-8B76-991F6AB66245}
Photo Gallery -> MsiExec.exe /X{07AAB66E-4718-422D-9218-4AFB3C922A71}
Adobe Bridge Start Meeting -> MsiExec.exe /I{08B32819-6EEF-4057-AEDA-5AB681A36A23}
Microsoft_VC90_CRT_x86 -> MsiExec.exe /I{08D2E121-7F6A-43EB-97FD-629B44903403}
Windows Live Messenger -> MsiExec.exe /X{0BE5953A-2CCD-4AAC-95C7-6B324E7BE156}
HPLJUTCore -> MsiExec.exe /I{0C779D9C-FD0F-4A53-86BE-3D53E58B2900}
Microsoft_VC80_ATL_x86 -> MsiExec.exe /I{0F3647F8-E51D-4FCC-8862-9A8D0C5ACF25}
Sony Vegas Pro 8.0 -> MsiExec.exe /X{1246FF64-3035-4A92-8FE6-A968275495EB}
HP Unified IO -> MsiExec.exe /I{14CF9AF8-10A6-4FA7-9E57-D22DBD644C77}
HP LJ300-400 color M351-M451 -> C:\Program Files (x86)\HP\csiInstaller\15CA73D8-3C82-4BAE-86CD-945BF9620516\Setup.exe /Uninstall
Adobe Photoshop CS5 -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\core\PDApp.exe --appletID="DWA_UI" --appletVersion="1.0" --mode="Uninstall" --mediaSignature="{15FEDA5F-141C-4127-8D7E-B962D1742728}"
ph -> MsiExec.exe /I{185F9795-9663-4F13-9EF9-307A282ADB5A}
MSXML 4.0 SP3 Parser -> MsiExec.exe /I{196467F1-C11F-4F76-858B-5812ADC83B94}
Galería de fotos -> MsiExec.exe /X{198CEF22-A27F-4DC7-9B66-2C22A4B1CA09}
Windows Live Photo Common -> MsiExec.exe /X{1D6432B4-E24D-405E-A4AB-D7E6D088CBC9}
MSXML 4.0 SP3 Parser (KB2758694) -> MsiExec.exe /I{1D95BA90-F4F8-47EC-A882-441C99D30C1E}
Adobe Fireworks CS3 -> MsiExec.exe /I{210F0FC9-1685-4904-9065-391DD196578C}
Autodesk AutoCAD Performance Feedback Tool 1.2.8 -> MsiExec.exe /X{214D3370-746E-4886-8EAA-5769EB87D044}
HDD Regenerator -> MsiExec.exe /X{2445981B-A23B-4A0E-AD15-3D391BDAEC3E}
Skype™ 7.2 -> MsiExec.exe /X{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}
Aegisub 2.1.8 -> "C:\Program Files (x86)\Aegisub\unins000.exe"
hpStatusAlertsM351_M451 -> MsiExec.exe /I{25E11B5A-4817-4296-A260-235AE77B1708}
Java 8 Update 151 -> MsiExec.exe /X{26A24AE4-039D-4CA4-87B4-2F32180151F0}
bl -> MsiExec.exe /I{2A075BB4-E976-4278-BF3F-E5C6945D84C0}
Asure ID -> C:\ProgramData\{FC7BDB42-C365-4321-9104-5CFD1C2B9124}\Asure_ID_Setup.exe
Adobe Media Player -> MsiExec.exe /I{39F6E2B4-CFE8-C30A-66E8-489651F0F34C}
Windows Live Communications Platform -> MsiExec.exe /I{41C61308-6CFD-4D54-AB6A-7136ED08A18E}
hpStatusAlerts -> MsiExec.exe /I{46A99EAE-98DA-4BE5-94C3-D41BA4C266DA}
Adobe After Effects CS6 -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\core\PDApp.exe --appletID="DWA_UI" --appletVersion="2.0" --mode="Uninstall" --mediaSignature="{4817D846-700B-474E-A31B-80892B3E92E3}"
Prey Anti-Theft -> MsiExec.exe /X{4D91189D-F5FD-45A9-B63E-58291ADA338B}
Online Application -> MsiExec.exe /X{5266F634-7B7D-4537-BDDC-98DD6CFCBAA1}
Windows Live UX Platform Language Pack -> MsiExec.exe /I{60212DCA-93F2-448C-9056-95BB80D9B5D5}
swMSM -> MsiExec.exe /I{612C34C7-5E90-47D8-9B5C-0F717DD82726}
Microsoft_VC90_MFC_x86 -> MsiExec.exe /I{635FED5B-2C6D-49BE-87E6-7A6FCD22BC5A}
HP Google Drive Plugin -> MsiExec.exe /I{63BD9C12-5CE9-4294-B1C3-A09F971FAFB5}
Windows Live Installer -> MsiExec.exe /I{659CB81C-B54E-4DF1-B618-F35777393A54}
Photo Common -> MsiExec.exe /X{678DD68F-DD35-47FC-9ABA-3B705FBA831B}
Windows Media Player Firefox Plugin -> MsiExec.exe /I{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}
HP Update -> MsiExec.exe /X{6F1C00D2-25C2-4CBA-8126-AE9A6E2E9CD5}
Adobe Asset Services CS3 -> MsiExec.exe /I{6FF5DD7A-FE28-4439-B8CF-1E9AF4EA0A61}
Adobe Premiere Pro CS6 -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\core\PDApp.exe --appletID="DWA_UI" --appletVersion="2.0" --mode="Uninstall" --mediaSignature="{7176B973-6011-43C1-AEBC-2D73FE7C6982}"
SSH Secure Shell -> RunDll32 C:\PROGRA~2\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files (x86)\InstallShield Installation Information\{74E2CD0C-D4A2-11D3-95A6-0000E86CFDE5}\Setup.exe" 
Autodesk Material Library 2018 -> MsiExec.exe /X{7847611E-92E9-4917-B395-71C91D523104}
LM203 -> MsiExec.exe /X{7AC31F92-F040-489D-B19A-96E3021B2AA7}
HP Dropbox Plugin -> MsiExec.exe /I{7BEBB31E-58C4-4FA5-9AD1-ACBE32BF0D12}
Adobe XMP Panels CS3 -> MsiExec.exe /I{802771A9-A856-4A41-ACF7-1450E523C923}
Adobe Type Support CS4 -> MsiExec.exe /I{820D3F45-F6EE-4AAF-81EF-CE21FF21D230}
SuperImpactor -> MsiExec.exe /X{82EDDFC5-8506-4213-B998-9F72F02D97A8}
PMB_ModeEditor_ACMC -> MsiExec.exe /I{8666DAE5-9212-4A3C-A1B3-137FA1E056CC}
Adobe Setup -> MsiExec.exe /I{88B5AF91-F53B-4CE4-9BD7-A68A8FD00D6E}
MSVCRT -> MsiExec.exe /I{8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}
MSVCRT110 -> MsiExec.exe /I{8E14DDC8-EA60-4E18-B3E3-1937104D5BDA}
Paquete de compatibilidad para 2007 Office system -> MsiExec.exe /X{90120000-0020-0C0A-0000-0000000FF1CE}
Adobe Anchor Service CS3 -> MsiExec.exe /I{90176341-0A8B-4CCC-A78D-F862228A6B95}
Microsoft_VC80_CRT_x86 -> MsiExec.exe /I{92D58719-BBC1-4CC3-A08B-56C9E884CC2C}
VC80CRTRedist - 8.0.50727.6195 -> MsiExec.exe /I{933B4015-4618-4716-A828-5289FC03165F}
Macromedia FreeHand MXa -> RunDll32 C:\PROGRA~2\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files (x86)\InstallShield Installation Information\{939740B5-0064-4779-854A-8C1086181C05}\Setup.exe" -l0xa UNINSTALL
HP Product FWUpdater -> MsiExec.exe /I{9416A209-B8AD-4FE5-A893-3BDA6E9BDEC5}
Adobe CMaps CS4 -> MsiExec.exe /I{94D398EB-D2FD-4FD1-B8C4-592635E8A191}
PlayMemories Home -> MsiExec.exe /X{94F4815B-755A-4FFA-AFDC-EE8FE776981E}
Movie Maker -> MsiExec.exe /X{9C82436F-F19C-42A4-B476-F87A28A95BF9}
Adobe Bridge CS3 -> MsiExec.exe /I{9C9824D9-9000-4373-A6A5-D0E5D4831394}
Convert MOV to AVI 1.0 -> "C:\Program Files (x86)\Convert MOV to AVI\unins000.exe"
Office Password Unlocker 4.0.1.6 -> "C:\Program Files (x86)\Office Password Unlocker\unins000.exe"
PDF Settings CS5 -> MsiExec.exe /I{A78FE97A-C0C8-49CE-89D0-EDD524A17392}
Adobe Refresh Manager -> MsiExec.exe /I{AC76BA86-0804-1033-1959-001824272646}
Adobe Acrobat 9 Pro Extended - Italiano, Español, Nederlands, Português -> msiexec /I {AC76BA86-1040-7D70-7761-000000000004}
Adobe Reader X (10.1.12) - Español -> MsiExec.exe /I{AC76BA86-7AD7-1034-7B44-AA1000000001}
Adobe Help Manager -> MsiExec.exe /I{AF37176A-78CA-545B-34EF-8B6A21514DD1}
Windows Live PIMT Platform -> MsiExec.exe /I{B2611F8A-EFE7-4E88-875D-19F0EFAE87E4}
Adobe Camera Raw 4.0 -> MsiExec.exe /I{B3BF6689-A81D-40D8-9A86-4AC4ACD9FC1C}
Windows Live Essentials -> MsiExec.exe /I{B400EF92-0350-4330-B4EF-7D36EA107C70}
Skype Click to Call -> MsiExec.exe /I{B6CF2967-C81E-40C0-9815-C05774FEF120}
NVIDIA PhysX -> MsiExec.exe /X{B9DB4C76-01A4-46D5-8910-F7AA6376DBAF}
HPLaserJet300-400ColorM351-M451Series_HelpLearnCenter_SI -> MsiExec.exe /X{BD019D8F-25B9-49D6-B301-07AFF65E35DD}
Aiseesoft Video Converter Ultimate 9.2.26 -> "C:\Program Files (x86)\Aiseesoft Studio\Aiseesoft Video Converter Ultimate\unins000.exe"
Adobe ExtendScript Toolkit 2 -> MsiExec.exe /I{C2D69781-F392-4118-A5A7-C7E9C38DBFC2}
Adobe Default Language CS4 -> MsiExec.exe /I{C52E3EC1-048C-45E1-8D53-10B0C6509683}
Adobe Dreamweaver CS5 -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\core\PDApp.exe --appletID="DWA_UI" --appletVersion="1.0" --mode="Uninstall" --mediaSignature="{C79312BD-3E76-4474-A10C-1435D1856A4B}"
Windows Live SOXE -> MsiExec.exe /I{CDC1AB00-01FF-4FC7-816A-16C67F0923C0}
Adobe Version Cue CS3 Client -> MsiExec.exe /I{D0DFF92A-492E-4C40-B862-A74A173C25C5}
Windows Live SOXE Definitions -> MsiExec.exe /I{D1893000-EA77-493C-8DDD-E262436E959B}
Microsoft_VC80_MFC_x86 -> MsiExec.exe /I{D1A19B02-817E-4296-A45B-07853FD74D57}
Apple Application Support (32 bits) -> MsiExec.exe /I{D4B07658-F443-4445-A261-E643996E139D}
Adobe Extension Manager CS3 -> MsiExec.exe /I{D7A53E41-3F32-4A44-989C-53DDEBB2130C}
Microsoft_VC80_CRT_x86 -> MsiExec.exe /I{D7BF3B76-EEF9-4868-9B2B-42ABF60B279A}
Microsoft_VC80_MFCLOC_x86 -> MsiExec.exe /I{D92BBB52-82FF-42ED-8A3C-4E062F944AB7}
ConvertXtoDVD 4.0.9.322 -> "C:\Program Files (x86)\VSO\ConvertX\4\unins000.exe"
Movie Maker -> MsiExec.exe /X{DD67BE4B-7E62-4215-AFA3-F123A800A389}
MergeModule_x86 -> MsiExec.exe /I{DD7721BB-CF1C-4DC9-AD87-8D5FB75413B7}
Brother P-touch Editor 5.0 -> MsiExec.exe /X{DF9A6075-9308-4572-8932-A4316243C4D9}
D3DX10 -> MsiExec.exe /X{E09C4DB7-630C-4F06-A631-8EA7239923AF}
Adobe Update Manager CS3 -> MsiExec.exe /I{E69AE897-9E0B-485C-8552-7841F48D42D8}
Windows Live Messenger -> MsiExec.exe /X{E703613B-BDAB-433E-A66A-DE0263E3D35D}
PMB_ServiceUploader -> MsiExec.exe /I{E7FDF11C-12BB-4D6F-9B6D-F8E488C776DC}
ABBYY FineReader 11 Corporate Edition -> MsiExec.exe /I{F1100000-0010-0000-0000-074957833700}
Adobe PDF Library Files CS4 -> MsiExec.exe /I{F93C84A6-0DC6-42AF-89FA-776F7C377353}
Adobe AIR -> MsiExec.exe /I{FE23D063-934D-4829-A0D8-00634CE79B4A}
QuickTime 7 -> MsiExec.exe /I{FF59BD75-466A-4D5A-AD23-AAD87C5FD44C}
Dropbox -> "C:\Users\Alejandro\AppData\Roaming\Dropbox\bin\DropboxUninstaller.exe" /InstallType:USER
KoolPlaya -> D:\TunePc\KoolPlaya.exe /uninstall
Vidyo Desktop 3.3 - (Alejandro) -> C:\Users\Alejandro\AppData\Local\Vidyo\Vidyo Desktop\Uninstall.exe

Código: Seleccionar todo

	(13-9-2018  23:46:43 (GMT))
EliStartPage v39.70  (c)2018 S.G.H. / Satinfo S.L. (Actualizado el 13 de Septiembre del 2018)
--------------------------------------------------
Sistema Operativo: Windows 7 Ultimate (6.1.0)  (64 bits)
Usuario: Alejandro
ID de Usuario: S-1-5-21-187877695-3076786098-3722317423-1000
Cadenas Víricas: 36714

Lista de Acciones (por Acción Directa):
Sospechosa Clave "HKLM\...\Image File Execution Options\GOOGLEUPDATE.EXE"
                 "Debugger"="324095823984.EXE"
Sospechosa Clave "HKLM\...\Image File Execution Options\GOOGLEUPDATERSERVICE.EXE"
                 "Debugger"="8736459873644.EXE"
Eliminada Carpeta "C:\Program Files (x86)\Passware"
Eliminada Carpeta "C:\Users\Alejandro\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Passware"
Eliminadas las Paginas de Inicio y de Busqueda del IE
Eliminados Ficheros Temporales del IE

	(13-9-2018  23:46:46 (GMT))
EliStartPage v39.70  (c)2018 S.G.H. / Satinfo S.L. (Actualizado el 13 de Septiembre del 2018)
--------------------------------------------------
Sistema Operativo: Windows 7 Ultimate (6.1.0)  (64 bits)
Usuario: Usuario
ID de Usuario: S-1-5-21-187877695-3076786098-3722317423-1001
Cadenas Víricas: 36714

Lista de Acciones (por Acción Directa):
Sospechosa Clave "HKLM\...\Image File Execution Options\GOOGLEUPDATE.EXE"
                 "Debugger"="324095823984.EXE"
Sospechosa Clave "HKLM\...\Image File Execution Options\GOOGLEUPDATERSERVICE.EXE"
                 "Debugger"="8736459873644.EXE"
Eliminadas las Paginas de Inicio y de Busqueda del IE
Eliminados Ficheros Temporales del IE

	(13-9-2018  23:47:03 (GMT))
EliStartPage v39.70  (c)2018 S.G.H. / Satinfo S.L. (Actualizado el 13 de Septiembre del 2018)
--------------------------------------------------
Sistema Operativo: Windows 7 Ultimate (6.1.0)  (64 bits)
Usuario: UpdatusUser
ID de Usuario: S-1-5-21-187877695-3076786098-3722317423-1002
Cadenas Víricas: 36714

Lista de Acciones (por Acción Directa):
Acceso Denegado al Usuario.

	(13-9-2018  23:47:10 (GMT))
EliStartPage v39.70  (c)2018 S.G.H. / Satinfo S.L. (Actualizado el 13 de Septiembre del 2018)
--------------------------------------------------
Sistema Operativo: Windows 7 Ultimate (6.1.0)  (64 bits)
Usuario: administrador
ID de Usuario: S-1-5-21-3309746368-2663584995-1869735751-500
Cadenas Víricas: 36714

Lista de Acciones (por Acción Directa):
Error de Acceso a las Rutas del Usuario.

	(14-9-2018  00:08:47 (GMT))
EliStartPage v39.70  (c)2018 S.G.H. / Satinfo S.L. (Actualizado el 13 de Septiembre del 2018)
--------------------------------------------------
Sistema Operativo: Windows 7 Ultimate (6.1.0)  (64 bits)
Usuario: administrador
ID de Usuario: S-1-5-21-3309746368-2663584995-1869735751-500
Cadenas Víricas: 36714

Lista de Acciones (por Exploración):
Explorando "C:\"

Nº Total de Directorios:   55482
Nº Total de Ficheros:      395014
Nº de Ficheros Analizados: 112445
Nº de Ficheros Infectados: 0
Nº de Ficheros Eliminados: 0

	(20-9-2018  13:40:33 (GMT))
EliStartPage v39.73  (c)2018 S.G.H. / Satinfo S.L. (Actualizado el 18 de Septiembre del 2018)
--------------------------------------------------
Sistema Operativo: Windows 7 Ultimate (6.1.0)  (64 bits)
Usuario: Alejandro
ID de Usuario: S-1-5-21-187877695-3076786098-3722317423-1000
Cadenas Víricas: 36767

Lista de Acciones (por Acción Directa):
Eliminadas las Paginas de Inicio y de Busqueda del IE
Eliminados Ficheros Temporales del IE

	(20-9-2018  13:40:36 (GMT))
EliStartPage v39.73  (c)2018 S.G.H. / Satinfo S.L. (Actualizado el 18 de Septiembre del 2018)
--------------------------------------------------
Sistema Operativo: Windows 7 Ultimate (6.1.0)  (64 bits)
Usuario: Usuario
ID de Usuario: S-1-5-21-187877695-3076786098-3722317423-1001
Cadenas Víricas: 36767

Lista de Acciones (por Acción Directa):
Eliminadas las Paginas de Inicio y de Busqueda del IE
Eliminados Ficheros Temporales del IE

	(20-9-2018  13:40:42 (GMT))
EliStartPage v39.73  (c)2018 S.G.H. / Satinfo S.L. (Actualizado el 18 de Septiembre del 2018)
--------------------------------------------------
Sistema Operativo: Windows 7 Ultimate (6.1.0)  (64 bits)
Usuario: UpdatusUser
ID de Usuario: S-1-5-21-187877695-3076786098-3722317423-1002
Cadenas Víricas: 36767

Lista de Acciones (por Acción Directa):
Acceso Denegado al Usuario.

	(20-9-2018  13:40:43 (GMT))
EliStartPage v39.73  (c)2018 S.G.H. / Satinfo S.L. (Actualizado el 18 de Septiembre del 2018)
--------------------------------------------------
Sistema Operativo: Windows 7 Ultimate (6.1.0)  (64 bits)
Usuario: administrador
ID de Usuario: S-1-5-21-3309746368-2663584995-1869735751-500
Cadenas Víricas: 36767

Lista de Acciones (por Acción Directa):
Error de Acceso a las Rutas del Usuario.

	(20-9-2018  15:16:13 (GMT))
EliStartPage v39.73  (c)2018 S.G.H. / Satinfo S.L. (Actualizado el 18 de Septiembre del 2018)
--------------------------------------------------
Sistema Operativo: Windows 7 Ultimate (6.1.0)  (64 bits)
Usuario: administrador
ID de Usuario: S-1-5-21-3309746368-2663584995-1869735751-500
Cadenas Víricas: 36767

Lista de Acciones (por Exploración):
Explorando "C:\"
C:\$Recycle.Bin\S-1-5-21-187877695-3076786098-3722317423-1000\$RAKLWNJ.EXE --> Eliminado, Adware.Zdengo
C:\$Recycle.Bin\S-1-5-21-187877695-3076786098-3722317423-1000\$RBWF1AS.EXE --> Eliminado, Adware.Zdengo
C:\Program Files\MGU1M.VIR\MJE3ODH.EXE.VIR --> Eliminado, Adware.Zdengo
C:\Program Files\MGU1M.VIR\YZHINDM4MME0MWU4Y.EXE.VIR --> Acceso Denegado, Adware.Zdengo (Reiniciar para Completar la Limpieza)

Nº Total de Directorios:   53925
Nº Total de Ficheros:      382757
Nº de Ficheros Analizados: 112132
Nº de Ficheros Infectados: 4
Nº de Ficheros Eliminados: 3

	(20-9-2018  23:49:51 (GMT))
EliStartPage v39.73  (c)2018 S.G.H. / Satinfo S.L. (Actualizado el 18 de Septiembre del 2018)
--------------------------------------------------
Sistema Operativo: Windows 7 Ultimate (6.1.0)  (64 bits)
Usuario: Alejandro
ID de Usuario: S-1-5-21-187877695-3076786098-3722317423-1000
Cadenas Víricas: 36767

Lista de Acciones (por Acción Directa):
Eliminadas las Paginas de Inicio y de Busqueda del IE
Eliminados Ficheros Temporales del IE

	(20-9-2018  23:49:55 (GMT))
EliStartPage v39.73  (c)2018 S.G.H. / Satinfo S.L. (Actualizado el 18 de Septiembre del 2018)
--------------------------------------------------
Sistema Operativo: Windows 7 Ultimate (6.1.0)  (64 bits)
Usuario: Usuario
ID de Usuario: S-1-5-21-187877695-3076786098-3722317423-1001
Cadenas Víricas: 36767

Lista de Acciones (por Acción Directa):
Eliminadas las Paginas de Inicio y de Busqueda del IE
Eliminados Ficheros Temporales del IE

	(20-9-2018  23:50:08 (GMT))
EliStartPage v39.73  (c)2018 S.G.H. / Satinfo S.L. (Actualizado el 18 de Septiembre del 2018)
--------------------------------------------------
Sistema Operativo: Windows 7 Ultimate (6.1.0)  (64 bits)
Usuario: UpdatusUser
ID de Usuario: S-1-5-21-187877695-3076786098-3722317423-1002
Cadenas Víricas: 36767

Lista de Acciones (por Acción Directa):
Acceso Denegado al Usuario.

	(20-9-2018  23:50:14 (GMT))
EliStartPage v39.73  (c)2018 S.G.H. / Satinfo S.L. (Actualizado el 18 de Septiembre del 2018)
--------------------------------------------------
Sistema Operativo: Windows 7 Ultimate (6.1.0)  (64 bits)
Usuario: administrador
ID de Usuario: S-1-5-21-3309746368-2663584995-1869735751-500
Cadenas Víricas: 36767

Lista de Acciones (por Acción Directa):
Error de Acceso a las Rutas del Usuario.

Avatar de Usuario
msc hotline sat
Mensajes: 93500
Registrado: 09 Mar 2004, 20:39
Ubicación: BARCELONA (ESPAÑA)
Contactar:

Re: Carperta MGU1M en. Archivos de Programa

Mensaje por msc hotline sat » 21 Sep 2018, 07:42

Pues tras borrar los ficheros y la carpeta MGU1M de Archivos de Programa, cree un fichero con igual nombre (MGU1M) y ubicación para que, al reiniciar e intentar su creación, ya encuentre usado dicho nombre y no pueda crearlo por estar "ocupado".

Comentenos el resultado, gracias

ms, 21-9-2018

kaninox
Mensajes: 106
Registrado: 21 May 2007, 05:46

Re: Carperta MGU1M en. Archivos de Programa

Mensaje por kaninox » 21 Sep 2018, 15:13

Perfecto, quedo solucionado, muchas gracias.
Lo realice en modo a prueba de fallos y ahí pude eliminar el folder.

Saludos
msc hotline sat escribió:
21 Sep 2018, 07:42
Pues tras borrar los ficheros y la carpeta MGU1M de Archivos de Programa, cree un fichero con igual nombre (MGU1M) y ubicación para que, al reiniciar e intentar su creación, ya encuentre usado dicho nombre y no pueda crearlo por estar "ocupado".

Comentenos el resultado, gracias

ms, 21-9-2018

Avatar de Usuario
msc hotline sat
Mensajes: 93500
Registrado: 09 Mar 2004, 20:39
Ubicación: BARCELONA (ESPAÑA)
Contactar:

Re: Carperta MGU1M en. Archivos de Programa

Mensaje por msc hotline sat » 21 Sep 2018, 15:51

Muy lista, asi me gusta !

Y dando el Tema por solucionado, procedemos a cerrarlo

Si nos necesitas de nuevo, ya sabes donde estamos

saludos

ms, 21-9-2018

Cerrado

Volver a “Foro Virus - Cuentanos tu problema”