Eliminación de www1.ecleneue.com

Amigos del foro: Windows 10 may update me empezó a traer problemas ya conocidos y lo reemplazé con un Windows desatendido de la versión anterior (1509) Pro . Tuve la desgracia de instalar un Malwarebytes lleno de malwares y cuando me di cuenta ya tenía la detección web del ecleneue.com. Ante esto me di cuenta y compré la licencia del Malwarebytes Premium el 19/09/2019. Las detecciones webs de este malware o troyano bajaron pero de vez en cuando tengo alguna. Ahora les pido ayuda para resolver este problema. Muchas gracias.

Hola Marcelo Quiroga

Bienvenido a Forospyware.

No se entiende bien el planteo. Podrías explicar mejor el problema de Tu PC, por favor ?

Hola, pido disculpas si no fui claro: mi Malwarebytes Premium detecta una conexión saliente del programa Google Chrome y menciona la página www1.ecleneue.com como portadora de un troyano. También mencioné el Malwarebytes crackeado que tenía por que sospecho que éste haya sido la fuente de infección de mi pc. También menciono que tengo un Windows 10 1509 desatendido porque no tiene todo lo necesario para seguridad: por ejemplo, no tiene el Windows Defender ni toda la sección seguridad. Lamento mucho tener que optar por un Windows desatendido pero las últimas actualizaciones de Windows tomaban muchos recursos de mi pc (cpu y memoria).

Hola

Desactiva temporalmente tu antivirus y cualquier programa de seguridad que tengas en funciones.

Descarga Farbar Recovery Scan Tool en el escritorio de Tu PC. Selecciona la versión adecuada para la arquitectura (32 o 64bits) de tu equipo.

Como saber si Mi Windows es de 32 0 64 Bits`

  • Ejecuta FRST.exe
  • En el mensaje de la ventana del Disclaimer, pulsamos Yes
  • En la ventana principal pulsamos en el botón Scan y esperamos a que concluya el proceso.
  • Se abrirán dos(2) archivos(Logs), Frst.txt y Addition.txt, estos quedaran grabados en el escritorio.

Guía: Como Ejecutar FRST

En Tu próxima respuesta, debes pegar los dos reportes generados.

Debes copiarlos y pegarlos con todo su contenido y usaras varios mensajes si recibes un mensaje de error indicando que es muy largo(mas de 50.000 caracteres aprox.).

Guía: Como Pegar reportes en el Foro

Saludos

Addition.txt: Additional scan result of Farbar Recovery Scan Tool (x64) Version: 22-09-2019 Ran by KB (24-09-2019 17:53:20) Running from C:\Users\KB\Desktop Windows 10 Pro Version 1809 17763.107 (X64) (2019-09-08 22:58:44) Boot Mode: Normal ==========================================================

==================== Accounts: =============================

Administrador (S-1-5-21-55810073-3915787847-1979356537-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-55810073-3915787847-1979356537-503 - Limited - Disabled)
Invitado (S-1-5-21-55810073-3915787847-1979356537-501 - Limited - Disabled)
KB (S-1-5-21-55810073-3915787847-1979356537-1000 - Administrator - Enabled) => C:\Users\KB
WDAGUtilityAccount (S-1-5-21-55810073-3915787847-1979356537-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)


==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

µTorrent (HKU\S-1-5-21-55810073-3915787847-1979356537-1000\...\uTorrent) (Version: 3.5.5.45341 - BitTorrent Inc.)
7-Zip 19.00 (x64) (HKLM\...\7-Zip) (Version: 19.00 - Igor Pavlov)
Actualización de NVIDIA 2.11.4.125 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 2.11.4.125 - NVIDIA Corporation) Hidden
Adobe Acrobat Reader DC - Español (HKLM-x32\...\{AC76BA86-7AD7-1034-7B44-AC0F074E4100}) (Version: 19.012.20040 - Adobe Systems Incorporated)
Adobe Flash Player 32 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 32.0.0.255 - Adobe)
CCleaner (HKLM\...\CCleaner) (Version: 5.61 - Piriform)
DVD Shrink 3.2 (HKLM-x32\...\DVD Shrink_is1) (Version:  - DVD Shrink)
ESET Security (HKLM\...\{91C0EC98-6614-4E9B-ABD7-6BAC18CD8067}) (Version: 12.2.23.0 - ESET, spol. s r.o.)
Everything 1.4.1.935 (x64) (HKLM\...\Everything) (Version: 1.4.1.935 - David Carpenter)
GIMP 2.10.12 (HKLM\...\GIMP-2_is1) (Version: 2.10.12 - The GIMP Team)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 77.0.3865.90 - Google LLC)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.34.11 - Google LLC) Hidden
IDM Crack 6.35 build 5 (HKLM-x32\...\IDM Crack 6.35 build 5) (Version: 6.35 build 5 - Crackingpatching.com Team)
ImgBurn (HKLM-x32\...\ImgBurn) (Version: 2.5.8.0 - LIGHTNING UK!)
Internet Download Manager (HKLM-x32\...\Internet Download Manager) (Version:  - Tonec Inc.)
Java 8 Update 221 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180221F0}) (Version: 8.0.2210.11 - Oracle Corporation)
JDownloader 2 (HKLM\...\jdownloader2) (Version: 2.0 - AppWork GmbH)
K-Lite Codec Pack 15.1.6 Standard (HKLM-x32\...\KLiteCodecPack_is1) (Version: 15.1.6 - KLCP)
Malwarebytes versión 3.8.3.2965 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.8.3.2965 - Malwarebytes)
Microsoft Age of Empires II (HKLM-x32\...\Age of Empires 2.0) (Version:  - )
Microsoft Office Professional Plus 2010 (HKLM\...\Office14.PROPLUS) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50918.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation)
Mozilla Firefox 69.0.1 (x64 es-ES) (HKLM\...\Mozilla Firefox 69.0.1 (x64 es-ES)) (Version: 69.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 69.0 - Mozilla)
NVIDIA Controlador de 3D Vision 342.01 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 342.01 - NVIDIA Corporation)
NVIDIA Controlador de audio HD 1.3.30.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.30.1 - NVIDIA Corporation)
NVIDIA Controlador de gráficos 342.01 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 342.01 - NVIDIA Corporation)
NVIDIA Controlador de la controladora 3D Vision 340.50 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 340.50 - NVIDIA Corporation)
NVIDIA GeForce Experience 2.11.4.125 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.11.4.125 - NVIDIA Corporation)
NVIDIA Software del sistema PhysX 9.13.1220 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.13.1220 - NVIDIA Corporation)
Panel de control de NVIDIA 342.01 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 342.01 - NVIDIA Corporation) Hidden
SAMSUNG USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.5.45.0 - SAMSUNG Electronics Co., Ltd.)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUS_{A3364707-2F53-4C83-8F68-C9877A9080C7}) (Version:  - Microsoft)
SHIELD Streaming (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GFExperience.NvStreamSrv) (Version: 7.1.0280 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_ShieldWirelessController) (Version: 2.11.4.125 - NVIDIA Corporation) Hidden
TAP-Windows 9.21.2 (HKLM\...\TAP-Windows) (Version: 9.21.2 - )
VLC media player (HKLM\...\VLC media player) (Version: 3.0.8 - VideoLAN)
VSO ConvertXToDVD 7 (HKLM-x32\...\{A021D003-6933-4EA4-B582-F1D0C3E52409}_is1) (Version: 7.0.0.40 - VSO Software)
Winamp (HKLM-x32\...\Winamp) (Version: 5.666  - Nullsoft, Inc)
WinRAR 5.71 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.71.0 - win.rar GmbH)
WinX HD Video Converter Deluxe 5.15.2 (HKLM-x32\...\WinX HD Video Converter Deluxe_is1) (Version:  - Digiarty Software, Inc.)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

ShellIconOverlayIdentifiers: [			IDM Shell Extension] -> {CDC95B92-E27C-4745-A8C5-64A52A78855D} => C:\Program Files (x86)\Internet Download Manager\IDMShellExt64.dll [2019-05-02] (Tonec Inc. -> Tonec Inc.)
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [File not signed]
ContextMenuHandlers1: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2019-06-21] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers2: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2019-06-21] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2019-06-26] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [File not signed]
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\system32\nvshext.dll [2016-11-14] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [File not signed]
ContextMenuHandlers6: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2019-06-21] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2019-06-26] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)


==================== Loaded Modules (Whitelisted) ==============

2019-09-09 19:28 - 2019-02-21 13:00 - 000078336 _____ (Igor Pavlov) [File not signed] C:\Program Files\7-Zip\7-zip.dll
2019-09-08 20:44 - 2016-11-14 09:30 - 001300688 _____ (NVIDIA Corporation PE Sign v2014 -> NVIDIA Corporation) [File not signed] C:\Program Files\NVIDIA Corporation\NvStreamSrv\rxinput.dll
2019-09-08 20:43 - 2016-11-14 06:45 - 001408200 _____ (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation) [File not signed] C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPI64.dll

==================== Alternate Data Streams (Whitelisted) =========

==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)


==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2018-09-15 04:31 - 2019-09-18 20:39 - 000000824 _____ C:\Windows\system32\drivers\etc\hosts


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\
HKU\S-1-5-21-55810073-3915787847-1979356537-1000\Control Panel\Desktop\\Wallpaper -> E:\Reciclado\Mis_imágenes\Imágenes\DelfinaGerez5-515x344.jpg
DNS Servers: 8.8.4.4 - 10.0.80.2
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 0)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: Off)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

If an entry is included in the fixlist, it will be removed.

HKLM\...\StartupApproved\Run: => "SecurityHealth"
HKLM\...\StartupApproved\Run: => "ShadowPlay"
HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched"
HKU\S-1-5-21-55810073-3915787847-1979356537-1000\...\StartupApproved\Run: => "IDMan"

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{F02E0077-C97E-4873-BED9-6B3C293FA73A}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{C1053823-A972-456C-A552-ECEEF8700320}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{ADB146A6-D9DB-4D9F-8139-4BD8CDBC568B}] => (Allow) C:\Program Files (x86)\Winamp\winamp.exe (Nullsoft Inc. -> Nullsoft, Inc.)
FirewallRules: [{4DCD407B-A47A-4152-B050-82FEF4B99ECA}] => (Allow) C:\Program Files (x86)\Winamp\winamp.exe (Nullsoft Inc. -> Nullsoft, Inc.)
FirewallRules: [{C8329F00-FDB2-4520-A641-EAEDF5260F24}] => (Allow) C:\Users\KB\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{38303552-80C1-42F3-86D1-5555CFBBFFDE}] => (Allow) C:\Users\KB\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{366F341D-3DBA-46B1-8507-BC2BC2BC6466}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)

==================== Restore Points =========================

08-09-2019 20:41:44 Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005
10-09-2019 15:20:58 Installed Microsoft Office Professional Plus 2010
13-09-2019 12:40:28 Removed Betternet for Windows 5.2.0
16-09-2019 20:05:19 Windows Update
16-09-2019 20:05:58 Windows Update
21-09-2019 21:38:34 Windows Update

==================== Faulty Device Manager Devices =============

Name: Puerto serie PCI
Description: Puerto serie PCI
Class Guid: 
Manufacturer: 
Service: 
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: Controladora simple de comunicaciones PCI
Description: Controladora simple de comunicaciones PCI
Class Guid: 
Manufacturer: 
Service: 
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.


==================== Event log errors: =========================

Application errors:
==================
Error: (09/24/2019 05:51:39 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Error del Servicio de instantáneas de volumen: error inesperado al llamar a la rutina QueryFullProcessImageNameW. HR = 0x80070006, Controlador no válido.
.


Operación:
   Ejecutando operación asincrónica

Contexto:
   Estado actual: DoSnapshotSet

Error: (09/24/2019 05:51:03 PM) (Source: VSS) (EventID: 8194) (User: )
Description: Error del Servicio de instantáneas de volumen: error inesperado al consultar la interfaz IVssWriterCallback. HR = 0x80070005, Acceso denegado.
.
A menudo ocurre por una configuración de seguridad incorrecta en el proceso de escritura o de solicitud.


Operación:
   Recopilando datos del escritor

Contexto:
   Id. de clase del escritor: {e8132975-6f93-4464-a53e-1050253ae220}
   Nombre del escritor: System Writer
   Id. de instancia del escritor: {dcd096a5-d561-423f-b42b-9726d14b9929}

Error: (09/08/2019 08:21:35 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: Error al generar el contexto de activación para "D:\Archivos\Descargas\Programas\KiesSetup.exe".
No se encontró el ensamblado dependiente Microsoft.VC90.MFC,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="9.0.21022.8".
Use sxstrace.exe para obtener un diagnóstico detallado.


System errors:
=============
Error: (09/24/2019 05:45:52 PM) (Source: DCOM) (EventID: 10016) (User: MANARA)
Description: La configuración de permisos específico de la aplicación no concede el permiso Activación Local para la aplicación de servidor COM con CLSID 
{2593F8B9-4EAF-457C-B68A-50F6B8EA6B54}
 y APPID 
{15C20B67-12E7-4BB6-92BB-7AFF07997402}
 al usuario MANARA\KB con SID (S-1-5-21-55810073-3915787847-1979356537-1000) en la dirección LocalHost (con LRPC) que se ejecuta en el contenedor de aplicaciones con SID No disponible (No disponible). Este permiso de seguridad se puede modificar mediante la herramienta administrativa Servicios de componentes.

Error: (09/24/2019 05:44:13 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Se agotó el tiempo de espera (30000 ms) para la conexión con el servicio NVIDIA Streamer Network Service.

Error: (09/24/2019 05:43:45 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: El servicio luafv no pudo iniciarse debido al siguiente error: 
Se ha bloqueado la descarga de este controlador

Error: (09/24/2019 03:56:03 PM) (Source: DCOM) (EventID: 10016) (User: MANARA)
Description: La configuración de permisos específico de la aplicación no concede el permiso Activación Local para la aplicación de servidor COM con CLSID 
{2593F8B9-4EAF-457C-B68A-50F6B8EA6B54}
 y APPID 
{15C20B67-12E7-4BB6-92BB-7AFF07997402}
 al usuario MANARA\KB con SID (S-1-5-21-55810073-3915787847-1979356537-1000) en la dirección LocalHost (con LRPC) que se ejecuta en el contenedor de aplicaciones con SID No disponible (No disponible). Este permiso de seguridad se puede modificar mediante la herramienta administrativa Servicios de componentes.

Error: (09/24/2019 03:50:24 PM) (Source: DCOM) (EventID: 10016) (User: MANARA)
Description: La configuración de permisos específico de la aplicación no concede el permiso Activación Local para la aplicación de servidor COM con CLSID 
{2593F8B9-4EAF-457C-B68A-50F6B8EA6B54}
 y APPID 
{15C20B67-12E7-4BB6-92BB-7AFF07997402}
 al usuario MANARA\KB con SID (S-1-5-21-55810073-3915787847-1979356537-1000) en la dirección LocalHost (con LRPC) que se ejecuta en el contenedor de aplicaciones con SID No disponible (No disponible). Este permiso de seguridad se puede modificar mediante la herramienta administrativa Servicios de componentes.

Error: (09/24/2019 03:20:58 PM) (Source: DCOM) (EventID: 10016) (User: MANARA)
Description: La configuración de permisos específico de la aplicación no concede el permiso Activación Local para la aplicación de servidor COM con CLSID 
{2593F8B9-4EAF-457C-B68A-50F6B8EA6B54}
 y APPID 
{15C20B67-12E7-4BB6-92BB-7AFF07997402}
 al usuario MANARA\KB con SID (S-1-5-21-55810073-3915787847-1979356537-1000) en la dirección LocalHost (con LRPC) que se ejecuta en el contenedor de aplicaciones con SID No disponible (No disponible). Este permiso de seguridad se puede modificar mediante la herramienta administrativa Servicios de componentes.

Error: (09/24/2019 02:53:45 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Se agotó el tiempo de espera (30000 ms) para la conexión con el servicio NVIDIA Streamer Network Service.

Error: (09/24/2019 02:53:16 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: El servicio luafv no pudo iniciarse debido al siguiente error: 
Se ha bloqueado la descarga de este controlador
Ran by KB (24-09-2019 17:53:20)
Running from C:\Users\KB\Desktop
Windows 10 Pro Version 1809 17763.107 (X64) (2019-09-08 22:58:44)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrador (S-1-5-21-55810073-3915787847-1979356537-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-55810073-3915787847-1979356537-503 - Limited - Disabled)
Invitado (S-1-5-21-55810073-3915787847-1979356537-501 - Limited - Disabled)
KB (S-1-5-21-55810073-3915787847-1979356537-1000 - Administrator - Enabled) => C:\Users\KB
WDAGUtilityAccount (S-1-5-21-55810073-3915787847-1979356537-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)


==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

µTorrent (HKU\S-1-5-21-55810073-3915787847-1979356537-1000\...\uTorrent) (Version: 3.5.5.45341 - BitTorrent Inc.)
7-Zip 19.00 (x64) (HKLM\...\7-Zip) (Version: 19.00 - Igor Pavlov)
Actualización de NVIDIA 2.11.4.125 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 2.11.4.125 - NVIDIA Corporation) Hidden
Adobe Acrobat Reader DC - Español (HKLM-x32\...\{AC76BA86-7AD7-1034-7B44-AC0F074E4100}) (Version: 19.012.20040 - Adobe Systems Incorporated)
Adobe Flash Player 32 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 32.0.0.255 - Adobe)
CCleaner (HKLM\...\CCleaner) (Version: 5.61 - Piriform)
DVD Shrink 3.2 (HKLM-x32\...\DVD Shrink_is1) (Version:  - DVD Shrink)
ESET Security (HKLM\...\{91C0EC98-6614-4E9B-ABD7-6BAC18CD8067}) (Version: 12.2.23.0 - ESET, spol. s r.o.)
Everything 1.4.1.935 (x64) (HKLM\...\Everything) (Version: 1.4.1.935 - David Carpenter)
GIMP 2.10.12 (HKLM\...\GIMP-2_is1) (Version: 2.10.12 - The GIMP Team)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 77.0.3865.90 - Google LLC)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.34.11 - Google LLC) Hidden
IDM Crack 6.35 build 5 (HKLM-x32\...\IDM Crack 6.35 build 5) (Version: 6.35 build 5 - Crackingpatching.com Team)
ImgBurn (HKLM-x32\...\ImgBurn) (Version: 2.5.8.0 - LIGHTNING UK!)
Internet Download Manager (HKLM-x32\...\Internet Download Manager) (Version:  - Tonec Inc.)
Java 8 Update 221 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180221F0}) (Version: 8.0.2210.11 - Oracle Corporation)
JDownloader 2 (HKLM\...\jdownloader2) (Version: 2.0 - AppWork GmbH)
K-Lite Codec Pack 15.1.6 Standard (HKLM-x32\...\KLiteCodecPack_is1) (Version: 15.1.6 - KLCP)
Malwarebytes versión 3.8.3.2965 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.8.3.2965 - Malwarebytes)
Microsoft Age of Empires II (HKLM-x32\...\Age of Empires 2.0) (Version:  - )
Microsoft Office Professional Plus 2010 (HKLM\...\Office14.PROPLUS) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50918.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation)
Mozilla Firefox 69.0.1 (x64 es-ES) (HKLM\...\Mozilla Firefox 69.0.1 (x64 es-ES)) (Version: 69.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 69.0 - Mozilla)
NVIDIA Controlador de 3D Vision 342.01 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 342.01 - NVIDIA Corporation)
NVIDIA Controlador de audio HD 1.3.30.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.30.1 - NVIDIA Corporation)
NVIDIA Controlador de gráficos 342.01 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 342.01 - NVIDIA Corporation)
NVIDIA Controlador de la controladora 3D Vision 340.50 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 340.50 - NVIDIA Corporation)
NVIDIA GeForce Experience 2.11.4.125 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.11.4.125 - NVIDIA Corporation)
NVIDIA Software del sistema PhysX 9.13.1220 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.13.1220 - NVIDIA Corporation)
Panel de control de NVIDIA 342.01 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 342.01 - NVIDIA Corporation) Hidden
SAMSUNG USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.5.45.0 - SAMSUNG Electronics Co., Ltd.)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUS_{A3364707-2F53-4C83-8F68-C9877A9080C7}) (Version:  - Microsoft)
SHIELD Streaming (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GFExperience.NvStreamSrv) (Version: 7.1.0280 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_ShieldWirelessController) (Version: 2.11.4.125 - NVIDIA Corporation) Hidden
TAP-Windows 9.21.2 (HKLM\...\TAP-Windows) (Version: 9.21.2 - )
VLC media player (HKLM\...\VLC media player) (Version: 3.0.8 - VideoLAN)
VSO ConvertXToDVD 7 (HKLM-x32\...\{A021D003-6933-4EA4-B582-F1D0C3E52409}_is1) (Version: 7.0.0.40 - VSO Software)
Winamp (HKLM-x32\...\Winamp) (Version: 5.666  - Nullsoft, Inc)
WinRAR 5.71 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.71.0 - win.rar GmbH)
WinX HD Video Converter Deluxe 5.15.2 (HKLM-x32\...\WinX HD Video Converter Deluxe_is1) (Version:  - Digiarty Software, Inc.)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

ShellIconOverlayIdentifiers: [			IDM Shell Extension] -> {CDC95B92-E27C-4745-A8C5-64A52A78855D} => C:\Program Files (x86)\Internet Download Manager\IDMShellExt64.dll [2019-05-02] (Tonec Inc. -> Tonec Inc.)
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [File not signed]
ContextMenuHandlers1: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2019-06-21] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers2: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2019-06-21] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2019-06-26] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [File not signed]
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\system32\nvshext.dll [2016-11-14] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [File not signed]
ContextMenuHandlers6: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2019-06-21] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2019-06-26] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)


==================== Loaded Modules (Whitelisted) ==============

2019-09-09 19:28 - 2019-02-21 13:00 - 000078336 _____ (Igor Pavlov) [File not signed] C:\Program Files\7-Zip\7-zip.dll
2019-09-08 20:44 - 2016-11-14 09:30 - 001300688 _____ (NVIDIA Corporation PE Sign v2014 -> NVIDIA Corporation) [File not signed] C:\Program Files\NVIDIA Corporation\NvStreamSrv\rxinput.dll
2019-09-08 20:43 - 2016-11-14 06:45 - 001408200 _____ (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation) [File not signed] C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPI64.dll

==================== Alternate Data Streams (Whitelisted) =========

==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)


==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2018-09-15 04:31 - 2019-09-18 20:39 - 000000824 _____ C:\Windows\system32\drivers\etc\hosts


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\
HKU\S-1-5-21-55810073-3915787847-1979356537-1000\Control Panel\Desktop\\Wallpaper -> E:\Reciclado\Mis_imágenes\Imágenes\DelfinaGerez5-515x344.jpg
DNS Servers: 8.8.4.4 - 10.0.80.2
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 0)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: Off)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

If an entry is included in the fixlist, it will be removed.

HKLM\...\StartupApproved\Run: => "SecurityHealth"
HKLM\...\StartupApproved\Run: => "ShadowPlay"
HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched"
HKU\S-1-5-21-55810073-3915787847-1979356537-1000\...\StartupApproved\Run: => "IDMan"

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{F02E0077-C97E-4873-BED9-6B3C293FA73A}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{C1053823-A972-456C-A552-ECEEF8700320}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{ADB146A6-D9DB-4D9F-8139-4BD8CDBC568B}] => (Allow) C:\Program Files (x86)\Winamp\winamp.exe (Nullsoft Inc. -> Nullsoft, Inc.)
FirewallRules: [{4DCD407B-A47A-4152-B050-82FEF4B99ECA}] => (Allow) C:\Program Files (x86)\Winamp\winamp.exe (Nullsoft Inc. -> Nullsoft, Inc.)
FirewallRules: [{C8329F00-FDB2-4520-A641-EAEDF5260F24}] => (Allow) C:\Users\KB\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{38303552-80C1-42F3-86D1-5555CFBBFFDE}] => (Allow) C:\Users\KB\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{366F341D-3DBA-46B1-8507-BC2BC2BC6466}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)

==================== Restore Points =========================

08-09-2019 20:41:44 Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005
10-09-2019 15:20:58 Installed Microsoft Office Professional Plus 2010
13-09-2019 12:40:28 Removed Betternet for Windows 5.2.0
16-09-2019 20:05:19 Windows Update
16-09-2019 20:05:58 Windows Update
21-09-2019 21:38:34 Windows Update

==================== Faulty Device Manager Devices =============

Name: Puerto serie PCI
Description: Puerto serie PCI
Class Guid: 
Manufacturer: 
Service: 
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: Controladora simple de comunicaciones PCI
Description: Controladora simple de comunicaciones PCI
Class Guid: 
Manufacturer: 
Service: 
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.


==================== Event log errors: =========================

Application errors:
==================
Error: (09/24/2019 05:51:39 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Error del Servicio de instantáneas de volumen: error inesperado al llamar a la rutina QueryFullProcessImageNameW. HR = 0x80070006, Controlador no válido.
.


Operación:
   Ejecutando operación asincrónica

Contexto:
   Estado actual: DoSnapshotSet

Error: (09/24/2019 05:51:03 PM) (Source: VSS) (EventID: 8194) (User: )
Description: Error del Servicio de instantáneas de volumen: error inesperado al consultar la interfaz IVssWriterCallback. HR = 0x80070005, Acceso denegado.
.
A menudo ocurre por una configuración de seguridad incorrecta en el proceso de escritura o de solicitud.


Operación:
   Recopilando datos del escritor

Contexto:
   Id. de clase del escritor: {e8132975-6f93-4464-a53e-1050253ae220}
   Nombre del escritor: System Writer
   Id. de instancia del escritor: {dcd096a5-d561-423f-b42b-9726d14b9929}

Error: (09/08/2019 08:21:35 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: Error al generar el contexto de activación para "D:\Archivos\Descargas\Programas\KiesSetup.exe".
No se encontró el ensamblado dependiente Microsoft.VC90.MFC,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="9.0.21022.8".
Use sxstrace.exe para obtener un diagnóstico detallado.


System errors:
=============
Error: (09/24/2019 05:45:52 PM) (Source: DCOM) (EventID: 10016) (User: MANARA)
Description: La configuración de permisos específico de la aplicación no concede el permiso Activación Local para la aplicación de servidor COM con CLSID 
{2593F8B9-4EAF-457C-B68A-50F6B8EA6B54}
 y APPID 
{15C20B67-12E7-4BB6-92BB-7AFF07997402}
 al usuario MANARA\KB con SID (S-1-5-21-55810073-3915787847-1979356537-1000) en la dirección LocalHost (con LRPC) que se ejecuta en el contenedor de aplicaciones con SID No disponible (No disponible). Este permiso de seguridad se puede modificar mediante la herramienta administrativa Servicios de componentes.

Error: (09/24/2019 05:44:13 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Se agotó el tiempo de espera (30000 ms) para la conexión con el servicio NVIDIA Streamer Network Service.

Error: (09/24/2019 05:43:45 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: El servicio luafv no pudo iniciarse debido al siguiente error: 
Se ha bloqueado la descarga de este controlador

Error: (09/24/2019 03:56:03 PM) (Source: DCOM) (EventID: 10016) (User: MANARA)
Description: La configuración de permisos específico de la aplicación no concede el permiso Activación Local para la aplicación de servidor COM con CLSID 
{2593F8B9-4EAF-457C-B68A-50F6B8EA6B54}
 y APPID 
{15C20B67-12E7-4BB6-92BB-7AFF07997402}
 al usuario MANARA\KB con SID (S-1-5-21-55810073-3915787847-1979356537-1000) en la dirección LocalHost (con LRPC) que se ejecuta en el contenedor de aplicaciones con SID No disponible (No disponible). Este permiso de seguridad se puede modificar mediante la herramienta administrativa Servicios de componentes.

Error: (09/24/2019 03:50:24 PM) (Source: DCOM) (EventID: 10016) (User: MANARA)
Description: La configuración de permisos específico de la aplicación no concede el permiso Activación Local para la aplicación de servidor COM con CLSID 
{2593F8B9-4EAF-457C-B68A-50F6B8EA6B54}
 y APPID 
{15C20B67-12E7-4BB6-92BB-7AFF07997402}
 al usuario MANARA\KB con SID (S-1-5-21-55810073-3915787847-1979356537-1000) en la dirección LocalHost (con LRPC) que se ejecuta en el contenedor de aplicaciones con SID No disponible (No disponible). Este permiso de seguridad se puede modificar mediante la herramienta administrativa Servicios de componentes.

Error: (09/24/2019 03:20:58 PM) (Source: DCOM) (EventID: 10016) (User: MANARA)
Description: La configuración de permisos específico de la aplicación no concede el permiso Activación Local para la aplicación de servidor COM con CLSID 
{2593F8B9-4EAF-457C-B68A-50F6B8EA6B54}
 y APPID 
{15C20B67-12E7-4BB6-92BB-7AFF07997402}
 al usuario MANARA\KB con SID (S-1-5-21-55810073-3915787847-1979356537-1000) en la dirección LocalHost (con LRPC) que se ejecuta en el contenedor de aplicaciones con SID No disponible (No disponible). Este permiso de seguridad se puede modificar mediante la herramienta administrativa Servicios de componentes.

Error: (09/24/2019 02:53:45 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Se agotó el tiempo de espera (30000 ms) para la conexión con el servicio NVIDIA Streamer Network Service.

Error: (09/24/2019 02:53:16 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: El servicio luafv no pudo iniciarse debido al siguiente error: 
Se ha bloqueado la descarga de este controlador
````

`

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 22-09-2019
Ran by KB (administrator) on MANARA (24-09-2019 17:51:38)
Running from C:\Users\KB\Desktop
Loaded Profiles: KB (Available Profiles: KB)
Platform: Windows 10 Pro Version 1809 17763.107 (X64) Language: Español (México)
Default browser: Chrome
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Adobe Inc. -> Adobe Systems) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(DEVGURU CO LTD -> DEVGURU Co., LTD.) C:\Program Files\SAMSUNG\USB Drivers\25_escape\conn\ss_conn_service.exe
(ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\eguiProxy.exe
(ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\ekrn.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Malwarebytes Corporation -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Malwarebytes Corporation -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMWsc.exe
(Malwarebytes Corporation -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMWsc.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.YourPhone_1.19082.1010.0_x64__8wekyb3d8bbwe\YourPhone.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\SrTasks.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\TCPSVCS.EXE
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Piriform Software Ltd -> Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Tonec Inc. -> Tonec Inc.) C:\Program Files (x86)\Internet Download Manager\IEMonitor.exe
(Tonec Inc.) [File not signed] C:\Program Files (x86)\Internet Download Manager\IDMan.exe
(voidtools -> voidtools) C:\Program Files\Everything\Everything.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET Security\ecmds.exe [180448 2019-06-21] (ESET, spol. s r.o. -> ESET)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2397120 2016-11-14] (NVIDIA Corporation -> NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => C:\Windows\system32\nvspcap64.dll [1767712 2016-11-14] (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation) [File not signed]
HKLM\...\Run: [Everything] => C:\Program Files\Everything\Everything.exe [2240288 2019-02-04] (voidtools -> voidtools)
HKLM\...\Run: [BCSSync] => C:\Program Files\Microsoft Office\Office14\BCSSync.exe [108144 2012-11-05] (Microsoft Corporation -> Microsoft Corporation)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [644552 2019-07-04] (Oracle America, Inc. -> Oracle Corporation)
HKLM\...\Policies\Explorer: [SettingsPageVisibility] hide:maps
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-19\...\RunOnce: [HttpAcceptLanguageOptOut] => REG ADD "HKCU\Control Panel\International\User Profile" /v "HttpAcceptLanguageOptOut" /t REG_DWORD /f /d 1 <==== ATTENTION
HKU\S-1-5-20\...\RunOnce: [HttpAcceptLanguageOptOut] => REG ADD "HKCU\Control Panel\International\User Profile" /v "HttpAcceptLanguageOptOut" /t REG_DWORD /f /d 1 <==== ATTENTION
HKU\S-1-5-21-55810073-3915787847-1979356537-1000\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [22714912 2019-08-15] (Piriform Software Ltd -> Piriform Ltd)
HKU\S-1-5-21-55810073-3915787847-1979356537-1000\...\Run: [IDMan] => C:\Program Files (x86)\Internet Download Manager\IDMan.exe [4091960 2019-09-21] (Tonec Inc.) [File not signed]
HKU\S-1-5-18\...\RunOnce: [HttpAcceptLanguageOptOut] => REG ADD "HKCU\Control Panel\International\User Profile" /v "HttpAcceptLanguageOptOut" /t REG_DWORD /f /d 1 <==== ATTENTION
HKLM\...\Drivers32: [vidc.iv50] => C:\Windows\SysWOW64\ir50_32.dll [739328 1998-08-08] (Intel Corporation) [File not signed]
HKLM\...\Drivers32: [msacm.iac2] => C:\Windows\SysWOW64\iac25_32.ax [199680 1998-05-08] (Intel Corporation) [File not signed]
HKLM\...\Drivers32: [VIDC.IV41] => C:\Windows\SysWOW64\IR41_32.AX [848384 1998-02-26] (Intel Corporation) [File not signed]
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\77.0.3865.90\Installer\chrmstp.exe [2019-09-18] (Google LLC -> Google LLC)
GroupPolicy: Restriction ? <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {54DBDAD8-3489-4263-B8BE-C83EEC7DDCDD} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [619416 2019-08-15] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {927B250A-0F90-4ACA-8E1C-62823E6C7E03} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_255_Plugin.exe [1457720 2019-09-11] (Adobe Inc. -> Adobe)
Task: {9DDDC41E-59C0-4773-B9E5-2C0D47A48457} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156968 2019-09-08] (Google Inc -> Google Inc.)
Task: {A334DBD8-B04F-4967-AEB2-43E286C53BA7} - System32\Tasks\klcp_update => C:\Program Files (x86)\K-Lite Codec Pack\Tools\CodecTweakTool.exe [1723392 2019-08-27] () [File not signed]
Task: {A3901724-171D-49D9-B25F-69946A360FE3} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156968 2019-09-08] (Google Inc -> Google Inc.)
Task: {A97D244E-D843-489E-B27E-5D5C89D1A258} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1236048 2019-07-24] (Adobe Inc. -> Adobe Systems)
Task: {BF492CC5-FC7C-47C3-BD9B-364CAD240928} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2019-09-11] (Adobe Inc. -> Adobe)
Task: {CAE79A1C-AF18-4754-B8A6-6297828D1413} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [16585328 2019-08-15] (Piriform Software Ltd -> Piriform Ltd)
Task: {D0455E07-5242-4928-8439-516DBB1D2C7C} - System32\Tasks\AutoKMS => C:\Windows\AutoKMS.exe [614400 2019-09-10] () [File not signed]

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\Windows\Tasks\AutoKMS.job => C:\Windows\AutoKMS.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 8.8.4.4 10.0.80.2
Tcpip\..\Interfaces\{16af666f-12c4-459c-a504-810bfe9f38e7}: [DhcpNameServer] 8.8.4.4 10.0.80.2

Internet Explorer:
==================
BHO: IDM integration (IDMIEHlprObj Class) -> {0055C089-8582-441B-A0BF-17B458C2A3A8} -> C:\Program Files (x86)\Internet Download Manager\IDMIECC64.dll [2019-05-08] (Tonec Inc. -> Internet Download Manager, Tonec Inc.)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: IDM integration (IDMIEHlprObj Class) -> {0055C089-8582-441B-A0BF-17B458C2A3A8} -> C:\Program Files (x86)\Internet Download Manager\IDMIECC.dll [2019-05-08] (Tonec Inc. -> Internet Download Manager, Tonec Inc.)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_221\bin\ssv.dll [2019-09-09] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_221\bin\jp2ssv.dll [2019-09-09] (Oracle America, Inc. -> Oracle Corporation)
Handler: ms-help - {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Program Files\Common Files\Microsoft Shared\Help\hxds.dll [2008-05-23] (Microsoft Corporation) [File not signed]

FireFox:
========
FF DefaultProfile: bdw3jzyj.default
FF ProfilePath: C:\Users\KB\AppData\Roaming\Mozilla\Firefox\Profiles\bdw3jzyj.default [2019-09-09]
FF ProfilePath: C:\Users\KB\AppData\Roaming\Mozilla\Firefox\Profiles\smxdj1bq.default-release [2019-09-24]
FF DownloadDir: D:\Archivos\Descargas
FF Extension: (uBlock) - C:\Users\KB\AppData\Roaming\Mozilla\Firefox\Profiles\smxdj1bq.default-release\Extensions\{2b10c1c8-a11f-4bad-fe9c-1c11e82cac42}.xpi [2019-09-09]
FF HKU\S-1-5-21-55810073-3915787847-1979356537-1000\...\Firefox\Extensions: [[email protected]] - C:\Program Files (x86)\Internet Download Manager\idmmzcc3.xpi
FF Extension: (IDM Integration Module) - C:\Program Files (x86)\Internet Download Manager\idmmzcc3.xpi [2019-09-19] [UpdateUrl:hxxps://data.internetdownloadmanager.com/idmmzcc3/update.json]
FF HKU\S-1-5-21-55810073-3915787847-1979356537-1000\...\SeaMonkey\Extensions: [[email protected]] - C:\Users\KB\AppData\Roaming\IDM\idmmzcc5
FF Extension: (IDM CC) - C:\Users\KB\AppData\Roaming\IDM\idmmzcc5 [2019-09-21] [Legacy] [not signed]
FF HKU\S-1-5-21-55810073-3915787847-1979356537-1000\...\SeaMonkey\Extensions: [[email protected]] - C:\Program Files (x86)\Internet Download Manager\idmmzcc2.xpi
FF Extension: (IDM integration) - C:\Program Files (x86)\Internet Download Manager\idmmzcc2.xpi [2017-12-20] [Legacy]
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_32_0_0_255.dll [2019-09-11] (Adobe Inc. -> )
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation ->  Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=3.0.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_255.dll [2019-09-11] (Adobe Inc. -> )
FF Plugin-x32: @java.com/DTPlugin,version=11.221.2 -> C:\Program Files (x86)\Java\jre1.8.0_221\bin\dtplugin\npDeployJava1.dll [2019-09-09] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.221.2 -> C:\Program Files (x86)\Java\jre1.8.0_221\bin\plugin2\npjp2.dll [2019-09-09] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation ->  Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~3\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~3\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2016-11-14] (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation) [File not signed]
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2016-11-14] (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation) [File not signed]
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.34.11\npGoogleUpdate3.dll [2019-09-08] (Google Inc -> Google LLC)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.34.11\npGoogleUpdate3.dll [2019-09-08] (Google Inc -> Google LLC)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2019-08-21] (Adobe Inc. -> Adobe Systems Inc.)
FF ExtraCheck: C:\Program Files\mozilla firefox\defaults\pref\eset_security_config_overlay.js [2019-09-24]

Chrome: 
=======
CHR Profile: C:\Users\KB\AppData\Local\Google\Chrome\User Data\Default [2019-09-24]
CHR DownloadDir: D:\Archivos\Descargas
CHR Extension: (Presentaciones) - C:\Users\KB\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2019-09-08]
CHR Extension: (Documentos) - C:\Users\KB\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2019-09-08]
CHR Extension: (Google Drive) - C:\Users\KB\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2019-09-08]
CHR Extension: (YouTube) - C:\Users\KB\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2019-09-08]
CHR Extension: (uBlock) - C:\Users\KB\AppData\Local\Google\Chrome\User Data\Default\Extensions\epcnnfbjfcgphgdmggkamkmgojdagdnn [2019-09-16]
CHR Extension: (Hojas de cálculo) - C:\Users\KB\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2019-09-08]
CHR Extension: (Documentos de Google sin conexión) - C:\Users\KB\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2019-09-08]
CHR Extension: (IDM Integration Module) - C:\Users\KB\AppData\Local\Google\Chrome\User Data\Default\Extensions\ngpampappnmepgilojfohadhhmbhlaek [2019-09-21]
CHR Extension: (Sistema de pagos de Chrome Web Store) - C:\Users\KB\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-09-08]
CHR Extension: (Gmail) - C:\Users\KB\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-09-08]
CHR Extension: (Chrome Media Router) - C:\Users\KB\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-09-11]
CHR HKLM\...\Chrome\Extension: [ngpampappnmepgilojfohadhhmbhlaek] - C:\Program Files (x86)\Internet Download Manager\IDMGCExt.crx [2019-09-20]
CHR HKLM-x32\...\Chrome\Extension: [ngpampappnmepgilojfohadhhmbhlaek] - C:\Program Files (x86)\Internet Download Manager\IDMGCExt.crx [2019-09-20]

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 ekrn; C:\Program Files\ESET\ESET Security\ekrn.exe [2428848 2019-06-21] (ESET, spol. s r.o. -> ESET)
R3 ekrnEpfw; C:\Program Files\ESET\ESET Security\ekrn.exe [2428848 2019-06-21] (ESET, spol. s r.o. -> ESET)
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1163712 2016-11-14] (NVIDIA Corporation -> NVIDIA Corporation)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6744288 2019-06-26] (Malwarebytes Corporation -> Malwarebytes)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1879488 2016-11-14] (NVIDIA Corporation -> NVIDIA Corporation)
S3 NvStreamNetworkSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe [3632576 2016-11-14] (NVIDIA Corporation -> NVIDIA Corporation)
S2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [2521024 2016-11-14] (NVIDIA Corporation -> NVIDIA Corporation)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [5381624 2018-09-15] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 ss_conn_service; C:\Program Files\SAMSUNG\USB Drivers\25_escape\conn\ss_conn_service.exe [741640 2014-06-16] (DEVGURU CO LTD -> DEVGURU Co., LTD.)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [3830488 2018-09-15] (Microsoft Corporation -> Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [110944 2018-09-15] (Microsoft Corporation -> Microsoft Corporation)

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R1 eamonm; C:\Windows\System32\DRIVERS\eamonm.sys [149144 2019-06-20] (ESET, spol. s r.o. -> ESET)
R0 edevmon; C:\Windows\System32\DRIVERS\edevmon.sys [102464 2019-06-20] (ESET, spol. s r.o. -> ESET)
S0 eelam; C:\Windows\System32\DRIVERS\eelam.sys [15800 2019-05-31] (Microsoft Windows Early Launch Anti-malware Publisher -> ESET)
R1 ehdrv; C:\Windows\system32\DRIVERS\ehdrv.sys [189232 2019-06-20] (ESET, spol. s r.o. -> ESET)
R2 ekbdflt; C:\Windows\system32\DRIVERS\ekbdflt.sys [50488 2019-06-20] (ESET, spol. s r.o. -> ESET)
R1 epfw; C:\Windows\system32\DRIVERS\epfw.sys [76896 2019-06-20] (ESET, spol. s r.o. -> ESET)
R1 epfwwfp; C:\Windows\system32\DRIVERS\epfwwfp.sys [113336 2019-06-20] (ESET, spol. s r.o. -> ESET)
R1 ESProtectionDriver; C:\Windows\system32\drivers\mbae64.sys [153312 2019-08-27] (Malwarebytes Corporation -> Malwarebytes)
R2 MBAMChameleon; C:\Windows\System32\Drivers\MbamChameleon.sys [199768 2019-09-21] (Malwarebytes Corporation -> Malwarebytes)
S0 MbamElam; C:\Windows\System32\DRIVERS\MbamElam.sys [20936 2019-06-26] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R3 MBAMFarflt; C:\Windows\System32\DRIVERS\farflt.sys [225944 2019-09-24] (Malwarebytes Inc -> Malwarebytes)
R3 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [275232 2019-09-24] (Malwarebytes Corporation -> Malwarebytes)
R3 MBAMWebProtection; C:\Windows\system32\DRIVERS\mwac.sys [116832 2019-09-24] (Malwarebytes Corporation -> Malwarebytes)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [56384 2016-11-14] (NVIDIA Corporation -> NVIDIA Corporation)
S3 Secdrv; C:\Windows\SysWOW64\drivers\SECDRV.SYS [14368 1999-10-01] () [File not signed]
R3 tap0901; C:\Windows\System32\drivers\tap0901.sys [27136 2016-04-21] (OpenVPN Technologies, Inc. -> The OpenVPN Project)
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [46584 2018-09-15] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [340008 2018-09-15] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [61992 2018-09-15] (Microsoft Windows -> Microsoft Corporation)
U4 dcpsvc; no ImagePath
U4 DiagTrack; no ImagePath

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-09-24 17:51 - 2019-09-24 17:52 - 000021144 _____ C:\Users\KB\Desktop\FRST.txt
2019-09-24 17:50 - 2019-09-24 17:51 - 000000000 ____D C:\FRST
2019-09-24 17:50 - 2019-09-24 17:49 - 001616384 _____ (Farbar) C:\Users\KB\Desktop\FRST64.exe
2019-09-24 17:44 - 2019-09-24 17:44 - 000275232 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamswissarmy.sys
2019-09-24 17:44 - 2019-09-24 17:44 - 000225944 _____ (Malwarebytes) C:\Windows\system32\Drivers\farflt.sys
2019-09-24 17:44 - 2019-09-24 17:44 - 000116832 _____ (Malwarebytes) C:\Windows\system32\Drivers\mwac.sys
2019-09-23 20:12 - 2019-09-23 20:12 - 000000000 ____D C:\Users\KB\AppData\Roaming\MPC-HC
2019-09-23 14:46 - 2019-09-23 14:46 - 000001475 _____ C:\Users\KB\Desktop\WinX HD Video Converter Deluxe.lnk
2019-09-23 14:46 - 2019-09-23 14:46 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Digiarty
2019-09-23 14:45 - 2019-09-23 14:52 - 000000000 ____D C:\Users\KB\AppData\Roaming\Digiarty
2019-09-23 14:45 - 2019-09-23 14:45 - 000000000 ____D C:\Program Files (x86)\Digiarty
2019-09-21 21:46 - 2019-09-21 21:46 - 000000000 ____D C:\Windows\ime
2019-09-21 21:46 - 2019-09-21 21:46 - 000000000 ____D C:\Program Files\Windows Security
2019-09-21 21:02 - 2019-09-21 21:02 - 000000000 ____D C:\Program Files\SAMSUNG
2019-09-21 21:00 - 2019-09-21 21:00 - 000000000 ____D C:\ProgramData\Samsung
2019-09-21 14:55 - 2019-09-21 18:15 - 000000000 ____D C:\Program Files\Mozilla Firefox
2019-09-21 14:48 - 2019-09-21 14:48 - 000001078 _____ C:\Users\KB\Desktop\Internet Download Manager.lnk
2019-09-21 14:48 - 2019-09-21 14:48 - 000000000 ____D C:\Users\KB\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Download Manager
2019-09-21 14:48 - 2019-09-21 14:48 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Internet Download Manager
2019-09-20 16:47 - 2018-12-20 04:05 - 000229296 _____ (Tonec Inc.) C:\Windows\system32\Drivers\idmwfp.sys
2019-09-19 16:24 - 2019-09-19 16:27 - 000000000 ____D C:\Windows\system32\MRT
2019-09-19 16:24 - 2019-09-19 16:24 - 134272480 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2019-09-19 15:32 - 2019-09-19 15:32 - 000002330 _____ C:\Users\KB\Desktop\Google Chrome.lnk
2019-09-19 15:29 - 2019-09-19 15:29 - 000002016 _____ C:\Users\Public\Desktop\ESET Protección de pagos y banca online.lnk
2019-09-19 15:27 - 2019-06-20 03:34 - 000102464 _____ (ESET) C:\Windows\system32\Drivers\edevmon.sys
2019-09-18 20:40 - 2019-09-21 14:46 - 000199768 _____ (Malwarebytes) C:\Windows\system32\Drivers\MbamChameleon.sys
2019-09-18 20:30 - 2019-09-18 20:30 - 000001912 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2019-09-18 20:30 - 2019-09-18 20:30 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
2019-09-18 20:30 - 2019-09-18 20:30 - 000000000 ____D C:\Program Files\Malwarebytes
2019-09-18 20:30 - 2019-08-27 05:50 - 000153312 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbae64.sys
2019-09-18 20:30 - 2019-06-26 13:00 - 000020936 _____ (Malwarebytes) C:\Windows\system32\Drivers\MbamElam.sys
2019-09-17 20:42 - 2019-09-22 22:52 - 000000424 __RSH C:\ProgramData\ntuser.pol
2019-09-16 20:05 - 2019-09-16 20:05 - 001993528 _____ (Microsoft Corporation) C:\Windows\system32\mcupdate_GenuineIntel.dll
2019-09-16 14:48 - 2019-09-16 14:48 - 000000000 ____D C:\Users\KB\AppData\Local\Comms
2019-09-16 14:38 - 2019-09-16 14:38 - 000000000 ____D C:\ProgramData\Packages
2019-09-15 14:24 - 2019-09-18 20:30 - 000000000 ____D C:\ProgramData\Malwarebytes
2019-09-15 14:24 - 2019-09-15 14:24 - 000000000 ____D C:\Windows\system32\Drivers\etc\BACKUP
2019-09-15 14:24 - 2019-09-15 14:24 - 000000000 ____D C:\Program Files (x86)\Malwarebytes
2019-09-14 13:59 - 2019-09-18 19:51 - 000000000 ____D C:\Users\KB\AppData\Roaming\dvdcss
2019-09-12 20:30 - 2019-09-12 20:30 - 000000000 ____D C:\Users\KB\AppData\Local\ElevatedDiagnostics
2019-09-11 19:20 - 2019-09-11 19:20 - 000004542 _____ C:\Windows\System32\Tasks\Adobe Flash Player NPAPI Notifier
2019-09-11 19:20 - 2019-09-11 19:20 - 000004378 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2019-09-11 19:20 - 2019-09-11 19:20 - 000000000 ____D C:\Users\KB\AppData\Roaming\Macromedia
2019-09-10 19:56 - 2019-09-10 20:06 - 000000000 ____D C:\Users\KB\AppData\Local\BitTorrentHelper
2019-09-10 19:55 - 2019-09-13 12:44 - 000000000 ____D C:\Users\KB\AppData\Roaming\uTorrent
2019-09-10 19:55 - 2019-09-10 19:55 - 000000893 _____ C:\Users\KB\Desktop\µTorrent.lnk
2019-09-10 19:55 - 2019-09-10 19:55 - 000000873 _____ C:\Users\KB\AppData\Roaming\Microsoft\Windows\Start Menu\µTorrent.lnk
2019-09-10 19:32 - 2019-09-10 19:32 - 000000000 ____D C:\Program Files\TAP-Windows
2019-09-10 15:50 - 2019-09-10 15:50 - 000001052 _____ C:\Users\KB\Desktop\DVD Shrink 3.2.lnk
2019-09-10 15:50 - 2019-09-10 15:50 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVD Shrink
2019-09-10 15:50 - 2019-09-10 15:50 - 000000000 ____D C:\ProgramData\DVD Shrink
2019-09-10 15:50 - 2019-09-10 15:50 - 000000000 ____D C:\Program Files (x86)\DVD Shrink
2019-09-10 15:33 - 2019-09-13 12:36 - 000000208 _____ C:\Windows\Tasks\AutoKMS.job
2019-09-10 15:33 - 2019-09-10 15:33 - 000614400 _____ C:\Windows\AutoKMS.exe
2019-09-10 15:33 - 2019-09-10 15:33 - 000002470 _____ C:\Windows\System32\Tasks\AutoKMS
2019-09-10 15:33 - 2019-09-10 15:33 - 000000135 _____ C:\Windows\AutoKMS.ini
2019-09-10 15:28 - 2019-09-10 15:28 - 000000000 ____D C:\Windows\System32\Tasks\OfficeSoftwareProtectionPlatform
2019-09-10 15:28 - 2019-09-10 15:28 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
2019-09-10 15:28 - 2019-09-10 15:28 - 000000000 ____D C:\Program Files\Common Files\DESIGNER
2019-09-10 15:27 - 2019-09-10 15:27 - 000000000 ____D C:\Windows\PCHEALTH
2019-09-10 15:27 - 2019-09-10 15:27 - 000000000 ____D C:\Program Files\Microsoft Synchronization Services
2019-09-10 15:27 - 2019-09-10 15:27 - 000000000 ____D C:\Program Files\Microsoft SQL Server Compact Edition
2019-09-10 15:22 - 2019-09-10 15:28 - 000000000 ____D C:\Windows\SHELLNEW
2019-09-10 15:22 - 2019-09-10 15:22 - 000000000 ____D C:\Program Files\Microsoft Analysis Services
2019-09-10 15:22 - 2019-09-10 15:22 - 000000000 ____D C:\Program Files (x86)\Microsoft Analysis Services
2019-09-10 15:21 - 2019-09-10 15:27 - 000000000 ____D C:\Program Files\Microsoft Office
2019-09-10 15:21 - 2019-09-10 15:21 - 000000000 __RHD C:\MSOCache
2019-09-10 15:21 - 2019-09-10 15:21 - 000000000 ____D C:\Users\KB\AppData\Local\Microsoft Help
2019-09-10 15:21 - 2019-09-10 15:21 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2019-09-10 15:05 - 2019-09-18 18:25 - 000000000 ____D C:\ProgramData\VSO
2019-09-10 15:05 - 2019-09-10 15:05 - 000099384 _____ C:\Users\KB\AppData\Roaming\inst.exe
2019-09-10 15:05 - 2019-09-10 15:05 - 000082816 _____ (VSO Software) C:\Users\KB\AppData\Roaming\pcouffin.sys
2019-09-10 15:05 - 2019-09-10 15:05 - 000007859 _____ C:\Users\KB\AppData\Roaming\pcouffin.cat
2019-09-10 15:05 - 2019-09-10 15:05 - 000001305 _____ C:\Users\KB\Desktop\ConvertXToDVD 7.lnk
2019-09-10 15:05 - 2019-09-10 15:05 - 000000000 ____D C:\Users\KB\AppData\Roaming\VSO
2019-09-10 15:05 - 2019-09-10 15:05 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VSO
2019-09-10 15:05 - 2019-09-10 15:05 - 000000000 ____D C:\Program Files (x86)\VSO
2019-09-09 20:05 - 2019-09-12 20:24 - 000002251 _____ C:\Users\Public\Desktop\Age of Empires II.lnk
2019-09-09 20:05 - 2019-09-09 20:05 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Games
2019-09-09 20:05 - 1999-10-01 13:08 - 000014368 _____ C:\Windows\SysWOW64\Drivers\SECDRV.SYS
2019-09-09 20:04 - 2019-09-09 20:04 - 000000000 ____D C:\Program Files (x86)\Microsoft Games
2019-09-09 19:53 - 2019-09-09 19:55 - 000000000 ____D C:\Users\KB\AppData\Roaming\Winamp
2019-09-09 19:53 - 2019-09-09 19:53 - 000000000 ____D C:\Users\KB\AppData\Local\PeerDistRepub
2019-09-09 19:53 - 2019-09-09 19:53 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Winamp
2019-09-09 19:53 - 2019-09-09 19:53 - 000000000 ____D C:\Program Files (x86)\Winamp
2019-09-09 19:44 - 2019-09-24 17:03 - 000000000 ____D C:\Users\KB\AppData\Local\Everything
2019-09-09 19:41 - 2019-09-09 19:41 - 000772176 _____ (Microsoft Corporation) C:\Windows\system32\ucrtbase_clr0400.dll
2019-09-09 19:41 - 2019-09-09 19:41 - 000702400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ucrtbase_clr0400.dll
2019-09-09 19:41 - 2019-09-09 19:41 - 000622832 _____ (Microsoft Corporation) C:\Windows\system32\msvcp140_clr0400.dll
2019-09-09 19:41 - 2019-09-09 19:41 - 000433448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcp140_clr0400.dll
2019-09-09 19:41 - 2019-09-09 19:41 - 000087296 _____ (Microsoft Corporation) C:\Windows\system32\vcruntime140_clr0400.dll
2019-09-09 19:41 - 2019-09-09 19:41 - 000083768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vcruntime140_clr0400.dll
2019-09-09 19:40 - 2019-09-09 19:40 - 000032816 _____ (Microsoft Corporation) C:\Windows\system32\aspnet_counters.dll
2019-09-09 19:40 - 2019-09-09 19:40 - 000029232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\aspnet_counters.dll
2019-09-09 19:40 - 2019-09-09 19:40 - 000017968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcr100_clr0400.dll
2019-09-09 19:40 - 2019-09-09 19:40 - 000017968 _____ (Microsoft Corporation) C:\Windows\system32\msvcr100_clr0400.dll
2019-09-09 19:38 - 2019-09-09 19:38 - 000003936 _____ C:\Windows\System32\Tasks\CCleaner Update
2019-09-09 19:38 - 2019-09-09 19:38 - 000002864 _____ C:\Windows\System32\Tasks\CCleanerSkipUAC
2019-09-09 19:38 - 2019-09-09 19:38 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2019-09-09 19:38 - 2019-09-09 19:38 - 000000000 ____D C:\Program Files\CCleaner
2019-09-09 19:34 - 2019-09-09 19:34 - 000000946 _____ C:\Users\Public\Desktop\GIMP 2.10.12.lnk
2019-09-09 19:34 - 2019-09-09 19:34 - 000000946 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GIMP 2.10.12.lnk
2019-09-09 19:33 - 2019-09-16 14:47 - 000000000 ____D C:\Users\KB\AppData\Roaming\ImgBurn
2019-09-09 19:32 - 2019-09-09 19:33 - 000000000 ____D C:\Program Files\GIMP 2
2019-09-09 19:29 - 2019-09-21 14:29 - 000000000 ____D C:\Users\KB\AppData\LocalLow\Adobe
2019-09-09 19:29 - 2019-09-11 19:20 - 000000000 ____D C:\Users\KB\AppData\Local\Adobe
2019-09-09 19:29 - 2019-09-09 19:29 - 000000000 ____D C:\Users\KB\AppData\Local\CEF
2019-09-09 19:28 - 2019-09-24 17:03 - 000000000 ____D C:\Users\KB\AppData\Roaming\Everything
2019-09-09 19:28 - 2019-09-12 19:50 - 000004562 _____ C:\Windows\System32\Tasks\Adobe Acrobat Update Task
2019-09-09 19:28 - 2019-09-12 19:49 - 000002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2019-09-09 19:28 - 2019-09-09 19:28 - 000002124 _____ C:\Users\Public\Desktop\Acrobat Reader DC.lnk
2019-09-09 19:28 - 2019-09-09 19:28 - 000001946 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ImgBurn.lnk
2019-09-09 19:28 - 2019-09-09 19:28 - 000001934 _____ C:\Users\Public\Desktop\ImgBurn.lnk
2019-09-09 19:28 - 2019-09-09 19:28 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ImgBurn
2019-09-09 19:28 - 2019-09-09 19:28 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Everything
2019-09-09 19:28 - 2019-09-09 19:28 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip
2019-09-09 19:28 - 2019-09-09 19:28 - 000000000 ____D C:\Program Files\Everything
2019-09-09 19:28 - 2019-09-09 19:28 - 000000000 ____D C:\Program Files (x86)\ImgBurn
2019-09-09 19:28 - 2019-09-09 19:28 - 000000000 ____D C:\Program Files (x86)\Adobe
2019-09-09 19:27 - 2019-09-09 19:30 - 000000000 ____D C:\ProgramData\Adobe
2019-09-09 19:27 - 2019-09-09 19:28 - 000000000 ____D C:\Program Files\7-Zip
2019-09-09 19:27 - 2019-09-09 19:27 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2019-09-09 19:26 - 2019-09-09 19:26 - 000000000 ____D C:\Program Files\Microsoft Silverlight
2019-09-09 19:26 - 2019-09-09 19:26 - 000000000 ____D C:\Program Files (x86)\Microsoft Silverlight
2019-09-09 16:27 - 2019-09-09 16:28 - 000000000 ____D C:\Windows\pss
2019-09-09 16:09 - 2019-09-21 21:37 - 000000000 ____D C:\Users\KB\AppData\Local\PlaceholderTileLogoFolder
2019-09-09 16:04 - 2019-09-09 16:04 - 000098288 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2019-09-09 16:04 - 2019-09-09 16:04 - 000000000 ____D C:\Users\KB\AppData\Roaming\Sun
2019-09-09 16:04 - 2019-09-09 16:04 - 000000000 ____D C:\Users\KB\AppData\LocalLow\Sun
2019-09-09 16:04 - 2019-09-09 16:04 - 000000000 ____D C:\ProgramData\Oracle
2019-09-09 16:04 - 2019-09-09 16:04 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2019-09-09 16:04 - 2019-09-09 16:04 - 000000000 ____D C:\Program Files (x86)\Java
2019-09-09 16:01 - 2019-09-09 16:01 - 000002140 _____ C:\Users\KB\Desktop\JDownloader 2.lnk
2019-09-09 16:01 - 2019-09-09 16:01 - 000000000 ____D C:\Users\KB\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\JDownloader
2019-09-09 15:58 - 2019-09-24 16:53 - 000000000 ____D C:\Users\KB\AppData\Local\JDownloader v2.0
2019-09-09 15:33 - 2019-09-21 18:15 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2019-09-09 15:33 - 2019-09-21 14:57 - 000000000 ____D C:\Users\KB\AppData\LocalLow\Mozilla
2019-09-09 15:33 - 2019-09-21 14:56 - 000001005 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2019-09-09 15:33 - 2019-09-09 15:33 - 000000000 ____D C:\Users\KB\AppData\Roaming\Mozilla
2019-09-09 15:33 - 2019-09-09 15:33 - 000000000 ____D C:\Users\KB\AppData\Local\Mozilla
2019-09-09 15:33 - 2019-09-09 15:33 - 000000000 ____D C:\ProgramData\Mozilla
2019-09-09 15:25 - 2019-09-09 15:25 - 000000000 ____D C:\Users\KB\AppData\Local\D3DSCache
2019-09-09 15:23 - 2019-09-22 22:02 - 000000000 ____D C:\Users\KB\AppData\Roaming\DMCache
2019-09-09 15:23 - 2019-09-21 14:50 - 000000000 ____D C:\Program Files (x86)\Internet Download Manager
2019-09-09 15:23 - 2019-09-21 14:48 - 000000000 ____D C:\Users\KB\AppData\Roaming\IDM
2019-09-09 15:23 - 2019-09-09 15:23 - 000000000 ____D C:\Users\KB\Downloads\Video
2019-09-09 15:23 - 2019-09-09 15:23 - 000000000 ____D C:\Users\KB\Downloads\Compressed
2019-09-09 15:23 - 2019-09-09 15:23 - 000000000 ____D C:\ProgramData\IDM
2019-09-09 15:09 - 2019-09-09 15:09 - 000000000 ____D C:\Users\KB\AppData\Local\mbamtray
2019-09-09 15:09 - 2019-09-09 15:09 - 000000000 ____D C:\Users\KB\AppData\Local\mbam
2019-09-09 15:06 - 2019-09-09 15:06 - 000000000 ____D C:\Users\KB\AppData\Roaming\Obsidium
2019-09-09 14:52 - 2019-09-09 14:52 - 000000000 ____D C:\Users\KB\AppData\Roaming\WinRAR
2019-09-09 14:51 - 2019-09-09 14:51 - 000000000 ____D C:\Users\KB\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2019-09-09 14:51 - 2019-09-09 14:51 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2019-09-09 14:51 - 2019-09-09 14:51 - 000000000 ____D C:\Program Files\WinRAR
2019-09-09 14:36 - 2019-09-09 14:36 - 000000000 ____D C:\ProgramData\USOShared
2019-09-08 22:50 - 2019-09-13 12:44 - 000000000 ____D C:\Windows\Panther
2019-09-08 22:49 - 2019-09-08 22:49 - 000008192 __RSH C:\BOOTSECT.BAK
2019-09-08 22:49 - 2018-10-29 19:57 - 000408074 __RSH C:\bootmgr
2019-09-08 22:49 - 2018-09-15 04:28 - 000000001 ___SH C:\BOOTNXT
2019-09-08 21:57 - 2019-09-08 21:57 - 000000000 _SHDL C:\Users\Public\Documents\Mis vídeos
2019-09-08 21:57 - 2019-09-08 21:57 - 000000000 _SHDL C:\Users\Public\Documents\Mis imágenes
2019-09-08 21:57 - 2019-09-08 21:57 - 000000000 _SHDL C:\Users\Public\Documents\Mi música
2019-09-08 21:57 - 2019-09-08 21:57 - 000000000 _SHDL C:\Users\Default\Reciente
2019-09-08 21:57 - 2019-09-08 21:57 - 000000000 _SHDL C:\Users\Default\Plantillas
2019-09-08 21:57 - 2019-09-08 21:57 - 000000000 _SHDL C:\Users\Default\Mis documentos
2019-09-08 21:57 - 2019-09-08 21:57 - 000000000 _SHDL C:\Users\Default\Menú Inicio
2019-09-08 21:57 - 2019-09-08 21:57 - 000000000 _SHDL C:\Users\Default\Impresoras
2019-09-08 21:57 - 2019-09-08 21:57 - 000000000 _SHDL C:\Users\Default\Entorno de red
2019-09-08 21:57 - 2019-09-08 21:57 - 000000000 _SHDL C:\Users\Default\Documents\Mis vídeos
2019-09-08 21:57 - 2019-09-08 21:57 - 000000000 _SHDL C:\Users\Default\Documents\Mis imágenes
2019-09-08 21:57 - 2019-09-08 21:57 - 000000000 _SHDL C:\Users\Default\Documents\Mi música
2019-09-08 21:57 - 2019-09-08 21:57 - 000000000 _SHDL C:\Users\Default\Datos de programa
2019-09-08 21:57 - 2019-09-08 21:57 - 000000000 _SHDL C:\Users\Default\Configuración local
2019-09-08 21:57 - 2019-09-08 21:57 - 000000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programas
2019-09-08 21:57 - 2019-09-08 21:57 - 000000000 _SHDL C:\Users\Default\AppData\Local\Historial
2019-09-08 21:57 - 2019-09-08 21:57 - 000000000 _SHDL C:\Users\Default\AppData\Local\Datos de programa
2019-09-08 21:57 - 2019-09-08 21:57 - 000000000 _SHDL C:\Users\Default\AppData\Local\Archivos temporales de Internet
2019-09-08 21:57 - 2019-09-08 21:57 - 000000000 _SHDL C:\Users\Default User\Documents\Mis vídeos
2019-09-08 21:57 - 2019-09-08 21:57 - 000000000 _SHDL C:\Users\Default User\Documents\Mis imágenes
2019-09-08 21:57 - 2019-09-08 21:57 - 000000000 _SHDL C:\Users\Default User\Documents\Mi música
2019-09-08 21:57 - 2019-09-08 21:57 - 000000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programas
2019-09-08 21:57 - 2019-09-08 21:57 - 000000000 _SHDL C:\Users\Default User\AppData\Local\Historial
2019-09-08 21:57 - 2019-09-08 21:57 - 000000000 _SHDL C:\Users\Default User\AppData\Local\Datos de programa
2019-09-08 21:57 - 2019-09-08 21:57 - 000000000 _SHDL C:\Users\Default User\AppData\Local\Archivos temporales de Internet
2019-09-08 21:57 - 2019-09-08 21:57 - 000000000 _SHDL C:\ProgramData\Plantillas
2019-09-08 21:57 - 2019-09-08 21:57 - 000000000 _SHDL C:\ProgramData\Microsoft\Windows\Start Menu\Programas
2019-09-08 21:57 - 2019-09-08 21:57 - 000000000 _SHDL C:\ProgramData\Menú Inicio
2019-09-08 21:57 - 2019-09-08 21:57 - 000000000 _SHDL C:\ProgramData\Escritorio
2019-09-08 21:57 - 2019-09-08 21:57 - 000000000 _SHDL C:\ProgramData\Documentos
2019-09-08 21:57 - 2019-09-08 21:57 - 000000000 _SHDL C:\ProgramData\Datos de programa
2019-09-08 21:57 - 2019-09-08 21:57 - 000000000 _SHDL C:\Program Files\Archivos comunes
2019-09-08 21:57 - 2019-09-08 21:57 - 000000000 _SHDL C:\Documents and Settings
2019-09-08 21:57 - 2019-09-08 21:57 - 000000000 _SHDL C:\Archivos de programa
2019-09-08 21:51 - 2019-09-24 17:43 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2019-09-08 21:51 - 2019-09-08 21:51 - 000000000 ____H `

`

2019-09-08 21:51 - 2019-09-08 21:51 - 000000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdFs_01_11_00.Wdf
2019-09-08 21:51 - 2019-09-08 21:51 - 000000000 ____D C:\Windows\system32\Drivers\wd
2019-09-08 21:50 - 2019-09-24 16:52 - 000000000 ____D C:\Windows\system32\SleepStudy
2019-09-08 21:50 - 2019-09-13 12:37 - 000452200 _____ C:\Windows\system32\FNTCACHE.DAT
2019-09-08 21:50 - 2019-09-08 21:50 - 000000000 ____D C:\Windows\ServiceProfiles
2019-09-08 21:37 - 2010-06-02 04:55 - 000527192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_7.dll
2019-09-08 21:37 - 2010-06-02 04:55 - 000518488 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_7.dll
2019-09-08 21:37 - 2010-06-02 04:55 - 000239960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_7.dll
2019-09-08 21:37 - 2010-06-02 04:55 - 000176984 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_7.dll
2019-09-08 21:37 - 2010-06-02 04:55 - 000077656 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_5.dll
2019-09-08 21:37 - 2010-06-02 04:55 - 000074072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_5.dll
2019-09-08 21:37 - 2010-05-26 11:41 - 002526056 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_43.dll
2019-09-08 21:37 - 2010-05-26 11:41 - 002106216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_43.dll
2019-09-08 21:37 - 2010-05-26 11:41 - 001907552 _____ (Microsoft Corporation) C:\Windows\system32\d3dcsx_43.dll
2019-09-08 21:37 - 2010-05-26 11:41 - 001868128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dcsx_43.dll
2019-09-08 21:37 - 2010-02-04 10:01 - 000530776 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_6.dll
2019-09-08 21:37 - 2010-02-04 10:01 - 000528216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_6.dll
2019-09-08 21:37 - 2010-02-04 10:01 - 000238936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_6.dll
2019-09-08 21:37 - 2010-02-04 10:01 - 000176984 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_6.dll
2019-09-08 21:37 - 2010-02-04 10:01 - 000078680 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_4.dll
2019-09-08 21:37 - 2010-02-04 10:01 - 000074072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_4.dll
2019-09-08 21:37 - 2010-02-04 10:01 - 000024920 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_7.dll
2019-09-08 21:37 - 2010-02-04 10:01 - 000022360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_7.dll
2019-09-08 21:37 - 2009-09-04 17:44 - 000517960 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_5.dll
2019-09-08 21:37 - 2009-09-04 17:44 - 000515416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_5.dll
2019-09-08 21:37 - 2009-09-04 17:44 - 000238936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_5.dll
2019-09-08 21:37 - 2009-09-04 17:44 - 000176968 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_5.dll
2019-09-08 21:37 - 2009-09-04 17:44 - 000073544 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_3.dll
2019-09-08 21:37 - 2009-09-04 17:44 - 000069464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_3.dll
2019-09-08 21:37 - 2009-09-04 17:29 - 005554512 _____ (Microsoft Corporation) C:\Windows\system32\d3dcsx_42.dll
2019-09-08 21:37 - 2009-09-04 17:29 - 005501792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dcsx_42.dll
2019-09-08 21:37 - 2009-09-04 17:29 - 002582888 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_42.dll
2019-09-08 21:37 - 2009-09-04 17:29 - 002475352 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_42.dll
2019-09-08 21:37 - 2009-09-04 17:29 - 001974616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_42.dll
2019-09-08 21:37 - 2009-09-04 17:29 - 001892184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_42.dll
2019-09-08 21:37 - 2009-09-04 17:29 - 000523088 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_42.dll
2019-09-08 21:37 - 2009-09-04 17:29 - 000453456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_42.dll
2019-09-08 21:37 - 2009-09-04 17:29 - 000285024 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_42.dll
2019-09-08 21:37 - 2009-09-04 17:29 - 000235344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_42.dll
2019-09-08 21:37 - 2009-03-16 14:18 - 000521560 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_4.dll
2019-09-08 21:37 - 2009-03-16 14:18 - 000517448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_4.dll
2019-09-08 21:37 - 2009-03-16 14:18 - 000235352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_4.dll
2019-09-08 21:37 - 2009-03-16 14:18 - 000174936 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_4.dll
2019-09-08 21:37 - 2009-03-16 14:18 - 000024920 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_6.dll
2019-09-08 21:37 - 2009-03-16 14:18 - 000022360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_6.dll
2019-09-08 21:37 - 2009-03-09 15:27 - 005425496 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_41.dll
2019-09-08 21:37 - 2009-03-09 15:27 - 004178264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_41.dll
2019-09-08 21:37 - 2009-03-09 15:27 - 002430312 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_41.dll
2019-09-08 21:37 - 2009-03-09 15:27 - 001846632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_41.dll
2019-09-08 21:37 - 2009-03-09 15:27 - 000520544 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_41.dll
2019-09-08 21:37 - 2009-03-09 15:27 - 000453456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_41.dll
2019-09-08 21:37 - 2008-10-27 10:04 - 000518480 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_3.dll
2019-09-08 21:37 - 2008-10-27 10:04 - 000514384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_3.dll
2019-09-08 21:37 - 2008-10-27 10:04 - 000235856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_3.dll
2019-09-08 21:37 - 2008-10-27 10:04 - 000175440 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_3.dll
2019-09-08 21:37 - 2008-10-27 10:04 - 000074576 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_2.dll
2019-09-08 21:37 - 2008-10-27 10:04 - 000070992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_2.dll
2019-09-08 21:37 - 2008-10-27 10:04 - 000025936 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_5.dll
2019-09-08 21:37 - 2008-10-27 10:04 - 000023376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_5.dll
2019-09-08 21:37 - 2008-10-10 04:52 - 005631312 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_40.dll
2019-09-08 21:37 - 2008-10-10 04:52 - 004379984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_40.dll
2019-09-08 21:37 - 2008-10-10 04:52 - 002605920 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_40.dll
2019-09-08 21:37 - 2008-10-10 04:52 - 002036576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_40.dll
2019-09-08 21:37 - 2008-10-10 04:52 - 000519000 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_40.dll
2019-09-08 21:37 - 2008-10-10 04:52 - 000452440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_40.dll
2019-09-08 21:37 - 2008-07-31 10:41 - 000238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_2.dll
2019-09-08 21:37 - 2008-07-31 10:41 - 000177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_2.dll
2019-09-08 21:37 - 2008-07-31 10:41 - 000072200 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_1.dll
2019-09-08 21:37 - 2008-07-31 10:41 - 000068616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_1.dll
2019-09-08 21:37 - 2008-07-31 10:40 - 000513544 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_2.dll
2019-09-08 21:37 - 2008-07-31 10:40 - 000509448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_2.dll
2019-09-08 21:37 - 2008-07-10 11:01 - 000467984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_39.dll
2019-09-08 21:37 - 2008-07-10 11:00 - 004992520 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_39.dll
2019-09-08 21:37 - 2008-07-10 11:00 - 003851784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_39.dll
2019-09-08 21:37 - 2008-07-10 11:00 - 001942552 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_39.dll
2019-09-08 21:37 - 2008-07-10 11:00 - 001493528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_39.dll
2019-09-08 21:37 - 2008-07-10 11:00 - 000540688 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_39.dll
2019-09-08 21:37 - 2008-05-30 14:19 - 000511496 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_1.dll
2019-09-08 21:37 - 2008-05-30 14:19 - 000507400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_1.dll
2019-09-08 21:37 - 2008-05-30 14:18 - 000238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_1.dll
2019-09-08 21:37 - 2008-05-30 14:18 - 000177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_1.dll
2019-09-08 21:37 - 2008-05-30 14:17 - 000068104 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_0.dll
2019-09-08 21:37 - 2008-05-30 14:17 - 000065032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_0.dll
2019-09-08 21:37 - 2008-05-30 14:17 - 000025608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_4.dll
2019-09-08 21:37 - 2008-05-30 14:16 - 000028168 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_4.dll
2019-09-08 21:37 - 2008-05-30 14:11 - 004991496 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_38.dll
2019-09-08 21:37 - 2008-05-30 14:11 - 003850760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_38.dll
2019-09-08 21:37 - 2008-05-30 14:11 - 001941528 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_38.dll
2019-09-08 21:37 - 2008-05-30 14:11 - 001491992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_38.dll
2019-09-08 21:37 - 2008-05-30 14:11 - 000540688 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_38.dll
2019-09-08 21:37 - 2008-05-30 14:11 - 000467984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_38.dll
2019-09-08 21:37 - 2008-03-05 16:04 - 000489480 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_0.dll
2019-09-08 21:37 - 2008-03-05 16:03 - 000479752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_0.dll
2019-09-08 21:37 - 2008-03-05 16:03 - 000238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_0.dll
2019-09-08 21:37 - 2008-03-05 16:03 - 000177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_0.dll
2019-09-08 21:37 - 2008-03-05 16:00 - 000028168 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_3.dll
2019-09-08 21:37 - 2008-03-05 16:00 - 000025608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_3.dll
2019-09-08 21:37 - 2008-03-05 15:56 - 004910088 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_37.dll
2019-09-08 21:37 - 2008-03-05 15:56 - 003786760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_37.dll
2019-09-08 21:37 - 2008-03-05 15:56 - 001860120 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_37.dll
2019-09-08 21:37 - 2008-03-05 15:56 - 001420824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_37.dll
2019-09-08 21:37 - 2008-02-05 23:07 - 000529424 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_37.dll
2019-09-08 21:37 - 2008-02-05 23:07 - 000462864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_37.dll
2019-09-08 21:37 - 2007-10-22 03:40 - 000411656 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_10.dll
2019-09-08 21:37 - 2007-10-22 03:39 - 000267272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_10.dll
2019-09-08 21:37 - 2007-10-22 03:37 - 000021000 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_2.dll
2019-09-08 21:37 - 2007-10-22 03:37 - 000017928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_2.dll
2019-09-08 21:37 - 2007-10-12 15:14 - 005081608 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_36.dll
2019-09-08 21:37 - 2007-10-12 15:14 - 003734536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_36.dll
2019-09-08 21:37 - 2007-10-12 15:14 - 002006552 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_36.dll
2019-09-08 21:37 - 2007-10-12 15:14 - 001374232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_36.dll
2019-09-08 21:37 - 2007-10-02 09:56 - 000508264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_36.dll
2019-09-08 21:37 - 2007-10-02 09:56 - 000444776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_36.dll
2019-09-08 21:37 - 2007-07-20 00:57 - 000411496 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_9.dll
2019-09-08 21:37 - 2007-07-20 00:57 - 000267112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_9.dll
2019-09-08 21:37 - 2007-07-19 18:14 - 005073256 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_35.dll
2019-09-08 21:37 - 2007-07-19 18:14 - 003727720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_35.dll
2019-09-08 21:37 - 2007-07-19 18:14 - 001985904 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_35.dll
2019-09-08 21:37 - 2007-07-19 18:14 - 001358192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_35.dll
2019-09-08 21:37 - 2007-07-19 18:14 - 000508264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_35.dll
2019-09-08 21:37 - 2007-07-19 18:14 - 000444776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_35.dll
2019-09-08 21:37 - 2007-06-20 20:49 - 000409960 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_8.dll
2019-09-08 21:37 - 2007-06-20 20:46 - 000266088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_8.dll
2019-09-08 21:37 - 2007-05-16 16:45 - 004496232 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_34.dll
2019-09-08 21:37 - 2007-05-16 16:45 - 003497832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_34.dll
2019-09-08 21:37 - 2007-05-16 16:45 - 001401200 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_34.dll
2019-09-08 21:37 - 2007-05-16 16:45 - 001124720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_34.dll
2019-09-08 21:37 - 2007-05-16 16:45 - 000506728 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_34.dll
2019-09-08 21:37 - 2007-05-16 16:45 - 000443752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_34.dll
2019-09-08 21:37 - 2007-04-04 18:55 - 000403304 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_7.dll
2019-09-08 21:37 - 2007-04-04 18:55 - 000261480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_7.dll
2019-09-08 21:37 - 2007-04-04 18:54 - 000107368 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_3.dll
2019-09-08 21:37 - 2007-04-04 18:53 - 000081768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_3.dll
2019-09-08 21:37 - 2007-03-15 16:57 - 000506728 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_33.dll
2019-09-08 21:37 - 2007-03-15 16:57 - 000443752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_33.dll
2019-09-08 21:37 - 2007-03-12 16:42 - 004494184 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_33.dll
2019-09-08 21:37 - 2007-03-12 16:42 - 003495784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_33.dll
2019-09-08 21:37 - 2007-03-12 16:42 - 001400176 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_33.dll
2019-09-08 21:37 - 2007-03-12 16:42 - 001123696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_33.dll
2019-09-08 21:37 - 2007-03-05 12:42 - 000017688 _____ (Microsoft Corporation) C:\Windows\system32\x3daudio1_1.dll
2019-09-08 21:37 - 2007-03-05 12:42 - 000015128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\x3daudio1_1.dll
2019-09-08 21:37 - 2007-01-24 15:27 - 000393576 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_6.dll
2019-09-08 21:37 - 2007-01-24 15:27 - 000255848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_6.dll
2019-09-08 21:37 - 2006-12-08 12:02 - 000251672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_5.dll
2019-09-08 21:37 - 2006-12-08 12:00 - 000390424 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_5.dll
2019-09-08 21:37 - 2006-11-29 13:06 - 004398360 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_32.dll
2019-09-08 21:37 - 2006-11-29 13:06 - 003426072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_32.dll
2019-09-08 21:37 - 2006-11-29 13:06 - 000469264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10.dll
2019-09-08 21:37 - 2006-11-29 13:06 - 000440080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10.dll
2019-09-08 21:37 - 2006-09-28 16:05 - 003977496 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_31.dll
2019-09-08 21:37 - 2006-09-28 16:05 - 002414360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_31.dll
2019-09-08 21:37 - 2006-09-28 16:05 - 000237848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_4.dll
2019-09-08 21:37 - 2006-09-28 16:04 - 000364824 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_4.dll
2019-09-08 21:37 - 2006-07-28 09:31 - 000083736 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_2.dll
2019-09-08 21:37 - 2006-07-28 09:30 - 000363288 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_3.dll
2019-09-08 21:37 - 2006-07-28 09:30 - 000236824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_3.dll
2019-09-08 21:37 - 2006-07-28 09:30 - 000062744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_2.dll
2019-09-08 21:37 - 2006-05-31 07:24 - 000230168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_2.dll
2019-09-08 21:37 - 2006-05-31 07:22 - 000354072 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_2.dll
2019-09-08 21:37 - 2006-03-31 12:41 - 003927248 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_30.dll
2019-09-08 21:37 - 2006-03-31 12:40 - 002388176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_30.dll
2019-09-08 21:37 - 2006-03-31 12:40 - 000352464 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_1.dll
2019-09-08 21:37 - 2006-03-31 12:39 - 000229584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_1.dll
2019-09-08 21:37 - 2006-03-31 12:39 - 000083664 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_1.dll
2019-09-08 21:37 - 2006-03-31 12:39 - 000062672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_1.dll
2019-09-08 21:37 - 2006-02-03 08:43 - 003830992 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_29.dll
2019-09-08 21:37 - 2006-02-03 08:43 - 002332368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_29.dll
2019-09-08 21:37 - 2006-02-03 08:42 - 000355536 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_0.dll
2019-09-08 21:37 - 2006-02-03 08:42 - 000230096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_0.dll
2019-09-08 21:37 - 2006-02-03 08:41 - 000016592 _____ (Microsoft Corporation) C:\Windows\system32\x3daudio1_0.dll
2019-09-08 21:37 - 2006-02-03 08:41 - 000014032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\x3daudio1_0.dll
2019-09-08 21:37 - 2005-12-05 18:09 - 003815120 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_28.dll
2019-09-08 21:37 - 2005-12-05 18:09 - 002323664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_28.dll
2019-09-08 21:37 - 2005-07-22 19:59 - 003807440 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_27.dll
2019-09-08 21:37 - 2005-07-22 19:59 - 002319568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_27.dll
2019-09-08 21:36 - 2005-05-26 15:34 - 003767504 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_26.dll
2019-09-08 21:36 - 2005-05-26 15:34 - 002297552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_26.dll
2019-09-08 21:36 - 2005-03-18 17:19 - 003823312 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_25.dll
2019-09-08 21:36 - 2005-03-18 17:19 - 002337488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_25.dll
2019-09-08 21:36 - 2005-02-05 19:45 - 003544272 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_24.dll
2019-09-08 21:36 - 2005-02-05 19:45 - 002222800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_24.dll
2019-09-08 21:31 - 2019-09-08 21:37 - 000000000 ____D C:\Windows\SysWOW64\directx
2019-09-08 21:31 - 2019-09-08 21:31 - 000003274 _____ C:\Windows\System32\Tasks\klcp_update
2019-09-08 21:31 - 2019-09-08 21:31 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack
2019-09-08 21:31 - 2019-09-08 21:31 - 000000000 ____D C:\Program Files (x86)\K-Lite Codec Pack
2019-09-08 20:45 - 2019-09-08 20:45 - 000000000 ____D C:\Users\KB\AppData\Local\NVIDIA Corporation
2019-09-08 20:44 - 2019-09-08 20:44 - 000000000 ____D C:\Users\KB\AppData\Local\NVIDIA
2019-09-08 20:44 - 2019-09-08 20:44 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2019-09-08 20:44 - 2019-09-08 20:44 - 000000000 ____D C:\Program Files (x86)\AGEIA Technologies
2019-09-08 20:44 - 2016-11-14 09:30 - 001767712 _____ (NVIDIA Corporation) C:\Windows\system32\nvspcap64.dll
2019-09-08 20:44 - 2016-11-14 09:30 - 001756560 _____ (NVIDIA Corporation) C:\Windows\system32\nvspbridge64.dll
2019-09-08 20:44 - 2016-11-14 09:30 - 001377752 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspcap.dll
2019-09-08 20:44 - 2016-11-14 09:30 - 001316136 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspbridge.dll
2019-09-08 20:44 - 2016-11-14 09:30 - 000112168 _____ C:\Windows\system32\NvRtmpStreamer64.dll
2019-09-08 20:44 - 2010-05-26 11:41 - 002401112 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_43.dll
2019-09-08 20:44 - 2010-05-26 11:41 - 001998168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_43.dll
2019-09-08 20:44 - 2010-05-26 11:41 - 000511328 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_43.dll
2019-09-08 20:44 - 2010-05-26 11:41 - 000470880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_43.dll
2019-09-08 20:44 - 2010-05-26 11:41 - 000276832 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_43.dll
2019-09-08 20:44 - 2010-05-26 11:41 - 000248672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_43.dll
2019-09-08 20:43 - 2019-09-24 17:43 - 000000000 ____D C:\ProgramData\NVIDIA
2019-09-08 20:43 - 2019-09-08 20:44 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2019-09-08 20:43 - 2016-11-14 08:15 - 006789056 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
2019-09-08 20:43 - 2016-11-14 08:15 - 003528128 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc64.dll
2019-09-08 20:43 - 2016-11-14 08:15 - 002558512 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvcr.dll
2019-09-08 20:43 - 2016-11-14 08:15 - 000932728 _____ (NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
2019-09-08 20:43 - 2016-11-14 08:15 - 000384888 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll
2019-09-08 20:43 - 2016-11-14 08:15 - 000062328 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll
2019-09-08 20:43 - 2016-11-14 06:45 - 000615992 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvStreaming.exe
2019-09-08 20:43 - 2016-11-14 06:09 - 007513855 _____ C:\Windows\system32\nvcoproc.bin
2019-09-08 20:42 - 2019-09-08 20:42 - 000000000 ____D C:\ProgramData\Package Cache
2019-09-08 20:42 - 2019-09-08 20:42 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2019-09-08 20:41 - 2016-11-14 09:30 - 031523384 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
2019-09-08 20:41 - 2016-11-14 09:30 - 024208440 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2019-09-08 20:41 - 2016-11-14 09:30 - 023000000 _____ (NVIDIA Corporation) C:\Windows\system32\nvcompiler.dll
2019-09-08 20:41 - 2016-11-14 09:30 - 018634216 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2umx.dll
2019-09-08 20:41 - 2016-11-14 09:30 - 017559384 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll
2019-09-08 20:41 - 2016-11-14 09:30 - 016128720 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll
2019-09-08 20:41 - 2016-11-14 09:30 - 015301056 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcompiler.dll
2019-09-08 20:41 - 2016-11-14 09:30 - 014497712 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll
2019-09-08 20:41 - 2016-11-14 09:30 - 013915720 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2019-09-08 20:41 - 2016-11-14 09:30 - 013826968 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2019-09-08 20:41 - 2016-11-14 09:30 - 012905016 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2019-09-08 20:41 - 2016-11-14 09:30 - 011270656 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
2019-09-08 20:41 - 2016-11-14 09:30 - 011208312 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2019-09-08 20:41 - 2016-11-14 09:30 - 004253240 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2019-09-08 20:41 - 2016-11-14 09:30 - 003995192 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2019-09-08 20:41 - 2016-11-14 09:30 - 003207824 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
2019-09-08 20:41 - 2016-11-14 09:30 - 002822568 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2019-09-08 20:41 - 2016-11-14 09:30 - 001908272 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6434201.dll
2019-09-08 20:41 - 2016-11-14 09:30 - 001557552 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6434201.dll
2019-09-08 20:41 - 2016-11-14 09:30 - 001515296 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdagenco6420103.dll
2019-09-08 20:41 - 2016-11-14 09:30 - 000951232 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2019-09-08 20:41 - 2016-11-14 09:30 - 000913856 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2019-09-08 20:41 - 2016-11-14 09:30 - 000909760 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2019-09-08 20:41 - 2016-11-14 09:30 - 000876480 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2019-09-08 20:41 - 2016-11-14 09:30 - 000197408 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvhda64v.sys
2019-09-08 20:41 - 2016-11-14 09:30 - 000114744 _____ (NVIDIA Corporation) C:\Windows\system32\nvaudcap64v.dll
2019-09-08 20:41 - 2016-11-14 09:30 - 000104512 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvaudcap32v.dll
2019-09-08 20:41 - 2016-11-14 09:30 - 000056384 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvad64v.sys
2019-09-08 20:41 - 2016-11-14 09:30 - 000031520 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdap64.dll
2019-09-08 20:41 - 2016-11-14 09:30 - 000026157 _____ C:\Windows\system32\nvinfo.pb
2019-09-08 20:40 - 2019-09-08 20:44 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2019-09-08 20:27 - 2019-09-08 20:27 - 000000000 ____D C:\Users\KB\AppData\Roaming\Google
2019-09-08 20:26 - 2019-09-18 14:44 - 000002299 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2019-09-08 20:26 - 2019-09-08 20:39 - 000000000 ____D C:\Users\KB\AppData\Local\Google
2019-09-08 20:24 - 2019-09-08 20:30 - 000003556 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2019-09-08 20:24 - 2019-09-08 20:30 - 000003432 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2019-09-08 20:24 - 2019-09-08 20:25 - 000000000 ____D C:\Program Files (x86)\Google
2019-09-08 20:19 - 2019-09-24 16:59 - 000000000 ____D C:\Users\KB\AppData\Roaming\vlc
2019-09-08 20:19 - 2019-09-08 20:19 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2019-09-08 20:19 - 2019-09-08 20:19 - 000000000 ____D C:\Program Files\VideoLAN
2019-09-08 20:13 - 2019-09-08 20:13 - 000054310 _____ C:\Windows\system32\NOTICE_mod
2019-09-08 20:09 - 2019-09-08 20:09 - 000000000 ____D C:\Users\KB\AppData\Local\ESET
2019-09-08 20:09 - 2019-09-08 20:09 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ESET
2019-09-08 20:09 - 2019-09-08 20:09 - 000000000 ____D C:\ProgramData\ESET
2019-09-08 20:09 - 2019-09-08 20:09 - 000000000 ____D C:\Program Files\ESET
2019-09-08 20:01 - 2019-09-09 19:51 - 001767626 _____ C:\Windows\system32\PerfStringBackup.INI
2019-09-08 19:59 - 2019-09-21 21:37 - 000000000 ____D C:\Users\KB\AppData\Local\Packages
2019-09-08 19:59 - 2019-09-12 20:03 - 000000000 __RHD C:\Users\Public\AccountPictures
2019-09-08 19:59 - 2019-09-09 19:29 - 000000000 ____D C:\Users\KB\AppData\Roaming\Adobe
2019-09-08 19:59 - 2019-09-08 19:59 - 000000000 ____D C:\Windows\CSC
2019-09-08 19:59 - 2018-09-15 04:28 - 002864640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PrintConfig.dll
2019-09-08 19:58 - 2019-09-08 20:00 - 000000000 ____D C:\Users\KB\AppData\Local\ConnectedDevicesPlatform
2019-09-08 19:58 - 2019-09-08 19:59 - 000000000 ____D C:\Users\KB
2019-09-08 19:58 - 2019-09-08 19:58 - 000000020 ___SH C:\Users\KB\ntuser.ini
2019-09-08 19:58 - 2019-09-08 19:58 - 000000000 _SHDL C:\Users\KB\Reciente
2019-09-08 19:58 - 2019-09-08 19:58 - 000000000 _SHDL C:\Users\KB\Plantillas
2019-09-08 19:58 - 2019-09-08 19:58 - 000000000 _SHDL C:\Users\KB\Mis documentos
2019-09-08 19:58 - 2019-09-08 19:58 - 000000000 _SHDL C:\Users\KB\Menú Inicio
2019-09-08 19:58 - 2019-09-08 19:58 - 000000000 _SHDL C:\Users\KB\Impresoras
2019-09-08 19:58 - 2019-09-08 19:58 - 000000000 _SHDL C:\Users\KB\Entorno de red
2019-09-08 19:58 - 2019-09-08 19:58 - 000000000 _SHDL C:\Users\KB\Documents\Mis vídeos
2019-09-08 19:58 - 2019-09-08 19:58 - 000000000 _SHDL C:\Users\KB\Documents\Mis imágenes
2019-09-08 19:58 - 2019-09-08 19:58 - 000000000 _SHDL C:\Users\KB\Documents\Mi música
2019-09-08 19:58 - 2019-09-08 19:58 - 000000000 _SHDL C:\Users\KB\Datos de programa
2019-09-08 19:58 - 2019-09-08 19:58 - 000000000 _SHDL C:\Users\KB\Configuración local
2019-09-08 19:58 - 2019-09-08 19:58 - 000000000 _SHDL C:\Users\KB\AppData\Roaming\Microsoft\Windows\Start Menu\Programas
2019-09-08 19:58 - 2019-09-08 19:58 - 000000000 _SHDL C:\Users\KB\AppData\Local\Historial
2019-09-08 19:58 - 2019-09-08 19:58 - 000000000 _SHDL C:\Users\KB\AppData\Local\Datos de programa
2019-09-08 19:58 - 2019-09-08 19:58 - 000000000 _SHDL C:\Users\KB\AppData\Local\Archivos temporales de Internet

==================== One month (modified) ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-09-24 17:03 - 2018-09-15 03:09 - 000262144 _____ C:\Windows\system32\config\BBI
2019-09-24 15:09 - 2018-09-15 04:33 - 000000000 ___HD C:\Program Files\WindowsApps
2019-09-24 15:09 - 2018-09-15 04:33 - 000000000 ____D C:\Windows\AppReadiness
2019-09-24 15:05 - 2018-09-15 04:33 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2019-09-21 21:48 - 2018-09-15 13:39 - 000786294 _____ C:\Windows\system32\perfh00A.dat
2019-09-21 21:48 - 2018-09-15 13:39 - 000155128 _____ C:\Windows\system32\perfc00A.dat
2019-09-21 21:48 - 2018-09-15 04:23 - 000000000 ____D C:\Windows\CbsTemp
2019-09-21 21:47 - 2018-09-15 13:39 - 000000000 ____D C:\Windows\SysWOW64\WCN
2019-09-21 21:47 - 2018-09-15 13:39 - 000000000 ____D C:\Windows\system32\WCN
2019-09-21 21:47 - 2018-09-15 13:39 - 000000000 ____D C:\Windows\system32\es
2019-09-21 21:47 - 2018-09-15 04:33 - 000000000 ___SD C:\Windows\SysWOW64\F12
2019-09-21 21:47 - 2018-09-15 04:33 - 000000000 ___SD C:\Windows\system32\F12
2019-09-21 21:47 - 2018-09-15 04:33 - 000000000 ____D C:\Windows\SysWOW64\oobe
2019-09-21 21:47 - 2018-09-15 04:33 - 000000000 ____D C:\Windows\SystemApps
2019-09-21 21:47 - 2018-09-15 04:33 - 000000000 ____D C:\Windows\system32\SystemResetPlatform
2019-09-21 21:47 - 2018-09-15 04:33 - 000000000 ____D C:\Windows\system32\migwiz
2019-09-21 21:46 - 2018-09-15 13:41 - 000000000 ____D C:\Program Files\Windows Photo Viewer
2019-09-21 21:46 - 2018-09-15 13:41 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2019-09-21 21:46 - 2018-09-15 13:41 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2019-09-21 21:46 - 2018-09-15 04:33 - 000000000 ___RD C:\Windows\ImmersiveControlPanel
2019-09-21 21:46 - 2018-09-15 04:33 - 000000000 ____D C:\Program Files\Common Files\system
2019-09-21 21:46 - 2018-09-15 04:33 - 000000000 ____D C:\Program Files (x86)\Windows Defender
2019-09-21 21:40 - 2018-09-15 04:33 - 000000000 ____D C:\Windows\SysWOW64\Macromed
2019-09-21 21:03 - 2018-09-15 04:31 - 000000000 ____D C:\Windows\INF
2019-09-18 20:30 - 2018-09-15 04:33 - 000000000 ___HD C:\Windows\ELAMBKUP
2019-09-17 20:42 - 2018-09-15 04:33 - 000000000 ___HD C:\Windows\system32\GroupPolicy
2019-09-17 20:42 - 2018-09-15 04:33 - 000000000 ____D C:\Windows\SysWOW64\GroupPolicy
2019-09-16 19:50 - 2018-09-15 04:33 - 000000000 ____D C:\ProgramData\USOPrivate
2019-09-16 15:19 - 2018-09-15 03:09 - 000000000 ____D C:\Windows\servicing
2019-09-16 14:46 - 2018-09-15 13:41 - 000000000 ____D C:\Windows\OCR
2019-09-11 19:20 - 2018-09-15 04:33 - 000000000 ____D C:\Windows\system32\Macromed
2019-09-10 15:28 - 2018-09-15 04:33 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2019-09-08 22:49 - 2018-09-15 04:36 - 000000000 ____D C:\Windows\Setup
2019-09-08 22:49 - 2018-09-15 04:31 - 000028672 _____ C:\Windows\system32\config\BCD-Template
2019-09-08 21:57 - 2018-09-15 04:33 - 000000000 ____D C:\Program Files\windows nt
2019-09-08 21:52 - 2018-09-15 04:33 - 000000000 ___RD C:\Windows\PrintDialog
2019-09-08 21:51 - 2018-09-15 04:33 - 000000000 ____D C:\Windows\ServiceState
2019-09-08 21:41 - 2018-09-15 04:41 - 000385536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnet.dll
2019-09-08 21:41 - 2018-09-15 04:41 - 000215552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dplayx.dll
2019-09-08 21:41 - 2018-09-15 04:41 - 000061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnathlp.dll
2019-09-08 21:41 - 2018-09-15 04:41 - 000045568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpwsockx.dll
2019-09-08 21:41 - 2018-09-15 04:41 - 000023552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpmodemx.dll
2019-09-08 21:41 - 2018-09-15 04:41 - 000022528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnsvr.exe
2019-09-08 21:41 - 2018-09-15 04:41 - 000020480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dplaysvr.exe
2019-09-08 21:41 - 2018-09-15 04:41 - 000008192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnhupnp.dll
2019-09-08 21:41 - 2018-09-15 04:41 - 000008192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnhpast.dll
2019-09-08 21:41 - 2018-09-15 04:41 - 000005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnlobby.dll
2019-09-08 21:41 - 2018-09-15 04:41 - 000005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnaddr.dll
2019-09-08 21:41 - 2018-09-15 04:37 - 000472576 _____ (Microsoft Corporation) C:\Windows\system32\dpnet.dll
2019-09-08 21:41 - 2018-09-15 04:37 - 000067584 _____ (Microsoft Corporation) C:\Windows\system32\dpnathlp.dll
2019-09-08 21:41 - 2018-09-15 04:37 - 000027136 _____ (Microsoft Corporation) C:\Windows\system32\dpnsvr.exe
2019-09-08 21:41 - 2018-09-15 04:37 - 000010240 _____ (Microsoft Corporation) C:\Windows\system32\dpnhupnp.dll
2019-09-08 21:41 - 2018-09-15 04:37 - 000010240 _____ (Microsoft Corporation) C:\Windows\system32\dpnhpast.dll
2019-09-08 21:41 - 2018-09-15 04:37 - 000006144 _____ (Microsoft Corporation) C:\Windows\system32\dpnlobby.dll
2019-09-08 21:41 - 2018-09-15 04:37 - 000006144 _____ (Microsoft Corporation) C:\Windows\system32\dpnaddr.dll
2019-09-08 20:43 - 2018-09-15 04:33 - 000000000 ____D C:\Windows\Help
2019-09-08 20:01 - 2018-09-15 04:33 - 000000000 ____D C:\Windows\system32\WinBioDatabase
2019-09-08 19:59 - 2018-09-15 04:33 - 000000000 ____D C:\Windows\system32\spool
2019-09-08 19:59 - 2018-09-15 04:33 - 000000000 ____D C:\Windows\system32\FxsTmp
2019-09-04 16:44 - 2018-09-15 04:36 - 000835480 _____ (Adobe) C:\Windows\SysWOW64\FlashPlayerApp.exe
2019-09-04 16:44 - 2018-09-15 04:36 - 000179816 _____ (Adobe) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl

==================== Files in the root of some directories ================

2019-09-10 15:05 - 2019-09-10 15:05 - 000099384 _____ () C:\Users\KB\AppData\Roaming\inst.exe
2019-09-10 15:05 - 2019-09-10 15:05 - 000007859 _____ () C:\Users\KB\AppData\Roaming\pcouffin.cat
2019-09-10 15:05 - 2019-09-10 15:05 - 000001167 _____ () C:\Users\KB\AppData\Roaming\pcouffin.inf
2019-09-10 15:05 - 2019-09-10 15:05 - 000000055 _____ () C:\Users\KB\AppData\Roaming\pcouffin.log
2019-09-10 15:05 - 2019-09-10 15:05 - 000082816 _____ (VSO Software) C:\Users\KB\AppData\Roaming\pcouffin.sys

==================== FLock ================

2019-09-08 19:59 C:\Windows\CSC

==================== SigCheck ===============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ============================

Hola

Abrí un nuevo archivo Notepad y copia y pega este contenido:

Start
CreateRestorePoint:
CloseProcesses
HKLM\...\Policies\Explorer: [SettingsPageVisibility] hide:maps
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-19\...\RunOnce: [HttpAcceptLanguageOptOut] => REG ADD "HKCU\Control Panel\International\User Profile" /v "HttpAcceptLanguageOptOut" /t REG_DWORD /f /d 1 <==== ATTENTION
HKU\S-1-5-20\...\RunOnce: [HttpAcceptLanguageOptOut] => REG ADD "HKCU\Control Panel\International\User Profile" /v "HttpAcceptLanguageOptOut" /t REG_DWORD /f /d 1 <==== ATTENTION
HKU\S-1-5-21-55810073-3915787847-1979356537-1000\...\Run: [IDMan] => C:\Program Files (x86)\Internet Download Manager\IDMan.exe [4091960 2019-09-21] (Tonec Inc.) [File not signed]
HKU\S-1-5-18\...\RunOnce: [HttpAcceptLanguageOptOut] => REG ADD "HKCU\Control Panel\International\User Profile" /v "HttpAcceptLanguageOptOut" /t REG_DWORD /f /d 1 <==== ATTENTION
HKLM\...\Drivers32: [vidc.iv50] => C:\Windows\SysWOW64\ir50_32.dll [739328 1998-08-08] (Intel Corporation) [File not signed]
HKLM\...\Drivers32: [msacm.iac2] => C:\Windows\SysWOW64\iac25_32.ax [199680 1998-05-08] (Intel Corporation) [File not signed]
HKLM\...\Drivers32: [VIDC.IV41] => C:\Windows\SysWOW64\IR41_32.AX [848384 1998-02-26] (Intel Corporation) [File not signed]
GroupPolicy: Restriction ? <==== ATTENTION
Task: {D0455E07-5242-4928-8439-516DBB1D2C7C} - System32\Tasks\AutoKMS => C:\Windows\AutoKMS.exe [614400 2019-09-10] () [File not signed]
BHO: IDM integration (IDMIEHlprObj Class) -> {0055C089-8582-441B-A0BF-17B458C2A3A8} -> C:\Program Files (x86)\Internet Download Manager\IDMIECC64.dll [2019-05-08] (Tonec Inc. -> Internet Download Manager, Tonec Inc.)
BHO-x32: IDM integration (IDMIEHlprObj Class) -> {0055C089-8582-441B-A0BF-17B458C2A3A8} -> C:\Program Files (x86)\Internet Download Manager\IDMIECC.dll [2019-05-08] (Tonec Inc. -> Internet Download Manager, Tonec Inc.)
Handler: ms-help - {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Program Files\Common Files\Microsoft Shared\Help\hxds.dll [2008-05-23] (Microsoft Corporation) [File not signed]
FF DefaultProfile: bdw3jzyj.default
FF ProfilePath: C:\Users\KB\AppData\Roaming\Mozilla\Firefox\Profiles\bdw3jzyj.default [2019-09-09]
FF ProfilePath: C:\Users\KB\AppData\Roaming\Mozilla\Firefox\Profiles\smxdj1bq.default-release [2019-09-24]
FF Extension: (uBlock) - C:\Users\KB\AppData\Roaming\Mozilla\Firefox\Profiles\smxdj1bq.default-release\Extensions\{2b10c1c8-a11f-4bad-fe9c-1c11e82cac42}.xpi [2019-09-09]
FF HKU\S-1-5-21-55810073-3915787847-1979356537-1000\...\Firefox\Extensions: [[email protected]] - C:\Program Files (x86)\Internet Download Manager\idmmzcc3.xpi
FF Extension: (IDM Integration Module) - C:\Program Files (x86)\Internet Download Manager\idmmzcc3.xpi [2019-09-19] [UpdateUrl:hxxps://data.internetdownloadmanager.com/idmmzcc3/update.json]
FF HKU\S-1-5-21-55810073-3915787847-1979356537-1000\...\SeaMonkey\Extensions: [[email protected]] - C:\Users\KB\AppData\Roaming\IDM\idmmzcc5
FF Extension: (IDM CC) - C:\Users\KB\AppData\Roaming\IDM\idmmzcc5 [2019-09-21] [Legacy] [not signed]
FF HKU\S-1-5-21-55810073-3915787847-1979356537-1000\...\SeaMonkey\Extensions: [[email protected]] - C:\Program Files (x86)\Internet Download Manager\idmmzcc2.xpi
FF Extension: (IDM integration) - C:\Program Files (x86)\Internet Download Manager\idmmzcc2.xpi [2017-12-20] [Legacy]
CHR HKLM\...\Chrome\Extension: [ngpampappnmepgilojfohadhhmbhlaek] - C:\Program Files (x86)\Internet Download Manager\IDMGCExt.crx [2019-09-20]
CHR HKLM-x32\...\Chrome\Extension: [ngpampappnmepgilojfohadhhmbhlaek] - C:\Program Files (x86)\Internet Download Manager\IDMGCExt.crx [2019-09-20]
U4 dcpsvc; no ImagePath
U4 DiagTrack; no ImagePath
CMD: ipconfig /flushdns
CMD: ipconfig /renew
CMD: bitsadmin /reset /allusers
CMD: netsh winsock reset
CMD: netsh advfirewall set allprofiles state ON
CMD: netsh int ipv4 reset
CMD: netsh int ipv6 reset
RemoveProxy:
EmptyTemp:
Hosts:
END
  • Lo guardas bajo el nombre de fixlist.txt en el escritorio <<< Esto es muy importante.

Nota: Es necesario que el ejecutable Frst.exe y fixlist.txt se encuentren en la misma ubicación (escritorio) o si no la herramienta no trabajara.

  • Ejecutas Frst.exe.
  • Presionas el botón Fix y aguardas a que termine.
  • La Herramienta guardara el reporte en tu escritorio (Fixlog.txt).
  • Lo pegas en tu próxima respuesta.

Saludos

`

Fix result of Farbar Recovery Scan Tool (x64) Version: 22-09-2019
Ran by KB (24-09-2019 19:06:52) Run:1
Running from C:\Users\KB\Desktop
Loaded Profiles: KB (Available Profiles: KB)
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start
CreateRestorePoint:
CloseProcesses
HKLM\...\Policies\Explorer: [SettingsPageVisibility] hide:maps
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-19\...\RunOnce: [HttpAcceptLanguageOptOut] => REG ADD "HKCU\Control Panel\International\User Profile" /v "HttpAcceptLanguageOptOut" /t REG_DWORD /f /d 1 <==== ATTENTION
HKU\S-1-5-20\...\RunOnce: [HttpAcceptLanguageOptOut] => REG ADD "HKCU\Control Panel\International\User Profile" /v "HttpAcceptLanguageOptOut" /t REG_DWORD /f /d 1 <==== ATTENTION
HKU\S-1-5-21-55810073-3915787847-1979356537-1000\...\Run: [IDMan] => C:\Program Files (x86)\Internet Download Manager\IDMan.exe [4091960 2019-09-21] (Tonec Inc.) [File not signed]
HKU\S-1-5-18\...\RunOnce: [HttpAcceptLanguageOptOut] => REG ADD "HKCU\Control Panel\International\User Profile" /v "HttpAcceptLanguageOptOut" /t REG_DWORD /f /d 1 <==== ATTENTION
HKLM\...\Drivers32: [vidc.iv50] => C:\Windows\SysWOW64\ir50_32.dll [739328 1998-08-08] (Intel Corporation) [File not signed]
HKLM\...\Drivers32: [msacm.iac2] => C:\Windows\SysWOW64\iac25_32.ax [199680 1998-05-08] (Intel Corporation) [File not signed]
HKLM\...\Drivers32: [VIDC.IV41] => C:\Windows\SysWOW64\IR41_32.AX [848384 1998-02-26] (Intel Corporation) [File not signed]
GroupPolicy: Restriction ? <==== ATTENTION
Task: {D0455E07-5242-4928-8439-516DBB1D2C7C} - System32\Tasks\AutoKMS => C:\Windows\AutoKMS.exe [614400 2019-09-10] () [File not signed]
BHO: IDM integration (IDMIEHlprObj Class) -> {0055C089-8582-441B-A0BF-17B458C2A3A8} -> C:\Program Files (x86)\Internet Download Manager\IDMIECC64.dll [2019-05-08] (Tonec Inc. -> Internet Download Manager, Tonec Inc.)
BHO-x32: IDM integration (IDMIEHlprObj Class) -> {0055C089-8582-441B-A0BF-17B458C2A3A8} -> C:\Program Files (x86)\Internet Download Manager\IDMIECC.dll [2019-05-08] (Tonec Inc. -> Internet Download Manager, Tonec Inc.)
Handler: ms-help - {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Program Files\Common Files\Microsoft Shared\Help\hxds.dll [2008-05-23] (Microsoft Corporation) [File not signed]
FF DefaultProfile: bdw3jzyj.default
FF ProfilePath: C:\Users\KB\AppData\Roaming\Mozilla\Firefox\Profiles\bdw3jzyj.default [2019-09-09]
FF ProfilePath: C:\Users\KB\AppData\Roaming\Mozilla\Firefox\Profiles\smxdj1bq.default-release [2019-09-24]
FF Extension: (uBlock) - C:\Users\KB\AppData\Roaming\Mozilla\Firefox\Profiles\smxdj1bq.default-release\Extensions\{2b10c1c8-a11f-4bad-fe9c-1c11e82cac42}.xpi [2019-09-09]
FF HKU\S-1-5-21-55810073-3915787847-1979356537-1000\...\Firefox\Extensions: [[email protected]] - C:\Program Files (x86)\Internet Download Manager\idmmzcc3.xpi
FF Extension: (IDM Integration Module) - C:\Program Files (x86)\Internet Download Manager\idmmzcc3.xpi [2019-09-19] [UpdateUrl:hxxps://data.internetdownloadmanager.com/idmmzcc3/update.json]
FF HKU\S-1-5-21-55810073-3915787847-1979356537-1000\...\SeaMonkey\Extensions: [[email protected]] - C:\Users\KB\AppData\Roaming\IDM\idmmzcc5
FF Extension: (IDM CC) - C:\Users\KB\AppData\Roaming\IDM\idmmzcc5 [2019-09-21] [Legacy] [not signed]
FF HKU\S-1-5-21-55810073-3915787847-1979356537-1000\...\SeaMonkey\Extensions: [[email protected]] - C:\Program Files (x86)\Internet Download Manager\idmmzcc2.xpi
FF Extension: (IDM integration) - C:\Program Files (x86)\Internet Download Manager\idmmzcc2.xpi [2017-12-20] [Legacy]
CHR HKLM\...\Chrome\Extension: [ngpampappnmepgilojfohadhhmbhlaek] - C:\Program Files (x86)\Internet Download Manager\IDMGCExt.crx [2019-09-20]
CHR HKLM-x32\...\Chrome\Extension: [ngpampappnmepgilojfohadhhmbhlaek] - C:\Program Files (x86)\Internet Download Manager\IDMGCExt.crx [2019-09-20]
U4 dcpsvc; no ImagePath
U4 DiagTrack; no ImagePath
CMD: ipconfig /flushdns
CMD: ipconfig /renew
CMD: bitsadmin /reset /allusers
CMD: netsh winsock reset
CMD: netsh advfirewall set allprofiles state ON
CMD: netsh int ipv4 reset
CMD: netsh int ipv6 reset
RemoveProxy:
EmptyTemp:
Hosts:
END
*****************

Restore point was successfully created.
CloseProcesses => Error: No automatic fix found for this entry.
"HKLM\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\\SettingsPageVisibility" => removed successfully
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender => removed successfully
"HKU\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\RunOnce\\HttpAcceptLanguageOptOut" => removed successfully
"HKU\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\RunOnce\\HttpAcceptLanguageOptOut" => removed successfully
"HKU\S-1-5-21-55810073-3915787847-1979356537-1000\Software\Microsoft\Windows\CurrentVersion\Run\\IDMan" => removed successfully
"HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\RunOnce\\HttpAcceptLanguageOptOut" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Drivers32\\vidc.iv50" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Drivers32\\msacm.iac2" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Drivers32\\VIDC.IV41" => not found
C:\Windows\system32\GroupPolicy\Machine => moved successfully
C:\Windows\system32\GroupPolicy\GPT.ini => moved successfully
C:\Windows\SysWOW64\GroupPolicy\GPT.ini => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Boot\{D0455E07-5242-4928-8439-516DBB1D2C7C}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{D0455E07-5242-4928-8439-516DBB1D2C7C}" => removed successfully
C:\Windows\System32\Tasks\AutoKMS => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\AutoKMS" => removed successfully
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0055C089-8582-441B-A0BF-17B458C2A3A8} => removed successfully
HKLM\Software\Classes\CLSID\{0055C089-8582-441B-A0BF-17B458C2A3A8} => removed successfully
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0055C089-8582-441B-A0BF-17B458C2A3A8} => removed successfully
HKLM\Software\Wow6432Node\Classes\CLSID\{0055C089-8582-441B-A0BF-17B458C2A3A8} => removed successfully
HKLM\Software\Classes\PROTOCOLS\Handler\ms-help => removed successfully
HKLM\Software\Classes\CLSID\{314111c7-a502-11d2-bbca-00c04f8ec294} => removed successfully
FF DefaultProfile: bdw3jzyj.default => Error: No automatic fix found for this entry.
C:\Users\KB\AppData\Roaming\Mozilla\Firefox\Profiles\bdw3jzyj.default => moved successfully
C:\Users\KB\AppData\Roaming\Mozilla\Firefox\Profiles\bdw3jzyj.default => path removed successfully
C:\Users\KB\AppData\Roaming\Mozilla\Firefox\Profiles\smxdj1bq.default-release => moved successfully
C:\Users\KB\AppData\Roaming\Mozilla\Firefox\Profiles\smxdj1bq.default-release => path removed successfully
"C:\Users\KB\AppData\Roaming\Mozilla\Firefox\Profiles\smxdj1bq.default-release\Extensions\{2b10c1c8-a11f-4bad-fe9c-1c11e82cac42}.xpi" => not found
"HKU\S-1-5-21-55810073-3915787847-1979356537-1000\Software\Mozilla\Firefox\Extensions\\[email protected]" => removed successfully
C:\Program Files (x86)\Internet Download Manager\idmmzcc3.xpi => moved successfully
"HKU\S-1-5-21-55810073-3915787847-1979356537-1000\Software\Mozilla\SeaMonkey\Extensions\\[email protected]" => removed successfully
C:\Users\KB\AppData\Roaming\IDM\idmmzcc5 => moved successfully
"HKU\S-1-5-21-55810073-3915787847-1979356537-1000\Software\Mozilla\SeaMonkey\Extensions\\[email protected]" => removed successfully
C:\Program Files (x86)\Internet Download Manager\idmmzcc2.xpi => moved successfully
HKLM\SOFTWARE\Google\Chrome\Extensions\ngpampappnmepgilojfohadhhmbhlaek => removed successfully
C:\Program Files (x86)\Internet Download Manager\IDMGCExt.crx => moved successfully
HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\ngpampappnmepgilojfohadhhmbhlaek => removed successfully
"C:\Program Files (x86)\Internet Download Manager\IDMGCExt.crx" => not found
HKLM\System\CurrentControlSet\Services\dcpsvc => removed successfully
dcpsvc => service removed successfully
HKLM\System\CurrentControlSet\Services\DiagTrack => removed successfully
DiagTrack => service removed successfully

========= ipconfig /flushdns =========


Configuraci¢n IP de Windows

Se vaci¢ correctamente la cach‚ de resoluci¢n de DNS.

========= End of CMD: =========


========= ipconfig /renew =========


Configuraci¢n IP de Windows

No se puede realizar ninguna operaci¢n en Ethernet 2 mientras los medios
est‚n desconectados.

Adaptador de Ethernet Ethernet:

   Sufijo DNS espec¡fico para la conexi¢n. . : local
   V¡nculo: direcci¢n IPv6 local. . . : fe80::4c2e:2088:6b7e:1b8a%3
   Direcci¢n IPv4. . . . . . . . . . . . . . : 192.168.1.101
   M scara de subred . . . . . . . . . . . . : 255.255.255.0
   Puerta de enlace predeterminada . . . . . : 192.168.1.100

Adaptador de Ethernet Ethernet 2:

   Estado de los medios. . . . . . . . . . . : medios desconectados
   Sufijo DNS espec¡fico para la conexi¢n. . : 

========= End of CMD: =========


========= bitsadmin /reset /allusers =========


BITSADMIN version 3.0
BITS administration utility.
(C) Copyright Microsoft Corp.

0 out of 0 jobs canceled.

========= End of CMD: =========


========= netsh winsock reset =========


El cat logo Winsock se restableci¢ correctamente.
Debe reiniciar el equipo para completar el restablecimiento.


========= End of CMD: =========


========= netsh advfirewall set allprofiles state ON =========

Aceptar


========= End of CMD: =========


========= netsh int ipv4 reset =========

Reenv¡o de compartimiento se restableci¢ correctamente.
Compartimiento se restableci¢ correctamente.
Protocolo de control se restableci¢ correctamente.
Solicitud de secuencia eco se restableci¢ correctamente.
Global se restableci¢ correctamente.
Interfaz se restableci¢ correctamente.
Direcci¢n de difusi¢n por proximidad (a se restableci¢ correctamente.
Direcciones de multidifusi¢n se restableci¢ correctamente.
Direcci¢n de unidifusi¢n se restableci¢ correctamente.
Vecino se restableci¢ correctamente.
Ruta de acceso se restableci¢ correctamente.
Posible se restableci¢ correctamente.
Directiva de prefijo se restableci¢ correctamente.
Vecino de proxy se restableci¢ correctamente.
Ruta se restableci¢ correctamente.
Prefijo de sitio se restableci¢ correctamente.
Subinterfaz se restableci¢ correctamente.
Patr¢n de reactivaci¢n se restableci¢ correctamente.
Resolver vecino se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
Error al restablecer .
Acceso denegado.

 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
Reinicie el equipo para completar esta acci¢n.


========= End of CMD: =========


========= netsh int ipv6 reset =========

Reenv¡o de compartimiento se restableci¢ correctamente.
Compartimiento se restableci¢ correctamente.
Protocolo de control se restableci¢ correctamente.
Solicitud de secuencia eco se restableci¢ correctamente.
Global se restableci¢ correctamente.
Interfaz se restableci¢ correctamente.
Direcci¢n de difusi¢n por proximidad (a se restableci¢ correctamente.
Direcciones de multidifusi¢n se restableci¢ correctamente.
Direcci¢n de unidifusi¢n se restableci¢ correctamente.
Vecino se restableci¢ correctamente.
Ruta de acceso se restableci¢ correctamente.
Posible se restableci¢ correctamente.
Directiva de prefijo se restableci¢ correctamente.
Vecino de proxy se restableci¢ correctamente.
Ruta se restableci¢ correctamente.
Prefijo de sitio se restableci¢ correctamente.
Subinterfaz se restableci¢ correctamente.
Patr¢n de reactivaci¢n se restableci¢ correctamente.
Resolver vecino se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
Error al restablecer .
Acceso denegado.

 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
Reinicie el equipo para completar esta acci¢n.


========= End of CMD: =========


========= RemoveProxy: =========

"HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings" => removed successfully
"HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings" => removed successfully
"HKU\S-1-5-21-55810073-3915787847-1979356537-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings" => removed successfully
"HKU\S-1-5-21-55810073-3915787847-1979356537-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings" => removed successfully


========= End of RemoveProxy: =========

C:\Windows\System32\Drivers\etc\hosts => moved successfully
Hosts restored successfully.

=========== EmptyTemp: ==========

BITS transfer queue => 7888896 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 75054021 B
Java, Flash, Steam htmlcache => 0 B
Windows/system/drivers => 7751347 B
Edge => 0 B
Chrome => 416956036 B
Firefox => 22026081 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 0 B
LocalService => 0 B
NetworkService => 0 B
NetworkService => 0 B
KB => 2968839 B

RecycleBin => 0 B
EmptyTemp: => 508 MB temporary data Removed.

================================


The system needed a reboot.

==== End of Fixlog 19:08:49 ====

Hola

Y como sigue el problema que mencionaste ?

Hola Leo, creo que se solucionó el problema: ya no aparece ese mensaje de advertencia.

Muchas gracias por tu ayuda.

Saludos, desde Argentina.

Hola

Mucho mejor así.

Descargá la herramienta Delfix a Tu escritorio.

Ejecutala, Tildá la casilla Remove disinfection tools y presioná Run

Al terminar Se abrirá un reporte llamado DelFix.txt, verifica que se hayan eliminado las herramientas usadas para desinfectar el Pc.

Para cualquier otro problema, no dudes en volver a postear. Ya sabes dónde estamos.

Tema Solucionado

Saludos