Hola, desde hace unos días me estoy peleando para poder instalar algún antivirus en un equipo con Windows 7 y así poder hacerle una limpieza. He tratado de seguir la guia de desinfección que hay por aquí pero ya ni siquiera logro instalar el Malwarebytes, con el archivo de la web me dice que no hay conexion a internet,lo cuál es mentira pues navego perfectamente.Si uso el instalador offline hace la instalacion pero al reiniciar el equipo la aplicación es como si no se hubiese instalado, accedo a la carpeta de instalación y me encuentro los archivos .exe sin permisos de ningún usuario, los modifico dandole permiso al grupo de usuario “Todos” y ejecuto el .exe y me sale el mensaje de acceso denegado no hay permisos, etc. He probado a hacerlo desde modo normal, modo seguro pero nada. Ójala alguien pueda echarme un cabler, antes de tener que formatear todo el equipo pues tengo bastantes documentos y archivos que no puedo borrar. Saludos y gracias.
-
Desactiva Temporalmente tu antivirus y cualquier programa de seguridad.
-
Descarga a Tu Escritorio >> Esto es muy importante<<.,Fabar Recovery Scan Tool, considerando la versión adecuada para tu equipo. (32 o 64 bits)
¿Cómo saber si mi Windows es de 32 o 64 bits? -
Doble clic para ejecutar Frst.exe. En la ventana del Disclaimer, presiona Si.
-
En la nueva ventana que se abre, presiona el botón Analizar y espera a que concluya el análisis.
-
Se abrirán dos (2) archivos (Logs), Frst.txt y Addition.txt, que estarán grabados en Tu escritorio.
En Tu próxima respuesta, copias y pegas los dos reportes Frst.txt y Addition.txt de FRST
Nota: Si el/los reportes solicitados no entraran en una sola respuesta porque superan la cantidad de caracteres permitidos, puedes utilizar dos o mas respuestas para pegarlos completamente.
Hola, gracias por responder, pego los informes:
Resultado del análisis realizado por Farbar Recovery Scan Tool (FRST) (x64) Versión: 19-04-2020
Ejecutado por user (administrador) sobre USER-PC (Dell Inc. Latitude E6430) (20-04-2020 15:14:17)
Ejecutado desde C:\Users\user.user-PC\Desktop
Perfiles cargados: user (Perfiles disponibles: user)
Platform: Windows 7 Professional Service Pack 1 (X64) Idioma: Español (España, internacional)
Internet Explorer Versión 10 (Navegador predeterminado: "C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe" -- "%1")
Modo de Inicio: Normal
Tutorial para Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Procesos (Lista blanca) =================
(Si una entrada es incluida en el fixlist, el proceso será cerrado. El archivo no será movido.)
() [Archivo no firmado] C:\Program Files (x86)\honestech\honestech TVR 2.5\scheduleTV.exe
(Adobe Inc. -> Adobe Systems) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Adobe Systems Incorporated -> Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\updaterstartuputility.exe
(Google Inc -> Google Inc.) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <9>
(Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(Microsoft Windows Hardware Compatibility Publisher -> IDT, Inc.) C:\Program Files\IDT\WDM\stacsv64.exe
(Microsoft Windows Hardware Compatibility Publisher -> IDT, Inc.) C:\Program Files\IDT\WDM\sttray64.exe
(O2Micro Inc. -> O2Micro International) C:\Windows\System32\drivers\o2flash.exe
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Sony Creative Software Inc) [Archivo no firmado] C:\Windows\SysWOW64\Windows Server\wserver.exe
(SOURCENEXT) [Archivo no firmado] C:\Windows\SysWOW64\bgsvcgen.exe
(TomTom) [Archivo no firmado] C:\Program Files\TomTom HOME\TTHOMEService.exe
==================== Registro (Lista blanca) ===================
(Si una entrada es incluida en el fixlist, el elemento del registro será restaurado a su valor predeterminado o será eliminado. El archivo no será movido.)
HKLM\...\Run: [SysTrayApp] => C:\Program Files\IDT\WDM\sttray64.exe [1703424 2013-08-16] (Microsoft Windows Hardware Compatibility Publisher -> IDT, Inc.)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [508104 2015-10-30] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [645456 2019-04-01] (Oracle America, Inc. -> Oracle Corporation)
HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-09-13] (Apple Inc. -> Apple Inc.)
HKLM-x32\...\Run: [AdobeCEPServiceManager] => "C:\Program Files (x86)\Common Files\Adobe\CEPServiceManager4\CEPServiceManager.exe" -launchedbylogin
HKU\S-1-5-21-420265182-739296544-3490084199-1000\...\Run: [TomTomHOME.exe] => C:\Program Files\TomTom HOME\TTHOMERunner.exe [332288 2019-12-17] (TomTom) [Archivo no firmado]
HKU\S-1-5-21-420265182-739296544-3490084199-1000\...\Run: [GoogleChromeAutoLaunch_AD11F3D0D76545F58B8FAD1737654E65] => "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --no-startup-window /prefetch:5
HKU\S-1-5-21-420265182-739296544-3490084199-1000\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [22245560 2020-03-19] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-420265182-739296544-3490084199-1000\...\Run: [AvastBrowserAutoLaunch_E42D5826E97B2D081066D1388F15D8D7] => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [1815792 2019-07-18] () [Archivo no firmado]
HKU\S-1-5-21-420265182-739296544-3490084199-1000\...\Winlogon: [Shell] explorer.exe,"C:\Windows\SysWOW64\Windows Server\wserver.exe" <==== ATENCIÓN
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\80.0.3987.122\Installer\chrmstp.exe [2020-03-01] (Google LLC -> Google LLC)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{30C521FB-255B-46C8-9F0D-EE5AE371C9AA}] -> C:\Program Files (x86)\AVAST Software\Browser\Application\75.1.1528.100\Installer\chrmstp.exe [2019-07-26] () [Archivo no firmado]
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> "C:\Program Files (x86)\Google\Chrome\Application\50.0.2661.102\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --multi-install --chrome
IFEO\AvastBrowserCrashHandler.exe: [Debugger] nqij.exe
IFEO\AvastBrowserCrashHandler64.exe: [Debugger] nqij.exe
IFEO\AvastSvc.exe: [Debugger] nqij.exe
IFEO\AvastUI.exe: [Debugger] nqij.exe
IFEO\avcenter.exe: [Debugger] nqij.exe
IFEO\avconfig.exe: [Debugger] nqij.exe
IFEO\avgcsrvx.exe: [Debugger] nqij.exe
IFEO\avgidsagent.exe: [Debugger] nqij.exe
IFEO\avgnt.exe: [Debugger] nqij.exe
IFEO\avgrsx.exe: [Debugger] nqij.exe
IFEO\avguard.exe: [Debugger] nqij.exe
IFEO\avgui.exe: [Debugger] nqij.exe
IFEO\avgwdsvc.exe: [Debugger] nqij.exe
IFEO\avp.exe: [Debugger] nqij.exe
IFEO\avscan.exe: [Debugger] nqij.exe
IFEO\bdagent.exe: [Debugger] nqij.exe
IFEO\blindman.exe: [Debugger] nqij.exe
IFEO\ccuac.exe: [Debugger] nqij.exe
IFEO\ComboFix.exe: [Debugger] nqij.exe
IFEO\egui.exe: [Debugger] nqij.exe
IFEO\hijackthis.exe: [Debugger] nqij.exe
IFEO\instup.exe: [Debugger] nqij.exe
IFEO\keyscrambler.exe: [Debugger] nqij.exe
IFEO\mbam.exe: [Debugger] nqij.exe
IFEO\mbamgui.exe: [Debugger] nqij.exe
IFEO\mbampt.exe: [Debugger] nqij.exe
IFEO\mbamscheduler.exe: [Debugger] nqij.exe
IFEO\mbamservice.exe: [Debugger] nqij.exe
IFEO\mbemsg.exe: [Debugger] nqij.exe
IFEO\MpCmdRun.exe: [Debugger] nqij.exe
IFEO\MSASCui.exe: [Debugger] nqij.exe
IFEO\MsMpEng.exe: [Debugger] nqij.exe
IFEO\msseces.exe: [Debugger] nqij.exe
IFEO\rstrui.exe: [Debugger] nqij.exe
IFEO\SDFiles.exe: [Debugger] nqij.exe
IFEO\SDMain.exe: [Debugger] nqij.exe
IFEO\SDWinSec.exe: [Debugger] nqij.exe
IFEO\spybotsd.exe: [Debugger] nqij.exe
IFEO\wireshark.exe: [Debugger] nqij.exe
IFEO\zlclient.exe: [Debugger] nqij.exe
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\TVR Scheduler.lnk [2018-02-04]
ShortcutTarget: TVR Scheduler.lnk -> C:\Program Files (x86)\honestech\honestech TVR 2.5\scheduleTV.exe () [Archivo no firmado]
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restricción <==== ATENCIÓN
==================== Tareas programadas (Lista blanca) ============
(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)
Task: {012DC367-90C6-4288-B435-3EC8D7965657} - System32\Tasks\Avast Secure Browser Heartbeat Task (Hourly) => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [1815792 2019-07-18] () [Archivo no firmado]
Task: {408C5D03-33C9-48D4-8B02-DB49E69F8150} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe
Task: {6F301224-7C0A-4AEF-A1CE-0A975F7F806C} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154440 2016-05-19] (Google Inc -> Google Inc.)
Task: {AD6C7C2D-5460-4A13-B1DB-BF61C25BA0FD} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
Task: {B831160B-E617-4DA6-97B5-C4A065B5ED6A} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe
Task: {C97F3D1C-B584-4E1E-82E9-89BD34A50E12} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154440 2016-05-19] (Google Inc -> Google Inc.)
Task: {D39E914C-EF5A-43B0-AEF7-B90CBA97BE4B} - System32\Tasks\AvastUpdateTaskMachineUA => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe
Task: {DC45F944-0ADE-4616-AF27-0B2EA9A6EF10} - System32\Tasks\AvastUpdateTaskMachineCore => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe
Task: {DF4A0280-CAC5-4F30-8520-5802EEC60869} - System32\Tasks\Avast Secure Browser Heartbeat Task (Logon) => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [1815792 2019-07-18] () [Archivo no firmado]
(Si una entrada es incluida en el fixlist, el archivo de tarea (.job) será movido. El archivo que está siendo ejecutado por la tarea no será movido.)
Task: C:\Windows\Tasks\CCleaner Update.job => C:\Program Files\CCleaner\CCUpdate.exe
==================== Internet (Lista blanca) ====================
(Si un elemento es incluido en el fixlist, y éste pertenece al registro, será eliminado o restaurado a su valor predeterminado.)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.254
Tcpip\..\Interfaces\{510BCE3E-0044-414F-B68B-C7BAE8E83AF3}: [DhcpNameServer] 80.58.61.250 80.58.61.254
Tcpip\..\Interfaces\{60BE7021-992E-4EE6-A02C-7FF27146F337}: [DhcpNameServer] 192.168.0.254
Tcpip\..\Interfaces\{A9B15CFC-29C1-41EA-8514-C98DF5850163}: [DhcpNameServer] 80.58.61.250 80.58.61.254
Tcpip\..\Interfaces\{B0C9A0F8-73B3-4852-AE73-F55EA34E793A}: [DhcpNameServer] 192.168.0.254
Internet Explorer:
==================
HKU\S-1-5-21-420265182-739296544-3490084199-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/es-es/?ocid=iehp
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_211\bin\ssv.dll [2019-05-29] (Oracle America, Inc. -> Oracle Corporation)
BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2017-06-15] (Google Inc -> Google Inc.)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_211\bin\jp2ssv.dll [2019-05-29] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2017-06-15] (Google Inc -> Google Inc.)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2017-06-15] (Google Inc -> Google Inc.)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2017-06-15] (Google Inc -> Google Inc.)
Toolbar: HKU\S-1-5-21-420265182-739296544-3490084199-1000 -> Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2017-06-15] (Google Inc -> Google Inc.)
FireFox:
========
FF DefaultProfile: b0py214a.default
FF ProfilePath: C:\Users\user.user-PC\AppData\Roaming\TomTom\HOME\Profiles\706o7j6g.default [2020-03-04]
FF Extension: (RenaultTheme) - C:\Users\user.user-PC\AppData\Roaming\TomTom\HOME\Profiles\706o7j6g.default\Extensions\[email protected] [2018-04-04] [Heredado] [no firmado]
FF Extension: (Sin Nombre) - C:\Program Files (x86)\TomTom HOME 2\xul\extensions\[email protected] [no encontrado]
FF ProfilePath: C:\Users\user.user-PC\AppData\Roaming\Mozilla\Firefox\Profiles\b0py214a.default [2020-04-20]
FF Extension: (Avast SafePrice | Comparaciones, ofertas y cupones) - C:\Users\user.user-PC\AppData\Roaming\Mozilla\Firefox\Profiles\b0py214a.default\Extensions\[email protected] [2019-04-27]
FF Extension: (Sin Nombre) - C:\Users\user.user-PC\AppData\Roaming\Mozilla\Firefox\Profiles\b0py214a.default\Extensions\[email protected] [2018-07-17] [no firmado]
FF Plugin: @java.com/DTPlugin,version=11.211.2 -> C:\Program Files\Java\jre1.8.0_211\bin\dtplugin\npDeployJava1.dll [2019-05-29] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.211.2 -> C:\Program Files\Java\jre1.8.0_211\bin\plugin2\npjp2.dll [2019-05-29] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll [Ningún archivo]
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.35.342\npGoogleUpdate3.dll [2019-11-18] (Google Inc -> Google LLC)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.35.342\npGoogleUpdate3.dll [2019-11-18] (Google Inc -> Google LLC)
FF Plugin-x32: @videolan.org/vlc,version=2.2.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-01-10] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-01-10] (VideoLAN -> VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [Ningún archivo]
Chrome:
=======
CHR Profile: C:\Users\user.user-PC\AppData\Local\Google\Chrome\User Data\Default [2020-04-20]
CHR Notifications: Default -> hxxps://www.youtube.com
CHR Extension: (Presentaciones) - C:\Users\user.user-PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2018-02-23]
CHR Extension: (Documentos) - C:\Users\user.user-PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2018-02-23]
CHR Extension: (Google Drive) - C:\Users\user.user-PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-06-15]
CHR Extension: (YouTube) - C:\Users\user.user-PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-06-15]
CHR Extension: (DSM Auto-Paste Chrome Extension) - C:\Users\user.user-PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\ecdbmkcphlholpojdglodopmlaficcji [2020-04-02]
CHR Extension: (Avast SafePrice | Comparaciones, ofertas y cupones) - C:\Users\user.user-PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2020-04-01]
CHR Extension: (Hojas de cálculo) - C:\Users\user.user-PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2018-02-23]
CHR Extension: (Documentos de Google sin conexión) - C:\Users\user.user-PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-04-02]
CHR Extension: (Avast Online Security) - C:\Users\user.user-PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2020-03-04]
CHR Extension: (Sistema de pagos de Chrome Web Store) - C:\Users\user.user-PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-15]
CHR Extension: (Gmail) - C:\Users\user.user-PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-04-15]
CHR Extension: (Chrome Media Router) - C:\Users\user.user-PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-04-08]
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki]
==================== Servicios (Lista blanca) ===================
(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)
R2 bgsvcgen; C:\Windows\SysWOW64\bgsvcgen.exe [139264 2017-10-19] (SOURCENEXT) [Archivo no firmado]
R2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [318568 2014-10-03] (Intel Corporation - pGFX -> Intel Corporation)
R2 STacSV; C:\Program Files\IDT\WDM\STacSV64.exe [339456 2013-08-16] (Microsoft Windows Hardware Compatibility Publisher -> IDT, Inc.)
R2 TTHOMEService; C:\Program Files\TomTom HOME\TTHOMEService.exe [97792 2019-04-17] (TomTom) [Archivo no firmado]
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-08-12] (Microsoft Windows -> Microsoft Corporation)
===================== Controladores (Lista blanca) ===================
(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)
R1 cdrbsdrv; C:\Windows\System32\Drivers\cdrbsdrv.sys [38944 2017-10-19] (B.H.A Corporation -> B.H.A Corporation)
S3 O2FJ2RDR; C:\Windows\System32\DRIVERS\O2FJ2w7x64.sys [195768 2013-08-16] (O2Micro -> O2Micro )
R0 PxHlpa64; C:\Windows\System32\Drivers\PxHlpa64.sys [56336 2012-06-22] (Corel Corporation -> Corel Corporation)
R0 stdcfltn; C:\Windows\System32\DRIVERS\stdcfltn.sys [22128 2011-07-15] (STMicroelectronics -> ST Microelectronics)
R3 STHDA; C:\Windows\System32\DRIVERS\stwrt64.sys [551936 2013-08-16] (Microsoft Windows Hardware Compatibility Publisher -> IDT, Inc.)
R3 ST_Accel; C:\Windows\System32\DRIVERS\ST_Accel.sys [87776 2013-04-11] (STMicroelectronics -> STMicroelectronics)
S3 X86BDA; C:\Windows\System32\DRIVERS\OEMDrv.sys [268416 2011-06-08] (Microsoft Windows Hardware Compatibility Publisher -> )
==================== NetSvcs (Lista blanca) ===================
(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)
==================== Un mes (creado) ===================
(Si una entrada es incluida en el fixlist, el archivo/carpeta será eliminado/a.)
2020-04-20 15:14 - 2020-04-20 15:15 - 000018000 _____ C:\Users\user.user-PC\Desktop\FRST.txt
2020-04-20 15:14 - 2020-04-20 15:14 - 000000000 ____D C:\FRST
2020-04-20 15:13 - 2020-04-20 15:11 - 002281984 _____ (Farbar) C:\Users\user.user-PC\Desktop\FRST64.exe
2020-04-20 10:58 - 2020-04-20 10:58 - 000000000 ____D C:\ProgramData\Malwarebytes
2020-04-19 21:18 - 2020-04-19 21:18 - 000000000 ____D C:\Program Files\Malwarebytes
2020-04-19 21:16 - 2020-04-19 21:16 - 000000000 ____D C:\Users\user.user-PC\Desktop\rkill
2020-04-19 21:15 - 2020-04-19 21:15 - 000274768 _____ C:\Windows\Minidump\041920-20451-01.dmp
2020-04-19 21:12 - 2020-04-19 21:12 - 000274768 _____ C:\Windows\Minidump\041920-20514-01.dmp
2020-04-19 21:09 - 2020-04-20 10:30 - 000684326 _____ C:\Windows\ntbtlog.txt
2020-04-19 21:09 - 2020-04-19 21:09 - 000292096 _____ C:\Windows\Minidump\041920-20342-01.dmp
2020-04-19 21:00 - 2020-04-19 21:04 - 000000000 ____D C:\AdwCleaner
2020-04-19 20:55 - 2020-04-19 20:59 - 000192354 _____ C:\TDSSKiller.3.1.0.28_19.04.2020_20.55.30_log.txt
2020-04-19 20:52 - 2020-04-19 20:54 - 000200172 _____ C:\TDSSKiller.3.1.0.28_19.04.2020_20.52.41_log.txt
2020-04-19 20:50 - 2020-04-19 20:54 - 000000000 ____D C:\TDSSKiller_Quarantine
2020-04-19 20:45 - 2020-04-19 20:50 - 000197700 _____ C:\TDSSKiller.3.1.0.28_19.04.2020_20.45.35_log.txt
2020-04-19 20:39 - 2020-04-19 20:39 - 000000829 _____ C:\Users\Public\Desktop\CCleaner.lnk
2020-04-19 20:39 - 2020-04-19 20:39 - 000000829 _____ C:\ProgramData\Desktop\CCleaner.lnk
2020-04-19 20:39 - 2020-04-19 20:39 - 000000300 ____H C:\Windows\Tasks\CCleaner Update.job
2020-04-19 20:39 - 2020-04-19 20:39 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2020-04-19 20:39 - 2020-04-19 20:39 - 000000000 ____D C:\Program Files\CCleaner
2020-04-19 20:11 - 2020-04-19 20:29 - 000000000 ____D C:\ProgramData\RogueKiller
2020-04-19 20:09 - 2020-04-20 11:43 - 000000002 _____ C:\Users\user.user-PC\Desktop\Rkill.txt
2020-04-19 16:49 - 2020-04-20 11:43 - 000000000 ____D C:\Users\user.user-PC\Desktop\antivirus
2020-04-19 15:29 - 2020-04-19 15:29 - 010899784 _____ (AVAST Software) C:\Users\user.user-PC\Downloads\avastclear.exe
2020-04-19 15:26 - 2020-04-19 15:26 - 000000000 ____D C:\ProgramData\AVG
2020-04-19 13:01 - 2020-04-19 13:07 - 400319472 _____ (AVG Technologies CZ, s.r.o.) C:\Users\user.user-PC\Desktop\avg_antivirus_free_setup_offline.exe
2020-04-19 12:04 - 2020-04-20 11:34 - 000000000 ____D C:\Windows\pss
2020-04-19 11:49 - 2020-04-19 11:49 - 000270160 _____ (AVG Technologies CZ, s.r.o.) C:\Users\user.user-PC\Downloads\avg_antivirus_free_setup.exe
2020-04-19 11:48 - 2020-04-19 11:48 - 003531960 _____ (Microsoft Corporation) C:\Users\user.user-PC\Downloads\VS10SP1-KB3002340-x86 (2).exe
2020-04-19 11:47 - 2020-04-19 11:47 - 003531960 _____ (Microsoft Corporation) C:\Users\user.user-PC\Downloads\VS10SP1-KB3002340-x86 (1).exe
2020-04-19 11:44 - 2020-04-19 11:44 - 003531960 _____ (Microsoft Corporation) C:\Users\user.user-PC\Downloads\VS10SP1-KB3002340-x86.exe
2020-04-18 23:02 - 2020-04-18 23:02 - 007187952 _____ (Microsoft Corporation) C:\Users\user.user-PC\Downloads\vcredist_x64 (1).exe
2020-04-18 22:57 - 2020-04-18 22:57 - 000000003 _____ C:\Users\user.user-PC\sxstrace.txt
2020-04-18 22:55 - 2020-04-18 22:56 - 000065536 _____ C:\Users\user.user-PC\sxstrace.etl
2020-04-18 22:07 - 2020-04-18 22:07 - 005207896 _____ (Microsoft Corporation) C:\Users\user.user-PC\Downloads\vcredist_x64.exe
2020-04-18 21:27 - 2020-04-18 21:25 - 000044568 _____ () C:\Windows\system32\Drivers\staport.sys
2020-04-18 20:56 - 2020-04-18 21:01 - 391812264 _____ (AVAST Software) C:\Users\user.user-PC\Downloads\avast_free_antivirus_setup_offline.exe
2020-04-18 20:54 - 2020-04-18 20:54 - 000230080 _____ (AVAST Software) C:\Users\user.user-PC\Downloads\avast_free_antivirus_setup_online (1).exe
2020-04-18 20:51 - 2020-04-18 20:51 - 000230080 _____ (AVAST Software) C:\Users\user.user-PC\Downloads\avast_free_antivirus_setup_online.exe
2020-04-18 20:48 - 2020-04-18 20:48 - 000000000 ____D C:\Users\user.user-PC\AppData\Roaming\Apple Computer
2020-04-18 20:46 - 2020-04-18 20:46 - 000000027 _____ C:\Users\user.user-PC\Desktop\contrasena adobe patcher.txt
2020-04-18 20:44 - 2020-04-18 20:44 - 000604811 _____ C:\Users\user.user-PC\Downloads\Patch Universal Adobe Painter 1.5 by Edu Lechado.zip
2020-04-18 20:23 - 2020-04-18 20:23 - 001287911 _____ C:\Users\user.user-PC\Downloads\Ece.CS6.Parche.WWW.ARTISTAPIRATA.COM (1).rar
2020-04-18 19:43 - 2020-04-18 19:43 - 000000000 ____D C:\Users\user.user-PC\Downloads\Ece.CS6.Parche.WWW.ARTISTAPIRATA.COM
2020-04-18 19:38 - 2020-04-18 19:39 - 000000000 ____D C:\Program Files\Adobe
2020-04-18 19:38 - 2020-04-18 19:38 - 000001013 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Encore CS6.lnk
2020-04-18 19:36 - 2020-04-18 19:40 - 000000000 ____D C:\Program Files\Common Files\Adobe
2020-04-18 19:35 - 2020-04-18 19:38 - 000000000 ____D C:\Users\user.user-PC\AppData\Roaming\Adobe
2020-04-18 19:35 - 2020-04-18 19:35 - 000000000 ____D C:\ProgramData\Adobe
2020-04-18 19:34 - 2020-04-18 19:34 - 000001313 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Update Management Tool.lnk
2020-04-18 19:34 - 2020-04-18 19:34 - 000001301 _____ C:\Users\Public\Desktop\Adobe Update Management Tool.lnk
2020-04-18 19:34 - 2020-04-18 19:34 - 000001301 _____ C:\ProgramData\Desktop\Adobe Update Management Tool.lnk
2020-04-18 19:25 - 2020-04-18 19:25 - 000000000 ____D C:\Users\user.user-PC\Downloads\Adobe Cleaner
2020-04-18 19:15 - 2020-04-18 19:15 - 008387101 _____ C:\Users\user.user-PC\Downloads\Adobe Cleaner.rar
2020-04-18 19:15 - 2020-04-18 19:15 - 008387101 _____ C:\Users\user.user-PC\Downloads\Adobe Cleaner (1).rar
2020-04-18 19:09 - 2020-04-18 19:09 - 000000000 ____D C:\Users\user.user-PC\Downloads\ADOBE.Update.Management.Tool.8.0.WWW.ARTISTAPIRATA.COM
2020-04-18 19:06 - 2020-04-18 19:06 - 044476792 _____ C:\Users\user.user-PC\Downloads\ADOBE.Update.Management.Tool.8.0.WWW.ARTISTAPIRATA.COM.rar
2020-04-18 19:00 - 2020-04-18 19:00 - 000000000 ____D C:\Users\user.user-PC\Downloads\Adobe.Encore.CS6.WWW.ARTISTAPIRATA.COM
2020-04-18 18:47 - 2020-04-18 18:47 - 001287911 _____ C:\Users\user.user-PC\Downloads\Ece.CS6.Parche.WWW.ARTISTAPIRATA.COM.rar
2020-04-18 18:29 - 2020-04-18 18:29 - 000000000 _____ C:\Users\user.user-PC\Downloads\Sin título.ncor
2020-04-18 18:24 - 2020-04-18 18:24 - 003266980 _____ C:\Users\user.user-PC\Downloads\Menu ArrowBDEcs6.rar
2020-04-18 18:24 - 2020-04-18 18:24 - 000000000 ____D C:\Users\user.user-PC\Downloads\Menu ArrowBDEcs6
2020-04-18 18:19 - 2020-04-18 18:19 - 000002519 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apple Software Update.lnk
2020-04-18 18:19 - 2020-04-18 18:19 - 000001852 _____ C:\Users\Public\Desktop\QuickTime Player.lnk
2020-04-18 18:19 - 2020-04-18 18:19 - 000001852 _____ C:\ProgramData\Desktop\QuickTime Player.lnk
2020-04-18 18:19 - 2020-04-18 18:19 - 000000000 ____D C:\Users\user.user-PC\AppData\Local\Apple
2020-04-18 18:19 - 2020-04-18 18:19 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime
2020-04-18 18:19 - 2020-04-18 18:19 - 000000000 ____D C:\ProgramData\Apple Computer
2020-04-18 18:19 - 2020-04-18 18:19 - 000000000 ____D C:\Program Files (x86)\QuickTime
2020-04-18 18:19 - 2020-04-18 18:19 - 000000000 ____D C:\Program Files (x86)\Apple Software Update
2020-04-18 18:18 - 2020-04-18 18:18 - 000000000 ____D C:\Users\user.user-PC\AppData\LocalLow\Apple Computer
2020-04-18 18:18 - 2020-04-18 18:18 - 000000000 ____D C:\ProgramData\Apple
2020-04-18 18:17 - 2020-04-18 18:18 - 041896256 _____ (Apple Inc.) C:\Users\user.user-PC\Downloads\QuickTimeInstaller.exe
2020-04-14 12:29 - 2020-04-14 12:29 - 000015387 _____ C:\Users\user.user-PC\Downloads\Kiss or Kill (Билл Беннетт Bill Bennett) [1997, Австралия, Триллер, драма, криминал, DVDRip] DVO + Original E [rutracker-4892125].torrent
2020-04-14 11:24 - 2020-04-14 12:06 - 000000000 ____D C:\Users\user.user-PC\Downloads\wetransfer-f0bd8a
2020-04-14 11:10 - 2020-04-14 11:10 - 000000844 _____ C:\Users\user.user-PC\Downloads\El grito de la muerte [Cry of the Banshee, Gordon Hessler, 1970][Subs Castellano][forzados][SINCR. BR USA].srt
2020-04-06 12:13 - 2020-04-06 12:34 - 731809792 _____ C:\Users\user.user-PC\Downloads\Comando.Alto.Riesgo.(dvd+vhs).[mataromorir.com].by.evildemon.&.austinpowers.avi
2020-04-02 12:42 - 2020-04-02 12:42 - 000000000 ____D C:\Users\user.user-PC\Downloads\vhs_punky
2020-04-02 11:00 - 2020-04-02 11:00 - 000000000 ____D C:\Users\user.user-PC\Downloads\v8_super_20190822
2020-04-02 10:59 - 2020-04-02 10:59 - 006152692 _____ C:\Users\user.user-PC\Downloads\v8_super_20190822.zip
2020-03-31 01:19 - 2020-03-31 01:19 - 000000000 ____D C:\Users\user.user-PC\Downloads\CC-2x2
2020-03-31 01:03 - 2020-03-31 01:03 - 000093860 _____ C:\Users\user.user-PC\Downloads\Rawhide_-_3x01_-_Incident_at_Rojo_Canyon.nzb
2020-03-30 23:50 - 2020-03-30 23:50 - 209715200 _____ C:\Users\user.user-PC\Downloads\p.alie.fro.l.a.dv5.yus.part01.rar
2020-03-30 23:43 - 2020-03-30 23:43 - 000004876 _____ C:\Users\user.user-PC\Documents\alien from la dvd.txt
2020-03-30 23:37 - 2020-03-30 23:37 - 000032178 _____ C:\Users\user.user-PC\Downloads\smlk.es - LA NOCHE DE LOS MUERTOS VIVIENTES - DISCO 2 - DVD9FULL.dlc
2020-03-30 23:37 - 2020-03-30 23:37 - 000024736 _____ C:\Users\user.user-PC\Downloads\LsX5wZF.ccf
2020-03-30 16:07 - 2020-03-30 16:07 - 000000000 ____D C:\Users\user.user-PC\AppData\Roaming\NewsLeecher
2020-03-30 16:05 - 2020-03-30 16:05 - 004825360 _____ ( ) C:\Users\user.user-PC\Downloads\nl_setup.exe
2020-03-30 16:05 - 2020-03-30 16:05 - 000001050 _____ C:\Users\Public\Desktop\NewsLeecher.lnk
2020-03-30 16:05 - 2020-03-30 16:05 - 000001050 _____ C:\ProgramData\Desktop\NewsLeecher.lnk
2020-03-30 16:05 - 2020-03-30 16:05 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NewsLeecher
2020-03-30 16:05 - 2020-03-30 16:05 - 000000000 ____D C:\Program Files (x86)\NewsLeecher
2020-03-30 15:15 - 2020-03-30 15:15 - 000000000 ____D C:\ProgramData\Mozilla
2020-03-21 00:23 - 2020-03-21 00:23 - 000284048 _____ C:\Windows\Minidump\032020-36067-01.dmp
==================== Un mes (modificado) ==================
(Si una entrada es incluida en el fixlist, el archivo/carpeta será eliminado/a.)
2020-04-20 15:14 - 2019-08-15 18:05 - 001144152 _____ C:\Users\user.user-PC\AppData\Roaming\msconfig.ini
2020-04-20 11:57 - 2009-07-14 06:45 - 000021680 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2020-04-20 11:57 - 2009-07-14 06:45 - 000021680 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2020-04-19 21:15 - 2018-05-20 00:38 - 000000000 ____D C:\Windows\Minidump
2020-04-19 14:09 - 2019-04-10 13:23 - 000000000 ____D C:\Users\user.user-PC\Desktop\BD_Rebuilder
2020-04-19 11:59 - 2017-06-20 21:29 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sony
2020-04-19 11:49 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\inf
2020-04-18 23:02 - 2017-06-27 21:58 - 000000000 ____D C:\ProgramData\Package Cache
2020-04-18 22:57 - 2017-06-14 05:37 - 000000000 ____D C:\Users\user.user-PC
2020-04-18 21:44 - 2017-06-15 20:47 - 000000000 ____D C:\Users\user.user-PC\AppData\Roaming\vlc
2020-04-18 20:48 - 2009-07-14 06:45 - 005005320 _____ C:\Windows\system32\FNTCACHE.DAT
2020-04-18 19:44 - 2017-06-14 15:08 - 000072392 _____ C:\Users\user.user-PC\AppData\Local\GDIPFONTCACHEV1.DAT
2020-04-18 19:35 - 2018-02-25 21:26 - 000000000 ____D C:\Users\user.user-PC\AppData\Local\Adobe
2020-04-18 19:34 - 2016-05-19 12:42 - 000000000 ____D C:\Program Files (x86)\Adobe
2020-04-18 18:29 - 2017-08-08 22:27 - 000000000 ____D C:\Users\user.user-PC\AppData\Local\CrashDumps
2020-04-18 18:20 - 2019-12-04 16:02 - 000000000 _____ C:\Users\user.user-PC\Documents\Sin título.ncor
2020-04-18 00:26 - 2017-06-15 23:18 - 000000000 ____D C:\Users\user.user-PC\AppData\Roaming\dvdcss
2020-04-17 22:48 - 2011-04-12 11:10 - 000747744 _____ C:\Windows\system32\perfh00A.dat
2020-04-17 22:48 - 2011-04-12 11:10 - 000159184 _____ C:\Windows\system32\perfc00A.dat
2020-04-17 22:48 - 2009-07-14 07:13 - 001677306 _____ C:\Windows\system32\PerfStringBackup.INI
2020-04-12 00:59 - 2017-06-27 21:59 - 000000000 ____D C:\Users\user.user-PC\AppData\Roaming\Aegisub
2020-04-02 10:51 - 2016-05-19 12:39 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2020-03-31 01:26 - 2017-07-07 10:31 - 000000000 ____D C:\Users\user.user-PC\AppData\LocalLow\Mozilla
2020-03-30 15:16 - 2017-07-05 16:54 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox
2020-03-28 17:11 - 2018-06-10 12:40 - 000000000 ____D C:\Users\user.user-PC\AppData\Roaming\VideoReDo-TVSuite4
2020-03-28 17:11 - 2018-05-13 14:09 - 000000000 ____D C:\ProgramData\TEMP
==================== Archivos en la raíz de algunos directorios ========
2017-08-03 21:34 - 2017-08-03 21:34 - 000000087 _____ () C:\Users\user.user-PC\AppData\Roaming\1de0de73-de3e-46c6-81b0-f6455f081644
2018-08-21 00:05 - 2018-08-21 00:05 - 000000171 _____ () C:\Users\user.user-PC\AppData\Roaming\1eb766f2-fed1-4d33-9c39-2c8a972fd11f
2018-08-21 00:05 - 2018-08-21 00:05 - 000000304 _____ () C:\Users\user.user-PC\AppData\Roaming\4e93aa11-2d46-4980-a421-0a4ac759e5bf
2018-02-25 21:04 - 2019-02-15 18:23 - 000001171 _____ () C:\Users\user.user-PC\AppData\Roaming\DVDSubEdit.ini
2018-02-25 19:22 - 2019-02-15 17:41 - 000021134 _____ () C:\Users\user.user-PC\AppData\Roaming\DVDSubEditLastFile0.txt
2018-05-20 16:12 - 2018-05-20 16:12 - 000000121 _____ () C:\Users\user.user-PC\AppData\Roaming\DVDSubEditLastFile1.txt
2018-02-27 01:10 - 2018-04-30 23:51 - 000000134 _____ () C:\Users\user.user-PC\AppData\Roaming\DVDSubEditLastFile2.txt
2018-02-27 01:11 - 2018-04-29 13:18 - 000000093 _____ () C:\Users\user.user-PC\AppData\Roaming\DVDSubEditLastFile3.txt
2018-04-30 23:51 - 2018-02-25 23:57 - 000000190 _____ () C:\Users\user.user-PC\AppData\Roaming\DVDSubEditLastFile4.txt
2018-08-21 00:05 - 2018-08-21 00:05 - 000000175 _____ () C:\Users\user.user-PC\AppData\Roaming\fc19ece2-6b3f-4f22-8758-9651ab9ca388
2019-08-15 18:05 - 2020-04-20 15:14 - 001144152 _____ () C:\Users\user.user-PC\AppData\Roaming\msconfig.ini
2018-02-26 00:34 - 2018-05-20 14:23 - 000000132 _____ () C:\Users\user.user-PC\AppData\Roaming\Prefs. de formato BMP de Adobe CC
2019-12-10 15:46 - 2020-02-14 00:08 - 000000132 _____ () C:\Users\user.user-PC\AppData\Roaming\Prefs. de formato PNG de Adobe CC
==================== SigCheck ============================
(No existe una corrección automática para los archivos que no pasan la verificación.)
LastRegBack: 2019-08-12 17:21
==================== Final de FRST.txt ========================
Resultados del Análisis Adicional de Farbar Recovery Scan Tool (x64) Versión: 19-04-2020
Ejecutado por user (20-04-2020 15:15:23)
Ejecutado desde C:\Users\user.user-PC\Desktop
Windows 7 Professional Service Pack 1 (X64) (2017-06-14 03:37:17)
Modo de Inicio: Normal
==========================================================
==================== Cuentas: =============================
Administrador (S-1-5-21-420265182-739296544-3490084199-500 - Administrator - Disabled)
Invitado (S-1-5-21-420265182-739296544-3490084199-501 - Limited - Disabled)
user (S-1-5-21-420265182-739296544-3490084199-1000 - Administrator - Enabled) => C:\Users\user.user-PC
==================== Centro de Seguridad ========================
(Si una entrada es incluida en el fixlist, será eliminada.)
AS: Windows Defender (Enabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Programas instalados ======================
(Solo los programas de adware con indicador "Oculto", pueden ser añadidos al fixlist para hacerlos visibles. Los programas adware deben ser desinstalados manualmente.)
Adobe Acrobat Reader DC - Español (HKLM-x32\...\{AC76BA86-7AD7-1034-7B44-AC0F074E4100}) (Version: 19.012.20040 - Adobe Systems Incorporated)
Adobe Encore CS6 (HKLM-x32\...\{46251F95-B2F8-484A-9B5B-8C0E5A43A202}) (Version: 6.0.0 - Adobe Systems Incorporated)
Adobe Photoshop CC (HKLM-x32\...\{2D99B50E-431D-4AA8-85C1-172A6F8BCF09}) (Version: 14.0 - Adobe Systems Incorporated)
Adobe Update Management Tool (HKLM-x32\...\{534A7A1A-7102-4AF6-23EA-7CD279C7B625}_is1) (Version: 8.0 - PainteR)
Aegisub 3.2.2 (HKLM-x32\...\{24BC8B57-716C-444F-B46B-A3349B9164C5}_is1) (Version: 3.2.2 - Aegisub Team)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
Avast Secure Browser (HKLM-x32\...\Avast Secure Browser) (Version: 75.1.1528.100 - Los creadores de Avast Secure Browser)
Avast Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.4.136.333 - AVAST Software) Hidden
Avidemux 2.6 - 64 bits (HKLM-x32\...\Avidemux 2.6 - 64 bits (64-bit)) (Version: 2.6.21.170501 - )
AviSynth 2.6 (HKLM-x32\...\AviSynth) (Version: 2.6.0.6 - GPL Public release.)
bl (HKLM-x32\...\{2A075BB4-E976-4278-BF3F-E5C6945D84C0}) (Version: 1.0.0 - Your Company Name) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 5.65 - Piriform)
Compatibilidad con Aplicaciones de Apple (HKLM-x32\...\{46F044A5-CE8B-4196-984E-5BD6525E361D}) (Version: 2.3.6 - Apple Inc.)
CrystalDiskInfo 8.1.0 (HKLM-x32\...\CrystalDiskInfo_is1) (Version: 8.1.0 - Crystal Dew World)
DVD Architect (HKLM-x32\...\{F48D4140-76F2-11E6-ADCC-BB95F5A309BD}) (Version: 7.0.38 - VEGAS)
DVD Decrypter (Remove Only) (HKLM-x32\...\DVD Decrypter) (Version: - )
DVDFab (x64) 10.0.8.9 (12/04/2018) (HKLM-x32\...\DVDFab 10(x64)) (Version: 10.0.8.9 - Fengtao Software Inc.)
DVDStyler v3.0.4 (HKLM\...\DVDStyler_is1) (Version: - Thüring IT-Consulting)
eEnjoy VIDEO DVR (HKLM-x32\...\{B6BF84B7-7CAF-4B3A-A46C-CF2E4BEF809D}) (Version: 2014.03.12 - eEnjoy)
FileZilla Client 3.27.0.1 (HKLM-x32\...\FileZilla Client) (Version: 3.27.0.1 - Tim Kosse)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 80.0.3987.122 - Google LLC)
Google Toolbar for Internet Explorer (HKLM-x32\...\{18455581-E099-4BA8-BC6B-F34B2F06600C}) (Version: 1.0.0 - Google Inc.) Hidden
Google Toolbar for Internet Explorer (HKLM-x32\...\{2318C2B1-4965-11d4-9B18-009027A5CD4F}) (Version: 7.5.8231.2252 - Google Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.35.341 - Google LLC) Hidden
HandBrake 1.0.7 (HKLM-x32\...\HandBrake) (Version: 1.0.7 - )
honestechTVR2.5 (HKLM-x32\...\{ABADD11D-1B48-4F23-BEBA-6B22CE8F5E58}) (Version: 2.5 - honestech)
honestechTVR2.5 (HKLM-x32\...\{B1DE0E2A-C1B1-4A61-A622-1F52CB37B183}) (Version: 2.5 - honestech) Hidden
ImgBurn (HKLM-x32\...\ImgBurn) (Version: 2.5.8.0 - LIGHTNING UK!)
Intel(R) Network Connections Drivers (HKLM\...\PROSet) (Version: 19.4 - Intel)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.3958 - Intel Corporation)
Java 8 Update 211 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180211F0}) (Version: 8.0.2110.12 - Oracle Corporation)
LAV Filters 0.65 (HKLM-x32\...\lavfilters_is1) (Version: 0.65 - Hendrik Leppkes)
Magic Bullet Editors Vegas (HKLM-x32\...\Magic Bullet Editors Vegas) (Version: - )
Microsoft .NET Framework 4.6 (español) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 3082) (Version: 4.6.00081 - Microsoft Corporation)
Microsoft .NET Framework 4.6 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.6.00081 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (HKLM\...\{350AA351-21FA-3270-8B7A-835434E766AD}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{db012557-340e-4a46-adae-81a6b0f6a1e9}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23026 (HKLM-x32\...\{e46eca4f-393b-40df-9f49-076faf788d83}) (Version: 14.0.23026.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23026 (HKLM-x32\...\{74d0e5db-b326-4dae-a6b2-445b9de1836e}) (Version: 14.0.23026.0 - Microsoft Corporation)
MKVToolNix 14.0.0 (64bit) (HKLM-x32\...\MKVToolNix) (Version: 14.0.0 - Moritz Bunkus)
Mozilla Firefox 66.0.3 (x64 es-ES) (HKLM\...\Mozilla Firefox 66.0.3 (x64 es-ES)) (Version: 66.0.3 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 66.0.3.7038 - Mozilla)
MPC-HC 1.7.13 (64-bit) (HKLM\...\{2ACBF1FA-F5C3-4B19-A774-B22A31F231B9}_is1) (Version: 1.7.13 - MPC-HC Team)
NewBlue 3D Explosions for Windows (HKLM-x32\...\NewBlue 3D Explosions for Windows) (Version: - )
NewBlue 3D Transformations for Windows (HKLM-x32\...\NewBlue 3D Transformations for Windows) (Version: - )
NewBlue Film Effects for Windows (HKLM-x32\...\NewBlue Film Effects for Windows) (Version: - )
NewBlue Free Effects for Windows (HKLM-x32\...\NewBlue Free Effects for Windows) (Version: 1.4 - NewBlue)
NewBlue Motion Blends for Windows (HKLM-x32\...\NewBlue Motion Blends for Windows) (Version: - )
NewBlue Video Essentials for Windows (HKLM-x32\...\NewBlue Video Essentials for Windows) (Version: - )
NewsLeecher version v7.0 Final (HKLM-x32\...\NewsLeecher_is1) (Version: v7.0 Final - )
OpenOffice 4.1.2 (HKLM-x32\...\{74BBCD30-EB17-4909-B59F-65E0DD2B7E95}) (Version: 4.12.9782 - Apache Software Foundation)
PDF Settings CC (HKLM-x32\...\{1FBAE18D-4DE4-47AA-83EC-D1B046F262DC}) (Version: 12.0 - Adobe Systems Incorporated) Hidden
ph (HKLM-x32\...\{185F9795-9663-4F13-9EF9-307A282ADB5A}) (Version: 1.0.0 - Your Company Name) Hidden
Project64 1.6 (HKLM-x32\...\{9559F7CA-5E34-4237-A2D9-D856464AD727}) (Version: 1.6 - Project64)
QuickTime 7 (HKLM-x32\...\{FF59BD75-466A-4D5A-AD23-AAD87C5FD44C}) (Version: 7.79.80.95 - Apple Inc.)
ratDVD 0.78.1444 (HKLM-x32\...\ratDVD) (Version: 0.78.1444 - ratDVD)
R-Link 2 Toolbox (HKU\S-1-5-21-420265182-739296544-3490084199-1000\...\{net.awl.appshop.renault.lsf.controller}}_is1) (Version: 1.2.6 - Renault)
Subtitle Edit 3.5.10 (HKLM\...\SubtitleEdit_is1) (Version: 3.5.10.0 - Nikse)
Subtitle Workshop 6.0b (HKLM-x32\...\SubtitleWorkshop) (Version: - )
SubtitleCreator (HKLM-x32\...\SubtitleCreator) (Version: V2.2 - Erik Vullings)
TC Catalogador 6.0 (HKLM-x32\...\{350797FB-104F-4373-8D7A-D9E60053FE3A}_is1) (Version: 6.0 - TC Catalogador, Inc.)
TMPGEnc Authoring Works 4 (HKLM-x32\...\{0AF28D4B-7525-4C85-A89E-10C23D6959AA}) (Version: 4.0.12.42 - Pegasys Inc.)
TomTom HOME 2.20.8.1298 (HKLM\...\TomTom HOME) (Version: 2.20.8.1298 - TomTom)
TomTom MyDrive Connect 4.2.5.3770 (HKLM-x32\...\MyDriveConnect) (Version: 4.2.5.3770 - TomTom)
Vegas Pro 13.0 (64-bit) (HKLM\...\{7900EBB0-CCC3-11E4-AD24-F04DA23A5C58}) (Version: 13.0.444 - Sony)
VideoReDo TVSuite Version 4.21.6.674 (HKLM-x32\...\VideoReDo4_is1) (Version: - DRD Systems, Inc.)
Visual Studio C++ 10.0 Runtime (HKLM-x32\...\{4412F224-3849-4461-A3E9-DEEF8D252790}) (Version: 10.0.0 - TomTom International B.V.)
VLC media player (HKLM-x32\...\VLC media player) (Version: 3.0.6 - VideoLAN)
Win32DiskImager version 1.0.0 (HKLM-x32\...\{3DFFA293-DF2C-4B23-92E5-3433BDC310E1}}_is1) (Version: 1.0.0 - ImageWriter Developers)
WinRAR 5.70 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 5.70.0 - win.rar GmbH)
XAMPP (HKLM-x32\...\xampp) (Version: 7.0.31-0 - Bitnami)
Xvid Video Codec (HKLM-x32\...\Xvid Video Codec 1.3.4) (Version: 1.3.4 - Xvid Team)
==================== Personalizado CLSID (Lista blanca): ==============
(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)
CustomCLSID: HKU\S-1-5-21-420265182-739296544-3490084199-1000_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\Windows\system32\igfxEM.exe (Intel Corporation - pGFX -> Intel Corporation)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> Ningún archivo
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> Ningún archivo
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\Windows\system32\igfxDTCM.dll [2014-10-03] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
==================== Codecs (Lista blanca) ====================
(Si una entrada es incluida en el fixlist, el elemento del registro será restaurado a su valor predeterminado o será eliminado. El archivo no será movido.)
HKLM\...\Drivers32: [vidc.XVID] => C:\Windows\system32\xvidvfw.dll [251392 2015-06-21] () [Archivo no firmado]
HKLM\...\Drivers32: [msacm.l3acm] => C:\Windows\SysWOW64\l3codecp.acm [220672 2009-07-14] (Microsoft Windows -> Fraunhofer Institut Integrierte Schaltungen IIS)
HKLM\...\Drivers32: [vidc.XVID] => C:\Windows\SysWOW64\xvidvfw.dll [235520 2015-06-21] () [Archivo no firmado]
==================== Accesos directos & WMI ========================
(Las entradas pueden ser listadas para ser restauradas o eliminadas.)
WMI:subscription\__FilterToConsumerBinding->CommandLineEventConsumer.Name=\"BVTConsumer\"",Filter="__EventFilter.Name=\"BVTFilter\"::
WMI:subscription\__EventFilter->BVTFilter::[Query => SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99]
WMI:subscription\CommandLineEventConsumer->BVTConsumer::[CommandLineTemplate => cscript KernCap.vbs][WorkingDirectory => C:\\tools\\kernrate]
Shortcut: C:\Users\user.user-PC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\DVDFab 10 (x64)\DVDFab (x64) Online.lnk -> hxxp://www.dvdfab.cn/?s=dvdfab10&p=x64&v=10.0.8.9
==================== Módulos cargados (Lista blanca) =============
2018-02-04 14:46 - 2008-04-27 19:06 - 000053248 _____ () [Archivo no firmado] C:\Program Files (x86)\honestech\honestech TVR 2.5\ReadRemoteKey.dll
==================== Alternate Data Streams (Lista blanca) ========
(Si una entrada es incluida en el fixlist, solamente los ADS serán eliminados.)
AlternateDataStreams: C:\ProgramData\TEMP:0888F409 [286]
AlternateDataStreams: C:\ProgramData\TEMP:3440EB47 [902]
AlternateDataStreams: C:\ProgramData\TEMP:66633281 [135]
==================== Modo Seguro (Lista blanca) ==================
(Si una entrada es incluida en el fixlist, será eliminada del registro. El "AlternateShell" será restaurado.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\24310028.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\24310028.sys => ""="Driver"
==================== Asociación (Lista blanca) =================
==================== Internet Explorer sitios de confianza/restringidos ==========
==================== Hosts contenido: =========================
(Si es necesario, la directiva Hosts: puede ser incluida en el fixlist para restablecer Hosts.)
2009-07-14 04:34 - 2019-01-04 10:58 - 000000825 _____ C:\Windows\system32\drivers\etc\hosts
==================== Otras Áreas ===========================
(Actualmente no existe una corrección automática para esta sección.)
HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Common Files\Oracle\Java\javapath;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\QuickTime\QTSystem\
HKU\S-1-5-21-420265182-739296544-3490084199-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\user.user-PC\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 192.168.0.254
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 2) (ConsentPromptBehaviorUser: 3) (EnableLUA: 0)
Firewall de Windows está habilitado.
==================== MSCONFIG/TASK MANAGER elementos deshabilitados ==
==================== Reglas de firewall (Lista blanca) ================
(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)
FirewallRules: [SPPSVC-In-TCP] => (Allow) %SystemRoot%\system32\sppsvc.exe Ningún archivo
FirewallRules: [SPPSVC-In-TCP-NoScope] => (Allow) %SystemRoot%\system32\sppsvc.exe Ningún archivo
FirewallRules: [{EFC851DE-BA79-452F-9622-D928FBD7A6F6}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{8B699F00-3EA8-4AC0-8B49-0B5736D63A81}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [TCP Query User{6BA2BAFD-0238-44C7-B4AE-9B8F6DBD1AD8}C:\program files (x86)\dvdfab 10\dvdfab.exe] => (Allow) C:\program files (x86)\dvdfab 10\dvdfab.exe Ningún archivo
FirewallRules: [UDP Query User{A9C1BF80-D896-46EA-9B1F-A35A111DCC11}C:\program files (x86)\dvdfab 10\dvdfab.exe] => (Allow) C:\program files (x86)\dvdfab 10\dvdfab.exe Ningún archivo
FirewallRules: [TCP Query User{5F61E304-11FE-47A9-8AB1-06B674D74C32}C:\program files\dvdfab 10\dvdfab64.exe] => (Allow) C:\program files\dvdfab 10\dvdfab64.exe (Fengtao Software Inc. -> FengTao Software Inc.)
FirewallRules: [UDP Query User{BB2D626A-5833-470F-9A2B-18BE9787AE4D}C:\program files\dvdfab 10\dvdfab64.exe] => (Allow) C:\program files\dvdfab 10\dvdfab64.exe (Fengtao Software Inc. -> FengTao Software Inc.)
FirewallRules: [TCP Query User{D9466271-72EA-40C9-B968-DED09FB65D4B}C:\xampp\apache\bin\httpd.exe] => (Allow) C:\xampp\apache\bin\httpd.exe (Apache Software Foundation) [Archivo no firmado]
FirewallRules: [UDP Query User{7780724B-8B84-4C25-A60F-41CD268BC7D5}C:\xampp\apache\bin\httpd.exe] => (Allow) C:\xampp\apache\bin\httpd.exe (Apache Software Foundation) [Archivo no firmado]
FirewallRules: [TCP Query User{05287000-FF53-4CAD-8857-D00BA1480263}C:\xampp\mysql\bin\mysqld.exe] => (Allow) C:\xampp\mysql\bin\mysqld.exe (MariaDB Corporation Ab -> )
FirewallRules: [UDP Query User{DDA0F106-CA1D-4A4E-92A2-2F25A215FDD5}C:\xampp\mysql\bin\mysqld.exe] => (Allow) C:\xampp\mysql\bin\mysqld.exe (MariaDB Corporation Ab -> )
FirewallRules: [TCP Query User{BE3BB6F0-B704-4543-B0BA-A991B785094F}C:\program files (x86)\videolan\vlc\vlc.exe] => (Allow) C:\program files (x86)\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN)
FirewallRules: [UDP Query User{F63EB70A-3BCF-43F9-8FCE-54BA759D9520}C:\program files (x86)\videolan\vlc\vlc.exe] => (Allow) C:\program files (x86)\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN)
FirewallRules: [{D7AB37FA-3A98-49B0-A3EC-24A37AB2CD12}] => (Allow) C:\Program Files (x86)\MyDrive Connect\TomTom MyDrive Connect.exe (TomTom International BV -> TomTom)
FirewallRules: [{61403FED-D3E3-411C-80BD-7075956D5030}] => (Allow) C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe () [Archivo no firmado]
FirewallRules: [{3FB42711-F88C-470E-90AA-EC6C16002CB2}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{90A9A6D3-BC98-471B-B106-2CDF724C607C}] => (Allow) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\WebKit2WebProcess.exe (Apple Inc. -> Apple Inc.)
==================== Puntos de Restauración =========================
==================== Dispositivos defectuosos en el Administrador de dispositivos ============
==================== Errores del registro de eventos: ========================
Errores de aplicación:
==================
Error: (04/20/2020 11:51:31 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: No se pudo reactivar el filtro de eventos con la consulta "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" en el espacio de nombres "//./root/CIMV2" por el error 0x80041003. Los eventos no se podrán entregar a través de este filtro hasta que se corrija este problema.
Error: (04/20/2020 11:42:49 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: No se pudo reactivar el filtro de eventos con la consulta "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" en el espacio de nombres "//./root/CIMV2" por el error 0x80041003. Los eventos no se podrán entregar a través de este filtro hasta que se corrija este problema.
Error: (04/20/2020 11:39:54 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: No se pudo reactivar el filtro de eventos con la consulta "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" en el espacio de nombres "//./root/CIMV2" por el error 0x80041003. Los eventos no se podrán entregar a través de este filtro hasta que se corrija este problema.
Error: (04/20/2020 11:36:57 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: No se pudo reactivar el filtro de eventos con la consulta "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" en el espacio de nombres "//./root/CIMV2" por el error 0x80041003. Los eventos no se podrán entregar a través de este filtro hasta que se corrija este problema.
Error: (04/20/2020 11:36:48 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nombre de la aplicación con errores: wserver.exe, versión: 3.0.85.0, marca de tiempo: 0x534ce6f9
Nombre del módulo con errores: KERNELBASE.dll, versión: 6.1.7601.22379, marca de tiempo: 0x51da4920
Código de excepción: 0xe053534f
Desplazamiento de errores: 0x0000c42d
Id. del proceso con errores: 0x%9
Hora de inicio de la aplicación con errores: 0xwserver.exe0
Ruta de acceso de la aplicación con errores: wserver.exe1
Ruta de acceso del módulo con errores: wserver.exe2
Id. del informe: wserver.exe3
Error: (04/19/2020 04:47:08 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: No se pudo reactivar el filtro de eventos con la consulta "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" en el espacio de nombres "//./root/CIMV2" por el error 0x80041003. Los eventos no se podrán entregar a través de este filtro hasta que se corrija este problema.
Error: (04/19/2020 02:14:49 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: No se pudo reactivar el filtro de eventos con la consulta "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" en el espacio de nombres "//./root/CIMV2" por el error 0x80041003. Los eventos no se podrán entregar a través de este filtro hasta que se corrija este problema.
Error: (04/19/2020 01:01:32 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: No se pudo reactivar el filtro de eventos con la consulta "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" en el espacio de nombres "//./root/CIMV2" por el error 0x80041003. Los eventos no se podrán entregar a través de este filtro hasta que se corrija este problema.
Errores del sistema:
=============
Error: (04/20/2020 11:49:06 AM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: El servicio Servidor se cerró con el siguiente error:
No se ha iniciado el servicio.
Error: (04/20/2020 11:43:35 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: El servicio Malwarebytes Installer Service no pudo iniciarse debido al siguiente error:
Acceso denegado.
Error: (04/20/2020 11:42:43 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: El servicio Windows Presentation Foundation Font Cache 3.0.0.0 no pudo iniciarse debido al siguiente error:
El servicio no respondió a tiempo a la solicitud de inicio o de control.
Error: (04/20/2020 11:42:43 AM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Se agotó el tiempo de espera (30000 ms) para la conexión con el servicio Windows Presentation Foundation Font Cache 3.0.0.0.
Error: (04/20/2020 11:39:44 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: El servicio Windows Presentation Foundation Font Cache 3.0.0.0 no pudo iniciarse debido al siguiente error:
El servicio no respondió a tiempo a la solicitud de inicio o de control.
Error: (04/20/2020 11:39:44 AM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Se agotó el tiempo de espera (30000 ms) para la conexión con el servicio Windows Presentation Foundation Font Cache 3.0.0.0.
Error: (04/20/2020 11:37:09 AM) (Source: Disk) (EventID: 11) (User: )
Description: El controlador detectó un error de controladora en \Device\Harddisk1\DR1.
Error: (04/20/2020 11:37:08 AM) (Source: Disk) (EventID: 11) (User: )
Description: El controlador detectó un error de controladora en \Device\Harddisk1\DR1.
CodeIntegrity:
===================================
Date: 2020-04-20 15:15:19.340
Description:
Integridad de código no puede comprobar la integridad de imagen del archivo \Device\HarddiskVolume3\Windows\System32\drivers\staport.sys porque el conjunto de hashes de imagen por página no se encuentra en el sistema.
Date: 2020-04-20 15:15:19.340
Description:
Integridad de código no puede comprobar la integridad de imagen del archivo \Device\HarddiskVolume3\Windows\System32\drivers\staport.sys porque el conjunto de hashes de imagen por página no se encuentra en el sistema.
==================== Información de la memoria ===========================
BIOS: Dell Inc. A12 05/20/2013
Placa base: Dell Inc.
Procesador: Intel(R) Core(TM) i7-3520M CPU @ 2.90GHz
Porcentaje de memoria en uso: 62%
RAM física total: 3982.4 MB
RAM física disponible: 1494.46 MB
Virtual total: 7962.98 MB
Virtual disponible: 5330.55 MB
==================== Unidades ================================
Drive c: (Windows) (Fixed) (Total:291.74 GB) (Free:10.18 GB) NTFS
Drive d: (VIDEO_DVD) (CDROM) (Total:4.37 GB) (Free:0 GB) UDF
Drive f: () (Removable) (Total:29.29 GB) (Free:9.16 GB) FAT32
\\?\Volume{33a43636-20c6-11e6-b8a2-806e6f6e6963}\ (System) (Fixed) (Total:0.29 GB) (Free:0.09 GB) NTFS
\\?\Volume{33a43635-20c6-11e6-b8a2-806e6f6e6963}\ (Recovery) (Fixed) (Total:6.05 GB) (Free:0.17 GB) NTFS
==================== MBR & Tabla de particiones ====================
==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 298.1 GB) (Disk ID: C0EC9E23)
Partition 1: (Not Active) - (Size=6.1 GB) - (Type=27)
Partition 2: (Active) - (Size=300 MB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=291.7 GB) - (Type=07 NTFS)
==========================================================
Disk: 1 (Protective MBR) (Size: 29.3 GB) (Disk ID: 00000000)
Partition: GPT.
==================== Final de Addition.txt =======================Tienes una infeccion que bloquea los antivirus.
Ademas tu disco C esta con poco espacio
Bien… y ahora sigue estos pasos, MUY Importante ~ Realiza una copia de seguridad del registro :
-
Para hacerlo descarga Delfix en tu escritorio.
-
Doble clic para ejecutarlo.(Si usas Windows Vista/7/8 o 10 presiona clic derecho y selecciona "Ejecutar como Administrador.")
-
Atención, ahora marca/selecciona únicamente las casillas Registry Backup, las demás NO
-
Pulsar en Run.
Se abrirá el informe (Delfix.txt), guárdalo por si fuera necesario y cierra la herramienta.
En el equipo con los demas programas cerrados:
Inicio >>> Ejecutar >>>Escribes notepad.exe.
Ahora copia y pega estos archivos dentro del Notepad:
Start
CreateRestorePoint:
CloseProcesses:
HKU\S-1-5-21-420265182-739296544-3490084199-1000\...\Winlogon: [Shell] explorer.exe,"C:\Windows\SysWOW64\Windows Server\wserver.exe" <==== ATENCIÓN
IFEO\AvastBrowserCrashHandler.exe: [Debugger] nqij.exe
IFEO\AvastBrowserCrashHandler64.exe: [Debugger] nqij.exe
IFEO\AvastSvc.exe: [Debugger] nqij.exe
IFEO\AvastUI.exe: [Debugger] nqij.exe
IFEO\avcenter.exe: [Debugger] nqij.exe
IFEO\avconfig.exe: [Debugger] nqij.exe
IFEO\avgcsrvx.exe: [Debugger] nqij.exe
IFEO\avgidsagent.exe: [Debugger] nqij.exe
IFEO\avgnt.exe: [Debugger] nqij.exe
IFEO\avgrsx.exe: [Debugger] nqij.exe
IFEO\avguard.exe: [Debugger] nqij.exe
IFEO\avgui.exe: [Debugger] nqij.exe
IFEO\avgwdsvc.exe: [Debugger] nqij.exe
IFEO\avp.exe: [Debugger] nqij.exe
IFEO\avscan.exe: [Debugger] nqij.exe
IFEO\bdagent.exe: [Debugger] nqij.exe
IFEO\blindman.exe: [Debugger] nqij.exe
IFEO\ccuac.exe: [Debugger] nqij.exe
IFEO\ComboFix.exe: [Debugger] nqij.exe
IFEO\egui.exe: [Debugger] nqij.exe
IFEO\hijackthis.exe: [Debugger] nqij.exe
IFEO\instup.exe: [Debugger] nqij.exe
IFEO\keyscrambler.exe: [Debugger] nqij.exe
IFEO\mbam.exe: [Debugger] nqij.exe
IFEO\mbamgui.exe: [Debugger] nqij.exe
IFEO\mbampt.exe: [Debugger] nqij.exe
IFEO\mbamscheduler.exe: [Debugger] nqij.exe
IFEO\mbamservice.exe: [Debugger] nqij.exe
IFEO\mbemsg.exe: [Debugger] nqij.exe
IFEO\MpCmdRun.exe: [Debugger] nqij.exe
IFEO\MSASCui.exe: [Debugger] nqij.exe
IFEO\MsMpEng.exe: [Debugger] nqij.exe
IFEO\msseces.exe: [Debugger] nqij.exe
IFEO\rstrui.exe: [Debugger] nqij.exe
IFEO\SDFiles.exe: [Debugger] nqij.exe
IFEO\SDMain.exe: [Debugger] nqij.exe
IFEO\SDWinSec.exe: [Debugger] nqij.exe
IFEO\spybotsd.exe: [Debugger] nqij.exe
IFEO\wireshark.exe: [Debugger] nqij.exe
IFEO\zlclient.exe: [Debugger] nqij.exe
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restricción <==== ATENCIÓN
2020-04-19 15:26 - 2020-04-19 15:26 - 000000000 ____D C:\ProgramData\AVG
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> Ningún archivo
WMI:subscription\__FilterToConsumerBinding->CommandLineEventConsumer.Name=\"BVTConsumer\"",Filter="__EventFilter.Name=\"BVTFilter\"::
WMI:subscription\__EventFilter->BVTFilter::[Query => SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99]
WMI:subscription\CommandLineEventConsumer->BVTConsumer::[CommandLineTemplate => cscript KernCap.vbs][WorkingDirectory => C:\\tools\\kernrate]
Shortcut: C:\Users\user.user-PC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\DVDFab 10 (x64)\DVDFab (x64) Online.lnk -> hxxp://www.dvdfab.cn/?s=dvdfab10&p=x64&v=10.0.8.9
AlternateDataStreams: C:\ProgramData\TEMP:0888F409 [286]
AlternateDataStreams: C:\ProgramData\TEMP:3440EB47 [902]
AlternateDataStreams: C:\ProgramData\TEMP:66633281 [135]
HOSTS:
REMOVEPROXY:
EMPTYTEMP:
CMD: netsh winsock reset
CMD: ipconfig /renew
CMD: ipconfig /flushdns
CMD: bitsadmin /reset /allusers
CMD: netsh advfirewall reset
CMD: netsh advfirewall set allprofiles state ON
CMD: netsh int ipv4 reset
CMD: netsh int ipv6 reset
END
Lo guardas bajo el nombre de fixlist.txt en el escritorio <<< Esto es muy importante.<<
Nota: Es importante que la Hta Frst.exe y fixlist.txt se encuentren en la misma ubicación (escritorio) o si no no trabajara.
-
Ejecutas Frst.exe.
-
Presionas el botón Corregir y aguardas a que termine.
-
La Herramienta guardara el reporte en tu escritorio (Fixlog.txt).
Lo pegas en tu próxima respuesta,ademas de estos otros:
Realiza los siguientes pasos, , sin cambiar el orden
1) Descarga, instala y ejecuta Malwarebytes’ Anti-Malware.
-
Presiona clic en “Use Malewarebytes Free” (Usar Malewarebyte gratis).
-
Pulsa en el botón “Open Malewarebytes Free”.
- Presiona el botón “Scan” (Escaneo).
Una vez finalizado el escaneo aparecerá la siguiente pantalla:
-
Pulsa en “View report” (Ver informe).
-
Luego presionar el botón “Export” (Exportar). Elijes “Text file” (fichero de texto). Elijes un nombre y guardas ese archivo en el escritorio…
2) Descarga Adwcleaner en el escritorio.
-
Desactiva tu antivirus
Como deshabilitar temporalmente un antivirus y cualquier programa de seguridad. -
Ejecuta Adwcleaner.exe (Si usas Windows Vista/7 u 8 presiona clic derecho y selecciona "Ejecutar como Administrador.")
-
Pulsar en el botón Analizar Ahora, y espera a que se realice el proceso, inmediatamente pulsa sobre el botón Iniciar Reparacion.
-
Espera a que se complete y sigue las instrucciones, si te pidiera Reiniciar el sistema Aceptas.
-
Si no encuentra nada, pulsamos “Omitir Reparación”
-
El log lo encontramos en la pestaña “Informes”, volviendo a abrir el programa, si es necesario o en"C:\AdwCleaner\Logs\AdwCleaner[C0].txt"
Puedes mirar su manual >> Manual de Adwcleaner
3) Descarga Ccleaner
Instalalo y ejecútalo. En la pestaña limpiador dejas como esta configurada predeterminadamente, haces clic en analizar esperas que termine > clic en ejecutar limpiador. Clic en la pestaña Registro > clic en buscar problemas esperas que termine > clic en Reparar Seleccionadas y haces una copia de seguridad.
Pega los reportes de Malwarebytes, AdwCleaner y comentas como va el problema.
Hola, Miguelgrado. Bueno la cosa ha mejorado algo, sigo sin poder ejecutar el malwarebytes, aunque ahora parece que se instalaron los archivos en la carpeta de archivos de programa, ejecuto el archivo mbam.exe y me sale el error “Unable conect to service”. He seguido los pasos y ejecuté el Adwcleaner y CCleaner. Pego los informes de Frst y Adwcleaner. El Frst lo tuve que ejecutar dos veces ya que la primera vez se quedó colgado en mitad del proceso, pero a la segunda terminó el proceso correctamente.Pego lo dos logs.
Resultados de la corrección de Farbar Recovery Scan Tool (x64) Versión: 19-04-2020
Ejecutado por user (20-04-2020 17:03:43) Run:1
Ejecutado desde C:\Users\user.user-PC\Desktop
Perfiles cargados: user (Perfiles disponibles: user)
Modo de Inicio: Normal
==============================================
fixlist contenido:
*****************
Start
CreateRestorePoint:
CloseProcesses:
HKU\S-1-5-21-420265182-739296544-3490084199-1000\...\Winlogon: [Shell] explorer.exe,"C:\Windows\SysWOW64\Windows Server\wserver.exe" <==== ATENCI�N
IFEO\AvastBrowserCrashHandler.exe: [Debugger] nqij.exe
IFEO\AvastBrowserCrashHandler64.exe: [Debugger] nqij.exe
IFEO\AvastSvc.exe: [Debugger] nqij.exe
IFEO\AvastUI.exe: [Debugger] nqij.exe
IFEO\avcenter.exe: [Debugger] nqij.exe
IFEO\avconfig.exe: [Debugger] nqij.exe
IFEO\avgcsrvx.exe: [Debugger] nqij.exe
IFEO\avgidsagent.exe: [Debugger] nqij.exe
IFEO\avgnt.exe: [Debugger] nqij.exe
IFEO\avgrsx.exe: [Debugger] nqij.exe
IFEO\avguard.exe: [Debugger] nqij.exe
IFEO\avgui.exe: [Debugger] nqij.exe
IFEO\avgwdsvc.exe: [Debugger] nqij.exe
IFEO\avp.exe: [Debugger] nqij.exe
IFEO\avscan.exe: [Debugger] nqij.exe
IFEO\bdagent.exe: [Debugger] nqij.exe
IFEO\blindman.exe: [Debugger] nqij.exe
IFEO\ccuac.exe: [Debugger] nqij.exe
IFEO\ComboFix.exe: [Debugger] nqij.exe
IFEO\egui.exe: [Debugger] nqij.exe
IFEO\hijackthis.exe: [Debugger] nqij.exe
IFEO\instup.exe: [Debugger] nqij.exe
IFEO\keyscrambler.exe: [Debugger] nqij.exe
IFEO\mbam.exe: [Debugger] nqij.exe
IFEO\mbamgui.exe: [Debugger] nqij.exe
IFEO\mbampt.exe: [Debugger] nqij.exe
IFEO\mbamscheduler.exe: [Debugger] nqij.exe
IFEO\mbamservice.exe: [Debugger] nqij.exe
IFEO\mbemsg.exe: [Debugger] nqij.exe
IFEO\MpCmdRun.exe: [Debugger] nqij.exe
IFEO\MSASCui.exe: [Debugger] nqij.exe
IFEO\MsMpEng.exe: [Debugger] nqij.exe
IFEO\msseces.exe: [Debugger] nqij.exe
IFEO\rstrui.exe: [Debugger] nqij.exe
IFEO\SDFiles.exe: [Debugger] nqij.exe
IFEO\SDMain.exe: [Debugger] nqij.exe
IFEO\SDWinSec.exe: [Debugger] nqij.exe
IFEO\spybotsd.exe: [Debugger] nqij.exe
IFEO\wireshark.exe: [Debugger] nqij.exe
IFEO\zlclient.exe: [Debugger] nqij.exe
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restricci�n <==== ATENCI�N
2020-04-19 15:26 - 2020-04-19 15:26 - 000000000 ____D C:\ProgramData\AVG
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> Ning�n archivo
WMI:subscription\__FilterToConsumerBinding->CommandLineEventConsumer.Name=\"BVTConsumer\"",Filter="__EventFilter.Name=\"BVTFilter\"::
WMI:subscription\__EventFilter->BVTFilter::[Query => SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99]
WMI:subscription\CommandLineEventConsumer->BVTConsumer::[CommandLineTemplate => cscript KernCap.vbs][WorkingDirectory => C:\\tools\\kernrate]
Shortcut: C:\Users\user.user-PC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\DVDFab 10 (x64)\DVDFab (x64) Online.lnk -> hxxp://www.dvdfab.cn/?s=dvdfab10&p=x64&v=10.0.8.9
AlternateDataStreams: C:\ProgramData\TEMP:0888F409 [286]
AlternateDataStreams: C:\ProgramData\TEMP:3440EB47 [902]
AlternateDataStreams: C:\ProgramData\TEMP:66633281 [135]
HOSTS:
REMOVEPROXY:
EMPTYTEMP:
CMD: netsh winsock reset
CMD: ipconfig /renew
CMD: ipconfig /flushdns
CMD: bitsadmin /reset /allusers
CMD: netsh advfirewall reset
CMD: netsh advfirewall set allprofiles state ON
CMD: netsh int ipv4 reset
CMD: netsh int ipv6 reset
END
*****************
Error: (0) Error al crear un punto de restauración.
Procesos cerrados correctamente.
"HKU\S-1-5-21-420265182-739296544-3490084199-1000\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\\Shell" => eliminado correctamente
"HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\AvastBrowserCrashHandler.exe" => eliminado correctamente
"HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\AvastBrowserCrashHandler64.exe" => eliminado correctamente
"HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\AvastSvc.exe" => eliminado correctamente
"HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\AvastUI.exe" => eliminado correctamente
"HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\avcenter.exe" => eliminado correctamente
"HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\avconfig.exe" => eliminado correctamente
"HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\avgcsrvx.exe" => eliminado correctamente
"HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\avgidsagent.exe" => eliminado correctamente
"HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\avgnt.exe" => eliminado correctamente
"HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\avgrsx.exe" => eliminado correctamente
"HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\avguard.exe" => eliminado correctamente
"HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\avgui.exe" => eliminado correctamente
"HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\avgwdsvc.exe" => eliminado correctamente
"HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\avp.exe" => eliminado correctamente
"HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\avscan.exe" => eliminado correctamente
"HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\bdagent.exe" => eliminado correctamente
"HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\blindman.exe" => eliminado correctamente
"HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\ccuac.exe" => eliminado correctamente
"HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\ComboFix.exe" => eliminado correctamente
"HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\egui.exe" => eliminado correctamente
"HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\hijackthis.exe" => eliminado correctamente
"HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\instup.exe" => eliminado correctamente
"HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\keyscrambler.exe" => eliminado correctamente
"HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\mbam.exe" => eliminado correctamente
"HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\mbamgui.exe" => eliminado correctamente
"HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\mbampt.exe" => eliminado correctamente
"HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\mbamscheduler.exe" => eliminado correctamente
"HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\mbamservice.exe" => eliminado correctamente
"HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\mbemsg.exe" => eliminado correctamente
"HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\MpCmdRun.exe" => eliminado correctamente
"HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\MSASCui.exe" => eliminado correctamente
"HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\MsMpEng.exe" => eliminado correctamente
"HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\msseces.exe" => eliminado correctamente
"HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\rstrui.exe" => eliminado correctamente
"HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\SDFiles.exe" => eliminado correctamente
"HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\SDMain.exe" => eliminado correctamente
"HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\SDWinSec.exe" => eliminado correctamente
"HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\spybotsd.exe" => eliminado correctamente
"HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\wireshark.exe" => eliminado correctamente
"HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\zlclient.exe" => eliminado correctamente
HKLM\SOFTWARE\Policies\Mozilla => eliminado correctamente
C:\ProgramData\AVG => movido correctamente
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\00asw => eliminado correctamente
"CommandLineEventConsumer.Name=\"BVTConsumer\"",Filter="__EventFilter.Name=\"BVTFilter\"" => eliminado correctamente
"BVTFilter" => eliminado correctamente
"BVTConsumer" => eliminado correctamente
C:\Users\user.user-PC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\DVDFab 10 (x64)\DVDFab (x64) Online.lnk => movido correctamente
C:\ProgramData\TEMP => ":0888F409" ADS eliminado correctamente
C:\ProgramData\TEMP => ":3440EB47" ADS eliminado correctamente
C:\ProgramData\TEMP => ":66633281" ADS eliminado correctamente
C:\Windows\System32\Drivers\etc\hosts => movido correctamente
Hosts restaurado correctamente.
========= RemoveProxy: =========
"HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings" => eliminado correctamente
"HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings" => eliminado correctamente
"HKU\S-1-5-21-420265182-739296544-3490084199-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings" => eliminado correctamente
Segundo log:
Resultados de la corrección de Farbar Recovery Scan Tool (x64) Versión: 19-04-2020
Ejecutado por user (20-04-2020 17:49:52) Run:3
Ejecutado desde C:\Users\user.user-PC\Desktop
Perfiles cargados: user (Perfiles disponibles: user)
Modo de Inicio: Safe Mode (with Networking)
==============================================
fixlist contenido:
*****************
Start
CreateRestorePoint:
CloseProcesses:
HKU\S-1-5-21-420265182-739296544-3490084199-1000\...\Winlogon: [Shell] explorer.exe,"C:\Windows\SysWOW64\Windows Server\wserver.exe" <==== ATENCI�N
IFEO\AvastBrowserCrashHandler.exe: [Debugger] nqij.exe
IFEO\AvastBrowserCrashHandler64.exe: [Debugger] nqij.exe
IFEO\AvastSvc.exe: [Debugger] nqij.exe
IFEO\AvastUI.exe: [Debugger] nqij.exe
IFEO\avcenter.exe: [Debugger] nqij.exe
IFEO\avconfig.exe: [Debugger] nqij.exe
IFEO\avgcsrvx.exe: [Debugger] nqij.exe
IFEO\avgidsagent.exe: [Debugger] nqij.exe
IFEO\avgnt.exe: [Debugger] nqij.exe
IFEO\avgrsx.exe: [Debugger] nqij.exe
IFEO\avguard.exe: [Debugger] nqij.exe
IFEO\avgui.exe: [Debugger] nqij.exe
IFEO\avgwdsvc.exe: [Debugger] nqij.exe
IFEO\avp.exe: [Debugger] nqij.exe
IFEO\avscan.exe: [Debugger] nqij.exe
IFEO\bdagent.exe: [Debugger] nqij.exe
IFEO\blindman.exe: [Debugger] nqij.exe
IFEO\ccuac.exe: [Debugger] nqij.exe
IFEO\ComboFix.exe: [Debugger] nqij.exe
IFEO\egui.exe: [Debugger] nqij.exe
IFEO\hijackthis.exe: [Debugger] nqij.exe
IFEO\instup.exe: [Debugger] nqij.exe
IFEO\keyscrambler.exe: [Debugger] nqij.exe
IFEO\mbam.exe: [Debugger] nqij.exe
IFEO\mbamgui.exe: [Debugger] nqij.exe
IFEO\mbampt.exe: [Debugger] nqij.exe
IFEO\mbamscheduler.exe: [Debugger] nqij.exe
IFEO\mbamservice.exe: [Debugger] nqij.exe
IFEO\mbemsg.exe: [Debugger] nqij.exe
IFEO\MpCmdRun.exe: [Debugger] nqij.exe
IFEO\MSASCui.exe: [Debugger] nqij.exe
IFEO\MsMpEng.exe: [Debugger] nqij.exe
IFEO\msseces.exe: [Debugger] nqij.exe
IFEO\rstrui.exe: [Debugger] nqij.exe
IFEO\SDFiles.exe: [Debugger] nqij.exe
IFEO\SDMain.exe: [Debugger] nqij.exe
IFEO\SDWinSec.exe: [Debugger] nqij.exe
IFEO\spybotsd.exe: [Debugger] nqij.exe
IFEO\wireshark.exe: [Debugger] nqij.exe
IFEO\zlclient.exe: [Debugger] nqij.exe
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restricci�n <==== ATENCI�N
2020-04-19 15:26 - 2020-04-19 15:26 - 000000000 ____D C:\ProgramData\AVG
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> Ning�n archivo
WMI:subscription\__FilterToConsumerBinding->CommandLineEventConsumer.Name=\"BVTConsumer\"",Filter="__EventFilter.Name=\"BVTFilter\"::
WMI:subscription\__EventFilter->BVTFilter::[Query => SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99]
WMI:subscription\CommandLineEventConsumer->BVTConsumer::[CommandLineTemplate => cscript KernCap.vbs][WorkingDirectory => C:\\tools\\kernrate]
Shortcut: C:\Users\user.user-PC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\DVDFab 10 (x64)\DVDFab (x64) Online.lnk -> hxxp://www.dvdfab.cn/?s=dvdfab10&p=x64&v=10.0.8.9
AlternateDataStreams: C:\ProgramData\TEMP:0888F409 [286]
AlternateDataStreams: C:\ProgramData\TEMP:3440EB47 [902]
AlternateDataStreams: C:\ProgramData\TEMP:66633281 [135]
HOSTS:
REMOVEPROXY:
EMPTYTEMP:
CMD: netsh winsock reset
CMD: ipconfig /renew
CMD: ipconfig /flushdns
CMD: bitsadmin /reset /allusers
CMD: netsh advfirewall reset
CMD: netsh advfirewall set allprofiles state ON
CMD: netsh int ipv4 reset
CMD: netsh int ipv6 reset
END
*****************
Error: El punto de restauración solamente puede ser creado en modo normal.
Procesos cerrados correctamente.
"HKU\S-1-5-21-420265182-739296544-3490084199-1000\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\\Shell" => no encontrado
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\AvastBrowserCrashHandler.exe => no encontrado
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\AvastBrowserCrashHandler64.exe => no encontrado
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\AvastSvc.exe => no encontrado
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\AvastUI.exe => no encontrado
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\avcenter.exe => no encontrado
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\avconfig.exe => no encontrado
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\avgcsrvx.exe => no encontrado
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\avgidsagent.exe => no encontrado
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\avgnt.exe => no encontrado
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\avgrsx.exe => no encontrado
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\avguard.exe => no encontrado
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\avgui.exe => no encontrado
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\avgwdsvc.exe => no encontrado
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\avp.exe => no encontrado
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\avscan.exe => no encontrado
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\bdagent.exe => no encontrado
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\blindman.exe => no encontrado
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\ccuac.exe => no encontrado
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\ComboFix.exe => no encontrado
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\egui.exe => no encontrado
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\hijackthis.exe => no encontrado
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\instup.exe => no encontrado
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\keyscrambler.exe => no encontrado
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\mbam.exe => no encontrado
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\mbamgui.exe => no encontrado
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\mbampt.exe => no encontrado
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\mbamscheduler.exe => no encontrado
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\mbamservice.exe => no encontrado
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\mbemsg.exe => no encontrado
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\MpCmdRun.exe => no encontrado
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\MSASCui.exe => no encontrado
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\MsMpEng.exe => no encontrado
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\msseces.exe => no encontrado
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\rstrui.exe => no encontrado
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\SDFiles.exe => no encontrado
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\SDMain.exe => no encontrado
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\SDWinSec.exe => no encontrado
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\spybotsd.exe => no encontrado
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\wireshark.exe => no encontrado
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\zlclient.exe => no encontrado
HKLM\SOFTWARE\Policies\Mozilla => no encontrado
"C:\ProgramData\AVG" => no encontrado
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\00asw => no encontrado
CommandLineEventConsumer.Name=\"BVTConsumer\"",Filter="__EventFilter.Name=\"BVTFilter\" => Error al eliminar producto. ErrorCode: -2147023838
BVTFilter => Error al eliminar producto. ErrorCode: -2147023838
BVTConsumer => Error al eliminar producto. ErrorCode: -2147023838
"C:\Users\user.user-PC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\DVDFab 10 (x64)\DVDFab (x64) Online.lnk" => no encontrado
"C:\ProgramData\TEMP" => ":0888F409" ADS no encontrado.
"C:\ProgramData\TEMP" => ":3440EB47" ADS no encontrado.
"C:\ProgramData\TEMP" => ":66633281" ADS no encontrado.
C:\Windows\System32\Drivers\etc\hosts => movido correctamente
Hosts restaurado correctamente.
========= RemoveProxy: =========
"HKU\S-1-5-21-420265182-739296544-3490084199-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings" => eliminado correctamente
"HKU\S-1-5-21-420265182-739296544-3490084199-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings" => eliminado correctamente
========= Final de RemoveProxy: =========
========= netsh winsock reset =========
El cat logo Winsock se restableci¢ correctamente.
Debe reiniciar el equipo para completar el restablecimiento.
========= Final de CMD: =========
========= ipconfig /renew =========
Configuraci¢n IP de Windows
Error al renovar la interfaz Conexi¢n de rea local 3 : El servidor RPC no est disponible.
========= Final de CMD: =========
========= ipconfig /flushdns =========
Configuraci¢n IP de Windows
No se puede vaciar la cach‚ de resoluci¢n de DNS: Error de una funci¢n durante la ejecuci¢n.
========= Final de CMD: =========
========= bitsadmin /reset /allusers =========
BITSADMIN version 3.0 [ 7.5.7601 ]
BITS administration utility.
(C) Copyright 2000-2006 Microsoft Corp.
BITSAdmin is deprecated and is not guaranteed to be available in future versions of Windows.
Administrative tools for the BITS service are now provided by BITS PowerShell cmdlets.
Unable to connect to BITS - 0x80070422
No se puede iniciar el servicio, porque est deshabilitado o porque no tiene dispositivos habilitados asociados a ‚l.
========= Final de CMD: =========
========= netsh advfirewall reset =========
Error al intentar ponerse en contacto con el servicio Firewall de Windows. Aseg£rese de que el servicio se est ejecutando e intente la solicitud de nuevo.
========= Final de CMD: =========
========= netsh advfirewall set allprofiles state ON =========
Error al intentar ponerse en contacto con el servicio Firewall de Windows. Aseg£rese de que el servicio se est ejecutando e intente la solicitud de nuevo.
========= Final de CMD: =========
========= netsh int ipv4 reset =========
Global se restableci¢ correctamente.
Interfaz se restableci¢ correctamente.
Direcci¢n de unidifusi¢n se restableci¢ correctamente.
Ruta se restableci¢ correctamente.
Reinicie el equipo para completar esta acci¢n.
========= Final de CMD: =========
========= netsh int ipv6 reset =========
Interfaz se restableci¢ correctamente.
se restableci¢ correctamente.
Reinicie el equipo para completar esta acci¢n.
========= Final de CMD: =========
=========== EmptyTemp: ==========
BITS transfer queue => 8388608 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 26825378 B
Java, Flash, Steam htmlcache => 343 B
Windows/system/drivers => 382075143 B
Edge => 0 B
Chrome => 300592380 B
Firefox => 927109527 B
Opera => 0 B
Temp, IE cache, history, cookies, recent:
Users => 0 B
Default => 0 B
Public => 0 B
ProgramData => 0 B
systemprofile => 16802 B
systemprofile32 => 213466 B
LocalService => 213466 B
NetworkService => 213466 B
user.user-PC => 328565972 B
RecycleBin => 617115856 B
EmptyTemp: => 2.4 GB datos temporales eliminados.
================================
El sistema necesita reiniciarse.
==== Final de Fixlog 17:52:06 ====
# -------------------------------
# Malwarebytes AdwCleaner 8.0.4.0
# -------------------------------
# Build: 04-03-2020
# Database: 2020-04-08.2 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 04-20-2020
# Duration: 00:00:01
# OS: Windows 7 Professional
# Cleaned: 1
# Failed: 0
***** [ Services ] *****
No malicious services cleaned.
***** [ Folders ] *****
No malicious folders cleaned.
***** [ Files ] *****
No malicious files cleaned.
***** [ DLL ] *****
No malicious DLLs cleaned.
***** [ WMI ] *****
No malicious WMI cleaned.
***** [ Shortcuts ] *****
No malicious shortcuts cleaned.
***** [ Tasks ] *****
No malicious tasks cleaned.
***** [ Registry ] *****
Deleted HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\zonemap\domains\drp.su
***** [ Chromium (and derivatives) ] *****
No malicious Chromium entries cleaned.
***** [ Chromium URLs ] *****
No malicious Chromium URLs cleaned.
***** [ Firefox (and derivatives) ] *****
No malicious Firefox entries cleaned.
***** [ Firefox URLs ] *****
No malicious Firefox URLs cleaned.
***** [ Hosts File Entries ] *****
No malicious hosts file entries cleaned.
***** [ Preinstalled Software ] *****
No Preinstalled Software cleaned.
*************************
[+] Delete Tracing Keys
[+] Reset Winsock
*************************
AdwCleaner[S00].txt - [1909 octets] - [19/04/2020 21:04:03]
AdwCleaner[S01].txt - [1970 octets] - [19/04/2020 21:11:51]
AdwCleaner[S02].txt - [2031 octets] - [19/04/2020 21:14:32]
AdwCleaner[S03].txt - [1679 octets] - [20/04/2020 18:11:02]
########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C03].txt ##########https://downloads.malwarebytes.com/file/mbst?scr=Forums-Home-Support
Descarga ebn el escritorio esta herramienta…boton derecho -ejecutar como administrador
Pestaña Advanced - y elijes “clean”…sigues las indicaciones y cuando te pregunte.,dale a reinstalar Malwarebtrtes ( es posible que te pida reiniciar antes y luego siga con el proceso al reinciar)
Comentas
Gracias de nuevo, He ejecutado la herramienta en modo normal y hace la limpieza pero en mitad de la instalación se para y dá el mensaje de que se ha cancelado la instalación. Lo he intentado en modo seguro con funciones de red, pero inexplicablemente no tengo conexión a internet en ese modo y tampoco puedo hacer la instalación. Pego el log de la herramienta de malwarebytes por si te es de ayuda:
2020-04-20 19:11:43.364 --------LOGGING STARTED----------
2020-04-20 19:11:43.364 Tool Version: 1.6.0.774
2020-04-20 19:11:43.364 Dll Version: 1.0.0.158
2020-04-20 19:11:43.365 Log Path: C:\Users\USER~1.USE\AppData\Local\Temp\mwb6558.tmp\mbst-clean-results.txt
2020-04-20 19:11:43.370 User Account Type: Administrator
2020-04-20 19:11:43.370 Date/Time Log Created: 2020-04-20 19:11:43.370
2020-04-20 19:11:43.371 Operating System: Windows 7 Service Pack 1 x64
2020-04-20 19:11:43.371
2020-04-20 19:11:43.371 ======================================================
2020-04-20 19:11:43.372 Pre-Reboot Cleanup
2020-04-20 19:11:43.372 ======================================================
2020-04-20 19:11:43.389 OpenService mbamchameleon failed (1060)
2020-04-20 19:11:43.398 Launching process:C:\Program Files\Malwarebytes\Anti-Malware\unins000.exe /VERYSILENT /SUPPRESSMSGBOXES /NORESTART /log="C:\Users\USER~1.USE\AppData\Local\Temp\Mbam3x.log"
2020-04-20 19:11:43.404 Failed to launch C:\Program Files\Malwarebytes\Anti-Malware\unins000.exe /VERYSILENT /SUPPRESSMSGBOXES /NORESTART /log="C:\Users\USER~1.USE\AppData\Local\Temp\Mbam3x.log", reason:((error=2))
2020-04-20 19:11:43.405 File C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe was deleted successfully,
2020-04-20 19:11:43.406 File C:\Program Files\Malwarebytes\Anti-Malware\mbaminstallerservice.exe was deleted successfully,
2020-04-20 19:11:44.219 File C:\Program Files\Malwarebytes\Anti-Malware\Actions.dll was deleted successfully,
2020-04-20 19:11:44.219 File C:\Program Files\Malwarebytes\Anti-Malware\ActionsShim.dll was deleted successfully,
2020-04-20 19:11:44.219 File C:\Program Files\Malwarebytes\Anti-Malware\AEControllerImpl.dll was deleted successfully,
2020-04-20 19:11:44.220 File C:\Program Files\Malwarebytes\Anti-Malware\AeShim.dll was deleted successfully,
2020-04-20 19:11:44.220 File C:\Program Files\Malwarebytes\Anti-Malware\api-ms-win-core-console-l1-1-0.dll was deleted successfully,
2020-04-20 19:11:44.221 File C:\Program Files\Malwarebytes\Anti-Malware\api-ms-win-core-console-l1-2-0.dll was deleted successfully,
2020-04-20 19:11:44.221 File C:\Program Files\Malwarebytes\Anti-Malware\api-ms-win-core-datetime-l1-1-0.dll was deleted successfully,
2020-04-20 19:11:44.221 File C:\Program Files\Malwarebytes\Anti-Malware\api-ms-win-core-debug-l1-1-0.dll was deleted successfully,
2020-04-20 19:11:44.222 File C:\Program Files\Malwarebytes\Anti-Malware\api-ms-win-core-errorhandling-l1-1-0.dll was deleted successfully,
2020-04-20 19:11:44.222 File C:\Program Files\Malwarebytes\Anti-Malware\api-ms-win-core-file-l1-1-0.dll was deleted successfully,
2020-04-20 19:11:44.222 File C:\Program Files\Malwarebytes\Anti-Malware\api-ms-win-core-file-l1-2-0.dll was deleted successfully,
2020-04-20 19:11:44.223 File C:\Program Files\Malwarebytes\Anti-Malware\api-ms-win-core-file-l2-1-0.dll was deleted successfully,
2020-04-20 19:11:44.223 File C:\Program Files\Malwarebytes\Anti-Malware\api-ms-win-core-handle-l1-1-0.dll was deleted successfully,
2020-04-20 19:11:44.223 File C:\Program Files\Malwarebytes\Anti-Malware\api-ms-win-core-heap-l1-1-0.dll was deleted successfully,
2020-04-20 19:11:44.223 File C:\Program Files\Malwarebytes\Anti-Malware\api-ms-win-core-interlocked-l1-1-0.dll was deleted successfully,
2020-04-20 19:11:44.224 File C:\Program Files\Malwarebytes\Anti-Malware\api-ms-win-core-libraryloader-l1-1-0.dll was deleted successfully,
2020-04-20 19:11:44.224 File C:\Program Files\Malwarebytes\Anti-Malware\api-ms-win-core-localization-l1-2-0.dll was deleted successfully,
2020-04-20 19:11:44.224 File C:\Program Files\Malwarebytes\Anti-Malware\api-ms-win-core-memory-l1-1-0.dll was deleted successfully,
2020-04-20 19:11:44.225 File C:\Program Files\Malwarebytes\Anti-Malware\api-ms-win-core-namedpipe-l1-1-0.dll was deleted successfully,
2020-04-20 19:11:44.225 File C:\Program Files\Malwarebytes\Anti-Malware\api-ms-win-core-processenvironment-l1-1-0.dll was deleted successfully,
2020-04-20 19:11:44.225 File C:\Program Files\Malwarebytes\Anti-Malware\api-ms-win-core-processthreads-l1-1-0.dll was deleted successfully,
2020-04-20 19:11:44.226 File C:\Program Files\Malwarebytes\Anti-Malware\api-ms-win-core-processthreads-l1-1-1.dll was deleted successfully,
2020-04-20 19:11:44.226 File C:\Program Files\Malwarebytes\Anti-Malware\api-ms-win-core-profile-l1-1-0.dll was deleted successfully,
2020-04-20 19:11:44.226 File C:\Program Files\Malwarebytes\Anti-Malware\api-ms-win-core-rtlsupport-l1-1-0.dll was deleted successfully,
2020-04-20 19:11:44.227 File C:\Program Files\Malwarebytes\Anti-Malware\api-ms-win-core-string-l1-1-0.dll was deleted successfully,
2020-04-20 19:11:44.227 File C:\Program Files\Malwarebytes\Anti-Malware\api-ms-win-core-synch-l1-1-0.dll was deleted successfully,
2020-04-20 19:11:44.227 File C:\Program Files\Malwarebytes\Anti-Malware\api-ms-win-core-synch-l1-2-0.dll was deleted successfully,
2020-04-20 19:11:44.228 File C:\Program Files\Malwarebytes\Anti-Malware\api-ms-win-core-sysinfo-l1-1-0.dll was deleted successfully,
2020-04-20 19:11:44.228 File C:\Program Files\Malwarebytes\Anti-Malware\api-ms-win-core-timezone-l1-1-0.dll was deleted successfully,
2020-04-20 19:11:44.228 File C:\Program Files\Malwarebytes\Anti-Malware\api-ms-win-core-util-l1-1-0.dll was deleted successfully,
2020-04-20 19:11:44.229 File C:\Program Files\Malwarebytes\Anti-Malware\api-ms-win-crt-conio-l1-1-0.dll was deleted successfully,
2020-04-20 19:11:44.229 File C:\Program Files\Malwarebytes\Anti-Malware\api-ms-win-crt-convert-l1-1-0.dll was deleted successfully,
2020-04-20 19:11:44.229 File C:\Program Files\Malwarebytes\Anti-Malware\api-ms-win-crt-environment-l1-1-0.dll was deleted successfully,
2020-04-20 19:11:44.229 File C:\Program Files\Malwarebytes\Anti-Malware\api-ms-win-crt-filesystem-l1-1-0.dll was deleted successfully,
2020-04-20 19:11:44.230 File C:\Program Files\Malwarebytes\Anti-Malware\api-ms-win-crt-heap-l1-1-0.dll was deleted successfully,
2020-04-20 19:11:44.230 File C:\Program Files\Malwarebytes\Anti-Malware\api-ms-win-crt-locale-l1-1-0.dll was deleted successfully,
2020-04-20 19:11:44.230 File C:\Program Files\Malwarebytes\Anti-Malware\api-ms-win-crt-math-l1-1-0.dll was deleted successfully,
2020-04-20 19:11:44.231 File C:\Program Files\Malwarebytes\Anti-Malware\api-ms-win-crt-multibyte-l1-1-0.dll was deleted successfully,
2020-04-20 19:11:44.231 File C:\Program Files\Malwarebytes\Anti-Malware\api-ms-win-crt-private-l1-1-0.dll was deleted successfully,
2020-04-20 19:11:44.231 File C:\Program Files\Malwarebytes\Anti-Malware\api-ms-win-crt-process-l1-1-0.dll was deleted successfully,
2020-04-20 19:11:44.231 File C:\Program Files\Malwarebytes\Anti-Malware\api-ms-win-crt-runtime-l1-1-0.dll was deleted successfully,
2020-04-20 19:11:44.232 File C:\Program Files\Malwarebytes\Anti-Malware\api-ms-win-crt-stdio-l1-1-0.dll was deleted successfully,
2020-04-20 19:11:44.232 File C:\Program Files\Malwarebytes\Anti-Malware\api-ms-win-crt-string-l1-1-0.dll was deleted successfully,
2020-04-20 19:11:44.232 File C:\Program Files\Malwarebytes\Anti-Malware\api-ms-win-crt-time-l1-1-0.dll was deleted successfully,
2020-04-20 19:11:44.232 File C:\Program Files\Malwarebytes\Anti-Malware\api-ms-win-crt-utility-l1-1-0.dll was deleted successfully,
2020-04-20 19:11:44.233 File C:\Program Files\Malwarebytes\Anti-Malware\ArwControllerImpl.dll was deleted successfully,
2020-04-20 19:11:44.233 File C:\Program Files\Malwarebytes\Anti-Malware\arwlib.dll was deleted successfully,
2020-04-20 19:11:44.233 File C:\Program Files\Malwarebytes\Anti-Malware\ArwSdkShim.dll was deleted successfully,
2020-04-20 19:11:44.234 File C:\Program Files\Malwarebytes\Anti-Malware\assistant.exe was deleted successfully,
2020-04-20 19:11:44.234 File C:\Program Files\Malwarebytes\Anti-Malware\BrowserSDKDLL.dll was deleted successfully,
2020-04-20 19:11:44.234 File C:\Program Files\Malwarebytes\Anti-Malware\BrowserSDKDLLShim.dll was deleted successfully,
2020-04-20 19:11:44.234 File C:\Program Files\Malwarebytes\Anti-Malware\CleanControllerImpl.dll was deleted successfully,
2020-04-20 19:11:44.235 File C:\Program Files\Malwarebytes\Anti-Malware\CloudControllerImpl.dll was deleted successfully,
2020-04-20 19:11:44.235 File C:\Program Files\Malwarebytes\Anti-Malware\d3dcompiler_47.dll was deleted successfully,
2020-04-20 19:11:44.235 File C:\Program Files\Malwarebytes\Anti-Malware\iconengines\qsvgicon.dll was deleted successfully,
2020-04-20 19:11:44.236 Folder C:\Program Files\Malwarebytes\Anti-Malware\iconengines\ was deleted successfully,
2020-04-20 19:11:44.236 File C:\Program Files\Malwarebytes\Anti-Malware\ig.exe was deleted successfully,
2020-04-20 19:11:44.236 File C:\Program Files\Malwarebytes\Anti-Malware\imageformats\qico.dll was deleted successfully,
2020-04-20 19:11:44.237 File C:\Program Files\Malwarebytes\Anti-Malware\imageformats\qjpeg.dll was deleted successfully,
2020-04-20 19:11:44.237 File C:\Program Files\Malwarebytes\Anti-Malware\imageformats\qsvg.dll was deleted successfully,
2020-04-20 19:11:44.237 Folder C:\Program Files\Malwarebytes\Anti-Malware\imageformats\ was deleted successfully,
2020-04-20 19:11:44.237 File C:\Program Files\Malwarebytes\Anti-Malware\languages\lang_bg.qm was deleted successfully,
2020-04-20 19:11:44.238 File C:\Program Files\Malwarebytes\Anti-Malware\languages\lang_cs.qm was deleted successfully,
2020-04-20 19:11:44.238 File C:\Program Files\Malwarebytes\Anti-Malware\languages\lang_da.qm was deleted successfully,
2020-04-20 19:11:44.238 File C:\Program Files\Malwarebytes\Anti-Malware\languages\lang_de.qm was deleted successfully,
2020-04-20 19:11:44.239 File C:\Program Files\Malwarebytes\Anti-Malware\languages\lang_en_GB.qm was deleted successfully,
2020-04-20 19:11:44.239 File C:\Program Files\Malwarebytes\Anti-Malware\languages\lang_en_US.qm was deleted successfully,
2020-04-20 19:11:44.239 File C:\Program Files\Malwarebytes\Anti-Malware\languages\lang_es.qm was deleted successfully,
2020-04-20 19:11:44.250 File C:\Program Files\Malwarebytes\Anti-Malware\languages\lang_fi.qm was deleted successfully,
2020-04-20 19:11:44.250 File C:\Program Files\Malwarebytes\Anti-Malware\languages\lang_fr.qm was deleted successfully,
2020-04-20 19:11:44.251 File C:\Program Files\Malwarebytes\Anti-Malware\languages\lang_hr.qm was deleted successfully,
2020-04-20 19:11:44.252 File C:\Program Files\Malwarebytes\Anti-Malware\languages\lang_hu.qm was deleted successfully,
2020-04-20 19:11:44.252 File C:\Program Files\Malwarebytes\Anti-Malware\languages\lang_it.qm was deleted successfully,
2020-04-20 19:11:44.253 File C:\Program Files\Malwarebytes\Anti-Malware\languages\lang_ja.qm was deleted successfully,
2020-04-20 19:11:44.253 File C:\Program Files\Malwarebytes\Anti-Malware\languages\lang_ko.qm was deleted successfully,
2020-04-20 19:11:44.253 File C:\Program Files\Malwarebytes\Anti-Malware\languages\lang_nl.qm was deleted successfully,
2020-04-20 19:11:44.254 File C:\Program Files\Malwarebytes\Anti-Malware\languages\lang_no.qm was deleted successfully,
2020-04-20 19:11:44.254 File C:\Program Files\Malwarebytes\Anti-Malware\languages\lang_pl.qm was deleted successfully,
2020-04-20 19:11:44.254 File C:\Program Files\Malwarebytes\Anti-Malware\languages\lang_pt_BR.qm was deleted successfully,
2020-04-20 19:11:44.254 File C:\Program Files\Malwarebytes\Anti-Malware\languages\lang_pt_PT.qm was deleted successfully,
2020-04-20 19:11:44.255 File C:\Program Files\Malwarebytes\Anti-Malware\languages\lang_ro.qm was deleted successfully,
2020-04-20 19:11:44.255 File C:\Program Files\Malwarebytes\Anti-Malware\languages\lang_ru.qm was deleted successfully,
2020-04-20 19:11:44.255 File C:\Program Files\Malwarebytes\Anti-Malware\languages\lang_sk.qm was deleted successfully,
2020-04-20 19:11:44.256 File C:\Program Files\Malwarebytes\Anti-Malware\languages\lang_sl.qm was deleted successfully,
2020-04-20 19:11:44.256 File C:\Program Files\Malwarebytes\Anti-Malware\languages\lang_sv.qm was deleted successfully,
2020-04-20 19:11:44.256 File C:\Program Files\Malwarebytes\Anti-Malware\languages\lang_zh_TW.qm was deleted successfully,
2020-04-20 19:11:44.261 Folder C:\Program Files\Malwarebytes\Anti-Malware\languages\ was deleted successfully,
2020-04-20 19:11:44.261 File C:\Program Files\Malwarebytes\Anti-Malware\LicenseControllerImpl.dll was deleted successfully,
2020-04-20 19:11:44.262 File C:\Program Files\Malwarebytes\Anti-Malware\malwarebytes_assistant.exe was deleted successfully,
2020-04-20 19:11:44.262 File C:\Program Files\Malwarebytes\Anti-Malware\mbae-api-na.dll was deleted successfully,
2020-04-20 19:11:44.262 File C:\Program Files\Malwarebytes\Anti-Malware\mbae.dll was deleted successfully,
2020-04-20 19:11:44.262 File C:\Program Files\Malwarebytes\Anti-Malware\mbae64.dll was deleted successfully,
2020-04-20 19:11:44.263 File C:\Program Files\Malwarebytes\Anti-Malware\mbae64.sys was deleted successfully,
2020-04-20 19:11:44.264 File C:\Program Files\Malwarebytes\Anti-Malware\mbam.exe was deleted successfully,
2020-04-20 19:11:44.264 File C:\Program Files\Malwarebytes\Anti-Malware\MBAMCore.dll was deleted successfully,
2020-04-20 19:11:44.264 File C:\Program Files\Malwarebytes\Anti-Malware\mbamelam.cat was deleted successfully,
2020-04-20 19:11:44.265 File C:\Program Files\Malwarebytes\Anti-Malware\mbamelam.inf was deleted successfully,
2020-04-20 19:11:44.265 File C:\Program Files\Malwarebytes\Anti-Malware\mbamelam.sys was deleted successfully,
2020-04-20 19:11:44.265 File C:\Program Files\Malwarebytes\Anti-Malware\MbamPt.exe was deleted successfully,
2020-04-20 19:11:44.265 File C:\Program Files\Malwarebytes\Anti-Malware\MBAMShim.dll was deleted successfully,
2020-04-20 19:11:44.266 File C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe was deleted successfully,
2020-04-20 19:11:44.266 File C:\Program Files\Malwarebytes\Anti-Malware\MBAMWsc.exe was deleted successfully,
2020-04-20 19:11:44.267 File C:\Program Files\Malwarebytes\Anti-Malware\mbcut.dll was deleted successfully,
2020-04-20 19:11:44.267 File C:\Program Files\Malwarebytes\Anti-Malware\mbemsg.exe was deleted successfully,
2020-04-20 19:11:44.267 File C:\Program Files\Malwarebytes\Anti-Malware\mbshlext_proto was deleted successfully,
2020-04-20 19:11:44.268 File C:\Program Files\Malwarebytes\Anti-Malware\msvcp140.dll was deleted successfully,
2020-04-20 19:11:44.268 File C:\Program Files\Malwarebytes\Anti-Malware\MWACControllerImpl.dll was deleted successfully,
2020-04-20 19:11:44.268 File C:\Program Files\Malwarebytes\Anti-Malware\MwacLib.dll was deleted successfully,
2020-04-20 19:11:44.268 File C:\Program Files\Malwarebytes\Anti-Malware\MwacSdkShim.dll was deleted successfully,
2020-04-20 19:11:44.269 Skipped deletion: C:\Program Files\Malwarebytes\Anti-Malware\OnboardingPlugin.dll (File not in clean.json)
2020-04-20 19:11:44.269 File C:\Program Files\Malwarebytes\Anti-Malware\platforms\qwindows.dll was deleted successfully,
2020-04-20 19:11:44.269 Folder C:\Program Files\Malwarebytes\Anti-Malware\platforms\ was deleted successfully,
2020-04-20 19:11:44.269 File C:\Program Files\Malwarebytes\Anti-Malware\PoliciesControllerImpl.dll was deleted successfully,
2020-04-20 19:11:44.283 File C:\Program Files\Malwarebytes\Anti-Malware\Qt\labs\folderlistmodel\plugins.qmltypes was deleted successfully,
2020-04-20 19:11:44.284 File C:\Program Files\Malwarebytes\Anti-Malware\Qt\labs\folderlistmodel\qmldir was deleted successfully,
2020-04-20 19:11:44.284 File C:\Program Files\Malwarebytes\Anti-Malware\Qt\labs\folderlistmodel\qmlfolderlistmodelplugin.dll was deleted successfully,
2020-04-20 19:11:44.287 Folder C:\Program Files\Malwarebytes\Anti-Malware\Qt\labs\folderlistmodel\ was deleted successfully,
2020-04-20 19:11:44.287 File C:\Program Files\Malwarebytes\Anti-Malware\Qt\labs\settings\plugins.qmltypes was deleted successfully,
2020-04-20 19:11:44.287 File C:\Program Files\Malwarebytes\Anti-Malware\Qt\labs\settings\qmldir was deleted successfully,
2020-04-20 19:11:44.288 File C:\Program Files\Malwarebytes\Anti-Malware\Qt\labs\settings\qmlsettingsplugin.dll was deleted successfully,
2020-04-20 19:11:44.288 Folder C:\Program Files\Malwarebytes\Anti-Malware\Qt\labs\settings\ was deleted successfully,
2020-04-20 19:11:44.288 Folder C:\Program Files\Malwarebytes\Anti-Malware\Qt\labs\ was deleted successfully,
2020-04-20 19:11:44.288 Folder C:\Program Files\Malwarebytes\Anti-Malware\Qt\ was deleted successfully,
2020-04-20 19:11:44.289 File C:\Program Files\Malwarebytes\Anti-Malware\Qt5Charts.dll was deleted successfully,
2020-04-20 19:11:44.289 File C:\Program Files\Malwarebytes\Anti-Malware\Qt5Core.dll was deleted successfully,
2020-04-20 19:11:44.290 File C:\Program Files\Malwarebytes\Anti-Malware\Qt5Gui.dll was deleted successfully,
2020-04-20 19:11:44.290 File C:\Program Files\Malwarebytes\Anti-Malware\Qt5Network.dll was deleted successfully,
2020-04-20 19:11:44.291 File C:\Program Files\Malwarebytes\Anti-Malware\Qt5Qml.dll was deleted successfully,
2020-04-20 19:11:44.291 File C:\Program Files\Malwarebytes\Anti-Malware\Qt5QmlModels.dll was deleted successfully,
2020-04-20 19:11:44.291 File C:\Program Files\Malwarebytes\Anti-Malware\Qt5QmlWorkerScript.dll was deleted successfully,
2020-04-20 19:11:44.292 File C:\Program Files\Malwarebytes\Anti-Malware\Qt5Quick.dll was deleted successfully,
2020-04-20 19:11:44.292 File C:\Program Files\Malwarebytes\Anti-Malware\Qt5QuickControls2.dll was deleted successfully,
2020-04-20 19:11:44.292 File C:\Program Files\Malwarebytes\Anti-Malware\Qt5QuickTemplates2.dll was deleted successfully,
2020-04-20 19:11:44.292 File C:\Program Files\Malwarebytes\Anti-Malware\Qt5Svg.dll was deleted successfully,
2020-04-20 19:11:44.293 File C:\Program Files\Malwarebytes\Anti-Malware\Qt5Widgets.dll was deleted successfully,
2020-04-20 19:11:44.293 File C:\Program Files\Malwarebytes\Anti-Malware\Qt5WinExtras.dll was deleted successfully,
2020-04-20 19:11:44.293 File C:\Program Files\Malwarebytes\Anti-Malware\Qt5XmlPatterns.dll was deleted successfully,
2020-04-20 19:11:44.294 File C:\Program Files\Malwarebytes\Anti-Malware\QtANGLE.dll was deleted successfully,
2020-04-20 19:11:44.294 File C:\Program Files\Malwarebytes\Anti-Malware\QtCharts\plugins.qmltypes was deleted successfully,
2020-04-20 19:11:44.294 File C:\Program Files\Malwarebytes\Anti-Malware\QtCharts\qmldir was deleted successfully,
2020-04-20 19:11:44.295 File C:\Program Files\Malwarebytes\Anti-Malware\QtCharts\qtchartsqml2.dll was deleted successfully,
2020-04-20 19:11:44.295 Folder C:\Program Files\Malwarebytes\Anti-Malware\QtCharts\ was deleted successfully,
2020-04-20 19:11:44.295 File C:\Program Files\Malwarebytes\Anti-Malware\QtQml\Models.2\modelsplugin.dll was deleted successfully,
2020-04-20 19:11:44.296 File C:\Program Files\Malwarebytes\Anti-Malware\QtQml\Models.2\plugins.qmltypes was deleted successfully,
2020-04-20 19:11:44.296 File C:\Program Files\Malwarebytes\Anti-Malware\QtQml\Models.2\qmldir was deleted successfully,
2020-04-20 19:11:44.296 Folder C:\Program Files\Malwarebytes\Anti-Malware\QtQml\Models.2\ was deleted successfully,
2020-04-20 19:11:44.296 File C:\Program Files\Malwarebytes\Anti-Malware\QtQml\plugins.qmltypes was deleted successfully,
2020-04-20 19:11:44.297 File C:\Program Files\Malwarebytes\Anti-Malware\QtQml\qmldir was deleted successfully,
2020-04-20 19:11:44.297 File C:\Program Files\Malwarebytes\Anti-Malware\QtQml\qmlplugin.dll was deleted successfully,
2020-04-20 19:11:44.297 Folder C:\Program Files\Malwarebytes\Anti-Malware\QtQml\ was deleted successfully,
2020-04-20 19:11:44.329 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls\ApplicationWindow.qml was deleted successfully,
2020-04-20 19:11:44.330 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls\BusyIndicator.qml was deleted successfully,
2020-04-20 19:11:44.330 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls\Button.qml was deleted successfully,
2020-04-20 19:11:44.330 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls\Calendar.qml was deleted successfully,
2020-04-20 19:11:44.331 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls\CheckBox.qml was deleted successfully,
2020-04-20 19:11:44.331 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls\ComboBox.qml was deleted successfully,
2020-04-20 19:11:44.331 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls\GroupBox.qml was deleted successfully,
2020-04-20 19:11:44.332 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls\Label.qml was deleted successfully,
2020-04-20 19:11:44.332 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls\Menu.qml was deleted successfully,
2020-04-20 19:11:44.332 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls\MenuBar.qml was deleted successfully,
2020-04-20 19:11:44.332 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls\plugins.qmltypes was deleted successfully,
2020-04-20 19:11:44.361 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls\Private\AbstractCheckable.qml was deleted successfully,
2020-04-20 19:11:44.362 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls\Private\BasicButton.qml was deleted successfully,
2020-04-20 19:11:44.363 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls\Private\BasicTableView.qml was deleted successfully,
2020-04-20 19:11:44.364 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls\Private\CalendarHeaderModel.qml was deleted successfully,
2020-04-20 19:11:44.365 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls\Private\CalendarUtils.js was deleted successfully,
2020-04-20 19:11:44.366 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls\Private\ColumnMenuContent.qml was deleted successfully,
2020-04-20 19:11:44.366 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls\Private\ContentItem.qml was deleted successfully,
2020-04-20 19:11:44.367 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls\Private\Control.qml was deleted successfully,
2020-04-20 19:11:44.368 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls\Private\EditMenu.qml was deleted successfully,
2020-04-20 19:11:44.368 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls\Private\EditMenu_base.qml was deleted successfully,
2020-04-20 19:11:44.369 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls\Private\FastGlow.qml was deleted successfully,
2020-04-20 19:11:44.370 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls\Private\FocusFrame.qml was deleted successfully,
2020-04-20 19:11:44.371 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls\Private\HoverButton.qml was deleted successfully,
2020-04-20 19:11:44.372 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls\Private\MenuContentItem.qml was deleted successfully,
2020-04-20 19:11:44.373 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls\Private\MenuContentScroller.qml was deleted successfully,
2020-04-20 19:11:44.373 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls\Private\MenuItemSubControls.qml was deleted successfully,
2020-04-20 19:11:44.374 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls\Private\ModalPopupBehavior.qml was deleted successfully,
2020-04-20 19:11:44.375 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls\Private\qmldir was deleted successfully,
2020-04-20 19:11:44.376 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls\Private\ScrollBar.qml was deleted successfully,
2020-04-20 19:11:44.376 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls\Private\ScrollViewHelper.qml was deleted successfully,
2020-04-20 19:11:44.377 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls\Private\SourceProxy.qml was deleted successfully,
2020-04-20 19:11:44.378 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls\Private\StackView.js was deleted successfully,
2020-04-20 19:11:44.378 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls\Private\StackViewSlideDelegate.qml was deleted successfully,
2020-04-20 19:11:44.379 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls\Private\style.js was deleted successfully,
2020-04-20 19:11:44.380 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls\Private\Style.qml was deleted successfully,
2020-04-20 19:11:44.381 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls\Private\SystemPaletteSingleton.qml was deleted successfully,
2020-04-20 19:11:44.393 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls\Private\TabBar.qml was deleted successfully,
2020-04-20 19:11:44.394 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls\Private\TableViewItemDelegateLoader.qml was deleted successfully,
2020-04-20 19:11:44.396 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls\Private\TableViewSelection.qml was deleted successfully,
2020-04-20 19:11:44.396 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls\Private\TextHandle.qml was deleted successfully,
2020-04-20 19:11:44.397 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls\Private\TextInputWithHandles.qml was deleted successfully,
2020-04-20 19:11:44.398 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls\Private\TextSingleton.qml was deleted successfully,
2020-04-20 19:11:44.398 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls\Private\ToolMenuButton.qml was deleted successfully,
2020-04-20 19:11:44.399 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls\Private\TreeViewItemDelegateLoader.qml was deleted successfully,
2020-04-20 19:11:44.404 Folder C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls\Private\ was deleted successfully,
2020-04-20 19:11:44.405 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls\ProgressBar.qml was deleted successfully,
2020-04-20 19:11:44.405 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls\qmldir was deleted successfully,
2020-04-20 19:11:44.406 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls\qtquickcontrolsplugin.dll was deleted successfully,
2020-04-20 19:11:44.407 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls\RadioButton.qml was deleted successfully,
2020-04-20 19:11:44.407 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls\ScrollView.qml was deleted successfully,
2020-04-20 19:11:44.408 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls\Slider.qml was deleted successfully,
2020-04-20 19:11:44.408 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls\SpinBox.qml was deleted successfully,
2020-04-20 19:11:44.409 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls\SplitView.qml was deleted successfully,
2020-04-20 19:11:44.410 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls\StackView.qml was deleted successfully,
2020-04-20 19:11:44.410 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls\StackViewDelegate.qml was deleted successfully,
2020-04-20 19:11:44.411 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls\StackViewTransition.qml was deleted successfully,
2020-04-20 19:11:44.411 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls\StatusBar.qml was deleted successfully,
2020-04-20 19:11:44.441 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls\Styles\Base\ApplicationWindowStyle.qml was deleted successfully,
2020-04-20 19:11:44.442 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls\Styles\Base\BasicTableViewStyle.qml was deleted successfully,
2020-04-20 19:11:44.442 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls\Styles\Base\BusyIndicatorStyle.qml was deleted successfully,
2020-04-20 19:11:44.443 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls\Styles\Base\ButtonStyle.qml was deleted successfully,
2020-04-20 19:11:44.444 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls\Styles\Base\CalendarStyle.qml was deleted successfully,
2020-04-20 19:11:44.445 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls\Styles\Base\CheckBoxStyle.qml was deleted successfully,
2020-04-20 19:11:44.446 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls\Styles\Base\CircularButtonStyle.qml was deleted successfully,
2020-04-20 19:11:44.446 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls\Styles\Base\CircularGaugeStyle.qml was deleted successfully,
2020-04-20 19:11:44.447 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls\Styles\Base\CircularTickmarkLabelStyle.qml was deleted successfully,
2020-04-20 19:11:44.448 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls\Styles\Base\ComboBoxStyle.qml was deleted successfully,
2020-04-20 19:11:44.448 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls\Styles\Base\CommonStyleHelper.qml was deleted successfully,
2020-04-20 19:11:44.449 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls\Styles\Base\DelayButtonStyle.qml was deleted successfully,
2020-04-20 19:11:44.449 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls\Styles\Base\DialStyle.qml was deleted successfully,
2020-04-20 19:11:44.450 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls\Styles\Base\FocusFrameStyle.qml was deleted successfully,
2020-04-20 19:11:44.451 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls\Styles\Base\GaugeStyle.qml was deleted successfully,
2020-04-20 19:11:44.451 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls\Styles\Base\GroupBoxStyle.qml was deleted successfully,
2020-04-20 19:11:44.452 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls\Styles\Base\HandleStyle.qml was deleted successfully,
2020-04-20 19:11:44.453 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls\Styles\Base\HandleStyleHelper.qml was deleted successfully,
2020-04-20 19:11:44.474 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls\Styles\Base\images\arrow-down.png was deleted successfully,
2020-04-20 19:11:44.474 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls\Styles\Base\images\[email protected] was deleted successfully,
2020-04-20 19:11:44.475 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls\Styles\Base\images\arrow-left.png was deleted successfully,
2020-04-20 19:11:44.475 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls\Styles\Base\images\[email protected] was deleted successfully,
2020-04-20 19:11:44.476 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls\Styles\Base\images\arrow-right.png was deleted successfully,
2020-04-20 19:11:44.477 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls\Styles\Base\images\[email protected] was deleted successfully,
2020-04-20 19:11:44.477 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls\Styles\Base\images\arrow-up.png was deleted successfully,
2020-04-20 19:11:44.478 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls\Styles\Base\images\[email protected] was deleted successfully,
2020-04-20 19:11:44.479 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls\Styles\Base\images\button.png was deleted successfully,
2020-04-20 19:11:44.480 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls\Styles\Base\images\button_down.png was deleted successfully,
2020-04-20 19:11:44.481 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls\Styles\Base\images\check.png was deleted successfully,
2020-04-20 19:11:44.481 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls\Styles\Base\images\[email protected] was deleted successfully,
2020-04-20 19:11:44.482 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls\Styles\Base\images\editbox.png was deleted successfully,
2020-04-20 19:11:44.483 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls\Styles\Base\images\focusframe.png was deleted successfully,
2020-04-20 19:11:44.483 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls\Styles\Base\images\groupbox.png was deleted successfully,
2020-04-20 19:11:44.484 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls\Styles\Base\images\header.png was deleted successfully,
2020-04-20 19:11:44.492 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls\Styles\Base\images\knob.png was deleted successfully,
2020-04-20 19:11:44.492 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls\Styles\Base\images\leftanglearrow.png was deleted successfully,
2020-04-20 19:11:44.493 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls\Styles\Base\images\needle.png was deleted successfully,
2020-04-20 19:11:44.494 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls\Styles\Base\images\progress-indeterminate.png was deleted successfully,
2020-04-20 19:11:44.494 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls\Styles\Base\images\rightanglearrow.png was deleted successfully,
2020-04-20 19:11:44.495 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls\Styles\Base\images\scrollbar-handle-horizontal.png was deleted successfully,
2020-04-20 19:11:44.496 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls\Styles\Base\images\scrollbar-handle-transient.png was deleted successfully,
2020-04-20 19:11:44.497 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls\Styles\Base\images\scrollbar-handle-vertical.png was deleted successfully,
2020-04-20 19:11:44.497 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls\Styles\Base\images\slider-groove.png was deleted successfully,
2020-04-20 19:11:44.498 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls\Styles\Base\images\slider-handle.png was deleted successfully,
2020-04-20 19:11:44.499 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls\Styles\Base\images\spinner_large.png was deleted successfully,
2020-04-20 19:11:44.499 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls\Styles\Base\images\spinner_medium.png was deleted successfully,
2020-04-20 19:11:44.500 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls\Styles\Base\images\spinner_small.png was deleted successfully,
2020-04-20 19:11:44.501 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls\Styles\Base\images\tab.png was deleted successfully,
2020-04-20 19:11:44.501 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls\Styles\Base\images\tab_selected.png was deleted successfully,
2020-04-20 19:11:44.506 Folder C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls\Styles\Base\images\ was deleted successfully,
2020-04-20 19:11:44.507 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls\Styles\Base\MenuBarStyle.qml was deleted successfully,
2020-04-20 19:11:44.507 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls\Styles\Base\MenuStyle.qml was deleted successfully,
2020-04-20 19:11:44.508 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls\Styles\Base\PieMenuStyle.qml was deleted successfully,
2020-04-20 19:11:44.509 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls\Styles\Base\ProgressBarStyle.qml was deleted successfully,
2020-04-20 19:11:44.509 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls\Styles\Base\RadioButtonStyle.qml was deleted successfully,
2020-04-20 19:11:44.510 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls\Styles\Base\ScrollViewStyle.qml was deleted successfully,
2020-04-20 19:11:44.511 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls\Styles\Base\SliderStyle.qml was deleted successfully,
2020-04-20 19:11:44.511 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls\Styles\Base\SpinBoxStyle.qml was deleted successfully,
2020-04-20 19:11:44.512 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls\Styles\Base\StatusBarStyle.qml was deleted successfully,
2020-04-20 19:11:44.513 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls\Styles\Base\StatusIndicatorStyle.qml was deleted successfully,
2020-04-20 19:11:44.513 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls\Styles\Base\SwitchStyle.qml was deleted successfully,
2020-04-20 19:11:44.514 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls\Styles\Base\TableViewStyle.qml was deleted successfully,
2020-04-20 19:11:44.514 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls\Styles\Base\TabViewStyle.qml was deleted successfully,
2020-04-20 19:11:44.515 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls\Styles\Base\TextAreaStyle.qml was deleted successfully,
2020-04-20 19:11:44.516 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls\Styles\Base\TextFieldStyle.qml was deleted successfully,
2020-04-20 19:11:44.516 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls\Styles\Base\ToggleButtonStyle.qml was deleted successfully,
2020-04-20 19:11:44.517 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls\Styles\Base\ToolBarStyle.qml was deleted successfully,
2020-04-20 19:11:44.517 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls\Styles\Base\ToolButtonStyle.qml was deleted successfully,
2020-04-20 19:11:44.518 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls\Styles\Base\TreeViewStyle.qml was deleted successfully,
2020-04-20 19:11:44.518 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls\Styles\Base\TumblerStyle.qml was deleted successfully,
2020-04-20 19:11:44.524 Folder C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls\Styles\Base\ was deleted successfully,
2020-04-20 19:11:44.546 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls\Styles\Desktop\ApplicationWindowStyle.qml was deleted successfully,
2020-04-20 19:11:44.547 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls\Styles\Desktop\BusyIndicatorStyle.qml was deleted successfully,
2020-04-20 19:11:44.548 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls\Styles\Desktop\ButtonStyle.qml was deleted successfully,
2020-04-20 19:11:44.549 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls\Styles\Desktop\CalendarStyle.qml was deleted successfully,
2020-04-20 19:11:44.550 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls\Styles\Desktop\CheckBoxStyle.qml was deleted successfully,
2020-04-20 19:11:44.551 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls\Styles\Desktop\ComboBoxStyle.qml was deleted successfully,
2020-04-20 19:11:44.552 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls\Styles\Desktop\FocusFrameStyle.qml was deleted successfully,
2020-04-20 19:11:44.553 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls\Styles\Desktop\GroupBoxStyle.qml was deleted successfully,
2020-04-20 19:11:44.554 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls\Styles\Desktop\MenuBarStyle.qml was deleted successfully,
2020-04-20 19:11:44.555 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls\Styles\Desktop\MenuStyle.qml was deleted successfully,
2020-04-20 19:11:44.555 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls\Styles\Desktop\ProgressBarStyle.qml was deleted successfully,
2020-04-20 19:11:44.557 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls\Styles\Desktop\qmldir was deleted successfully,
2020-04-20 19:11:44.557 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls\Styles\Desktop\RadioButtonStyle.qml was deleted successfully,
2020-04-20 19:11:44.558 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls\Styles\Desktop\RowItemSingleton.qml was deleted successfully,
2020-04-20 19:11:44.559 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls\Styles\Desktop\ScrollViewStyle.qml was deleted successfully,
2020-04-20 19:11:44.560 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls\Styles\Desktop\SliderStyle.qml was deleted successfully,
2020-04-20 19:11:44.561 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls\Styles\Desktop\SpinBoxStyle.qml was deleted successfully,
2020-04-20 19:11:44.562 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls\Styles\Desktop\StatusBarStyle.qml was deleted successfully,
2020-04-20 19:11:44.563 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls\Styles\Desktop\SwitchStyle.qml was deleted successfully,
2020-04-20 19:11:44.564 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls\Styles\Desktop\TableViewStyle.qml was deleted successfully,
2020-04-20 19:11:44.565 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls\Styles\Desktop\TabViewStyle.qml was deleted successfully,
2020-04-20 19:11:44.566 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls\Styles\Desktop\TextAreaStyle.qml was deleted successfully,
2020-04-20 19:11:44.567 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls\Styles\Desktop\TextFieldStyle.qml was deleted successfully,
2020-04-20 19:11:44.568 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls\Styles\Desktop\ToolBarStyle.qml was deleted successfully,
2020-04-20 19:11:44.569 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls\Styles\Desktop\ToolButtonStyle.qml was deleted successfully,
2020-04-20 19:11:44.569 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls\Styles\Desktop\TreeViewStyle.qml was deleted successfully,
2020-04-20 19:11:44.573 Folder C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls\Styles\Desktop\ was deleted successfully,
2020-04-20 19:11:44.575 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls\Styles\Flat\plugins.qmltypes was deleted successfully,
2020-04-20 19:11:44.576 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls\Styles\Flat\qmldir was deleted successfully,
2020-04-20 19:11:44.576 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls\Styles\Flat\qtquickextrasflatplugin.dll was deleted successfully,
2020-04-20 19:11:44.577 Folder C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls\Styles\Flat\ was deleted successfully,
2020-04-20 19:11:44.577 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls\Styles\qmldir was deleted successfully,
2020-04-20 19:11:44.578 Folder C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls\Styles\ was deleted successfully,
2020-04-20 19:11:44.578 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls\Switch.qml was deleted successfully,
2020-04-20 19:11:44.579 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls\Tab.qml was deleted successfully,
2020-04-20 19:11:44.579 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls\TableView.qml was deleted successfully,
2020-04-20 19:11:44.580 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls\TableViewColumn.qml was deleted successfully,
2020-04-20 19:11:44.592 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls\TabView.qml was deleted successfully,
2020-04-20 19:11:44.593 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls\TextArea.qml was deleted successfully,
2020-04-20 19:11:44.593 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls\TextField.qml was deleted successfully,
2020-04-20 19:11:44.594 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls\ToolBar.qml was deleted successfully,
2020-04-20 19:11:44.594 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls\ToolButton.qml was deleted successfully,
2020-04-20 19:11:44.595 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls\TreeView.qml was deleted successfully,Continuación:
Controls\ was deleted successfully,
2020-04-20 19:11:44.622 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\AbstractButton.qml was deleted successfully,
2020-04-20 19:11:44.623 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Action.qml was deleted successfully,
2020-04-20 19:11:44.624 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\ActionGroup.qml was deleted successfully,
2020-04-20 19:11:44.624 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\ApplicationWindow.qml was deleted successfully,
2020-04-20 19:11:44.625 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\BusyIndicator.qml was deleted successfully,
2020-04-20 19:11:44.625 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Button.qml was deleted successfully,
2020-04-20 19:11:44.626 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\ButtonGroup.qml was deleted successfully,
2020-04-20 19:11:44.626 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\CheckBox.qml was deleted successfully,
2020-04-20 19:11:44.627 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\CheckDelegate.qml was deleted successfully,
2020-04-20 19:11:44.627 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\ComboBox.qml was deleted successfully,
2020-04-20 19:11:44.628 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Container.qml was deleted successfully,
2020-04-20 19:11:44.628 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Control.qml was deleted successfully,
2020-04-20 19:11:44.629 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\DelayButton.qml was deleted successfully,
2020-04-20 19:11:44.629 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Dial.qml was deleted successfully,
2020-04-20 19:11:44.630 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Dialog.qml was deleted successfully,
2020-04-20 19:11:44.630 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\DialogButtonBox.qml was deleted successfully,
2020-04-20 19:11:44.631 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Drawer.qml was deleted successfully,
2020-04-20 19:11:44.631 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Frame.qml was deleted successfully,
2020-04-20 19:11:44.662 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Fusion\ApplicationWindow.qml was deleted successfully,
2020-04-20 19:11:44.663 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Fusion\BusyIndicator.qml was deleted successfully,
2020-04-20 19:11:44.663 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Fusion\Button.qml was deleted successfully,
2020-04-20 19:11:44.664 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Fusion\ButtonPanel.qml was deleted successfully,
2020-04-20 19:11:44.664 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Fusion\CheckBox.qml was deleted successfully,
2020-04-20 19:11:44.665 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Fusion\CheckDelegate.qml was deleted successfully,
2020-04-20 19:11:44.665 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Fusion\CheckIndicator.qml was deleted successfully,
2020-04-20 19:11:44.666 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Fusion\ComboBox.qml was deleted successfully,
2020-04-20 19:11:44.667 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Fusion\DelayButton.qml was deleted successfully,
2020-04-20 19:11:44.667 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Fusion\Dial.qml was deleted successfully,
2020-04-20 19:11:44.668 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Fusion\Dialog.qml was deleted successfully,
2020-04-20 19:11:44.669 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Fusion\DialogButtonBox.qml was deleted successfully,
2020-04-20 19:11:44.670 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Fusion\Drawer.qml was deleted successfully,
2020-04-20 19:11:44.671 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Fusion\Frame.qml was deleted successfully,
2020-04-20 19:11:44.671 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Fusion\GroupBox.qml was deleted successfully,
2020-04-20 19:11:44.672 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Fusion\ItemDelegate.qml was deleted successfully,
2020-04-20 19:11:44.673 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Fusion\Label.qml was deleted successfully,
2020-04-20 19:11:44.674 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Fusion\Menu.qml was deleted successfully,
2020-04-20 19:11:44.674 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Fusion\MenuBar.qml was deleted successfully,
2020-04-20 19:11:44.675 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Fusion\MenuBarItem.qml was deleted successfully,
2020-04-20 19:11:44.676 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Fusion\MenuItem.qml was deleted successfully,
2020-04-20 19:11:44.676 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Fusion\MenuSeparator.qml was deleted successfully,
2020-04-20 19:11:44.677 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Fusion\Page.qml was deleted successfully,
2020-04-20 19:11:44.678 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Fusion\PageIndicator.qml was deleted successfully,
2020-04-20 19:11:44.678 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Fusion\Pane.qml was deleted successfully,
2020-04-20 19:11:44.679 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Fusion\plugins.qmltypes was deleted successfully,
2020-04-20 19:11:44.680 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Fusion\Popup.qml was deleted successfully,
2020-04-20 19:11:44.680 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Fusion\ProgressBar.qml was deleted successfully,
2020-04-20 19:11:44.681 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Fusion\qmldir was deleted successfully,
2020-04-20 19:11:44.682 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Fusion\qtquickcontrols2fusionstyleplugin.dll was deleted successfully,
2020-04-20 19:11:44.682 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Fusion\RadioButton.qml was deleted successfully,
2020-04-20 19:11:44.683 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Fusion\RadioDelegate.qml was deleted successfully,
2020-04-20 19:11:44.701 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Fusion\RadioIndicator.qml was deleted successfully,
2020-04-20 19:11:44.702 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Fusion\RangeSlider.qml was deleted successfully,
2020-04-20 19:11:44.703 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Fusion\RoundButton.qml was deleted successfully,
2020-04-20 19:11:44.704 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Fusion\ScrollBar.qml was deleted successfully,
2020-04-20 19:11:44.705 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Fusion\ScrollIndicator.qml was deleted successfully,
2020-04-20 19:11:44.706 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Fusion\Slider.qml was deleted successfully,
2020-04-20 19:11:44.706 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Fusion\SliderGroove.qml was deleted successfully,
2020-04-20 19:11:44.707 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Fusion\SliderHandle.qml was deleted successfully,
2020-04-20 19:11:44.708 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Fusion\SpinBox.qml was deleted successfully,
2020-04-20 19:11:44.709 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Fusion\SplitView.qml was deleted successfully,
2020-04-20 19:11:44.710 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Fusion\SwipeDelegate.qml was deleted successfully,
2020-04-20 19:11:44.711 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Fusion\Switch.qml was deleted successfully,
2020-04-20 19:11:44.712 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Fusion\SwitchDelegate.qml was deleted successfully,
2020-04-20 19:11:44.713 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Fusion\SwitchIndicator.qml was deleted successfully,
2020-04-20 19:11:44.714 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Fusion\TabBar.qml was deleted successfully,
2020-04-20 19:11:44.715 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Fusion\TabButton.qml was deleted successfully,
2020-04-20 19:11:44.716 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Fusion\TextArea.qml was deleted successfully,
2020-04-20 19:11:44.717 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Fusion\TextField.qml was deleted successfully,
2020-04-20 19:11:44.718 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Fusion\ToolBar.qml was deleted successfully,
2020-04-20 19:11:44.719 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Fusion\ToolButton.qml was deleted successfully,
2020-04-20 19:11:44.720 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Fusion\ToolSeparator.qml was deleted successfully,
2020-04-20 19:11:44.721 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Fusion\ToolTip.qml was deleted successfully,
2020-04-20 19:11:44.722 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Fusion\Tumbler.qml was deleted successfully,
2020-04-20 19:11:44.729 Folder C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Fusion\ was deleted successfully,
2020-04-20 19:11:44.729 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\GroupBox.qml was deleted successfully,
2020-04-20 19:11:44.755 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Imagine\ApplicationWindow.qml was deleted successfully,
2020-04-20 19:11:44.755 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Imagine\BusyIndicator.qml was deleted successfully,
2020-04-20 19:11:44.756 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Imagine\Button.qml was deleted successfully,
2020-04-20 19:11:44.757 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Imagine\CheckBox.qml was deleted successfully,
2020-04-20 19:11:44.758 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Imagine\CheckDelegate.qml was deleted successfully,
2020-04-20 19:11:44.759 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Imagine\ComboBox.qml was deleted successfully,
2020-04-20 19:11:44.760 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Imagine\DelayButton.qml was deleted successfully,
2020-04-20 19:11:44.761 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Imagine\Dial.qml was deleted successfully,
2020-04-20 19:11:44.761 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Imagine\Dialog.qml was deleted successfully,
2020-04-20 19:11:44.762 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Imagine\DialogButtonBox.qml was deleted successfully,
2020-04-20 19:11:44.763 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Imagine\Drawer.qml was deleted successfully,
2020-04-20 19:11:44.764 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Imagine\Frame.qml was deleted successfully,
2020-04-20 19:11:44.765 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Imagine\GroupBox.qml was deleted successfully,
2020-04-20 19:11:44.766 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Imagine\ItemDelegate.qml was deleted successfully,
2020-04-20 19:11:44.767 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Imagine\Label.qml was deleted successfully,
2020-04-20 19:11:44.768 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Imagine\Menu.qml was deleted successfully,
2020-04-20 19:11:44.769 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Imagine\MenuItem.qml was deleted successfully,
2020-04-20 19:11:44.770 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Imagine\MenuSeparator.qml was deleted successfully,
2020-04-20 19:11:44.771 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Imagine\Page.qml was deleted successfully,
2020-04-20 19:11:44.772 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Imagine\PageIndicator.qml was deleted successfully,
2020-04-20 19:11:44.773 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Imagine\Pane.qml was deleted successfully,
2020-04-20 19:11:44.774 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Imagine\plugins.qmltypes was deleted successfully,
2020-04-20 19:11:44.775 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Imagine\Popup.qml was deleted successfully,
2020-04-20 19:11:44.776 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Imagine\ProgressBar.qml was deleted successfully,
2020-04-20 19:11:44.776 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Imagine\qmldir was deleted successfully,
2020-04-20 19:11:44.777 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Imagine\qtquickcontrols2imaginestyleplugin.dll was deleted successfully,
2020-04-20 19:11:44.778 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Imagine\RadioButton.qml was deleted successfully,
2020-04-20 19:11:44.779 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Imagine\RadioDelegate.qml was deleted successfully,
2020-04-20 19:11:44.780 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Imagine\RangeSlider.qml was deleted successfully,
2020-04-20 19:11:44.781 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Imagine\RoundButton.qml was deleted successfully,
2020-04-20 19:11:44.783 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Imagine\ScrollBar.qml was deleted successfully,
2020-04-20 19:11:44.784 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Imagine\ScrollIndicator.qml was deleted successfully,
2020-04-20 19:11:44.795 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Imagine\Slider.qml was deleted successfully,
2020-04-20 19:11:44.796 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Imagine\SpinBox.qml was deleted successfully,
2020-04-20 19:11:44.796 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Imagine\SplitView.qml was deleted successfully,
2020-04-20 19:11:44.797 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Imagine\StackView.qml was deleted successfully,
2020-04-20 19:11:44.797 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Imagine\SwipeDelegate.qml was deleted successfully,
2020-04-20 19:11:44.798 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Imagine\SwipeView.qml was deleted successfully,
2020-04-20 19:11:44.798 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Imagine\Switch.qml was deleted successfully,
2020-04-20 19:11:44.799 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Imagine\SwitchDelegate.qml was deleted successfully,
2020-04-20 19:11:44.800 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Imagine\TabBar.qml was deleted successfully,
2020-04-20 19:11:44.800 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Imagine\TabButton.qml was deleted successfully,
2020-04-20 19:11:44.801 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Imagine\TextArea.qml was deleted successfully,
2020-04-20 19:11:44.801 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Imagine\TextField.qml was deleted successfully,
2020-04-20 19:11:44.802 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Imagine\ToolBar.qml was deleted successfully,
2020-04-20 19:11:44.802 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Imagine\ToolButton.qml was deleted successfully,
2020-04-20 19:11:44.803 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Imagine\ToolSeparator.qml was deleted successfully,
2020-04-20 19:11:44.803 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Imagine\ToolTip.qml was deleted successfully,
2020-04-20 19:11:44.804 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Imagine\Tumbler.qml was deleted successfully,
2020-04-20 19:11:44.810 Folder C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Imagine\ was deleted successfully,
2020-04-20 19:11:44.810 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\ItemDelegate.qml was deleted successfully,
2020-04-20 19:11:44.811 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Label.qml was deleted successfully,
2020-04-20 19:11:44.831 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Material\ApplicationWindow.qml was deleted successfully,
2020-04-20 19:11:44.832 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Material\BoxShadow.qml was deleted successfully,
2020-04-20 19:11:44.832 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Material\BusyIndicator.qml was deleted successfully,
2020-04-20 19:11:44.833 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Material\Button.qml was deleted successfully,
2020-04-20 19:11:44.834 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Material\CheckBox.qml was deleted successfully,
2020-04-20 19:11:44.834 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Material\CheckDelegate.qml was deleted successfully,
2020-04-20 19:11:44.835 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Material\CheckIndicator.qml was deleted successfully,
2020-04-20 19:11:44.835 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Material\ComboBox.qml was deleted successfully,
2020-04-20 19:11:44.836 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Material\CursorDelegate.qml was deleted successfully,
2020-04-20 19:11:44.837 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Material\DelayButton.qml was deleted successfully,
2020-04-20 19:11:44.837 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Material\Dial.qml was deleted successfully,
2020-04-20 19:11:44.838 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Material\Dialog.qml was deleted successfully,
2020-04-20 19:11:44.838 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Material\DialogButtonBox.qml was deleted successfully,
2020-04-20 19:11:44.839 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Material\Drawer.qml was deleted successfully,
2020-04-20 19:11:44.839 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Material\ElevationEffect.qml was deleted successfully,
2020-04-20 19:11:44.840 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Material\Frame.qml was deleted successfully,
2020-04-20 19:11:44.840 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Material\GroupBox.qml was deleted successfully,
2020-04-20 19:11:44.841 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Material\ItemDelegate.qml was deleted successfully,
2020-04-20 19:11:44.841 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Material\Label.qml was deleted successfully,
2020-04-20 19:11:44.842 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Material\Menu.qml was deleted successfully,
2020-04-20 19:11:44.843 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Material\MenuBar.qml was deleted successfully,
2020-04-20 19:11:44.843 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Material\MenuBarItem.qml was deleted successfully,
2020-04-20 19:11:44.844 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Material\MenuItem.qml was deleted successfully,
2020-04-20 19:11:44.844 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Material\MenuSeparator.qml was deleted successfully,
2020-04-20 19:11:44.845 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Material\Page.qml was deleted successfully,
2020-04-20 19:11:44.845 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Material\PageIndicator.qml was deleted successfully,
2020-04-20 19:11:44.846 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Material\Pane.qml was deleted successfully,
2020-04-20 19:11:44.846 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Material\plugins.qmltypes was deleted successfully,
2020-04-20 19:11:44.847 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Material\Popup.qml was deleted successfully,
2020-04-20 19:11:44.847 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Material\ProgressBar.qml was deleted successfully,
2020-04-20 19:11:44.848 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Material\qmldir was deleted successfully,
2020-04-20 19:11:44.848 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Material\qtquickcontrols2materialstyleplugin.dll was deleted successfully,
2020-04-20 19:11:44.866 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Material\RadioButton.qml was deleted successfully,
2020-04-20 19:11:44.867 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Material\RadioDelegate.qml was deleted successfully,
2020-04-20 19:11:44.868 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Material\RadioIndicator.qml was deleted successfully,
2020-04-20 19:11:44.868 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Material\RangeSlider.qml was deleted successfully,
2020-04-20 19:11:44.869 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Material\RectangularGlow.qml was deleted successfully,
2020-04-20 19:11:44.870 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Material\RoundButton.qml was deleted successfully,
2020-04-20 19:11:44.870 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Material\ScrollBar.qml was deleted successfully,
2020-04-20 19:11:44.871 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Material\ScrollIndicator.qml was deleted successfully,
2020-04-20 19:11:44.871 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Material\Slider.qml was deleted successfully,
2020-04-20 19:11:44.872 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Material\SliderHandle.qml was deleted successfully,
2020-04-20 19:11:44.872 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Material\SpinBox.qml was deleted successfully,
2020-04-20 19:11:44.873 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Material\SplitView.qml was deleted successfully,
2020-04-20 19:11:44.873 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Material\StackView.qml was deleted successfully,
2020-04-20 19:11:44.874 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Material\SwipeDelegate.qml was deleted successfully,
2020-04-20 19:11:44.875 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Material\SwipeView.qml was deleted successfully,
2020-04-20 19:11:44.875 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Material\Switch.qml was deleted successfully,
2020-04-20 19:11:44.876 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Material\SwitchDelegate.qml was deleted successfully,
2020-04-20 19:11:44.876 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Material\SwitchIndicator.qml was deleted successfully,
2020-04-20 19:11:44.877 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Material\TabBar.qml was deleted successfully,
2020-04-20 19:11:44.877 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Material\TabButton.qml was deleted successfully,
2020-04-20 19:11:44.878 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Material\TextArea.qml was deleted successfully,
2020-04-20 19:11:44.878 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Material\TextField.qml was deleted successfully,
2020-04-20 19:11:44.879 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Material\ToolBar.qml was deleted successfully,
2020-04-20 19:11:44.880 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Material\ToolButton.qml was deleted successfully,
2020-04-20 19:11:44.880 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Material\ToolSeparator.qml was deleted successfully,
2020-04-20 19:11:44.881 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Material\ToolTip.qml was deleted successfully,
2020-04-20 19:11:44.890 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Material\Tumbler.qml was deleted successfully,
2020-04-20 19:11:44.891 Folder C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Material\ was deleted successfully,
2020-04-20 19:11:44.892 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Menu.qml was deleted successfully,
2020-04-20 19:11:44.892 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\MenuBar.qml was deleted successfully,
2020-04-20 19:11:44.893 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\MenuBarItem.qml was deleted successfully,
2020-04-20 19:11:44.893 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\MenuItem.qml was deleted successfully,
2020-04-20 19:11:44.894 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\MenuSeparator.qml was deleted successfully,
2020-04-20 19:11:44.894 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Page.qml was deleted successfully,
2020-04-20 19:11:44.895 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\PageIndicator.qml was deleted successfully,
2020-04-20 19:11:44.895 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Pane.qml was deleted successfully,
2020-04-20 19:11:44.919 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\plugins.qmltypes was deleted successfully,
2020-04-20 19:11:44.919 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Popup.qml was deleted successfully,
2020-04-20 19:11:44.920 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\ProgressBar.qml was deleted successfully,
2020-04-20 19:11:44.920 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\qmldir was deleted successfully,
2020-04-20 19:11:44.921 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\qtquickcontrols2plugin.dll was deleted successfully,
2020-04-20 19:11:44.922 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\RadioButton.qml was deleted successfully,
2020-04-20 19:11:44.922 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\RadioDelegate.qml was deleted successfully,
2020-04-20 19:11:44.923 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\RangeSlider.qml was deleted successfully,
2020-04-20 19:11:44.923 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\RoundButton.qml was deleted successfully,
2020-04-20 19:11:44.924 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\ScrollBar.qml was deleted successfully,
2020-04-20 19:11:44.924 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\ScrollIndicator.qml was deleted successfully,
2020-04-20 19:11:44.925 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\ScrollView.qml was deleted successfully,
2020-04-20 19:11:44.925 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Slider.qml was deleted successfully,
2020-04-20 19:11:44.926 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\SpinBox.qml was deleted successfully,
2020-04-20 19:11:44.926 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\SplitView.qml was deleted successfully,
2020-04-20 19:11:44.927 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\StackView.qml was deleted successfully,
2020-04-20 19:11:44.928 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\SwipeDelegate.qml was deleted successfully,
2020-04-20 19:11:44.928 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\SwipeView.qml was deleted successfully,
2020-04-20 19:11:44.929 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Switch.qml was deleted successfully,
2020-04-20 19:11:44.929 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\SwitchDelegate.qml was deleted successfully,
2020-04-20 19:11:44.930 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\TabBar.qml was deleted successfully,
2020-04-20 19:11:44.930 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\TabButton.qml was deleted successfully,
2020-04-20 19:11:44.931 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\TextArea.qml was deleted successfully,
2020-04-20 19:11:44.931 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\TextField.qml was deleted successfully,
2020-04-20 19:11:44.932 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\ToolBar.qml was deleted successfully,
2020-04-20 19:11:44.932 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\ToolButton.qml was deleted successfully,
2020-04-20 19:11:44.933 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\ToolSeparator.qml was deleted successfully,
2020-04-20 19:11:44.933 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\ToolTip.qml was deleted successfully,
2020-04-20 19:11:44.934 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Tumbler.qml was deleted successfully,
2020-04-20 19:11:44.963 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Universal\ApplicationWindow.qml was deleted successfully,
2020-04-20 19:11:44.964 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Universal\BusyIndicator.qml was deleted successfully,
2020-04-20 19:11:44.965 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Universal\Button.qml was deleted successfully,
2020-04-20 19:11:44.965 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Universal\CheckBox.qml was deleted successfully,
2020-04-20 19:11:44.966 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Universal\CheckDelegate.qml was deleted successfully,
2020-04-20 19:11:44.967 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Universal\CheckIndicator.qml was deleted successfully,
2020-04-20 19:11:44.968 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Universal\ComboBox.qml was deleted successfully,
2020-04-20 19:11:44.968 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Universal\DelayButton.qml was deleted successfully,
2020-04-20 19:11:44.969 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Universal\Dial.qml was deleted successfully,
2020-04-20 19:11:44.970 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Universal\Dialog.qml was deleted successfully,
2020-04-20 19:11:44.971 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Universal\DialogButtonBox.qml was deleted successfully,
2020-04-20 19:11:44.972 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Universal\Drawer.qml was deleted successfully,
2020-04-20 19:11:44.973 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Universal\Frame.qml was deleted successfully,
2020-04-20 19:11:44.974 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Universal\GroupBox.qml was deleted successfully,
2020-04-20 19:11:44.975 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Universal\ItemDelegate.qml was deleted successfully,
2020-04-20 19:11:44.976 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Universal\Label.qml was deleted successfully,
2020-04-20 19:11:44.977 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Universal\Menu.qml was deleted successfully,
2020-04-20 19:11:44.977 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Universal\MenuBar.qml was deleted successfully,
2020-04-20 19:11:44.978 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Universal\MenuBarItem.qml was deleted successfully,
2020-04-20 19:11:44.979 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Universal\MenuItem.qml was deleted successfully,
2020-04-20 19:11:44.980 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Universal\MenuSeparator.qml was deleted successfully,
2020-04-20 19:11:44.981 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Universal\Page.qml was deleted successfully,
2020-04-20 19:11:44.982 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Universal\PageIndicator.qml was deleted successfully,
2020-04-20 19:11:44.983 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Universal\Pane.qml was deleted successfully,
2020-04-20 19:11:44.984 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Universal\plugins.qmltypes was deleted successfully,
2020-04-20 19:11:44.985 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Universal\Popup.qml was deleted successfully,
2020-04-20 19:11:44.985 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Universal\ProgressBar.qml was deleted successfully,
2020-04-20 19:11:44.986 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Universal\qmldir was deleted successfully,
2020-04-20 19:11:44.987 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Universal\qtquickcontrols2universalstyleplugin.dll was deleted successfully,
2020-04-20 19:11:44.988 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Universal\RadioButton.qml was deleted successfully,
2020-04-20 19:11:44.989 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Universal\RadioDelegate.qml was deleted successfully,
2020-04-20 19:11:44.990 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Universal\RadioIndicator.qml was deleted successfully,
2020-04-20 19:11:45.005 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Universal\RangeSlider.qml was deleted successfully,
2020-04-20 19:11:45.005 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Universal\RoundButton.qml was deleted successfully,
2020-04-20 19:11:45.006 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Universal\ScrollBar.qml was deleted successfully,
2020-04-20 19:11:45.006 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Universal\ScrollIndicator.qml was deleted successfully,
2020-04-20 19:11:45.007 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Universal\Slider.qml was deleted successfully,
2020-04-20 19:11:45.008 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Universal\SpinBox.qml was deleted successfully,
2020-04-20 19:11:45.008 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Universal\SplitView.qml was deleted successfully,
2020-04-20 19:11:45.009 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Universal\StackView.qml was deleted successfully,
2020-04-20 19:11:45.010 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Universal\SwipeDelegate.qml was deleted successfully,
2020-04-20 19:11:45.010 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Universal\Switch.qml was deleted successfully,
2020-04-20 19:11:45.011 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Universal\SwitchDelegate.qml was deleted successfully,
2020-04-20 19:11:45.011 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Universal\SwitchIndicator.qml was deleted successfully,
2020-04-20 19:11:45.012 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Universal\TabBar.qml was deleted successfully,
2020-04-20 19:11:45.013 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Universal\TabButton.qml was deleted successfully,
2020-04-20 19:11:45.013 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Universal\TextArea.qml was deleted successfully,
2020-04-20 19:11:45.014 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Universal\TextField.qml was deleted successfully,
2020-04-20 19:11:45.015 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Universal\ToolBar.qml was deleted successfully,
2020-04-20 19:11:45.016 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Universal\ToolButton.qml was deleted successfully,
2020-04-20 19:11:45.016 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Universal\ToolSeparator.qml was deleted successfully,
2020-04-20 19:11:45.017 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Universal\ToolTip.qml was deleted successfully,
2020-04-20 19:11:45.018 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Universal\Tumbler.qml was deleted successfully,
2020-04-20 19:11:45.033 Folder C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\Universal\ was deleted successfully,
2020-04-20 19:11:45.034 Folder C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls.2\ was deleted successfully,
2020-04-20 19:11:45.048 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Dialogs\DefaultColorDialog.qml was deleted successfully,
2020-04-20 19:11:45.048 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Dialogs\DefaultDialogWrapper.qml was deleted successfully,
2020-04-20 19:11:45.049 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Dialogs\DefaultFileDialog.qml was deleted successfully,
2020-04-20 19:11:45.049 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Dialogs\DefaultFontDialog.qml was deleted successfully,
2020-04-20 19:11:45.050 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Dialogs\DefaultMessageDialog.qml was deleted successfully,
2020-04-20 19:11:45.050 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Dialogs\dialogplugin.dll was deleted successfully,
2020-04-20 19:11:45.055 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Dialogs\images\checkers.png was deleted successfully,
2020-04-20 19:11:45.055 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Dialogs\images\checkmark.png was deleted successfully,
2020-04-20 19:11:45.056 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Dialogs\images\copy.png was deleted successfully,
2020-04-20 19:11:45.057 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Dialogs\images\critical.png was deleted successfully,
2020-04-20 19:11:45.057 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Dialogs\images\crosshairs.png was deleted successfully,
2020-04-20 19:11:45.058 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Dialogs\images\information.png was deleted successfully,
2020-04-20 19:11:45.059 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Dialogs\images\question.png was deleted successfully,
2020-04-20 19:11:45.060 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Dialogs\images\slider_handle.png was deleted successfully,
2020-04-20 19:11:45.061 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Dialogs\images\sunken_frame.png was deleted successfully,
2020-04-20 19:11:45.062 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Dialogs\images\warning.png was deleted successfully,
2020-04-20 19:11:45.063 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Dialogs\images\window_border.png was deleted successfully,
2020-04-20 19:11:45.066 Folder C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Dialogs\images\ was deleted successfully,
2020-04-20 19:11:45.067 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Dialogs\plugins.qmltypes was deleted successfully,
2020-04-20 19:11:45.068 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Dialogs\Private\dialogsprivateplugin.dll was deleted successfully,
2020-04-20 19:11:45.069 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Dialogs\Private\plugins.qmltypes was deleted successfully,
2020-04-20 19:11:45.070 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Dialogs\Private\qmldir was deleted successfully,
2020-04-20 19:11:45.070 Folder C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Dialogs\Private\ was deleted successfully,
2020-04-20 19:11:45.075 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Dialogs\qml\ColorSlider.qml was deleted successfully,
2020-04-20 19:11:45.076 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Dialogs\qml\DefaultWindowDecoration.qml was deleted successfully,
2020-04-20 19:11:45.077 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Dialogs\qml\IconButtonStyle.qml was deleted successfully,
2020-04-20 19:11:45.078 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Dialogs\qml\IconGlyph.qml was deleted successfully,
2020-04-20 19:11:45.079 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Dialogs\qml\icons.ttf was deleted successfully,
2020-04-20 19:11:45.080 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Dialogs\qml\qmldir was deleted successfully,
2020-04-20 19:11:45.084 Folder C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Dialogs\qml\ was deleted successfully,
2020-04-20 19:11:45.085 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Dialogs\qmldir was deleted successfully,
2020-04-20 19:11:45.086 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Dialogs\WidgetColorDialog.qml was deleted successfully,
2020-04-20 19:11:45.087 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Dialogs\WidgetFileDialog.qml was deleted successfully,
2020-04-20 19:11:45.087 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Dialogs\WidgetFontDialog.qml was deleted successfully,
2020-04-20 19:11:45.088 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Dialogs\WidgetMessageDialog.qml was deleted successfully,
2020-04-20 19:11:45.090 Folder C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Dialogs\ was deleted successfully,
2020-04-20 19:11:45.098 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Extras\CircularGauge.qml was deleted successfully,
2020-04-20 19:11:45.099 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Extras\DelayButton.qml was deleted successfully,
2020-04-20 19:11:45.099 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Extras\Dial.qml was deleted successfully,
2020-04-20 19:11:45.100 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Extras\Gauge.qml was deleted successfully,
2020-04-20 19:11:45.101 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Extras\PieMenu.qml was deleted successfully,
2020-04-20 19:11:45.101 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Extras\plugins.qmltypes was deleted successfully,
2020-04-20 19:11:45.109 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Extras\Private\CircularButton.qml was deleted successfully,
2020-04-20 19:11:45.109 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Extras\Private\CircularButtonStyleHelper.qml was deleted successfully,
2020-04-20 19:11:45.110 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Extras\Private\CircularTickmarkLabel.qml was deleted successfully,
2020-04-20 19:11:45.111 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Extras\Private\Handle.qml was deleted successfully,
2020-04-20 19:11:45.111 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Extras\Private\PieMenuIcon.qml was deleted successfully,
2020-04-20 19:11:45.112 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Extras\Private\qmldir was deleted successfully,
2020-04-20 19:11:45.113 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Extras\Private\TextSingleton.qml was deleted successfully,
2020-04-20 19:11:45.117 Folder C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Extras\Private\ was deleted successfully,
2020-04-20 19:11:45.117 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Extras\qmldir was deleted successfully,
2020-04-20 19:11:45.118 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Extras\qtquickextrasplugin.dll was deleted successfully,
2020-04-20 19:11:45.119 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Extras\StatusIndicator.qml was deleted successfully,
2020-04-20 19:11:45.119 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Extras\ToggleButton.qml was deleted successfully,
2020-04-20 19:11:45.120 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Extras\Tumbler.qml was deleted successfully,
2020-04-20 19:11:45.121 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Extras\TumblerColumn.qml was deleted successfully,
2020-04-20 19:11:45.123 Folder C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Extras\ was deleted successfully,
2020-04-20 19:11:45.123 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Layouts\plugins.qmltypes was deleted successfully,
2020-04-20 19:11:45.124 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Layouts\qmldir was deleted successfully,
2020-04-20 19:11:45.125 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Layouts\qquicklayoutsplugin.dll was deleted successfully,
2020-04-20 19:11:45.125 Folder C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Layouts\ was deleted successfully,
2020-04-20 19:11:45.134 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\PrivateWidgets\plugins.qmltypes was deleted successfully,
2020-04-20 19:11:45.135 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\PrivateWidgets\qmldir was deleted successfully,
2020-04-20 19:11:45.136 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\PrivateWidgets\widgetsplugin.dll was deleted successfully,
2020-04-20 19:11:45.139 Folder C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\PrivateWidgets\ was deleted successfully,
2020-04-20 19:11:45.141 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Templates.2\plugins.qmltypes was deleted successfully,
2020-04-20 19:11:45.141 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Templates.2\qmldir was deleted successfully,
2020-04-20 19:11:45.142 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Templates.2\qtquicktemplates2plugin.dll was deleted successfully,
2020-04-20 19:11:45.144 Folder C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Templates.2\ was deleted successfully,
2020-04-20 19:11:45.145 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Window.2\plugins.qmltypes was deleted successfully,
2020-04-20 19:11:45.145 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Window.2\qmldir was deleted successfully,
2020-04-20 19:11:45.146 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Window.2\windowplugin.dll was deleted successfully,
2020-04-20 19:11:45.147 Folder C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Window.2\ was deleted successfully,
2020-04-20 19:11:45.156 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\XmlListModel\plugins.qmltypes was deleted successfully,
2020-04-20 19:11:45.157 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\XmlListModel\qmldir was deleted successfully,
2020-04-20 19:11:45.157 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\XmlListModel\qmlxmllistmodelplugin.dll was deleted successfully,
2020-04-20 19:11:45.160 Folder C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\XmlListModel\ was deleted successfully,
2020-04-20 19:11:45.162 Folder C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\ was deleted successfully,
2020-04-20 19:11:45.163 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick.2\plugins.qmltypes was deleted successfully,
2020-04-20 19:11:45.163 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick.2\qmldir was deleted successfully,
2020-04-20 19:11:45.164 File C:\Program Files\Malwarebytes\Anti-Malware\QtQuick.2\qtquick2plugin.dll was deleted successfully,
2020-04-20 19:11:45.165 Folder C:\Program Files\Malwarebytes\Anti-Malware\QtQuick.2\ was deleted successfully,
2020-04-20 19:11:45.165 File C:\Program Files\Malwarebytes\Anti-Malware\QtWinExtras\JumpListDestination.qml was deleted successfully,
2020-04-20 19:11:45.166 File C:\Program Files\Malwarebytes\Anti-Malware\QtWinExtras\JumpListLink.qml was deleted successfully,
2020-04-20 19:11:45.167 File C:\Program Files\Malwarebytes\Anti-Malware\QtWinExtras\JumpListSeparator.qml was deleted successfully,
2020-04-20 19:11:45.167 File C:\Program Files\Malwarebytes\Anti-Malware\QtWinExtras\plugins.qmltypes was deleted successfully,
2020-04-20 19:11:45.168 File C:\Program Files\Malwarebytes\Anti-Malware\QtWinExtras\qmldir was deleted successfully,
2020-04-20 19:11:45.168 File C:\Program Files\Malwarebytes\Anti-Malware\QtWinExtras\qml_winextras.dll was deleted successfully,
2020-04-20 19:11:45.170 Folder C:\Program Files\Malwarebytes\Anti-Malware\QtWinExtras\ was deleted successfully,
2020-04-20 19:11:45.171 File C:\Program Files\Malwarebytes\Anti-Malware\rtp.dll was deleted successfully,
2020-04-20 19:11:45.172 File C:\Program Files\Malwarebytes\Anti-Malware\RTPControllerImpl.dll was deleted successfully,
2020-04-20 19:11:45.172 File C:\Program Files\Malwarebytes\Anti-Malware\RtpShim.dll was deleted successfully,
2020-04-20 19:11:45.173 File C:\Program Files\Malwarebytes\Anti-Malware\sample.dll was deleted successfully,
2020-04-20 19:11:45.174 File C:\Program Files\Malwarebytes\Anti-Malware\ScanControllerImpl.dll was deleted successfully,
2020-04-20 19:11:45.174 File C:\Program Files\Malwarebytes\Anti-Malware\SelfProtectionSdk.dll was deleted successfully,
2020-04-20 19:11:45.175 File C:\Program Files\Malwarebytes\Anti-Malware\SelfProtectionShim.dll was deleted successfully,
2020-04-20 19:11:45.176 File C:\Program Files\Malwarebytes\Anti-Malware\SPControllerImpl.dll was deleted successfully,
2020-04-20 19:11:45.176 File C:\Program Files\Malwarebytes\Anti-Malware\styles\qwindowsvistastyle.dll was deleted successfully,
2020-04-20 19:11:45.177 Folder C:\Program Files\Malwarebytes\Anti-Malware\styles\ was deleted successfully,
2020-04-20 19:11:45.177 File C:\Program Files\Malwarebytes\Anti-Malware\Swissarmy.dll was deleted successfully,
2020-04-20 19:11:45.178 File C:\Program Files\Malwarebytes\Anti-Malware\SwissarmyShim.dll was deleted successfully,
2020-04-20 19:11:45.178 File C:\Program Files\Malwarebytes\Anti-Malware\TelemetryControllerImpl.dll was deleted successfully,
2020-04-20 19:11:45.179 File C:\Program Files\Malwarebytes\Anti-Malware\ucrtbase.dll was deleted successfully,
2020-04-20 19:11:45.179 File C:\Program Files\Malwarebytes\Anti-Malware\UpdateControllerImpl.dll was deleted successfully,
2020-04-20 19:11:45.186 File C:\Program Files\Malwarebytes\Anti-Malware\vcruntime140.dll was deleted successfully,
2020-04-20 19:11:45.186 Skipped deletion: C:\Program Files\Malwarebytes\Anti-Malware\ (Folder not empty)
2020-04-20 19:11:45.195 Deleted registry key: (SOFTWARE\Malwarebytes)
2020-04-20 19:11:45.197 Deleted registry key: (SOFTWARE\Wow6432Node\Malwarebytes)
2020-04-20 19:11:45.563 LSP Registry key: HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\AppId_Catalog\######## Not Found
2020-04-20 19:11:52.520
2020-04-20 19:11:52.520 ======================================================
2020-04-20 19:11:52.521 Install Malwarebytes for Windows
2020-04-20 19:11:52.521 ======================================================
2020-04-20 19:11:52.521 User choice for reinstall prompt (Yes clicked)
2020-04-20 19:11:53.653 Malwarebytes for Windows was downloaded successfully.
2020-04-20 19:12:22.696 Warning!!!!!! Malwarebytes for Windows installation was aborted.Ejecutalo y pegame los logs
Hola, pego los logs de MBAR, encontró dos archivos sospechosos que son keygens de dos programas de edición, de momento los he dejado (no sé si hago bien), puesto que tengo entendido que los keygens para los antivirus suelen ser falsos positivos, y estos en concreto los tengo de hace mucho antes de tener este problema.
Malwarebytes Anti-Rootkit BETA 1.10.3.1001
www.malwarebytes.org
Database version:
main: v2020.04.21.04
rootkit: v2020.04.21.04
Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 10.0.9200.16660
user :: USER-PC [administrator]
21/04/2020 15:30:41
mbar-log-2020-04-21 (15-30-41).txt
Scan type: Quick scan
Scan options enabled: Anti-Rootkit | Drivers | MBR | Physical Sectors | Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken
Scan options disabled:
Objects scanned: 199000
Time elapsed: 18 minute(s), 15 second(s)
Memory Processes Detected: 0
(No malicious items detected)
Memory Modules Detected: 0
(No malicious items detected)
Registry Keys Detected: 0
(No malicious items detected)
Registry Values Detected: 0
(No malicious items detected)
Registry Data Items Detected: 0
(No malicious items detected)
Folders Detected: 0
(No malicious items detected)
Files Detected: 3
C:\Users\user.user-PC\Desktop\XMediaRecode3358\Sony Vegas Pro 9 + Crack and KeyGen\crack vegas 9\Keygen.exe (Trojan.Agent) -> No action taken. [1167bffbca0c74c21087115d3cc5a45c]
C:\Users\user.user-PC\Desktop\XMediaRecode3358\Sony Vegas Pro 9 + Crack and KeyGen\crack vegas 9\Sony_VegasPro8_DVDArchitect45_SoundForge9_CRACK.exe (RiskWare.Tool.HCK) -> No action taken. [94e48c2e5581999df4e17b3b867bd729]
C:\Users\user.user-PC\AppData\Roaming\msconfig.ini (Trojan.Agent) -> Delete on reboot. [83f56a506f67ba7c1e22dc648c740af6]
Physical Sectors Detected: 0
(No malicious items detected)
(end)
---------------------------------------
Malwarebytes Anti-Rootkit BETA 1.10.3.1001
(c) Malwarebytes Corporation 2011-2012
OS version: 6.1.7601 Windows 7 Service Pack 1 x64
Account is Administrative
Internet Explorer version: 10.0.9200.16660
File system is: NTFS
Disk drives: C:\ DRIVE_FIXED
CPU speed: 2.890000 GHz
Memory total: 4175847424, free: 2857291776
Downloaded database version: v2020.04.21.04
Downloaded database version: v2020.04.21.04
Downloaded database version: v2018.01.20.01
=======================================
Initializing...
Driver version: 4.3.0.15
------------ Kernel report ------------
04/21/2020 15:30:34
------------ Loaded modules -----------
\SystemRoot\system32\ntoskrnl.exe
\SystemRoot\system32\hal.dll
\SystemRoot\system32\kdcom.dll
\SystemRoot\system32\mcupdate_GenuineIntel.dll
\SystemRoot\system32\PSHED.dll
\SystemRoot\system32\CLFS.SYS
\SystemRoot\system32\CI.dll
\SystemRoot\system32\drivers\Wdf01000.sys
\SystemRoot\system32\drivers\WDFLDR.SYS
\SystemRoot\system32\drivers\ACPI.sys
\SystemRoot\system32\drivers\WMILIB.SYS
\SystemRoot\system32\drivers\msisadrv.sys
\SystemRoot\system32\drivers\pci.sys
\SystemRoot\system32\drivers\vdrvroot.sys
\SystemRoot\System32\drivers\partmgr.sys
\SystemRoot\system32\DRIVERS\compbatt.sys
\SystemRoot\system32\DRIVERS\BATTC.SYS
\SystemRoot\system32\drivers\volmgr.sys
\SystemRoot\System32\drivers\volmgrx.sys
\SystemRoot\system32\drivers\pciide.sys
\SystemRoot\system32\drivers\PCIIDEX.SYS
\SystemRoot\System32\drivers\mountmgr.sys
\SystemRoot\system32\drivers\atapi.sys
\SystemRoot\system32\drivers\ataport.SYS
\SystemRoot\system32\drivers\amdxata.sys
\SystemRoot\system32\drivers\fltmgr.sys
\SystemRoot\system32\drivers\fileinfo.sys
\SystemRoot\System32\Drivers\PxHlpa64.sys
\SystemRoot\System32\Drivers\Ntfs.sys
\SystemRoot\System32\Drivers\msrpc.sys
\SystemRoot\System32\Drivers\ksecdd.sys
\SystemRoot\System32\Drivers\cng.sys
\SystemRoot\System32\drivers\pcw.sys
\SystemRoot\System32\Drivers\Fs_Rec.sys
\SystemRoot\system32\drivers\ndis.sys
\SystemRoot\system32\drivers\NETIO.SYS
\SystemRoot\System32\Drivers\ksecpkg.sys
\SystemRoot\System32\drivers\tcpip.sys
\SystemRoot\System32\drivers\fwpkclnt.sys
\SystemRoot\system32\DRIVERS\wfplwf.sys
\SystemRoot\system32\drivers\vmstorfl.sys
\SystemRoot\system32\drivers\volsnap.sys
\SystemRoot\system32\DRIVERS\stdcfltn.sys
\SystemRoot\System32\Drivers\spldr.sys
\SystemRoot\System32\drivers\rdyboost.sys
\SystemRoot\System32\Drivers\mup.sys
\SystemRoot\System32\drivers\hwpolicy.sys
\SystemRoot\System32\DRIVERS\fvevol.sys
\SystemRoot\system32\drivers\disk.sys
\SystemRoot\system32\drivers\CLASSPNP.SYS
\SystemRoot\system32\DRIVERS\cdrom.sys
\SystemRoot\System32\Drivers\cdrbsdrv.SYS
\SystemRoot\System32\Drivers\Null.SYS
\SystemRoot\System32\Drivers\Beep.SYS
\SystemRoot\System32\drivers\vga.sys
\SystemRoot\System32\drivers\VIDEOPRT.SYS
\SystemRoot\System32\drivers\watchdog.sys
\SystemRoot\System32\DRIVERS\RDPCDD.sys
\SystemRoot\system32\drivers\rdpencdd.sys
\SystemRoot\system32\drivers\rdprefmp.sys
\SystemRoot\System32\Drivers\Msfs.SYS
\SystemRoot\System32\Drivers\Npfs.SYS
\SystemRoot\system32\DRIVERS\tdx.sys
\SystemRoot\system32\DRIVERS\TDI.SYS
\SystemRoot\system32\drivers\afd.sys
\SystemRoot\System32\DRIVERS\netbt.sys
\SystemRoot\system32\DRIVERS\pacer.sys
\SystemRoot\system32\DRIVERS\vwififlt.sys
\SystemRoot\system32\DRIVERS\netbios.sys
\SystemRoot\system32\DRIVERS\serial.sys
\SystemRoot\system32\DRIVERS\wanarp.sys
\SystemRoot\system32\DRIVERS\termdd.sys
\SystemRoot\system32\DRIVERS\rdbss.sys
\SystemRoot\system32\drivers\nsiproxy.sys
\SystemRoot\system32\DRIVERS\mssmbios.sys
\SystemRoot\System32\drivers\discache.sys
\SystemRoot\system32\drivers\csc.sys
\SystemRoot\System32\Drivers\dfsc.sys
\SystemRoot\system32\DRIVERS\blbdrive.sys
\SystemRoot\system32\DRIVERS\tunnel.sys
\SystemRoot\system32\DRIVERS\igdkmd64.sys
\SystemRoot\System32\drivers\dxgkrnl.sys
\SystemRoot\System32\drivers\dxgmms1.sys
\SystemRoot\system32\DRIVERS\iusb3xhc.sys
\SystemRoot\system32\DRIVERS\USBD.SYS
\SystemRoot\system32\DRIVERS\serenum.sys
\SystemRoot\system32\DRIVERS\e1c62x64.sys
\SystemRoot\system32\DRIVERS\usbehci.sys
\SystemRoot\system32\DRIVERS\USBPORT.SYS
\SystemRoot\system32\DRIVERS\HDAudBus.sys
\SystemRoot\system32\DRIVERS\NETwsw00.sys
\SystemRoot\system32\DRIVERS\vwifibus.sys
\SystemRoot\system32\DRIVERS\sdbus.sys
\SystemRoot\system32\DRIVERS\i8042prt.sys
\SystemRoot\system32\DRIVERS\kbdclass.sys
\SystemRoot\system32\DRIVERS\mouclass.sys
\SystemRoot\system32\DRIVERS\parport.sys
\SystemRoot\system32\DRIVERS\ST_Accel.sys
\SystemRoot\system32\DRIVERS\intelppm.sys
\SystemRoot\system32\DRIVERS\wmiacpi.sys
\SystemRoot\system32\DRIVERS\CmBatt.sys
\SystemRoot\system32\DRIVERS\CompositeBus.sys
\SystemRoot\system32\DRIVERS\AgileVpn.sys
\SystemRoot\system32\DRIVERS\rasl2tp.sys
\SystemRoot\system32\DRIVERS\ndistapi.sys
\SystemRoot\system32\DRIVERS\ndiswan.sys
\SystemRoot\system32\DRIVERS\raspppoe.sys
\SystemRoot\system32\DRIVERS\raspptp.sys
\SystemRoot\system32\DRIVERS\rassstp.sys
\SystemRoot\system32\DRIVERS\rdpbus.sys
\SystemRoot\system32\DRIVERS\swenum.sys
\SystemRoot\system32\DRIVERS\ks.sys
\SystemRoot\system32\DRIVERS\umbus.sys
\SystemRoot\system32\DRIVERS\usbhub.sys
\SystemRoot\System32\Drivers\NDProxy.SYS
\SystemRoot\system32\DRIVERS\iusb3hub.sys
\SystemRoot\system32\DRIVERS\stwrt64.sys
\SystemRoot\system32\DRIVERS\portcls.sys
\SystemRoot\system32\DRIVERS\drmk.sys
\SystemRoot\system32\drivers\ksthunk.sys
\SystemRoot\system32\DRIVERS\IntcDAud.sys
\SystemRoot\system32\DRIVERS\udfs.sys
\SystemRoot\System32\win32k.sys
\SystemRoot\System32\drivers\Dxapi.sys
\SystemRoot\system32\DRIVERS\monitor.sys
\SystemRoot\System32\TSDDD.dll
\SystemRoot\System32\cdd.dll
\SystemRoot\System32\Drivers\crashdmp.sys
\SystemRoot\System32\Drivers\dump_dumpata.sys
\SystemRoot\System32\Drivers\dump_atapi.sys
\SystemRoot\System32\Drivers\dump_dumpfve.sys
\SystemRoot\System32\ATMFD.DLL
\SystemRoot\system32\DRIVERS\usbccgp.sys
\SystemRoot\system32\drivers\luafv.sys
\SystemRoot\System32\Drivers\cvusbdrv.sys
\SystemRoot\system32\DRIVERS\lltdio.sys
\SystemRoot\system32\DRIVERS\nwifi.sys
\SystemRoot\system32\DRIVERS\ndisuio.sys
\SystemRoot\system32\DRIVERS\rspndr.sys
\SystemRoot\system32\drivers\HTTP.sys
\SystemRoot\system32\DRIVERS\bowser.sys
\SystemRoot\System32\drivers\mpsdrv.sys
\SystemRoot\system32\DRIVERS\mrxsmb.sys
\SystemRoot\system32\DRIVERS\mrxsmb10.sys
\SystemRoot\system32\DRIVERS\mrxsmb20.sys
\SystemRoot\system32\drivers\peauth.sys
\SystemRoot\System32\Drivers\secdrv.SYS
\SystemRoot\System32\DRIVERS\srvnet.sys
\SystemRoot\System32\drivers\tcpipreg.sys
\SystemRoot\System32\DRIVERS\srv2.sys
\SystemRoot\System32\DRIVERS\srv.sys
\SystemRoot\system32\drivers\WudfPf.sys
\SystemRoot\system32\DRIVERS\WinUSB.sys
\SystemRoot\system32\DRIVERS\WUDFRd.sys
\SystemRoot\System32\DRIVERS\scfilter.sys
\SystemRoot\system32\drivers\spsys.sys
\SystemRoot\system32\DRIVERS\asyncmac.sys
\SystemRoot\system32\DRIVERS\USBSTOR.SYS
\SystemRoot\System32\Drivers\fastfat.SYS
\??\C:\Windows\system32\drivers\mbamchameleon.sys
\??\C:\Windows\system32\drivers\4195EF2C.sys
\Windows\System32\ntdll.dll
\Windows\System32\smss.exe
\Windows\System32\apisetschema.dll
\Windows\System32\autochk.exe
\Windows\System32\shell32.dll
\Windows\System32\ole32.dll
\Windows\System32\usp10.dll
\Windows\System32\shlwapi.dll
\Windows\System32\imm32.dll
\Windows\System32\user32.dll
\Windows\System32\normaliz.dll
\Windows\System32\oleaut32.dll
\Windows\System32\rpcrt4.dll
\Windows\System32\iertutil.dll
\Windows\System32\nsi.dll
\Windows\System32\gdi32.dll
\Windows\System32\psapi.dll
\Windows\System32\kernel32.dll
\Windows\System32\comdlg32.dll
\Windows\System32\imagehlp.dll
\Windows\System32\wininet.dll
\Windows\System32\difxapi.dll
\Windows\System32\sechost.dll
\Windows\System32\msctf.dll
\Windows\System32\Wldap32.dll
\Windows\System32\ws2_32.dll
\Windows\System32\advapi32.dll
\Windows\System32\clbcatq.dll
\Windows\System32\setupapi.dll
\Windows\System32\urlmon.dll
\Windows\System32\msvcrt.dll
\Windows\System32\lpk.dll
\Windows\System32\api-ms-win-downlevel-ole32-l1-1-0.dll
\Windows\System32\cfgmgr32.dll
\Windows\System32\KernelBase.dll
\Windows\System32\wintrust.dll
\Windows\System32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
\Windows\System32\crypt32.dll
\Windows\System32\api-ms-win-downlevel-normaliz-l1-1-0.dll
\Windows\System32\api-ms-win-downlevel-user32-l1-1-0.dll
\Windows\System32\devobj.dll
\Windows\System32\comctl32.dll
\Windows\System32\api-ms-win-downlevel-advapi32-l1-1-0.dll
\Windows\System32\api-ms-win-downlevel-version-l1-1-0.dll
\Windows\System32\msasn1.dll
\Windows\SysWOW64\normaliz.dll
----------- End -----------
Done!
Scan started
Database versions:
main: v2020.04.21.04
rootkit: v2020.04.21.04
<<<2>>>
Physical Sector Size: 512
Drive: 0, DevicePointer: 0xfffffa80046f1060, DeviceName: \Device\Harddisk0\DR0\, DriverName: \Driver\Disk\
--------- Disk Stack ------
DevicePointer: 0xfffffa80041c5920, DeviceName: Unknown, DriverName: \Driver\partmgr\
DevicePointer: 0xfffffa80046f1060, DeviceName: \Device\Harddisk0\DR0\, DriverName: \Driver\Disk\
DevicePointer: 0xfffffa80041c4890, DeviceName: Unknown, DriverName: \Driver\stdcfltn\
DevicePointer: 0xfffffa800408c580, DeviceName: Unknown, DriverName: \Driver\ACPI\
DevicePointer: 0xfffffa8004092060, DeviceName: \Device\Ide\IdeDeviceP0T0L0-0\, DriverName: \Driver\atapi\
------------ End ----------
Alternate DeviceName: \Device\Harddisk0\DR0\, DriverName: \Driver\Disk\
Upper DeviceData: 0x0, 0x0, 0x0
Lower DeviceData: 0x0, 0x0, 0x0
<<<3>>>
Volume: C:
File system type: NTFS
SectorSize = 512, ClusterSize = 4096, MFTRecordSize = 1024, MFTIndexSize = 4096 bytes
<<<2>>>
<<<3>>>
Volume: C:
File system type: NTFS
SectorSize = 512, ClusterSize = 4096, MFTRecordSize = 1024, MFTIndexSize = 4096 bytes
Scanning drivers directory: C:\WINDOWS\SYSTEM32\drivers...
Done!
Drive 0
This is a System drive
Scanning MBR on drive 0...
Inspecting partition table:
MBR Signature: 55AA
Disk Signature: C0EC9E23
Partition information:
Partition 0 type is Other (0x27)
Partition is NOT ACTIVE.
Partition starts at LBA: 2048 Numsec = 12697600
Partition is not bootable
Partition file system is NTFS
Partition 1 type is Primary (0x7)
Partition is ACTIVE.
Partition starts at LBA: 12699648 Numsec = 614400
Partition is bootable
Partition file system is NTFS
Partition 2 type is Primary (0x7)
Partition is NOT ACTIVE.
Partition starts at LBA: 13314048 Numsec = 611826352
Partition is not bootable
Partition file system is NTFS
Partition 3 type is Empty (0x0)
Partition is NOT ACTIVE.
Partition starts at LBA: 0 Numsec = 0
Partition is not bootable
Disk Size: 320072933376 bytes
Sector size: 512 bytes
Done!
Physical Sector Size: 512
Drive: 1, DevicePointer: 0xfffffa8003b62790, DeviceName: \Device\Harddisk1\DR1\, DriverName: \Driver\Disk\
--------- Disk Stack ------
DevicePointer: 0xfffffa8003b4e040, DeviceName: Unknown, DriverName: \Driver\partmgr\
DevicePointer: 0xfffffa8003b62790, DeviceName: \Device\Harddisk1\DR1\, DriverName: \Driver\Disk\
DevicePointer: 0xfffffa8003b89b60, DeviceName: \Device\0000007b\, DriverName: \Driver\USBSTOR\
------------ End ----------
Alternate DeviceName: \Device\Harddisk1\DR1\, DriverName: \Driver\Disk\
Upper DeviceData: 0x0, 0x0, 0x0
Lower DeviceData: 0x0, 0x0, 0x0
Drive 1
Scanning MBR on drive 1...
Inspecting partition table:
MBR Signature: 55AA
Disk Signature: 0
Partition information:
Partition 0 type is Other (0xc)
Partition is NOT ACTIVE.
Partition starts at LBA: 64 Numsec = 61439936
Partition is not bootable
Partition file system is FAT32
Partition 1 type is Empty (0x0)
Partition is NOT ACTIVE.
Partition starts at LBA: 0 Numsec = 0
Partition is not bootable
Partition 2 type is Empty (0x0)
Partition is NOT ACTIVE.
Partition starts at LBA: 0 Numsec = 0
Partition is not bootable
Partition 3 type is Empty (0x0)
Partition is NOT ACTIVE.
Partition starts at LBA: 0 Numsec = 0
Partition is not bootable
Disk Size: 31457280000 bytes
Sector size: 512 bytes
Done!
Infected: C:\Users\user.user-PC\Desktop\XMediaRecode3358\Sony Vegas Pro 9 + Crack and KeyGen\crack vegas 9\Keygen.exe --> [Trojan.Agent]
Infected: C:\Users\user.user-PC\Desktop\XMediaRecode3358\Sony Vegas Pro 9 + Crack and KeyGen\crack vegas 9\Sony_VegasPro8_DVDArchitect45_SoundForge9_CRACK.exe --> [RiskWare.Tool.HCK]
Infected: C:\Users\user.user-PC\AppData\Roaming\msconfig.ini --> [Trojan.Agent]
Scan finished
Creating System Restore point...
Could not create restore point...
Cleaning up...
Removal successful. No system shutdown is required.
=======================================
Removal queue found; removal started
Removing C:\ProgramData\Malwarebytes' Anti-Malware (portable)\MBR-0-i.mbam...
Removing C:\ProgramData\Malwarebytes' Anti-Malware (portable)\VBR-0-0-2048-i.mbam...
Removing C:\ProgramData\Malwarebytes' Anti-Malware (portable)\VBR-0-1-12699648-i.mbam...
Removing C:\ProgramData\Malwarebytes' Anti-Malware (portable)\VBR-0-2-13314048-i.mbam...
Removing C:\ProgramData\Malwarebytes' Anti-Malware (portable)\MBR-0-r.mbam...
Removing C:\ProgramData\Malwarebytes' Anti-Malware (portable)\MBR-1-i.mbam...
Removing C:\ProgramData\Malwarebytes' Anti-Malware (portable)\VBR-1-0-64-i.mbam...
Removing C:\ProgramData\Malwarebytes' Anti-Malware (portable)\MBR-1-r.mbam...
Removal finishedEjecuta la herramienta de limpieza de Malwarebytes del link
Sacame dos nuevos informes con Fabar
Ok, ¿Fabar?, te refieres al MBAR, no?
Pego del MBAR despues de pasar la herramienta de eliminación de Malwarebytes
Malwarebytes Anti-Rootkit BETA 1.10.3.1001
www.malwarebytes.org
Database version:
main: v2020.04.21.05
rootkit: v2020.04.21.05
Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 10.0.9200.16660
user :: USER-PC [administrator]
21/04/2020 19:26:09
mbar-log-2020-04-21 (19-26-09).txt
Scan type: Quick scan
Scan options enabled: Anti-Rootkit | Drivers | MBR | Physical Sectors | Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken
Scan options disabled:
Objects scanned: 199080
Time elapsed: 17 minute(s), 33 second(s)
Memory Processes Detected: 0
(No malicious items detected)
Memory Modules Detected: 0
(No malicious items detected)
Registry Keys Detected: 0
(No malicious items detected)
Registry Values Detected: 0
(No malicious items detected)
Registry Data Items Detected: 0
(No malicious items detected)
Folders Detected: 0
(No malicious items detected)
Files Detected: 2
C:\Users\user.user-PC\Desktop\XMediaRecode3358\Sony Vegas Pro 9 + Crack and KeyGen\crack vegas 9\Keygen.exe (Trojan.Agent) -> No action taken. [50298f2bd8fe270f0b820668748d23dd]
C:\Users\user.user-PC\Desktop\XMediaRecode3358\Sony Vegas Pro 9 + Crack and KeyGen\crack vegas 9\Sony_VegasPro8_DVDArchitect45_SoundForge9_CRACK.exe (RiskWare.Tool.HCK) -> No action taken. [caaf16a45482e155ebdefdb95da41be5]
Physical Sectors Detected: 0
(No malicious items detected)
(end)
---------------------------------------
Malwarebytes Anti-Rootkit BETA 1.10.3.1001
(c) Malwarebytes Corporation 2011-2012
OS version: 6.1.7601 Windows 7 Service Pack 1 x64
Account is Administrative
Internet Explorer version: 10.0.9200.16660
File system is: NTFS
Disk drives: C:\ DRIVE_FIXED
CPU speed: 2.890000 GHz
Memory total: 4175847424, free: 2857291776
Downloaded database version: v2020.04.21.04
Downloaded database version: v2020.04.21.04
Downloaded database version: v2018.01.20.01
=======================================
Initializing...
Driver version: 4.3.0.15
------------ Kernel report ------------
04/21/2020 15:30:34
------------ Loaded modules -----------
\SystemRoot\system32\ntoskrnl.exe
\SystemRoot\system32\hal.dll
\SystemRoot\system32\kdcom.dll
\SystemRoot\system32\mcupdate_GenuineIntel.dll
\SystemRoot\system32\PSHED.dll
\SystemRoot\system32\CLFS.SYS
\SystemRoot\system32\CI.dll
\SystemRoot\system32\drivers\Wdf01000.sys
\SystemRoot\system32\drivers\WDFLDR.SYS
\SystemRoot\system32\drivers\ACPI.sys
\SystemRoot\system32\drivers\WMILIB.SYS
\SystemRoot\system32\drivers\msisadrv.sys
\SystemRoot\system32\drivers\pci.sys
\SystemRoot\system32\drivers\vdrvroot.sys
\SystemRoot\System32\drivers\partmgr.sys
\SystemRoot\system32\DRIVERS\compbatt.sys
\SystemRoot\system32\DRIVERS\BATTC.SYS
\SystemRoot\system32\drivers\volmgr.sys
\SystemRoot\System32\drivers\volmgrx.sys
\SystemRoot\system32\drivers\pciide.sys
\SystemRoot\system32\drivers\PCIIDEX.SYS
\SystemRoot\System32\drivers\mountmgr.sys
\SystemRoot\system32\drivers\atapi.sys
\SystemRoot\system32\drivers\ataport.SYS
\SystemRoot\system32\drivers\amdxata.sys
\SystemRoot\system32\drivers\fltmgr.sys
\SystemRoot\system32\drivers\fileinfo.sys
\SystemRoot\System32\Drivers\PxHlpa64.sys
\SystemRoot\System32\Drivers\Ntfs.sys
\SystemRoot\System32\Drivers\msrpc.sys
\SystemRoot\System32\Drivers\ksecdd.sys
\SystemRoot\System32\Drivers\cng.sys
\SystemRoot\System32\drivers\pcw.sys
\SystemRoot\System32\Drivers\Fs_Rec.sys
\SystemRoot\system32\drivers\ndis.sys
\SystemRoot\system32\drivers\NETIO.SYS
\SystemRoot\System32\Drivers\ksecpkg.sys
\SystemRoot\System32\drivers\tcpip.sys
\SystemRoot\System32\drivers\fwpkclnt.sys
\SystemRoot\system32\DRIVERS\wfplwf.sys
\SystemRoot\system32\drivers\vmstorfl.sys
\SystemRoot\system32\drivers\volsnap.sys
\SystemRoot\system32\DRIVERS\stdcfltn.sys
\SystemRoot\System32\Drivers\spldr.sys
\SystemRoot\System32\drivers\rdyboost.sys
\SystemRoot\System32\Drivers\mup.sys
\SystemRoot\System32\drivers\hwpolicy.sys
\SystemRoot\System32\DRIVERS\fvevol.sys
\SystemRoot\system32\drivers\disk.sys
\SystemRoot\system32\drivers\CLASSPNP.SYS
\SystemRoot\system32\DRIVERS\cdrom.sys
\SystemRoot\System32\Drivers\cdrbsdrv.SYS
\SystemRoot\System32\Drivers\Null.SYS
\SystemRoot\System32\Drivers\Beep.SYS
\SystemRoot\System32\drivers\vga.sys
\SystemRoot\System32\drivers\VIDEOPRT.SYS
\SystemRoot\System32\drivers\watchdog.sys
\SystemRoot\System32\DRIVERS\RDPCDD.sys
\SystemRoot\system32\drivers\rdpencdd.sys
\SystemRoot\system32\drivers\rdprefmp.sys
\SystemRoot\System32\Drivers\Msfs.SYS
\SystemRoot\System32\Drivers\Npfs.SYS
\SystemRoot\system32\DRIVERS\tdx.sys
\SystemRoot\system32\DRIVERS\TDI.SYS
\SystemRoot\system32\drivers\afd.sys
\SystemRoot\System32\DRIVERS\netbt.sys
\SystemRoot\system32\DRIVERS\pacer.sys
\SystemRoot\system32\DRIVERS\vwififlt.sys
\SystemRoot\system32\DRIVERS\netbios.sys
\SystemRoot\system32\DRIVERS\serial.sys
\SystemRoot\system32\DRIVERS\wanarp.sys
\SystemRoot\system32\DRIVERS\termdd.sys
\SystemRoot\system32\DRIVERS\rdbss.sys
\SystemRoot\system32\drivers\nsiproxy.sys
\SystemRoot\system32\DRIVERS\mssmbios.sys
\SystemRoot\System32\drivers\discache.sys
\SystemRoot\system32\drivers\csc.sys
\SystemRoot\System32\Drivers\dfsc.sys
\SystemRoot\system32\DRIVERS\blbdrive.sys
\SystemRoot\system32\DRIVERS\tunnel.sys
\SystemRoot\system32\DRIVERS\igdkmd64.sys
\SystemRoot\System32\drivers\dxgkrnl.sys
\SystemRoot\System32\drivers\dxgmms1.sys
\SystemRoot\system32\DRIVERS\iusb3xhc.sys
\SystemRoot\system32\DRIVERS\USBD.SYS
\SystemRoot\system32\DRIVERS\serenum.sys
\SystemRoot\system32\DRIVERS\e1c62x64.sys
\SystemRoot\system32\DRIVERS\usbehci.sys
\SystemRoot\system32\DRIVERS\USBPORT.SYS
\SystemRoot\system32\DRIVERS\HDAudBus.sys
\SystemRoot\system32\DRIVERS\NETwsw00.sys
\SystemRoot\system32\DRIVERS\vwifibus.sys
\SystemRoot\system32\DRIVERS\sdbus.sys
\SystemRoot\system32\DRIVERS\i8042prt.sys
\SystemRoot\system32\DRIVERS\kbdclass.sys
\SystemRoot\system32\DRIVERS\mouclass.sys
\SystemRoot\system32\DRIVERS\parport.sys
\SystemRoot\system32\DRIVERS\ST_Accel.sys
\SystemRoot\system32\DRIVERS\intelppm.sys
\SystemRoot\system32\DRIVERS\wmiacpi.sys
\SystemRoot\system32\DRIVERS\CmBatt.sys
\SystemRoot\system32\DRIVERS\CompositeBus.sys
\SystemRoot\system32\DRIVERS\AgileVpn.sys
\SystemRoot\system32\DRIVERS\rasl2tp.sys
\SystemRoot\system32\DRIVERS\ndistapi.sys
\SystemRoot\system32\DRIVERS\ndiswan.sys
\SystemRoot\system32\DRIVERS\raspppoe.sys
\SystemRoot\system32\DRIVERS\raspptp.sys
\SystemRoot\system32\DRIVERS\rassstp.sys
\SystemRoot\system32\DRIVERS\rdpbus.sys
\SystemRoot\system32\DRIVERS\swenum.sys
\SystemRoot\system32\DRIVERS\ks.sys
\SystemRoot\system32\DRIVERS\umbus.sys
\SystemRoot\system32\DRIVERS\usbhub.sys
\SystemRoot\System32\Drivers\NDProxy.SYS
\SystemRoot\system32\DRIVERS\iusb3hub.sys
\SystemRoot\system32\DRIVERS\stwrt64.sys
\SystemRoot\system32\DRIVERS\portcls.sys
\SystemRoot\system32\DRIVERS\drmk.sys
\SystemRoot\system32\drivers\ksthunk.sys
\SystemRoot\system32\DRIVERS\IntcDAud.sys
\SystemRoot\system32\DRIVERS\udfs.sys
\SystemRoot\System32\win32k.sys
\SystemRoot\System32\drivers\Dxapi.sys
\SystemRoot\system32\DRIVERS\monitor.sys
\SystemRoot\System32\TSDDD.dll
\SystemRoot\System32\cdd.dll
\SystemRoot\System32\Drivers\crashdmp.sys
\SystemRoot\System32\Drivers\dump_dumpata.sys
\SystemRoot\System32\Drivers\dump_atapi.sys
\SystemRoot\System32\Drivers\dump_dumpfve.sys
\SystemRoot\System32\ATMFD.DLL
\SystemRoot\system32\DRIVERS\usbccgp.sys
\SystemRoot\system32\drivers\luafv.sys
\SystemRoot\System32\Drivers\cvusbdrv.sys
\SystemRoot\system32\DRIVERS\lltdio.sys
\SystemRoot\system32\DRIVERS\nwifi.sys
\SystemRoot\system32\DRIVERS\ndisuio.sys
\SystemRoot\system32\DRIVERS\rspndr.sys
\SystemRoot\system32\drivers\HTTP.sys
\SystemRoot\system32\DRIVERS\bowser.sys
\SystemRoot\System32\drivers\mpsdrv.sys
\SystemRoot\system32\DRIVERS\mrxsmb.sys
\SystemRoot\system32\DRIVERS\mrxsmb10.sys
\SystemRoot\system32\DRIVERS\mrxsmb20.sys
\SystemRoot\system32\drivers\peauth.sys
\SystemRoot\System32\Drivers\secdrv.SYS
\SystemRoot\System32\DRIVERS\srvnet.sys
\SystemRoot\System32\drivers\tcpipreg.sys
\SystemRoot\System32\DRIVERS\srv2.sys
\SystemRoot\System32\DRIVERS\srv.sys
\SystemRoot\system32\drivers\WudfPf.sys
\SystemRoot\system32\DRIVERS\WinUSB.sys
\SystemRoot\system32\DRIVERS\WUDFRd.sys
\SystemRoot\System32\DRIVERS\scfilter.sys
\SystemRoot\system32\drivers\spsys.sys
\SystemRoot\system32\DRIVERS\asyncmac.sys
\SystemRoot\system32\DRIVERS\USBSTOR.SYS
\SystemRoot\System32\Drivers\fastfat.SYS
\??\C:\Windows\system32\drivers\mbamchameleon.sys
\??\C:\Windows\system32\drivers\4195EF2C.sys
\Windows\System32\ntdll.dll
\Windows\System32\smss.exe
\Windows\System32\apisetschema.dll
\Windows\System32\autochk.exe
\Windows\System32\shell32.dll
\Windows\System32\ole32.dll
\Windows\System32\usp10.dll
\Windows\System32\shlwapi.dll
\Windows\System32\imm32.dll
\Windows\System32\user32.dll
\Windows\System32\normaliz.dll
\Windows\System32\oleaut32.dll
\Windows\System32\rpcrt4.dll
\Windows\System32\iertutil.dll
\Windows\System32\nsi.dll
\Windows\System32\gdi32.dll
\Windows\System32\psapi.dll
\Windows\System32\kernel32.dll
\Windows\System32\comdlg32.dll
\Windows\System32\imagehlp.dll
\Windows\System32\wininet.dll
\Windows\System32\difxapi.dll
\Windows\System32\sechost.dll
\Windows\System32\msctf.dll
\Windows\System32\Wldap32.dll
\Windows\System32\ws2_32.dll
\Windows\System32\advapi32.dll
\Windows\System32\clbcatq.dll
\Windows\System32\setupapi.dll
\Windows\System32\urlmon.dll
\Windows\System32\msvcrt.dll
\Windows\System32\lpk.dll
\Windows\System32\api-ms-win-downlevel-ole32-l1-1-0.dll
\Windows\System32\cfgmgr32.dll
\Windows\System32\KernelBase.dll
\Windows\System32\wintrust.dll
\Windows\System32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
\Windows\System32\crypt32.dll
\Windows\System32\api-ms-win-downlevel-normaliz-l1-1-0.dll
\Windows\System32\api-ms-win-downlevel-user32-l1-1-0.dll
\Windows\System32\devobj.dll
\Windows\System32\comctl32.dll
\Windows\System32\api-ms-win-downlevel-advapi32-l1-1-0.dll
\Windows\System32\api-ms-win-downlevel-version-l1-1-0.dll
\Windows\System32\msasn1.dll
\Windows\SysWOW64\normaliz.dll
----------- End -----------
Done!
Scan started
Database versions:
main: v2020.04.21.04
rootkit: v2020.04.21.04
<<<2>>>
Physical Sector Size: 512
Drive: 0, DevicePointer: 0xfffffa80046f1060, DeviceName: \Device\Harddisk0\DR0\, DriverName: \Driver\Disk\
--------- Disk Stack ------
DevicePointer: 0xfffffa80041c5920, DeviceName: Unknown, DriverName: \Driver\partmgr\
DevicePointer: 0xfffffa80046f1060, DeviceName: \Device\Harddisk0\DR0\, DriverName: \Driver\Disk\
DevicePointer: 0xfffffa80041c4890, DeviceName: Unknown, DriverName: \Driver\stdcfltn\
DevicePointer: 0xfffffa800408c580, DeviceName: Unknown, DriverName: \Driver\ACPI\
DevicePointer: 0xfffffa8004092060, DeviceName: \Device\Ide\IdeDeviceP0T0L0-0\, DriverName: \Driver\atapi\
------------ End ----------
Alternate DeviceName: \Device\Harddisk0\DR0\, DriverName: \Driver\Disk\
Upper DeviceData: 0x0, 0x0, 0x0
Lower DeviceData: 0x0, 0x0, 0x0
<<<3>>>
Volume: C:
File system type: NTFS
SectorSize = 512, ClusterSize = 4096, MFTRecordSize = 1024, MFTIndexSize = 4096 bytes
<<<2>>>
<<<3>>>
Volume: C:
File system type: NTFS
SectorSize = 512, ClusterSize = 4096, MFTRecordSize = 1024, MFTIndexSize = 4096 bytes
Scanning drivers directory: C:\WINDOWS\SYSTEM32\drivers...
Done!
Drive 0
This is a System drive
Scanning MBR on drive 0...
Inspecting partition table:
MBR Signature: 55AA
Disk Signature: C0EC9E23
Partition information:
Partition 0 type is Other (0x27)
Partition is NOT ACTIVE.
Partition starts at LBA: 2048 Numsec = 12697600
Partition is not bootable
Partition file system is NTFS
Partition 1 type is Primary (0x7)
Partition is ACTIVE.
Partition starts at LBA: 12699648 Numsec = 614400
Partition is bootable
Partition file system is NTFS
Partition 2 type is Primary (0x7)
Partition is NOT ACTIVE.
Partition starts at LBA: 13314048 Numsec = 611826352
Partition is not bootable
Partition file system is NTFS
Partition 3 type is Empty (0x0)
Partition is NOT ACTIVE.
Partition starts at LBA: 0 Numsec = 0
Partition is not bootable
Disk Size: 320072933376 bytes
Sector size: 512 bytes
Done!
Physical Sector Size: 512
Drive: 1, DevicePointer: 0xfffffa8003b62790, DeviceName: \Device\Harddisk1\DR1\, DriverName: \Driver\Disk\
--------- Disk Stack ------
DevicePointer: 0xfffffa8003b4e040, DeviceName: Unknown, DriverName: \Driver\partmgr\
DevicePointer: 0xfffffa8003b62790, DeviceName: \Device\Harddisk1\DR1\, DriverName: \Driver\Disk\
DevicePointer: 0xfffffa8003b89b60, DeviceName: \Device\0000007b\, DriverName: \Driver\USBSTOR\
------------ End ----------
Alternate DeviceName: \Device\Harddisk1\DR1\, DriverName: \Driver\Disk\
Upper DeviceData: 0x0, 0x0, 0x0
Lower DeviceData: 0x0, 0x0, 0x0
Drive 1
Scanning MBR on drive 1...
Inspecting partition table:
MBR Signature: 55AA
Disk Signature: 0
Partition information:
Partition 0 type is Other (0xc)
Partition is NOT ACTIVE.
Partition starts at LBA: 64 Numsec = 61439936
Partition is not bootable
Partition file system is FAT32
Partition 1 type is Empty (0x0)
Partition is NOT ACTIVE.
Partition starts at LBA: 0 Numsec = 0
Partition is not bootable
Partition 2 type is Empty (0x0)
Partition is NOT ACTIVE.
Partition starts at LBA: 0 Numsec = 0
Partition is not bootable
Partition 3 type is Empty (0x0)
Partition is NOT ACTIVE.
Partition starts at LBA: 0 Numsec = 0
Partition is not bootable
Disk Size: 31457280000 bytes
Sector size: 512 bytes
Done!
Infected: C:\Users\user.user-PC\Desktop\XMediaRecode3358\Sony Vegas Pro 9 + Crack and KeyGen\crack vegas 9\Keygen.exe --> [Trojan.Agent]
Infected: C:\Users\user.user-PC\Desktop\XMediaRecode3358\Sony Vegas Pro 9 + Crack and KeyGen\crack vegas 9\Sony_VegasPro8_DVDArchitect45_SoundForge9_CRACK.exe --> [RiskWare.Tool.HCK]
Infected: C:\Users\user.user-PC\AppData\Roaming\msconfig.ini --> [Trojan.Agent]
Scan finished
Creating System Restore point...
Could not create restore point...
Cleaning up...
Removal successful. No system shutdown is required.
=======================================
Removal queue found; removal started
Removing C:\ProgramData\Malwarebytes' Anti-Malware (portable)\MBR-0-i.mbam...
Removing C:\ProgramData\Malwarebytes' Anti-Malware (portable)\VBR-0-0-2048-i.mbam...
Removing C:\ProgramData\Malwarebytes' Anti-Malware (portable)\VBR-0-1-12699648-i.mbam...
Removing C:\ProgramData\Malwarebytes' Anti-Malware (portable)\VBR-0-2-13314048-i.mbam...
Removing C:\ProgramData\Malwarebytes' Anti-Malware (portable)\MBR-0-r.mbam...
Removing C:\ProgramData\Malwarebytes' Anti-Malware (portable)\MBR-1-i.mbam...
Removing C:\ProgramData\Malwarebytes' Anti-Malware (portable)\VBR-1-0-64-i.mbam...
Removing C:\ProgramData\Malwarebytes' Anti-Malware (portable)\MBR-1-r.mbam...
Removal finished
---------------------------------------
Malwarebytes Anti-Rootkit BETA 1.10.3.1001
(c) Malwarebytes Corporation 2011-2012
OS version: 6.1.7601 Windows 7 Service Pack 1 x64
Account is Administrative
Internet Explorer version: 10.0.9200.16660
File system is: NTFS
Disk drives: C:\ DRIVE_FIXED
CPU speed: 2.890000 GHz
Memory total: 4175847424, free: 2909016064
Downloaded database version: v2020.04.21.05
Downloaded database version: v2020.04.21.05
Downloaded database version: v2018.01.20.01
=======================================
Initializing...
Driver version: 4.3.0.15
------------ Kernel report ------------
04/21/2020 19:26:02
------------ Loaded modules -----------
\SystemRoot\system32\ntoskrnl.exe
\SystemRoot\system32\hal.dll
\SystemRoot\system32\kdcom.dll
\SystemRoot\system32\mcupdate_GenuineIntel.dll
\SystemRoot\system32\PSHED.dll
\SystemRoot\system32\CLFS.SYS
\SystemRoot\system32\CI.dll
\SystemRoot\system32\drivers\Wdf01000.sys
\SystemRoot\system32\drivers\WDFLDR.SYS
\SystemRoot\system32\drivers\ACPI.sys
\SystemRoot\system32\drivers\WMILIB.SYS
\SystemRoot\system32\drivers\msisadrv.sys
\SystemRoot\system32\drivers\pci.sys
\SystemRoot\system32\drivers\vdrvroot.sys
\SystemRoot\System32\drivers\partmgr.sys
\SystemRoot\system32\DRIVERS\compbatt.sys
\SystemRoot\system32\DRIVERS\BATTC.SYS
\SystemRoot\system32\drivers\volmgr.sys
\SystemRoot\System32\drivers\volmgrx.sys
\SystemRoot\system32\drivers\pciide.sys
\SystemRoot\system32\drivers\PCIIDEX.SYS
\SystemRoot\System32\drivers\mountmgr.sys
\SystemRoot\system32\drivers\atapi.sys
\SystemRoot\system32\drivers\ataport.SYS
\SystemRoot\system32\drivers\amdxata.sys
\SystemRoot\system32\drivers\fltmgr.sys
\SystemRoot\system32\drivers\fileinfo.sys
\SystemRoot\System32\Drivers\PxHlpa64.sys
\SystemRoot\System32\Drivers\Ntfs.sys
\SystemRoot\System32\Drivers\msrpc.sys
\SystemRoot\System32\Drivers\ksecdd.sys
\SystemRoot\System32\Drivers\cng.sys
\SystemRoot\System32\drivers\pcw.sys
\SystemRoot\System32\Drivers\Fs_Rec.sys
\SystemRoot\system32\drivers\ndis.sys
\SystemRoot\system32\drivers\NETIO.SYS
\SystemRoot\System32\Drivers\ksecpkg.sys
\SystemRoot\System32\drivers\tcpip.sys
\SystemRoot\System32\drivers\fwpkclnt.sys
\SystemRoot\system32\DRIVERS\wfplwf.sys
\SystemRoot\system32\drivers\vmstorfl.sys
\SystemRoot\system32\drivers\volsnap.sys
\SystemRoot\system32\DRIVERS\stdcfltn.sys
\SystemRoot\System32\Drivers\spldr.sys
\SystemRoot\System32\drivers\rdyboost.sys
\SystemRoot\System32\Drivers\mup.sys
\SystemRoot\System32\drivers\hwpolicy.sys
\SystemRoot\System32\DRIVERS\fvevol.sys
\SystemRoot\system32\drivers\disk.sys
\SystemRoot\system32\drivers\CLASSPNP.SYS
\SystemRoot\system32\DRIVERS\cdrom.sys
\SystemRoot\System32\Drivers\cdrbsdrv.SYS
\SystemRoot\System32\Drivers\Null.SYS
\SystemRoot\System32\Drivers\Beep.SYS
\SystemRoot\System32\drivers\vga.sys
\SystemRoot\System32\drivers\VIDEOPRT.SYS
\SystemRoot\System32\drivers\watchdog.sys
\SystemRoot\System32\DRIVERS\RDPCDD.sys
\SystemRoot\system32\drivers\rdpencdd.sys
\SystemRoot\system32\drivers\rdprefmp.sys
\SystemRoot\System32\Drivers\Msfs.SYS
\SystemRoot\System32\Drivers\Npfs.SYS
\SystemRoot\system32\DRIVERS\tdx.sys
\SystemRoot\system32\DRIVERS\TDI.SYS
\SystemRoot\system32\drivers\afd.sys
\SystemRoot\System32\DRIVERS\netbt.sys
\SystemRoot\system32\DRIVERS\pacer.sys
\SystemRoot\system32\DRIVERS\vwififlt.sys
\SystemRoot\system32\DRIVERS\netbios.sys
\SystemRoot\system32\DRIVERS\serial.sys
\SystemRoot\system32\DRIVERS\wanarp.sys
\SystemRoot\system32\DRIVERS\termdd.sys
\SystemRoot\system32\DRIVERS\rdbss.sys
\SystemRoot\system32\drivers\nsiproxy.sys
\SystemRoot\system32\DRIVERS\mssmbios.sys
\SystemRoot\System32\drivers\discache.sys
\SystemRoot\system32\drivers\csc.sys
\SystemRoot\System32\Drivers\dfsc.sys
\SystemRoot\system32\DRIVERS\blbdrive.sys
\SystemRoot\system32\DRIVERS\tunnel.sys
\SystemRoot\system32\DRIVERS\igdkmd64.sys
\SystemRoot\System32\drivers\dxgkrnl.sys
\SystemRoot\System32\drivers\dxgmms1.sys
\SystemRoot\system32\DRIVERS\iusb3xhc.sys
\SystemRoot\system32\DRIVERS\USBD.SYS
\SystemRoot\system32\DRIVERS\serenum.sys
\SystemRoot\system32\DRIVERS\e1c62x64.sys
\SystemRoot\system32\DRIVERS\usbehci.sys
\SystemRoot\system32\DRIVERS\USBPORT.SYS
\SystemRoot\system32\DRIVERS\HDAudBus.sys
\SystemRoot\system32\DRIVERS\NETwsw00.sys
\SystemRoot\system32\DRIVERS\vwifibus.sys
\SystemRoot\system32\DRIVERS\sdbus.sys
\SystemRoot\system32\DRIVERS\i8042prt.sys
\SystemRoot\system32\DRIVERS\kbdclass.sys
\SystemRoot\system32\DRIVERS\mouclass.sys
\SystemRoot\system32\DRIVERS\parport.sys
\SystemRoot\system32\DRIVERS\ST_Accel.sys
\SystemRoot\system32\DRIVERS\intelppm.sys
\SystemRoot\system32\DRIVERS\wmiacpi.sys
\SystemRoot\system32\DRIVERS\CmBatt.sys
\SystemRoot\system32\DRIVERS\CompositeBus.sys
\SystemRoot\system32\DRIVERS\AgileVpn.sys
\SystemRoot\system32\DRIVERS\rasl2tp.sys
\SystemRoot\system32\DRIVERS\ndistapi.sys
\SystemRoot\system32\DRIVERS\ndiswan.sys
\SystemRoot\system32\DRIVERS\raspppoe.sys
\SystemRoot\system32\DRIVERS\raspptp.sys
\SystemRoot\system32\DRIVERS\rassstp.sys
\SystemRoot\system32\DRIVERS\rdpbus.sys
\SystemRoot\system32\DRIVERS\swenum.sys
\SystemRoot\system32\DRIVERS\ks.sys
\SystemRoot\system32\DRIVERS\umbus.sys
\SystemRoot\system32\DRIVERS\usbhub.sys
\SystemRoot\System32\Drivers\NDProxy.SYS
\SystemRoot\system32\DRIVERS\iusb3hub.sys
\SystemRoot\system32\DRIVERS\stwrt64.sys
\SystemRoot\system32\DRIVERS\portcls.sys
\SystemRoot\system32\DRIVERS\drmk.sys
\SystemRoot\system32\drivers\ksthunk.sys
\SystemRoot\system32\DRIVERS\IntcDAud.sys
\SystemRoot\system32\DRIVERS\udfs.sys
\SystemRoot\System32\win32k.sys
\SystemRoot\System32\drivers\Dxapi.sys
\SystemRoot\system32\DRIVERS\monitor.sys
\SystemRoot\System32\TSDDD.dll
\SystemRoot\System32\cdd.dll
\SystemRoot\System32\Drivers\crashdmp.sys
\SystemRoot\System32\Drivers\dump_dumpata.sys
\SystemRoot\System32\Drivers\dump_atapi.sys
\SystemRoot\System32\Drivers\dump_dumpfve.sys
\SystemRoot\System32\ATMFD.DLL
\SystemRoot\system32\DRIVERS\USBSTOR.SYS
\SystemRoot\system32\drivers\luafv.sys
\SystemRoot\system32\DRIVERS\usbccgp.sys
\SystemRoot\System32\Drivers\cvusbdrv.sys
\SystemRoot\system32\DRIVERS\lltdio.sys
\SystemRoot\system32\DRIVERS\nwifi.sys
\SystemRoot\system32\DRIVERS\ndisuio.sys
\SystemRoot\system32\DRIVERS\rspndr.sys
\SystemRoot\system32\drivers\HTTP.sys
\SystemRoot\system32\DRIVERS\bowser.sys
\SystemRoot\System32\drivers\mpsdrv.sys
\SystemRoot\system32\DRIVERS\mrxsmb.sys
\SystemRoot\system32\DRIVERS\mrxsmb10.sys
\SystemRoot\system32\DRIVERS\mrxsmb20.sys
\SystemRoot\System32\Drivers\fastfat.SYS
\SystemRoot\system32\drivers\peauth.sys
\SystemRoot\System32\Drivers\secdrv.SYS
\SystemRoot\System32\DRIVERS\srvnet.sys
\SystemRoot\System32\drivers\tcpipreg.sys
\SystemRoot\System32\DRIVERS\srv2.sys
\SystemRoot\System32\DRIVERS\srv.sys
\SystemRoot\system32\drivers\WudfPf.sys
\SystemRoot\system32\DRIVERS\WinUSB.sys
\SystemRoot\system32\DRIVERS\WUDFRd.sys
\SystemRoot\System32\DRIVERS\scfilter.sys
\SystemRoot\system32\drivers\spsys.sys
\SystemRoot\system32\DRIVERS\asyncmac.sys
\??\C:\Windows\system32\drivers\mbamchameleon.sys
\??\C:\Windows\system32\drivers\2146D79C.sys
\Windows\System32\ntdll.dll
\Windows\System32\smss.exe
\Windows\System32\apisetschema.dll
\Windows\System32\autochk.exe
\Windows\System32\sechost.dll
\Windows\System32\wininet.dll
\Windows\System32\normaliz.dll
\Windows\System32\gdi32.dll
\Windows\System32\usp10.dll
\Windows\System32\urlmon.dll
\Windows\System32\msctf.dll
\Windows\System32\psapi.dll
\Windows\System32\ws2_32.dll
\Windows\System32\iertutil.dll
\Windows\System32\difxapi.dll
\Windows\System32\clbcatq.dll
\Windows\System32\user32.dll
\Windows\System32\nsi.dll
\Windows\System32\oleaut32.dll
\Windows\System32\shell32.dll
\Windows\System32\shlwapi.dll
\Windows\System32\ole32.dll
\Windows\System32\setupapi.dll
\Windows\System32\Wldap32.dll
\Windows\System32\kernel32.dll
\Windows\System32\imm32.dll
\Windows\System32\advapi32.dll
\Windows\System32\rpcrt4.dll
\Windows\System32\comdlg32.dll
\Windows\System32\imagehlp.dll
\Windows\System32\msvcrt.dll
\Windows\System32\lpk.dll
\Windows\System32\api-ms-win-downlevel-user32-l1-1-0.dll
\Windows\System32\api-ms-win-downlevel-ole32-l1-1-0.dll
\Windows\System32\api-ms-win-downlevel-version-l1-1-0.dll
\Windows\System32\api-ms-win-downlevel-advapi32-l1-1-0.dll
\Windows\System32\cfgmgr32.dll
\Windows\System32\api-ms-win-downlevel-normaliz-l1-1-0.dll
\Windows\System32\wintrust.dll
\Windows\System32\crypt32.dll
\Windows\System32\KernelBase.dll
\Windows\System32\devobj.dll
\Windows\System32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
\Windows\System32\comctl32.dll
\Windows\System32\msasn1.dll
\Windows\SysWOW64\normaliz.dll
----------- End -----------
Done!
Scan started
Database versions:
main: v2020.04.21.05
rootkit: v2020.04.21.05
<<<2>>>
Physical Sector Size: 512
Drive: 0, DevicePointer: 0xfffffa80046f0060, DeviceName: \Device\Harddisk0\DR0\, DriverName: \Driver\Disk\
--------- Disk Stack ------
DevicePointer: 0xfffffa80046f0b90, DeviceName: Unknown, DriverName: \Driver\partmgr\
DevicePointer: 0xfffffa80046f0060, DeviceName: \Device\Harddisk0\DR0\, DriverName: \Driver\Disk\
DevicePointer: 0xfffffa80041c3af0, DeviceName: Unknown, DriverName: \Driver\stdcfltn\
DevicePointer: 0xfffffa800408f520, DeviceName: Unknown, DriverName: \Driver\ACPI\
DevicePointer: 0xfffffa8004095060, DeviceName: \Device\Ide\IdeDeviceP0T0L0-0\, DriverName: \Driver\atapi\
------------ End ----------
Alternate DeviceName: \Device\Harddisk0\DR0\, DriverName: \Driver\Disk\
Upper DeviceData: 0x0, 0x0, 0x0
Lower DeviceData: 0x0, 0x0, 0x0
<<<3>>>
Volume: C:
File system type: NTFS
SectorSize = 512, ClusterSize = 4096, MFTRecordSize = 1024, MFTIndexSize = 4096 bytes
<<<2>>>
<<<3>>>
Volume: C:
File system type: NTFS
SectorSize = 512, ClusterSize = 4096, MFTRecordSize = 1024, MFTIndexSize = 4096 bytes
Scanning drivers directory: C:\WINDOWS\SYSTEM32\drivers...
Done!
Drive 0
This is a System drive
Scanning MBR on drive 0...
Inspecting partition table:
MBR Signature: 55AA
Disk Signature: C0EC9E23
Partition information:
Partition 0 type is Other (0x27)
Partition is NOT ACTIVE.
Partition starts at LBA: 2048 Numsec = 12697600
Partition is not bootable
Partition file system is NTFS
Partition 1 type is Primary (0x7)
Partition is ACTIVE.
Partition starts at LBA: 12699648 Numsec = 614400
Partition is bootable
Partition file system is NTFS
Partition 2 type is Primary (0x7)
Partition is NOT ACTIVE.
Partition starts at LBA: 13314048 Numsec = 611826352
Partition is not bootable
Partition file system is NTFS
Partition 3 type is Empty (0x0)
Partition is NOT ACTIVE.
Partition starts at LBA: 0 Numsec = 0
Partition is not bootable
Disk Size: 320072933376 bytes
Sector size: 512 bytes
Done!
Physical Sector Size: 512
Drive: 1, DevicePointer: 0xfffffa8005c6e060, DeviceName: \Device\Harddisk1\DR1\, DriverName: \Driver\Disk\
--------- Disk Stack ------
DevicePointer: 0xfffffa8005c6c040, DeviceName: Unknown, DriverName: \Driver\partmgr\
DevicePointer: 0xfffffa8005c6e060, DeviceName: \Device\Harddisk1\DR1\, DriverName: \Driver\Disk\
DevicePointer: 0xfffffa8004951a10, DeviceName: \Device\00000076\, DriverName: \Driver\USBSTOR\
------------ End ----------
Alternate DeviceName: \Device\Harddisk1\DR1\, DriverName: \Driver\Disk\
Upper DeviceData: 0x0, 0x0, 0x0
Lower DeviceData: 0x0, 0x0, 0x0
Drive 1
Scanning MBR on drive 1...
Inspecting partition table:
MBR Signature: 55AA
Disk Signature: 0
Partition information:
Partition 0 type is Other (0xc)
Partition is NOT ACTIVE.
Partition starts at LBA: 64 Numsec = 61439936
Partition is not bootable
Partition file system is FAT32
Partition 1 type is Empty (0x0)
Partition is NOT ACTIVE.
Partition starts at LBA: 0 Numsec = 0
Partition is not bootable
Partition 2 type is Empty (0x0)
Partition is NOT ACTIVE.
Partition starts at LBA: 0 Numsec = 0
Partition is not bootable
Partition 3 type is Empty (0x0)
Partition is NOT ACTIVE.
Partition starts at LBA: 0 Numsec = 0
Partition is not bootable
Disk Size: 31457280000 bytes
Sector size: 512 bytes
Done!
Infected: C:\Users\user.user-PC\Desktop\XMediaRecode3358\Sony Vegas Pro 9 + Crack and KeyGen\crack vegas 9\Keygen.exe --> [Trojan.Agent]
Infected: C:\Users\user.user-PC\Desktop\XMediaRecode3358\Sony Vegas Pro 9 + Crack and KeyGen\crack vegas 9\Sony_VegasPro8_DVDArchitect45_SoundForge9_CRACK.exe --> [RiskWare.Tool.HCK]
Scan finished
Creating System Restore point...
Could not create restore point...
Cleaning up...
Removal successful. No system shutdown is required.
=======================================
Removal queue found; removal started
Removing C:\ProgramData\Malwarebytes' Anti-Malware (portable)\MBR-0-i.mbam...
Removing C:\ProgramData\Malwarebytes' Anti-Malware (portable)\VBR-0-0-2048-i.mbam...
Removing C:\ProgramData\Malwarebytes' Anti-Malware (portable)\VBR-0-1-12699648-i.mbam...
Removing C:\ProgramData\Malwarebytes' Anti-Malware (portable)\VBR-0-2-13314048-i.mbam...
Removing C:\ProgramData\Malwarebytes' Anti-Malware (portable)\MBR-0-r.mbam...
Removing C:\ProgramData\Malwarebytes' Anti-Malware (portable)\MBR-1-i.mbam...
Removing C:\ProgramData\Malwarebytes' Anti-Malware (portable)\VBR-1-0-64-i.mbam...
Removing C:\ProgramData\Malwarebytes' Anti-Malware (portable)\MBR-1-r.mbam...
Removal finishedNo… Me refería a Fabar …Frst.exe… mira mi primera respuesta del tema
Hola, pego los dos informes del Frst.
Resultado del análisis realizado por Farbar Recovery Scan Tool (FRST) (x64) Versión: 20-04-2020
Ejecutado por user (administrador) sobre USER-PC (Dell Inc. Latitude E6430) (22-04-2020 10:36:56)
Ejecutado desde C:\Users\user.user-PC\Desktop
Perfiles cargados: user (Perfiles disponibles: user)
Platform: Windows 7 Professional Service Pack 1 (X64) Idioma: Español (España, internacional)
Internet Explorer Versión 10 (Navegador predeterminado no detectado!)
Modo de Inicio: Normal
Tutorial para Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Procesos (Lista blanca) =================
(Si una entrada es incluida en el fixlist, el proceso será cerrado. El archivo no será movido.)
() [Archivo no firmado] C:\Program Files (x86)\honestech\honestech TVR 2.5\scheduleTV.exe
(Adobe Inc. -> Adobe Systems) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <8>
(Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(Microsoft Windows Hardware Compatibility Publisher -> IDT, Inc.) C:\Program Files\IDT\WDM\stacsv64.exe
(Microsoft Windows Hardware Compatibility Publisher -> IDT, Inc.) C:\Program Files\IDT\WDM\sttray64.exe
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(SOURCENEXT) [Archivo no firmado] C:\Windows\SysWOW64\bgsvcgen.exe
==================== Registro (Lista blanca) ===================
(Si una entrada es incluida en el fixlist, el elemento del registro será restaurado a su valor predeterminado o será eliminado. El archivo no será movido.)
HKLM\...\Run: [SysTrayApp] => C:\Program Files\IDT\WDM\sttray64.exe [1703424 2013-08-16] (Microsoft Windows Hardware Compatibility Publisher -> IDT, Inc.)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [508104 2015-10-30] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [645456 2019-04-01] (Oracle America, Inc. -> Oracle Corporation)
HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-09-13] (Apple Inc. -> Apple Inc.)
HKU\S-1-5-21-420265182-739296544-3490084199-1000\...\Run: [GoogleChromeAutoLaunch_AD11F3D0D76545F58B8FAD1737654E65] => "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --no-startup-window /prefetch:5
HKU\S-1-5-21-420265182-739296544-3490084199-1000\...\Run: [TomTomHOME.exe] => C:\Program Files\TomTom HOME\TTHOMERunner.exe [332288 2019-12-17] (TomTom) [Archivo no firmado]
HKU\S-1-5-21-420265182-739296544-3490084199-1000\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [22245560 2020-03-19] (Piriform Software Ltd -> Piriform Software Ltd)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\80.0.3987.122\Installer\chrmstp.exe [2020-03-01] (Google LLC -> Google LLC)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{30C521FB-255B-46C8-9F0D-EE5AE371C9AA}] -> "C:\Program Files (x86)\AVAST Software\Browser\Application\75.1.1528.100\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> "C:\Program Files (x86)\Google\Chrome\Application\50.0.2661.102\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --multi-install --chrome
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\TVR Scheduler.lnk [2018-02-04]
ShortcutTarget: TVR Scheduler.lnk -> C:\Program Files (x86)\honestech\honestech TVR 2.5\scheduleTV.exe () [Archivo no firmado]
==================== Tareas programadas (Lista blanca) ============
(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)
Task: {012DC367-90C6-4288-B435-3EC8D7965657} - System32\Tasks\Avast Secure Browser Heartbeat Task (Hourly) => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe (Acceso Denegado) <==== ATENCIÓN
Task: {408C5D03-33C9-48D4-8B02-DB49E69F8150} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe
Task: {6F301224-7C0A-4AEF-A1CE-0A975F7F806C} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154440 2016-05-19] (Google Inc -> Google Inc.)
Task: {AD6C7C2D-5460-4A13-B1DB-BF61C25BA0FD} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
Task: {B831160B-E617-4DA6-97B5-C4A065B5ED6A} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe
Task: {C97F3D1C-B584-4E1E-82E9-89BD34A50E12} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154440 2016-05-19] (Google Inc -> Google Inc.)
Task: {D39E914C-EF5A-43B0-AEF7-B90CBA97BE4B} - System32\Tasks\AvastUpdateTaskMachineUA => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe
Task: {DC45F944-0ADE-4616-AF27-0B2EA9A6EF10} - System32\Tasks\AvastUpdateTaskMachineCore => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe
Task: {DF4A0280-CAC5-4F30-8520-5802EEC60869} - System32\Tasks\Avast Secure Browser Heartbeat Task (Logon) => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe (Acceso Denegado) <==== ATENCIÓN
(Si una entrada es incluida en el fixlist, el archivo de tarea (.job) será movido. El archivo que está siendo ejecutado por la tarea no será movido.)
Task: C:\Windows\Tasks\AdwCleaner_onReboot.job => C:\Users\user.user-PC\Desktop\antivirus\adwcleaner_8.0.4.exe
Task: C:\Windows\Tasks\CCleaner Update.job => C:\Program Files\CCleaner\CCUpdate.exe
==================== Internet (Lista blanca) ====================
(Si un elemento es incluido en el fixlist, y éste pertenece al registro, será eliminado o restaurado a su valor predeterminado.)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.254
Tcpip\..\Interfaces\{510BCE3E-0044-414F-B68B-C7BAE8E83AF3}: [DhcpNameServer] 80.58.61.250 80.58.61.254
Tcpip\..\Interfaces\{60BE7021-992E-4EE6-A02C-7FF27146F337}: [DhcpNameServer] 192.168.0.254
Tcpip\..\Interfaces\{A9B15CFC-29C1-41EA-8514-C98DF5850163}: [DhcpNameServer] 80.58.61.250 80.58.61.254
Tcpip\..\Interfaces\{B0C9A0F8-73B3-4852-AE73-F55EA34E793A}: [DhcpNameServer] 192.168.0.254
Internet Explorer:
==================
HKU\S-1-5-21-420265182-739296544-3490084199-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/es-es/?ocid=iehp
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_211\bin\ssv.dll [2019-05-29] (Oracle America, Inc. -> Oracle Corporation)
BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2017-06-15] (Google Inc -> Google Inc.)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_211\bin\jp2ssv.dll [2019-05-29] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2017-06-15] (Google Inc -> Google Inc.)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2017-06-15] (Google Inc -> Google Inc.)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2017-06-15] (Google Inc -> Google Inc.)
Toolbar: HKU\S-1-5-21-420265182-739296544-3490084199-1000 -> Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2017-06-15] (Google Inc -> Google Inc.)
FireFox:
========
FF DefaultProfile: b0py214a.default
FF ProfilePath: C:\Users\user.user-PC\AppData\Roaming\TomTom\HOME\Profiles\706o7j6g.default [2020-03-04]
FF Extension: (RenaultTheme) - C:\Users\user.user-PC\AppData\Roaming\TomTom\HOME\Profiles\706o7j6g.default\Extensions\[email protected] [2018-04-04] [Heredado] [no firmado]
FF Extension: (Sin Nombre) - C:\Program Files (x86)\TomTom HOME 2\xul\extensions\[email protected] [no encontrado]
FF ProfilePath: C:\Users\user.user-PC\AppData\Roaming\Mozilla\Firefox\Profiles\b0py214a.default [2020-04-20]
FF Extension: (Avast SafePrice | Comparaciones, ofertas y cupones) - C:\Users\user.user-PC\AppData\Roaming\Mozilla\Firefox\Profiles\b0py214a.default\Extensions\[email protected] [2019-04-27]
FF Extension: (Sin Nombre) - C:\Users\user.user-PC\AppData\Roaming\Mozilla\Firefox\Profiles\b0py214a.default\Extensions\[email protected] [2018-07-17] [no firmado]
FF Plugin: @java.com/DTPlugin,version=11.211.2 -> C:\Program Files\Java\jre1.8.0_211\bin\dtplugin\npDeployJava1.dll [2019-05-29] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.211.2 -> C:\Program Files\Java\jre1.8.0_211\bin\plugin2\npjp2.dll [2019-05-29] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll [Ningún archivo]
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.35.342\npGoogleUpdate3.dll [2019-11-18] (Google Inc -> Google LLC)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.35.342\npGoogleUpdate3.dll [2019-11-18] (Google Inc -> Google LLC)
FF Plugin-x32: @videolan.org/vlc,version=2.2.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-01-10] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-01-10] (VideoLAN -> VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [Ningún archivo]
Chrome:
=======
CHR Profile: C:\Users\user.user-PC\AppData\Local\Google\Chrome\User Data\Default [2020-04-22]
CHR Notifications: Default -> hxxps://www.youtube.com
CHR Extension: (Presentaciones) - C:\Users\user.user-PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2018-02-23]
CHR Extension: (Documentos) - C:\Users\user.user-PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2018-02-23]
CHR Extension: (Google Drive) - C:\Users\user.user-PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-06-15]
CHR Extension: (YouTube) - C:\Users\user.user-PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-06-15]
CHR Extension: (DSM Auto-Paste Chrome Extension) - C:\Users\user.user-PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\ecdbmkcphlholpojdglodopmlaficcji [2020-04-02]
CHR Extension: (Avast SafePrice | Comparaciones, ofertas y cupones) - C:\Users\user.user-PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2020-04-01]
CHR Extension: (Hojas de cálculo) - C:\Users\user.user-PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2018-02-23]
CHR Extension: (Documentos de Google sin conexión) - C:\Users\user.user-PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-04-21]
CHR Extension: (Avast Online Security) - C:\Users\user.user-PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2020-03-04]
CHR Extension: (Sistema de pagos de Chrome Web Store) - C:\Users\user.user-PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-15]
CHR Extension: (Gmail) - C:\Users\user.user-PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-04-15]
CHR Extension: (Chrome Media Router) - C:\Users\user.user-PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-04-08]
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki]
==================== Servicios (Lista blanca) ===================
(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)
R2 bgsvcgen; C:\Windows\SysWOW64\bgsvcgen.exe [139264 2017-10-19] (SOURCENEXT) [Archivo no firmado]
R2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [318568 2014-10-03] (Intel Corporation - pGFX -> Intel Corporation)
R2 STacSV; C:\Program Files\IDT\WDM\STacSV64.exe [339456 2013-08-16] (Microsoft Windows Hardware Compatibility Publisher -> IDT, Inc.)
S2 TTHOMEService; C:\Program Files\TomTom HOME\TTHOMEService.exe [97792 2019-04-17] (TomTom) [Archivo no firmado]
S2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-08-12] (Microsoft Windows -> Microsoft Corporation)
S2 MBAMInstallerService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMInstallerService.exe [X]
===================== Controladores (Lista blanca) ===================
(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)
R1 cdrbsdrv; C:\Windows\System32\Drivers\cdrbsdrv.sys [38944 2017-10-19] (B.H.A Corporation -> B.H.A Corporation)
S3 O2FJ2RDR; C:\Windows\System32\DRIVERS\O2FJ2w7x64.sys [195768 2013-08-16] (O2Micro -> O2Micro )
R0 PxHlpa64; C:\Windows\System32\Drivers\PxHlpa64.sys [56336 2012-06-22] (Corel Corporation -> Corel Corporation)
R0 stdcfltn; C:\Windows\System32\DRIVERS\stdcfltn.sys [22128 2011-07-15] (STMicroelectronics -> ST Microelectronics)
R3 STHDA; C:\Windows\System32\DRIVERS\stwrt64.sys [551936 2013-08-16] (Microsoft Windows Hardware Compatibility Publisher -> IDT, Inc.)
R3 ST_Accel; C:\Windows\System32\DRIVERS\ST_Accel.sys [87776 2013-04-11] (STMicroelectronics -> STMicroelectronics)
S3 X86BDA; C:\Windows\System32\DRIVERS\OEMDrv.sys [268416 2011-06-08] (Microsoft Windows Hardware Compatibility Publisher -> )
==================== NetSvcs (Lista blanca) ===================
(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)
==================== Un mes (creado) ===================
(Si una entrada es incluida en el fixlist, el archivo/carpeta será eliminado/a.)
2020-04-22 10:36 - 2020-04-22 10:36 - 000000000 ____D C:\Users\user.user-PC\Desktop\FRST-OlderVersion
2020-04-21 19:26 - 2020-04-21 19:26 - 000255928 _____ (Malwarebytes) C:\Windows\system32\Drivers\2146D79C.sys
2020-04-21 19:25 - 2020-04-21 19:25 - 000192952 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamchameleon.sys
2020-04-21 19:20 - 2020-04-21 19:21 - 000001618 _____ C:\Users\user.user-PC\Desktop\mb-clean-results.txt
2020-04-21 19:20 - 2020-04-21 19:15 - 000858912 _____ (Malwarebytes) C:\Users\user.user-PC\Desktop\mb-clean-3.1.0.1035.exe
2020-04-21 15:30 - 2020-04-21 15:30 - 000255928 _____ (Malwarebytes) C:\Windows\system32\Drivers\4195EF2C.sys
2020-04-21 15:29 - 2020-04-21 19:44 - 000000000 ____D C:\Users\user.user-PC\Desktop\mbar
2020-04-21 15:29 - 2020-04-21 19:44 - 000000000 ____D C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2020-04-21 15:29 - 2020-04-21 15:18 - 014178840 _____ (Malwarebytes Corp.) C:\Users\user.user-PC\Desktop\mbar-1.10.3.1001.exe
2020-04-20 19:12 - 2020-04-20 19:12 - 000099410 _____ C:\Users\user.user-PC\Desktop\mbst-clean-results.txt
2020-04-20 19:10 - 2020-04-20 19:10 - 002281984 _____ (Farbar) C:\Users\user.user-PC\Downloads\FRSTEnglish.exe
2020-04-20 19:10 - 2020-04-20 19:03 - 009156304 _____ C:\Users\user.user-PC\Desktop\mb-support-1.6.0.774.exe
2020-04-20 18:24 - 2020-04-20 18:24 - 000001849 _____ C:\Users\user.user-PC\Desktop\AdwCleaner[C03].txt
2020-04-20 18:23 - 2020-04-19 20:01 - 008196784 _____ (Malwarebytes) C:\Users\user.user-PC\Desktop\adwcleaner_8.0.4.exe
2020-04-20 18:22 - 2020-04-20 18:22 - 000085542 _____ C:\Users\user.user-PC\Documents\cc_20200420_182207.reg
2020-04-20 18:22 - 2020-04-20 18:22 - 000004898 _____ C:\Users\user.user-PC\Documents\cc_20200420_182226.reg
2020-04-20 18:21 - 2020-04-20 18:21 - 000344856 _____ C:\Users\user.user-PC\Documents\cc_20200420_182146.reg
2020-04-20 18:11 - 2020-04-20 18:11 - 000000318 _____ C:\Windows\Tasks\AdwCleaner_onReboot.job
2020-04-20 17:03 - 2020-04-20 17:52 - 000012484 _____ C:\Users\user.user-PC\Desktop\Fixlog.txt
2020-04-20 17:03 - 2020-04-20 17:03 - 000009989 _____ C:\Users\user.user-PC\Desktop\Fixlog1.txt
2020-04-20 17:01 - 2020-04-20 17:01 - 000000259 _____ C:\DelFix.txt
2020-04-20 17:01 - 2020-04-20 17:01 - 000000000 ____D C:\Windows\ERUNT
2020-04-20 16:56 - 2020-04-20 16:52 - 000797760 _____ C:\Users\user.user-PC\Desktop\delfix.exe
2020-04-20 15:15 - 2020-04-20 15:16 - 000026462 _____ C:\Users\user.user-PC\Desktop\Addition.txt
2020-04-20 15:14 - 2020-04-22 10:38 - 000015437 _____ C:\Users\user.user-PC\Desktop\FRST.txt
2020-04-20 15:14 - 2020-04-22 10:37 - 000000000 ____D C:\FRST
2020-04-20 15:13 - 2020-04-22 10:36 - 002281984 _____ (Farbar) C:\Users\user.user-PC\Desktop\FRST64.exe
2020-04-20 10:58 - 2020-04-21 15:30 - 000000000 ____D C:\ProgramData\Malwarebytes
2020-04-19 21:18 - 2020-04-20 19:12 - 000000000 ____D C:\Program Files\Malwarebytes
2020-04-19 21:16 - 2020-04-19 21:16 - 000000000 ____D C:\Users\user.user-PC\Desktop\rkill
2020-04-19 21:00 - 2020-04-20 18:11 - 000000000 ____D C:\AdwCleaner
2020-04-19 20:55 - 2020-04-19 20:59 - 000192354 _____ C:\TDSSKiller.3.1.0.28_19.04.2020_20.55.30_log.txt
2020-04-19 20:52 - 2020-04-19 20:54 - 000200172 _____ C:\TDSSKiller.3.1.0.28_19.04.2020_20.52.41_log.txt
2020-04-19 20:50 - 2020-04-19 20:54 - 000000000 ____D C:\TDSSKiller_Quarantine
2020-04-19 20:45 - 2020-04-19 20:50 - 000197700 _____ C:\TDSSKiller.3.1.0.28_19.04.2020_20.45.35_log.txt
2020-04-19 20:39 - 2020-04-20 18:15 - 000000982 _____ C:\Users\Public\Desktop\CCleaner.lnk
2020-04-19 20:39 - 2020-04-20 18:15 - 000000982 _____ C:\ProgramData\Desktop\CCleaner.lnk
2020-04-19 20:39 - 2020-04-19 20:39 - 000000300 ____H C:\Windows\Tasks\CCleaner Update.job
2020-04-19 20:39 - 2020-04-19 20:39 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2020-04-19 20:39 - 2020-04-19 20:39 - 000000000 ____D C:\Program Files\CCleaner
2020-04-19 20:11 - 2020-04-19 20:29 - 000000000 ____D C:\ProgramData\RogueKiller
2020-04-19 20:09 - 2020-04-20 11:43 - 000000002 _____ C:\Users\user.user-PC\Desktop\Rkill.txt
2020-04-19 16:49 - 2020-04-20 11:43 - 000000000 ____D C:\Users\user.user-PC\Desktop\antivirus
2020-04-19 15:29 - 2020-04-19 15:29 - 010899784 _____ (AVAST Software) C:\Users\user.user-PC\Downloads\avastclear.exe
2020-04-19 13:01 - 2020-04-19 13:07 - 400319472 _____ (AVG Technologies CZ, s.r.o.) C:\Users\user.user-PC\Desktop\avg_antivirus_free_setup_offline.exe
2020-04-19 12:04 - 2020-04-21 15:23 - 000000000 ____D C:\Windows\pss
2020-04-19 11:49 - 2020-04-19 11:49 - 000270160 _____ (AVG Technologies CZ, s.r.o.) C:\Users\user.user-PC\Downloads\avg_antivirus_free_setup.exe
2020-04-19 11:48 - 2020-04-19 11:48 - 003531960 _____ (Microsoft Corporation) C:\Users\user.user-PC\Downloads\VS10SP1-KB3002340-x86 (2).exe
2020-04-19 11:47 - 2020-04-19 11:47 - 003531960 _____ (Microsoft Corporation) C:\Users\user.user-PC\Downloads\VS10SP1-KB3002340-x86 (1).exe
2020-04-19 11:44 - 2020-04-19 11:44 - 003531960 _____ (Microsoft Corporation) C:\Users\user.user-PC\Downloads\VS10SP1-KB3002340-x86.exe
2020-04-18 23:02 - 2020-04-18 23:02 - 007187952 _____ (Microsoft Corporation) C:\Users\user.user-PC\Downloads\vcredist_x64 (1).exe
2020-04-18 22:57 - 2020-04-18 22:57 - 000000003 _____ C:\Users\user.user-PC\sxstrace.txt
2020-04-18 22:55 - 2020-04-18 22:56 - 000065536 _____ C:\Users\user.user-PC\sxstrace.etl
2020-04-18 22:07 - 2020-04-18 22:07 - 005207896 _____ (Microsoft Corporation) C:\Users\user.user-PC\Downloads\vcredist_x64.exe
2020-04-18 21:27 - 2020-04-18 21:25 - 000044568 _____ () C:\Windows\system32\Drivers\staport.sys
2020-04-18 20:56 - 2020-04-18 21:01 - 391812264 _____ (AVAST Software) C:\Users\user.user-PC\Downloads\avast_free_antivirus_setup_offline.exe
2020-04-18 20:54 - 2020-04-18 20:54 - 000230080 _____ (AVAST Software) C:\Users\user.user-PC\Downloads\avast_free_antivirus_setup_online (1).exe
2020-04-18 20:51 - 2020-04-18 20:51 - 000230080 _____ (AVAST Software) C:\Users\user.user-PC\Downloads\avast_free_antivirus_setup_online.exe
2020-04-18 20:48 - 2020-04-18 20:48 - 000000000 ____D C:\Users\user.user-PC\AppData\Roaming\Apple Computer
2020-04-18 20:46 - 2020-04-18 20:46 - 000000027 _____ C:\Users\user.user-PC\Desktop\contrasena adobe patcher.txt
2020-04-18 20:44 - 2020-04-18 20:44 - 000604811 _____ C:\Users\user.user-PC\Downloads\Patch Universal Adobe Painter 1.5 by Edu Lechado.zip
2020-04-18 20:23 - 2020-04-18 20:23 - 001287911 _____ C:\Users\user.user-PC\Downloads\Ece.CS6.Parche.WWW.ARTISTAPIRATA.COM (1).rar
2020-04-18 19:43 - 2020-04-18 19:43 - 000000000 ____D C:\Users\user.user-PC\Downloads\Ece.CS6.Parche.WWW.ARTISTAPIRATA.COM
2020-04-18 19:38 - 2020-04-18 19:39 - 000000000 ____D C:\Program Files\Adobe
2020-04-18 19:38 - 2020-04-18 19:38 - 000001013 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Encore CS6.lnk
2020-04-18 19:36 - 2020-04-18 19:40 - 000000000 ____D C:\Program Files\Common Files\Adobe
2020-04-18 19:35 - 2020-04-18 19:38 - 000000000 ____D C:\Users\user.user-PC\AppData\Roaming\Adobe
2020-04-18 19:35 - 2020-04-18 19:35 - 000000000 ____D C:\ProgramData\Adobe
2020-04-18 19:34 - 2020-04-18 19:34 - 000001313 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Update Management Tool.lnk
2020-04-18 19:34 - 2020-04-18 19:34 - 000001301 _____ C:\Users\Public\Desktop\Adobe Update Management Tool.lnk
2020-04-18 19:34 - 2020-04-18 19:34 - 000001301 _____ C:\ProgramData\Desktop\Adobe Update Management Tool.lnk
2020-04-18 19:25 - 2020-04-18 19:25 - 000000000 ____D C:\Users\user.user-PC\Downloads\Adobe Cleaner
2020-04-18 19:15 - 2020-04-18 19:15 - 008387101 _____ C:\Users\user.user-PC\Downloads\Adobe Cleaner.rar
2020-04-18 19:15 - 2020-04-18 19:15 - 008387101 _____ C:\Users\user.user-PC\Downloads\Adobe Cleaner (1).rar
2020-04-18 19:09 - 2020-04-18 19:09 - 000000000 ____D C:\Users\user.user-PC\Downloads\ADOBE.Update.Management.Tool.8.0.WWW.ARTISTAPIRATA.COM
2020-04-18 19:06 - 2020-04-18 19:06 - 044476792 _____ C:\Users\user.user-PC\Downloads\ADOBE.Update.Management.Tool.8.0.WWW.ARTISTAPIRATA.COM.rar
2020-04-18 19:00 - 2020-04-18 19:00 - 000000000 ____D C:\Users\user.user-PC\Downloads\Adobe.Encore.CS6.WWW.ARTISTAPIRATA.COM
2020-04-18 18:47 - 2020-04-18 18:47 - 001287911 _____ C:\Users\user.user-PC\Downloads\Ece.CS6.Parche.WWW.ARTISTAPIRATA.COM.rar
2020-04-18 18:29 - 2020-04-18 18:29 - 000000000 _____ C:\Users\user.user-PC\Downloads\Sin título.ncor
2020-04-18 18:24 - 2020-04-18 18:24 - 003266980 _____ C:\Users\user.user-PC\Downloads\Menu ArrowBDEcs6.rar
2020-04-18 18:24 - 2020-04-18 18:24 - 000000000 ____D C:\Users\user.user-PC\Downloads\Menu ArrowBDEcs6
2020-04-18 18:19 - 2020-04-18 18:19 - 000002519 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apple Software Update.lnk
2020-04-18 18:19 - 2020-04-18 18:19 - 000001852 _____ C:\Users\Public\Desktop\QuickTime Player.lnk
2020-04-18 18:19 - 2020-04-18 18:19 - 000001852 _____ C:\ProgramData\Desktop\QuickTime Player.lnk
2020-04-18 18:19 - 2020-04-18 18:19 - 000000000 ____D C:\Users\user.user-PC\AppData\Local\Apple
2020-04-18 18:19 - 2020-04-18 18:19 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime
2020-04-18 18:19 - 2020-04-18 18:19 - 000000000 ____D C:\ProgramData\Apple Computer
2020-04-18 18:19 - 2020-04-18 18:19 - 000000000 ____D C:\Program Files (x86)\QuickTime
2020-04-18 18:19 - 2020-04-18 18:19 - 000000000 ____D C:\Program Files (x86)\Apple Software Update
2020-04-18 18:18 - 2020-04-18 18:18 - 000000000 ____D C:\Users\user.user-PC\AppData\LocalLow\Apple Computer
2020-04-18 18:18 - 2020-04-18 18:18 - 000000000 ____D C:\ProgramData\Apple
2020-04-18 18:17 - 2020-04-18 18:18 - 041896256 _____ (Apple Inc.) C:\Users\user.user-PC\Downloads\QuickTimeInstaller.exe
2020-04-14 12:29 - 2020-04-14 12:29 - 000015387 _____ C:\Users\user.user-PC\Downloads\Kiss or Kill (Билл Беннетт Bill Bennett) [1997, Австралия, Триллер, драма, криминал, DVDRip] DVO + Original E [rutracker-4892125].torrent
2020-04-14 11:24 - 2020-04-14 12:06 - 000000000 ____D C:\Users\user.user-PC\Downloads\wetransfer-f0bd8a
2020-04-14 11:10 - 2020-04-14 11:10 - 000000844 _____ C:\Users\user.user-PC\Downloads\El grito de la muerte [Cry of the Banshee, Gordon Hessler, 1970][Subs Castellano][forzados][SINCR. BR USA].srt
2020-04-06 12:13 - 2020-04-06 12:34 - 731809792 _____ C:\Users\user.user-PC\Downloads\Comando.Alto.Riesgo.(dvd+vhs).[mataromorir.com].by.evildemon.&.austinpowers.avi
2020-04-02 12:42 - 2020-04-02 12:42 - 000000000 ____D C:\Users\user.user-PC\Downloads\vhs_punky
2020-04-02 11:00 - 2020-04-02 11:00 - 000000000 ____D C:\Users\user.user-PC\Downloads\v8_super_20190822
2020-04-02 10:59 - 2020-04-02 10:59 - 006152692 _____ C:\Users\user.user-PC\Downloads\v8_super_20190822.zip
2020-03-31 01:19 - 2020-03-31 01:19 - 000000000 ____D C:\Users\user.user-PC\Downloads\CC-2x2
2020-03-31 01:03 - 2020-03-31 01:03 - 000093860 _____ C:\Users\user.user-PC\Downloads\Rawhide_-_3x01_-_Incident_at_Rojo_Canyon.nzb
2020-03-30 23:50 - 2020-03-30 23:50 - 209715200 _____ C:\Users\user.user-PC\Downloads\p.alie.fro.l.a.dv5.yus.part01.rar
2020-03-30 23:43 - 2020-03-30 23:43 - 000004876 _____ C:\Users\user.user-PC\Documents\alien from la dvd.txt
2020-03-30 23:37 - 2020-03-30 23:37 - 000032178 _____ C:\Users\user.user-PC\Downloads\smlk.es - LA NOCHE DE LOS MUERTOS VIVIENTES - DISCO 2 - DVD9FULL.dlc
2020-03-30 23:37 - 2020-03-30 23:37 - 000024736 _____ C:\Users\user.user-PC\Downloads\LsX5wZF.ccf
2020-03-30 16:07 - 2020-03-30 16:07 - 000000000 ____D C:\Users\user.user-PC\AppData\Roaming\NewsLeecher
2020-03-30 16:05 - 2020-03-30 16:05 - 004825360 _____ ( ) C:\Users\user.user-PC\Downloads\nl_setup.exe
2020-03-30 16:05 - 2020-03-30 16:05 - 000001050 _____ C:\Users\Public\Desktop\NewsLeecher.lnk
2020-03-30 16:05 - 2020-03-30 16:05 - 000001050 _____ C:\ProgramData\Desktop\NewsLeecher.lnk
2020-03-30 16:05 - 2020-03-30 16:05 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NewsLeecher
2020-03-30 16:05 - 2020-03-30 16:05 - 000000000 ____D C:\Program Files (x86)\NewsLeecher
2020-03-30 15:15 - 2020-03-30 15:15 - 000000000 ____D C:\ProgramData\Mozilla
==================== Un mes (modificado) ==================
(Si una entrada es incluida en el fixlist, el archivo/carpeta será eliminado/a.)
2020-04-21 19:26 - 2009-07-14 06:45 - 000021680 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2020-04-21 19:26 - 2009-07-14 06:45 - 000021680 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2020-04-20 18:18 - 2019-04-10 13:29 - 000000000 ____D C:\Users\user.user-PC\AppData\Roaming\Media Player Classic
2020-04-20 18:18 - 2018-05-20 00:38 - 000000000 ____D C:\Windows\Minidump
2020-04-20 18:18 - 2017-08-10 22:35 - 000000000 ____D C:\Users\user.user-PC\AppData\Roaming\MPC-HC
2020-04-20 18:18 - 2017-08-08 22:27 - 000000000 ____D C:\Users\user.user-PC\AppData\Local\CrashDumps
2020-04-20 18:18 - 2017-07-22 18:17 - 000000000 ____D C:\Users\user.user-PC\AppData\Roaming\FileZilla
2020-04-20 18:18 - 2016-05-19 05:14 - 000000000 ____D C:\Windows\Panther
2020-04-20 18:18 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\inf
2020-04-20 17:16 - 2011-04-12 11:10 - 000747744 _____ C:\Windows\system32\perfh00A.dat
2020-04-20 17:16 - 2011-04-12 11:10 - 000159184 _____ C:\Windows\system32\perfc00A.dat
2020-04-20 17:16 - 2009-07-14 07:13 - 001677306 _____ C:\Windows\system32\PerfStringBackup.INI
2020-04-20 17:03 - 2018-08-21 00:05 - 000000000 ____D C:\Users\user.user-PC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\DVDFab 10 (x64)
2020-04-19 14:09 - 2019-04-10 13:23 - 000000000 ____D C:\Users\user.user-PC\Desktop\BD_Rebuilder
2020-04-19 11:59 - 2017-06-20 21:29 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sony
2020-04-18 23:02 - 2017-06-27 21:58 - 000000000 ____D C:\ProgramData\Package Cache
2020-04-18 22:57 - 2017-06-14 05:37 - 000000000 ____D C:\Users\user.user-PC
2020-04-18 21:44 - 2017-06-15 20:47 - 000000000 ____D C:\Users\user.user-PC\AppData\Roaming\vlc
2020-04-18 20:48 - 2009-07-14 06:45 - 005005320 _____ C:\Windows\system32\FNTCACHE.DAT
2020-04-18 19:44 - 2017-06-14 15:08 - 000072392 _____ C:\Users\user.user-PC\AppData\Local\GDIPFONTCACHEV1.DAT
2020-04-18 19:35 - 2018-02-25 21:26 - 000000000 ____D C:\Users\user.user-PC\AppData\Local\Adobe
2020-04-18 19:34 - 2016-05-19 12:42 - 000000000 ____D C:\Program Files (x86)\Adobe
2020-04-18 18:20 - 2019-12-04 16:02 - 000000000 _____ C:\Users\user.user-PC\Documents\Sin título.ncor
2020-04-18 00:26 - 2017-06-15 23:18 - 000000000 ____D C:\Users\user.user-PC\AppData\Roaming\dvdcss
2020-04-12 00:59 - 2017-06-27 21:59 - 000000000 ____D C:\Users\user.user-PC\AppData\Roaming\Aegisub
2020-04-02 10:51 - 2016-05-19 12:39 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2020-03-31 01:26 - 2017-07-07 10:31 - 000000000 ____D C:\Users\user.user-PC\AppData\LocalLow\Mozilla
2020-03-30 15:16 - 2017-07-05 16:54 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox
2020-03-28 17:11 - 2018-06-10 12:40 - 000000000 ____D C:\Users\user.user-PC\AppData\Roaming\VideoReDo-TVSuite4
2020-03-28 17:11 - 2018-05-13 14:09 - 000000000 ____D C:\ProgramData\TEMP
==================== Archivos en la raíz de algunos directorios ========
2017-08-03 21:34 - 2017-08-03 21:34 - 000000087 _____ () C:\Users\user.user-PC\AppData\Roaming\1de0de73-de3e-46c6-81b0-f6455f081644
2018-08-21 00:05 - 2018-08-21 00:05 - 000000171 _____ () C:\Users\user.user-PC\AppData\Roaming\1eb766f2-fed1-4d33-9c39-2c8a972fd11f
2018-08-21 00:05 - 2018-08-21 00:05 - 000000304 _____ () C:\Users\user.user-PC\AppData\Roaming\4e93aa11-2d46-4980-a421-0a4ac759e5bf
2018-02-25 21:04 - 2019-02-15 18:23 - 000001171 _____ () C:\Users\user.user-PC\AppData\Roaming\DVDSubEdit.ini
2018-02-25 19:22 - 2019-02-15 17:41 - 000021134 _____ () C:\Users\user.user-PC\AppData\Roaming\DVDSubEditLastFile0.txt
2018-05-20 16:12 - 2018-05-20 16:12 - 000000121 _____ () C:\Users\user.user-PC\AppData\Roaming\DVDSubEditLastFile1.txt
2018-02-27 01:10 - 2018-04-30 23:51 - 000000134 _____ () C:\Users\user.user-PC\AppData\Roaming\DVDSubEditLastFile2.txt
2018-02-27 01:11 - 2018-04-29 13:18 - 000000093 _____ () C:\Users\user.user-PC\AppData\Roaming\DVDSubEditLastFile3.txt
2018-04-30 23:51 - 2018-02-25 23:57 - 000000190 _____ () C:\Users\user.user-PC\AppData\Roaming\DVDSubEditLastFile4.txt
2018-08-21 00:05 - 2018-08-21 00:05 - 000000175 _____ () C:\Users\user.user-PC\AppData\Roaming\fc19ece2-6b3f-4f22-8758-9651ab9ca388
2018-02-26 00:34 - 2018-05-20 14:23 - 000000132 _____ () C:\Users\user.user-PC\AppData\Roaming\Prefs. de formato BMP de Adobe CC
2019-12-10 15:46 - 2020-02-14 00:08 - 000000132 _____ () C:\Users\user.user-PC\AppData\Roaming\Prefs. de formato PNG de Adobe CC
==================== SigCheck ============================
(No existe una corrección automática para los archivos que no pasan la verificación.)
LastRegBack: 2019-08-12 17:21
==================== Final de FRST.txt ========================
Resultados del Análisis Adicional de Farbar Recovery Scan Tool (x64) Versión: 20-04-2020
Ejecutado por user (22-04-2020 10:38:38)
Ejecutado desde C:\Users\user.user-PC\Desktop
Windows 7 Professional Service Pack 1 (X64) (2017-06-14 03:37:17)
Modo de Inicio: Normal
==========================================================
==================== Cuentas: =============================
Administrador (S-1-5-21-420265182-739296544-3490084199-500 - Administrator - Disabled)
Invitado (S-1-5-21-420265182-739296544-3490084199-501 - Limited - Disabled)
user (S-1-5-21-420265182-739296544-3490084199-1000 - Administrator - Enabled) => C:\Users\user.user-PC
==================== Centro de Seguridad ========================
(Si una entrada es incluida en el fixlist, será eliminada.)
AS: Windows Defender (Enabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Programas instalados ======================
(Solo los programas de adware con indicador "Oculto", pueden ser añadidos al fixlist para hacerlos visibles. Los programas adware deben ser desinstalados manualmente.)
Adobe Acrobat Reader DC - Español (HKLM-x32\...\{AC76BA86-7AD7-1034-7B44-AC0F074E4100}) (Version: 19.012.20040 - Adobe Systems Incorporated)
Adobe Encore CS6 (HKLM-x32\...\{46251F95-B2F8-484A-9B5B-8C0E5A43A202}) (Version: 6.0.0 - Adobe Systems Incorporated)
Adobe Photoshop CC (HKLM-x32\...\{2D99B50E-431D-4AA8-85C1-172A6F8BCF09}) (Version: 14.0 - Adobe Systems Incorporated)
Adobe Update Management Tool (HKLM-x32\...\{534A7A1A-7102-4AF6-23EA-7CD279C7B625}_is1) (Version: 8.0 - PainteR)
Aegisub 3.2.2 (HKLM-x32\...\{24BC8B57-716C-444F-B46B-A3349B9164C5}_is1) (Version: 3.2.2 - Aegisub Team)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
Avast Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.4.136.333 - AVAST Software) Hidden
Avidemux 2.6 - 64 bits (HKLM-x32\...\Avidemux 2.6 - 64 bits (64-bit)) (Version: 2.6.21.170501 - )
AviSynth 2.6 (HKLM-x32\...\AviSynth) (Version: 2.6.0.6 - GPL Public release.)
bl (HKLM-x32\...\{2A075BB4-E976-4278-BF3F-E5C6945D84C0}) (Version: 1.0.0 - Your Company Name) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 5.65 - Piriform)
Compatibilidad con Aplicaciones de Apple (HKLM-x32\...\{46F044A5-CE8B-4196-984E-5BD6525E361D}) (Version: 2.3.6 - Apple Inc.)
CrystalDiskInfo 8.1.0 (HKLM-x32\...\CrystalDiskInfo_is1) (Version: 8.1.0 - Crystal Dew World)
DVD Architect (HKLM-x32\...\{F48D4140-76F2-11E6-ADCC-BB95F5A309BD}) (Version: 7.0.38 - VEGAS)
DVD Decrypter (Remove Only) (HKLM-x32\...\DVD Decrypter) (Version: - )
DVDFab (x64) 10.0.8.9 (12/04/2018) (HKLM-x32\...\DVDFab 10(x64)) (Version: 10.0.8.9 - Fengtao Software Inc.)
DVDStyler v3.0.4 (HKLM\...\DVDStyler_is1) (Version: - Thüring IT-Consulting)
eEnjoy VIDEO DVR (HKLM-x32\...\{B6BF84B7-7CAF-4B3A-A46C-CF2E4BEF809D}) (Version: 2014.03.12 - eEnjoy)
FileZilla Client 3.27.0.1 (HKLM-x32\...\FileZilla Client) (Version: 3.27.0.1 - Tim Kosse)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 80.0.3987.122 - Google LLC)
Google Toolbar for Internet Explorer (HKLM-x32\...\{18455581-E099-4BA8-BC6B-F34B2F06600C}) (Version: 1.0.0 - Google Inc.) Hidden
Google Toolbar for Internet Explorer (HKLM-x32\...\{2318C2B1-4965-11d4-9B18-009027A5CD4F}) (Version: 7.5.8231.2252 - Google Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.35.341 - Google LLC) Hidden
HandBrake 1.0.7 (HKLM-x32\...\HandBrake) (Version: 1.0.7 - )
honestechTVR2.5 (HKLM-x32\...\{ABADD11D-1B48-4F23-BEBA-6B22CE8F5E58}) (Version: 2.5 - honestech)
honestechTVR2.5 (HKLM-x32\...\{B1DE0E2A-C1B1-4A61-A622-1F52CB37B183}) (Version: 2.5 - honestech) Hidden
ImgBurn (HKLM-x32\...\ImgBurn) (Version: 2.5.8.0 - LIGHTNING UK!)
Intel(R) Network Connections Drivers (HKLM\...\PROSet) (Version: 19.4 - Intel)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.3958 - Intel Corporation)
Java 8 Update 211 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180211F0}) (Version: 8.0.2110.12 - Oracle Corporation)
LAV Filters 0.65 (HKLM-x32\...\lavfilters_is1) (Version: 0.65 - Hendrik Leppkes)
Magic Bullet Editors Vegas (HKLM-x32\...\Magic Bullet Editors Vegas) (Version: - )
Microsoft .NET Framework 4.6 (español) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 3082) (Version: 4.6.00081 - Microsoft Corporation)
Microsoft .NET Framework 4.6 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.6.00081 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (HKLM\...\{350AA351-21FA-3270-8B7A-835434E766AD}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{db012557-340e-4a46-adae-81a6b0f6a1e9}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23026 (HKLM-x32\...\{e46eca4f-393b-40df-9f49-076faf788d83}) (Version: 14.0.23026.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23026 (HKLM-x32\...\{74d0e5db-b326-4dae-a6b2-445b9de1836e}) (Version: 14.0.23026.0 - Microsoft Corporation)
MKVToolNix 14.0.0 (64bit) (HKLM-x32\...\MKVToolNix) (Version: 14.0.0 - Moritz Bunkus)
Mozilla Firefox 66.0.3 (x64 es-ES) (HKLM\...\Mozilla Firefox 66.0.3 (x64 es-ES)) (Version: 66.0.3 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 66.0.3.7038 - Mozilla)
MPC-HC 1.7.13 (64-bit) (HKLM\...\{2ACBF1FA-F5C3-4B19-A774-B22A31F231B9}_is1) (Version: 1.7.13 - MPC-HC Team)
NewBlue 3D Explosions for Windows (HKLM-x32\...\NewBlue 3D Explosions for Windows) (Version: - )
NewBlue 3D Transformations for Windows (HKLM-x32\...\NewBlue 3D Transformations for Windows) (Version: - )
NewBlue Film Effects for Windows (HKLM-x32\...\NewBlue Film Effects for Windows) (Version: - )
NewBlue Free Effects for Windows (HKLM-x32\...\NewBlue Free Effects for Windows) (Version: 1.4 - NewBlue)
NewBlue Motion Blends for Windows (HKLM-x32\...\NewBlue Motion Blends for Windows) (Version: - )
NewBlue Video Essentials for Windows (HKLM-x32\...\NewBlue Video Essentials for Windows) (Version: - )
NewsLeecher version v7.0 Final (HKLM-x32\...\NewsLeecher_is1) (Version: v7.0 Final - )
OpenOffice 4.1.2 (HKLM-x32\...\{74BBCD30-EB17-4909-B59F-65E0DD2B7E95}) (Version: 4.12.9782 - Apache Software Foundation)
PDF Settings CC (HKLM-x32\...\{1FBAE18D-4DE4-47AA-83EC-D1B046F262DC}) (Version: 12.0 - Adobe Systems Incorporated) Hidden
ph (HKLM-x32\...\{185F9795-9663-4F13-9EF9-307A282ADB5A}) (Version: 1.0.0 - Your Company Name) Hidden
Project64 1.6 (HKLM-x32\...\{9559F7CA-5E34-4237-A2D9-D856464AD727}) (Version: 1.6 - Project64)
QuickTime 7 (HKLM-x32\...\{FF59BD75-466A-4D5A-AD23-AAD87C5FD44C}) (Version: 7.79.80.95 - Apple Inc.)
ratDVD 0.78.1444 (HKLM-x32\...\ratDVD) (Version: 0.78.1444 - ratDVD)
R-Link 2 Toolbox (HKU\S-1-5-21-420265182-739296544-3490084199-1000\...\{net.awl.appshop.renault.lsf.controller}}_is1) (Version: 1.2.6 - Renault)
Subtitle Edit 3.5.10 (HKLM\...\SubtitleEdit_is1) (Version: 3.5.10.0 - Nikse)
Subtitle Workshop 6.0b (HKLM-x32\...\SubtitleWorkshop) (Version: - )
SubtitleCreator (HKLM-x32\...\SubtitleCreator) (Version: V2.2 - Erik Vullings)
TC Catalogador 6.0 (HKLM-x32\...\{350797FB-104F-4373-8D7A-D9E60053FE3A}_is1) (Version: 6.0 - TC Catalogador, Inc.)
TMPGEnc Authoring Works 4 (HKLM-x32\...\{0AF28D4B-7525-4C85-A89E-10C23D6959AA}) (Version: 4.0.12.42 - Pegasys Inc.)
TomTom HOME 2.20.8.1298 (HKLM\...\TomTom HOME) (Version: 2.20.8.1298 - TomTom)
TomTom MyDrive Connect 4.2.5.3770 (HKLM-x32\...\MyDriveConnect) (Version: 4.2.5.3770 - TomTom)
Vegas Pro 13.0 (64-bit) (HKLM\...\{7900EBB0-CCC3-11E4-AD24-F04DA23A5C58}) (Version: 13.0.444 - Sony)
VideoReDo TVSuite Version 4.21.6.674 (HKLM-x32\...\VideoReDo4_is1) (Version: - DRD Systems, Inc.)
Visual Studio C++ 10.0 Runtime (HKLM-x32\...\{4412F224-3849-4461-A3E9-DEEF8D252790}) (Version: 10.0.0 - TomTom International B.V.)
VLC media player (HKLM-x32\...\VLC media player) (Version: 3.0.6 - VideoLAN)
Win32DiskImager version 1.0.0 (HKLM-x32\...\{3DFFA293-DF2C-4B23-92E5-3433BDC310E1}}_is1) (Version: 1.0.0 - ImageWriter Developers)
WinRAR 5.70 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 5.70.0 - win.rar GmbH)
XAMPP (HKLM-x32\...\xampp) (Version: 7.0.31-0 - Bitnami)
Xvid Video Codec (HKLM-x32\...\Xvid Video Codec 1.3.4) (Version: 1.3.4 - Xvid Team)
==================== Personalizado CLSID (Lista blanca): ==============
(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)
CustomCLSID: HKU\S-1-5-21-420265182-739296544-3490084199-1000_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\Windows\system32\igfxEM.exe (Intel Corporation - pGFX -> Intel Corporation)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> Ningún archivo
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\Windows\system32\igfxDTCM.dll [2014-10-03] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
==================== Codecs (Lista blanca) ====================
(Si una entrada es incluida en el fixlist, el elemento del registro será restaurado a su valor predeterminado o será eliminado. El archivo no será movido.)
HKLM\...\Drivers32: [vidc.XVID] => C:\Windows\system32\xvidvfw.dll [251392 2015-06-21] () [Archivo no firmado]
HKLM\...\Drivers32: [msacm.l3acm] => C:\Windows\SysWOW64\l3codecp.acm [220672 2009-07-14] (Microsoft Windows -> Fraunhofer Institut Integrierte Schaltungen IIS)
HKLM\...\Drivers32: [vidc.XVID] => C:\Windows\SysWOW64\xvidvfw.dll [235520 2015-06-21] () [Archivo no firmado]
==================== Accesos directos & WMI ========================
==================== Módulos cargados (Lista blanca) =============
2018-02-04 14:46 - 2008-04-27 19:06 - 000053248 _____ () [Archivo no firmado] C:\Program Files (x86)\honestech\honestech TVR 2.5\ReadRemoteKey.dll
==================== Alternate Data Streams (Lista blanca) ========
==================== Modo Seguro (Lista blanca) ==================
(Si una entrada es incluida en el fixlist, será eliminada del registro. El "AlternateShell" será restaurado.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\24310028.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\24310028.sys => ""="Driver"
==================== Asociación (Lista blanca) =================
==================== Internet Explorer sitios de confianza/restringidos ==========
==================== Hosts contenido: =========================
(Si es necesario, la directiva Hosts: puede ser incluida en el fixlist para restablecer Hosts.)
2009-07-14 04:34 - 2020-04-20 17:49 - 000000035 _____ C:\Windows\system32\drivers\etc\hosts
==================== Otras Áreas ===========================
(Actualmente no existe una corrección automática para esta sección.)
HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Common Files\Oracle\Java\javapath;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\QuickTime\QTSystem\
HKU\S-1-5-21-420265182-739296544-3490084199-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\user.user-PC\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 192.168.0.254
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 2) (ConsentPromptBehaviorUser: 3) (EnableLUA: 0)
Firewall de Windows está habilitado.
==================== MSCONFIG/TASK MANAGER elementos deshabilitados ==
==================== Reglas de firewall (Lista blanca) ================
(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)
FirewallRules: [SPPSVC-In-TCP] => (Allow) %SystemRoot%\system32\sppsvc.exe Ningún archivo
FirewallRules: [SPPSVC-In-TCP-NoScope] => (Allow) %SystemRoot%\system32\sppsvc.exe Ningún archivo
FirewallRules: [{EFC851DE-BA79-452F-9622-D928FBD7A6F6}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{8B699F00-3EA8-4AC0-8B49-0B5736D63A81}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [TCP Query User{5F61E304-11FE-47A9-8AB1-06B674D74C32}C:\program files\dvdfab 10\dvdfab64.exe] => (Allow) C:\program files\dvdfab 10\dvdfab64.exe (Fengtao Software Inc. -> FengTao Software Inc.)
FirewallRules: [UDP Query User{BB2D626A-5833-470F-9A2B-18BE9787AE4D}C:\program files\dvdfab 10\dvdfab64.exe] => (Allow) C:\program files\dvdfab 10\dvdfab64.exe (Fengtao Software Inc. -> FengTao Software Inc.)
FirewallRules: [TCP Query User{D9466271-72EA-40C9-B968-DED09FB65D4B}C:\xampp\apache\bin\httpd.exe] => (Allow) C:\xampp\apache\bin\httpd.exe (Apache Software Foundation) [Archivo no firmado]
FirewallRules: [UDP Query User{7780724B-8B84-4C25-A60F-41CD268BC7D5}C:\xampp\apache\bin\httpd.exe] => (Allow) C:\xampp\apache\bin\httpd.exe (Apache Software Foundation) [Archivo no firmado]
FirewallRules: [TCP Query User{05287000-FF53-4CAD-8857-D00BA1480263}C:\xampp\mysql\bin\mysqld.exe] => (Allow) C:\xampp\mysql\bin\mysqld.exe (MariaDB Corporation Ab -> )
FirewallRules: [UDP Query User{DDA0F106-CA1D-4A4E-92A2-2F25A215FDD5}C:\xampp\mysql\bin\mysqld.exe] => (Allow) C:\xampp\mysql\bin\mysqld.exe (MariaDB Corporation Ab -> )
FirewallRules: [TCP Query User{BE3BB6F0-B704-4543-B0BA-A991B785094F}C:\program files (x86)\videolan\vlc\vlc.exe] => (Allow) C:\program files (x86)\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN)
FirewallRules: [UDP Query User{F63EB70A-3BCF-43F9-8FCE-54BA759D9520}C:\program files (x86)\videolan\vlc\vlc.exe] => (Allow) C:\program files (x86)\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN)
FirewallRules: [{D7AB37FA-3A98-49B0-A3EC-24A37AB2CD12}] => (Allow) C:\Program Files (x86)\MyDrive Connect\TomTom MyDrive Connect.exe (TomTom International BV -> TomTom)
FirewallRules: [{3FB42711-F88C-470E-90AA-EC6C16002CB2}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{90A9A6D3-BC98-471B-B106-2CDF724C607C}] => (Allow) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\WebKit2WebProcess.exe (Apple Inc. -> Apple Inc.)
==================== Puntos de Restauración =========================
==================== Dispositivos defectuosos en el Administrador de dispositivos ============
==================== Errores del registro de eventos: ========================
Errores de aplicación:
==================
Error: (04/21/2020 07:44:43 PM) (Source: System Restore) (EventID: 8193) (User: )
Description: No se pudo crear el punto de restauración (proceso = C:\Users\user.user-PC\Desktop\mbar\mbar.exe "C:\Users\user.user-PC\Desktop\mbar" ; descripción = Malwarebytes Anti-Rootkit Restore Point; error = 0x80070422).
Error: (04/21/2020 07:44:43 PM) (Source: System Restore) (EventID: 8193) (User: )
Description: No se pudo crear el punto de restauración (proceso = C:\Users\user.user-PC\Desktop\mbar\mbar.exe "C:\Users\user.user-PC\Desktop\mbar" ; descripción = Malwarebytes Anti-Rootkit Restore Point; error = 0x80070422).
Error: (04/21/2020 04:14:54 PM) (Source: System Restore) (EventID: 8193) (User: )
Description: No se pudo crear el punto de restauración (proceso = C:\Users\user.user-PC\Desktop\mbar\mbar.exe "C:\Users\user.user-PC\Desktop\mbar" ; descripción = Malwarebytes Anti-Rootkit Restore Point; error = 0x80070422).
Error: (04/21/2020 04:14:54 PM) (Source: System Restore) (EventID: 8193) (User: )
Description: No se pudo crear el punto de restauración (proceso = C:\Users\user.user-PC\Desktop\mbar\mbar.exe "C:\Users\user.user-PC\Desktop\mbar" ; descripción = Malwarebytes Anti-Rootkit Restore Point; error = 0x80070422).
Error: (04/20/2020 05:17:07 PM) (Source: System Restore) (EventID: 8193) (User: )
Description: No se pudo crear el punto de restauración (proceso = C:\Users\user.user-PC\Desktop\FRST64.exe ; descripción = Restore Point Created by FRST; error = 0x80070422).
Error: (04/20/2020 05:10:55 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: El programa FRST64.exe, versión 19.4.2020.0, dejó de interactuar con Windows y se cerró. Para ver si hay más información disponible acerca del problema, compruebe el historial de problemas en el panel de control Centro de actividades.
Identificador de proceso: 810
Hora de inicio: 01d61724dcda7273
Hora de finalización: 0
Ruta de acceso de la aplicación: C:\Users\user.user-PC\Desktop\FRST64.exe
Identificador de informe: 1bfd3357-8319-11ea-acb2-74867a711cfe
Error: (04/20/2020 05:03:43 PM) (Source: System Restore) (EventID: 8193) (User: )
Description: No se pudo crear el punto de restauración (proceso = C:\Users\user.user-PC\Desktop\FRST64.exe ; descripción = Restore Point Created by FRST; error = 0x80070422).
Error: (04/20/2020 11:51:31 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: No se pudo reactivar el filtro de eventos con la consulta "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" en el espacio de nombres "//./root/CIMV2" por el error 0x80041003. Los eventos no se podrán entregar a través de este filtro hasta que se corrija este problema.
Errores del sistema:
=============
Error: (04/22/2020 10:35:56 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: El servicio Malwarebytes Installer Service no pudo iniciarse debido al siguiente error:
El sistema no puede encontrar el archivo especificado.
Error: (04/21/2020 07:19:16 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: El servicio Malwarebytes Installer Service no pudo iniciarse debido al siguiente error:
El sistema no puede encontrar el archivo especificado.
Error: (04/21/2020 07:18:24 PM) (Source: DCOM) (EventID: 10010) (User: )
Description: El servidor {995C996E-D918-4A8C-A302-45719A6F4EA7} no se registró con DCOM dentro del tiempo de espera requerido.
Error: (04/21/2020 03:24:36 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: El servicio Malwarebytes Installer Service no pudo iniciarse debido al siguiente error:
El sistema no puede encontrar el archivo especificado.
Error: (04/21/2020 03:22:14 PM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: El siguiente controlador de inicio del sistema o de inicio del arranque no se cargó correctamente:
discache
spldr
Wanarpv6
Error: (04/20/2020 07:16:22 PM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: El siguiente controlador de inicio del sistema o de inicio del arranque no se cargó correctamente:
discache
spldr
Wanarpv6
Error: (04/20/2020 06:11:51 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: El servicio Protección de software terminó inesperadamente. Esto se ha repetido 1 veces. Se realizará la siguiente acción correctora en 120000 milisegundos: Reiniciar el servicio.
Error: (04/20/2020 06:11:51 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: El servicio Adaptador de rendimiento de WMI terminó inesperadamente. Esto se ha repetido 1 veces. Se realizará la siguiente acción correctora en 120000 milisegundos: Reiniciar el servicio.
CodeIntegrity:
===================================
Date: 2020-04-22 10:38:28.159
Description:
Integridad de código no puede comprobar la integridad de imagen del archivo \Device\HarddiskVolume3\Windows\System32\drivers\staport.sys porque el conjunto de hashes de imagen por página no se encuentra en el sistema.
Date: 2020-04-22 10:38:28.143
Description:
Integridad de código no puede comprobar la integridad de imagen del archivo \Device\HarddiskVolume3\Windows\System32\drivers\staport.sys porque el conjunto de hashes de imagen por página no se encuentra en el sistema.
Date: 2020-04-21 19:35:15.503
Description:
Integridad de código no puede comprobar la integridad de imagen del archivo \Device\HarddiskVolume3\Windows\System32\drivers\staport.sys porque el conjunto de hashes de imagen por página no se encuentra en el sistema.
Date: 2020-04-21 19:35:15.503
Description:
Integridad de código no puede comprobar la integridad de imagen del archivo \Device\HarddiskVolume3\Windows\System32\drivers\staport.sys porque el conjunto de hashes de imagen por página no se encuentra en el sistema.
Date: 2020-04-21 19:35:15.503
Description:
Integridad de código no puede comprobar la integridad de imagen del archivo \Device\HarddiskVolume3\Windows\System32\drivers\staport.sys porque el conjunto de hashes de imagen por página no se encuentra en el sistema.
Date: 2020-04-21 19:35:15.487
Description:
Integridad de código no puede comprobar la integridad de imagen del archivo \Device\HarddiskVolume3\Windows\System32\drivers\staport.sys porque el conjunto de hashes de imagen por página no se encuentra en el sistema.
Date: 2020-04-21 19:35:15.487
Description:
Integridad de código no puede comprobar la integridad de imagen del archivo \Device\HarddiskVolume3\Windows\System32\drivers\staport.sys porque el conjunto de hashes de imagen por página no se encuentra en el sistema.
Date: 2020-04-21 19:35:15.487
Description:
Integridad de código no puede comprobar la integridad de imagen del archivo \Device\HarddiskVolume3\Windows\System32\drivers\staport.sys porque el conjunto de hashes de imagen por página no se encuentra en el sistema.
==================== Información de la memoria ===========================
BIOS: Dell Inc. A12 05/20/2013
Placa base: Dell Inc.
Procesador: Intel(R) Core(TM) i7-3520M CPU @ 2.90GHz
Porcentaje de memoria en uso: 61%
RAM física total: 3982.4 MB
RAM física disponible: 1521.48 MB
Virtual total: 7962.98 MB
Virtual disponible: 5389.3 MB
==================== Unidades ================================
Drive c: (Windows) (Fixed) (Total:291.74 GB) (Free:12.52 GB) NTFS
Drive d: (VIDEO_DVD) (CDROM) (Total:4.37 GB) (Free:0 GB) UDF
\\?\Volume{33a43636-20c6-11e6-b8a2-806e6f6e6963}\ (System) (Fixed) (Total:0.29 GB) (Free:0.09 GB) NTFS
\\?\Volume{33a43635-20c6-11e6-b8a2-806e6f6e6963}\ (Recovery) (Fixed) (Total:6.05 GB) (Free:0.17 GB) NTFS
==================== MBR & Tabla de particiones ====================
==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 298.1 GB) (Disk ID: C0EC9E23)
Partition 1: (Not Active) - (Size=6.1 GB) - (Type=27)
Partition 2: (Active) - (Size=300 MB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=291.7 GB) - (Type=07 NTFS)
==================== Final de Addition.txt =======================Lo primero libera espacio de estas manera.
Bien… y ahora sigue estos pasos, MUY Importante ~ Realiza una copia de seguridad del registro :
-
Para hacerlo descarga Delfix en tu escritorio.
-
Doble clic para ejecutarlo.(Si usas Windows Vista/7/8 o 10 presiona clic derecho y selecciona "Ejecutar como Administrador.")
-
Atención, ahora marca/selecciona únicamente las casillas Registry Backup, las demás NO
-
Pulsar en Run.
Se abrirá el informe (Delfix.txt), guárdalo por si fuera necesario y cierra la herramienta.
En el equipo con los demas programas cerrados:
Inicio >>> Ejecutar >>>Escribes notepad.exe.
Ahora copia y pega estos archivos dentro del Notepad:
Start
CreateRestorePoint:
CloseProcesses:
S2 MBAMInstallerService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMInstallerService.exe [X]
C:\Program Files\Malwarebytes
2020-04-21 19:26 - 2020-04-21 19:26 - 000255928 _____ (Malwarebytes) C:\Windows\system32\Drivers\2146D79C.sys
2020-04-21 19:25 - 2020-04-21 19:25 - 000192952 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamchameleon.sys
2020-04-21 19:20 - 2020-04-21 19:21 - 000001618 _____ C:\Users\user.user-PC\Desktop\mb-clean-results.txt
2020-04-21 19:20 - 2020-04-21 19:15 - 000858912 _____ (Malwarebytes) C:\Users\user.user-PC\Desktop\mb-clean-3.1.0.1035.exe
2020-04-21 15:30 - 2020-04-21 15:30 - 000255928 _____ (Malwarebytes) C:\Windows\system32\Drivers\4195EF2C.sys
2020-04-21 15:29 - 2020-04-21 19:44 - 000000000 ____D C:\Users\user.user-PC\Desktop\mbar
2020-04-21 15:29 - 2020-04-21 19:44 - 000000000 ____D C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2020-04-21 15:29 - 2020-04-21 15:18 - 014178840 _____ (Malwarebytes Corp.) C:\Users\user.user-PC\Desktop\mbar-1.10.3.1001.exe
2020-04-20 19:12 - 2020-04-20 19:12 - 000099410 _____ C:\Users\user.user-PC\Desktop\mbst-clean-results.txt
2020-04-20 19:10 - 2020-04-20 19:03 - 009156304 _____ C:\Users\user.user-PC\Desktop\mb-support-1.6.0.774.exe
2020-04-20 10:58 - 2020-04-21 15:30 - 000000000 ____D C:\ProgramData\Malwarebytes
2020-04-19 21:18 - 2020-04-20 19:12 - 000000000 ____D C:\Program Files\Malwarebytes
HOSTS:
REMOVEPROXY:
EMPTYTEMP:
CMD: netsh winsock reset
CMD: ipconfig /renew
CMD: ipconfig /flushdns
CMD: bitsadmin /reset /allusers
CMD: netsh advfirewall reset
CMD: netsh advfirewall set allprofiles state ON
CMD: netsh int ipv4 reset
CMD: netsh int ipv6 reset
END
Lo guardas bajo el nombre de fixlist.txt en el escritorio <<< Esto es muy importante.<<
Nota: Es importante que la Hta Frst.exe y fixlist.txt se encuentren en la misma ubicación (escritorio) o si no no trabajara.
-
Y ahora usa esta Faq de Windows ¿Cómo iniciar Windows en Modo Seguro?, para trabajar desde ese modo de windows. (Usa el Metodo 1 y si no puedes, usa el Metodo 2)
-
Ejecutas Frst.exe.
-
Presionas el botón Fix y aguardas a que termine.
-
La Herramienta guardara el reporte en tu escritorio (Fixlog.txt).
Lo pegas en tu próxima respuesta,
Abres Ccleaner - registro y lo pasa hasta que no quede nada
Luego descargas un nuevo instalador de Malwarebytes y dime el resultado
Hola, gracias. La cosa ha mejorado bastante, ya pude instalar el Malware bytes y ya hice un escaneo. Encontró tres archivos sospechosos de malware. Pego el fixlog:
Resultados de la corrección de Farbar Recovery Scan Tool (x64) Versión: 20-04-2020
Ejecutado por user (22-04-2020 15:53:51) Run:4
Ejecutado desde C:\Users\user.user-PC\Desktop
Perfiles cargados: user (Perfiles disponibles: user)
Modo de Inicio: Safe Mode (minimal)
==============================================
fixlist contenido:
*****************
Start
CreateRestorePoint:
CloseProcesses:
S2 MBAMInstallerService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMInstallerService.exe [X]
C:\Program Files\Malwarebytes
2020-04-21 19:26 - 2020-04-21 19:26 - 000255928 _____ (Malwarebytes) C:\Windows\system32\Drivers\2146D79C.sys
2020-04-21 19:25 - 2020-04-21 19:25 - 000192952 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamchameleon.sys
2020-04-21 19:20 - 2020-04-21 19:21 - 000001618 _____ C:\Users\user.user-PC\Desktop\mb-clean-results.txt
2020-04-21 19:20 - 2020-04-21 19:15 - 000858912 _____ (Malwarebytes) C:\Users\user.user-PC\Desktop\mb-clean-3.1.0.1035.exe
2020-04-21 15:30 - 2020-04-21 15:30 - 000255928 _____ (Malwarebytes) C:\Windows\system32\Drivers\4195EF2C.sys
2020-04-21 15:29 - 2020-04-21 19:44 - 000000000 ____D C:\Users\user.user-PC\Desktop\mbar
2020-04-21 15:29 - 2020-04-21 19:44 - 000000000 ____D C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2020-04-21 15:29 - 2020-04-21 15:18 - 014178840 _____ (Malwarebytes Corp.) C:\Users\user.user-PC\Desktop\mbar-1.10.3.1001.exe
2020-04-20 19:12 - 2020-04-20 19:12 - 000099410 _____ C:\Users\user.user-PC\Desktop\mbst-clean-results.txt
2020-04-20 19:10 - 2020-04-20 19:03 - 009156304 _____ C:\Users\user.user-PC\Desktop\mb-support-1.6.0.774.exe
2020-04-20 10:58 - 2020-04-21 15:30 - 000000000 ____D C:\ProgramData\Malwarebytes
2020-04-19 21:18 - 2020-04-20 19:12 - 000000000 ____D C:\Program Files\Malwarebytes
HOSTS:
REMOVEPROXY:
EMPTYTEMP:
CMD: netsh winsock reset
CMD: ipconfig /renew
CMD: ipconfig /flushdns
CMD: bitsadmin /reset /allusers
CMD: netsh advfirewall reset
CMD: netsh advfirewall set allprofiles state ON
CMD: netsh int ipv4 reset
CMD: netsh int ipv6 reset
END
*****************
Error: El punto de restauración solamente puede ser creado en modo normal.
Procesos cerrados correctamente.
HKLM\System\CurrentControlSet\Services\MBAMInstallerService => eliminado correctamente
MBAMInstallerService => servicio eliminado correctamente
C:\Program Files\Malwarebytes => movido correctamente
C:\Windows\system32\Drivers\2146D79C.sys => movido correctamente
C:\Windows\system32\Drivers\mbamchameleon.sys => movido correctamente
C:\Users\user.user-PC\Desktop\mb-clean-results.txt => movido correctamente
C:\Users\user.user-PC\Desktop\mb-clean-3.1.0.1035.exe => movido correctamente
C:\Windows\system32\Drivers\4195EF2C.sys => movido correctamente
C:\Users\user.user-PC\Desktop\mbar => movido correctamente
C:\ProgramData\Malwarebytes' Anti-Malware (portable) => movido correctamente
C:\Users\user.user-PC\Desktop\mbar-1.10.3.1001.exe => movido correctamente
C:\Users\user.user-PC\Desktop\mbst-clean-results.txt => movido correctamente
C:\Users\user.user-PC\Desktop\mb-support-1.6.0.774.exe => movido correctamente
C:\ProgramData\Malwarebytes => movido correctamente
"C:\Program Files\Malwarebytes" => no encontrado
C:\Windows\System32\Drivers\etc\hosts => movido correctamente
Hosts restaurado correctamente.
========= RemoveProxy: =========
"HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings" => eliminado correctamente
"HKU\S-1-5-21-420265182-739296544-3490084199-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings" => eliminado correctamente
"HKU\S-1-5-21-420265182-739296544-3490084199-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings" => eliminado correctamente
========= Final de RemoveProxy: =========
========= netsh winsock reset =========
El cat logo Winsock se restableci¢ correctamente.
Debe reiniciar el equipo para completar el restablecimiento.
========= Final de CMD: =========
========= ipconfig /renew =========
Configuraci¢n IP de Windows
========= Final de CMD: =========
========= ipconfig /flushdns =========
Configuraci¢n IP de Windows
No se puede vaciar la cach‚ de resoluci¢n de DNS: Error de una funci¢n durante la ejecuci¢n.
========= Final de CMD: =========
========= bitsadmin /reset /allusers =========
BITSADMIN version 3.0 [ 7.5.7601 ]
BITS administration utility.
(C) Copyright 2000-2006 Microsoft Corp.
BITSAdmin is deprecated and is not guaranteed to be available in future versions of Windows.
Administrative tools for the BITS service are now provided by BITS PowerShell cmdlets.
Unable to connect to BITS - 0x8007042c
No se puede iniciar el servicio o grupo de dependencia.
========= Final de CMD: =========
========= netsh advfirewall reset =========
Error al intentar ponerse en contacto con el servicio Firewall de Windows. Aseg£rese de que el servicio se est ejecutando e intente la solicitud de nuevo.
========= Final de CMD: =========
========= netsh advfirewall set allprofiles state ON =========
Error al intentar ponerse en contacto con el servicio Firewall de Windows. Aseg£rese de que el servicio se est ejecutando e intente la solicitud de nuevo.
========= Final de CMD: =========
========= netsh int ipv4 reset =========
No hay valores configurados por el usuario para restablecer.
========= Final de CMD: =========
========= netsh int ipv6 reset =========
No hay valores configurados por el usuario para restablecer.
========= Final de CMD: =========
=========== EmptyTemp: ==========
BITS transfer queue => 8388608 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 6874430 B
Java, Flash, Steam htmlcache => 0 B
Windows/system/drivers => 370997310 B
Edge => 0 B
Chrome => 13878851 B
Firefox => 0 B
Opera => 0 B
Temp, IE cache, history, cookies, recent:
Users => 0 B
Default => 0 B
Public => 0 B
ProgramData => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 0 B
NetworkService => 0 B
user.user-PC => 361867175 B
RecycleBin => 0 B
EmptyTemp: => 726.7 MB datos temporales eliminados.
================================
El sistema necesita reiniciarse.
==== Final de Fixlog 15:54:18 ====Pon el log de Malwarebytes
Pego el log de Malwarebytes:
Malwarebytes
www.malwarebytes.com
-Detalles del registro-
Fecha del análisis: 22/4/20
Hora del análisis: 16:09
Archivo de registro: da79a476-84a2-11ea-9c4e-74867a711cfe.json
-Información del software-
Versión: 4.1.0.56
Versión de los componentes: 1.0.875
Versión del paquete de actualización: 1.0.22770
Licencia: Prueba
-Información del sistema-
SO: Windows 7 Service Pack 1
CPU: x64
Sistema de archivos: NTFS
Usuario: user-PC\user
-Resumen del análisis-
Tipo de análisis: Análisis de amenazas
Análisis iniciado por:: Manual
Resultado: Completado
Objetos analizados: 240445
Amenazas detectadas: 3
Amenazas en cuarentena: 3
Tiempo transcurrido: 3 min, 38 seg
-Opciones de análisis-
Memoria: Activado
Inicio: Activado
Sistema de archivos: Activado
Archivo: Activado
Rootkits: Desactivado
Heurística: Activado
PUP: Detectar
PUM: Detectar
-Detalles del análisis-
Proceso: 0
(No hay elementos maliciosos detectados)
Módulo: 0
(No hay elementos maliciosos detectados)
Clave del registro: 0
(No hay elementos maliciosos detectados)
Valor del registro: 0
(No hay elementos maliciosos detectados)
Datos del registro: 0
(No hay elementos maliciosos detectados)
Secuencia de datos: 0
(No hay elementos maliciosos detectados)
Carpeta: 0
(No hay elementos maliciosos detectados)
Archivo: 3
Malware.Generic.3202779853, C:\USERS\USER.USER-PC\DOWNLOADS\SETUPIMGBURN_2.5.8.0.EXE, En cuarentena, 1000000, 0, 1.0.22770, 0D21565AE2925DCFBEE68ACD, dds, 00687662
PUP.Optional.BundleInstaller, C:\USERS\USER.USER-PC\DOWNLOADS\YOUR FILE IS READY TO DOWNLOAD_3776969467.EXE, En cuarentena, 503, 532575, 1.0.22770, , ame,
PUP.Optional.BundleInstaller, C:\USERS\USER.USER-PC\DOWNLOADS\YOUR FILE IS READY TO DOWNLOAD_3544075599.EXE, En cuarentena, 503, 532575, 1.0.22770, , ame,
Sector físico: 0
(No hay elementos maliciosos detectados)
WMI: 0
(No hay elementos maliciosos detectados)
(end)Perfecto…ahora vamos a hacer un ultimo analisis para ver si no queda nada y me pegas el log y comentas como va el pc
Hola, pego informe del ESET
23/04/2020 15:09:29
Archivos analizados: 167957
Archivos detectados: 4
Archivos desinfectados: 4
Tiempo total de análisis 01:38:16
Estado del análisis: Finalizado
C:\Users\user.user-PC\Desktop\XMediaRecode3358\Sony Vegas Pro 9 + Crack and KeyGen\crack vegas 9\Keygen.exe una variante de Win32/Keygen.HU aplicación potencialmente peligrosa no se ha podido desinfectar - archivo eliminado
C:\Users\user.user-PC\Downloads\GalletasDeAnimalitos\GalletasDeAnimalitos\PLUG.BY NBFranck Gaming®\NEW BLUE FX-PLUGIN by Franck Gaming®\KEYGEN-ACTIVADOR\Keygen.exe una variante de Win32/Keygen.HU aplicación potencialmente peligrosa no se ha podido desinfectar - archivo eliminado
C:\Users\user.user-PC\Downloads\GalletasDeAnimalitos\GalletasDeAnimalitos\PLUG.BY NBFranck Gaming®.rar una variante de Win32/Keygen.HU aplicación potencialmente peligrosa eliminado
C:\Windows\SysWOW64\Windows Server\wserver.exe una variante de MSIL/Injector.DIK Troyano no se ha podido desinfectar - archivo eliminado