Recientemente ha estado apareciendo un proceso “notepad.exe” en mi Task Manager que consume cantidades enormes de CPU y RAM. Lo cierro desde taskmanager pero se vuelve a abrir. Ya hice varios análisis con Malwarebytes y CCleaner y a pesar de haber borrado y reparado todo lo que me pedían, el problema persiste. Leyendo por ahí me enteré que puede ser una variante de malware pero ninguna de las soluciones me ha funcionado. Hice un scan con Farbar Recovery Scan Tool (que parece ser lo que se recomienda en todos lados) y a continuación pongo los logs que me creó, a ver si pueden ayudarme. Les pido que por favor usen un lenguaje comprensible para un desconocedor de la tecnología como yo, que luego me confundo y empeoro el asunto. Voy a poner los logs como respuestas porque no creo que quepan
este es el FRST txt:
sScan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 14-12-2019
Ran by smelborp (administrator) on SMELBORP-PC (ASUSTeK COMPUTER INC. K55N) (15-12-2019 16:12:59)
Running from C:\Users\smelborp\Downloads
Loaded Profiles: smelborp (Available Profiles: smelborp)
Platform: Windows 7 Home Basic Service Pack 1 (X64) Language: Español (España, internacional)
Internet Explorer Version 11 (Default browser: IE)
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Advanced Micro Devices, Inc.) [File not signed] C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
(AppEx Networks Corporation -> AppEx Networks Corporation) C:\Program Files\AMD Quick Stream\AppexAcceleratorUI.exe
(ASUSTeK Computer Inc. -> ASUS) [File not signed] C:\Program Files\ASUS\P4G\BatteryLife.exe
(ASUSTeK Computer Inc. -> ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe
(ASUSTeK Computer Inc. -> ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ATKOSD.exe
(ASUSTeK Computer Inc. -> ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe
(ASUSTeK Computer Inc. -> ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\KBFiltr.exe
(ASUSTeK Computer Inc. -> ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\WDC.exe
(ASUSTeK Computer Inc. -> ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
(ASUSTeK Computer Inc. -> ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
(ASUSTeK Computer Inc. -> ASUS) C:\Program Files (x86)\ASUS\InstantOn for NB\InsOnSrv.exe
(ASUSTeK Computer Inc. -> ASUS) C:\Program Files (x86)\ASUS\InstantOn for NB\InsOnWMI.exe
(ASUSTeK Computer Inc. -> ASUS) C:\Program Files (x86)\ASUS\Splendid\ACMON.exe
(ASUSTeK Computer Inc. -> ASUS) C:\Windows\AsScrPro.exe
(ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe
(ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\ASUS Virtual Touch\QuickGesture\x64\QuickGesture64.exe
(ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\ASUS Virtual Touch\QuickGesture\x86\QuickGesture.exe
(ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe
(ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
(ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\FaceLogon\sensorsrv.exe
(ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe
(ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe
(ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) C:\Windows\System32\FBAgent.exe
(ASUSTeK Computer Inc. -> ASUSTeK) C:\Windows\SysWOW64\ACEngSvr.exe
(CyberLink -> CyberLink) C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe
(ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe
(ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Malwarebytes Corporation -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Malwarebytes Corporation -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Microsoft Corporation -> Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corporation -> Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wisptis.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wisptis.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows\System32\atieclxx.exe
(Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows\System32\atiesrxx.exe
(Microsoft Windows Hardware Compatibility Publisher -> ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDGesture.exe
(Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Sony Corporation -> Sony Corporation) C:\Program Files (x86)\Sony\Content Transfer\ContentTransferWMDetector.exe
(Wacom Technology Corp. -> Wacom Technology) C:\Program Files\Tablet\Wacom\WacomHost.exe
(Wacom Technology Corporation -> Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\Wacom_Tablet.exe
(Wacom Technology Corporation -> Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\Wacom_TabletUser.exe
(Wacom Technology Corporation -> Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\Wacom_TouchUser.exe
(Wacom Technology Corporation -> Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\WTabletServicePro.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [ETDCtrl] => C:\Program Files\Elantech\ETDCtrl.exe [2661672 2012-02-19] (ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.)
HKLM-x32\...\Run: [ASUSPRP] => C:\Program Files (x86)\ASUS\APRP\APRP.EXE [3331312 2012-03-09] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) [File not signed]
HKLM-x32\...\Run: [ATKOSD2] => C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe [322176 2012-02-16] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
HKLM-x32\...\Run: [ATKMEDIA] => C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe [174720 2011-10-24] (ASUSTeK Computer Inc. -> ASUS)
HKLM-x32\...\Run: [HControlUser] => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe [105016 2009-06-19] (ASUSTeK Computer Inc. -> ASUS)
HKLM-x32\...\Run: [Wireless Console 3] => C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe [2321072 2012-02-02] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
HKLM-x32\...\Run: [ContentTransferWMDetector.exe] => C:\Program Files (x86)\Sony\Content Transfer\ContentTransferWMDetector.exe [583016 2009-11-19] (Sony Corporation -> Sony Corporation)
HKU\S-1-5-21-306248585-3140627608-1750752149-1001\...\Run: [AppEx Accelerator UI] => C:\Program Files\AMD Quick Stream\AppexAcceleratorUI.exe [766784 2011-12-07] (AppEx Networks Corporation -> AppEx Networks Corporation)
HKU\S-1-5-21-306248585-3140627608-1750752149-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [19645800 2019-12-14] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-306248585-3140627608-1750752149-1001\...\MountPoints2: {20062234-22a1-11e8-8fc6-806e6f6e6963} - E:\Epsetup.exe
HKU\S-1-5-21-306248585-3140627608-1750752149-1001\...\MountPoints2: {79312e30-231f-11e8-b5d6-10bf4829a00b} - F:\HTC_Sync_Manager_PC.exe
HKLM\Software\Microsoft\Active Setup\Installed Components: [{2D46B6DC-2207-486B-B523-A557E6D54B47}] -> C:\Windows\system32\cmd.exe /D /C start C:\Windows\system32\ie4uinit.exe -ClearIconCache
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\79.0.3945.79\Installer\chrmstp.exe [2019-12-12] (Google LLC -> Google LLC)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{2D46B6DC-2207-486B-B523-A557E6D54B47}] -> C:\Windows\system32\cmd.exe /D /C start C:\Windows\system32\ie4uinit.exe -ClearIconCache
HKLM\Software\...\Authentication\Credential Providers: [{F8A0B131-5F68-486c-8040-7E8FC3C85BB6}] -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDCREDPROV.DLL [2011-03-28] (Microsoft Corporation -> Microsoft Corp.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\AsusVibeLauncher.lnk [2012-03-09]
ShortcutTarget: AsusVibeLauncher.lnk -> C:\Program Files (x86)\ASUS\AsusVibe\AsusVibeLauncher.exe (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) [File not signed]
GroupPolicy: Restriction ? <==== ATTENTION
==================== Scheduled Tasks (Whitelisted) ============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {0072BE07-58D7-4814-A24E-F852A8C3323E} - System32\Tasks\AdobeAAMUpdater-1.0-smelborp-PC-smelborp => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe
Task: {014D7370-6CCA-4742-9FF5-B24C58D8FBA0} - System32\Tasks\{CD41E217-3C0F-457B-B5BB-592AC5C6BAC0} => C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exe [2571312 2019-06-10] (Adobe Inc. -> Adobe Systems Incorporated)
Task: {0365904E-5944-4DB0-816A-7B59B2779F9E} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [376496 2014-01-23] (Microsoft Corporation -> Microsoft Corporation)
Task: {1A41EB8E-2B95-466C-9EED-5B30EEB0B6B5} - System32\Tasks\{DBEBD678-6939-4358-869A-036DD426901B} => C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exe [2571312 2019-06-10] (Adobe Inc. -> Adobe Systems Incorporated)
Task: {1A4727EE-C5BE-4217-BDA8-8755A8D4CBC1} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-03-08] (Google Inc -> Google Inc.)
Task: {2239A9F9-70F8-46D0-901C-68D77F8FBDE7} - System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task => {3519154C-227E-47F3-9CC9-12C3F05817F1}
Task: {2CCC2382-E332-48D6-AADD-65D11E978498} - System32\Tasks\AdobeGCInvoker-1.0-smelborp-PC-smelborp => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe
Task: {320E83FC-C99F-4636-AB65-21C8DEE91D06} - System32\Tasks\{666582F9-D86B-4B51-B968-861B393ECE16} => C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exe [2571312 2019-06-10] (Adobe Inc. -> Adobe Systems Incorporated)
Task: {32D9DC74-3927-4D2D-A1AE-B96190D766BF} - System32\Tasks\{0D468BFB-9E67-4415-AC4C-9DB0C8A1EB12} => C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exe [2571312 2019-06-10] (Adobe Inc. -> Adobe Systems Incorporated)
Task: {364A18C3-13E8-4B63-B15D-B82E0F76EA39} - System32\Tasks\{2DCB58CB-89B3-430A-B11E-AC06B56BB94C} => C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exe [2571312 2019-06-10] (Adobe Inc. -> Adobe Systems Incorporated)
Task: {3998CB99-3AA7-44D8-A278-AB995668639A} - System32\Tasks\{97F2897B-3E30-41C2-8150-74ACAA654FEA} => C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exe [2571312 2019-06-10] (Adobe Inc. -> Adobe Systems Incorporated)
Task: {48F70955-56A4-468D-A34C-77817880EC2F} - System32\Tasks\ASUS USB Charger Plus => C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe [1121448 2012-02-29] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
Task: {525D93CD-0BEC-426E-B406-8FAE5110AF3D} - System32\Tasks\{65E87637-F149-447C-A37E-610A9AA4B4FA} => C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exe [2571312 2019-06-10] (Adobe Inc. -> Adobe Systems Incorporated)
Task: {5AF5E522-8C02-4437-928E-546DAAC175A5} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335872 2018-06-08] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
Task: {5CF5B02B-63F7-42DA-848A-DD1E5483A275} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe [1626328 2014-01-23] (Microsoft Corporation -> Microsoft Corporation)
Task: {74C34638-685F-468C-80F6-68AE8DCE5F67} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [376496 2014-01-23] (Microsoft Corporation -> Microsoft Corporation)
Task: {79CA8536-D442-4D3F-A987-6D2EAF593044} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [14679256 2019-12-14] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {7A1A740E-78B4-4595-B3BE-18C15A07731B} - System32\Tasks\{C3FBB5A2-A82F-4DD5-8FEA-2604B18447FC} => C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exe [2571312 2019-06-10] (Adobe Inc. -> Adobe Systems Incorporated)
Task: {7B585056-D021-4C24-8586-B7B3E0479077} - System32\Tasks\{1C3FDDC8-2136-40FA-9C70-26919B12A046} => C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exe [2571312 2019-06-10] (Adobe Inc. -> Adobe Systems Incorporated)
Task: {7BC7136F-57F1-4188-81C9-FDFE02C490BB} - System32\Tasks\ATKOSD2 => C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe [322176 2012-02-16] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
Task: {839E0CA9-3E04-42DD-96FB-BAC2995302D9} - System32\Tasks\ASUS Live Update => C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe [1556128 2012-01-09] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
Task: {875AFAEA-D8D2-4212-B53B-C0B81599CF53} - System32\Tasks\ASUS SmartLogon Console Sensor => C:\Program Files (x86)\ASUS\FaceLogon\sensorsrv.exe [473728 2012-02-16] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
Task: {94A2779D-AFA6-49F2-8389-13884C317C41} - System32\Tasks\ASUS Quick Gesture => C:\Program Files (x86)\ASUS\ASUS Virtual Touch\QuickGesture\x86\QuickGesture.exe [17872 2011-12-21] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
Task: {99A0F2B1-384F-4F84-8013-1A54CBA77CCC} - System32\Tasks\{8D69866F-41CE-49BB-9386-499B6BAF5CAF} => C:\Windows\system32\pcalua.exe -a "C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\Creative Cloud Uninstaller.exe"
Task: {9E6B67EE-8824-4B73-97E3-7ECB6BB96A91} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-03-08] (Google Inc -> Google Inc.)
Task: {9F570C9B-4F29-4AA9-A674-3355FFB5FB30} - System32\Tasks\{9B17E10F-88D1-401D-B895-A849B9126602} => C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exe [2571312 2019-06-10] (Adobe Inc. -> Adobe Systems Incorporated)
Task: {AFB42F23-B463-4D03-BE84-9A4DDB37837D} - System32\Tasks\{B09FD514-8E96-47DE-B16C-329105713096} => C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exe [2571312 2019-06-10] (Adobe Inc. -> Adobe Systems Incorporated)
Task: {B4858846-1D19-4697-8F3B-C00600B90EE1} - System32\Tasks\ASUS Quick Gesture (x64) => C:\Program Files (x86)\ASUS\ASUS Virtual Touch\QuickGesture\x64\QuickGesture64.exe [18896 2011-12-21] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
Task: {BDADC4FF-F2E6-4D5D-AF20-530BCE4D15DE} - System32\Tasks\{E46512BF-10FF-40E5-A2C0-72AE27E128D6} => C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exe [2571312 2019-06-10] (Adobe Inc. -> Adobe Systems Incorporated)
Task: {BEEEAC6C-3946-45CD-BA08-BFAA75F9FEA8} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [619416 2019-12-14] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {C51A737E-7E66-46BD-8D92-B4F825BFFA03} - System32\Tasks\{C925FC7C-3B48-4EF8-A7DE-06D54D557D8E} => C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exe [2571312 2019-06-10] (Adobe Inc. -> Adobe Systems Incorporated)
Task: {D3DEDE8F-88A9-4F55-8D68-72851014D1C7} - System32\Tasks\{9D9C123A-A2DF-49EB-8383-AD0B17938D15} => C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exe [2571312 2019-06-10] (Adobe Inc. -> Adobe Systems Incorporated)
Task: {D7BF3631-CFBB-400D-B96C-957D388EEF78} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
Task: {DDE6B697-9ACA-495D-B745-94A9C20DBBFE} - System32\Tasks\ASUS P4G => C:\Program Files\ASUS\P4G\BatteryLife.exe [1004464 2012-02-15] (ASUSTeK Computer Inc. -> ASUS) [File not signed]
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Winsock: Catalog5 08 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280 2011-03-28] (Microsoft Corporation -> Microsoft Corp.)
Winsock: Catalog5 09 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280 2011-03-28] (Microsoft Corporation -> Microsoft Corp.)
Winsock: Catalog5-x64 08 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [171392 2011-03-28] (Microsoft Corporation -> Microsoft Corp.)
Winsock: Catalog5-x64 09 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [171392 2011-03-28] (Microsoft Corporation -> Microsoft Corp.)
Tcpip\Parameters: [DhcpNameServer] 192.168.100.1
Tcpip\..\Interfaces\{28D103D9-E40F-4442-92EA-B21E8690D70E}: [DhcpNameServer] 192.168.100.1
Internet Explorer:
==================
HKU\S-1-5-21-306248585-3140627608-1750752149-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://asus.msn. com
HKU\S-1-5-21-306248585-3140627608-1750752149-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://asus.msn. com
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing. com/search?q={searchTerms}&form=ASUTDF&pc=NP06&src=IE-SearchBox
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing. com/search?q={searchTerms}&form=ASUTDF&pc=NP06&src=IE-SearchBox
SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing. com/search?q={searchTerms}&form=ASUTDF&pc=NP06&src=IE-SearchBox
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing. com/search?q={searchTerms}&form=ASUTDF&pc=NP06&src=IE-SearchBox
SearchScopes: HKU\S-1-5-21-306248585-3140627608-1750752149-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\Office15\OCHelper.dll [2018-02-15] (Microsoft Corporation -> Microsoft Corporation)
BHO: SteadyVideoBHO Class -> {6C680BAE-655C-4E3D-8FC4-E6A520C3D928} -> C:\Program Files\AMD\SteadyVideo\SteadyVideo.dll [2011-06-08] (Advanced Micro Devices, Inc. -> Advanced Micro Devices)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-28] (Microsoft Corporation -> Microsoft Corp.)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office15\URLREDIR.DLL [2014-01-23] (Microsoft Corporation -> Microsoft Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL [2017-02-23] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll [2017-09-12] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: SteadyVideoBHO Class -> {6C680BAE-655C-4E3D-8FC4-E6A520C3D928} -> C:\Program Files (x86)\amd\SteadyVideo\SteadyVideo.dll [2011-06-08] (Advanced Micro Devices, Inc. -> Advanced Micro Devices)
BHO-x32: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-28] (Microsoft Corporation -> Microsoft Corp.)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office15\URLREDIR.DLL [2014-01-22] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL [2017-02-23] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL [2018-02-15] (Microsoft Corporation -> Microsoft Corporation)
Filter: video/mp4 - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files\AMD\SteadyVideo\VideoMIMEFilter.dll [2011-06-08] (Advanced Micro Devices, Inc. -> Advanced Micro Devices)
Filter-x32: video/mp4 - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files (x86)\amd\SteadyVideo\VideoMIMEFilter.dll [2011-06-08] (Advanced Micro Devices, Inc. -> Advanced Micro Devices)
Filter: video/x-flv - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files\AMD\SteadyVideo\VideoMIMEFilter.dll [2011-06-08] (Advanced Micro Devices, Inc. -> Advanced Micro Devices)
Filter-x32: video/x-flv - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files (x86)\amd\SteadyVideo\VideoMIMEFilter.dll [2011-06-08] (Advanced Micro Devices, Inc. -> Advanced Micro Devices)
FireFox:
========
FF Plugin: @ Microsoft. com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @ microsoft. com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~2\Office15\NPSPWRAP.DLL [2014-01-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: adobe. com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2019-01-22] (Adobe Systems Incorporated -> Adobe Systems)
FF Plugin-x32: @ adobe. com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF32.dll [No File]
FF Plugin-x32: @ microsoft. com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2017-09-12] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @ Microsoft. com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @ microsoft. com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office15\NPSPWRAP.DLL [2014-01-22] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @ microsoft. com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2011-05-13] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @ microsoft. com/WLPG,version=15.4.3538.0513 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2011-05-13] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @ tools.google. com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.35.422\npGoogleUpdate3.dll [2019-12-13] (Google LLC -> Google LLC)
FF Plugin-x32: @ tools.google. com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.35.422\npGoogleUpdate3.dll [2019-12-13] (Google LLC -> Google LLC)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2019-05-02] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: adobe. com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2019-01-22] (Adobe Systems Incorporated -> Adobe Systems)
Chrome:
=======
CHR HomePage: Default -> hxxps://www.google . com.mx_/
CHR StartupUrls: Default -> "hxxps://www.google. com.mx/"
CHR Session Restore: Default -> is enabled.
CHR Profile: C:\Users\smelborp\AppData\Local\Google\Chrome\User Data\Default [2019-12-15]
CHR Extension: (Adblock Plus - bloqueador de anuncios gratis) - C:\Users\smelborp\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2019-12-15]
CHR Extension: (Adaware Ad Block) - C:\Users\smelborp\AppData\Local\Google\Chrome\User Data\Default\Extensions\cmllgdnjnkbapbchnebiedipojhmnjej [2019-12-15]
CHR Extension: (Tiny D20) - C:\Users\smelborp\AppData\Local\Google\Chrome\User Data\Default\Extensions\kioakkagkemhjepoflhccjmabkhbiepp [2019-12-15]
CHR Extension: (Sistema de pagos de Chrome Web Store) - C:\Users\smelborp\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-12-15]
CHR Extension: (Chrome Media Router) - C:\Users\smelborp\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-12-15]
CHR Profile: C:\Users\smelborp\AppData\Local\Google\Chrome\User Data\System Profile [2019-12-14]
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [235520 2012-03-29] (Microsoft Windows Hardware Compatibility Publisher -> AMD)
R2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [361984 2012-03-29] (Advanced Micro Devices, Inc.) [File not signed]
R2 ASUS InstantOn; C:\Program Files (x86)\ASUS\InstantOn for NB\InsOnSrv.exe [277120 2012-02-16] (ASUSTeK Computer Inc. -> ASUS)
R3 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6541008 2018-05-03] (Malwarebytes Corporation -> Malwarebytes)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2009-07-13] (Microsoft Windows -> Microsoft Corporation)
R2 wlidsvc; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2292096 2011-03-28] (Microsoft Corporation -> Microsoft Corp.)
R2 WTabletServicePro; C:\Program Files\Tablet\Wacom\WTabletServicePro.exe [1816520 2018-04-03] (Wacom Technology Corporation -> Wacom Technology, Corp.)
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S3 AgereSoftModem; C:\Windows\System32\DRIVERS\agrsm64.sys [1146880 2009-06-10] (Microsoft Windows -> LSI Corp)
R3 AiCharger; C:\Windows\SysWOW64\DRIVERS\AiCharger.sys [17152 2012-02-29] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
R3 amdhub30; C:\Windows\System32\DRIVERS\amdhub30.sys [102528 2011-10-25] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, INC.)
R3 amdiox64; C:\Windows\System32\DRIVERS\amdiox64.sys [46136 2010-02-18] (Advanced Micro Devices, Inc. -> Advanced Micro Devices)
R3 amdkmdag; C:\Windows\System32\DRIVERS\atikmdag.sys [10819584 2012-03-29] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc.)
R3 amdkmdap; C:\Windows\System32\DRIVERS\atikmpag.sys [328192 2012-03-29] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc.)
R0 amdkmpfd; C:\Windows\System32\DRIVERS\amdkmpfd.sys [31872 2012-02-01] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
R3 amdxhc; C:\Windows\System32\DRIVERS\amdxhc.sys [219776 2011-10-25] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, INC.)
R0 amd_sata; C:\Windows\System32\DRIVERS\amd_sata.sys [82048 2011-12-12] (Advanced Micro Devices, Inc. -> Advanced Micro Devices)
R0 amd_xata; C:\Windows\System32\DRIVERS\amd_xata.sys [42624 2011-12-12] (Advanced Micro Devices, Inc. -> Advanced Micro Devices)
R2 AODDriver4.1; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [55936 2011-11-13] (Advanced Micro Devices, Inc. -> Advanced Micro Devices)
R2 APXACC; C:\Windows\System32\DRIVERS\appexDrv.sys [189760 2011-12-29] (AppEx Networks Corporation -> AppEx Networks Corporation)
R3 AsusVBus; C:\Windows\System32\DRIVERS\AsusVBus.sys [35968 2011-12-21] (ASUSTeK Computer Inc. -> Windows (R) Win 7 DDK provider)
R3 AsusVTouch; C:\Windows\System32\DRIVERS\AsusVTouch.sys [16512 2011-11-07] (ASUSTeK Computer Inc. -> Windows (R) Win 7 DDK provider)
R3 athr; C:\Windows\System32\DRIVERS\athrx.sys [2796544 2011-11-23] (Microsoft Windows Hardware Compatibility Publisher -> Atheros Communications, Inc.)
R1 ESProtectionDriver; C:\Windows\system32\drivers\mbae64.sys [152184 2018-04-26] (Malwarebytes Corporation -> Malwarebytes)
R3 kbfiltr; C:\Windows\System32\DRIVERS\kbfiltr.sys [15416 2009-07-20] (ASUSTeK Computer Inc. -> )
S3 L1C; C:\Windows\System32\DRIVERS\L1C62x64.sys [57344 2009-06-10] (Microsoft Windows -> Atheros Communications, Inc.)
S3 MBAMFarflt; C:\Windows\System32\DRIVERS\farflt.sys [112864 2018-05-28] (Malwarebytes Corporation -> Malwarebytes)
S3 MBAMProtection; C:\Windows\System32\DRIVERS\mbam.sys [44768 2018-05-28] (Malwarebytes Corporation -> Malwarebytes)
R0 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [253664 2018-05-28] (Malwarebytes Corporation -> Malwarebytes)
S3 MBAMWebProtection; C:\Windows\System32\DRIVERS\mwac.sys [94328 2018-05-28] (Malwarebytes Corporation -> Malwarebytes)
S3 SiSGbeLH; C:\Windows\System32\DRIVERS\SiSG664.sys [56832 2009-06-10] (Microsoft Windows -> Silicon Integrated Systems Corp.)
R3 usbfilter; C:\Windows\System32\DRIVERS\usbfilter.sys [56448 2012-01-13] (Advanced Micro Devices, Inc. -> Advanced Micro Devices)
S3 WacHidRouterPro; C:\Windows\System32\DRIVERS\wachidrouter.sys [115680 2018-01-12] (Microsoft Windows Hardware Compatibility Publisher -> Wacom Technology, Corp.)
S3 wacomrouterfilter; C:\Windows\System32\DRIVERS\wacomrouterfilter.sys [17888 2018-01-12] (Microsoft Windows Hardware Compatibility Publisher -> Wacom Technology, Corp.)
U3 aswbdisk; no ImagePath
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== Three months (created) ===================
(If an entry is included in the fixlist, the file/folder will be moved.)
2019-12-15 16:11 - 2019-12-15 16:11 - 000050644 _____ C:\Users\smelborp\Downloads\Shortcut.txt
2019-12-15 16:09 - 2019-12-15 16:11 - 000042069 _____ C:\Users\smelborp\Downloads\Addition.txt
2019-12-15 15:52 - 2019-12-15 16:18 - 000031850 _____ C:\Users\smelborp\Downloads\FRST.txt
2019-12-15 15:46 - 2019-12-15 16:16 - 000000000 ____D C:\FRST
2019-12-15 15:36 - 2019-12-15 15:36 - 000021124 _____ C:\Users\smelborp\Desktop\cc_20191215_153613.reg
2019-12-15 15:35 - 2019-12-15 15:35 - 002264064 _____ (Farbar) C:\Users\smelborp\Downloads\FRST64.exe
2019-12-15 15:35 - 2019-12-15 15:35 - 000000000 ____D C:\Users\smelborp\AppData\Roaming\Adobe
2019-12-14 13:08 - 2019-12-14 13:08 - 000000000 ____D C:\ProgramData\Adobe
2019-12-14 13:05 - 2019-12-14 13:08 - 000125928 _____ C:\Users\smelborp\Documents\cc_20191214_130543.reg
2019-12-14 12:50 - 2019-12-15 15:33 - 000000000 ____D C:\Program Files\CCleaner
2019-12-14 12:50 - 2019-12-14 12:50 - 000003870 _____ C:\Windows\system32\Tasks\CCleaner Update
2019-12-14 12:50 - 2019-12-14 12:50 - 000002802 _____ C:\Windows\system32\Tasks\CCleanerSkipUAC
2019-12-14 12:50 - 2019-12-14 12:50 - 000000824 _____ C:\Users\Public\Desktop\CCleaner.lnk
2019-12-14 12:50 - 2019-12-14 12:50 - 000000824 _____ C:\ProgramData\Desktop\CCleaner.lnk
2019-12-14 12:50 - 2019-12-14 12:50 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2019-12-12 19:41 - 2019-12-12 19:41 - 000003010 _____ C:\Windows\system32\Tasks\{666582F9-D86B-4B51-B968-861B393ECE16}
2019-12-05 03:08 - 2019-12-05 03:08 - 000000000 ____D C:\Users\smelborp\AppData\Roaming\EPSON
2019-12-03 15:05 - 2019-12-03 15:05 - 000003010 _____ C:\Windows\system32\Tasks\{DBEBD678-6939-4358-869A-036DD426901B}
2019-12-03 15:05 - 2019-12-03 15:05 - 000003010 _____ C:\Windows\system32\Tasks\{1C3FDDC8-2136-40FA-9C70-26919B12A046}
2019-11-30 16:28 - 2019-11-30 16:28 - 000000000 ____D C:\testintel2
2019-11-29 21:21 - 2019-12-03 15:03 - 000000000 ____D C:\Users\smelborp\AppData\LocalLow\Adobe
2019-11-28 10:39 - 2019-11-28 10:39 - 000000000 ____D C:\Users\smelborp\AppData\Local\{E4B0BE1B-B650-4D65-9B19-09105363D088}
2019-11-26 22:35 - 2019-11-26 22:35 - 001463892 _____ C:\Users\smelborp\Downloads\Video.mov
2019-11-21 18:44 - 2019-12-03 12:43 - 000003897 _____ C:\Users\smelborp\Desktop\adhara.txt
2019-11-21 17:33 - 2019-11-21 17:33 - 000000000 ____D C:\testintel
2019-11-19 21:54 - 2019-11-19 21:54 - 000003010 _____ C:\Windows\system32\Tasks\{97F2897B-3E30-41C2-8150-74ACAA654FEA}
2019-11-19 21:54 - 2019-11-19 21:54 - 000003010 _____ C:\Windows\system32\Tasks\{0D468BFB-9E67-4415-AC4C-9DB0C8A1EB12}
2019-11-19 18:54 - 2019-11-19 18:55 - 000000000 ____D C:\Users\Public\Documents\ZBrushData2019
2019-11-19 18:54 - 2019-11-19 18:55 - 000000000 ____D C:\ProgramData\Documents\ZBrushData2019
2019-11-19 18:54 - 2019-11-19 18:54 - 000001988 _____ C:\Users\Public\Desktop\ZBrush 2019.lnk
2019-11-19 18:54 - 2019-11-19 18:54 - 000001988 _____ C:\ProgramData\Desktop\ZBrush 2019.lnk
2019-11-19 18:54 - 2019-11-19 18:54 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Pixologic
2019-11-19 18:52 - 2019-11-19 18:52 - 000000000 ____D C:\Users\Public\Pixologic
2019-11-19 18:50 - 2019-11-19 18:50 - 000000000 ____D C:\Program Files\Pixologic
2019-11-19 18:02 - 2019-08-06 20:41 - 1322069973 _____ C:\Users\smelborp\Desktop\Pixologic Zbrush 2019 Win ORLANDO 3D.rar
2019-11-07 17:55 - 2019-11-07 17:55 - 000000000 ____D C:\Users\smelborp\AppData\Local\{16E3B6B8-2716-49A0-A19D-0725EF75DBA8}
2019-11-07 17:50 - 2019-11-07 19:10 - 000000000 ____D C:\Users\smelborp\Desktop\FOTOS 9°
2019-11-04 19:01 - 2019-11-04 19:11 - 1918383029 _____ C:\Users\smelborp\Downloads\Wicked.zip
2019-10-22 20:26 - 2019-10-22 20:26 - 000003010 _____ C:\Windows\system32\Tasks\{65E87637-F149-447C-A37E-610A9AA4B4FA}
2019-10-20 11:02 - 2019-12-14 12:52 - 000000000 ____D C:\Users\smelborp\Documents\ROL
2019-10-18 16:16 - 2019-10-18 16:16 - 001586347 _____ C:\Users\smelborp\Desktop\Sin título-1.ai
2019-10-18 14:16 - 2019-10-18 14:16 - 000000144 _____ C:\Users\smelborp\Desktop\changes2.txt
2019-10-18 07:44 - 2019-11-01 16:37 - 000000000 ____D C:\Users\smelborp\AppData\Roaming\vlc
2019-10-18 07:41 - 2019-10-18 07:41 - 000000873 _____ C:\Users\Public\Desktop\VLC media player.lnk
2019-10-18 07:41 - 2019-10-18 07:41 - 000000873 _____ C:\ProgramData\Desktop\VLC media player.lnk
2019-10-18 07:41 - 2019-10-18 07:41 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2019-10-18 07:39 - 2019-10-18 07:39 - 000000000 ____D C:\Program Files\VideoLAN
2019-10-18 07:38 - 2019-10-18 07:38 - 042030736 _____ C:\Users\smelborp\Downloads\vlc-3.0.8-win64.exe
2019-10-18 07:33 - 2019-10-18 07:33 - 000413062 _____ C:\Users\smelborp\Downloads\vsfilter.2.39_nt.exe
2019-10-18 07:33 - 2019-10-18 07:33 - 000000000 ____D C:\Program Files (x86)\DirectVobSub
2019-10-18 07:26 - 2019-10-18 07:28 - 000000000 ____D C:\Users\smelborp\Desktop\CHANEL
2019-10-18 01:31 - 2019-10-18 01:31 - 000000292 _____ C:\Users\smelborp\Desktop\cambios oparc 2.txt
2019-10-14 11:45 - 2019-11-27 00:13 - 000000000 ____D C:\Users\smelborp\Desktop\3° B
2019-10-14 11:15 - 2019-10-30 13:29 - 000000000 ____D C:\Users\smelborp\Desktop\3°A
2019-10-12 23:44 - 2019-10-12 23:44 - 000001198 _____ C:\Users\smelborp\Documents\concerns para teté.txt
2019-10-12 23:43 - 2019-10-12 23:43 - 000000223 _____ C:\Users\smelborp\Documents\califas 3o A WARNING.txt
2019-10-11 00:06 - 2019-10-11 00:06 - 000000000 ____D C:\Users\smelborp\AppData\Local\{014C4664-86A4-450B-81C8-9A0A751DACF1}
2019-10-10 19:50 - 2019-10-10 19:51 - 177441177 _____ C:\Users\smelborp\Downloads\ilustrador portable by maniatico.zip
2019-10-10 14:28 - 2019-10-10 14:28 - 000000218 _____ C:\Users\smelborp\AppData\Local\recently-used.xbel
2019-10-04 11:49 - 2019-10-04 11:49 - 000002208 _____ C:\Users\smelborp\Desktop\Deadtime Stories.lnk
2019-10-04 11:49 - 2019-10-04 11:49 - 000001376 _____ C:\Users\smelborp\Desktop\Play Online Games.lnk
2019-10-04 11:49 - 2019-10-04 11:49 - 000001330 _____ C:\Users\smelborp\Desktop\MyPlayCity Games.lnk
2019-10-04 11:49 - 2019-10-04 11:49 - 000001330 _____ C:\Users\smelborp\AppData\Roaming\Microsoft\Windows\Start Menu\MyPlayCity Games.lnk
2019-10-04 11:49 - 2019-10-04 11:49 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MyPlayCity. com
2019-10-04 11:48 - 2019-10-04 11:48 - 000000000 ____D C:\Program Files (x86)\MyPlayCity. com
2019-10-02 13:02 - 2019-10-02 13:02 - 000000000 ____D C:\ProgramData\Intel
2019-10-01 21:20 - 2019-10-01 21:20 - 000003010 _____ C:\Windows\system32\Tasks\{C3FBB5A2-A82F-4DD5-8FEA-2604B18447FC}
2019-10-01 21:19 - 2019-10-01 21:20 - 000003010 _____ C:\Windows\system32\Tasks\{CD41E217-3C0F-457B-B5BB-592AC5C6BAC0}
2019-10-01 21:19 - 2019-10-01 21:19 - 000003010 _____ C:\Windows\system32\Tasks\{C925FC7C-3B48-4EF8-A7DE-06D54D557D8E}
2019-10-01 14:37 - 2019-10-01 14:37 - 000000000 ____D C:\Users\smelborp\AppData\Local\fontconfig
2019-09-20 20:13 - 2019-09-20 21:05 - 000000000 ____D C:\Users\smelborp\AppData\Local\Deadtime Stories
==================== Three months (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2019-12-15 15:54 - 2019-02-25 17:10 - 000000000 ____D C:\Users\smelborp\Documents\crack adobe2017
2019-12-15 15:51 - 2018-03-09 15:34 - 000000000 ____D C:\Users\smelborp\AppData\Roaming\WTablet
2019-12-15 15:51 - 2018-03-08 00:00 - 000000380 _____ C:\Users\smelborp\AppData\Roaming\sp_data.sys
2019-12-15 15:40 - 2009-07-13 21:45 - 000009696 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2019-12-15 15:40 - 2009-07-13 21:45 - 000009696 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2019-12-15 15:31 - 2018-03-08 00:26 - 000002124 _____ C:\Windows\system32\AutoRunFilter.ini
2019-12-15 15:31 - 2018-03-08 00:00 - 000000000 ____D C:\Users\smelborp
2019-12-15 15:21 - 2011-02-18 19:42 - 000387166 _____ C:\Windows\system32\prfh0804.dat
2019-12-15 15:21 - 2011-02-18 19:42 - 000123212 _____ C:\Windows\system32\prfc0804.dat
2019-12-15 15:21 - 2011-02-18 19:36 - 000404238 _____ C:\Windows\system32\prfh0404.dat
2019-12-15 15:21 - 2011-02-18 19:36 - 000118710 _____ C:\Windows\system32\prfc0404.dat
2019-12-15 15:21 - 2011-02-18 19:27 - 000759058 _____ C:\Windows\system32\perfh00A.dat
2019-12-15 15:21 - 2011-02-18 19:27 - 000162838 _____ C:\Windows\system32\perfc00A.dat
2019-12-15 15:21 - 2011-02-18 19:16 - 000659898 _____ C:\Windows\system32\perfh01F.dat
2019-12-15 15:21 - 2011-02-18 19:16 - 000143620 _____ C:\Windows\system32\perfc01F.dat
2019-12-15 15:21 - 2011-02-18 19:12 - 000748932 _____ C:\Windows\system32\perfh00C.dat
2019-12-15 15:21 - 2011-02-18 19:12 - 000482230 _____ C:\Windows\system32\perfh001.dat
2019-12-15 15:21 - 2011-02-18 19:12 - 000153200 _____ C:\Windows\system32\perfc00C.dat
2019-12-15 15:21 - 2011-02-18 19:12 - 000098392 _____ C:\Windows\system32\perfc001.dat
2019-12-15 15:21 - 2011-02-18 19:06 - 000717096 _____ C:\Windows\system32\prfh0416.dat
2019-12-15 15:21 - 2011-02-18 19:06 - 000151276 _____ C:\Windows\system32\prfc0416.dat
2019-12-15 15:21 - 2009-07-13 22:13 - 005891146 _____ C:\Windows\system32\PerfStringBackup.INI
2019-12-15 15:21 - 2009-07-13 20:20 - 000000000 ____D C:\Windows\inf
2019-12-15 15:16 - 2009-07-13 22:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2019-12-15 15:15 - 2018-03-09 17:59 - 000000000 ____D C:\Windows\system32\Tasks\OfficeSoftwareProtectionPlatform
2019-12-15 15:14 - 2018-03-08 00:24 - 000000000 ____D C:\ProgramData\P4G
2019-12-15 15:14 - 2012-03-09 12:41 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASUS
2019-12-15 15:14 - 2012-03-09 12:41 - 000000000 ____D C:\Program Files (x86)\ASUS
2019-12-15 15:14 - 2009-07-13 20:20 - 000000000 ____D C:\Windows\registration
2019-12-14 21:53 - 2019-05-21 20:14 - 000000000 ____D C:\Users\smelborp\AppData\Local\ElevatedDiagnostics
2019-12-14 12:59 - 2009-07-28 22:09 - 000000000 ____D C:\Windows\Panther
2019-12-14 12:49 - 2018-10-11 16:59 - 000000000 ____D C:\Users\smelborp\Downloads\instaladores
2019-12-13 19:10 - 2012-03-09 12:29 - 000003472 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA
2019-12-13 19:10 - 2012-03-09 12:29 - 000003344 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore
2019-12-13 00:18 - 2019-07-17 18:12 - 002076186 _____ C:\Users\smelborp\Desktop\La Negrita Cucurumbe.pdf
2019-12-12 20:00 - 2012-03-09 12:30 - 000002224 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2019-12-07 12:15 - 2009-07-13 20:20 - 000000000 ____D C:\Windows\system32\NDF
2019-12-05 12:01 - 2018-10-11 16:54 - 000000000 ____D C:\Users\smelborp\Documents\ZALO
2019-12-03 18:56 - 2018-05-20 00:28 - 000000000 ____D C:\Program Files\Common Files\Adobe
2019-12-02 12:33 - 2019-09-01 20:26 - 001181184 _____ C:\Users\smelborp\Documents\PARAESCOLARES III (B).xls
2019-11-29 20:43 - 2019-09-01 20:26 - 001182720 _____ C:\Users\smelborp\Documents\PARAESCOLARES V (A).xls
2019-11-29 18:04 - 2019-09-01 20:26 - 001190912 _____ C:\Users\smelborp\Documents\PARAESCOLARES IV (A).xls
2019-11-28 12:44 - 2019-09-01 20:26 - 001193984 _____ C:\Users\smelborp\Documents\PARAESCOLARES V (B).xls
2019-11-28 12:35 - 2019-09-01 20:26 - 001198592 _____ C:\Users\smelborp\Documents\PARAESCOLARES III (A).xls
2019-11-28 12:35 - 2019-09-01 20:26 - 001180160 _____ C:\Users\smelborp\Documents\PARAESCOLARES I.xls
2019-11-28 12:33 - 2019-09-01 20:26 - 001204736 _____ C:\Users\smelborp\Documents\PARAESCOLARES VI (A).xls
2019-11-28 12:25 - 2019-09-01 20:26 - 001175552 _____ C:\Users\smelborp\Documents\PARAESCOLARES II.xls
2019-11-19 18:43 - 2018-10-11 16:46 - 000000000 ____D C:\Users\smelborp\Documents\WORK
==================== Files in the root of some directories ========
2018-09-11 17:06 - 2018-09-11 17:06 - 000000008 __RSH () C:\ProgramData\sysqcl1131236454.dat
2018-03-08 00:00 - 2019-12-15 15:51 - 000000380 _____ () C:\Users\smelborp\AppData\Roaming\sp_data.sys
2018-09-27 17:28 - 2019-02-28 21:55 - 000000410 _____ () C:\Users\smelborp\AppData\Local\oobelibMkey.log
2019-10-10 14:28 - 2019-10-10 14:28 - 000000218 _____ () C:\Users\smelborp\AppData\Local\recently-used.xbel
==================== SigCheckExt =========================
2006-12-01 22:37 - 2006-12-01 22:37 - 000904704 _____ (Microsoft Corporation) C:\msdia80.dll
2012-03-29 07:03 - 2012-03-29 07:03 - 016211456 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\amdocl64.dll
2011-12-13 23:44 - 2011-12-13 23:44 - 000027648 _____ C:\Windows\system32\kdbsdk64.dll
2012-03-29 07:01 - 2012-03-29 07:01 - 000054784 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2012-03-29 07:03 - 2012-03-29 07:03 - 000069632 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\OpenVideo64.dll
2012-03-29 07:03 - 2012-03-29 07:03 - 000061952 _____ C:\Windows\system32\OVDecode64.dll
2011-11-15 19:58 - 2011-11-15 19:58 - 000146432 _____ (Multicore Ware) C:\Windows\system32\SlotMaximizerAg.dll
2011-11-15 19:58 - 2011-11-15 19:58 - 003507712 _____ (Multicore Ware) C:\Windows\system32\SlotMaximizerBe.dll
2012-03-26 19:49 - 2012-03-26 19:49 - 000348160 _____ (Microsoft Corporation) C:\Windows\msvcr71.dll
2012-03-26 19:49 - 2012-03-26 19:49 - 000434252 _____ (Microsoft Corporation) C:\Windows\MSVCRTD.DLL
2012-03-29 07:02 - 2012-03-29 07:02 - 012992512 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\amdocl.dll
2011-12-13 23:44 - 2011-12-13 23:44 - 000023040 _____ C:\Windows\SysWOW64\kdbsdk32.dll
2018-03-08 00:29 - 2018-03-08 00:29 - 000499712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcp71.dll
2002-01-05 05:37 - 2002-01-05 05:37 - 000344064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcr70.dll
2018-03-08 00:29 - 2018-03-08 00:29 - 000348160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcr71.dll
2012-03-29 07:01 - 2012-03-29 07:01 - 000049152 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll
2012-03-29 07:03 - 2012-03-29 07:03 - 000059904 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\OpenVideo.dll
2012-03-29 07:03 - 2012-03-29 07:03 - 000054784 _____ C:\Windows\SysWOW64\OVDecode.dll
2011-11-15 19:57 - 2011-11-15 19:57 - 000122880 _____ (Multicore Ware) C:\Windows\SysWOW64\SlotMaximizerAg.dll
2011-11-15 19:57 - 2011-11-15 19:57 - 002463744 _____ (Multicore Ware) C:\Windows\SysWOW64\SlotMaximizerBe.dll
2019-12-15 15:35 - 2019-12-15 15:35 - 002264064 _____ (Farbar) C:\Users\smelborp\Downloads\FRST64.exe
2018-05-19 12:24 - 2018-05-19 12:24 - 000527423 _____ ( ) C:\Users\smelborp\Downloads\Lame_v3.99.3_for_Windows.exe
2018-08-16 17:49 - 2018-08-16 17:49 - 002470552 _____ C:\Users\smelborp\Downloads\sai-1-2-5-ful-en.exe
2019-10-18 07:33 - 2019-10-18 07:33 - 000413062 _____ C:\Users\smelborp\Downloads\vsfilter.2.39_nt.exe
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
==================== BCD ================================
Administrador de arranque de firmware
-----------------------------------
Identificador {fwbootmgr}
displayorder {bootmgr}
{9ab1cbf2-aa42-11e1-b443-b3edc96fa853}
timeout 2
Administrador de arranque de Windows
----------------------------------
Identificador {bootmgr}
device partition=\Device\HarddiskVolume1
path \EFI\Microsoft\Boot\bootmgfw.efi
description Windows Boot Manager
locale es-ES
inherit {globalsettings}
extendedinput Yes
default {current}
resumeobject {9ab1cbf3-aa42-11e1-b443-b3edc96fa853}
displayorder {current}
toolsdisplayorder {memdiag}
timeout 30
customactions 0x1000043000001
0x5400000f
custom:5400000f {99410ac4-08b1-11e3-8bb6-10bf4829a00b}
Aplicaci�n de firmware (101fffff)
---------------------------------
Identificador {9ab1cbf2-aa42-11e1-b443-b3edc96fa853}
description CD/DVD Drive
Cargador de arranque de Windows
-----------------------------
Identificador {99410ac4-08b1-11e3-8bb6-10bf4829a00b}
device ramdisk=[\Device\HarddiskVolume4]\Recovery\WindowsRE\Winre.wim,{99410ac5-08b1-11e3-8bb6-10bf4829a00b}
path \windows\system32\winload.efi
description Windows Recovery Environment
inherit {bootloadersettings}
osdevice ramdisk=[\Device\HarddiskVolume4]\Recovery\WindowsRE\Winre.wim,{99410ac5-08b1-11e3-8bb6-10bf4829a00b}
systemroot \windows
nx OptIn
winpe Yes
Cargador de arranque de Windows
-----------------------------
Identificador {99410ac6-08b1-11e3-8bb6-10bf4829a00b}
device ramdisk=[C:]\Recovery\99410ac6-08b1-11e3-8bb6-10bf4829a00b\Winre.wim,{99410ac7-08b1-11e3-8bb6-10bf4829a00b}
path \windows\system32\winload.efi
description Windows Recovery Environment
inherit {bootloadersettings}
osdevice ramdisk=[C:]\Recovery\99410ac6-08b1-11e3-8bb6-10bf4829a00b\Winre.wim,{99410ac7-08b1-11e3-8bb6-10bf4829a00b}
systemroot \windows
nx OptIn
winpe Yes
Cargador de arranque de Windows
-----------------------------
Identificador {99410ac8-08b1-11e3-8bb6-10bf4829a00b}
device ramdisk=[C:]\Recovery\99410ac8-08b1-11e3-8bb6-10bf4829a00b\Winre.wim,{99410ac9-08b1-11e3-8bb6-10bf4829a00b}
path \windows\system32\winload.efi
description Windows Recovery Environment
inherit {bootloadersettings}
osdevice ramdisk=[C:]\Recovery\99410ac8-08b1-11e3-8bb6-10bf4829a00b\Winre.wim,{99410ac9-08b1-11e3-8bb6-10bf4829a00b}
systemroot \windows
nx OptIn
winpe Yes
Cargador de arranque de Windows
-----------------------------
Identificador {99410aca-08b1-11e3-8bb6-10bf4829a00b}
device ramdisk=[C:]\Recovery\99410aca-08b1-11e3-8bb6-10bf4829a00b\Winre.wim,{99410acb-08b1-11e3-8bb6-10bf4829a00b}
path \windows\system32\winload.efi
description Windows Recovery Environment
inherit {bootloadersettings}
osdevice ramdisk=[C:]\Recovery\99410aca-08b1-11e3-8bb6-10bf4829a00b\Winre.wim,{99410acb-08b1-11e3-8bb6-10bf4829a00b}
systemroot \windows
nx OptIn
winpe Yes
Cargador de arranque de Windows
-----------------------------
Identificador {current}
device partition=C:
path \Windows\system32\winload.efi
description Windows 7
locale es-ES
inherit {bootloadersettings}
recoverysequence {99410aca-08b1-11e3-8bb6-10bf4829a00b}
recoveryenabled Yes
osdevice partition=C:
systemroot \Windows
resumeobject {9ab1cbf3-aa42-11e1-b443-b3edc96fa853}
nx OptIn
Cargador de arranque de Windows
-----------------------------
Identificador {9ab1cbf5-aa42-11e1-b443-b3edc96fa853}
device ramdisk=[\Device\HarddiskVolume4]\sources\boot.wim,{ramdiskoptions}
path \windows\system32\boot\winload.efi
description WinPE
osdevice ramdisk=[\Device\HarddiskVolume4]\sources\boot.wim,{ramdiskoptions}
systemroot \windows
detecthal Yes
winpe Yes
Cargador de arranque de Windows
-----------------------------
Identificador {d6d92c56-aa4f-11e1-8314-ff7b2be12b50}
device ramdisk=[\Device\HarddiskVolume4]\Recovery\WindowsRE\winre.wim,{d5e19d3a-aa4f-11e1-8314-ff7b2be12b50}
path \windows\system32\winload.efi
description Windows Recovery Environment
inherit {bootloadersettings}
osdevice ramdisk=[\Device\HarddiskVolume4]\Recovery\WindowsRE\winre.wim,{d5e19d3a-aa4f-11e1-8314-ff7b2be12b50}
systemroot \windows
nx OptIn
winpe Yes
Reanudar tras hibernaci�n
-------------------------
Identificador {9ab1cbf3-aa42-11e1-b443-b3edc96fa853}
device partition=C:
path \Windows\system32\winresume.efi
description Windows Resume Application
locale es-ES
inherit {resumeloadersettings}
filedevice partition=C:
filepath \hiberfil.sys
debugoptionenabled No
Herramienta de comprobaci�n de memoria de Windows
-------------------------------------------------
Identificador {memdiag}
device partition=\Device\HarddiskVolume1
path \EFI\Microsoft\Boot\memtest.efi
description Windows Memory Diagnostic
locale es-ES
inherit {globalsettings}
badmemoryaccess Yes
Configuraci�n de EMS
--------------------
Identificador {emssettings}
bootems Yes
Configuraci�n del depurador
---------------------------
Identificador {dbgsettings}
debugtype Serial
debugport 1
baudrate 115200
Defectos de RAM
---------------
Identificador {badmemory}
Configuraci�n global
--------------------
Identificador {globalsettings}
inherit {dbgsettings}
{emssettings}
{badmemory}
Configuraci�n del cargador de arranque
------------------------------------
Identificador {bootloadersettings}
inherit {globalsettings}
{hypervisorsettings}
Configuraci�n de hipervisor
-------------------
Identificador {hypervisorsettings}
hypervisordebugtype Serial
hypervisordebugport 1
hypervisorbaudrate 115200
Reanudar la configuraci�n del cargador
--------------------------------------
Identificador {resumeloadersettings}
inherit {globalsettings}
Opciones de dispositivo
-----------------------
Identificador {99410ac5-08b1-11e3-8bb6-10bf4829a00b}
description Ramdisk Options
ramdisksdidevice partition=\Device\HarddiskVolume4
ramdisksdipath \Recovery\WindowsRE\boot.sdi
Opciones de dispositivo
-----------------------
Identificador {99410ac7-08b1-11e3-8bb6-10bf4829a00b}
description Ramdisk Options
ramdisksdidevice partition=C:
ramdisksdipath \Recovery\99410ac6-08b1-11e3-8bb6-10bf4829a00b\boot.sdi
Opciones de dispositivo
-----------------------
Identificador {99410ac9-08b1-11e3-8bb6-10bf4829a00b}
description Ramdisk Options
ramdisksdidevice partition=C:
ramdisksdipath \Recovery\99410ac8-08b1-11e3-8bb6-10bf4829a00b\boot.sdi
Opciones de dispositivo
-----------------------
Identificador {99410acb-08b1-11e3-8bb6-10bf4829a00b}
description Ramdisk Options
ramdisksdidevice partition=C:
ramdisksdipath \Recovery\99410aca-08b1-11e3-8bb6-10bf4829a00b\boot.sdi
Opciones del disco RAM de instalaci�n
-------------------------------------
Identificador {ramdiskoptions}
description Ramdisk options
ramdisksdidevice partition=\Device\HarddiskVolume4
ramdisksdipath \boot\boot.sdi
Opciones de dispositivo
-----------------------
Identificador {d5e19d3a-aa4f-11e1-8314-ff7b2be12b50}
description Ramdisk options
ramdisksdidevice partition=\Device\HarddiskVolume4
ramdisksdipath \Recovery\WindowsRE\boot.sdi
LastRegBack: 2019-05-18 19:03
==================== End of FRST.txt ========================Este es el archivo “Addition”
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 14-12-2019
Ran by smelborp (15-12-2019 16:30:30)
Running from C:\Users\smelborp\Downloads
Windows 7 Home Basic Service Pack 1 (X64) (2018-03-08 07:00:01)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
Administrador (S-1-5-21-306248585-3140627608-1750752149-500 - Administrator - Disabled)
Invitado (S-1-5-21-306248585-3140627608-1750752149-501 - Limited - Disabled)
smelborp (S-1-5-21-306248585-3140627608-1750752149-1001 - Administrator - Enabled) => C:\Users\smelborp
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AS: Windows Defender (Enabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
Actualización del driver del escáner EPSON Stylus CX5600 Series (HKLM-x32\...\{116D5112-0717-4411-A516-43468EF26D73}) (Version: - )
Adobe Acrobat Reader DC - Español (HKLM-x32\...\{AC76BA86-7AD7-1034-7B44-AC0F074E4100}) (Version: 19.012.20035 - Adobe Systems Incorporated)
Adobe After Effects CC 2017 (HKLM-x32\...\AEFT_14_0_0) (Version: 14.0.0 - Adobe Systems Incorporated)
Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 4.8.0.421 - Adobe Systems Incorporated)
Adobe Dreamweaver CC 2018 (HKLM-x32\...\DRWV_18_0) (Version: 18.0 - Adobe Systems Incorporated)
Adobe Flash Player 10 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 10.0.32.18 - Adobe Systems Incorporated)
Adobe Flash Player 30 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 30.0.0.113 - Adobe Systems Incorporated)
Adobe Media Encoder CC 2017 (HKLM-x32\...\AME_11_0_0) (Version: 11.0.0 - Adobe Systems Incorporated)
Adobe Muse CC 2017 (HKLM-x32\...\MUSE_2017_0_0) (Version: 2017.0.0.149 - Adobe Systems Incorporated)
AMD Catalyst Install Manager (HKLM\...\{338248E5-6466-84C2-B590-1F78DE389246}) (Version: 3.0.864.0 - Advanced Micro Devices, Inc.)
AMD Quick Stream (HKLM\...\{E9EED4AE-682B-4501-9574-D09A21717599}_is1) (Version: 3.3.6.0 - AppEx Networks)
ASUS AI Recovery (HKLM-x32\...\{D39F0676-163E-4595-A917-E28F99BBD4D2}) (Version: 1.0.24 - ASUS)
ASUS FaceLogon (HKLM-x32\...\{64452561-169F-4A36-A2FF-B5E118EC65F5}) (Version: 1.0.0014 - ASUS)
ASUS LifeFrame3 (HKLM-x32\...\{1DBD1F12-ED93-49C0-A7CC-56CBDE488158}) (Version: 3.1.1 - ASUS)
ASUS Live Update (HKLM-x32\...\{FA540E67-095C-4A1B-97BA-4D547DEC9AF4}) (Version: 3.1.2 - ASUS)
ASUS Power4Gear Hybrid (HKLM\...\{9B6239BF-4E85-4590-8D72-51E30DB1A9AA}) (Version: 1.2.1 - ASUS)
ASUS Splendid Video Enhancement Technology (HKLM-x32\...\{0969AF05-4FF6-4C00-9406-43599238DE0D}) (Version: 1.02.0041 - ASUS)
ASUS USB Charger Plus (HKLM-x32\...\{A859E3E5-C62F-4BFA-AF1D-2B95E03166AF}) (Version: 2.0.9 - ASUS)
ASUS Virtual Camera (HKLM-x32\...\{EC8BD21F-0CA0-4BBF-97D9-4A52B30041A1}) (Version: 1.0.26 - ASUS)
ASUS Virtual Touch (HKLM-x32\...\{938CFBD4-0652-49E5-BB8B-153948865941}) (Version: 1.0.9 - ASUS)
ASUSDVD (HKLM-x32\...\InstallShield_{DEC235ED-58A4-4517-A278-C41E8DAEAB3B}) (Version: 10.0.3622.52 - CyberLink Corp.)
AsusScr_K5_noSound_En (HKLM-x32\...\AsusScr_K5_noSound_En) (Version: 1.0.0001 - ASUS)
AsusVibe2.0 (HKLM-x32\...\Asus Vibe2.0) (Version: 2.0.9.157 - ASUSTEK)
ATK Package (HKLM-x32\...\{AB5C933E-5C7D-4D30-B314-9C83A49B94BE}) (Version: 1.0.0016 - ASUS)
Audacity 2.2.2 (HKLM-x32\...\Audacity_is1) (Version: 2.2.2 - Audacity Team)
Blender (HKLM\...\{E29A1273-2E7A-40E7-AA63-428A11D59429}) (Version: 2.79.2 - Blender Foundation)
CCleaner (HKLM\...\CCleaner) (Version: 5.43 - Piriform)
Content Transfer (HKLM-x32\...\{CFADE4AF-C0CF-4A04-A776-741318F1658F}) (Version: 1.3.0.23190 - Sony Corporation)
Control ActiveX de Windows Live Mesh para conexiones remotas (HKLM-x32\...\{04668DF2-D32F-4555-9C7E-35523DCD6544}) (Version: 15.4.5722.2 - Microsoft Corporation)
Controle ActiveX do Windows Live Mesh para Conexões Remotas (HKLM-x32\...\{39B3184E-0BFB-40FA-ADDC-E7E2D535CDA9}) (Version: 15.4.5722.2 - Microsoft Corporation)
Contrôle ActiveX Windows Live Mesh pour connexions à distance (HKLM-x32\...\{55D003F4-9599-44BF-BA9E-95D060730DD3}) (Version: 15.4.5722.2 - Microsoft Corporation)
CyberLink LabelPrint (HKLM-x32\...\InstallShield_{C59C179C-668D-49A9-B6EA-0121CCFC1243}) (Version: 2.5.3624 - CyberLink Corp.)
CyberLink Media Suite (HKLM-x32\...\InstallShield_{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}) (Version: 8.0.2926 - CyberLink Corp.)
CyberLink Power2Go (HKLM-x32\...\InstallShield_{40BF1E83-20EB-11D8-97C5-0009C5020658}) (Version: 7.0.0.1126 - CyberLink Corp.)
D3DX10 (HKLM-x32\...\{E09C4DB7-630C-4F06-A631-8EA7239923AF}) (Version: 15.4.2368.0902 - Microsoft) Hidden
Deadtime Stories (HKLM-x32\...\Deadtime Stories_is1) (Version: 1.0 - MyPlayCity, Inc.)
DirectVobSub (remove only) (HKLM-x32\...\DirectVobSub) (Version: - )
Eines de correcció del Microsoft Office 2013: català (HKLM\...\{90150000-001F-0403-1000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
EPSON Scan (HKLM-x32\...\EPSON Scanner) (Version: - )
ETDWare PS/2-X64 10.5.9.0 (HKLM\...\Elantech) (Version: 10.5.9.0 - ELAN Microelectronic Corp.)
Fast Boot (HKLM\...\{13F4A7F3-EABC-4261-AF6B-1317777F0755}) (Version: 1.0.10 - ASUS)
Ferramentas de verificación de Microsoft Office 2013 - Galego (HKLM\...\{90150000-001F-0456-1000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Galapago (HKLM-x32\...\{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-111307457}) (Version: - Oberon Media)
Galería fotográfica de Windows Live (HKLM-x32\...\{E85A4EFC-82F2-4CEE-8A8E-62FDAD353A66}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Galerie de photos Windows Live (HKLM-x32\...\{488F0347-C4A7-4374-91A7-30818BEDA710}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Game Park Console (HKLM-x32\...\Game Park Console) (Version: 1.2.4.431 - Oberon Media Inc.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 79.0.3945.79 - Google LLC)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.35.421 - Google LLC) Hidden
Google Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.21.79 - Google Inc.) Hidden
Grand Fantasia-ES versión 1 (HKLM-x32\...\Grand Fantasia-ES_is1) (Version: 1 - Aeria Games)
InstantOn for NB (HKLM-x32\...\{749F674B-2674-47E8-879C-5626A06B2A91}) (Version: 2.2.0 - ASUS)
Intel(R) C++ Redistributables for Windows* on Intel(R) 64 (HKLM-x32\...\{D2437C5C-2D8C-40D2-8059-689AD7239FA3}) (Version: 11.1.048 - Intel Corporation)
Junk Mail filter update (HKLM-x32\...\{1F6AB0E7-8CDD-4B93-8A23-AA9EB2FEFCE4}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
LAME v3.99.3 (for Windows) (HKLM-x32\...\LAME_is1) (Version: - )
Mahjong Memoirs (HKLM-x32\...\{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-117948443}) (Version: - Oberon Media)
Malwarebytes versión 3.5.1.2522 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.5.1.2522 - Malwarebytes)
Mesh Runtime (HKLM-x32\...\{8C6D6116-B724-4810-8F2D-D047E6B7D68E}) (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.7.1 (español) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 3082) (Version: 4.7.02558 - Microsoft Corporation)
Microsoft .NET Framework 4.7.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.7.02558 - Microsoft Corporation)
Microsoft Office Professional Plus 2013 (HKLM\...\Office15.PROPLUS) (Version: 15.0.4569.1506 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50907.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40660 (HKLM-x32\...\{ef6b00ec-13e1-4c25-9064-b2f383cb8412}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40660 (HKLM-x32\...\{61087a79-ac85-455c-934d-1fa22cc64f36}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x64) - 14.15.26706 (HKLM-x32\...\{95ac1cfa-f4fb-4d1b-8912-7f9d5fbb140d}) (Version: 14.15.26706.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x86) - 14.15.26706 (HKLM-x32\...\{7e9fae12-5bbf-47fb-b944-09c49e75c061}) (Version: 14.15.26706.0 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Outils de vérification linguistique 2013 de Microsoft Office - Français (HKLM\...\{90150000-001F-040C-1000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Paquete de idioma de Microsoft Visual Studio 2010 Tools para Office Runtime (x64) - ESN (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - ESN) (Version: 10.0.50903 - Microsoft Corporation)
Plants vs Zombies (HKLM-x32\...\{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-117080787}) (Version: - Oberon Media)
Qualcomm Atheros WiFi Driver Installation (HKLM-x32\...\{7D916FA5-DAE9-4A25-B089-655C70EAF607}) (Version: 9.2 - Qualcomm Atheros)
QuickTime 7 (HKLM-x32\...\{FF59BD75-466A-4D5A-AD23-AAD87C5FD44C}) (Version: 7.79.80.95 - Apple Inc.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.48.823.2011 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6570 - Realtek Semiconductor Corp.)
Revisores de Texto do Microsoft Office 2013 – Português do Brasil (HKLM\...\{90150000-001F-0416-1000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
SceneSwitch (HKLM-x32\...\{5172E572-C175-4F80-A6D5-5CB45826AD61}) (Version: 1.0.12 - ASUS)
Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (HKLM\...\{90150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUS_{D82063A8-7C8C-4C3B-A9BB-95138CA55D26}) (Version: - Microsoft)
Software de impresora EPSON (HKLM\...\EPSON Printer and Utilities) (Version: - )
Tableta Wacom (HKLM\...\Wacom Tablet Driver) (Version: 6.3.29-6 - Wacom Technology Corp.)
Turbo Fiesta (HKLM-x32\...\{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-115320460}) (Version: - Oberon Media)
Update for Skype for Business 2015 (KB4018290) 64-Bit Edition (HKLM\...\{90150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUS_{845EC284-26A3-46CA-9140-FA924FC134E0}) (Version: - Microsoft)
Update for Skype for Business 2015 (KB4018290) 64-Bit Edition (HKLM\...\{90150000-00C1-0000-1000-0000000FF1CE}_Office15.PROPLUS_{845EC284-26A3-46CA-9140-FA924FC134E0}) (Version: - Microsoft)
Update for Skype for Business 2015 (KB4018290) 64-Bit Edition (HKLM\...\{90150000-012B-0C0A-1000-0000000FF1CE}_Office15.PROPLUS_{845EC284-26A3-46CA-9140-FA924FC134E0}) (Version: - Microsoft)
Uzak Bağlantılar İçin Windows Live Mesh ActiveX Denetimi (HKLM-x32\...\{241E7104-937A-4366-AD57-8FDDDB003939}) (Version: 15.4.5722.2 - Microsoft Corporation)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.8 - VideoLAN)
Windows Live Mesh ActiveX Control for Remote Connections (HKLM-x32\...\{2902F983-B4C1-44BA-B85D-5C6D52E2C441}) (Version: 15.4.5722.2 - Microsoft Corporation)
Windows Live 程式集 (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3538.0513 - Microsoft Corporation)
WinFlash (HKLM-x32\...\{8F21291E-0444-4B1D-B9F9-4370A73E346D}) (Version: 2.41.1 - ASUS)
WinRAR 5.50 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 5.50.0 - win.rar GmbH)
Wireless Console 3 (HKLM-x32\...\{19EA33FB-B34E-40EA-8B8A-61743AEB795A}) (Version: 3.0.27 - ASUS)
ZBrush 2019 (HKLM\...\ZBrush 2019 2019) (Version: 2019 - Pixologic)
بريد Windows Live (HKLM-x32\...\{0A4C4B29-5A9D-4910-A13C-B920D5758744}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
عنصر تحكم ActiveX الخاص بـ Windows Live Mesh للاتصالات البعيدة (HKLM-x32\...\{E18B30AA-6E2D-480C-B918-AF61009F4010}) (Version: 15.4.5722.2 - Microsoft Corporation)
معرض صور Windows Live (HKLM-x32\...\{FBCA06D2-4642-4F33-B20A-A7AB3F0D2E69}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
ตัวควบคุม ActiveX ใน Windows Live Mesh สำหรับการเชื่อมต่อระยะไกล (ไทย) (HKLM-x32\...\{A2EDAEEB-C981-46D5-8163-CF8F5F640EEE}) (Version: 15.4.5722.2 - Microsoft Corporation)
用于远程连接的 Windows Live Mesh ActiveX 控件(简体中文) (HKLM-x32\...\{F992409C-9D10-4AE2-BAEB-B5409AD3785E}) (Version: 15.4.5722.2 - Microsoft Corporation)
適用遠端連線的 Windows Live Mesh ActiveX 控制項 (HKLM-x32\...\{622DE1BE-9EDE-49D3-B349-29D64760342A}) (Version: 15.4.5722.2 - Microsoft Corporation)
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
CustomCLSID: HKU\S-1-5-21-306248585-3140627608-1750752149-1001_Classes\CLSID\{e8c77137-e224-5791-b6e9-ff0305797a13}\InprocServer32 -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Systems Incorporated -> Adobe Systems)
ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => -> No File
ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => -> No File
ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => -> No File
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ContextMenuHandlers1: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => -> No File
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2017-08-11] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2017-08-11] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\atiacm64.dll [2012-03-29] (Advanced Micro Devices, Inc.) [File not signed]
ContextMenuHandlers6: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => -> No File
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2017-08-11] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2017-08-11] (win.rar GmbH -> Alexander Roshal)
==================== Codecs (Whitelisted) ====================
==================== Shortcuts & WMI ========================
(The entries could be listed to be restored or removed.)
Shortcut: C:\Users\smelborp\Desktop\mis documentos - Acceso directo.lnk -> C:\Users\smelborp\Desktop\mis documentos.bat ()
==================== Loaded Modules (Whitelisted) =============
2012-02-21 15:49 - 2012-02-21 15:49 - 000009216 _____ () [File not signed] C:\Program Files (x86)\ASUS\Splendid\GLCDdll.dll
2012-01-31 10:25 - 2012-01-31 10:25 - 001163264 _____ () [File not signed] C:\Program Files (x86)\ASUS\Wireless Console 3\acAuth.dll
2012-03-29 06:33 - 2012-03-29 06:33 - 000073728 _____ () [File not signed] C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Container.Wlan.dll
2012-01-31 10:25 - 2012-01-31 10:25 - 000080384 _____ (ACTIONTEC Electronics,Inc) [File not signed] C:\Program Files (x86)\ASUS\Wireless Console 3\ATKWLIOC.DLL
2012-01-09 11:09 - 2012-01-09 11:09 - 000215552 _____ (ASUSTek Computer Inc.) [File not signed] C:\Program Files (x86)\ASUS\ASUS Live Update\alvupdt.dll
2012-02-21 15:48 - 2012-02-21 15:48 - 000053248 _____ (ASUSTeK) [File not signed] C:\Program Files (x86)\ASUS\Splendid\Chameleon.dll
2012-02-21 15:49 - 2012-02-21 15:49 - 000032768 _____ (ASUSTek) [File not signed] C:\Program Files (x86)\ASUS\Splendid\OVS.dll
2018-03-08 00:23 - 2011-09-28 03:16 - 000114688 _____ (Atheros Communications, Inc.) [File not signed] C:\Program Files (x86)\Qualcomm Atheros WiFi Driver Installation\AthIhvWlanExt.dll
2018-03-08 00:23 - 2011-09-28 03:16 - 000269824 _____ (Atheros Communications, Inc.) [File not signed] c:\program files (x86)\qualcomm atheros wifi driver installation\athihvwpap2p.dll
2012-01-31 10:25 - 2012-01-31 10:25 - 000036864 _____ (ATK) [File not signed] C:\Program Files (x86)\ASUS\Wireless Console 3\inter_f2.dll
2012-01-31 10:25 - 2012-01-31 10:25 - 002891264 _____ (FreeImage) [File not signed] C:\Program Files (x86)\ASUS\Wireless Console 3\FreeImage.dll
2018-05-28 18:28 - 2018-05-03 08:34 - 001677824 _____ (Igor Pavlov) [File not signed] C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\7z.dll
2018-03-08 00:29 - 2018-03-08 00:29 - 001093120 _____ (Microsoft Corporation) [File not signed] C:\Windows\WinSxS\x86_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.4053_none_cbf21254470d8752\MFC80U.DLL
2012-01-31 10:25 - 2012-01-31 10:25 - 000331776 _____ (Realtek Semiconductor Corp.) [File not signed] C:\Program Files (x86)\ASUS\Wireless Console 3\RtlLib.dll
2012-01-31 10:25 - 2012-01-31 10:25 - 000200704 _____ (Realtek) [File not signed] C:\Program Files (x86)\ASUS\Wireless Console 3\IpLib.dll
2012-01-31 10:25 - 2012-01-31 10:25 - 000303104 _____ (Silicon Integrated Systems Corp.) [File not signed] C:\Program Files (x86)\ASUS\Wireless Console 3\SiSPkt.dll
2012-01-31 10:25 - 2012-01-31 10:25 - 001069056 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files (x86)\ASUS\Wireless Console 3\LIBEAY32.dll
2018-05-28 18:27 - 2018-01-18 15:16 - 000030208 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\iconengines\qsvgicon.dll
2018-05-28 18:27 - 2018-01-18 15:15 - 000024576 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\imageformats\qgif.dll
2018-05-28 18:27 - 2018-01-18 15:16 - 000031232 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\imageformats\qicns.dll
2018-05-28 18:27 - 2018-01-18 15:15 - 000025088 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\imageformats\qico.dll
2018-05-28 18:27 - 2018-01-18 15:15 - 000242688 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\imageformats\qjpeg.dll
2018-05-28 18:27 - 2018-01-18 15:16 - 000019968 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\imageformats\qsvg.dll
2018-05-28 18:27 - 2018-01-18 15:16 - 000018944 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\imageformats\qtga.dll
2018-05-28 18:27 - 2018-01-18 15:16 - 000318976 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\imageformats\qtiff.dll
2018-05-28 18:27 - 2018-01-18 15:16 - 000017920 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\imageformats\qwbmp.dll
2018-05-28 18:27 - 2018-01-18 15:16 - 000328704 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\imageformats\qwebp.dll
2018-05-28 18:27 - 2018-01-18 15:15 - 000993792 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\platforms\qwindows.dll
2018-05-28 18:27 - 2018-05-03 08:04 - 004809728 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\Qt5Core.dll
2018-05-28 18:27 - 2018-01-18 15:12 - 005100032 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\Qt5Gui.dll
2018-05-28 18:27 - 2018-01-18 15:10 - 002012672 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\Qt5Network.dll
2018-05-28 18:27 - 2018-01-18 15:18 - 002522112 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\Qt5Qml.dll
2018-05-28 18:27 - 2018-01-18 15:20 - 002570752 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\Qt5Quick.dll
2018-05-28 18:27 - 2018-01-18 15:16 - 000247808 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\Qt5Svg.dll
2018-05-28 18:27 - 2018-01-18 15:14 - 004482048 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\Qt5Widgets.dll
2018-05-28 18:27 - 2018-01-18 15:24 - 000206336 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\Qt5WinExtras.dll
2018-05-28 18:27 - 2018-01-18 15:22 - 000013312 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\QtQml\Models.2\modelsplugin.dll
2018-05-28 18:27 - 2018-01-18 15:22 - 000013824 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\QtQuick.2\qtquick2plugin.dll
2018-05-28 18:27 - 2018-01-18 15:27 - 000698368 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls\qtquickcontrolsplugin.dll
2018-05-28 18:27 - 2018-01-18 15:27 - 000173056 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Dialogs\dialogplugin.dll
2018-05-28 18:27 - 2018-01-18 15:26 - 000069632 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Layouts\qquicklayoutsplugin.dll
2018-05-28 18:27 - 2018-01-18 15:27 - 000097280 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\PrivateWidgets\widgetsplugin.dll
2018-05-28 18:27 - 2018-01-18 15:22 - 000013312 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Window.2\windowplugin.dll
2018-05-28 18:27 - 2018-01-18 15:29 - 000102400 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\scenegraph\softwarecontext.dll
==================== Alternate Data Streams (Whitelisted) ========
(If an entry is included in the fixlist, only the ADS will be removed.)
AlternateDataStreams: C:\ProgramData\Temp:2CFBE2D1 [133]
AlternateDataStreams: C:\ProgramData\Temp:373C6DC2 [124]
AlternateDataStreams: C:\ProgramData\Temp:5D458568 [124]
AlternateDataStreams: C:\ProgramData\Temp:8AD1F2E0 [122]
==================== Safe Mode (Whitelisted) ==================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
==================== Association (Whitelisted) =================
==================== Internet Explorer trusted/restricted ==========
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2009-07-13 19:34 - 2009-06-10 14:00 - 000000824 _____ C:\Windows\system32\drivers\etc\hosts
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> %C_EM64T_REDIST11%bin\Intel64;C:\Program Files (x86)\AMD APP\bin\x86_64;C:\Program Files (x86)\AMD APP\bin\x86;C:\Program Files\Common Files\Microsoft Shared\Windows Live;C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\Windows Live\Shared;C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static;C:\Program Files (x86)\QuickTime\QTSystem\
HKU\S-1-5-21-306248585-3140627608-1750752149-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\smelborp\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 192.168.100.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
(If an entry is included in the fixlist, it will be removed.)
MSCONFIG\Services: BBSvc => 3
MSCONFIG\Services: Fax => 3
MSCONFIG\startupreg: ACMON => C:\Program Files (x86)\ASUS\Splendid\ACMON.exe
MSCONFIG\startupreg: Adobe Creative Cloud => "C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe" --showwindow=false --onOSstartup=true
MSCONFIG\startupreg: Adobe Reader Speed Launcher => "C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe"
MSCONFIG\startupreg: AdobeAAMUpdater-1.0 => "C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe"
MSCONFIG\startupreg: AdobeGCInvoker-1.0 => "C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe"
MSCONFIG\startupreg: APSDaemon => "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
MSCONFIG\startupreg: ASUS Screen Saver Protector => C:\Windows\AsScrPro.exe
MSCONFIG\startupreg: ASUSWebStorage => C:\Program Files (x86)\ASUS\ASUS WebStorage\3.0.108.222\AsusWSPanel.exe /S
MSCONFIG\startupreg: CCleaner Monitoring => "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
MSCONFIG\startupreg: CCleaner Smart Cleaning => "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
MSCONFIG\startupreg: CLMLServer => "C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe"
MSCONFIG\startupreg: RemoteControl10 => "C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe"
MSCONFIG\startupreg: RTHDVCPL => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s
MSCONFIG\startupreg: Trend Micro Titanium => "C:\Program Files\Trend Micro\Titanium\VizorShortCut.exe" -ReFlush "none" "none"
MSCONFIG\startupreg: VizorHtmlDialog.exe => "C:\Program Files\Trend Micro\Titanium\UIFramework\VizorHtmlDialog.exe" "DEF" "EULA" "C:\Program Files\Trend Micro\Titanium\www\Installer.cmpt\resources\preinstall_01_welcome_trial.html" "DEF" "DEF" "DEF"
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [{02865D3E-0489-47A4-AAB6-D1E298B2D475}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{B5870F8A-95F4-4671-A64A-75F3C25C1CB8}] => (Allow) LPort=2869
FirewallRules: [{BF115C03-4E1E-4A49-AE87-09599DB0152E}] => (Allow) LPort=1900
FirewallRules: [{41F8BA3E-B0D1-4DE7-A786-ADCD19797D3E}] => (Allow) C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{F13EB21D-8C31-4D78-AA99-46889010D2F7}] => (Allow) C:\Program Files (x86)\Windows Live\Mesh\MOE.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{EE31FA00-318B-43D0-9CD4-3444FC9D4039}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD10\PowerDVD Cinema\PowerDVDCinema10.exe (CyberLink -> CyberLink Corp.)
FirewallRules: [{0642FA3F-EFA0-4F36-89F0-1DA1724CE22E}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD10\PowerDVD10.EXE (CyberLink -> CyberLink Corp.)
FirewallRules: [{B3D279CE-CA20-4AB6-916E-3E042C630579}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{3D319242-17C9-4160-979B-214F7581E952}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{75C21C70-C150-4067-A1B9-6266332E7A99}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{5C5F6309-955B-4C82-82A6-40C9EC7381E1}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{EF0463FB-3E52-4D61-9E73-9771587F6DFC}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{3FD7BF4B-B14C-4846-B6FA-591E0E792F8E}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{4AADF1D1-B562-46C5-9A83-C96729798E8C}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{F2EC9AAC-F070-46D9-AA0C-36BE1A69E4AA}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [TCP Query User{B8422B40-AD23-495F-B840-79A62FA5EFCA}C:\program files\adobe\adobe dreamweaver cc 2018\node\node.exe] => (Allow) C:\program files\adobe\adobe dreamweaver cc 2018\node\node.exe (Adobe Systems Incorporated -> Node.js)
FirewallRules: [UDP Query User{DE1BC1E6-A221-4382-B97A-CA60E72CD68F}C:\program files\adobe\adobe dreamweaver cc 2018\node\node.exe] => (Allow) C:\program files\adobe\adobe dreamweaver cc 2018\node\node.exe (Adobe Systems Incorporated -> Node.js)
FirewallRules: [TCP Query User{79935D47-D044-4A89-8B32-FEAC60453218}C:\program files\adobe\adobe dreamweaver cc 2018\node\node.exe] => (Allow) C:\program files\adobe\adobe dreamweaver cc 2018\node\node.exe (Adobe Systems Incorporated -> Node.js)
FirewallRules: [UDP Query User{716B8ADF-B811-4C47-AD61-363BB95F570D}C:\program files\adobe\adobe dreamweaver cc 2018\node\node.exe] => (Allow) C:\program files\adobe\adobe dreamweaver cc 2018\node\node.exe (Adobe Systems Incorporated -> Node.js)
FirewallRules: [{EF7C030C-A9B0-4E54-92E2-7D7F705B4832}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{11769721-FDC2-4283-A61C-7876A1BE9B92}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)
FirewallRules: [{125E965A-9CEF-4FB2-9B59-BDC9EA64CD18}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)
==================== Restore Points =========================
14-12-2019 13:09:06 Quitado ASUS Virtual Camera
==================== Faulty Device Manager Devices ============
==================== Event log errors: ========================
Application errors:
==================
Error: (12/15/2019 03:27:03 PM) (Source: Office 2013 Licensing Service) (EventID: 0) (User: )
Description: Event-ID 0
Error: (12/15/2019 02:25:27 PM) (Source: Office 2013 Licensing Service) (EventID: 0) (User: )
Description: Event-ID 0
Error: (12/14/2019 10:02:39 PM) (Source: WTabletServicePro) (EventID: 1) (User: )
Description: Event-ID 1
Error: (12/14/2019 10:02:32 PM) (Source: WTabletServicePro) (EventID: 1) (User: )
Description: Event-ID 1
Error: (12/14/2019 09:54:26 PM) (Source: PerfNet) (EventID: 2004) (User: )
Description: No se puede abrir el objeto de rendimiento del servicio del servidor. Los primeros cuatro bytes (DWORD) de la sección de datos contienen el código de estado.
Error: (12/14/2019 09:54:25 PM) (Source: PerfNet) (EventID: 2004) (User: )
Description: No se puede abrir el objeto de rendimiento del servicio del servidor. Los primeros cuatro bytes (DWORD) de la sección de datos contienen el código de estado.
Error: (12/14/2019 09:52:11 PM) (Source: PerfNet) (EventID: 2004) (User: )
Description: No se puede abrir el objeto de rendimiento del servicio del servidor. Los primeros cuatro bytes (DWORD) de la sección de datos contienen el código de estado.
Error: (12/14/2019 08:31:44 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nombre de la aplicación con errores: notepad.exe, versión: 6.1.7600.16385, marca de tiempo: 0x5de1c335
Nombre del módulo con errores: notepad.exe, versión: 6.1.7600.16385, marca de tiempo: 0x5de1c335
Código de excepción: 0xc0000005
Desplazamiento de errores: 0x00001125
Id. del proceso con errores: 0x1048
Hora de inicio de la aplicación con errores: 0x01d5b2f82b9d2a66
Ruta de acceso de la aplicación con errores: C:\Windows\SysWOW64\notepad.exe
Ruta de acceso del módulo con errores: C:\Windows\SysWOW64\notepad.exe
Id. del informe: 6a4650f6-1eeb-11ea-8f63-10bf4829a00b
System errors:
=============
Error: (12/15/2019 03:01:03 PM) (Source: DCOM) (EventID: 10005) (User: )
Description: Error de DCOM "1084" al intentar iniciar el servicio wuauserv con argumentos "" para ejecutar el servidor:
{E60687F7-01A1-40AA-86AC-DB1CBF673334}
Error: (12/15/2019 02:50:13 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: El servicio Instalador de módulos de Windows terminó inesperadamente. Esto se ha repetido 1 veces. Se realizará la siguiente acción correctora en 120000 milisegundos: Reiniciar el servicio.
Error: (12/15/2019 02:46:02 PM) (Source: DCOM) (EventID: 10005) (User: )
Description: Error de DCOM "1084" al intentar iniciar el servicio defragsvc con argumentos "" para ejecutar el servidor:
{D20A3293-3341-4AE8-9AAF-8E397CB63C34}
Error: (12/15/2019 02:44:47 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: El servicio Servicio de lista de redes depende del servicio Reconocimiento de ubicación de red, el cual no pudo iniciarse debido al siguiente error:
No se puede iniciar el servicio o grupo de dependencia.
Error: (12/15/2019 02:44:47 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: El servicio Servicio de lista de redes depende del servicio Reconocimiento de ubicación de red, el cual no pudo iniciarse debido al siguiente error:
No se puede iniciar el servicio o grupo de dependencia.
Error: (12/15/2019 02:44:47 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: El servicio Servicio de lista de redes depende del servicio Reconocimiento de ubicación de red, el cual no pudo iniciarse debido al siguiente error:
No se puede iniciar el servicio o grupo de dependencia.
Error: (12/15/2019 02:44:47 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: El servicio Servicio de lista de redes depende del servicio Reconocimiento de ubicación de red, el cual no pudo iniciarse debido al siguiente error:
No se puede iniciar el servicio o grupo de dependencia.
Error: (12/15/2019 02:44:47 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: El servicio Servicio de lista de redes depende del servicio Reconocimiento de ubicación de red, el cual no pudo iniciarse debido al siguiente error:
No se puede iniciar el servicio o grupo de dependencia.
Windows Defender:
===================================
Date: 2019-01-28 17:19:53.632
Description:
El examen de Windows Defender se detuvo antes de completarse.
Id. de examen:{504A39CD-EC4D-45A4-B556-8F479B5AB0D0}
Tipo de examen:AntiSpyware
Parámetros de examen:Examen rápido
Usuario:smelborp-PC\smelborp
Date: 2019-01-24 16:41:12.800
Description:
El examen de Windows Defender se detuvo antes de completarse.
Id. de examen:{E5A99EA1-3290-4162-B574-2BC7A38569D5}
Tipo de examen:AntiSpyware
Parámetros de examen:Examen rápido
Usuario:smelborp-PC\smelborp
CodeIntegrity:
===================================
Date: 2018-03-12 14:50:06.879
Description:
Windows no puede comprobar la integridad de imagen del archivo \Device\HarddiskVolume3\Windows\System32\drivers\wachidrouter.sys porque el hash del archivo no se encuentra en el sistema. Puede que un cambio reciente de hardware o software haya instalado un archivo dañado o con una firma incorrecta, o que exista un software malintencionado de origen desconocido.
Date: 2018-03-12 14:50:06.875
Description:
Windows no puede comprobar la integridad de imagen del archivo \Device\HarddiskVolume3\Windows\System32\drivers\wachidrouter.sys porque el hash del archivo no se encuentra en el sistema. Puede que un cambio reciente de hardware o software haya instalado un archivo dañado o con una firma incorrecta, o que exista un software malintencionado de origen desconocido.
Date: 2018-03-12 14:36:02.948
Description:
Windows no puede comprobar la integridad de imagen del archivo \Device\HarddiskVolume3\Windows\System32\drivers\wachidrouter.sys porque el hash del archivo no se encuentra en el sistema. Puede que un cambio reciente de hardware o software haya instalado un archivo dañado o con una firma incorrecta, o que exista un software malintencionado de origen desconocido.
Date: 2018-03-12 14:36:02.948
Description:
Windows no puede comprobar la integridad de imagen del archivo \Device\HarddiskVolume3\Windows\System32\drivers\wachidrouter.sys porque el hash del archivo no se encuentra en el sistema. Puede que un cambio reciente de hardware o software haya instalado un archivo dañado o con una firma incorrecta, o que exista un software malintencionado de origen desconocido.
Date: 2018-03-12 14:35:32.258
Description:
Windows no puede comprobar la integridad de imagen del archivo \Device\HarddiskVolume3\Windows\System32\drivers\wachidrouter.sys porque el hash del archivo no se encuentra en el sistema. Puede que un cambio reciente de hardware o software haya instalado un archivo dañado o con una firma incorrecta, o que exista un software malintencionado de origen desconocido.
Date: 2018-03-12 14:35:32.243
Description:
Windows no puede comprobar la integridad de imagen del archivo \Device\HarddiskVolume3\Windows\System32\drivers\wachidrouter.sys porque el hash del archivo no se encuentra en el sistema. Puede que un cambio reciente de hardware o software haya instalado un archivo dañado o con una firma incorrecta, o que exista un software malintencionado de origen desconocido.
Date: 2018-03-12 14:32:29.401
Description:
Windows no puede comprobar la integridad de imagen del archivo \Device\HarddiskVolume3\Windows\System32\drivers\wachidrouter.sys porque el hash del archivo no se encuentra en el sistema. Puede que un cambio reciente de hardware o software haya instalado un archivo dañado o con una firma incorrecta, o que exista un software malintencionado de origen desconocido.
Date: 2018-03-12 14:32:29.401
Description:
Windows no puede comprobar la integridad de imagen del archivo \Device\HarddiskVolume3\Windows\System32\drivers\wachidrouter.sys porque el hash del archivo no se encuentra en el sistema. Puede que un cambio reciente de hardware o software haya instalado un archivo dañado o con una firma incorrecta, o que exista un software malintencionado de origen desconocido.
==================== Memory info ===========================
BIOS: American Megatrends Inc. 207 04/10/2012
Motherboard: ASUSTeK COMPUTER INC. K55N
Processor: AMD A6-4400M APU with Radeon(tm) HD Graphics
Percentage of memory in use: 72%
Total physical RAM: 7636.18 MB
Available physical RAM: 2093.45 MB
Total Virtual: 15270.54 MB
Available Virtual: 9526.72 MB
==================== Drives ================================
Drive c: (OS) (Fixed) (Total:440.44 GB) (Free:155.62 GB) NTFS ==>[system with boot components (obtained from drive)]
Drive d: () (Removable) (Total:14.98 GB) (Free:14.88 GB) FAT32
\\?\Volume{857e758a-e795-4012-8918-4f9850835f22}\ (Recovery) (Fixed) (Total:25 GB) (Free:10.01 GB) NTFS
==================== MBR & Partition Table ====================
==========================================================
Disk: 0 (Size: 465.8 GB) (Disk ID: 527CD163)
Partition: GPT.
==========================================================
Disk: 1 (Protective MBR) (Size: 15 GB) (Disk ID: 00000000)
Partition: GPT.
==================== End of Addition.txt =======================y este es un archivo llamado Shortcut que también apareció:
Users shortcut scan result (x64) Version: 14-12-2019
Ran by smelborp (15-12-2019 16:34:32)
Running from C:\Users\smelborp\Downloads
Boot Mode: Normal
==================== Shortcuts =============================
(The entries could be listed to be restored or removed.)
Shortcut: C:\ProgramData\Microsoft\Windows\GameExplorer\{574AC0E5-F426-483F-83CF-D92A75FE6E50}\SupportTasks\0\Play more games.lnk -> hxxp:\promotions.oberon-media. com\redirector\APP\GE\
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\WinRAR.lnk -> C:\Program Files (x86)\WinRAR\WinRAR.exe (Alexander Roshal)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk -> C:\Windows\Installer\{AC76BA86-7AD7-1034-7B44-AC0F074E4100}\SC_Reader.ico (Flexera Software LLC)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe After Effects CC 2017.lnk -> C:\Program Files\Adobe\Adobe After Effects CC 2017\Support Files\AfterFX.exe (No File)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Creative Cloud.lnk -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe (Adobe Inc.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Dreamweaver CC 2018.lnk -> C:\Program Files\Adobe\Adobe Dreamweaver CC 2018\Dreamweaver.exe (Adobe Systems, Inc.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe InDesign CC 2018.lnk -> C:\Program Files\Adobe\Adobe InDesign CC 2018\InDesign.exe (Adobe Systems Incorporated)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Media Encoder CC 2017.lnk -> C:\Program Files\Adobe\Adobe Media Encoder CC 2017\Adobe Media Encoder.exe (No File)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Media Encoder CC 2018.lnk -> C:\Program Files\Adobe\Adobe Media Encoder CC 2018\Adobe Media Encoder.exe (No File)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Muse CC 2017.lnk -> C:\Program Files\Adobe\Adobe Muse CC 2017\Muse.exe (Adobe Systems, Incorporated)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Premiere Pro CC 2018.lnk -> C:\Program Files\Adobe\Adobe Premiere Pro CC 2018\Adobe Premiere Pro.exe (No File)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Audacity.lnk -> C:\Program Files (x86)\Audacity\audacity.exe (Audacity Team)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Anytime Upgrade.lnk -> C:\Windows\System32\WindowsAnytimeUpgradeUI.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Fax and Scan.lnk -> C:\Windows\System32\WFS.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live Mail.lnk -> C:\Program Files (x86)\Windows Live\Mail\wlmail.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live Messenger.lnk -> C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live Movie Maker.lnk -> C:\Program Files (x86)\Windows Live\Photo Gallery\MovieMaker.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live Photo Gallery.lnk -> C:\Program Files (x86)\Windows Live\Photo Gallery\WLXPhotoGallery.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\XPS Viewer.lnk -> C:\Windows\System32\xpsrchvw.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live\Windows Live Family Safety.lnk -> C:\Windows\Installer\{CEA21F20-DBF4-464C-8B81-28B8508AFDDD}\fssicon.ico ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live\Windows Live Mesh.lnk -> C:\Program Files (x86)\Windows Live\Mesh\WLSync.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live\Windows Live Writer.lnk -> C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriter.exe (Microsoft Corp.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN\Documentation.lnk -> C:\Program Files\VideoLAN\VLC\Documentation.url ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN\Release Notes.lnk -> C:\Program Files\VideoLAN\VLC\NEWS.txt ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN\VideoLAN Website.lnk -> C:\Program Files\VideoLAN\VLC\VideoLAN Website.url ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN\VLC media player.lnk -> C:\Program Files\VideoLAN\VLC\vlc.exe (VideoLAN)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tableta Wacom\Configuración de display Wacom.lnk -> C:\Program Files\Tablet\Wacom\32\LCDSettings.exe (Wacom Technology, Corp.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tableta Wacom\Propiedades de la tableta Wacom.lnk -> C:\Program Files\Tablet\Wacom\Professional_CPL.exe (Wacom Technology, Corp.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tableta Wacom\Utilidad de archivo de preferencias de la tableta Wacom.lnk -> C:\Program Files\Tablet\Wacom\32\PrefUtil.exe (Wacom Technology, Corp.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tableta Wacom\Wacom Desktop Center.lnk -> C:\Program Files\Tablet\Wacom\32\WacomDesktopCenter.exe (Wacom Technology, Corp.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime\Acerca de QuickTime.lnk -> C:\Windows\Installer\{FF59BD75-466A-4D5A-AD23-AAD87C5FD44C}\RichText.ico ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime\QuickTime Player.lnk -> C:\Windows\Installer\{FF59BD75-466A-4D5A-AD23-AAD87C5FD44C}\QTPlayer.ico ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Pixologic\ZBrush 2019\Desinstalar ZBrush 2019 ZBrush 2019.lnk -> C:\Program Files\Pixologic\ZBrush 2019\Uninstall\Uninstall ZBrush 2019.exe (Pixologic)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Pixologic\ZBrush 2019\ZBrush 2019.lnk -> C:\Program Files\Pixologic\ZBrush 2019\ZBrush.exe (Pixologic, Inc.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MyPlayCity. com\Deadtime Stories.lnk -> C:\Program Files (x86)\MyPlayCity. com\Deadtime Stories\Deadtime Stories.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MyPlayCity. com\MyPlayCity Games.lnk -> C:\Program Files (x86)\MyPlayCity. com\Deadtime Stories\MyPlayCity.ico ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MyPlayCity. com\Play Online Games.lnk -> C:\Program Files (x86)\MyPlayCity. com\Deadtime Stories\PlayOnlineGames.ico ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight\Microsoft Silverlight.lnk -> C:\Program Files\Microsoft Silverlight\5.1.50907.0\Silverlight.Configuration.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013\Access 2013.lnk -> C:\Windows\Installer\{90150000-0011-0000-1000-0000000FF1CE}\accicons.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013\Enviar a OneNote 2013.lnk -> C:\Windows\Installer\{90150000-0011-0000-1000-0000000FF1CE}\joticon.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013\Excel 2013.lnk -> C:\Windows\Installer\{90150000-0011-0000-1000-0000000FF1CE}\xlicons.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013\InfoPath Filler 2013.lnk -> C:\Windows\Installer\{90150000-0011-0000-1000-0000000FF1CE}\inficon.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013\OneDrive for Business 2013.lnk -> C:\Windows\Installer\{90150000-0011-0000-1000-0000000FF1CE}\grv_icons.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013\OneNote 2013.lnk -> C:\Windows\Installer\{90150000-0011-0000-1000-0000000FF1CE}\joticon.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013\Outlook 2013.lnk -> C:\Windows\Installer\{90150000-0011-0000-1000-0000000FF1CE}\outicon.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013\PowerPoint 2013.lnk -> C:\Windows\Installer\{90150000-0011-0000-1000-0000000FF1CE}\pptico.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013\Publisher 2013.lnk -> C:\Windows\Installer\{90150000-0011-0000-1000-0000000FF1CE}\pubs.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013\Skype for Business 2015.lnk -> C:\Windows\Installer\{90150000-0011-0000-1000-0000000FF1CE}\lyncicon.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013\Word 2013.lnk -> C:\Windows\Installer\{90150000-0011-0000-1000-0000000FF1CE}\wordicon.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013\Herramientas de Office 2013\Administrador de grabaciones de Lync.lnk -> C:\Windows\Installer\{90150000-0011-0000-1000-0000000FF1CE}\lyncicon.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013\Herramientas de Office 2013\Centro de carga de Office 2013.lnk -> C:\Windows\Installer\{90150000-0011-0000-1000-0000000FF1CE}\msouc.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013\Herramientas de Office 2013\Database Compare 2013.lnk -> C:\Windows\Installer\{90150000-0011-0000-1000-0000000FF1CE}\dbcicons.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013\Herramientas de Office 2013\Panel de telemetría para Office 2013.lnk -> C:\Windows\Installer\{90150000-0011-0000-1000-0000000FF1CE}\osmadminicon.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013\Herramientas de Office 2013\Preferencias de idioma de Office 2013.lnk -> C:\Windows\Installer\{90150000-0011-0000-1000-0000000FF1CE}\misc.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013\Herramientas de Office 2013\Registro de telemetría para Office 2013.lnk -> C:\Windows\Installer\{90150000-0011-0000-1000-0000000FF1CE}\osmclienticon.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013\Herramientas de Office 2013\Spreadsheet Compare 2013.lnk -> C:\Windows\Installer\{90150000-0011-0000-1000-0000000FF1CE}\sscicons.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes\Malwarebytes.lnk -> C:\Program Files\Malwarebytes\Anti-Malware\mbam.exe (Malwarebytes)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance\Create Recovery Disc.lnk -> C:\Windows\System32\recdisc.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance\Remote Assistance.lnk -> C:\Windows\System32\msra.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Grand Fantasia-ES\Grand Fantasia-ES.lnk -> C:\AeriaGames\Grand Fantasia-ES\Launcher.exe (X-Legend Entertaimment)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome\Uninstall Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\15.0.874.120\Installer\setup.exe (No File)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games\FreeCell.lnk -> C:\Program Files\Microsoft Games\FreeCell\FreeCell.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games\Game Park Console.lnk -> [LF6"pH,R GFSIJW&?H*unPGame Park Console(1SPSXFL8C&m]
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games\GameExplorer.lnk -> C:\Windows\System32\gameux.dll (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games\Hearts.lnk -> C:\Program Files\Microsoft Games\Hearts\Hearts.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games\Minesweeper.lnk -> C:\Program Files\Microsoft Games\Minesweeper\Minesweeper.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games\More Games from Microsoft.lnk -> C:\Program Files\Microsoft Games\More Games\MoreGames.dll (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games\Purble Place.lnk -> C:\Program Files\Microsoft Games\Purble Place\PurblePlace.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games\Solitaire.lnk -> C:\Program Files\Microsoft Games\Solitaire\Solitaire.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games\Spider Solitaire.lnk -> C:\Program Files\Microsoft Games\SpiderSolitaire\SpiderSolitaire.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Game Park\Game Park Console.lnk -> C:\ProgramData\Asus\Game Park Console\GameConsole.exe (Oberon Media, Inc.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Game Park\Game Park.lnk -> C:\Program Files (x86)\ASUS\Game Park\asus.ico ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Game Park\Turbo Fiesta\Turbo Fiesta.lnk -> C:\Program Files (x86)\ASUS\Game Park\Turbo Fiesta\Launch.exe (Oberon Media Inc.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Game Park\Turbo Fiesta\Uninstall.lnk -> C:\Program Files (x86)\ASUS\Game Park\Turbo Fiesta\Uninstall.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Game Park\Plants vs Zombies\Plants vs Zombies.lnk -> C:\Program Files (x86)\ASUS\Game Park\Plants vs Zombies\Launch.exe (Oberon Media Inc.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Game Park\Plants vs Zombies\Uninstall.lnk -> C:\Program Files (x86)\ASUS\Game Park\Plants vs Zombies\Uninstall.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Game Park\Mahjong Memoirs\Mahjong Memoirs.lnk -> C:\Program Files (x86)\ASUS\Game Park\Mahjong Memoirs\Launch.exe (Oberon Media Inc.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Game Park\Mahjong Memoirs\Uninstall.lnk -> C:\Program Files (x86)\ASUS\Game Park\Mahjong Memoirs\Uninstall.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Game Park\Galapago\Galapago.lnk -> C:\Program Files (x86)\ASUS\Game Park\Galapago\Launch.exe (Oberon Media Inc.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Game Park\Galapago\Uninstall.lnk -> C:\Program Files (x86)\ASUS\Game Park\Galapago\Uninstall.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EPSON Scan\EPSON Scan.lnk -> C:\Windows\twain_32\escndv\escndv.exe (SEIKO EPSON CORP.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CyberLink Media Suite\Media Suite.lnk -> C:\Program Files (x86)\CyberLink\Media Suite\PS.exe (CyberLink Corp.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CyberLink Media Suite\Power2Go\Desktop Burning Gadget.lnk -> C:\Program Files (x86)\CyberLink\Power2Go\Power2GoExpress.exe (CyberLink Corp.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CyberLink Media Suite\Power2Go\ISO Viewer.lnk -> C:\Program Files (x86)\CyberLink\Power2Go\IsoViewer.exe (CyberLink Corp.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CyberLink Media Suite\Power2Go\Power2Go.lnk -> C:\Program Files (x86)\CyberLink\Power2Go\Power2Go.exe (CyberLink Corp.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Content Transfer\Ayuda.lnk -> C:\Program Files (x86)\Sony\Content Transfer\Resources\ENU\Content Transfer Help.chm ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Content Transfer\Añadir gadget.lnk -> C:\Program Files (x86)\Windows Sidebar\Shared Gadgets\Content Transfer.gadget ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Content Transfer\Content Transfer.lnk -> C:\Program Files (x86)\Sony\Content Transfer\ContentTransfer.exe (Sony Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner\CCleaner.lnk -> C:\Program Files\CCleaner\CCleaner64.exe (Piriform Software Ltd)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASUSDVD\ASUSDVD.lnk -> C:\Program Files (x86)\CyberLink\PowerDVD10\PDVDLaunchPolicy.exe (CyberLink Corp.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASUS Utility\FastBoot.lnk -> C:\Windows\Installer\{13F4A7F3-EABC-4261-AF6B-1317777F0755}\_0C599CF61E23A6070D83A0.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASUS\AI Recovery.lnk -> C:\Windows\Installer\{D39F0676-163E-4595-A917-E28F99BBD4D2}\_637B3312044ADB2BCE5F20.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASUS\ASUS Live Update.Lnk -> C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe (ASUSTeK Computer Inc.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASUS\ASUS Virtual Camera.lnk -> C:\Windows\Installer\{EC8BD21F-0CA0-4BBF-97D9-4A52B30041A1}\_DD6BB7CCB61B3F6F56681D.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASUS\e-Driver.lnk -> C:\eSupport\eDriver\InstAll.exe (ASUSTek Computer INC.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASUS\eManual.Lnk -> C:\eSupport\Manual\eManual.exe (ASUSTek Computer Inc.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASUS\LifeFrame.lnk -> C:\Program Files (x86)\ASUS\ASUS LifeFrame3\LifeFrame.exe (ASUSTek Computer Inc. All rights reserved.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASUS\Power4Gear Hybrid.lnk -> C:\Windows\Installer\{9B6239BF-4E85-4590-8D72-51E30DB1A9AA}\_BF23706A735CBF9BC74F88.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASUS\Scene Switch.lnk -> C:\Windows\Installer\{5172E572-C175-4F80-A6D5-5CB45826AD61}\_3B0276D37AEF1DC98AC6C8.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASUS\USB Charger Plus.lnk -> C:\Windows\Installer\{A859E3E5-C62F-4BFA-AF1D-2B95E03166AF}\_C135493C20DFA7FE7F14D0.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASUS\WinFlash.Lnk -> C:\Program Files (x86)\ASUS\WinFlash\WinFlash.exe (ASUSTek Computer Inc.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASUS\Wireless Console 3.lnk -> C:\Windows\Installer\{19EA33FB-B34E-40EA-8B8A-61743AEB795A}\_6FC4AD3CB38ECE3AA1E7B9.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASUS\AsusVibe\ASUS Vibe Fun Center.lnk -> C:\Program Files (x86)\ASUS\AsusVibe\AsusVibeLauncher.exe (ASUSTeK Computer Inc.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASUS\ASUS Splendid Utility\Splendid Compatibility Tool.Lnk -> C:\Program Files (x86)\ASUS\Splendid\Backache.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASUS\ASUS Splendid Utility\Splendid Utility.Lnk -> C:\Program Files (x86)\ASUS\Splendid\Backbone.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASUS\ASUS FaceLogon\FaceLogon Console.lnk -> C:\Program Files (x86)\ASUS\FaceLogon\facemgr.exe (ASUSTek Computer Inc.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASUS\ASUS FaceLogon\FaceLogon Manager.lnk -> C:\Program Files (x86)\ASUS\FaceLogon\logonmgr.exe (ASUSTek Computer Inc.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASUS\ASUS FaceLogon\General disclaimer.lnk -> C:\Program Files (x86)\ASUS\FaceLogon\disclaimer.rtf ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD VISION Engine Control Center\AMD VISION Engine Control Center.lnk -> C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe (ATI Technologies Inc.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Quick Stream\AMD Quick Stream.lnk -> C:\Program Files\AMD Quick Stream\AppexAcceleratorUI.exe (AppEx Networks Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Quick Stream\Uninstall.lnk -> C:\Program Files\AMD Quick Stream\unins000.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Component Services.lnk -> C:\Windows\System32\comexp.msc ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Data Sources (ODBC).lnk -> C:\Windows\System32\odbcad32.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\iSCSI Initiator.lnk -> C:\Windows\System32\iscsicpl.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Memory Diagnostics Tool.lnk -> C:\Windows\System32\MdSched.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\services.lnk -> C:\Windows\System32\services.msc ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\System Configuration.lnk -> C:\Windows\System32\msconfig.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Windows Firewall with Advanced Security.lnk -> C:\Windows\System32\WF.msc ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Calculator.lnk -> C:\Windows\System32\calc.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\displayswitch.lnk -> C:\Windows\System32\displayswitch.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Paint.lnk -> C:\Windows\System32\mspaint.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Remote Desktop Connection.lnk -> C:\Windows\System32\mstsc.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Sound Recorder.lnk -> C:\Windows\System32\SoundRecorder.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Sync Center.lnk -> C:\Windows\System32\mobsync.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Wordpad.lnk -> C:\Program Files\Windows NT\Accessories\wordpad.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Windows PowerShell\Windows PowerShell (x86).lnk -> C:\Windows\SysWOW64\Windowspowershell\v1.0\powershell.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Windows PowerShell\Windows PowerShell ISE (x86).lnk -> C:\Windows\SysWOW64\WindowsPowerShell\v1.0\PowerShell_ISE.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Windows PowerShell\Windows PowerShell ISE.lnk -> C:\Windows\System32\WindowsPowerShell\v1.0\PowerShell_ISE.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Windows PowerShell\Windows PowerShell.lnk -> C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Character Map.lnk -> C:\Windows\System32\charmap.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\dfrgui.lnk -> C:\Windows\System32\dfrgui.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Disk Cleanup.lnk -> C:\Windows\System32\cleanmgr.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\System Information.lnk -> C:\Windows\System32\msinfo32.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\System Restore.lnk -> C:\Windows\System32\rstrui.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Windows Easy Transfer Reports.lnk -> C:\Windows\System32\migwiz\PostMig.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Windows Easy Transfer.lnk -> C:\Windows\System32\migwiz\migwiz.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\GameExplorer\{574AC0E5-F426-483F-83CF-D92A75FE6E50}\PlayTasks\0\Play.lnk -> C:\Users\smelborp\Desktop\Launch.exe (No File)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance\Help.lnk -> C:\Windows\System32\shell32.dll (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Command Prompt.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Notepad.lnk -> C:\Windows\System32\notepad.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Run.lnk -> C:\Windows\System32\shell32.dll (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Windows Explorer.lnk -> C:\Windows\explorer.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\computer.lnk -> C:\Windows\System32\imageres.dll (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Control Panel.lnk -> C:\Windows\System32\imageres.dll (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Private Character Editor.lnk -> C:\Windows\System32\eudcedit.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Accessibility\Magnify.lnk -> C:\Windows\System32\Magnify.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Accessibility\Narrator.lnk -> C:\Windows\System32\Narrator.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Accessibility\On-Screen Keyboard.lnk -> C:\Windows\System32\osk.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk -> C:\Windows\System32\imageres.dll (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk -> C:\Windows\explorer.exe (Microsoft Corporation)
Shortcut: C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance\Help.lnk -> C:\Windows\System32\shell32.dll (Microsoft Corporation)
Shortcut: C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Command Prompt.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation)
Shortcut: C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Notepad.lnk -> C:\Windows\System32\notepad.exe (Microsoft Corporation)
Shortcut: C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Run.lnk -> C:\Windows\System32\shell32.dll (Microsoft Corporation)
Shortcut: C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Windows Explorer.lnk -> C:\Windows\explorer.exe (Microsoft Corporation)
Shortcut: C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\computer.lnk -> C:\Windows\System32\imageres.dll (Microsoft Corporation)
Shortcut: C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Control Panel.lnk -> C:\Windows\System32\imageres.dll (Microsoft Corporation)
Shortcut: C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Private Character Editor.lnk -> C:\Windows\System32\eudcedit.exe (Microsoft Corporation)
Shortcut: C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Accessibility\Magnify.lnk -> C:\Windows\System32\Magnify.exe (Microsoft Corporation)
Shortcut: C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Accessibility\Narrator.lnk -> C:\Windows\System32\Narrator.exe (Microsoft Corporation)
Shortcut: C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Accessibility\On-Screen Keyboard.lnk -> C:\Windows\System32\osk.exe (Microsoft Corporation)
Shortcut: C:\Users\Default User\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC)
Shortcut: C:\Users\Default User\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk -> C:\Windows\System32\imageres.dll (Microsoft Corporation)
Shortcut: C:\Users\Default User\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk -> C:\Windows\explorer.exe (Microsoft Corporation)
Shortcut: C:\Users\Public\Desktop\Acrobat Reader DC.lnk -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exe (Adobe Systems Incorporated)
Shortcut: C:\Users\Public\Desktop\Adobe Creative Cloud.lnk -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe (Adobe Inc.)
Shortcut: C:\Users\Public\Desktop\ASUS Vibe Fun Center.lnk -> C:\Program Files (x86)\ASUS\AsusVibe\AsusVibeLauncher.exe (ASUSTeK Computer Inc.)
Shortcut: C:\Users\Public\Desktop\CCleaner.lnk -> C:\Program Files\CCleaner\CCleaner64.exe (Piriform Software Ltd)
Shortcut: C:\Users\Public\Desktop\eManual.Lnk -> C:\eSupport\Manual\eManual.exe (ASUSTek Computer Inc.)
Shortcut: C:\Users\Public\Desktop\EPSON Scan.lnk -> C:\Windows\twain_32\escndv\escndv.exe (SEIKO EPSON CORP.)
Shortcut: C:\Users\Public\Desktop\Malwarebytes.lnk -> C:\Program Files\Malwarebytes\Anti-Malware\mbam.exe (Malwarebytes)
Shortcut: C:\Users\Public\Desktop\QuickTime Player.lnk -> C:\Program Files (x86)\QuickTime\QuickTimePlayer.exe (Apple Inc.)
Shortcut: C:\Users\Public\Desktop\VLC media player.lnk -> C:\Program Files\VideoLAN\VLC\vlc.exe (VideoLAN)
Shortcut: C:\Users\Public\Desktop\WinRAR.lnk -> C:\Program Files (x86)\WinRAR\WinRAR.exe (Alexander Roshal)
Shortcut: C:\Users\Public\Desktop\ZBrush 2019.lnk -> C:\Program Files\Pixologic\ZBrush 2019\ZBrush.exe (Pixologic, Inc.)
Shortcut: C:\Users\Public\Desktop\ASUS\Procesador de textos\Adobe Reader X.lnk -> C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AcroRd32.exe (No File)
Shortcut: C:\Users\Public\Desktop\ASUS\Multimedia\ASUSDVD.lnk -> C:\Program Files (x86)\CyberLink\PowerDVD10\PDVDLaunchPolicy.exe (CyberLink Corp.)
Shortcut: C:\Users\Public\Desktop\ASUS\Multimedia\CyberLink Media Suite.lnk -> C:\Program Files (x86)\CyberLink\Media Suite\PS.exe (CyberLink Corp.)
Shortcut: C:\Users\Public\Desktop\ASUS\Herramienta del sistema\e-Driver.lnk -> C:\eSupport\eDriver\InstAll.exe (ASUSTek Computer INC.)
Shortcut: C:\Users\Public\Desktop\ASUS\Herramienta del sistema\Scene Switch.lnk -> C:\ProgramData\ChangeFolderView\sceneswitch.ico ()
Shortcut: C:\Users\Public\Desktop\ASUS\Herramienta del sistema\Splendid Utility.Lnk -> C:\Program Files (x86)\ASUS\Splendid\Backbone.exe ()
Shortcut: C:\Users\Public\Desktop\ASUS\Entretenimiento\Game Park Console.lnk -> C:\ProgramData\Asus\Game Park Console\GameConsole.exe (Oberon Media, Inc.)
Shortcut: C:\Users\Public\Desktop\ASUS\Entretenimiento\LifeFrame.lnk -> C:\Program Files (x86)\ASUS\ASUS LifeFrame3\LifeFrame.exe (ASUSTek Computer Inc. All rights reserved.)
Shortcut: C:\Users\Public\Desktop\ASUS\Copia de seguridad y restauración\AI Recovery Burner.lnk -> C:\ProgramData\ChangeFolderView\aiRecovery.ico ()
Shortcut: C:\Users\smelborp\Equipo - Acceso directo.lnk -> [LFPO :i+00v1SPS0%G`!Equipo9Carpeta de sistema1SPSjc(=Oe)::{20D04FE0-3AEA-1069-A2D8-08002B30309D}]
Shortcut: C:\Users\smelborp\thumbnail\Desktop.lnk -> C:\Users\smelborp\Desktop ()
Shortcut: C:\Users\smelborp\Links\Alcatel A3 Plus 3G.lnk -> [LFPO :i+00.p 1RAlcatel A3 Plus 3G\\?\usb#vid_1bbb&pid_0168#kreecigq49soob9l#{6ac27878-a6fa-4155-ba85-f98f491d4f33}G{?!&C&F+sm/&Alcatel A3 Plus 3G-ʫOHkF6CM+\CtY^Hg3(<mx5uIv1SPS0%G`9Alcatel A3 Plus 3GQ Reproductor multimedia porttil%1SPSjc(=O{::{20D04FE0-3AEA-1069-A2D8-08002B30309D}\\\?\usb#vid_1bbb&pid_0168#kreecigq49soob9l#{6ac27878-a6fa-4155-ba85-f98f491d4f33}]
Shortcut: C:\Users\smelborp\Links\Creative Cloud Files.lnk -> C:\Users\smelborp\Creative Cloud Files ()
Shortcut: C:\Users\smelborp\Links\RecentPlaces.lnk -> [::{22877A6D-37A1-461A-91B0-DBDA5AAEBC99}]
Shortcut: C:\Users\smelborp\Documents\HOMEWORKS\Jonijonjon\ANA_ATARI - Acceso directo.lnk -> C:\Users\smelborp\Documents\HOMEWORKS\Jonijonjon\ANA_ATARI ()
Shortcut: C:\Users\smelborp\Documents\HOMEWORKS\Ingridshin\campaña gatorade\campaña gatorade.lnk -> C:\Users\smelborp\Documents\HOMEWORKS\Ingridshin\campaña gatorade ()
Shortcut: C:\Users\smelborp\Documents\Cracks y programas\Corel\CorelDRAW X8 Muestras\target.lnk -> C:\Program Files\Corel\CorelDRAW Graphics Suite X8\Draw\Samples (No File)
Shortcut: C:\Users\smelborp\Desktop\blender.lnk -> C:\Program Files\Blender Foundation\Blender\blender.exe (Blender Foundation)
Shortcut: C:\Users\smelborp\Desktop\Deadtime Stories.lnk -> C:\Program Files (x86)\MyPlayCity. com\Deadtime Stories\Deadtime Stories.exe ()
Shortcut: C:\Users\smelborp\Desktop\Downloads.lnk -> C:\Users\smelborp\Downloads ()
Shortcut: C:\Users\smelborp\Desktop\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC)
Shortcut: C:\Users\smelborp\Desktop\Grand Fantasia-ES.lnk -> C:\AeriaGames\Grand Fantasia-ES\Launcher.exe (X-Legend Entertaimment)
Shortcut: C:\Users\smelborp\Desktop\mis documentos - Acceso directo.lnk -> C:\Users\smelborp\Desktop\mis documentos.bat ()
Shortcut: C:\Users\smelborp\Desktop\MyPlayCity Games.lnk -> C:\Program Files (x86)\MyPlayCity. com\Deadtime Stories\MyPlayCity.ico ()
Shortcut: C:\Users\smelborp\Desktop\Play Online Games.lnk -> C:\Program Files (x86)\MyPlayCity. com\Deadtime Stories\PlayOnlineGames.ico ()
Shortcut: C:\Users\smelborp\Desktop\Welcome to ASUS Product Registration.lnk -> C:\Program Files (x86)\ASUS\APRP\aprp.exe (ASUSTek Computer Inc.)
Shortcut: C:\Users\smelborp\AppData\Roaming\Microsoft\Windows\Start Menu\MyPlayCity Games.lnk -> C:\Program Files (x86)\MyPlayCity. com\Deadtime Stories\MyPlayCity.ico ()
Shortcut: C:\Users\smelborp\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk -> C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)
Shortcut: C:\Users\smelborp\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance\Help.lnk -> C:\Windows\System32\shell32.dll (Microsoft Corporation)
Shortcut: C:\Users\smelborp\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Blender\blender.lnk -> C:\Program Files\Blender Foundation\Blender\blender.exe (Blender Foundation)
Shortcut: C:\Users\smelborp\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Command Prompt.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation)
Shortcut: C:\Users\smelborp\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Notepad.lnk -> C:\Windows\System32\notepad.exe (Microsoft Corporation)
Shortcut: C:\Users\smelborp\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Run.lnk -> C:\Windows\System32\shell32.dll (Microsoft Corporation)
Shortcut: C:\Users\smelborp\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Windows Explorer.lnk -> C:\Windows\explorer.exe (Microsoft Corporation)
Shortcut: C:\Users\smelborp\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\computer.lnk -> C:\Windows\System32\imageres.dll (Microsoft Corporation)
Shortcut: C:\Users\smelborp\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Control Panel.lnk -> C:\Windows\System32\imageres.dll (Microsoft Corporation)
Shortcut: C:\Users\smelborp\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Private Character Editor.lnk -> C:\Windows\System32\eudcedit.exe (Microsoft Corporation)
Shortcut: C:\Users\smelborp\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Accessibility\Magnify.lnk -> C:\Windows\System32\Magnify.exe (Microsoft Corporation)
Shortcut: C:\Users\smelborp\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Accessibility\Narrator.lnk -> C:\Windows\System32\Narrator.exe (Microsoft Corporation)
Shortcut: C:\Users\smelborp\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Accessibility\On-Screen Keyboard.lnk -> C:\Windows\System32\osk.exe (Microsoft Corporation)
Shortcut: C:\Users\smelborp\AppData\Roaming\Microsoft\Windows\SendTo\Transferencia de archivos Bluetooth.LNK -> C:\Windows\System32\fsquirt.exe (Microsoft Corporation)
Shortcut: C:\Users\smelborp\AppData\Roaming\Microsoft\Office\Reciente\figura.docx (2).LNK -> C:\Users\smelborp\Documents\ZALO\figura.docx ()
Shortcut: C:\Users\smelborp\AppData\Roaming\Microsoft\Office\Reciente\figura.docx.LNK -> C:\Users\smelborp\Documents\ZALO\figura.docx ()
Shortcut: C:\Users\smelborp\AppData\Roaming\Microsoft\Office\Reciente\head006.jpg.LNK -> C:\Users\smelborp\Documents\ZALO\escan\head006.jpg ()
Shortcut: C:\Users\smelborp\AppData\Roaming\Microsoft\Office\Reciente\head007.jpg.LNK -> C:\Users\smelborp\Documents\ZALO\escan\head007.jpg ()
Shortcut: C:\Users\smelborp\AppData\Roaming\Microsoft\Office\Reciente\Imagen-2.jpg.LNK -> C:\Users\smelborp\Documents\ZALO\escan\d20\Imagen-2.jpg ()
Shortcut: C:\Users\smelborp\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\AMD Quick Stream.lnk -> C:\Program Files\AMD Quick Stream\AppexAcceleratorUI.exe (AppEx Networks Corporation)
Shortcut: C:\Users\smelborp\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC)
Shortcut: C:\Users\smelborp\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk -> C:\Program Files (x86)\Internet Explorer\iexplore.exe (Microsoft Corporation)
Shortcut: C:\Users\smelborp\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk -> C:\Windows\System32\imageres.dll (Microsoft Corporation)
Shortcut: C:\Users\smelborp\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk -> C:\Windows\explorer.exe (Microsoft Corporation)
Shortcut: C:\Users\smelborp\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Calculator.lnk -> C:\Windows\System32\calc.exe (Microsoft Corporation)
Shortcut: C:\Users\smelborp\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC)
Shortcut: C:\Users\smelborp\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Windows Explorer.lnk -> C:\Windows\explorer.exe (Microsoft Corporation)
Shortcut: C:\Users\smelborp\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Windows Live Photo Gallery.lnk -> C:\Program Files (x86)\Windows Live\Photo Gallery\WLXPhotoGallery.exe (Microsoft Corporation)
Shortcut: C:\Users\smelborp\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\StartMenu\PowerPoint 2013.lnk -> C:\Windows\Installer\{90150000-0011-0000-1000-0000000FF1CE}\pptico.exe ()
Shortcut: C:\Users\smelborp\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\StartMenu\Word 2013.lnk -> C:\Windows\Installer\{90150000-0011-0000-1000-0000000FF1CE}\wordicon.exe ()
Shortcut: C:\Users\smelborp\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\7e4dca80246863e3\pinned.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation)
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Default Programs.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation) -> /name Microsoft.DefaultPrograms
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Windows Update.lnk -> C:\Windows\System32\wuapp.exe (Microsoft Corporation) -> startmenu
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sidebar.lnk -> C:\Program Files\Windows Sidebar\sidebar.exe (Microsoft Corporation) -> /showgadgets
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk -> C:\Program Files (x86)\Windows Media Player\wmplayer.exe (Microsoft Corporation) -> /prefetch:1
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN\VLC media player - reset preferences and cache files.lnk -> C:\Program Files\VideoLAN\VLC\vlc.exe (VideoLAN) -> --reset-config --reset-plugins-cache vlc://quit
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN\VLC media player skinned.lnk -> C:\Program Files\VideoLAN\VLC\vlc.exe (VideoLAN) -> -Iskins
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\AsusVibeLauncher.lnk -> C:\Program Files (x86)\ASUS\AsusVibe\AsusVibeLauncher.exe (ASUSTeK Computer Inc.) -> /start
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime\Desinstalar QuickTime.lnk -> C:\Windows\SysWOW64\msiexec.exe (Microsoft Corporation) -> /i {FF59BD75-466A-4D5A-AD23-AAD87C5FD44C} /qf
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013\InfoPath Designer 2013.lnk -> C:\Windows\Installer\{90150000-0011-0000-1000-0000000FF1CE}\inficon.exe () -> /design
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes\Uninstall Malwarebytes.lnk -> C:\Program Files\Malwarebytes\Anti-Malware\unins000.exe () -> /LOG
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance\Backup and Restore Center.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation) -> /name Microsoft.BackupAndRestore
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EPSON Scan\Actualización del driver del escáner EPSON Stylus CX5600 Series.lnk -> C:\Program Files (x86)\epson\Scanner Driver Update\CX5600\E_DUPA10.EXE (SEIKO EPSON CORP.) -> /S "EPSON CX4400/CX5600" /R "E_DUPA1A.DLL" /W "000C0D2E"
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD VISION Engine Control Center\Help.lnk -> C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.exe (ATI Technologies Inc.) -> Start Help -help
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Computer Management.lnk -> C:\Windows\System32\compmgmt.msc () -> /s
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Event Viewer.lnk -> C:\Windows\System32\eventvwr.msc () -> /s
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Performance Monitor.lnk -> C:\Windows\System32\perfmon.msc () -> /s
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Task Scheduler.lnk -> C:\Windows\System32\taskschd.msc () -> /s
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Windows PowerShell Modules.lnk -> C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe (Microsoft Corporation) -> -NoExit -ImportSystemModules
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Mobility Center.lnk -> C:\Windows\System32\mblctr.exe (Microsoft Corporation) -> /open
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Welcome Center.lnk -> C:\Windows\System32\rundll32.exe (Microsoft Corporation) -> %SystemRoot%\system32\OobeFldr.dll,ShowWelcomeCenter LaunchedBy_StartMenuShortcut
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Resource Monitor.lnk -> C:\Windows\System32\perfmon.exe (Microsoft Corporation) -> /res
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Task Scheduler.lnk -> C:\Windows\System32\taskschd.msc () -> /s
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Accessibility\Speech Recognition.lnk -> C:\Windows\Speech\Common\sapisvr.exe (Microsoft Corporation) -> -SpeechUX
ShortcutWithArgument: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Accessibility\Ease of Access.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation) -> /name Microsoft.EaseOfAccessCenter
ShortcutWithArgument: C:\Users\Default\AppData\Roaming\Microsoft\Windows\SendTo\Fax Recipient.lnk -> C:\Windows\System32\WFS.exe (Microsoft Corporation) -> /SendTo
ShortcutWithArgument: C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Accessibility\Ease of Access.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation) -> /name Microsoft.EaseOfAccessCenter
ShortcutWithArgument: C:\Users\Default User\AppData\Roaming\Microsoft\Windows\SendTo\Fax Recipient.lnk -> C:\Windows\System32\WFS.exe (Microsoft Corporation) -> /SendTo
ShortcutWithArgument: C:\Users\smelborp\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Blender\Uninstall Blender.lnk -> C:\Windows\SysWOW64\msiexec.exe (Microsoft Corporation) -> /x {E29A1273-2E7A-40E7-AA63-428A11D59429}
ShortcutWithArgument: C:\Users\smelborp\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AMD VISION Engine Control Center\Preajustes\Air Traveler.lnk -> C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.exe (ATI Technologies Inc.) -> Start Load profilename="Air Traveler"
ShortcutWithArgument: C:\Users\smelborp\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AMD VISION Engine Control Center\Preajustes\Battery Saver.lnk -> C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.exe (ATI Technologies Inc.) -> Start Load profilename="Battery Saver"
ShortcutWithArgument: C:\Users\smelborp\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AMD VISION Engine Control Center\Preajustes\Gaming.lnk -> C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.exe (ATI Technologies Inc.) -> Start Load profilename="Gaming"
ShortcutWithArgument: C:\Users\smelborp\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AMD VISION Engine Control Center\Preajustes\Movie.lnk -> C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.exe (ATI Technologies Inc.) -> Start Load profilename="Movie"
ShortcutWithArgument: C:\Users\smelborp\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AMD VISION Engine Control Center\Preajustes\Web Browsing.lnk -> C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.exe (ATI Technologies Inc.) -> Start Load profilename="Web Browsing"
ShortcutWithArgument: C:\Users\smelborp\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Internet Explorer (No Add-ons).lnk -> C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation) -> -extoff
ShortcutWithArgument: C:\Users\smelborp\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Accessibility\Ease of Access.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation) -> /name Microsoft.EaseOfAccessCenter
ShortcutWithArgument: C:\Users\smelborp\AppData\Roaming\Microsoft\Windows\SendTo\Fax Recipient.lnk -> C:\Windows\System32\WFS.exe (Microsoft Corporation) -> /SendTo
InternetURL: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EPSON\Soporte técnico EPSON Stylus CX5600 Series.url -> URL: hxxp://www.latin.epson. com/asp/soporte.asp
InternetURL: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner\CCleaner Homepage.url -> URL: hxxp://www.ccleaner. com/ccleaner
InternetURL: C:\Users\smelborp\Favorites\Links\Galería de Web Slice.url -> URL: hxxp://go.microsoft. com/fwlink/?LinkId=121315
InternetURL: C:\Users\smelborp\Favorites\Links\Sitios sugeridos.url -> URL: hxxps://ieonline.microsoft. com/#ieslice
InternetURL: C:\Users\smelborp\Favorites\Links\Suggested Sites.url -> URL: hxxps://ieonline.microsoft. com/#ieslice
InternetURL: C:\Users\smelborp\Favorites\Links\Web Slice Gallery.url -> URL: hxxp://go.microsoft. com/fwlink/?LinkId=121315
InternetURL: C:\Users\smelborp\Favorites\ASUS E-Service\ASUS Homepage.url -> URL: hxxp://www.asus. com/
InternetURL: C:\Users\smelborp\Favorites\ASUS E-Service\ASUS Member.url -> URL: hxxp://member.asus. com/
InternetURL: C:\Users\smelborp\Favorites\ASUS E-Service\ASUS Software Download.url -> URL: hxxp://www.asus. com/support/download
InternetURL: C:\Users\smelborp\Favorites\ASUS E-Service\ASUS Technical Support.url -> URL: hxxp://www.asus. com/support
InternetURL: C:\Users\smelborp\Desktop\Crack\Crack\SadeemAPK. com.URL -> URL: hxxp://sadeemapk. com/
InternetURL: C:\Users\smelborp\Desktop\Crack\Crack\SadeemPC. com.URL -> URL: hxxp://www.sadeempc. com/
InternetURL: C:\Users\smelborp\Desktop\Crack\Crack\AMT Emulator v0.9 by PainteR\SadeemAPK. com.URL -> URL: hxxp://sadeemapk. com/
InternetURL: C:\Users\smelborp\Desktop\Crack\Crack\AMT Emulator v0.9 by PainteR\SadeemPC. com.URL -> URL: hxxp://www.sadeempc. com/
InternetURL: C:\Users\smelborp\Desktop\Crack\Crack\Adobe CC 2015.5 XFORCE Activation\SadeemPC. com - Download Latest Software Free.URL -> URL: hxxp://www.sadeempc. com/
InternetURL: C:\Users\smelborp\Desktop\Crack\Crack\Adobe CC 2015 Universal Patcher 1.5\SadeemAPK. com.URL -> URL: hxxp://sadeemapk. com/
InternetURL: C:\Users\smelborp\Desktop\Crack\Crack\Adobe CC 2015 Universal Patcher 1.5\SadeemPC. com.URL -> URL: hxxp://www.sadeempc. com/
==================== End of Shortcut.txt =============================Bien… y ahora sigue estos pasos, 
MUY Importante 
Realiza una copia de seguridad del registro :
-
Para hacerlo descarga
DelFix.exe(en tu escritorio). -
Doble clic para ejecutarlo.(Si usas Windows Vista/7/8 o 10 presiona clic derecho y selecciona -Ejecutar como Administrador-).
-
Atención, ahora marca/selecciona únicamente la casilla
Create registry backup, las demás casillas NO. 
-
Pulsar en Run.
Se abrirá el informe (DelFix.txt), guárdalo por si fuera necesario y cierra la herramienta.
Con los demás programas cerrados ve a Inicio Ejecutar y escribe Notepad.exe.
- Ahora debes copiar y pegar los códigos/líneas que están en el interior del recuadro de más abajo, dentro del Notepad.
START
CREATERESTOREPOINT:
CLOSEPROCESSES:
ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => -> No File
ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => -> No File
ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => -> No File
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ContextMenuHandlers1: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => -> No File
ContextMenuHandlers6: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => -> No File
AlternateDataStreams: C:\ProgramData\Temp:2CFBE2D1 [133]
AlternateDataStreams: C:\ProgramData\Temp:373C6DC2 [124]
AlternateDataStreams: C:\ProgramData\Temp:5D458568 [124]
AlternateDataStreams: C:\ProgramData\Temp:8AD1F2E0 [122]
HKU\S-1-5-21-306248585-3140627608-1750752149-1001\...\MountPoints2: {20062234-22a1-11e8-8fc6-806e6f6e6963} - E:\Epsetup.exe
HKU\S-1-5-21-306248585-3140627608-1750752149-1001\...\MountPoints2: {79312e30-231f-11e8-b5d6-10bf4829a00b} - F:\HTC_Sync_Manager_PC.exe
HKLM\Software\Microsoft\Active Setup\Installed Components: [{2D46B6DC-2207-486B-B523-A557E6D54B47}] -> C:\Windows\system32\cmd.exe /D /C start C:\Windows\system32\ie4uinit.exe -ClearIconCache
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\79.0.3945.79\Installer\chrmstp.exe [2019-12-12] (Google LLC -> Google LLC)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{2D46B6DC-2207-486B-B523-A557E6D54B47}] -> C:\Windows\system32\cmd.exe /D /C start C:\Windows\system32\ie4uinit.exe -ClearIconCache
GroupPolicy: Restriction ? <==== ATTENTION
Task: {0072BE07-58D7-4814-A24E-F852A8C3323E} - System32\Tasks\AdobeAAMUpdater-1.0-smelborp-PC-smelborp => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe
Task: {99A0F2B1-384F-4F84-8013-1A54CBA77CCC} - System32\Tasks\{8D69866F-41CE-49BB-9386-499B6BAF5CAF} => C:\Windows\system32\pcalua.exe -a "C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\Creative Cloud Uninstaller.exe"
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing. com/search?q={searchTerms}&form=ASUTDF&pc=NP06&src=IE-SearchBox
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing. com/search?q={searchTerms}&form=ASUTDF&pc=NP06&src=IE-SearchBox
SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing. com/search?q={searchTerms}&form=ASUTDF&pc=NP06&src=IE-SearchBox
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing. com/search?q={searchTerms}&form=ASUTDF&pc=NP06&src=IE-SearchBox
SearchScopes: HKU\S-1-5-21-306248585-3140627608-1750752149-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
FF Plugin-x32: @ adobe. com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF32.dll [No File]
U3 aswbdisk; no ImagePath
2019-12-12 19:41 - 2019-12-12 19:41 - 000003010 _____ C:\Windows\system32\Tasks\{666582F9-D86B-4B51-B968-861B393ECE16}
2019-12-03 15:05 - 2019-12-03 15:05 - 000003010 _____ C:\Windows\system32\Tasks\{DBEBD678-6939-4358-869A-036DD426901B}
2019-12-03 15:05 - 2019-12-03 15:05 - 000003010 _____ C:\Windows\system32\Tasks\{1C3FDDC8-2136-40FA-9C70-26919B12A046}
2019-11-19 21:54 - 2019-11-19 21:54 - 000003010 _____ C:\Windows\system32\Tasks\{97F2897B-3E30-41C2-8150-74ACAA654FEA}
2019-11-19 21:54 - 2019-11-19 21:54 - 000003010 _____ C:\Windows\system32\Tasks\{0D468BFB-9E67-4415-AC4C-9DB0C8A1EB12}
2019-10-22 20:26 - 2019-10-22 20:26 - 000003010 _____ C:\Windows\system32\Tasks\{65E87637-F149-447C-A37E-610A9AA4B4FA}
2019-10-01 21:20 - 2019-10-01 21:20 - 000003010 _____ C:\Windows\system32\Tasks\{C3FBB5A2-A82F-4DD5-8FEA-2604B18447FC}
2019-10-01 21:19 - 2019-10-01 21:20 - 000003010 _____ C:\Windows\system32\Tasks\{CD41E217-3C0F-457B-B5BB-592AC5C6BAC0}
2019-10-01 21:19 - 2019-10-01 21:19 - 000003010 _____ C:\Windows\system32\Tasks\{C925FC7C-3B48-4EF8-A7DE-06D54D557D8E}
2019-12-15 15:31 - 2018-03-08 00:26 - 000002124 _____ C:\Windows\system32\AutoRunFilter.ini
2018-09-11 17:06 - 2018-09-11 17:06 - 000000008 __RSH () C:\ProgramData\sysqcl1131236454.dat
2018-03-08 00:00 - 2019-12-15 15:51 - 000000380 _____ () C:\Users\smelborp\AppData\Roaming\sp_data.sys
2018-09-27 17:28 - 2019-02-28 21:55 - 000000410 _____ () C:\Users\smelborp\AppData\Local\oobelibMkey.log
2019-10-10 14:28 - 2019-10-10 14:28 - 000000218 _____ () C:\Users\smelborp\AppData\Local\recently-used.xbel
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe After Effects CC 2017.lnk -> C:\Program Files\Adobe\Adobe After Effects CC 2017\Support Files\AfterFX.exe (No File)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Media Encoder CC 2017.lnk -> C:\Program Files\Adobe\Adobe Media Encoder CC 2017\Adobe Media Encoder.exe (No File)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Media Encoder CC 2018.lnk -> C:\Program Files\Adobe\Adobe Media Encoder CC 2018\Adobe Media Encoder.exe (No File)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Premiere Pro CC 2018.lnk -> C:\Program Files\Adobe\Adobe Premiere Pro CC 2018\Adobe Premiere Pro.exe (No File)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome\Uninstall Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\15.0.874.120\Installer\setup.exe (No File)
Shortcut: C:\ProgramData\Microsoft\Windows\GameExplorer\{574AC0E5-F426-483F-83CF-D92A75FE6E50}\PlayTasks\0\Play.lnk -> C:\Users\smelborp\Desktop\Launch.exe (No File)
Shortcut: C:\Users\Public\Desktop\ASUS\Procesador de textos\Adobe Reader X.lnk -> C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AcroRd32.exe (No File)
Shortcut: C:\Users\smelborp\Documents\Cracks y programas\Corel\CorelDRAW X8 Muestras\target.lnk -> C:\Program Files\Corel\CorelDRAW Graphics Suite X8\Draw\Samples (No File)
HOSTS:
REMOVEPROXY:
EMPTYTEMP:
CMD: netsh winsock reset
CMD: ipconfig /renew
CMD: ipconfig /flushdns
CMD: bitsadmin /reset /allusers
CMD: netsh advfirewall reset
CMD: netsh advfirewall set allprofiles state ON
CMD: netsh int ipv4 reset
CMD: netsh int ipv6 reset
ENDGuárdalo bajo el nombre de FIXLIST.TXT en el escritorio Esto es muy importante.
Nota Es importante que la herramienta FRST.exe(Farbar Recovery Scanner Tool) y FIXLIST.TXT se encuentren en la misma ubicación (escritorio) o si no, no trabajara.
Y ahora inicia tu equipo desde el Modo Seguro – con funciones de Red, de Windows
-
Ejecuta FRST.exe.(Si usas Windows Vista/7/8 o 10, presiona clic derecho y seleccionas -Ejecutar como Administrador-).
-
Presionar el botón FIX y aguardar a que termine.
-
La Herramienta guardara el reporte de reparación en el escritorio (FIXLOG.TXT).
Pegar el contenido de este fichero en tu próxima respuesta. 
Reiniciar el equipo y comprobar su funcionamiento en relación al problema planteado y comentarlo.
Saludos.