No me abren algunos programas

Creo que sí! el ordenador que tengo es un windows 7 ultimate, queria actualizarlo al 10 pero lo tengo pirateado y no me dejo actualizarlo, quise validarlo con windows reload y tampoco pude :confused: re instale los programas y siguen igual, tambien me he fijado si firewall los bloquea y tampoco fue eso D:

Hmm hace mucho que no interactuó con un Windows 7, hum desde mi punto de vista parece que tu computadora no abre los programas por la falta de algún complemento (Net framework por ejemplo) o por problemas de compatibilidad pero me parece algo inusual que no abra un navegador como Google Chrome, haz intentado abrir Internet Explorer? Notaste este problema desde un inició (al entrar a windows por primera vez cuando adquiriste el equipo o cuando instalaste el sistema operativo) o el problema surgió con el tiempo? Disculpa si hago demasiadas preguntas >~<

Al contrario!! agradezco mucho tu ayuda y tus preguntas !! ^^ Mira, el internet explorer si me abre y el google chrome tambien me abria mucho antes, pero el problema surgio más adelante pero la verdad nose si es porque al limpiarla con algun programa o que :c

1 me gusta

Hola chic@s y permiso:

@n_f1 Puedes comentar con que herramienta hiciste ese análisis?

Descarta la posibilidad de infecciones:

Realiza lo siguiente:

1.- Desactiva temporalmente tu antivirus y cualquier programa de seguridad.

2.- Descarga, instala y/o actualiza a las siguientes herramientas:

3.- Ejecutas respetando el orden los pasos con todos los programas cerrados incluido los navegadores

CCleaner

Usando su opción Limpiador de acuerdo su Manual:

  • Para borrar Cookies, temporales de Internet y todos los archivos que este te muestre como obsoletos.
  • Cuando lo instales destilda las casillas para no permitir la instalación de CcleanerBrowser.
  • NO necesitamos este reporte

AdwCleaner

Lo ejecutas.

  • Pulsa en el botón Escanear y espera a que se realice el proceso. Luego pulsa sobre el botón Limpiar.
  • Espera a que se complete. Si te pidiera reiniciar el sistema Aceptas.
  • Guarda el reporte que le aparecerá para copiarlo y pegarlo en tu próxima respuesta.
  • El informe también puede encontrarse en “C:\AdwCleaner\AdwCleaner.txt”

ZHPCleaner

  • Siguiendo su manual, lo instalas y ejecutas. Cuando termine, elimina todo lo que encuentre.

Malwarebytes

  • No olvides actualizarlo.
  • Lee detenidamente su Manual
  • Realiza un Análisis Personalizado marcando todas las unidades
  • Pulsa en “Eliminar Seleccionados” para enviar lo encontrado a la cuarentena.
  • Reinicias el Sistema.
  • En el apartado del manual “Historial” >> Registros de Aplicación >> Scan Log/Registro de Análisis encontrarás el informe del MBAM, que debes copiar y pegar en tu próxima respuesta.

4.- Nota Importante:

En tu próxima respuesta debes pegar los reportes de AdwCleaner , ZHPCleaner y Malwarebytes.

Guía: [size=2]¿Como Pegar reportes en el Foro?[/size]

Nos comentas.

Salu2

1 me gusta

Hola!! ante todo, muchas gracias por la respuesta! contestando la pregunta, habia analizado anteriormente la PC con: Malwarebytes, PC Repair Kit, Hitmanpro_x64 y CCleaner. Sin más, prosigo con los informes que he obtenido!

# -------------------------------
# Malwarebytes AdwCleaner 7.4.1.0
# -------------------------------
# Build:    09-05-2019
# Database: 2019-09-06.1 (Cloud)
# Support:  https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start:    09-13-2019
# Duration: 00:00:03
# OS:       Windows 7 Ultimate
# Cleaned:  1
# Failed:   0


***** [ Services ] *****

No malicious services cleaned.

***** [ Folders ] *****

No malicious folders cleaned.

***** [ Files ] *****

No malicious files cleaned.

***** [ DLL ] *****

No malicious DLLs cleaned.

***** [ WMI ] *****

No malicious WMI cleaned.

***** [ Shortcuts ] *****

No malicious shortcuts cleaned.

***** [ Tasks ] *****

No malicious tasks cleaned.

***** [ Registry ] *****

No malicious registry entries cleaned.

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries cleaned.

***** [ Chromium URLs ] *****

No malicious Chromium URLs cleaned.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries cleaned.

***** [ Firefox URLs ] *****

No malicious Firefox URLs cleaned.

***** [ Preinstalled Software ] *****

Deleted       Preinstalled.EpsonCustomerResearchParticipation   Folder   C:\ProgramData\EPSON\EPSONCUSTOMERRESEARCHPARTICIPATION


*************************

[+] Delete Tracing Keys
[+] Reset Winsock

*************************

AdwCleaner_Debug.log - [11625 octets] - [13/09/2019 04:30:40]
AdwCleaner[S00].txt - [1475 octets] - [13/09/2019 04:31:13]

########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C00].txt ##########
Malwarebytes
www.malwarebytes.com

-Detalles del registro-
Fecha del análisis: 13/9/19
Hora del análisis: 4:12
Archivo de registro: d3b5a074-d5f5-11e9-a16a-60a44cae3a0d.json
Administrador: Sí

-Información del software-
Versión: 3.5.1.2522
Versión de los componentes: 1.0.391
Versión del paquete de actualización: 1.0.12451
Licencia: Gratis

-Información del sistema-
SO: Windows 7 Service Pack 1
CPU: x64
Sistema de archivos: NTFS
Usuario: FAB-PC\Administrador

-Resumen del análisis-
Tipo de análisis: Análisis personalizado
Análisis iniciado por:: Manual
Resultado: Completado
Objetos analizados: 99900
Amenazas detectadas: 0
(No hay elementos maliciosos detectados)
Amenazas en cuarentena: 0
(No hay elementos maliciosos detectados)
Tiempo transcurrido: 0 min, 28 seg

-Opciones de análisis-
Memoria: Activado
Inicio: Activado
Sistema de archivos: Desactivado
Archivo: Activado
Rootkits: Desactivado
Heurística: Activado
PUP: Detectar
PUM: Detectar

-Detalles del análisis-
Proceso: 0
(No hay elementos maliciosos detectados)

Módulo: 0
(No hay elementos maliciosos detectados)

Clave del registro: 0
(No hay elementos maliciosos detectados)

Valor del registro: 0
(No hay elementos maliciosos detectados)

Datos del registro: 0
(No hay elementos maliciosos detectados)

Secuencia de datos: 0
(No hay elementos maliciosos detectados)

Carpeta: 0
(No hay elementos maliciosos detectados)

Archivo: 0
(No hay elementos maliciosos detectados)

Sector físico: 0
(No hay elementos maliciosos detectados)

WMI: 0
(No hay elementos maliciosos detectados)


(end)

Con el ZHPCleaner no me detecto ninguna amenaza asi que no pude obtener un informe, solo este que quedo en mi escritorio, lo adjunto por las dudas

~ ZHPCleaner v2019.9.12.138 by Nicolas Coolman (2019/09/12)
~ Run by Administrador (Administrator)  (13/09/2019 04:42:57)
~ Web: https://www.nicolascoolman.com
~ Blog: https://nicolascoolman.eu/
~ Facebook : https://www.facebook.com/nicolascoolman1
~ State version : Version OK
~ Certificate ZHPCleaner: Legal
~ Type : Scanner
~ Report : D:\Users\Administrador\Desktop\ZHPCleaner (S).txt
~ Quarantine : C:\Users\Administrador\AppData\Roaming\ZHP\ZHPCleaner_Reg.txt
~ UAC : Activate
~ Boot Mode : Normal (Normal boot)
Windows 7 Ultimate, 64-bit Service Pack 1 (Build 7601)

---\  Alternate Data Stream (ADS). (0)
~ No malintencionados o innecesarios artículos encontrados. (ADS)

---\  Servicios (0)
~ No malintencionados o innecesarios artículos encontrados. (Servicio)

---\  Navegadores de Internet (0)
~ No malintencionados o innecesarios artículos encontrados. (Navegador)

---\  Hosts carpeta (1)
~ El archivo hosts es legítimo (1)

---\  Tareas automáticas programadas. (0)
~ No malintencionados o innecesarios artículos encontrados. (Tarea)

---\  Explorador ( Archivos, Carpetas ) (0)
~ No malintencionados o innecesarios artículos encontrados. (Explorer)

---\  Registro ( Claves, Valores, Datos) (0)
~ No malintencionados o innecesarios artículos encontrados. (Register)

---\ Resultado de la reparación.
~ ninguna reparación hecha
~ falta este navegador! (Google Chrome)
~ falta este navegador! (Opera Software)

---\ STATISTIQUES
~ Items escaneado : 80737
~ Items encontrado : 0
~ artículos cancelados : 0
~ Items opciones : 6/13
~ Ahorro de espacio (bytes) : 0
~ End of search in 00h04mn22s

---\  Reporte (4)
ZHPCleaner-[R]-13092019-04_01_01.txt
ZHPCleaner-[S]-13092019-03_59_44.txt
ZHPCleaner-[S]-13092019-04_09_03.txt
ZHPCleaner-[S]-13092019-04_47_19.txt

Ante todo, muchas gracias por la ayuda!!

Hola @n_f1

Realiza lo siguiente:

1.- Desactiva temporalmente tu antivirus y cualquier programa de seguridad.

2.- Descarga Farbar Recovery Scan Tool. en el escritorio, seleccionando la versión adecuada para la arquitectura (32 o 64bits) de su equipo. >> Como saber si mi Windows es de 32 o 64 bits.?

  • Ejecuta FRST.exe.
  • En el mensaje de la ventana del Disclaimer, pulsamos Yes
  • En la ventana principal pulsamos en el botón Scan y esperamos a que concluya el proceso.
  • Se abrirán dos(2) archivos(Logs), Frst.txt y Addition.txt, estos quedaran grabados en el escritorio.

Guía: Como Ejecutar FRST

3.- En tu próxima respuesta, pega los reportes generados.

Guía : ¿Como Pegar reportes en el Foro?

Esperamos esos reporte.

Salu2

Hola @SanMar ante todo, gracias de nuevo! ahí va el primer reporte ya que no me deja poner los dos juntos

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 14-09-2019
Ran by Administrador (administrator) on FAB-PC (14-09-2019 06:44:20)
Running from D:\Users\Administrador\Desktop
Loaded Profiles: Administrador (Available Profiles: Administrador)
Platform: Windows 7 Ultimate Service Pack 1 (X64) Language: Español (España, internacional)
Internet Explorer Version 11 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Adobe Inc. -> Adobe Systems) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\RadeonSettings.exe
(Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\atieclxx.exe
(Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\atiesrxx.exe
(Intel Corporation - Intel® Management Engine Firmware -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation - Software and Firmware Products -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
(Intel(R) Corporation) [File not signed] C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Malwarebytes Corporation -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Security Client\MsMpEng.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe
(Microsoft Corporation) [File not signed] C:\Program Files (x86)\Common Files\microsoft shared\VS7DEBUG\mdm.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(NATIVE INSTRUMENTS GmbH -> Native Instruments GmbH) C:\Program Files\Common Files\Native Instruments\Hardware\NIHardwareService.exe
(Nero AG -> Nero AG) C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Piriform Software Ltd -> Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(PXI) [File not signed] C:\Program Files (x86)\REDRAGON\Gaming Mouse\vdDaemon.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(REDRAGON) [File not signed] C:\Program Files (x86)\REDRAGON\Gaming Mouse\hid.exe
(REDRAGON) [File not signed] C:\Program Files (x86)\REDRAGON\Gaming Mouse\TrayIcon.exe
(SEIKO EPSON Corporation -> SEIKO EPSON CORPORATION) C:\Program Files (x86)\EPSON Software\Event Manager\EEventManager.exe
(SEIKO EPSON Corporation -> SEIKO EPSON CORPORATION) C:\Program Files\EPSON\EpsonCustomerParticipation\EPCP.exe
(SEIKO EPSON Corporation -> Seiko Epson Corporation) C:\Windows\System32\escsvc64.exe
(Swift Media Entertainment, Inc. -> Blitz Inc.) C:\ProgramData\Administrador\Blitz\current\Blitz.exe
(Swift Media Entertainment, Inc. -> Blitz Inc.) C:\ProgramData\Administrador\Blitz\current\Blitz.exe
(Swift Media Entertainment, Inc. -> Blitz Inc.) C:\ProgramData\Administrador\Blitz\current\Blitz.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [7660760 1999-12-31] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [MSC] => C:\Program Files\Microsoft Security Client\msseces.exe [1353680 2016-11-14] (Microsoft Corporation -> Microsoft Corporation)
HKLM\...\Run: [StartCN] => C:\Program Files\AMD\CNext\CNext\RadeonSettings.exe [8027016 2016-09-16] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [USB3MON] => C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [292088 1999-12-31] (Intel Corporation -> Intel Corporation)
HKLM-x32\...\Run: [EEventManager] => C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe [1058400 2012-01-26] (SEIKO EPSON Corporation -> SEIKO EPSON CORPORATION)
HKLM-x32\...\Run: [REDRAGON] => C:\Program Files (x86)\REDRAGON\Gaming Mouse\Hid.exe [611328 2017-03-07] (REDRAGON) [File not signed]
HKU\S-1-5-21-786306497-2436674552-526500336-500\...\Run: [DAEMON Tools Lite] => C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3672640 2013-03-14] (Disc Soft Ltd -> Disc Soft Ltd)
HKU\S-1-5-21-786306497-2436674552-526500336-500\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [3210528 2019-09-10] (Valve -> Valve Corporation)
HKU\S-1-5-21-786306497-2436674552-526500336-500\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [22714912 2019-08-15] (Piriform Software Ltd -> Piriform Ltd)
HKU\S-1-5-21-786306497-2436674552-526500336-500\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Windows\system32\PhotoScreensaver.scr [477696 2010-11-20] (Microsoft Windows -> Microsoft Corporation)
HKU\S-1-5-18\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [22714912 2019-08-15] (Piriform Software Ltd -> Piriform Ltd)
HKLM\...\Drivers32: [vidc.i420] => lvcod64.dll
HKLM\...\Drivers32-x32: [vidc.i420] => lvcodec2.dll
HKLM\...\Drivers32: [VIDC.FMVC] => C:\Windows\SysWOW64\fmcodec.dll [77824 2008-08-18] (Fox Magic Software) [File not signed]
HKLM\Software\Microsoft\Active Setup\Installed Components: [{2D46B6DC-2207-486B-B523-A557E6D54B47}] -> C:\Windows\system32\cmd.exe /D /C start C:\Windows\system32\ie4uinit.exe -ClearIconCache
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{2D46B6DC-2207-486B-B523-A557E6D54B47}] -> C:\Windows\system32\cmd.exe /D /C start C:\Windows\system32\ie4uinit.exe -ClearIconCache
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> "C:\Program Files (x86)\Google\Chrome\Application\63.0.3239.108\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{A6EADE66-0000-0000-484E-7E8A45000000}] -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Esl\AiodLite.dll [2019-05-02] (Adobe Inc. -> Adobe Systems, Inc.)
Startup: C:\Users\Administrador\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\bin [2016-08-22] ()
Startup: C:\Users\Administrador\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\GTProtector.asi.upk [2016-08-22] () [File not signed]
Startup: C:\Users\Administrador\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\GTProtector.dll.upk [2016-08-22] () [File not signed]
Startup: C:\Users\Administrador\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\GTProtector.ini.upk [2016-08-22] () [File not signed]
Startup: C:\Users\Administrador\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\motd_temp.html [2016-08-22] ()
Startup: C:\Users\Administrador\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\mrv.upk [2016-08-22] () [File not signed]
Startup: C:\Users\Administrador\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\mrvgamemenu.upk [2016-08-22] () [File not signed]
Startup: C:\Users\Administrador\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\serverbrowser.upk [2016-08-22] () [File not signed]
Startup: C:\Users\Administrador\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\userconfig.upk [2016-08-22] () [File not signed]

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {06341341-BA2B-47D5-BD07-8DB882AB89C3} - System32\Tasks\AMD Updater => C:\Program Files\AMD\CIM\\Bin64\InstallManagerApp.exe [10387848 2016-09-16] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {12389A91-5D2A-4AFF-B23B-4D87CC27E26F} - System32\Tasks\{951590FE-FC76-4F8C-852C-15987B191B1D} => C:\Windows\system32\pcalua.exe -a "C:\Program Files (x86)\KONAMI\Pro Evolution Soccer 6\kitserver\setup.exe" -d "C:\Program Files (x86)\KONAMI\Pro Evolution Soccer 6\kitserver"
Task: {19346FB1-0ABA-4000-AAF4-0F34DE1CD970} - System32\Tasks\{F5A1EF45-0710-4D6D-8A7F-CE9F850906F9} => C:\Users\Administrador\AppData\Roaming\Spotify\Spotify.exe [24194464 2019-09-01] (Spotify AB -> Spotify Ltd)
Task: {2F462DB2-22A3-49C0-92DF-181F8716F3C0} - System32\Tasks\{0F4979AE-3499-4301-A90B-CCCC61EBF101} => C:\Program Files (x86)\Mozilla Firefox\firefox.exe 
Task: {35C475AB-B1A4-4DB0-9A5C-ACE9D80975EE} - System32\Tasks\{101ED32C-D73B-4FB0-8B34-5C0F7CE74C7F} => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe 
Task: {5300324C-75E9-4B1F-8EAD-634E712A0C34} - System32\Tasks\{92341FED-34E3-4192-8936-B24866AA31FB} => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe 
Task: {57E80BF7-19D0-4BF5-81C5-13F8067F5791} - System32\Tasks\SidebarExecute => C:\Program Files (x86)\Windows Sidebar\sidebar.exe [1174016 2010-11-20] (Microsoft Windows -> Microsoft Corporation)
Task: {70F1D177-B847-4A84-8A27-B6B63B3942E3} - System32\Tasks\{8D19F94C-B760-4434-8073-E0757AC49BF5} => C:\Program Files (x86)\Mozilla Firefox\firefox.exe 
Task: {816FBC6A-C282-4A5E-B0D9-1072B715E2F5} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_255_Plugin.exe [1457720 2019-09-10] (Adobe Inc. -> Adobe)
Task: {892BCEA1-A68D-4E36-AD40-449741EA703A} - System32\Tasks\{D1F8B07C-E0D5-4BCF-9CD9-F65898F73D56} => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe 
Task: {9B817A18-A71A-4B27-9DC6-8EE89652D9B1} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-786306497-2436674552-526500336-500Core => C:\Users\Administrador\AppData\Local\Google\Update\GoogleUpdate.exe
Task: {A2E71A14-4387-4B07-90B8-4356161A29CD} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [16585328 2019-08-15] (Piriform Software Ltd -> Piriform Ltd)
Task: {BB120B98-C7DE-4B50-BAA8-72E8584F3113} - System32\Tasks\{4115A142-8C01-43D7-BC81-688FECD07FA5} => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe 
Task: {C5A54170-DCF9-4227-BC29-A3206D644E04} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1236048 2019-07-24] (Adobe Inc. -> Adobe Systems)
Task: {C5AB4C37-49A1-4184-A419-4BF2C1076C1D} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [619416 2019-08-15] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {CF240568-1BA8-489D-A0DD-A9E81E46022D} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-786306497-2436674552-526500336-500UA => C:\Users\Administrador\AppData\Local\Google\Update\GoogleUpdate.exe
Task: {D5A6FE5B-8613-4D64-A3F3-7A9979C9D9F5} - System32\Tasks\{DAD0AF15-315B-4B5F-8CDF-3DB401A6A9A4} => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe 
Task: {DE534944-2810-43BA-8951-093EE657617B} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2019-09-10] (Adobe Inc. -> Adobe)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 200.42.4.199 200.49.130.51 200.49.130.51
Tcpip\..\Interfaces\{604C0362-A527-4191-AA0D-B471014270A5}: [DhcpNameServer] 200.42.4.199 200.49.130.51 200.49.130.51

Internet Explorer:
==================
BHO: Easy Photo Print -> {9421DD08-935F-4701-A9CA-22DF90AC4EA6} -> C:\Program Files (x86)\Epson Software\Easy Photo Print\EPTBL.dll [2012-01-25] (SEIKO EPSON Corporation -> SEIKO EPSON CORPORATION)
BHO-x32: E-Web Print -> {201CF130-E29C-4E5C-A73F-CD197DEFA6AE} -> C:\Program Files (x86)\Epson Software\E-Web Print\ewps_tb.dll [2014-11-27] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_40\bin\ssv.dll [2015-03-30] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_40\bin\jp2ssv.dll [2015-03-30] (Oracle America, Inc. -> Oracle Corporation)
Toolbar: HKLM - Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files (x86)\Epson Software\Easy Photo Print\EPTBL.dll [2012-01-25] (SEIKO EPSON Corporation -> SEIKO EPSON CORPORATION)
Toolbar: HKLM-x32 - E-Web Print - {201CF130-E29C-4E5C-A73F-CD197DEFA6AE} - C:\Program Files (x86)\Epson Software\E-Web Print\ewps_tb.dll [2014-11-27] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)

FireFox:
========
FF DefaultProfile: bij10560.default-1472267121028-1517939563534
FF ProfilePath: C:\Users\Administrador\AppData\Roaming\Mozilla\Firefox\Profiles\bij10560.default-1472267121028-1517939563534 [2019-09-14]
FF DownloadDir: D:\Users\Administrador\Desktop\Descargas Firefox
FF Homepage: Mozilla\Firefox\Profiles\bij10560.default-1472267121028-1517939563534 -> hxxps://www.youtube.com/
FF Extension: (Steam Database) - C:\Users\Administrador\AppData\Roaming\Mozilla\Firefox\Profiles\bij10560.default-1472267121028-1517939563534\Extensions\[email protected] [2019-08-31]
FF Extension: (Augmented Steam) - C:\Users\Administrador\AppData\Roaming\Mozilla\Firefox\Profiles\bij10560.default-1472267121028-1517939563534\Extensions\{1be309c5-3e4f-4b99-927d-bb500eb4fa88}.xpi [2019-08-31]
FF Extension: (No Name) - C:\Users\Administrador\AppData\Roaming\Mozilla\Firefox\Profiles\bij10560.default-1472267121028-1517939563534\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2019-08-23]
FF HKLM-x32\...\Firefox\Extensions: [[email protected]] - C:\Program Files (x86)\Epson Software\E-Web Print\Firefox Add-on => not found
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_32_0_0_255.dll [2019-09-10] (Adobe Inc. -> )
FF Plugin: @microsoft.com/GENUINE -> C:\Windows\system32\Wat\npWatWeb.dll [2015-08-29] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation ->  Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_255.dll [2019-09-10] (Adobe Inc. -> )
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\SysWOW64\Adobe\Director\np32dsw_1167637.dll [2012-08-08] (Adobe Systems, Inc.) [File not signed]
FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll [2014-01-06] (Google Inc -> Google, Inc.)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [1999-12-31] (Intel® Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [1999-12-31] (Intel® Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.40.2 -> C:\Program Files (x86)\Java\jre1.8.0_40\bin\dtplugin\npDeployJava1.dll [2015-03-30] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.40.2 -> C:\Program Files (x86)\Java\jre1.8.0_40\bin\plugin2\npjp2.dll [2015-03-30] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> C:\Windows\system32\Wat\npWatWeb.dll [2015-08-29] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation ->  Microsoft Corporation)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2019-07-31] (Adobe Inc. -> Adobe Systems Inc.)

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [287112 2016-09-16] (Advanced Micro Devices, Inc. -> AMD)
R2 EpsonScanSvc; C:\Windows\system32\EscSvc64.exe [135824 2011-12-12] (SEIKO EPSON Corporation -> Seiko Epson Corporation)
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [747520 2013-08-27] (Intel(R) Corporation) [File not signed]
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [828376 2013-08-27] (Intel® Trusted Connect Service -> Intel(R) Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 1999-12-31] (Intel Corporation - Intel® Management Engine Firmware -> Intel Corporation)
S2 KMService; C:\Windows\SysWOW64\srvany.exe [8192 2011-04-05] () [File not signed]
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6744288 2019-06-26] (Malwarebytes Corporation -> Malwarebytes)
R2 MDM; C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe [335872 2006-10-26] (Microsoft Corporation) [File not signed]
R2 MsMpSvc; C:\Program Files\Microsoft Security Client\MsMpEng.exe [119864 2016-11-14] (Microsoft Corporation -> Microsoft Corporation)
S3 NisSrv; C:\Program Files\Microsoft Security Client\NisSrv.exe [361816 2016-11-14] (Microsoft Corporation -> Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Windows -> Microsoft Corporation)

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 amdkmdag; C:\Windows\System32\DRIVERS\atikmdag.sys [26550784 2016-09-16] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc.)
R3 amdkmdap; C:\Windows\System32\DRIVERS\atikmpag.sys [518536 2016-09-16] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
R3 AtiHDAudioService; C:\Windows\System32\drivers\AtihdW76.sys [96256 2016-03-30] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices)
S3 AX88178; C:\Windows\System32\DRIVERS\ax88178.sys [56320 2009-10-02] (Microsoft Windows Hardware Compatibility Publisher -> ASIX Electronics Corp.)
S3 AX88772; C:\Windows\System32\DRIVERS\ax88772.sys [79360 2011-06-01] (Microsoft Windows Hardware Compatibility Publisher -> ASIX Electronics Corp.)
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283200 2013-10-17] (DT Soft Ltd -> DT Soft Ltd)
R1 ESProtectionDriver; C:\Windows\system32\drivers\mbae64.sys [153312 2019-08-27] (Malwarebytes Corporation -> Malwarebytes)
R0 iaStorF; C:\Windows\System32\DRIVERS\iaStorF.sys [28656 2013-03-18] (Intel Corporation - Intel® Rapid Storage Technology -> Intel Corporation)
R2 MBAMChameleon; C:\Windows\System32\Drivers\MbamChameleon.sys [199768 2019-09-13] (Malwarebytes Corporation -> Malwarebytes)
R3 MBAMFarflt; C:\Windows\System32\DRIVERS\farflt.sys [225944 2019-09-13] (Malwarebytes Inc -> Malwarebytes)
R3 MBAMProtection; C:\Windows\system32\DRIVERS\mbam.sys [73584 2019-09-13] (Malwarebytes Corporation -> Malwarebytes)
R3 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [275232 2019-09-13] (Malwarebytes Corporation -> Malwarebytes)
R3 MBAMWebProtection; C:\Windows\System32\DRIVERS\mwac.sys [106344 2019-09-13] (Malwarebytes Corporation -> Malwarebytes)
R3 MEIx64; C:\Windows\System32\DRIVERS\TeeDriverx64.sys [100312 1999-12-31] (Intel Corporation - Intel® Management Engine Firmware -> Intel Corporation)
R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [295000 2016-08-25] (Microsoft Corporation -> Microsoft Corporation)
S3 NisDrv; C:\Windows\System32\DRIVERS\NisDrvWFP.sys [135928 2016-08-25] (Microsoft Corporation -> Microsoft Corporation)
R3 REDRAGON_MOUSE; C:\Windows\System32\drivers\REDRAGON_MOUSE.sys [26112 2017-09-21] (Microsoft Windows Hardware Compatibility Publisher ->  )
R3 VKbms; C:\Windows\System32\DRIVERS\VKbms.sys [13824 2014-07-12] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider)
S3 XSplit_Dummy; C:\Windows\System32\drivers\xspltspk.sys [26200 2015-05-25] (Splitmedialabs Limited -> SplitmediaLabs Limited)
S3 ALSysIO; \??\C:\Users\ADMINI~1\AppData\Local\Temp\ALSysIO64.sys [X] <==== ATTENTION
S3 cpuz136; \??\C:\Users\ADMINI~1\AppData\Local\Temp\cpuz136\cpuz136_x64.sys [X] <==== ATTENTION
S3 LgBttPort; system32\DRIVERS\lgbtpt64.sys [X]
S3 lgbusenum; system32\DRIVERS\lgbtbs64.sys [X]
S3 LGVMODEM; system32\DRIVERS\lgvmdm64.sys [X]
S3 Synth3dVsc; System32\drivers\synth3dvsc.sys [X]
S3 tsusbhub; system32\drivers\tsusbhub.sys [X]
S3 usbbus; system32\DRIVERS\lgx64bus.sys [X]
S3 UsbDiag; system32\DRIVERS\lgx64diag.sys [X]
S3 USBModem; system32\DRIVERS\lgx64modem.sys [X]
S3 VGPU; System32\drivers\rdvgkmd.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-09-14 06:41 - 2019-09-14 06:44 - 000000000 ____D C:\FRST
2019-09-13 13:23 - 2019-09-13 13:23 - 000225944 _____ (Malwarebytes) C:\Windows\system32\Drivers\farflt.sys
2019-09-13 13:23 - 2019-09-13 13:23 - 000106344 _____ (Malwarebytes) C:\Windows\system32\Drivers\mwac.sys
2019-09-13 13:23 - 2019-09-13 13:23 - 000073584 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbam.sys
2019-09-13 13:22 - 2019-09-13 13:22 - 000275232 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamswissarmy.sys
2019-09-13 04:58 - 2019-09-13 04:58 - 000199768 _____ (Malwarebytes) C:\Windows\system32\Drivers\MbamChameleon.sys
2019-09-13 04:58 - 2019-09-13 04:58 - 000001874 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2019-09-13 04:58 - 2019-09-13 04:58 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
2019-09-13 04:58 - 2019-08-27 05:50 - 000153312 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbae64.sys
2019-09-13 04:30 - 2019-09-13 04:31 - 000000000 ____D C:\AdwCleaner
2019-09-13 03:50 - 2019-09-13 04:52 - 000000000 ____D C:\Users\Administrador\AppData\Roaming\ZHP
2019-09-12 17:11 - 2019-09-12 17:11 - 000342393 __RSH C:\MOUNC
2019-09-12 15:31 - 2019-09-12 17:08 - 000000000 ___HD C:\$WINDOWS.~BT
2019-09-12 15:22 - 2019-09-12 15:22 - 000000000 ___HD C:\$Windows.~WS
2019-09-12 15:15 - 2019-09-12 17:11 - 000000020 __RSH C:\win7.ld
2019-09-11 05:47 - 2019-08-15 22:02 - 000123904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\poqexec.exe
2019-09-11 05:47 - 2019-08-15 21:56 - 000142336 _____ (Microsoft Corporation) C:\Windows\system32\poqexec.exe
2019-09-11 05:45 - 2019-08-28 23:56 - 003966904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2019-09-11 05:45 - 2019-08-28 23:55 - 004061112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2019-09-11 05:45 - 2019-08-28 23:53 - 005553104 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2019-09-11 05:45 - 2019-08-28 23:50 - 001078784 _____ (Microsoft Corporation) C:\Windows\system32\msctf.dll
2019-09-11 05:45 - 2019-08-27 02:07 - 025752064 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2019-09-11 05:45 - 2019-08-27 00:29 - 002909184 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2019-09-11 05:45 - 2019-08-27 00:27 - 000579072 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2019-09-11 05:45 - 2019-08-27 00:21 - 020290560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2019-09-11 05:45 - 2019-08-27 00:17 - 005500928 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2019-09-11 05:45 - 2019-08-27 00:03 - 000496128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2019-09-11 05:45 - 2019-08-26 23:59 - 002301952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2019-09-11 05:45 - 2019-08-26 23:36 - 015389184 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2019-09-11 05:45 - 2019-08-26 23:34 - 000350208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\HdAudio.sys
2019-09-11 05:45 - 2019-08-26 23:30 - 004112384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2019-09-11 05:45 - 2019-08-26 23:23 - 013791744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2019-09-11 05:45 - 2019-08-26 23:15 - 001568256 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2019-09-11 05:45 - 2019-08-26 23:06 - 001331712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2019-09-11 05:45 - 2019-08-20 00:59 - 000022016 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ws2ifsl.sys
2019-09-11 05:45 - 2019-08-20 00:51 - 003232256 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2019-09-11 05:45 - 2019-08-15 04:59 - 000878080 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2019-09-11 05:45 - 2019-08-15 04:59 - 000583680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll
2019-09-11 05:45 - 2019-08-14 14:54 - 000271360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tsmf.dll
2019-09-11 05:45 - 2019-08-14 14:53 - 000253440 _____ (Microsoft) C:\Windows\SysWOW64\DShowRdpFilter.dll
2019-09-11 05:45 - 2019-08-14 02:20 - 000300032 _____ (Microsoft Corporation) C:\Windows\system32\tsmf.dll
2019-09-11 05:45 - 2019-08-14 02:20 - 000282112 _____ (Microsoft) C:\Windows\system32\DShowRdpFilter.dll
2019-09-11 05:45 - 2019-08-14 01:59 - 000053760 _____ (Microsoft Corporation) C:\Windows\system32\LSCSHostPolicy.dll
2019-09-11 05:45 - 2019-08-12 23:50 - 004927488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2019-09-11 05:45 - 2019-08-12 21:56 - 005785600 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2019-09-11 05:45 - 2019-08-12 21:56 - 001650176 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2019-09-11 05:44 - 2019-08-28 23:55 - 000627424 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2019-09-11 05:44 - 2019-08-28 23:54 - 001319496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2019-09-11 05:44 - 2019-08-28 23:53 - 000709856 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2019-09-11 05:44 - 2019-08-28 23:53 - 000264120 _____ (Microsoft Corporation) C:\Windows\system32\hal.dll
2019-09-11 05:44 - 2019-08-28 23:53 - 000155360 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2019-09-11 05:44 - 2019-08-28 23:53 - 000096992 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2019-09-11 05:44 - 2019-08-28 23:52 - 000836608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msctf.dll
2019-09-11 05:44 - 2019-08-28 23:52 - 000666112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2019-09-11 05:44 - 2019-08-28 23:52 - 000644096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll
2019-09-11 05:44 - 2019-08-28 23:52 - 000555520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2019-09-11 05:44 - 2019-08-28 23:52 - 000342528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certcli.dll
2019-09-11 05:44 - 2019-08-28 23:52 - 000096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2019-09-11 05:44 - 2019-08-28 23:51 - 001670784 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2019-09-11 05:44 - 2019-08-28 23:50 - 001472512 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2019-09-11 05:44 - 2019-08-28 23:50 - 001211392 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2019-09-11 05:44 - 2019-08-28 23:50 - 001162752 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2019-09-11 05:44 - 2019-08-28 23:50 - 000880640 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2019-09-11 05:44 - 2019-08-28 23:50 - 000733184 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2019-09-11 05:44 - 2019-08-28 23:50 - 000463872 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll
2019-09-11 05:44 - 2019-08-28 23:50 - 000408576 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2019-09-11 05:44 - 2019-08-28 23:50 - 000361984 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll
2019-09-11 05:44 - 2019-08-28 23:50 - 000345600 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2019-09-11 05:44 - 2019-08-28 23:50 - 000317440 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2019-09-11 05:44 - 2019-08-28 23:50 - 000312320 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2019-09-11 05:44 - 2019-08-28 23:50 - 000243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2019-09-11 05:44 - 2019-08-28 23:50 - 000236032 _____ (Microsoft Corporation) C:\Windows\system32\srvsvc.dll
2019-09-11 05:44 - 2019-08-28 23:50 - 000215552 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2019-09-11 05:44 - 2019-08-28 23:19 - 000129536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\videoprt.sys
2019-09-11 05:44 - 2019-08-28 23:15 - 000464384 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv.sys
2019-09-11 05:44 - 2019-08-28 23:15 - 000406016 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys
2019-09-11 05:44 - 2019-08-28 23:15 - 000291328 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2019-09-11 05:44 - 2019-08-28 23:15 - 000169984 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys
2019-09-11 05:44 - 2019-08-28 23:15 - 000161280 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2019-09-11 05:44 - 2019-08-28 23:14 - 000112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2019-09-11 05:44 - 2019-08-27 17:50 - 000390536 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2019-09-11 05:44 - 2019-08-27 16:59 - 000341896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2019-09-11 05:44 - 2019-08-27 00:27 - 000417280 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2019-09-11 05:44 - 2019-08-27 00:27 - 000066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2019-09-11 05:44 - 2019-08-27 00:27 - 000048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2019-09-11 05:44 - 2019-08-27 00:26 - 000088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2019-09-11 05:44 - 2019-08-27 00:20 - 000054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2019-09-11 05:44 - 2019-08-27 00:17 - 000615936 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2019-09-11 05:44 - 2019-08-27 00:16 - 000144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2019-09-11 05:44 - 2019-08-27 00:15 - 000814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2019-09-11 05:44 - 2019-08-27 00:15 - 000790528 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2019-09-11 05:44 - 2019-08-27 00:08 - 000969216 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2019-09-11 05:44 - 2019-08-27 00:05 - 000489984 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2019-09-11 05:44 - 2019-08-27 00:02 - 000341504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2019-09-11 05:44 - 2019-08-26 23:59 - 000077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2019-09-11 05:44 - 2019-08-26 23:58 - 000107520 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2019-09-11 05:44 - 2019-08-26 23:58 - 000087552 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2019-09-11 05:44 - 2019-08-26 23:56 - 000047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2019-09-11 05:44 - 2019-08-26 23:55 - 000199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2019-09-11 05:44 - 2019-08-26 23:54 - 000476160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2019-09-11 05:44 - 2019-08-26 23:54 - 000092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2019-09-11 05:44 - 2019-08-26 23:53 - 000663040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2019-09-11 05:44 - 2019-08-26 23:53 - 000620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2019-09-11 05:44 - 2019-08-26 23:53 - 000115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2019-09-11 05:44 - 2019-08-26 23:52 - 000315392 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2019-09-11 05:44 - 2019-08-26 23:50 - 000152064 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2019-09-11 05:44 - 2019-08-26 23:45 - 000416256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2019-09-11 05:44 - 2019-08-26 23:42 - 000262144 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2019-09-11 05:44 - 2019-08-26 23:40 - 000728064 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2019-09-11 05:44 - 2019-08-26 23:39 - 000809472 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2019-09-11 05:44 - 2019-08-26 23:37 - 002132480 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2019-09-11 05:44 - 2019-08-26 23:37 - 001359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2019-09-11 05:44 - 2019-08-26 23:37 - 000168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2019-09-11 05:44 - 2019-08-26 23:36 - 000076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2019-09-11 05:44 - 2019-08-26 23:35 - 000279040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2019-09-11 05:44 - 2019-08-26 23:34 - 000130048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2019-09-11 05:44 - 2019-08-26 23:28 - 000230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2019-09-11 05:44 - 2019-08-26 23:27 - 002058752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2019-09-11 05:44 - 2019-08-26 23:27 - 000696320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2019-09-11 05:44 - 2019-08-26 23:26 - 004859392 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2019-09-11 05:44 - 2019-08-26 23:26 - 001155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2019-09-11 05:44 - 2019-08-26 23:09 - 004387840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2019-09-11 05:44 - 2019-08-26 23:04 - 000800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2019-09-11 05:44 - 2019-08-26 23:04 - 000710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2019-09-11 05:44 - 2019-08-22 19:07 - 000628480 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe
2019-09-11 05:44 - 2019-08-20 22:59 - 000311008 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
2019-09-11 05:44 - 2019-08-20 01:24 - 000385248 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2019-09-11 05:44 - 2019-08-19 23:47 - 001251840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll
2019-09-11 05:44 - 2019-08-14 02:22 - 000374496 _____ (Microsoft Corporation) C:\Windows\system32\clfs.sys
2019-09-11 05:44 - 2019-08-14 02:20 - 000133120 _____ (Microsoft Corporation) C:\Windows\system32\tssrvlic.dll
2019-09-11 05:44 - 2019-08-14 01:52 - 000455680 _____ (Microsoft Corporation) C:\Windows\system32\winlogon.exe
2019-09-11 05:44 - 2019-08-13 19:20 - 000162016 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe
2019-09-11 05:44 - 2019-08-13 19:19 - 000988384 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2019-09-11 05:44 - 2019-08-13 19:19 - 000267488 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys
2019-09-11 05:44 - 2019-08-13 19:16 - 001009664 _____ (Microsoft Corporation) C:\Windows\system32\user32.dll
2019-09-11 05:44 - 2019-08-13 19:16 - 000484864 _____ (Microsoft Corporation) C:\Windows\system32\StructuredQuery.dll
2019-09-11 05:44 - 2019-08-13 19:15 - 000405504 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2019-09-11 05:44 - 2019-08-13 19:15 - 000144384 _____ (Microsoft Corporation) C:\Windows\system32\cdd.dll
2019-09-11 05:44 - 2019-08-13 19:13 - 000833536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user32.dll
2019-09-11 05:44 - 2019-08-13 19:13 - 000363520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\StructuredQuery.dll
2019-09-11 05:44 - 2019-08-13 19:13 - 000313344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2019-09-11 05:44 - 2019-08-12 23:58 - 001312256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msjet40.dll
2019-09-11 05:44 - 2019-08-12 23:58 - 000475648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxbde40.dll
2019-09-11 05:44 - 2019-08-12 23:58 - 000353280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrd3x40.dll
2019-09-11 05:44 - 2019-08-12 23:58 - 000313344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrd2x40.dll
2019-09-11 05:44 - 2019-08-12 21:56 - 000802304 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2019-09-11 05:43 - 2019-08-28 23:52 - 001114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2019-09-11 05:43 - 2019-08-28 23:52 - 000690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
2019-09-11 05:43 - 2019-08-28 23:52 - 000275968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2019-09-11 05:43 - 2019-08-28 23:52 - 000261632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2019-09-11 05:43 - 2019-08-28 23:52 - 000254464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2019-09-11 05:43 - 2019-08-28 23:52 - 000223232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2019-09-11 05:43 - 2019-08-28 23:52 - 000172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2019-09-11 05:43 - 2019-08-28 23:52 - 000146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll
2019-09-11 05:43 - 2019-08-28 23:52 - 000141312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpchttp.dll
2019-09-11 05:43 - 2019-08-28 23:52 - 000082944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bcrypt.dll
2019-09-11 05:43 - 2019-08-28 23:52 - 000070144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2019-09-11 05:43 - 2019-08-28 23:52 - 000060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll
2019-09-11 05:43 - 2019-08-28 23:52 - 000050688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\appidapi.dll
2019-09-11 05:43 - 2019-08-28 23:52 - 000043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll
2019-09-11 05:43 - 2019-08-28 23:52 - 000022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2019-09-11 05:43 - 2019-08-28 23:52 - 000017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2019-09-11 05:43 - 2019-08-28 23:52 - 000007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll
2019-09-11 05:43 - 2019-08-28 23:52 - 000005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2019-09-11 05:43 - 2019-08-28 23:52 - 000005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2019-09-11 05:43 - 2019-08-28 23:52 - 000004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2019-09-11 05:43 - 2019-08-28 23:52 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2019-09-11 05:43 - 2019-08-28 23:52 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2019-09-11 05:43 - 2019-08-28 23:52 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2019-09-11 05:43 - 2019-08-28 23:52 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2019-09-11 05:43 - 2019-08-28 23:52 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2019-09-11 05:43 - 2019-08-28 23:52 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2019-09-11 05:43 - 2019-08-28 23:52 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2019-09-11 05:43 - 2019-08-28 23:52 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2019-09-11 05:43 - 2019-08-28 23:52 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2019-09-11 05:43 - 2019-08-28 23:52 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2019-09-11 05:43 - 2019-08-28 23:52 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2019-09-11 05:43 - 2019-08-28 23:52 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2019-09-11 05:43 - 2019-08-28 23:52 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2019-09-11 05:43 - 2019-08-28 23:52 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2019-09-11 05:43 - 2019-08-28 23:52 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2019-09-11 05:43 - 2019-08-28 23:52 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2019-09-11 05:43 - 2019-08-28 23:52 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2019-09-11 05:43 - 2019-08-28 23:52 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2019-09-11 05:43 - 2019-08-28 23:52 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2019-09-11 05:43 - 2019-08-28 23:52 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2019-09-11 05:43 - 2019-08-28 23:52 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2019-09-11 05:43 - 2019-08-28 23:52 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2019-09-11 05:43 - 2019-08-28 23:50 - 000690688 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2019-09-11 05:43 - 2019-08-28 23:50 - 000503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2019-09-11 05:43 - 2019-08-28 23:50 - 000210432 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2019-09-11 05:43 - 2019-08-28 23:50 - 000190464 _____ (Microsoft Corporation) C:\Windows\system32\rpchttp.dll
2019-09-11 05:43 - 2019-08-28 23:50 - 000146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2019-09-11 05:43 - 2019-08-28 23:50 - 000135680 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2019-09-11 05:43 - 2019-08-28 23:50 - 000123904 _____ (Microsoft Corporation) C:\Windows\system32\bcrypt.dll
2019-09-11 05:43 - 2019-08-28 23:50 - 000094208 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2019-09-11 05:43 - 2019-08-28 23:50 - 000063488 _____ (Microsoft Corporation) C:\Windows\system32\setbcdlocale.dll
2019-09-11 05:43 - 2019-08-28 23:50 - 000060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2019-09-11 05:43 - 2019-08-28 23:50 - 000059904 _____ (Microsoft Corporation) C:\Windows\system32\appidapi.dll
2019-09-11 05:43 - 2019-08-28 23:50 - 000050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2019-09-11 05:43 - 2019-08-28 23:50 - 000044032 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2019-09-11 05:43 - 2019-08-28 23:50 - 000043520 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll
2019-09-11 05:43 - 2019-08-28 23:50 - 000034816 _____ (Microsoft Corporation) C:\Windows\system32\appidsvc.dll
2019-09-11 05:43 - 2019-08-28 23:50 - 000028672 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2019-09-11 05:43 - 2019-08-28 23:50 - 000028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2019-09-11 05:43 - 2019-08-28 23:50 - 000022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2019-09-11 05:43 - 2019-08-28 23:50 - 000016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll
2019-09-11 05:43 - 2019-08-28 23:50 - 000013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll
2019-09-11 05:43 - 2019-08-28 23:50 - 000013312 _____ (Microsoft Corporation) C:\Windows\system32\sscore.dll
2019-09-11 05:43 - 2019-08-28 23:50 - 000007168 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2019-09-11 05:43 - 2019-08-28 23:50 - 000006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2019-09-11 05:43 - 2019-08-28 23:50 - 000005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2019-09-11 05:43 - 2019-08-28 23:50 - 000004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2019-09-11 05:43 - 2019-08-28 23:50 - 000004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2019-09-11 05:43 - 2019-08-28 23:50 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2019-09-11 05:43 - 2019-08-28 23:50 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2019-09-11 05:43 - 2019-08-28 23:50 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2019-09-11 05:43 - 2019-08-28 23:50 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2019-09-11 05:43 - 2019-08-28 23:50 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2019-09-11 05:43 - 2019-08-28 23:50 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2019-09-11 05:43 - 2019-08-28 23:50 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2019-09-11 05:43 - 2019-08-28 23:50 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2019-09-11 05:43 - 2019-08-28 23:50 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2019-09-11 05:43 - 2019-08-28 23:50 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2019-09-11 05:43 - 2019-08-28 23:50 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2019-09-11 05:43 - 2019-08-28 23:50 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2019-09-11 05:43 - 2019-08-28 23:50 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2019-09-11 05:43 - 2019-08-28 23:50 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2019-09-11 05:43 - 2019-08-28 23:50 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2019-09-11 05:43 - 2019-08-28 23:50 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2019-09-11 05:43 - 2019-08-28 23:50 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2019-09-11 05:43 - 2019-08-28 23:50 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2019-09-11 05:43 - 2019-08-28 23:50 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2019-09-11 05:43 - 2019-08-28 23:50 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2019-09-11 05:43 - 2019-08-28 23:50 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2019-09-11 05:43 - 2019-08-28 23:50 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2019-09-11 05:43 - 2019-08-28 23:50 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2019-09-11 05:43 - 2019-08-28 23:50 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2019-09-11 05:43 - 2019-08-28 23:27 - 000050688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe
2019-09-11 05:43 - 2019-08-28 23:27 - 000009728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sscore.dll
2019-09-11 05:43 - 2019-08-28 23:22 - 000148480 _____ (Microsoft Corporation) C:\Windows\system32\appidpolicyconverter.exe
2019-09-11 05:43 - 2019-08-28 23:22 - 000064512 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
2019-09-11 05:43 - 2019-08-28 23:22 - 000062464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\appid.sys
2019-09-11 05:43 - 2019-08-28 23:22 - 000025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2019-09-11 05:43 - 2019-08-28 23:22 - 000017920 _____ (Microsoft Corporation) C:\Windows\system32\appidcertstorecheck.exe
2019-09-11 05:43 - 2019-08-28 23:22 - 000014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2019-09-11 05:43 - 2019-08-28 23:22 - 000007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2019-09-11 05:43 - 2019-08-28 23:22 - 000002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2019-09-11 05:43 - 2019-08-28 23:21 - 000036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptbase.dll
2019-09-11 05:43 - 2019-08-28 23:21 - 000006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2019-09-11 05:43 - 2019-08-28 23:21 - 000004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2019-09-11 05:43 - 2019-08-28 23:21 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2019-09-11 05:43 - 2019-08-28 23:21 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2019-09-11 05:43 - 2019-08-28 23:19 - 000338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2019-09-11 05:43 - 2019-08-28 23:18 - 000296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2019-09-11 05:43 - 2019-08-28 23:15 - 000129536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2019-09-11 05:43 - 2019-08-28 23:14 - 000064512 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\amdk8.sys
2019-09-11 05:43 - 2019-08-28 23:14 - 000062464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\intelppm.sys
2019-09-11 05:43 - 2019-08-28 23:14 - 000060928 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\processr.sys
2019-09-11 05:43 - 2019-08-28 23:14 - 000060928 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\amdppm.sys
2019-09-11 05:43 - 2019-08-28 23:14 - 000044544 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\npfs.sys
2019-09-11 05:43 - 2019-08-28 23:14 - 000030720 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2019-09-11 05:43 - 2019-08-27 00:41 - 002724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2019-09-11 05:43 - 2019-08-27 00:41 - 000004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2019-09-11 05:43 - 2019-08-27 00:19 - 000034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2019-09-11 05:43 - 2019-08-27 00:16 - 000116224 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2019-09-11 05:43 - 2019-08-27 00:15 - 002724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2019-09-11 05:43 - 2019-08-27 00:03 - 000062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2019-09-11 05:43 - 2019-08-27 00:02 - 000047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2019-09-11 05:43 - 2019-08-27 00:01 - 000064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2019-09-11 05:43 - 2019-08-26 23:56 - 000030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2019-09-11 05:43 - 2019-08-26 23:40 - 000073216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2019-09-11 05:43 - 2019-08-26 23:40 - 000060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2019-09-11 05:43 - 2019-08-26 23:39 - 000091136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2019-09-11 05:43 - 2019-08-20 22:56 - 000071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll
2019-09-11 05:43 - 2019-08-20 22:56 - 000025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\lpk.dll
2019-09-11 05:43 - 2019-08-20 22:56 - 000010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dciman32.dll
2019-09-11 05:43 - 2019-08-20 20:19 - 000034304 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2019-09-11 05:43 - 2019-08-20 01:21 - 000101376 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2019-09-11 05:43 - 2019-08-20 01:21 - 000046080 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2019-09-11 05:43 - 2019-08-20 01:21 - 000041472 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll
2019-09-11 05:43 - 2019-08-20 01:21 - 000014336 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll
2019-09-11 05:43 - 2019-08-13 19:15 - 000732160 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2019-09-11 05:43 - 2019-08-12 21:56 - 002863104 _____ (Microsoft Corporation) C:\Windows\system32\aitstatic.exe
2019-09-11 05:43 - 2019-08-12 21:56 - 001712640 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2019-09-11 05:43 - 2019-08-12 21:56 - 000634368 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2019-09-11 05:43 - 2019-08-12 21:56 - 000501760 _____ (Microsoft Corporation) C:\Windows\system32\centel.dll
2019-09-11 05:43 - 2019-08-12 21:56 - 000456192 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2019-09-11 05:43 - 2019-08-12 21:56 - 000315904 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
2019-09-11 05:43 - 2019-08-12 21:56 - 000257024 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll
2019-09-11 03:02 - 2019-09-12 15:31 - 000000000 ____D C:\ESD
2019-09-03 12:36 - 2019-09-14 03:22 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox
2019-09-03 08:40 - 2019-09-13 15:33 - 000000000 ____D C:\Users\Administrador\AppData\Roaming\Blitz-helpers
2019-09-03 08:33 - 2019-09-14 05:53 - 000000000 ____D C:\Users\Administrador\AppData\Roaming\Blitz
2019-09-03 08:33 - 2019-09-12 20:54 - 000000000 ____D C:\Users\Administrador\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Blitz Inc
2019-09-01 17:46 - 2019-09-01 17:46 - 000002802 _____ C:\Windows\System32\Tasks\CCleanerSkipUAC
2019-09-01 16:31 - 2019-09-01 16:31 - 000001837 _____ C:\Users\Administrador\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Spotify.lnk
2019-09-01 16:31 - 2019-09-01 16:31 - 000000000 ____D C:\Users\Administrador\AppData\Roaming\Spotify
2019-08-30 23:07 - 2019-09-13 13:39 - 000000000 ____D C:\Program Files (x86)\Steam
2019-08-30 23:07 - 2019-08-30 23:07 - 000000966 _____ C:\Users\Public\Desktop\Steam.lnk
2019-08-30 23:07 - 2019-08-30 23:07 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
2019-08-22 18:10 - 2019-08-22 18:10 - 000002994 _____ C:\Windows\System32\Tasks\{F5A1EF45-0710-4D6D-8A7F-CE9F850906F9}

==================== One month (modified) ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-09-14 06:39 - 2016-11-15 23:21 - 000000000 ____D C:\Users\Administrador\AppData\LocalLow\Mozilla
2019-09-14 05:54 - 2010-03-12 14:17 - 000000000 ____D C:\Windows\SysWOW64\Macromed
2019-09-14 03:55 - 2009-07-14 01:45 - 000023632 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2019-09-14 03:55 - 2009-07-14 01:45 - 000023632 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2019-09-13 13:22 - 2009-07-14 02:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2019-09-13 06:10 - 2016-08-05 17:46 - 000065536 _____ C:\Windows\system32\spu_storage.bin
2019-09-13 04:58 - 2016-06-02 16:25 - 000000000 ____D C:\ProgramData\Malwarebytes
2019-09-13 04:33 - 2015-01-07 21:44 - 000000000 ____D C:\ProgramData\EPSON
2019-09-13 04:14 - 2016-06-01 21:19 - 000000771 _____ C:\DelFix.txt
2019-09-13 04:11 - 2009-07-14 00:20 - 000000000 ____D C:\Windows\inf
2019-09-13 03:58 - 2015-06-20 02:57 - 000000000 ____D C:\Windows\Minidump
2019-09-13 02:51 - 2015-11-11 04:40 - 000001902 _____ C:\Users\Administrador\Desktop\JRT.txt
2019-09-12 20:54 - 2017-03-18 04:59 - 000000000 ____D C:\ProgramData\Administrador
2019-09-12 16:03 - 2015-08-31 03:50 - 000003732 _____ C:\Windows\diagerr.xml
2019-09-12 16:03 - 2015-08-31 03:50 - 000001890 _____ C:\Windows\diagwrn.xml
2019-09-12 16:03 - 2010-03-12 08:49 - 000008192 __RSH C:\BOOTSECT.BAK
2019-09-12 16:01 - 2015-08-31 03:55 - 000000001 ___SH C:\BOOTNXT
2019-09-12 15:32 - 2010-03-12 08:49 - 000000000 ____D C:\Windows\Panther
2019-09-12 14:39 - 2016-06-01 21:14 - 000425648 _____ C:\Windows\system32\FNTCACHE.DAT
2019-09-12 06:11 - 2015-08-29 17:20 - 000000000 ___SD C:\Windows\system32\CompatTel
2019-09-11 04:16 - 2009-07-14 00:20 - 000000000 ____D C:\Windows\system32\oobe
2019-09-10 18:04 - 2018-03-14 03:04 - 000004504 _____ C:\Windows\System32\Tasks\Adobe Flash Player NPAPI Notifier
2019-09-10 18:04 - 2013-10-15 01:10 - 000004320 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2019-09-10 18:04 - 2012-10-25 16:57 - 000842296 _____ (Adobe) C:\Windows\SysWOW64\FlashPlayerApp.exe
2019-09-10 18:04 - 2012-10-25 16:57 - 000175160 _____ (Adobe) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2019-09-10 18:04 - 2012-10-25 16:57 - 000000000 ____D C:\Windows\system32\Macromed
2019-09-10 14:50 - 2010-03-12 16:39 - 000000000 ____D C:\Program Files (x86)\Google
2019-09-10 14:21 - 2016-06-15 06:58 - 000111296 _____ C:\Windows\SysWOW64\GDIPFONTCACHEV1.DAT
2019-09-04 10:48 - 2016-01-06 11:25 - 000111296 _____ C:\Windows\system32\GDIPFONTCACHEV1.DAT
2019-09-03 02:27 - 2016-07-24 18:07 - 000000000 ____D C:\Users\Administrador\AppData\Roaming\uTorrent
2019-09-03 02:27 - 2016-05-25 05:42 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Cheat Engine 6.5.1
2019-09-03 02:27 - 2013-10-17 21:24 - 000000000 ____D C:\Users\Administrador\AppData\Roaming\DAEMON Tools Lite
2019-09-03 02:27 - 2010-03-22 15:13 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Compumap
2019-09-03 02:16 - 2016-06-02 18:52 - 000000829 _____ C:\Users\Public\Desktop\CCleaner.lnk
2019-09-01 17:46 - 2018-01-02 23:56 - 000003870 _____ C:\Windows\System32\Tasks\CCleaner Update
2019-09-01 17:46 - 2016-06-02 18:52 - 000000000 ____D C:\Program Files\CCleaner
2019-08-23 17:24 - 2016-10-13 15:30 - 000002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2019-08-21 19:04 - 2009-07-14 00:20 - 000000000 ____D C:\Windows\system32\NDF
2019-08-15 05:11 - 2009-07-14 02:08 - 000032636 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2019-08-15 01:19 - 2009-07-14 00:20 - 000000000 ____D C:\Windows\rescache

==================== Files in the root of some directories ================

2011-04-05 15:49 - 2011-04-05 15:49 - 000000000 _____ () C:\Users\Administrador\AppData\Roaming\chrtmp
2014-02-06 10:16 - 2019-06-01 05:40 - 000000156 _____ () C:\Users\Administrador\AppData\Roaming\default.rss
2013-10-24 21:04 - 2013-10-24 21:04 - 002423608 _____ (Piriform Ltd) C:\Users\Administrador\AppData\Local\CCleaner.exe
2013-10-24 21:04 - 2013-10-24 21:05 - 000000990 _____ () C:\Users\Administrador\AppData\Local\ccleaner.ini
2013-10-24 21:04 - 2013-10-24 21:04 - 000033280 _____ () C:\Users\Administrador\AppData\Local\lang-1034.dll

==================== SigCheck ===============================

(There is no automatic fix for files that do not pass verification.)


LastRegBack: 2019-09-11 06:34
==================== End of FRST.txt ============================
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 14-09-2019
Ran by Administrador (14-09-2019 06:46:59)
Running from D:\Users\Administrador\Desktop
Windows 7 Ultimate Service Pack 1 (X64) (2010-03-12 16:00:21)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrador (S-1-5-21-786306497-2436674552-526500336-500 - Administrator - Enabled) => %SystemDrive%\Users\Administrador
HomeGroupUser$ (S-1-5-21-786306497-2436674552-526500336-1007 - Limited - Enabled)
Invitado (S-1-5-21-786306497-2436674552-526500336-501 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Microsoft Security Essentials (Enabled - Up to date) {B7ECF8CD-0188-6703-DBA4-AA65C6ACFB0A}
AS: Microsoft Security Essentials (Enabled - Up to date) {0C8D1929-27B2-688D-E114-9117BD2BB1B7}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adobe Acrobat Reader DC - Español (HKLM-x32\...\{AC76BA86-7AD7-1034-7B44-AC0F074E4100}) (Version: 19.012.20040 - Adobe Systems Incorporated)
Adobe Flash Player 32 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 32.0.0.255 - Adobe)
Adobe Flash Player 32 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 32.0.0.255 - Adobe)
Adobe Shockwave Player 11.6 (HKLM-x32\...\Adobe Shockwave Player) (Version: 11.6.7.637 - Adobe Systems, Inc.)
Advertising Center (HKLM-x32\...\{B2EC4A38-B545-4A00-8214-13FE0E915E6D}) (Version: 0.0.0.2 - Nero AG) Hidden
AMD Install Manager (HKLM\...\AMD Catalyst Install Manager) (Version: 9.0.000.4 - Advanced Micro Devices, Inc.)
ASIO4ALL (HKLM-x32\...\ASIO4ALL) (Version: 2.10 - Michael Tippach)
AX88772A & AX88772 Vista Drivers (HKLM-x32\...\{D4CE807B-E15D-4715-98D4-BA7573222844}) (Version: 1.0.1.0 - ASIX Electronics Corporation) Hidden
AX88772A & AX88772 Vista Drivers (HKLM-x32\...\InstallShield_{D4CE807B-E15D-4715-98D4-BA7573222844}) (Version: 1.0.1.0 - ASIX Electronics Corporation)
Blitz (HKU\S-1-5-21-786306497-2436674552-526500336-500\...\Blitz) (Version: 1.3.0 - Blitz Inc.)
Catalyst Control Center Next Localization BR (HKLM\...\{C80C12DC-3959-4028-1681-F2BF00866439}) (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CHS (HKLM\...\{B0199EE9-B640-3D24-29F8-99B1C425697A}) (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CHT (HKLM\...\{8F5D8F15-4A07-E887-C8FD-498804F2522F}) (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CS (HKLM\...\{55FB36B8-663A-06C2-9A6F-34A0AFFD906C}) (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization DA (HKLM\...\{27D9A3A3-D0D2-2260-A2AA-A7228B6022B6}) (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization DE (HKLM\...\{C59870AD-505D-4C9E-B625-D1DE6B1ABF8D}) (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization EL (HKLM\...\{38072574-E1D1-9B6C-EAB4-27E207E0B54A}) (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization ES (HKLM\...\{C7F2F764-33A8-7ED1-8ED9-BD594C814386}) (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization FI (HKLM\...\{352C8FF2-CB23-F2C3-CC82-B2F20AC15B5C}) (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization FR (HKLM\...\{13556222-6637-F9E8-A6A6-186D6996E5E0}) (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization HU (HKLM\...\{3B8435FC-47AD-7A7E-BCBD-13DF296DB149}) (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization IT (HKLM\...\{1E60CDCF-E4AF-2B49-3473-E9C10C0D6031}) (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization JA (HKLM\...\{2459C0BB-C5C8-2FD0-2437-BD92FB666A15}) (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization KO (HKLM\...\{58011544-00D2-DD75-4E0D-944AD2D3773D}) (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization NL (HKLM\...\{9E93DDED-A342-2621-8B33-A7FDE09E2A15}) (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization NO (HKLM\...\{EBCCB5CD-B2B0-6870-DCC3-A7CCCC1B1B68}) (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization PL (HKLM\...\{D214F8C8-A231-E193-971C-7D185108F908}) (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization RU (HKLM\...\{C078842D-6E39-ACBA-8927-51697B6D89B0}) (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization SV (HKLM\...\{CE1A9479-C86A-81A5-729F-9B65120D15E1}) (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization TH (HKLM\...\{81DFFE49-771C-3262-99DD-35AB35FEF71A}) (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization TR (HKLM\...\{56C43946-966D-1B4B-3910-3B4741F9CAF9}) (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 5.61 - Piriform)
Compresor WinRAR (HKLM\...\WinRAR archiver) (Version:  - )
DAEMON Tools Lite (HKLM-x32\...\DAEMON Tools Lite) (Version: 4.47.1.0333 - Disc Soft Ltd)
DolbyFiles (HKLM-x32\...\{B1ADF008-E898-4FE2-8A1F-690D9A06ACAF}) (Version: 2.0 - Nero AG) Hidden
Epson Customer Participation (HKLM\...\{814FA673-A085-403C-9545-747FC1495069}) (Version: 1.4.0.0 - SEIKO EPSON CORPORATION)
Epson Easy Photo Print 2 (HKLM-x32\...\{79D0F056-39DE-4FDD-83FD-1554CE2C6443}) (Version: 2.4.0.0 - SEIKO EPSON CORPORATION)
Epson Easy Photo Print Plug-in for PMB(Picture Motion Browser) (HKLM-x32\...\{B2D55EB8-32C5-4B43-9006-9E97DECBA178}) (Version: 1.00.0000 - SEIKO EPSON CORPORATION2)
Epson Easy Photo Print Plug-in for Windows Live Photo Gallery (HKLM-x32\...\EEPPPlugIn) (Version:  - SEIKO EPSON Corporation)
Epson Easy Photo Print Plug-in for Windows Live Photo Gallery Setup (HKLM-x32\...\{7B7044AE-6D1F-456D-B2BA-28BFFFAF3F71}) (Version: 1.00.0000 - SEIKO EPSON Corporation) Hidden
Epson Event Manager (HKLM-x32\...\{44F72193-F59C-4303-BAE8-E3E4BC1C122C}) (Version: 3.01.0003 - Seiko Epson Corporation)
Epson E-Web Print (HKLM-x32\...\{682A3328-9621-4BAD-91FA-873A076610C4}) (Version: 1.21.0000 - SEIKO EPSON CORPORATION)
EPSON L355 Series Printer Uninstall (HKLM\...\EPSON L355 Series) (Version:  - SEIKO EPSON Corporation)
EPSON Scan (HKLM-x32\...\EPSON Scanner) (Version:  - Seiko Epson Corporation)
EpsonNet Print (HKLM-x32\...\{3E31400D-274E-4647-916C-2CACC3741799}) (Version: 2.5.00 - SEIKO EPSON CORPORATION)
ESET Online Scanner v3 (HKLM-x32\...\ESET Online Scanner) (Version:  - )
Final Fantasy VIII (HKLM-x32\...\Final Fantasy VIII_is1) (Version:  - )
Firestorm Launcher versión 1.1 (HKLM-x32\...\{008D5963-9A73-4472-8C16-A5BF04491B9D}_is1) (Version: 1.1 - Firestorm)
Google Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.21.169 - Google Inc.) Hidden
Google+ Auto Backup (HKLM-x32\...\{A50DE037-B5C0-4C8A-8049-B0C576B313D1}) (Version: 1.0.21.81 - Google)
ImagXpress (HKLM-x32\...\{A8F2089B-1F79-4BF6-B385-A2C2B0B9A74D}) (Version: 7.0.74.0 - Nero AG) Hidden
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.5.23.1766 - Intel Corporation)
Intel(R) USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 1.0.10.255 - Intel Corporation)
Java 8 Update 40 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218040F0}) (Version: 8.0.400 - Oracle Corporation)
K-Lite Codec Pack 9.3.0 (Full) (HKLM-x32\...\KLiteCodecPack_is1) (Version: 9.3.0 - )
League of Legends (HKLM-x32\...\{E86FBD55-9636-46A1-ACA7-57F8C09CC322}) (Version: 3.0.1 - Riot Games) Hidden
League of Legends (HKLM-x32\...\League of Legends 3.0.1) (Version: 3.0.1 - Riot Games)
Malwarebytes versión 3.8.3.2965 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.8.3.2965 - Malwarebytes)
Menu Templates - Starter Kit (HKLM-x32\...\{B78120A0-CF84-4366-A393-4D0A59BC546C}) (Version: 9.4.6.0 - Nero AG) Hidden
Microsoft .NET Framework 4.7.2 (español) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 3082) (Version: 4.7.03062 - Microsoft Corporation)
Microsoft .NET Framework 4.7.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.7.03062 - Microsoft Corporation)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version:  - Microsoft)
Microsoft Office Enterprise 2007 (HKLM-x32\...\ENTERPRISE) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office Excel 2007 Help Actualización (KB963678) (HKLM-x32\...\{90120000-0016-0C0A-0000-0000000FF1CE}_ENTERPRISE_{59E09C3D-4878-47D9-87DB-6D0018026889}) (Version:  - Microsoft)
Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Outlook 2007 Help Actualización (KB963677) (HKLM-x32\...\{90120000-001A-0C0A-0000-0000000FF1CE}_ENTERPRISE_{59C244C2-0C37-4E85-8F7E-DBDD3958B694}) (Version:  - Microsoft)
Microsoft Office Powerpoint 2007 Help Actualización (KB963669) (HKLM-x32\...\{90120000-0018-0C0A-0000-0000000FF1CE}_ENTERPRISE_{F318245D-05AE-4681-A749-A036CE44AF29}) (Version:  - Microsoft)
Microsoft Office Word 2007 Help Actualización (KB963665) (HKLM-x32\...\{90120000-001B-0C0A-0000-0000000FF1CE}_ENTERPRISE_{377BA42A-1C84-45D6-94B8-6D00887D172D}) (Version:  - Microsoft)
Microsoft Security Essentials (HKLM\...\Microsoft Security Client) (Version: 4.10.209.0 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50918.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{A49F249F-0C91-497F-86DF-B2585E8E76B7}) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6E8E85E8-CE4B-4FF5-91F7-04999C9FAE6A}) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (HKLM\...\{F1685080-A18F-39F7-87CC-1FC1C5357364}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729 (HKLM\...\{E34002C7-8CE7-3F76-B36C-09FA973BC4F6}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{09C0A8D5-EEC1-369D-8C7A-2E2DD17DCA5E}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{402ED4A1-8F5B-387A-8688-997ABF58B8F2}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{57660847-B1F7-35BD-9118-F62EB863A598}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (HKLM-x32\...\{22154f09-719a-4619-bb71-5b3356999fbf}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Movie Templates - Starter Kit (HKLM-x32\...\{E498385E-1C51-459A-B45F-1721E37AA1A0}) (Version: 9.4.6.0 - Nero AG) Hidden
Mozilla Firefox 69.0 (x64 es-AR) (HKLM\...\Mozilla Firefox 69.0 (x64 es-AR)) (Version: 69.0 - Mozilla)
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
MSXML 4.0 SP2 Parser and SDK (HKLM-x32\...\{716E0306-8318-4364-8B8F-0CC4E9376BAC}) (Version: 4.20.9818.0 - Microsoft Corporation)
Native Instruments Controller Editor (HKLM-x32\...\Native Instruments Controller Editor) (Version:  - Native Instruments)
Native Instruments Guitar Rig 5 (HKLM-x32\...\Native Instruments Guitar Rig 5) (Version: 5.2.0.2770 - Native Instruments)
Native Instruments Guitar Rig Mobile IO Driver (HKLM-x32\...\Native Instruments Guitar Rig Mobile IO Driver) (Version:  - Native Instruments)
Native Instruments Guitar Rig Session IO Driver (HKLM-x32\...\Native Instruments Guitar Rig Session IO Driver) (Version:  - Native Instruments)
Native Instruments Rig Kontrol 3 Driver (HKLM-x32\...\Native Instruments Rig Kontrol 3 Driver) (Version:  - Native Instruments)
Native Instruments Service Center (HKLM-x32\...\Native Instruments Service Center) (Version: 2.4.4.1428 - Native Instruments)
Nero 9 Trial (HKLM-x32\...\{704fcd9f-b599-4146-a091-807257696688}) (Version:  - Nero AG)
NVIDIA Display Control Panel (HKLM\...\NVIDIA Display Control Panel) (Version: 6.14.12.5896 - NVIDIA Corporation)
NVIDIA Drivers (HKLM\...\NVIDIA Drivers) (Version: 1.10.62.40 - NVIDIA Corporation)
Open Broadcaster Software (HKLM-x32\...\Open Broadcaster Software) (Version:  - )
PCSX2 - Playstation 2 Emulator (HKLM-x32\...\pcsx2-r5350) (Version:  - )
Piano Electrónico 2.6 (HKLM-x32\...\Piano Electrónico 2.6_is1) (Version: 2.6.0.0 - Maurício Antunes Oliveira)
Picasa 3 (HKLM-x32\...\Picasa 3) (Version: 3.9 - Google, Inc.)
Pro Evolution Soccer 6 (HKLM-x32\...\{EBB794ED-D282-4334-92FB-254481EFF514}) (Version: 1.00.0000 - KONAMI) Hidden
Pro Evolution Soccer 6 (HKLM-x32\...\InstallShield_{EBB794ED-D282-4334-92FB-254481EFF514}) (Version: 1.00.0000 - KONAMI)
PVSonyDll (HKLM\...\{3D3E663D-4E7E-4577-A560-7ECDDD45548A}) (Version: 1.00.0001 - NVIDIA Corporation) Hidden
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.86.508.2014 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7373 - Realtek Semiconductor Corp.)
REDRAGON Gaming Mouse V1.0.07 (HKLM-x32\...\{4A5BB50A-1F4B-4D17-BA7A-E278DCFED941}_is1) (Version: 1.00.05 - )
Resident Evil 2 2019 Deluxe Edition MULTi12 - ElAmigos versión 1.0 (HKLM-x32\...\{E8E7E0A8-73F1-4E9B-B50E-25CA040AD7EC}_is1) (Version: 1.0 - Capcom)
Revo Uninstaller 1.95 (HKLM-x32\...\Revo Uninstaller) (Version: 1.95 - VS Revo Group)
Software Updater (HKLM-x32\...\{E1BAD1BA-C0E8-4018-9281-E7D2C6B07474}) (Version: 4.3.6 - SEIKO EPSON CORPORATION)
SoundTrax (HKLM-x32\...\{C5A7CB6C-E76D-408F-BA0E-85605420FE9D}) (Version: 4.4.37.1 - Nero AG) Hidden
Spelling Dictionaries Support For Adobe Reader 9 (HKLM-x32\...\{AC76BA86-7AD7-5464-3428-900000000004}) (Version: 9.0.0 - Adobe Systems Incorporated)
Spotify (HKU\S-1-5-21-786306497-2436674552-526500336-500\...\Spotify) (Version: 1.1.14.475.g566c8beb - Spotify AB)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
swMSM (HKLM-x32\...\{612C34C7-5E90-47D8-9B5C-0F717DD82726}) (Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
Total Commander v7.50a (HKLM-x32\...\Total Commander v7.50a_is1) (Version:  - )
Twitch (HKU\S-1-5-21-786306497-2436674552-526500336-500\...\{DEE70742-F4E9-44CA-B2B9-EE95DCF37295}) (Version: 7.0.0.0 - Twitch Interactive, Inc.)
Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version:  - Microsoft)
Windows Live Sync (HKLM-x32\...\{953D4586-9A16-495E-BA1F-EE5AA66604DB}) (Version: 14.0.8089.726 - Microsoft Corporation)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

ShellExecuteHooks-x32: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2217832 2009-02-26] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ExplorerEx] -> {E056AFDD-03E9-4D73-8D33-8FCCBCA73438} =>  -> No File
ContextMenuHandlers1-x32: [Cover Designer] -> {73FCA462-9BD5-4065-A73F-A8E5F6904EF7} => C:\Program Files (x86)\Nero\Nero 9\Nero CoverDesigner\CoverEdExtension.dll [2009-09-24] (Nero AG -> Nero AG)
ContextMenuHandlers1: [EPP] -> {09A47860-11B0-4DA5-AFA5-26D86198A780} => C:\Program Files\Microsoft Security Client\shellext.dll [2016-11-14] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2009-06-10] () [File not signed]
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext32.dll [2009-06-10] () [File not signed]
ContextMenuHandlers2: [EPP] -> {09A47860-11B0-4DA5-AFA5-26D86198A780} => C:\Program Files\Microsoft Security Client\shellext.dll [2016-11-14] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2019-06-26] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers4: [EPP] -> {09A47860-11B0-4DA5-AFA5-26D86198A780} => C:\Program Files\Microsoft Security Client\shellext.dll [2016-11-14] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers4: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2009-06-10] () [File not signed]
ContextMenuHandlers4-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext32.dll [2009-06-10] () [File not signed]
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\Program Files\AMD\CNext\CNext\atiacm64.dll [2016-09-16] (Advanced Micro Devices, Inc.) [File not signed]
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\system32\nvshext.dll [2010-07-09] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2019-06-26] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2009-06-10] () [File not signed]
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext32.dll [2009-06-10] () [File not signed]

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)


==================== Loaded Modules (Whitelisted) ==============

2019-09-13 15:33 - 2019-09-13 15:31 - 000093184 _____ () [File not signed] \\?\C:\ProgramData\Administrador\Blitz\current\resources\app.asar.unpacked\node_modules\node-dll-injector\build\Release\injector.node
2019-09-13 16:09 - 2019-09-13 16:09 - 000119296 _____ () [File not signed] \\?\C:\Users\Administrador\AppData\Local\Temp\1442d136-01de-4d39-9337-656e782bec12.tmp.node
2019-09-13 16:09 - 2019-09-13 16:09 - 001111040 _____ () [File not signed] \\?\C:\Users\Administrador\AppData\Local\Temp\1bccbde1-2a09-43f5-a123-b3218bba7df4.tmp.node
2019-09-13 16:09 - 2019-09-13 16:09 - 000108032 _____ () [File not signed] \\?\C:\Users\Administrador\AppData\Local\Temp\46044062-cc8b-4231-a1b6-087bfabbc597.tmp.node
2019-09-13 16:09 - 2019-09-13 16:09 - 000156672 _____ () [File not signed] \\?\C:\Users\Administrador\AppData\Local\Temp\6907e21a-cf65-42a7-909c-9326a0838e5e.tmp.node
2019-09-13 16:09 - 2019-09-13 16:09 - 000107008 _____ () [File not signed] \\?\C:\Users\Administrador\AppData\Local\Temp\6d30e282-b6f8-4b7a-a74a-2e4540836aea.tmp.node
2019-09-13 16:25 - 2019-09-13 16:25 - 000613376 _____ () [File not signed] \\?\C:\Users\Administrador\AppData\Local\Temp\a2009de8-4668-4831-b6eb-2bf8cfa65ed1.tmp.node
2019-09-13 16:09 - 2019-09-13 16:09 - 000145408 _____ () [File not signed] \\?\C:\Users\Administrador\AppData\Local\Temp\a2c6c02b-5653-4b86-b8f6-8796c0be1b23.tmp.node
2010-03-12 14:00 - 2009-06-10 21:08 - 000165888 _____ () [File not signed] C:\Program Files (x86)\WinRAR\rarext.dll
2016-09-13 02:01 - 2016-09-13 02:01 - 000011776 _____ () [File not signed] C:\Program Files\AMD\CNext\CNext\libEGL.dll
2016-09-13 02:01 - 2016-09-13 02:01 - 002013696 _____ () [File not signed] C:\Program Files\AMD\CNext\CNext\libGLESv2.dll
2016-09-13 02:01 - 2016-09-13 02:01 - 000014336 _____ () [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick.2\qtquick2plugin.dll
2016-09-13 02:01 - 2016-09-13 02:01 - 000739840 _____ () [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Controls\qtquickcontrolsplugin.dll
2016-09-13 02:01 - 2016-09-13 02:01 - 000071168 _____ () [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Layouts\qquicklayoutsplugin.dll
2016-09-13 02:01 - 2016-09-13 02:01 - 000014336 _____ () [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Window.2\windowplugin.dll
2019-09-12 20:54 - 2019-09-13 15:31 - 001987072 _____ () [File not signed] C:\ProgramData\Administrador\Blitz\current\ffmpeg.dll
2019-09-12 20:54 - 2019-09-13 15:31 - 000202752 _____ () [File not signed] C:\ProgramData\Administrador\Blitz\current\resources\helper\native-utils.dll
2019-09-12 20:54 - 2019-09-13 15:31 - 000117248 _____ () [File not signed] C:\ProgramData\Administrador\Blitz\current\swiftshader\libegl.dll
2019-09-12 20:54 - 2019-09-13 15:31 - 002253312 _____ () [File not signed] C:\ProgramData\Administrador\Blitz\current\swiftshader\libglesv2.dll
2014-12-29 04:52 - 1999-12-31 21:00 - 000073728 _____ (Intel Corporation) [File not signed] C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.dll
2006-10-26 13:44 - 2006-10-26 13:44 - 000123904 _____ (Microsoft Corporation) [File not signed] C:\Program Files (x86)\Common Files\Microsoft Shared\VS7Debug\csm.dll
2009-05-23 02:45 - 2009-05-23 02:45 - 000247808 _____ (Microsoft Corporation) [File not signed] C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\msdbg2.dll
2011-08-26 03:01 - 2011-08-26 03:01 - 001093120 _____ (Microsoft Corporation) [File not signed] C:\Windows\WinSxS\x86_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_cbf5e994470a1a8f\MFC80U.DLL
2005-01-13 10:47 - 2005-01-13 10:47 - 000049152 _____ (SEIKO EPSON CORP.) [File not signed] C:\Program Files (x86)\EPSON Software\Event Manager\ESPSUTL.dll
2011-04-14 09:25 - 2011-04-14 09:25 - 000206336 _____ (SEIKO EPSON CORP.) [File not signed] C:\Program Files (x86)\EPSON Software\Event Manager\ScnCom10.dll
2011-04-14 09:25 - 2011-04-14 09:25 - 000082944 _____ (SEIKO EPSON CORP.) [File not signed] C:\Program Files (x86)\EPSON Software\Event Manager\ScnEps25.dll
2011-04-14 09:25 - 2011-04-14 09:25 - 000055808 _____ (SEIKO EPSON CORP.) [File not signed] C:\Program Files (x86)\EPSON Software\Event Manager\ScnMgr10.dll
2012-02-09 12:53 - 2012-02-09 12:53 - 000110080 _____ (SEIKO EPSON CORPORATION) [File not signed] C:\Program Files (x86)\EPSON Software\Event Manager\epnsm.dll
2009-10-21 17:39 - 2009-10-21 17:39 - 000291328 _____ (SEIKO EPSON CORPORATION) [File not signed] C:\Program Files (x86)\EPSON Software\Event Manager\LcMgr.dll
2011-04-14 09:16 - 2011-04-14 09:16 - 000136704 _____ (SEIKO EPSON CORPORATION) [File not signed] C:\Program Files (x86)\EPSON Software\Event Manager\ScanEngine30.dll
2015-01-07 21:45 - 2011-08-30 13:38 - 000558080 _____ (SEIKO EPSON CORPORATION) [File not signed] C:\Windows\System32\enppmon.dll
2015-01-07 21:45 - 2011-08-01 18:24 - 000252416 _____ (SEIKO EPSON CORPORATION) [File not signed] C:\Windows\System32\enpres.dll
2016-09-13 02:01 - 2016-09-13 02:01 - 000049664 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qdds.dll
2016-09-13 02:01 - 2016-09-13 02:01 - 000029696 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qgif.dll
2016-09-13 02:01 - 2016-09-13 02:01 - 000037376 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qicns.dll
2016-09-13 02:01 - 2016-09-13 02:01 - 000030208 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qico.dll
2016-09-13 02:01 - 2016-09-13 02:01 - 000459776 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qjp2.dll
2016-09-13 02:01 - 2016-09-13 02:01 - 000236544 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qjpeg.dll
2016-09-13 02:01 - 2016-09-13 02:01 - 000275456 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qmng.dll
2016-09-13 02:01 - 2016-09-13 02:01 - 000023552 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qsvg.dll
2016-09-13 02:01 - 2016-09-13 02:01 - 000022528 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qtga.dll
2016-09-13 02:01 - 2016-09-13 02:01 - 000351744 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qtiff.dll
2016-09-13 02:01 - 2016-09-13 02:01 - 000021504 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qwbmp.dll
2016-09-13 02:01 - 2016-09-13 02:01 - 000374784 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qwebp.dll
2016-09-13 02:01 - 2016-09-13 02:01 - 001212416 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\platforms\qwindows.dll
2016-09-13 02:00 - 2016-09-13 02:00 - 000912384 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Charts.dll
2016-09-13 02:00 - 2016-09-13 02:00 - 005496320 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Core.dll
2016-09-13 02:00 - 2016-09-13 02:00 - 005804544 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Gui.dll
2016-09-13 02:00 - 2016-09-13 02:00 - 001061376 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Network.dll
2016-09-13 02:00 - 2016-09-13 02:00 - 003187712 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Qml.dll
2016-09-13 02:00 - 2016-09-13 02:00 - 002924544 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Quick.dll
2016-09-13 02:00 - 2016-09-13 02:00 - 000310784 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Svg.dll
2016-09-13 02:00 - 2016-09-13 02:00 - 005444608 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Widgets.dll
2016-09-13 02:01 - 2016-09-13 02:01 - 000277504 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5WinExtras.dll
2016-09-13 02:01 - 2016-09-13 02:01 - 000193024 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Xml.dll

==================== Alternate Data Streams (Whitelisted) =========

==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)


==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2015-03-24 18:38 - 2016-06-05 19:52 - 000000019 _____ C:\Windows\system32\drivers\etc\hosts

127.0.0.1 localhost

==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\ProgramData\Oracle\Java\javapath;C:\Program Files (x86)\Intel\iCLS Client\;C:\Program Files\Intel\iCLS Client\;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT
HKU\S-1-5-21-786306497-2436674552-526500336-500\Control Panel\Desktop\\Wallpaper -> C:\Users\Administrador\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 200.42.4.199 - 200.49.130.51
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

If an entry is included in the fixlist, it will be removed.


==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{C3580A54-7AC8-43B7-8CFF-B708ECB3E9D3}] => (Allow) C:\Program Files (x86)\Windows Live\Sync\WindowsLiveSync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{D33949C4-7249-4E19-AAE4-0EDAEF1A6EEC}] => (Allow) svchost.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [{557E0C61-C85E-40C1-91B1-29B661B6B044}] => (Allow) C:\Program Files (x86)\EPSON Software\Event Manager\EEventManager.exe (SEIKO EPSON Corporation -> SEIKO EPSON CORPORATION)
FirewallRules: [{F604BF8A-2951-4CE4-92D3-DA1AA93DCBAC}] => (Allow) C:\Program Files (x86)\EPSON Software\Event Manager\EEventManager.exe (SEIKO EPSON Corporation -> SEIKO EPSON CORPORATION)
FirewallRules: [TCP Query User{1FBF3F84-6972-43D8-AF4B-410BB3498EA5}C:\program files (x86)\epson software\event manager\eeventmanager.exe] => (Block) C:\program files (x86)\epson software\event manager\eeventmanager.exe (SEIKO EPSON Corporation -> SEIKO EPSON CORPORATION)
FirewallRules: [UDP Query User{0E4A3F2E-3584-4ADD-929D-C05C8DF38C88}C:\program files (x86)\epson software\event manager\eeventmanager.exe] => (Block) C:\program files (x86)\epson software\event manager\eeventmanager.exe (SEIKO EPSON Corporation -> SEIKO EPSON CORPORATION)
FirewallRules: [TCP Query User{310B886E-3F87-4944-AD2D-CC23C5DC863D}C:\program files (x86)\konami\pro evolution soccer 6\pes6.exe] => (Allow) C:\program files (x86)\konami\pro evolution soccer 6\pes6.exe (KONAMI) [File not signed]
FirewallRules: [UDP Query User{669BDF22-2F27-4E12-B6FB-52C201D2DD31}C:\program files (x86)\konami\pro evolution soccer 6\pes6.exe] => (Allow) C:\program files (x86)\konami\pro evolution soccer 6\pes6.exe (KONAMI) [File not signed]
FirewallRules: [TCP Query User{7B8D36C0-5D14-4E72-A3B6-93FF0DCA7DBA}C:\program files (x86)\java\jre1.8.0_40\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_40\bin\javaw.exe
FirewallRules: [UDP Query User{73520D45-64A9-42F5-8C39-8F281C97A7AA}C:\program files (x86)\java\jre1.8.0_40\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_40\bin\javaw.exe
FirewallRules: [{FC591EAF-B687-44D1-B71E-754E76D457AD}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{E6925A22-F138-4AC0-AE9B-5B1E4020F42A}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [TCP Query User{0BBF350C-1AB0-4A95-8F4F-08C480D331A6}D:\users\administrador\desktop\l4d2_franxsoft\left4dead2.exe] => (Allow) D:\users\administrador\desktop\l4d2_franxsoft\left4dead2.exe () [File not signed]
FirewallRules: [UDP Query User{6BBE99AF-9243-4218-9F84-F141AA99F0E0}D:\users\administrador\desktop\l4d2_franxsoft\left4dead2.exe] => (Allow) D:\users\administrador\desktop\l4d2_franxsoft\left4dead2.exe () [File not signed]
FirewallRules: [{937DB8A5-58D9-4FA0-B245-D46F1A9D61F8}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{5C6190C0-12EC-42B6-AA07-E3929EB4A0F5}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{DB6F71E1-8C0F-42C7-9FE2-2F6753E6CA53}] => (Allow) C:\Users\Administrador\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{05596BF9-61AD-486B-9EF5-CC035708459F}] => (Allow) C:\Users\Administrador\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{9D2FA959-F213-4ED0-913F-36FA710CEB8F}] => (Allow) C:\Users\Administrador\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{1AFD0A37-3207-4C5E-BE6B-C23184890092}] => (Allow) C:\Users\Administrador\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{0B8253DB-9043-4673-A358-91805E6F9750}] => (Allow) C:\Users\Administrador\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{2350F8AD-78C8-468E-AFDA-783B82A47AC7}] => (Allow) C:\Users\Administrador\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [TCP Query User{B634C811-03E3-4BF5-B8D6-3DF8DD944E83}D:\users\administrador\desktop\w3\wcii ft\war3.exe] => (Allow) D:\users\administrador\desktop\w3\wcii ft\war3.exe (Blizzard Entertainment) [File not signed]
FirewallRules: [UDP Query User{0F8C1503-A71F-4B99-8CE8-A8B4BFAB4499}D:\users\administrador\desktop\w3\wcii ft\war3.exe] => (Allow) D:\users\administrador\desktop\w3\wcii ft\war3.exe (Blizzard Entertainment) [File not signed]
FirewallRules: [{18C0F77D-CCA0-4860-B666-1FA323F608E0}] => (Allow) LPort=29000
FirewallRules: [{F5940F25-AC8D-411E-91FC-83DA9DAA56D5}] => (Allow) LPort=29001
FirewallRules: [{C9A49679-82E4-4FD5-879D-57F1750F2509}] => (Allow) LPort=29002
FirewallRules: [{0290E3F7-B1B3-4EF8-9710-842120545CD1}] => (Allow) LPort=29003
FirewallRules: [{B2EAB7DA-9C8D-405F-9062-97D7359866D7}] => (Allow) LPort=29004
FirewallRules: [{43664100-B6B4-42BC-AD1C-D401966E7E70}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)
FirewallRules: [{3F409112-0825-4576-8496-5C906D165728}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)
FirewallRules: [TCP Query User{AFB5BBB4-6BD9-4409-8C12-B2BBFA8E1357}D:\users\administrador\desktop\w3\wcii ft\war3.exe] => (Allow) D:\users\administrador\desktop\w3\wcii ft\war3.exe (Blizzard Entertainment) [File not signed]
FirewallRules: [UDP Query User{31229501-3333-478F-8042-FB51A2A65A8F}D:\users\administrador\desktop\w3\wcii ft\war3.exe] => (Allow) D:\users\administrador\desktop\w3\wcii ft\war3.exe (Blizzard Entertainment) [File not signed]
FirewallRules: [{61B7E127-A84C-4092-B814-19388FB38633}] => (Allow) C:\Riot Games\League of Legends\LeagueClient.exe (Riot Games, Inc. -> )
FirewallRules: [{D5022A3D-5EBC-4278-957A-C996B84D771F}] => (Allow) C:\Riot Games\League of Legends\LeagueClient.exe (Riot Games, Inc. -> )
FirewallRules: [{C756E5BD-8F86-496B-A7E0-71AC04E9907D}] => (Allow) C:\Riot Games\League of Legends\RADS\system\rads_user_kernel.exe (Riot Games, Inc. -> )
FirewallRules: [{D48CC7CD-D940-42A6-95C0-20194AD8B5CC}] => (Allow) C:\Riot Games\League of Legends\RADS\system\rads_user_kernel.exe (Riot Games, Inc. -> )
FirewallRules: [{2B6411A3-71E2-4943-80C0-750ADCADB5B6}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{72159783-EB53-414D-AB48-091DC3C02FCA}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{404D4F27-B425-4158-8C12-6E27F7B43BE4}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe No File
FirewallRules: [{BBFC4A58-767F-46F8-8282-BA53CE63BAF7}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe No File
FirewallRules: [{B17498B0-70C0-4111-8B6A-3852F79186C7}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe (Valve -> )
FirewallRules: [{458DFCAD-7CBA-4C18-86ED-BBB26164D08E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe (Valve -> )
FirewallRules: [TCP Query User{EED8E2EF-AA9C-46E8-B0BE-8959A4A23AD3}C:\riot games\league of legends\game\league of legends.exe] => (Allow) C:\riot games\league of legends\game\league of legends.exe (Riot Games, Inc. -> )
FirewallRules: [UDP Query User{B756D8CA-10E9-4C48-8B9D-A5AFC90B1835}C:\riot games\league of legends\game\league of legends.exe] => (Allow) C:\riot games\league of legends\game\league of legends.exe (Riot Games, Inc. -> )
FirewallRules: [TCP Query User{8C0024F4-AE14-4EB0-81E9-FC086DA90DCD}C:\programdata\administrador\blitz\current\blitz.exe] => (Allow) C:\programdata\administrador\blitz\current\blitz.exe (Swift Media Entertainment, Inc. -> Blitz Inc.)
FirewallRules: [UDP Query User{1FF23698-B3AA-4F8B-89B0-C281FEEE6A27}C:\programdata\administrador\blitz\current\blitz.exe] => (Allow) C:\programdata\administrador\blitz\current\blitz.exe (Swift Media Entertainment, Inc. -> Blitz Inc.)

==================== Restore Points =========================

13-09-2019 02:49:34 JRT Pre-Junkware Removal
13-09-2019 03:27:23 AdwCleaner_BeforeCleaning_13/09/2019_03:27:18
13-09-2019 03:40:30 AdwCleaner_BeforeCleaning_13/09/2019_03:40:24
13-09-2019 04:31:39 AdwCleaner_BeforeCleaning_13/09/2019_04:31:32

==================== Faulty Device Manager Devices =============

Name: Adaptador de tunelización Teredo de Microsoft
Description: Adaptador de tunelización Teredo de Microsoft
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.


==================== Event log errors: =========================

Application errors:
==================
Error: (09/13/2019 01:39:09 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nombre de la aplicación con errores: steamwebhelper.exe, versión: 5.34.50.81, marca de tiempo: 0x5d77edb5
Nombre del módulo con errores: chrome_elf.dll, versión: 72.0.3626.121, marca de tiempo: 0x5c776ad0
Código de excepción: 0x80000003
Desplazamiento de errores: 0x000000000001ab39
Id. del proceso con errores: 0x104c
Hora de inicio de la aplicación con errores: 0x01d56a51c44531cc
Ruta de acceso de la aplicación con errores: C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
Ruta de acceso del módulo con errores: C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\chrome_elf.dll
Id. del informe: 01fdca9e-d645-11e9-bf70-60a44cae3a0d

Error: (09/13/2019 01:38:59 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nombre de la aplicación con errores: steamwebhelper.exe, versión: 5.34.50.81, marca de tiempo: 0x5d77edb5
Nombre del módulo con errores: chrome_elf.dll, versión: 72.0.3626.121, marca de tiempo: 0x5c776ad0
Código de excepción: 0x80000003
Desplazamiento de errores: 0x000000000001ab39
Id. del proceso con errores: 0x11e8
Hora de inicio de la aplicación con errores: 0x01d56a51be39f35a
Ruta de acceso de la aplicación con errores: C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
Ruta de acceso del módulo con errores: C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\chrome_elf.dll
Id. del informe: fbf2651b-d644-11e9-bf70-60a44cae3a0d

Error: (09/13/2019 01:38:49 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nombre de la aplicación con errores: steamwebhelper.exe, versión: 5.34.50.81, marca de tiempo: 0x5d77edb5
Nombre del módulo con errores: chrome_elf.dll, versión: 72.0.3626.121, marca de tiempo: 0x5c776ad0
Código de excepción: 0x80000003
Desplazamiento de errores: 0x000000000001ab39
Id. del proceso con errores: 0x1658
Hora de inicio de la aplicación con errores: 0x01d56a51b82eb4e7
Ruta de acceso de la aplicación con errores: C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
Ruta de acceso del módulo con errores: C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\chrome_elf.dll
Id. del informe: f5e726a9-d644-11e9-bf70-60a44cae3a0d

Error: (09/13/2019 01:38:39 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nombre de la aplicación con errores: steamwebhelper.exe, versión: 5.34.50.81, marca de tiempo: 0x5d77edb5
Nombre del módulo con errores: chrome_elf.dll, versión: 72.0.3626.121, marca de tiempo: 0x5c776ad0
Código de excepción: 0x80000003
Desplazamiento de errores: 0x000000000001ab39
Id. del proceso con errores: 0xbb4
Hora de inicio de la aplicación con errores: 0x01d56a51b2234f65
Ruta de acceso de la aplicación con errores: C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
Ruta de acceso del módulo con errores: C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\chrome_elf.dll
Id. del informe: efde4997-d644-11e9-bf70-60a44cae3a0d

Error: (09/13/2019 01:38:29 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nombre de la aplicación con errores: steamwebhelper.exe, versión: 5.34.50.81, marca de tiempo: 0x5d77edb5
Nombre del módulo con errores: chrome_elf.dll, versión: 72.0.3626.121, marca de tiempo: 0x5c776ad0
Código de excepción: 0x80000003
Desplazamiento de errores: 0x000000000001ab39
Id. del proceso con errores: 0xc14
Hora de inicio de la aplicación con errores: 0x01d56a51ac1810f3
Ruta de acceso de la aplicación con errores: C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
Ruta de acceso del módulo con errores: C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\chrome_elf.dll
Id. del informe: e9d54575-d644-11e9-bf70-60a44cae3a0d

Error: (09/13/2019 01:38:18 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nombre de la aplicación con errores: steamwebhelper.exe, versión: 5.34.50.81, marca de tiempo: 0x5d77edb5
Nombre del módulo con errores: chrome_elf.dll, versión: 72.0.3626.121, marca de tiempo: 0x5c776ad0
Código de excepción: 0x80000003
Desplazamiento de errores: 0x000000000001ab39
Id. del proceso con errores: 0x908
Hora de inicio de la aplicación con errores: 0x01d56a51a60cab70
Ruta de acceso de la aplicación con errores: C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
Ruta de acceso del módulo con errores: C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\chrome_elf.dll
Id. del informe: e3c7a5a3-d644-11e9-bf70-60a44cae3a0d

Error: (09/13/2019 01:38:08 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nombre de la aplicación con errores: steamwebhelper.exe, versión: 5.34.50.81, marca de tiempo: 0x5d77edb5
Nombre del módulo con errores: chrome_elf.dll, versión: 72.0.3626.121, marca de tiempo: 0x5c776ad0
Código de excepción: 0x80000003
Desplazamiento de errores: 0x000000000001ab39
Id. del proceso con errores: 0x3b4
Hora de inicio de la aplicación con errores: 0x01d56a51a0016cfe
Ruta de acceso de la aplicación con errores: C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
Ruta de acceso del módulo con errores: C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\chrome_elf.dll
Id. del informe: ddbea180-d644-11e9-bf70-60a44cae3a0d

Error: (09/13/2019 01:37:58 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nombre de la aplicación con errores: steamwebhelper.exe, versión: 5.34.50.81, marca de tiempo: 0x5d77edb5
Nombre del módulo con errores: chrome_elf.dll, versión: 72.0.3626.121, marca de tiempo: 0x5c776ad0
Código de excepción: 0x80000003
Desplazamiento de errores: 0x000000000001ab39
Id. del proceso con errores: 0x12a4
Hora de inicio de la aplicación con errores: 0x01d56a5199f62e8c
Ruta de acceso de la aplicación con errores: C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
Ruta de acceso del módulo con errores: C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\chrome_elf.dll
Id. del informe: d7b101ae-d644-11e9-bf70-60a44cae3a0d


System errors:
=============
Error: (09/14/2019 06:47:58 AM) (Source: Disk) (EventID: 7) (User: )
Description: El dispositivo, \Device\Harddisk0\DR0, tiene un bloque defectuoso.

Error: (09/14/2019 06:47:55 AM) (Source: Disk) (EventID: 7) (User: )
Description: El dispositivo, \Device\Harddisk0\DR0, tiene un bloque defectuoso.

Error: (09/13/2019 04:32:23 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: El servicio Servicio de uso compartido de red del Reproductor de Windows Media no pudo iniciarse debido al siguiente error: 
No se puede iniciar el servicio debido a un error en el inicio de sesión.

Error: (09/13/2019 04:32:23 AM) (Source: Service Control Manager) (EventID: 7038) (User: )
Description: El servicio WMPNetworkSvc no se pudo iniciarse como NT AUTHORITY\NetworkService con la contraseña configurada actualmente debido al siguiente error: 
Solicitud no compatible.


Para asegurarse de que el servicio esté correctamente configurado, use el complemento Servicios en Microsoft Management Console (MMC).

Error: (09/13/2019 04:31:53 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: El servicio Servicio de uso compartido de red del Reproductor de Windows Media terminó inesperadamente. Esto se ha repetido 1 veces. Se realizará la siguiente acción correctora en 30000 milisegundos: Reiniciar el servicio.

Error: (09/13/2019 04:31:53 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: El servicio Intel(R) Dynamic Application Loader Host Interface Service se terminó de manera inesperada. Esto ha sucedido 1 veces.

Error: (09/13/2019 04:31:53 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: El servicio Epson Scanner Service se terminó de manera inesperada. Esto ha sucedido 1 veces.

Error: (09/13/2019 04:31:53 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: El servicio NIHardwareService se terminó de manera inesperada. Esto ha sucedido 1 veces.


==================== Memory info =========================== 

BIOS: American Megatrends Inc. 1806 01/03/2013
Motherboard: ASUSTeK COMPUTER INC. P8Z77-M
Processor: Intel(R) Core(TM) i5-3570 CPU @ 3.40GHz
Percentage of memory in use: 63%
Total physical RAM: 8138.07 MB
Available physical RAM: 2966.77 MB
Total Virtual: 16274.29 MB
Available Virtual: 9391.02 MB

==================== Drives ================================

Drive c: (Sistema) (Fixed) (Total:200 GB) (Free:45.72 GB) NTFS ==>[drive with boot components (obtained from BCD)]
Drive d: (Datos) (Fixed) (Total:1197.26 GB) (Free:720.62 GB) NTFS
Drive g: (DVD_ROM) (CDROM) (Total:0.05 GB) (Free:0 GB) UDF


==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 1397.3 GB) (Disk ID: 98976799)
Partition 1: (Active) - (Size=200 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=1197.3 GB) - (Type=05)

==================== End of Addition.txt ============================

Saludos!!

Hola @n_f1

Tienes varios errores de software, procederemos a desinstalar varios programas no los reinstales hasta que te diga.

En el caso especifico de tu navegador Google Crome se ven varios servicios activos, pero no se ve instalado.


Nota: Ejecutaste FRST desde un lugar incorrecto:

  • D:\Users\Administrador\Desktop

FRST debe ser ejecutado desde el escritorio desde la unidad donde tenemos el Sistema Operativo, que por lo general es C:.

Cortas el mismo y lo colocas en tu escritorio de C: (Si tu SO esta en D:\ desestima este paso)


Desinstala con Revo Uninstaller en su Modo Avanzado:

  • Steam
  • Spotify
  • Java 8 Update 40
  • Google Chrome Puede que no lo veas en Revo Unistaller, saltea el paso.
  • Google Update
  • Google+ Auto Backup

Manual de Revo Uninstaller.


Luego de reiniciar realiza lo siguiente:

1.- Muy Importante >>> Realizar una copia de Seguridad de su Registro.

  • Descarga DelFix en el escritorio de Windows.
  • Clic Derecho, “Ejecutar como Administrador”.
  • En la ventana principal, marca solamente la casilla “Create Registry Backup”.
  • Clic en Run.

Al terminar se abrirá un reporte llamado DelFix.txt, guárdelo por si fuera necesario y cierre la herramienta…

2.- Desactiva Temporalmente tu antivirus.

3.- Abre un nuevo archivo Notepad/Bloc de Notas y copia y pega este contenido:


Start
CloseProcesses:
CreateRestorePoint:
HKLM\...\Drivers32: [vidc.i420] => lvcod64.dll
HKLM\...\Drivers32-x32: [vidc.i420] => lvcodec2.dll
HKLM\...\Drivers32: [VIDC.FMVC] => C:\Windows\SysWOW64\fmcodec.dll [77824 2008-08-18] (Fox Magic Software) [File not signed]
Startup: C:\Users\Administrador\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\bin [2016-08-22] ()
Startup: C:\Users\Administrador\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\GTProtector.asi.upk [2016-08-22] () [File not signed]
Startup: C:\Users\Administrador\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\GTProtector.dll.upk [2016-08-22] () [File not signed]
Startup: C:\Users\Administrador\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\GTProtector.ini.upk [2016-08-22] () [File not signed]
Startup: C:\Users\Administrador\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\motd_temp.html [2016-08-22] ()
Startup: C:\Users\Administrador\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\mrv.upk [2016-08-22] () [File not signed]
Startup: C:\Users\Administrador\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\mrvgamemenu.upk [2016-08-22] () [File not signed]
Startup: C:\Users\Administrador\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\serverbrowser.upk [2016-08-22] () [File not signed]
Startup: C:\Users\Administrador\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\userconfig.upk [2016-08-22] () [File not signed]
Task: {12389A91-5D2A-4AFF-B23B-4D87CC27E26F} - System32\Tasks\{951590FE-FC76-4F8C-852C-15987B191B1D} => C:\Windows\system32\pcalua.exe -a "C:\Program Files (x86)\KONAMI\Pro Evolution Soccer 6\kitserver\setup.exe" -d "C:\Program Files (x86)\KONAMI\Pro Evolution Soccer 6\kitserver"
HO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_40\bin\ssv.dll [2015-03-30] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_40\bin\jp2ssv.dll [2015-03-30] (Oracle America, Inc. -> Oracle Corporation)
FF Extension: (No Name) - C:\Users\Administrador\AppData\Roaming\Mozilla\Firefox\Profiles\bij10560.default-1472267121028-1517939563534\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2019-08-23]
FF Plugin-x32: @java.com/DTPlugin,version=11.40.2 -> C:\Program Files (x86)\Java\jre1.8.0_40\bin\dtplugin\npDeployJava1.dll [2015-03-30] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.40.2 -> C:\Program Files (x86)\Java\jre1.8.0_40\bin\plugin2\npjp2.dll [2015-03-30] (Oracle America, Inc. -> Oracle Corporation)
2019-09-03 02:27 - 2016-05-25 05:42 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Cheat Engine 6.5.1
ShellIconOverlayIdentifiers: [ExplorerEx] -> {E056AFDD-03E9-4D73-8D33-8FCCBCA73438} =>  -> No File
2019-09-13 16:09 - 2019-09-13 16:09 - 000119296 _____ () [File not signed] \\?\C:\Users\Administrador\AppData\Local\Temp\1442d136-01de-4d39-9337-656e782bec12.tmp.node
2019-09-13 16:09 - 2019-09-13 16:09 - 001111040 _____ () [File not signed] \\?\C:\Users\Administrador\AppData\Local\Temp\1bccbde1-2a09-43f5-a123-b3218bba7df4.tmp.node
2019-09-13 16:09 - 2019-09-13 16:09 - 000108032 _____ () [File not signed] \\?\C:\Users\Administrador\AppData\Local\Temp\46044062-cc8b-4231-a1b6-087bfabbc597.tmp.node
2019-09-13 16:09 - 2019-09-13 16:09 - 000156672 _____ () [File not signed] \\?\C:\Users\Administrador\AppData\Local\Temp\6907e21a-cf65-42a7-909c-9326a0838e5e.tmp.node
2019-09-13 16:09 - 2019-09-13 16:09 - 000107008 _____ () [File not signed] \\?\C:\Users\Administrador\AppData\Local\Temp\6d30e282-b6f8-4b7a-a74a-2e4540836aea.tmp.node
2019-09-13 16:25 - 2019-09-13 16:25 - 000613376 _____ () [File not signed] \\?\C:\Users\Administrador\AppData\Local\Temp\a2009de8-4668-4831-b6eb-2bf8cfa65ed1.tmp.node
2019-09-13 16:09 - 2019-09-13 16:09 - 000145408 _____ () [File not signed] \\?\C:\Users\Administrador\AppData\Local\Temp\a2c6c02b-5653-4b86-b8f6-8796c0be1b23.tmp.node
FirewallRules: [TCP Query User{7B8D36C0-5D14-4E72-A3B6-93FF0DCA7DBA}C:\program files (x86)\java\jre1.8.0_40\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_40\bin\javaw.exe
FirewallRules: [UDP Query User{73520D45-64A9-42F5-8C39-8F281C97A7AA}C:\program files (x86)\java\jre1.8.0_40\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_40\bin\javaw.exe
FirewallRules: [{404D4F27-B425-4158-8C12-6E27F7B43BE4}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe No File
FirewallRules: [{BBFC4A58-767F-46F8-8282-BA53CE63BAF7}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe No File

CMD: ipconfig /flushdns
CMD: ipconfig /renew
CMD: bitsadmin /reset /allusers
CMD: netsh winsock reset
CMD: netsh advfirewall reset
CMD: netsh advfirewall set allprofiles state ON
CMD: netsh int ipv4 reset
CMD: netsh int ipv6 reset
RemoveProxy:
EmptyTemp:
Hosts:
END
  • Lo guardas bajo el nombre de fixlist.txt en el escritorio <<< Esto es muy importante.

Nota: Es necesario que el ejecutable Frst.exe y fixlist.txt se encuentren en la misma ubicación (escritorio) o si no la herramienta no trabajara.

  • Ejecutas Frst.exe.
  • Presionas el botón Fix y aguardas a que termine.
  • La Herramienta guardara el reporte en tu escritorio (Fixlog.txt).
  • Lo pegas en tu próxima respuesta.

Luego de reiniciar actualiza Java a su última versión.

Nos comentas .

Salu2.

Hola @SanMar te comento: el escritorio en mi SO lo tengo en D asi que desestime el paso. Luego con Revo Uninstaller, ya desinstale todos los programas a excepción de Google Chrome (ya que no lo tengo bajado porque lo había desinstalado) y Google+Autobackup (que supongo que debe ser por no tener el Google)

Sin más palabras, te dejo mi reporte de Fixlog.

Fix result of Farbar Recovery Scan Tool (x64) Version: 14-09-2019
Ran by Administrador (15-09-2019 02:39:11) Run:1
Running from D:\Users\Administrador\Desktop
Loaded Profiles: Administrador (Available Profiles: Administrador)
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start
CloseProcesses:
CreateRestorePoint:
HKLM\...\Drivers32: [vidc.i420] => lvcod64.dll
HKLM\...\Drivers32-x32: [vidc.i420] => lvcodec2.dll
HKLM\...\Drivers32: [VIDC.FMVC] => C:\Windows\SysWOW64\fmcodec.dll [77824 2008-08-18] (Fox Magic Software) [File not signed]
Startup: C:\Users\Administrador\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\bin [2016-08-22] ()
Startup: C:\Users\Administrador\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\GTProtector.asi.upk [2016-08-22] () [File not signed]
Startup: C:\Users\Administrador\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\GTProtector.dll.upk [2016-08-22] () [File not signed]
Startup: C:\Users\Administrador\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\GTProtector.ini.upk [2016-08-22] () [File not signed]
Startup: C:\Users\Administrador\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\motd_temp.html [2016-08-22] ()
Startup: C:\Users\Administrador\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\mrv.upk [2016-08-22] () [File not signed]
Startup: C:\Users\Administrador\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\mrvgamemenu.upk [2016-08-22] () [File not signed]
Startup: C:\Users\Administrador\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\serverbrowser.upk [2016-08-22] () [File not signed]
Startup: C:\Users\Administrador\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\userconfig.upk [2016-08-22] () [File not signed]
Task: {12389A91-5D2A-4AFF-B23B-4D87CC27E26F} - System32\Tasks\{951590FE-FC76-4F8C-852C-15987B191B1D} => C:\Windows\system32\pcalua.exe -a "C:\Program Files (x86)\KONAMI\Pro Evolution Soccer 6\kitserver\setup.exe" -d "C:\Program Files (x86)\KONAMI\Pro Evolution Soccer 6\kitserver"
HO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_40\bin\ssv.dll [2015-03-30] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_40\bin\jp2ssv.dll [2015-03-30] (Oracle America, Inc. -> Oracle Corporation)
FF Extension: (No Name) - C:\Users\Administrador\AppData\Roaming\Mozilla\Firefox\Profiles\bij10560.default-1472267121028-1517939563534\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2019-08-23]
FF Plugin-x32: @java.com/DTPlugin,version=11.40.2 -> C:\Program Files (x86)\Java\jre1.8.0_40\bin\dtplugin\npDeployJava1.dll [2015-03-30] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.40.2 -> C:\Program Files (x86)\Java\jre1.8.0_40\bin\plugin2\npjp2.dll [2015-03-30] (Oracle America, Inc. -> Oracle Corporation)
2019-09-03 02:27 - 2016-05-25 05:42 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Cheat Engine 6.5.1
ShellIconOverlayIdentifiers: [ExplorerEx] -> {E056AFDD-03E9-4D73-8D33-8FCCBCA73438} =>  -> No File
2019-09-13 16:09 - 2019-09-13 16:09 - 000119296 _____ () [File not signed] \\?\C:\Users\Administrador\AppData\Local\Temp\1442d136-01de-4d39-9337-656e782bec12.tmp.node
2019-09-13 16:09 - 2019-09-13 16:09 - 001111040 _____ () [File not signed] \\?\C:\Users\Administrador\AppData\Local\Temp\1bccbde1-2a09-43f5-a123-b3218bba7df4.tmp.node
2019-09-13 16:09 - 2019-09-13 16:09 - 000108032 _____ () [File not signed] \\?\C:\Users\Administrador\AppData\Local\Temp\46044062-cc8b-4231-a1b6-087bfabbc597.tmp.node
2019-09-13 16:09 - 2019-09-13 16:09 - 000156672 _____ () [File not signed] \\?\C:\Users\Administrador\AppData\Local\Temp\6907e21a-cf65-42a7-909c-9326a0838e5e.tmp.node
2019-09-13 16:09 - 2019-09-13 16:09 - 000107008 _____ () [File not signed] \\?\C:\Users\Administrador\AppData\Local\Temp\6d30e282-b6f8-4b7a-a74a-2e4540836aea.tmp.node
2019-09-13 16:25 - 2019-09-13 16:25 - 000613376 _____ () [File not signed] \\?\C:\Users\Administrador\AppData\Local\Temp\a2009de8-4668-4831-b6eb-2bf8cfa65ed1.tmp.node
2019-09-13 16:09 - 2019-09-13 16:09 - 000145408 _____ () [File not signed] \\?\C:\Users\Administrador\AppData\Local\Temp\a2c6c02b-5653-4b86-b8f6-8796c0be1b23.tmp.node
FirewallRules: [TCP Query User{7B8D36C0-5D14-4E72-A3B6-93FF0DCA7DBA}C:\program files (x86)\java\jre1.8.0_40\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_40\bin\javaw.exe
FirewallRules: [UDP Query User{73520D45-64A9-42F5-8C39-8F281C97A7AA}C:\program files (x86)\java\jre1.8.0_40\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_40\bin\javaw.exe
FirewallRules: [{404D4F27-B425-4158-8C12-6E27F7B43BE4}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe No File
FirewallRules: [{BBFC4A58-767F-46F8-8282-BA53CE63BAF7}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe No File

CMD: ipconfig /flushdns
CMD: ipconfig /renew
CMD: bitsadmin /reset /allusers
CMD: netsh winsock reset
CMD: netsh advfirewall reset
CMD: netsh advfirewall set allprofiles state ON
CMD: netsh int ipv4 reset
CMD: netsh int ipv6 reset
RemoveProxy:
EmptyTemp:
Hosts:
END
*****************

Processes closed successfully.
Restore point was successfully created.
HKLM\Software\Microsoft\Windows NT\CurrentVersion\Drivers32\\vidc.i420 => value restored successfully
HKLM\Software\WOW6432Node\Microsoft\Windows NT\CurrentVersion\Drivers32\\vidc.i420 => value restored successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Drivers32\\VIDC.FMVC" => not found
C:\Users\Administrador\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\bin => moved successfully
C:\Users\Administrador\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\GTProtector.asi.upk => moved successfully
C:\Users\Administrador\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\GTProtector.dll.upk => moved successfully
C:\Users\Administrador\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\GTProtector.ini.upk => moved successfully
C:\Users\Administrador\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\motd_temp.html => moved successfully
C:\Users\Administrador\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\mrv.upk => moved successfully
C:\Users\Administrador\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\mrvgamemenu.upk => moved successfully
C:\Users\Administrador\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\serverbrowser.upk => moved successfully
C:\Users\Administrador\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\userconfig.upk => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{12389A91-5D2A-4AFF-B23B-4D87CC27E26F}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{12389A91-5D2A-4AFF-B23B-4D87CC27E26F}" => removed successfully
C:\Windows\System32\Tasks\{951590FE-FC76-4F8C-852C-15987B191B1D} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{951590FE-FC76-4F8C-852C-15987B191B1D}" => removed successfully
HO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_40\bin\ssv.dll [2015-03-30] (Oracle America, Inc. -> Oracle Corporation) => Error: No automatic fix found for this entry.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9} => not found
HKLM\Software\Wow6432Node\Classes\CLSID\{DBC80044-A445-435b-BC74-9C25C1C588A9} => removed successfully
C:\Users\Administrador\AppData\Roaming\Mozilla\Firefox\Profiles\bij10560.default-1472267121028-1517939563534\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi => moved successfully
"HKLM\Software\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=11.40.2 -> C:\Program Files (x86)\Java\jre1.8.0_40\bin\dtplugin\npDeployJava1.dll [2015-03-30] (Oracle America, Inc." => not found
"C:\Program Files (x86)\Java\jre1.8.0_40\bin\dtplugin\npDeployJava1.dll" => not found
"HKLM\Software\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=11.40.2 -> C:\Program Files (x86)\Java\jre1.8.0_40\bin\plugin2\npjp2.dll [2015-03-30] (Oracle America, Inc." => not found
"C:\Program Files (x86)\Java\jre1.8.0_40\bin\plugin2\npjp2.dll" => not found
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Cheat Engine 6.5.1 => moved successfully
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ExplorerEx => removed successfully
HKLM\Software\Classes\CLSID\{E056AFDD-03E9-4D73-8D33-8FCCBCA73438} => not found
"C:\Users\Administrador\AppData\Local\Temp\1442d136-01de-4d39-9337-656e782bec12.tmp.node" => not found
"C:\Users\Administrador\AppData\Local\Temp\1bccbde1-2a09-43f5-a123-b3218bba7df4.tmp.node" => not found
"C:\Users\Administrador\AppData\Local\Temp\46044062-cc8b-4231-a1b6-087bfabbc597.tmp.node" => not found
"C:\Users\Administrador\AppData\Local\Temp\6907e21a-cf65-42a7-909c-9326a0838e5e.tmp.node" => not found
"C:\Users\Administrador\AppData\Local\Temp\6d30e282-b6f8-4b7a-a74a-2e4540836aea.tmp.node" => not found
"C:\Users\Administrador\AppData\Local\Temp\a2009de8-4668-4831-b6eb-2bf8cfa65ed1.tmp.node" => not found
"C:\Users\Administrador\AppData\Local\Temp\a2c6c02b-5653-4b86-b8f6-8796c0be1b23.tmp.node" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{7B8D36C0-5D14-4E72-A3B6-93FF0DCA7DBA}C:\program files (x86)\java\jre1.8.0_40\bin\javaw.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{73520D45-64A9-42F5-8C39-8F281C97A7AA}C:\program files (x86)\java\jre1.8.0_40\bin\javaw.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{404D4F27-B425-4158-8C12-6E27F7B43BE4}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{BBFC4A58-767F-46F8-8282-BA53CE63BAF7}" => not found

========= ipconfig /flushdns =========


Configuraci¢n IP de Windows

Se vaci¢ correctamente la cach‚ de resoluci¢n de DNS.

========= End of CMD: =========


========= ipconfig /renew =========


Configuraci¢n IP de Windows


Adaptador de Ethernet Conexi¢n de  rea local 4:

   Sufijo DNS espec¡fico para la conexi¢n. . : fibertel.com.ar
   V¡nculo: direcci¢n IPv6 local. . . : fe80::c175:4bc:de1:8e17%15
   Direcci¢n IPv4. . . . . . . . . . . . . . : 192.168.0.239
   M scara de subred . . . . . . . . . . . . : 255.255.255.0
   Puerta de enlace predeterminada . . . . . : 192.168.0.1

========= End of CMD: =========


========= bitsadmin /reset /allusers =========


BITSADMIN version 3.0 [ 7.5.7601 ]
BITS administration utility.
(C) Copyright 2000-2006 Microsoft Corp.

BITSAdmin is deprecated and is not guaranteed to be available in future versions of Windows.
Administrative tools for the BITS service are now provided by BITS PowerShell cmdlets.

Unable to cancel {11796EF8-3E70-4062-A2E2-D73FCD5262BA}.
0 out of 1 jobs canceled.

========= End of CMD: =========


========= netsh winsock reset =========


El cat logo Winsock se restableci¢ correctamente.
Debe reiniciar el equipo para completar el restablecimiento.


========= End of CMD: =========


========= netsh advfirewall reset =========

Aceptar


========= End of CMD: =========


========= netsh advfirewall set allprofiles state ON =========

Aceptar


========= End of CMD: =========


========= netsh int ipv4 reset =========

Global se restableci¢ correctamente.
Interfaz se restableci¢ correctamente.
Direcci¢n de unidifusi¢n se restableci¢ correctamente.
Ruta se restableci¢ correctamente.
Reinicie el equipo para completar esta acci¢n.


========= End of CMD: =========


========= netsh int ipv6 reset =========

Interfaz se restableci¢ correctamente.
Reinicie el equipo para completar esta acci¢n.


========= End of CMD: =========


========= RemoveProxy: =========

"HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings" => removed successfully
"HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings" => removed successfully
"HKU\S-1-5-21-786306497-2436674552-526500336-500\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings" => removed successfully
"HKU\S-1-5-21-786306497-2436674552-526500336-500\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings" => removed successfully


========= End of RemoveProxy: =========

C:\Windows\System32\Drivers\etc\hosts => moved successfully
Hosts restored successfully.

=========== EmptyTemp: ==========

BITS transfer queue => 8388608 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 8401608 B
Java, Flash, Steam htmlcache => 1195 B
Windows/system/drivers => 2479666 B
Edge => 0 B
Chrome => 0 B
Firefox => 1093867764 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Users => 0 B
Default => 0 B
Public => 0 B
ProgramData => 0 B
systemprofile => 128 B
systemprofile32 => 128 B
LocalService => 0 B
NetworkService => 56155398 B
A => 0 B
A => 0 B
Administrador => 10430722 B

RecycleBin => 49667185 B
EmptyTemp: => 1.1 GB temporary data Removed.

================================


The system needed a reboot.

==== End of Fixlog 02:41:46 ====

Saludos y en serio, gracias por la paciencia y la explicación!!

Hola @n_f1

Perfecto :+1:

Ahora vuelve a ejecutar FRST tal como te lo indique la primera vez en el Post 10 y nos traes sus reportes frescos.

Eso es para ver si quedaron restos y eliminarlos.

Salu2

Hola @SanMar buenísimo, ahi subo los reportes por separados ya que por caracteres no puedo juntarlos

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 14-09-2019
Ran by Administrador (administrator) on FAB-PC (15-09-2019 03:15:05)
Running from D:\Users\Administrador\Desktop
Loaded Profiles: Administrador (Available Profiles: Administrador)
Platform: Windows 7 Ultimate Service Pack 1 (X64) Language: Español (España, internacional)
Internet Explorer Version 11 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Adobe Inc. -> Adobe Systems) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\RadeonSettings.exe
(Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\atieclxx.exe
(Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\atiesrxx.exe
(Intel Corporation - Intel® Management Engine Firmware -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation - Software and Firmware Products -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
(Intel(R) Corporation) [File not signed] C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Malwarebytes Corporation -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Security Client\MsMpEng.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Security Client\NisSrv.exe
(Microsoft Corporation) [File not signed] C:\Program Files (x86)\Common Files\microsoft shared\VS7DEBUG\mdm.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(NATIVE INSTRUMENTS GmbH -> Native Instruments GmbH) C:\Program Files\Common Files\Native Instruments\Hardware\NIHardwareService.exe
(Nero AG -> Nero AG) C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Piriform Software Ltd -> Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(PXI) [File not signed] C:\Program Files (x86)\REDRAGON\Gaming Mouse\vdDaemon.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(REDRAGON) [File not signed] C:\Program Files (x86)\REDRAGON\Gaming Mouse\hid.exe
(REDRAGON) [File not signed] C:\Program Files (x86)\REDRAGON\Gaming Mouse\TrayIcon.exe
(SEIKO EPSON Corporation -> SEIKO EPSON CORPORATION) C:\Program Files (x86)\EPSON Software\Event Manager\EEventManager.exe
(SEIKO EPSON Corporation -> SEIKO EPSON CORPORATION) C:\Program Files\EPSON\EpsonCustomerParticipation\EPCP.exe
(SEIKO EPSON Corporation -> Seiko Epson Corporation) C:\Windows\System32\escsvc64.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [7660760 1999-12-31] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [MSC] => C:\Program Files\Microsoft Security Client\msseces.exe [1353680 2016-11-14] (Microsoft Corporation -> Microsoft Corporation)
HKLM\...\Run: [StartCN] => C:\Program Files\AMD\CNext\CNext\RadeonSettings.exe [8027016 2016-09-16] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [USB3MON] => C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [292088 1999-12-31] (Intel Corporation -> Intel Corporation)
HKLM-x32\...\Run: [EEventManager] => C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe [1058400 2012-01-26] (SEIKO EPSON Corporation -> SEIKO EPSON CORPORATION)
HKLM-x32\...\Run: [REDRAGON] => C:\Program Files (x86)\REDRAGON\Gaming Mouse\Hid.exe [611328 2017-03-07] (REDRAGON) [File not signed]
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [644552 2019-07-04] (Oracle America, Inc. -> Oracle Corporation)
HKU\S-1-5-21-786306497-2436674552-526500336-500\...\Run: [DAEMON Tools Lite] => C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3672640 2013-03-14] (Disc Soft Ltd -> Disc Soft Ltd)
HKU\S-1-5-21-786306497-2436674552-526500336-500\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [22714912 2019-08-15] (Piriform Software Ltd -> Piriform Ltd)
HKU\S-1-5-21-786306497-2436674552-526500336-500\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Windows\system32\PhotoScreensaver.scr [477696 2010-11-20] (Microsoft Windows -> Microsoft Corporation)
HKU\S-1-5-18\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [22714912 2019-08-15] (Piriform Software Ltd -> Piriform Ltd)
HKLM\...\Drivers32: [VIDC.FMVC] => C:\Windows\SysWOW64\fmcodec.dll [77824 2008-08-18] (Fox Magic Software) [File not signed]
HKLM\Software\Microsoft\Active Setup\Installed Components: [{2D46B6DC-2207-486B-B523-A557E6D54B47}] -> C:\Windows\system32\cmd.exe /D /C start C:\Windows\system32\ie4uinit.exe -ClearIconCache
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{2D46B6DC-2207-486B-B523-A557E6D54B47}] -> C:\Windows\system32\cmd.exe /D /C start C:\Windows\system32\ie4uinit.exe -ClearIconCache
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> "C:\Program Files (x86)\Google\Chrome\Application\63.0.3239.108\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{A6EADE66-0000-0000-484E-7E8A45000000}] -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Esl\AiodLite.dll [2019-05-02] (Adobe Inc. -> Adobe Systems, Inc.)

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {06341341-BA2B-47D5-BD07-8DB882AB89C3} - System32\Tasks\AMD Updater => C:\Program Files\AMD\CIM\\Bin64\InstallManagerApp.exe [10387848 2016-09-16] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {19346FB1-0ABA-4000-AAF4-0F34DE1CD970} - System32\Tasks\{F5A1EF45-0710-4D6D-8A7F-CE9F850906F9} => C:\Users\Administrador\AppData\Roaming\Spotify\Spotify.exe
Task: {2F462DB2-22A3-49C0-92DF-181F8716F3C0} - System32\Tasks\{0F4979AE-3499-4301-A90B-CCCC61EBF101} => C:\Program Files (x86)\Mozilla Firefox\firefox.exe 
Task: {35C475AB-B1A4-4DB0-9A5C-ACE9D80975EE} - System32\Tasks\{101ED32C-D73B-4FB0-8B34-5C0F7CE74C7F} => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe 
Task: {5300324C-75E9-4B1F-8EAD-634E712A0C34} - System32\Tasks\{92341FED-34E3-4192-8936-B24866AA31FB} => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe 
Task: {57E80BF7-19D0-4BF5-81C5-13F8067F5791} - System32\Tasks\SidebarExecute => C:\Program Files (x86)\Windows Sidebar\sidebar.exe [1174016 2010-11-20] (Microsoft Windows -> Microsoft Corporation)
Task: {70F1D177-B847-4A84-8A27-B6B63B3942E3} - System32\Tasks\{8D19F94C-B760-4434-8073-E0757AC49BF5} => C:\Program Files (x86)\Mozilla Firefox\firefox.exe 
Task: {816FBC6A-C282-4A5E-B0D9-1072B715E2F5} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_255_Plugin.exe [1457720 2019-09-10] (Adobe Inc. -> Adobe)
Task: {892BCEA1-A68D-4E36-AD40-449741EA703A} - System32\Tasks\{D1F8B07C-E0D5-4BCF-9CD9-F65898F73D56} => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe 
Task: {9B817A18-A71A-4B27-9DC6-8EE89652D9B1} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-786306497-2436674552-526500336-500Core => C:\Users\Administrador\AppData\Local\Google\Update\GoogleUpdate.exe
Task: {A2E71A14-4387-4B07-90B8-4356161A29CD} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [16585328 2019-08-15] (Piriform Software Ltd -> Piriform Ltd)
Task: {BB120B98-C7DE-4B50-BAA8-72E8584F3113} - System32\Tasks\{4115A142-8C01-43D7-BC81-688FECD07FA5} => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe 
Task: {C5A54170-DCF9-4227-BC29-A3206D644E04} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1236048 2019-07-24] (Adobe Inc. -> Adobe Systems)
Task: {C5AB4C37-49A1-4184-A419-4BF2C1076C1D} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [619416 2019-08-15] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {CF240568-1BA8-489D-A0DD-A9E81E46022D} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-786306497-2436674552-526500336-500UA => C:\Users\Administrador\AppData\Local\Google\Update\GoogleUpdate.exe
Task: {D5A6FE5B-8613-4D64-A3F3-7A9979C9D9F5} - System32\Tasks\{DAD0AF15-315B-4B5F-8CDF-3DB401A6A9A4} => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe 
Task: {DE534944-2810-43BA-8951-093EE657617B} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2019-09-10] (Adobe Inc. -> Adobe)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 200.42.4.199 200.49.130.51 200.49.130.51
Tcpip\..\Interfaces\{604C0362-A527-4191-AA0D-B471014270A5}: [DhcpNameServer] 200.42.4.199 200.49.130.51 200.49.130.51

Internet Explorer:
==================
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_221\bin\ssv.dll [2019-09-15] (Oracle America, Inc. -> Oracle Corporation)
BHO: Easy Photo Print -> {9421DD08-935F-4701-A9CA-22DF90AC4EA6} -> C:\Program Files (x86)\Epson Software\Easy Photo Print\EPTBL.dll [2012-01-25] (SEIKO EPSON Corporation -> SEIKO EPSON CORPORATION)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_221\bin\jp2ssv.dll [2019-09-15] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: E-Web Print -> {201CF130-E29C-4E5C-A73F-CD197DEFA6AE} -> C:\Program Files (x86)\Epson Software\E-Web Print\ewps_tb.dll [2014-11-27] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26] (Microsoft Corporation -> Microsoft Corporation)
Toolbar: HKLM - Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files (x86)\Epson Software\Easy Photo Print\EPTBL.dll [2012-01-25] (SEIKO EPSON Corporation -> SEIKO EPSON CORPORATION)
Toolbar: HKLM-x32 - E-Web Print - {201CF130-E29C-4E5C-A73F-CD197DEFA6AE} - C:\Program Files (x86)\Epson Software\E-Web Print\ewps_tb.dll [2014-11-27] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)

FireFox:
========
FF DefaultProfile: bij10560.default-1472267121028-1517939563534
FF ProfilePath: C:\Users\Administrador\AppData\Roaming\Mozilla\Firefox\Profiles\bij10560.default-1472267121028-1517939563534 [2019-09-15]
FF DownloadDir: D:\Users\Administrador\Desktop\Descargas Firefox
FF Homepage: Mozilla\Firefox\Profiles\bij10560.default-1472267121028-1517939563534 -> hxxps://www.youtube.com/
FF Extension: (Steam Database) - C:\Users\Administrador\AppData\Roaming\Mozilla\Firefox\Profiles\bij10560.default-1472267121028-1517939563534\Extensions\[email protected] [2019-08-31]
FF Extension: (Augmented Steam) - C:\Users\Administrador\AppData\Roaming\Mozilla\Firefox\Profiles\bij10560.default-1472267121028-1517939563534\Extensions\{1be309c5-3e4f-4b99-927d-bb500eb4fa88}.xpi [2019-08-31]
FF HKLM-x32\...\Firefox\Extensions: [[email protected]] - C:\Program Files (x86)\Epson Software\E-Web Print\Firefox Add-on => not found
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_32_0_0_255.dll [2019-09-10] (Adobe Inc. -> )
FF Plugin: @java.com/DTPlugin,version=11.221.2 -> C:\Program Files\Java\jre1.8.0_221\bin\dtplugin\npDeployJava1.dll [2019-09-15] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.221.2 -> C:\Program Files\Java\jre1.8.0_221\bin\plugin2\npjp2.dll [2019-09-15] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE -> C:\Windows\system32\Wat\npWatWeb.dll [2015-08-29] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation ->  Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_255.dll [2019-09-10] (Adobe Inc. -> )
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\SysWOW64\Adobe\Director\np32dsw_1167637.dll [2012-08-08] (Adobe Systems, Inc.) [File not signed]
FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll [2014-01-06] (Google Inc -> Google, Inc.)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [1999-12-31] (Intel® Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [1999-12-31] (Intel® Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> C:\Windows\system32\Wat\npWatWeb.dll [2015-08-29] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation ->  Microsoft Corporation)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2019-07-31] (Adobe Inc. -> Adobe Systems Inc.)

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [287112 2016-09-16] (Advanced Micro Devices, Inc. -> AMD)
R2 EpsonScanSvc; C:\Windows\system32\EscSvc64.exe [135824 2011-12-12] (SEIKO EPSON Corporation -> Seiko Epson Corporation)
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [747520 2013-08-27] (Intel(R) Corporation) [File not signed]
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [828376 2013-08-27] (Intel® Trusted Connect Service -> Intel(R) Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 1999-12-31] (Intel Corporation - Intel® Management Engine Firmware -> Intel Corporation)
S2 KMService; C:\Windows\SysWOW64\srvany.exe [8192 2011-04-05] () [File not signed]
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6744288 2019-06-26] (Malwarebytes Corporation -> Malwarebytes)
R2 MDM; C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe [335872 2006-10-26] (Microsoft Corporation) [File not signed]
R2 MsMpSvc; C:\Program Files\Microsoft Security Client\MsMpEng.exe [119864 2016-11-14] (Microsoft Corporation -> Microsoft Corporation)
R3 NisSrv; C:\Program Files\Microsoft Security Client\NisSrv.exe [361816 2016-11-14] (Microsoft Corporation -> Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Windows -> Microsoft Corporation)

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 amdkmdag; C:\Windows\System32\DRIVERS\atikmdag.sys [26550784 2016-09-16] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc.)
R3 amdkmdap; C:\Windows\System32\DRIVERS\atikmpag.sys [518536 2016-09-16] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
R3 AtiHDAudioService; C:\Windows\System32\drivers\AtihdW76.sys [96256 2016-03-30] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices)
S3 AX88178; C:\Windows\System32\DRIVERS\ax88178.sys [56320 2009-10-02] (Microsoft Windows Hardware Compatibility Publisher -> ASIX Electronics Corp.)
S3 AX88772; C:\Windows\System32\DRIVERS\ax88772.sys [79360 2011-06-01] (Microsoft Windows Hardware Compatibility Publisher -> ASIX Electronics Corp.)
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283200 2013-10-17] (DT Soft Ltd -> DT Soft Ltd)
R1 ESProtectionDriver; C:\Windows\system32\drivers\mbae64.sys [153312 2019-08-27] (Malwarebytes Corporation -> Malwarebytes)
R0 iaStorF; C:\Windows\System32\DRIVERS\iaStorF.sys [28656 2013-03-18] (Intel Corporation - Intel® Rapid Storage Technology -> Intel Corporation)
R2 MBAMChameleon; C:\Windows\System32\Drivers\MbamChameleon.sys [199768 2019-09-14] (Malwarebytes Corporation -> Malwarebytes)
R3 MBAMFarflt; C:\Windows\System32\DRIVERS\farflt.sys [225944 2019-09-15] (Malwarebytes Inc -> Malwarebytes)
R3 MBAMProtection; C:\Windows\system32\DRIVERS\mbam.sys [73584 2019-09-15] (Malwarebytes Corporation -> Malwarebytes)
R3 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [275232 2019-09-15] (Malwarebytes Corporation -> Malwarebytes)
R3 MBAMWebProtection; C:\Windows\System32\DRIVERS\mwac.sys [106344 2019-09-15] (Malwarebytes Corporation -> Malwarebytes)
R3 MEIx64; C:\Windows\System32\DRIVERS\TeeDriverx64.sys [100312 1999-12-31] (Intel Corporation - Intel® Management Engine Firmware -> Intel Corporation)
R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [295000 2016-08-25] (Microsoft Corporation -> Microsoft Corporation)
R3 NisDrv; C:\Windows\System32\DRIVERS\NisDrvWFP.sys [135928 2016-08-25] (Microsoft Corporation -> Microsoft Corporation)
R3 REDRAGON_MOUSE; C:\Windows\System32\drivers\REDRAGON_MOUSE.sys [26112 2017-09-21] (Microsoft Windows Hardware Compatibility Publisher ->  )
R3 VKbms; C:\Windows\System32\DRIVERS\VKbms.sys [13824 2014-07-12] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider)
S3 XSplit_Dummy; C:\Windows\System32\drivers\xspltspk.sys [26200 2015-05-25] (Splitmedialabs Limited -> SplitmediaLabs Limited)
S3 ALSysIO; \??\C:\Users\ADMINI~1\AppData\Local\Temp\ALSysIO64.sys [X] <==== ATTENTION
S3 cpuz136; \??\C:\Users\ADMINI~1\AppData\Local\Temp\cpuz136\cpuz136_x64.sys [X] <==== ATTENTION
S3 LgBttPort; system32\DRIVERS\lgbtpt64.sys [X]
S3 lgbusenum; system32\DRIVERS\lgbtbs64.sys [X]
S3 LGVMODEM; system32\DRIVERS\lgvmdm64.sys [X]
S3 Synth3dVsc; System32\drivers\synth3dvsc.sys [X]
S3 tsusbhub; system32\drivers\tsusbhub.sys [X]
S3 usbbus; system32\DRIVERS\lgx64bus.sys [X]
S3 UsbDiag; system32\DRIVERS\lgx64diag.sys [X]
S3 USBModem; system32\DRIVERS\lgx64modem.sys [X]
S3 VGPU; System32\drivers\rdvgkmd.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-09-15 02:52 - 2019-09-15 02:52 - 000000000 ____D C:\Users\Administrador\AppData\Roaming\Sun
2019-09-15 02:52 - 2019-09-15 02:51 - 000110064 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge-64.dll
2019-09-15 02:50 - 2019-09-15 02:50 - 000000000 ____D C:\Program Files\Java
2019-09-15 02:48 - 2019-09-15 02:48 - 000073584 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbam.sys
2019-09-15 02:47 - 2019-09-15 02:47 - 000225944 _____ (Malwarebytes) C:\Windows\system32\Drivers\farflt.sys
2019-09-15 02:47 - 2019-09-15 02:47 - 000106344 _____ (Malwarebytes) C:\Windows\system32\Drivers\mwac.sys
2019-09-15 02:44 - 2019-09-15 02:44 - 000275232 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamswissarmy.sys
2019-09-15 02:19 - 2019-09-15 02:19 - 000001041 _____ C:\Users\Public\Desktop\Revo Uninstaller.lnk
2019-09-15 02:19 - 2019-09-15 02:19 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller
2019-09-15 02:19 - 2019-09-15 02:19 - 000000000 ____D C:\Program Files\VS Revo Group
2019-09-14 18:57 - 2019-09-14 18:57 - 000199768 _____ (Malwarebytes) C:\Windows\system32\Drivers\MbamChameleon.sys
2019-09-14 06:41 - 2019-09-15 03:15 - 000000000 ____D C:\FRST
2019-09-13 04:58 - 2019-09-13 04:58 - 000001874 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2019-09-13 04:58 - 2019-09-13 04:58 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
2019-09-13 04:58 - 2019-08-27 05:50 - 000153312 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbae64.sys
2019-09-13 04:30 - 2019-09-13 04:31 - 000000000 ____D C:\AdwCleaner
2019-09-13 03:50 - 2019-09-13 04:52 - 000000000 ____D C:\Users\Administrador\AppData\Roaming\ZHP
2019-09-12 17:11 - 2019-09-12 17:11 - 000342393 __RSH C:\MOUNC
2019-09-12 15:31 - 2019-09-12 17:08 - 000000000 ___HD C:\$WINDOWS.~BT
2019-09-12 15:22 - 2019-09-12 15:22 - 000000000 ___HD C:\$Windows.~WS
2019-09-12 15:15 - 2019-09-12 17:11 - 000000020 __RSH C:\win7.ld
2019-09-11 05:47 - 2019-08-15 22:02 - 000123904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\poqexec.exe
2019-09-11 05:47 - 2019-08-15 21:56 - 000142336 _____ (Microsoft Corporation) C:\Windows\system32\poqexec.exe
2019-09-11 05:45 - 2019-08-28 23:56 - 003966904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2019-09-11 05:45 - 2019-08-28 23:55 - 004061112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2019-09-11 05:45 - 2019-08-28 23:53 - 005553104 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2019-09-11 05:45 - 2019-08-28 23:50 - 001078784 _____ (Microsoft Corporation) C:\Windows\system32\msctf.dll
2019-09-11 05:45 - 2019-08-27 02:07 - 025752064 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2019-09-11 05:45 - 2019-08-27 00:29 - 002909184 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2019-09-11 05:45 - 2019-08-27 00:27 - 000579072 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2019-09-11 05:45 - 2019-08-27 00:21 - 020290560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2019-09-11 05:45 - 2019-08-27 00:17 - 005500928 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2019-09-11 05:45 - 2019-08-27 00:03 - 000496128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2019-09-11 05:45 - 2019-08-26 23:59 - 002301952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2019-09-11 05:45 - 2019-08-26 23:36 - 015389184 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2019-09-11 05:45 - 2019-08-26 23:34 - 000350208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\HdAudio.sys
2019-09-11 05:45 - 2019-08-26 23:30 - 004112384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2019-09-11 05:45 - 2019-08-26 23:23 - 013791744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2019-09-11 05:45 - 2019-08-26 23:15 - 001568256 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2019-09-11 05:45 - 2019-08-26 23:06 - 001331712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2019-09-11 05:45 - 2019-08-20 00:59 - 000022016 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ws2ifsl.sys
2019-09-11 05:45 - 2019-08-20 00:51 - 003232256 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2019-09-11 05:45 - 2019-08-15 04:59 - 000878080 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2019-09-11 05:45 - 2019-08-15 04:59 - 000583680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll
2019-09-11 05:45 - 2019-08-14 14:54 - 000271360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tsmf.dll
2019-09-11 05:45 - 2019-08-14 14:53 - 000253440 _____ (Microsoft) C:\Windows\SysWOW64\DShowRdpFilter.dll
2019-09-11 05:45 - 2019-08-14 02:20 - 000300032 _____ (Microsoft Corporation) C:\Windows\system32\tsmf.dll
2019-09-11 05:45 - 2019-08-14 02:20 - 000282112 _____ (Microsoft) C:\Windows\system32\DShowRdpFilter.dll
2019-09-11 05:45 - 2019-08-14 01:59 - 000053760 _____ (Microsoft Corporation) C:\Windows\system32\LSCSHostPolicy.dll
2019-09-11 05:45 - 2019-08-12 23:50 - 004927488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2019-09-11 05:45 - 2019-08-12 21:56 - 005785600 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2019-09-11 05:45 - 2019-08-12 21:56 - 001650176 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2019-09-11 05:44 - 2019-08-28 23:55 - 000627424 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2019-09-11 05:44 - 2019-08-28 23:54 - 001319496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2019-09-11 05:44 - 2019-08-28 23:53 - 000709856 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2019-09-11 05:44 - 2019-08-28 23:53 - 000264120 _____ (Microsoft Corporation) C:\Windows\system32\hal.dll
2019-09-11 05:44 - 2019-08-28 23:53 - 000155360 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2019-09-11 05:44 - 2019-08-28 23:53 - 000096992 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2019-09-11 05:44 - 2019-08-28 23:52 - 000836608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msctf.dll
2019-09-11 05:44 - 2019-08-28 23:52 - 000666112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2019-09-11 05:44 - 2019-08-28 23:52 - 000644096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll
2019-09-11 05:44 - 2019-08-28 23:52 - 000555520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2019-09-11 05:44 - 2019-08-28 23:52 - 000342528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certcli.dll
2019-09-11 05:44 - 2019-08-28 23:52 - 000096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2019-09-11 05:44 - 2019-08-28 23:51 - 001670784 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2019-09-11 05:44 - 2019-08-28 23:50 - 001472512 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2019-09-11 05:44 - 2019-08-28 23:50 - 001211392 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2019-09-11 05:44 - 2019-08-28 23:50 - 001162752 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2019-09-11 05:44 - 2019-08-28 23:50 - 000880640 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2019-09-11 05:44 - 2019-08-28 23:50 - 000733184 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2019-09-11 05:44 - 2019-08-28 23:50 - 000463872 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll
2019-09-11 05:44 - 2019-08-28 23:50 - 000408576 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2019-09-11 05:44 - 2019-08-28 23:50 - 000361984 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll
2019-09-11 05:44 - 2019-08-28 23:50 - 000345600 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2019-09-11 05:44 - 2019-08-28 23:50 - 000317440 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2019-09-11 05:44 - 2019-08-28 23:50 - 000312320 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2019-09-11 05:44 - 2019-08-28 23:50 - 000243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2019-09-11 05:44 - 2019-08-28 23:50 - 000236032 _____ (Microsoft Corporation) C:\Windows\system32\srvsvc.dll
2019-09-11 05:44 - 2019-08-28 23:50 - 000215552 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2019-09-11 05:44 - 2019-08-28 23:19 - 000129536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\videoprt.sys
2019-09-11 05:44 - 2019-08-28 23:15 - 000464384 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv.sys
2019-09-11 05:44 - 2019-08-28 23:15 - 000406016 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys
2019-09-11 05:44 - 2019-08-28 23:15 - 000291328 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2019-09-11 05:44 - 2019-08-28 23:15 - 000169984 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys
2019-09-11 05:44 - 2019-08-28 23:15 - 000161280 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2019-09-11 05:44 - 2019-08-28 23:14 - 000112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2019-09-11 05:44 - 2019-08-27 17:50 - 000390536 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2019-09-11 05:44 - 2019-08-27 16:59 - 000341896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2019-09-11 05:44 - 2019-08-27 00:27 - 000417280 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2019-09-11 05:44 - 2019-08-27 00:27 - 000066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2019-09-11 05:44 - 2019-08-27 00:27 - 000048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2019-09-11 05:44 - 2019-08-27 00:26 - 000088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2019-09-11 05:44 - 2019-08-27 00:20 - 000054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2019-09-11 05:44 - 2019-08-27 00:17 - 000615936 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2019-09-11 05:44 - 2019-08-27 00:16 - 000144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2019-09-11 05:44 - 2019-08-27 00:15 - 000814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2019-09-11 05:44 - 2019-08-27 00:15 - 000790528 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2019-09-11 05:44 - 2019-08-27 00:08 - 000969216 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2019-09-11 05:44 - 2019-08-27 00:05 - 000489984 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2019-09-11 05:44 - 2019-08-27 00:02 - 000341504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2019-09-11 05:44 - 2019-08-26 23:59 - 000077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2019-09-11 05:44 - 2019-08-26 23:58 - 000107520 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2019-09-11 05:44 - 2019-08-26 23:58 - 000087552 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2019-09-11 05:44 - 2019-08-26 23:56 - 000047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2019-09-11 05:44 - 2019-08-26 23:55 - 000199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2019-09-11 05:44 - 2019-08-26 23:54 - 000476160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2019-09-11 05:44 - 2019-08-26 23:54 - 000092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2019-09-11 05:44 - 2019-08-26 23:53 - 000663040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2019-09-11 05:44 - 2019-08-26 23:53 - 000620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2019-09-11 05:44 - 2019-08-26 23:53 - 000115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2019-09-11 05:44 - 2019-08-26 23:52 - 000315392 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2019-09-11 05:44 - 2019-08-26 23:50 - 000152064 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2019-09-11 05:44 - 2019-08-26 23:45 - 000416256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2019-09-11 05:44 - 2019-08-26 23:42 - 000262144 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2019-09-11 05:44 - 2019-08-26 23:40 - 000728064 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2019-09-11 05:44 - 2019-08-26 23:39 - 000809472 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2019-09-11 05:44 - 2019-08-26 23:37 - 002132480 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2019-09-11 05:44 - 2019-08-26 23:37 - 001359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2019-09-11 05:44 - 2019-08-26 23:37 - 000168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2019-09-11 05:44 - 2019-08-26 23:36 - 000076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2019-09-11 05:44 - 2019-08-26 23:35 - 000279040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2019-09-11 05:44 - 2019-08-26 23:34 - 000130048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2019-09-11 05:44 - 2019-08-26 23:28 - 000230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2019-09-11 05:44 - 2019-08-26 23:27 - 002058752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2019-09-11 05:44 - 2019-08-26 23:27 - 000696320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2019-09-11 05:44 - 2019-08-26 23:26 - 004859392 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2019-09-11 05:44 - 2019-08-26 23:26 - 001155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2019-09-11 05:44 - 2019-08-26 23:09 - 004387840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2019-09-11 05:44 - 2019-08-26 23:04 - 000800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2019-09-11 05:44 - 2019-08-26 23:04 - 000710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2019-09-11 05:44 - 2019-08-22 19:07 - 000628480 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe
2019-09-11 05:44 - 2019-08-20 22:59 - 000311008 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
2019-09-11 05:44 - 2019-08-20 01:24 - 000385248 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2019-09-11 05:44 - 2019-08-19 23:47 - 001251840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll
2019-09-11 05:44 - 2019-08-14 02:22 - 000374496 _____ (Microsoft Corporation) C:\Windows\system32\clfs.sys
2019-09-11 05:44 - 2019-08-14 02:20 - 000133120 _____ (Microsoft Corporation) C:\Windows\system32\tssrvlic.dll
2019-09-11 05:44 - 2019-08-14 01:52 - 000455680 _____ (Microsoft Corporation) C:\Windows\system32\winlogon.exe
2019-09-11 05:44 - 2019-08-13 19:20 - 000162016 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe
2019-09-11 05:44 - 2019-08-13 19:19 - 000988384 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2019-09-11 05:44 - 2019-08-13 19:19 - 000267488 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys
2019-09-11 05:44 - 2019-08-13 19:16 - 001009664 _____ (Microsoft Corporation) C:\Windows\system32\user32.dll
2019-09-11 05:44 - 2019-08-13 19:16 - 000484864 _____ (Microsoft Corporation) C:\Windows\system32\StructuredQuery.dll
2019-09-11 05:44 - 2019-08-13 19:15 - 000405504 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2019-09-11 05:44 - 2019-08-13 19:15 - 000144384 _____ (Microsoft Corporation) C:\Windows\system32\cdd.dll
2019-09-11 05:44 - 2019-08-13 19:13 - 000833536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user32.dll
2019-09-11 05:44 - 2019-08-13 19:13 - 000363520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\StructuredQuery.dll
2019-09-11 05:44 - 2019-08-13 19:13 - 000313344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2019-09-11 05:44 - 2019-08-12 23:58 - 001312256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msjet40.dll
2019-09-11 05:44 - 2019-08-12 23:58 - 000475648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxbde40.dll
2019-09-11 05:44 - 2019-08-12 23:58 - 000353280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrd3x40.dll
2019-09-11 05:44 - 2019-08-12 23:58 - 000313344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrd2x40.dll
2019-09-11 05:44 - 2019-08-12 21:56 - 000802304 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2019-09-11 05:43 - 2019-08-28 23:52 - 001114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2019-09-11 05:43 - 2019-08-28 23:52 - 000690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
2019-09-11 05:43 - 2019-08-28 23:52 - 000275968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2019-09-11 05:43 - 2019-08-28 23:52 - 000261632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2019-09-11 05:43 - 2019-08-28 23:52 - 000254464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2019-09-11 05:43 - 2019-08-28 23:52 - 000223232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2019-09-11 05:43 - 2019-08-28 23:52 - 000172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2019-09-11 05:43 - 2019-08-28 23:52 - 000146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll
2019-09-11 05:43 - 2019-08-28 23:52 - 000141312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpchttp.dll
2019-09-11 05:43 - 2019-08-28 23:52 - 000082944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bcrypt.dll
2019-09-11 05:43 - 2019-08-28 23:52 - 000070144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2019-09-11 05:43 - 2019-08-28 23:52 - 000060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll
2019-09-11 05:43 - 2019-08-28 23:52 - 000050688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\appidapi.dll
2019-09-11 05:43 - 2019-08-28 23:52 - 000043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll
2019-09-11 05:43 - 2019-08-28 23:52 - 000022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2019-09-11 05:43 - 2019-08-28 23:52 - 000017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2019-09-11 05:43 - 2019-08-28 23:52 - 000007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll
2019-09-11 05:43 - 2019-08-28 23:52 - 000005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2019-09-11 05:43 - 2019-08-28 23:52 - 000005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2019-09-11 05:43 - 2019-08-28 23:52 - 000004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2019-09-11 05:43 - 2019-08-28 23:52 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2019-09-11 05:43 - 2019-08-28 23:52 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2019-09-11 05:43 - 2019-08-28 23:52 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2019-09-11 05:43 - 2019-08-28 23:52 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2019-09-11 05:43 - 2019-08-28 23:52 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2019-09-11 05:43 - 2019-08-28 23:52 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2019-09-11 05:43 - 2019-08-28 23:52 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2019-09-11 05:43 - 2019-08-28 23:52 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2019-09-11 05:43 - 2019-08-28 23:52 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2019-09-11 05:43 - 2019-08-28 23:52 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2019-09-11 05:43 - 2019-08-28 23:52 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2019-09-11 05:43 - 2019-08-28 23:52 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2019-09-11 05:43 - 2019-08-28 23:52 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2019-09-11 05:43 - 2019-08-28 23:52 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2019-09-11 05:43 - 2019-08-28 23:52 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2019-09-11 05:43 - 2019-08-28 23:52 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2019-09-11 05:43 - 2019-08-28 23:52 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2019-09-11 05:43 - 2019-08-28 23:52 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2019-09-11 05:43 - 2019-08-28 23:52 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2019-09-11 05:43 - 2019-08-28 23:52 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2019-09-11 05:43 - 2019-08-28 23:52 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2019-09-11 05:43 - 2019-08-28 23:52 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2019-09-11 05:43 - 2019-08-28 23:50 - 000690688 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2019-09-11 05:43 - 2019-08-28 23:50 - 000503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2019-09-11 05:43 - 2019-08-28 23:50 - 000210432 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2019-09-11 05:43 - 2019-08-28 23:50 - 000190464 _____ (Microsoft Corporation) C:\Windows\system32\rpchttp.dll
2019-09-11 05:43 - 2019-08-28 23:50 - 000146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2019-09-11 05:43 - 2019-08-28 23:50 - 000135680 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2019-09-11 05:43 - 2019-08-28 23:50 - 000123904 _____ (Microsoft Corporation) C:\Windows\system32\bcrypt.dll
2019-09-11 05:43 - 2019-08-28 23:50 - 000094208 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2019-09-11 05:43 - 2019-08-28 23:50 - 000063488 _____ (Microsoft Corporation) C:\Windows\system32\setbcdlocale.dll
2019-09-11 05:43 - 2019-08-28 23:50 - 000060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2019-09-11 05:43 - 2019-08-28 23:50 - 000059904 _____ (Microsoft Corporation) C:\Windows\system32\appidapi.dll
2019-09-11 05:43 - 2019-08-28 23:50 - 000050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2019-09-11 05:43 - 2019-08-28 23:50 - 000044032 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2019-09-11 05:43 - 2019-08-28 23:50 - 000043520 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll
2019-09-11 05:43 - 2019-08-28 23:50 - 000034816 _____ (Microsoft Corporation) C:\Windows\system32\appidsvc.dll
2019-09-11 05:43 - 2019-08-28 23:50 - 000028672 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2019-09-11 05:43 - 2019-08-28 23:50 - 000028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2019-09-11 05:43 - 2019-08-28 23:50 - 000022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2019-09-11 05:43 - 2019-08-28 23:50 - 000016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll
2019-09-11 05:43 - 2019-08-28 23:50 - 000013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll
2019-09-11 05:43 - 2019-08-28 23:50 - 000013312 _____ (Microsoft Corporation) C:\Windows\system32\sscore.dll
2019-09-11 05:43 - 2019-08-28 23:50 - 000007168 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2019-09-11 05:43 - 2019-08-28 23:50 - 000006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2019-09-11 05:43 - 2019-08-28 23:50 - 000005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2019-09-11 05:43 - 2019-08-28 23:50 - 000004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2019-09-11 05:43 - 2019-08-28 23:50 - 000004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2019-09-11 05:43 - 2019-08-28 23:50 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2019-09-11 05:43 - 2019-08-28 23:50 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2019-09-11 05:43 - 2019-08-28 23:50 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2019-09-11 05:43 - 2019-08-28 23:50 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2019-09-11 05:43 - 2019-08-28 23:50 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2019-09-11 05:43 - 2019-08-28 23:50 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2019-09-11 05:43 - 2019-08-28 23:50 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2019-09-11 05:43 - 2019-08-28 23:50 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2019-09-11 05:43 - 2019-08-28 23:50 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2019-09-11 05:43 - 2019-08-28 23:50 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2019-09-11 05:43 - 2019-08-28 23:50 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2019-09-11 05:43 - 2019-08-28 23:50 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2019-09-11 05:43 - 2019-08-28 23:50 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2019-09-11 05:43 - 2019-08-28 23:50 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2019-09-11 05:43 - 2019-08-28 23:50 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2019-09-11 05:43 - 2019-08-28 23:50 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2019-09-11 05:43 - 2019-08-28 23:50 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2019-09-11 05:43 - 2019-08-28 23:50 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2019-09-11 05:43 - 2019-08-28 23:50 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2019-09-11 05:43 - 2019-08-28 23:50 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2019-09-11 05:43 - 2019-08-28 23:50 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2019-09-11 05:43 - 2019-08-28 23:50 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2019-09-11 05:43 - 2019-08-28 23:50 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2019-09-11 05:43 - 2019-08-28 23:50 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2019-09-11 05:43 - 2019-08-28 23:27 - 000050688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe
2019-09-11 05:43 - 2019-08-28 23:27 - 000009728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sscore.dll
2019-09-11 05:43 - 2019-08-28 23:22 - 000148480 _____ (Microsoft Corporation) C:\Windows\system32\appidpolicyconverter.exe
2019-09-11 05:43 - 2019-08-28 23:22 - 000064512 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
2019-09-11 05:43 - 2019-08-28 23:22 - 000062464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\appid.sys
2019-09-11 05:43 - 2019-08-28 23:22 - 000025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2019-09-11 05:43 - 2019-08-28 23:22 - 000017920 _____ (Microsoft Corporation) C:\Windows\system32\appidcertstorecheck.exe
2019-09-11 05:43 - 2019-08-28 23:22 - 000014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2019-09-11 05:43 - 2019-08-28 23:22 - 000007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2019-09-11 05:43 - 2019-08-28 23:22 - 000002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2019-09-11 05:43 - 2019-08-28 23:21 - 000036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptbase.dll
2019-09-11 05:43 - 2019-08-28 23:21 - 000006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2019-09-11 05:43 - 2019-08-28 23:21 - 000004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2019-09-11 05:43 - 2019-08-28 23:21 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2019-09-11 05:43 - 2019-08-28 23:21 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2019-09-11 05:43 - 2019-08-28 23:19 - 000338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2019-09-11 05:43 - 2019-08-28 23:18 - 000296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2019-09-11 05:43 - 2019-08-28 23:15 - 000129536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2019-09-11 05:43 - 2019-08-28 23:14 - 000064512 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\amdk8.sys
2019-09-11 05:43 - 2019-08-28 23:14 - 000062464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\intelppm.sys
2019-09-11 05:43 - 2019-08-28 23:14 - 000060928 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\processr.sys
2019-09-11 05:43 - 2019-08-28 23:14 - 000060928 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\amdppm.sys
2019-09-11 05:43 - 2019-08-28 23:14 - 000044544 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\npfs.sys
2019-09-11 05:43 - 2019-08-28 23:14 - 000030720 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2019-09-11 05:43 - 2019-08-27 00:41 - 002724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2019-09-11 05:43 - 2019-08-27 00:41 - 000004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2019-09-11 05:43 - 2019-08-27 00:19 - 000034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2019-09-11 05:43 - 2019-08-27 00:16 - 000116224 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2019-09-11 05:43 - 2019-08-27 00:15 - 002724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2019-09-11 05:43 - 2019-08-27 00:03 - 000062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2019-09-11 05:43 - 2019-08-27 00:02 - 000047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2019-09-11 05:43 - 2019-08-27 00:01 - 000064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2019-09-11 05:43 - 2019-08-26 23:56 - 000030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2019-09-11 05:43 - 2019-08-26 23:40 - 000073216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2019-09-11 05:43 - 2019-08-26 23:40 - 000060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2019-09-11 05:43 - 2019-08-26 23:39 - 000091136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2019-09-11 05:43 - 2019-08-20 22:56 - 000071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll
2019-09-11 05:43 - 2019-08-20 22:56 - 000025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\lpk.dll
2019-09-11 05:43 - 2019-08-20 22:56 - 000010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dciman32.dll
2019-09-11 05:43 - 2019-08-20 20:19 - 000034304 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2019-09-11 05:43 - 2019-08-20 01:21 - 000101376 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2019-09-11 05:43 - 2019-08-20 01:21 - 000046080 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2019-09-11 05:43 - 2019-08-20 01:21 - 000041472 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll
2019-09-11 05:43 - 2019-08-20 01:21 - 000014336 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll
2019-09-11 05:43 - 2019-08-13 19:15 - 000732160 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2019-09-11 05:43 - 2019-08-12 21:56 - 002863104 _____ (Microsoft Corporation) C:\Windows\system32\aitstatic.exe
2019-09-11 05:43 - 2019-08-12 21:56 - 001712640 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2019-09-11 05:43 - 2019-08-12 21:56 - 000634368 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2019-09-11 05:43 - 2019-08-12 21:56 - 000501760 _____ (Microsoft Corporation) C:\Windows\system32\centel.dll
2019-09-11 05:43 - 2019-08-12 21:56 - 000456192 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2019-09-11 05:43 - 2019-08-12 21:56 - 000315904 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
2019-09-11 05:43 - 2019-08-12 21:56 - 000257024 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll
2019-09-11 03:02 - 2019-09-12 15:31 - 000000000 ____D C:\ESD
2019-09-03 12:36 - 2019-09-14 15:22 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox
2019-09-03 08:40 - 2019-09-13 15:33 - 000000000 ____D C:\Users\Administrador\AppData\Roaming\Blitz-helpers
2019-09-03 08:33 - 2019-09-14 23:07 - 000000000 ____D C:\Users\Administrador\AppData\Roaming\Blitz
2019-09-03 08:33 - 2019-09-12 20:54 - 000000000 ____D C:\Users\Administrador\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Blitz Inc
2019-09-01 17:46 - 2019-09-01 17:46 - 000002802 _____ C:\Windows\System32\Tasks\CCleanerSkipUAC
2019-08-22 18:10 - 2019-08-22 18:10 - 000002994 _____ C:\Windows\System32\Tasks\{F5A1EF45-0710-4D6D-8A7F-CE9F850906F9}

==================== One month (modified) ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-09-15 02:54 - 2009-07-14 01:45 - 000023632 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2019-09-15 02:54 - 2009-07-14 01:45 - 000023632 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2019-09-15 02:52 - 2014-10-06 18:21 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2019-09-15 02:50 - 2013-11-18 08:05 - 000000000 ____D C:\ProgramData\Oracle
2019-09-15 02:48 - 2010-03-22 15:22 - 000000000 ____D C:\Users\Administrador\AppData\LocalLow\Sun
2019-09-15 02:45 - 2016-11-15 23:21 - 000000000 ____D C:\Users\Administrador\AppData\LocalLow\Mozilla
2019-09-15 02:43 - 2009-07-14 02:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2019-09-15 02:42 - 2016-08-05 17:46 - 000065536 _____ C:\Windows\system32\spu_storage.bin
2019-09-15 02:37 - 2016-06-01 21:19 - 000000263 _____ C:\DelFix.txt
2019-09-14 21:54 - 2010-03-12 14:17 - 000000000 ____D C:\Windows\SysWOW64\Macromed
2019-09-13 04:58 - 2016-06-02 16:25 - 000000000 ____D C:\ProgramData\Malwarebytes
2019-09-13 04:33 - 2015-01-07 21:44 - 000000000 ____D C:\ProgramData\EPSON
2019-09-13 04:11 - 2009-07-14 00:20 - 000000000 ____D C:\Windows\inf
2019-09-13 03:58 - 2015-06-20 02:57 - 000000000 ____D C:\Windows\Minidump
2019-09-13 02:51 - 2015-11-11 04:40 - 000001902 _____ C:\Users\Administrador\Desktop\JRT.txt
2019-09-12 20:54 - 2017-03-18 04:59 - 000000000 ____D C:\ProgramData\Administrador
2019-09-12 16:03 - 2015-08-31 03:50 - 000003732 _____ C:\Windows\diagerr.xml
2019-09-12 16:03 - 2015-08-31 03:50 - 000001890 _____ C:\Windows\diagwrn.xml
2019-09-12 16:03 - 2010-03-12 08:49 - 000008192 __RSH C:\BOOTSECT.BAK
2019-09-12 16:01 - 2015-08-31 03:55 - 000000001 ___SH C:\BOOTNXT
2019-09-12 15:32 - 2010-03-12 08:49 - 000000000 ____D C:\Windows\Panther
2019-09-12 14:39 - 2016-06-01 21:14 - 000425648 _____ C:\Windows\system32\FNTCACHE.DAT
2019-09-12 06:11 - 2015-08-29 17:20 - 000000000 ___SD C:\Windows\system32\CompatTel
2019-09-11 04:16 - 2009-07-14 00:20 - 000000000 ____D C:\Windows\system32\oobe
2019-09-10 18:04 - 2018-03-14 03:04 - 000004504 _____ C:\Windows\System32\Tasks\Adobe Flash Player NPAPI Notifier
2019-09-10 18:04 - 2013-10-15 01:10 - 000004320 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2019-09-10 18:04 - 2012-10-25 16:57 - 000842296 _____ (Adobe) C:\Windows\SysWOW64\FlashPlayerApp.exe
2019-09-10 18:04 - 2012-10-25 16:57 - 000175160 _____ (Adobe) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2019-09-10 18:04 - 2012-10-25 16:57 - 000000000 ____D C:\Windows\system32\Macromed
2019-09-10 14:50 - 2010-03-12 16:39 - 000000000 ____D C:\Program Files (x86)\Google
2019-09-10 14:21 - 2016-06-15 06:58 - 000111296 _____ C:\Windows\SysWOW64\GDIPFONTCACHEV1.DAT
2019-09-04 10:48 - 2016-01-06 11:25 - 000111296 _____ C:\Windows\system32\GDIPFONTCACHEV1.DAT
2019-09-03 02:27 - 2016-07-24 18:07 - 000000000 ____D C:\Users\Administrador\AppData\Roaming\uTorrent
2019-09-03 02:27 - 2013-10-17 21:24 - 000000000 ____D C:\Users\Administrador\AppData\Roaming\DAEMON Tools Lite
2019-09-03 02:27 - 2010-03-22 15:13 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Compumap
2019-09-03 02:16 - 2016-06-02 18:52 - 000000829 _____ C:\Users\Public\Desktop\CCleaner.lnk
2019-09-01 17:46 - 2018-01-02 23:56 - 000003870 _____ C:\Windows\System32\Tasks\CCleaner Update
2019-09-01 17:46 - 2016-06-02 18:52 - 000000000 ____D C:\Program Files\CCleaner
2019-08-23 17:24 - 2016-10-13 15:30 - 000002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2019-08-21 19:04 - 2009-07-14 00:20 - 000000000 ____D C:\Windows\system32\NDF

==================== Files in the root of some directories ================

2011-04-05 15:49 - 2011-04-05 15:49 - 000000000 _____ () C:\Users\Administrador\AppData\Roaming\chrtmp
2014-02-06 10:16 - 2019-06-01 05:40 - 000000156 _____ () C:\Users\Administrador\AppData\Roaming\default.rss
2013-10-24 21:04 - 2013-10-24 21:04 - 002423608 _____ (Piriform Ltd) C:\Users\Administrador\AppData\Local\CCleaner.exe
2013-10-24 21:04 - 2013-10-24 21:05 - 000000990 _____ () C:\Users\Administrador\AppData\Local\ccleaner.ini
2013-10-24 21:04 - 2013-10-24 21:04 - 000033280 _____ () C:\Users\Administrador\AppData\Local\lang-1034.dll

==================== SigCheck ===============================

(There is no automatic fix for files that do not pass verification.)


LastRegBack: 2019-09-11 06:34
==================== End of FRST.txt ============================
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 14-09-2019
Ran by Administrador (15-09-2019 03:18:59)
Running from D:\Users\Administrador\Desktop
Windows 7 Ultimate Service Pack 1 (X64) (2010-03-12 16:00:21)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrador (S-1-5-21-786306497-2436674552-526500336-500 - Administrator - Enabled) => %SystemDrive%\Users\Administrador
HomeGroupUser$ (S-1-5-21-786306497-2436674552-526500336-1007 - Limited - Enabled)
Invitado (S-1-5-21-786306497-2436674552-526500336-501 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Microsoft Security Essentials (Enabled - Up to date) {B7ECF8CD-0188-6703-DBA4-AA65C6ACFB0A}
AS: Microsoft Security Essentials (Enabled - Up to date) {0C8D1929-27B2-688D-E114-9117BD2BB1B7}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adobe Acrobat Reader DC - Español (HKLM-x32\...\{AC76BA86-7AD7-1034-7B44-AC0F074E4100}) (Version: 19.012.20040 - Adobe Systems Incorporated)
Adobe Flash Player 32 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 32.0.0.255 - Adobe)
Adobe Flash Player 32 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 32.0.0.255 - Adobe)
Adobe Shockwave Player 11.6 (HKLM-x32\...\Adobe Shockwave Player) (Version: 11.6.7.637 - Adobe Systems, Inc.)
Advertising Center (HKLM-x32\...\{B2EC4A38-B545-4A00-8214-13FE0E915E6D}) (Version: 0.0.0.2 - Nero AG) Hidden
AMD Install Manager (HKLM\...\AMD Catalyst Install Manager) (Version: 9.0.000.4 - Advanced Micro Devices, Inc.)
ASIO4ALL (HKLM-x32\...\ASIO4ALL) (Version: 2.10 - Michael Tippach)
AX88772A & AX88772 Vista Drivers (HKLM-x32\...\{D4CE807B-E15D-4715-98D4-BA7573222844}) (Version: 1.0.1.0 - ASIX Electronics Corporation) Hidden
AX88772A & AX88772 Vista Drivers (HKLM-x32\...\InstallShield_{D4CE807B-E15D-4715-98D4-BA7573222844}) (Version: 1.0.1.0 - ASIX Electronics Corporation)
Blitz (HKU\S-1-5-21-786306497-2436674552-526500336-500\...\Blitz) (Version: 1.3.0 - Blitz Inc.)
Catalyst Control Center Next Localization BR (HKLM\...\{C80C12DC-3959-4028-1681-F2BF00866439}) (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CHS (HKLM\...\{B0199EE9-B640-3D24-29F8-99B1C425697A}) (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CHT (HKLM\...\{8F5D8F15-4A07-E887-C8FD-498804F2522F}) (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CS (HKLM\...\{55FB36B8-663A-06C2-9A6F-34A0AFFD906C}) (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization DA (HKLM\...\{27D9A3A3-D0D2-2260-A2AA-A7228B6022B6}) (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization DE (HKLM\...\{C59870AD-505D-4C9E-B625-D1DE6B1ABF8D}) (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization EL (HKLM\...\{38072574-E1D1-9B6C-EAB4-27E207E0B54A}) (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization ES (HKLM\...\{C7F2F764-33A8-7ED1-8ED9-BD594C814386}) (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization FI (HKLM\...\{352C8FF2-CB23-F2C3-CC82-B2F20AC15B5C}) (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization FR (HKLM\...\{13556222-6637-F9E8-A6A6-186D6996E5E0}) (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization HU (HKLM\...\{3B8435FC-47AD-7A7E-BCBD-13DF296DB149}) (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization IT (HKLM\...\{1E60CDCF-E4AF-2B49-3473-E9C10C0D6031}) (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization JA (HKLM\...\{2459C0BB-C5C8-2FD0-2437-BD92FB666A15}) (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization KO (HKLM\...\{58011544-00D2-DD75-4E0D-944AD2D3773D}) (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization NL (HKLM\...\{9E93DDED-A342-2621-8B33-A7FDE09E2A15}) (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization NO (HKLM\...\{EBCCB5CD-B2B0-6870-DCC3-A7CCCC1B1B68}) (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization PL (HKLM\...\{D214F8C8-A231-E193-971C-7D185108F908}) (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization RU (HKLM\...\{C078842D-6E39-ACBA-8927-51697B6D89B0}) (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization SV (HKLM\...\{CE1A9479-C86A-81A5-729F-9B65120D15E1}) (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization TH (HKLM\...\{81DFFE49-771C-3262-99DD-35AB35FEF71A}) (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization TR (HKLM\...\{56C43946-966D-1B4B-3910-3B4741F9CAF9}) (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 5.61 - Piriform)
Compresor WinRAR (HKLM\...\WinRAR archiver) (Version:  - )
DAEMON Tools Lite (HKLM-x32\...\DAEMON Tools Lite) (Version: 4.47.1.0333 - Disc Soft Ltd)
DolbyFiles (HKLM-x32\...\{B1ADF008-E898-4FE2-8A1F-690D9A06ACAF}) (Version: 2.0 - Nero AG) Hidden
Epson Customer Participation (HKLM\...\{814FA673-A085-403C-9545-747FC1495069}) (Version: 1.4.0.0 - SEIKO EPSON CORPORATION)
Epson Easy Photo Print 2 (HKLM-x32\...\{79D0F056-39DE-4FDD-83FD-1554CE2C6443}) (Version: 2.4.0.0 - SEIKO EPSON CORPORATION)
Epson Easy Photo Print Plug-in for PMB(Picture Motion Browser) (HKLM-x32\...\{B2D55EB8-32C5-4B43-9006-9E97DECBA178}) (Version: 1.00.0000 - SEIKO EPSON CORPORATION2)
Epson Easy Photo Print Plug-in for Windows Live Photo Gallery (HKLM-x32\...\EEPPPlugIn) (Version:  - SEIKO EPSON Corporation)
Epson Easy Photo Print Plug-in for Windows Live Photo Gallery Setup (HKLM-x32\...\{7B7044AE-6D1F-456D-B2BA-28BFFFAF3F71}) (Version: 1.00.0000 - SEIKO EPSON Corporation) Hidden
Epson Event Manager (HKLM-x32\...\{44F72193-F59C-4303-BAE8-E3E4BC1C122C}) (Version: 3.01.0003 - Seiko Epson Corporation)
Epson E-Web Print (HKLM-x32\...\{682A3328-9621-4BAD-91FA-873A076610C4}) (Version: 1.21.0000 - SEIKO EPSON CORPORATION)
EPSON L355 Series Printer Uninstall (HKLM\...\EPSON L355 Series) (Version:  - SEIKO EPSON Corporation)
EPSON Scan (HKLM-x32\...\EPSON Scanner) (Version:  - Seiko Epson Corporation)
EpsonNet Print (HKLM-x32\...\{3E31400D-274E-4647-916C-2CACC3741799}) (Version: 2.5.00 - SEIKO EPSON CORPORATION)
ESET Online Scanner v3 (HKLM-x32\...\ESET Online Scanner) (Version:  - )
Final Fantasy VIII (HKLM-x32\...\Final Fantasy VIII_is1) (Version:  - )
Firestorm Launcher versión 1.1 (HKLM-x32\...\{008D5963-9A73-4472-8C16-A5BF04491B9D}_is1) (Version: 1.1 - Firestorm)
Google Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.21.169 - Google Inc.) Hidden
ImagXpress (HKLM-x32\...\{A8F2089B-1F79-4BF6-B385-A2C2B0B9A74D}) (Version: 7.0.74.0 - Nero AG) Hidden
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.5.23.1766 - Intel Corporation)
Intel(R) USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 1.0.10.255 - Intel Corporation)
Java 8 Update 221 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180221F0}) (Version: 8.0.2210.11 - Oracle Corporation)
K-Lite Codec Pack 9.3.0 (Full) (HKLM-x32\...\KLiteCodecPack_is1) (Version: 9.3.0 - )
League of Legends (HKLM-x32\...\{E86FBD55-9636-46A1-ACA7-57F8C09CC322}) (Version: 3.0.1 - Riot Games) Hidden
League of Legends (HKLM-x32\...\League of Legends 3.0.1) (Version: 3.0.1 - Riot Games)
Malwarebytes versión 3.8.3.2965 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.8.3.2965 - Malwarebytes)
Menu Templates - Starter Kit (HKLM-x32\...\{B78120A0-CF84-4366-A393-4D0A59BC546C}) (Version: 9.4.6.0 - Nero AG) Hidden
Microsoft .NET Framework 4.7.2 (español) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 3082) (Version: 4.7.03062 - Microsoft Corporation)
Microsoft .NET Framework 4.7.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.7.03062 - Microsoft Corporation)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version:  - Microsoft)
Microsoft Office Enterprise 2007 (HKLM-x32\...\ENTERPRISE) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office Excel 2007 Help Actualización (KB963678) (HKLM-x32\...\{90120000-0016-0C0A-0000-0000000FF1CE}_ENTERPRISE_{59E09C3D-4878-47D9-87DB-6D0018026889}) (Version:  - Microsoft)
Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Outlook 2007 Help Actualización (KB963677) (HKLM-x32\...\{90120000-001A-0C0A-0000-0000000FF1CE}_ENTERPRISE_{59C244C2-0C37-4E85-8F7E-DBDD3958B694}) (Version:  - Microsoft)
Microsoft Office Powerpoint 2007 Help Actualización (KB963669) (HKLM-x32\...\{90120000-0018-0C0A-0000-0000000FF1CE}_ENTERPRISE_{F318245D-05AE-4681-A749-A036CE44AF29}) (Version:  - Microsoft)
Microsoft Office Word 2007 Help Actualización (KB963665) (HKLM-x32\...\{90120000-001B-0C0A-0000-0000000FF1CE}_ENTERPRISE_{377BA42A-1C84-45D6-94B8-6D00887D172D}) (Version:  - Microsoft)
Microsoft Security Essentials (HKLM\...\Microsoft Security Client) (Version: 4.10.209.0 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50918.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{A49F249F-0C91-497F-86DF-B2585E8E76B7}) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6E8E85E8-CE4B-4FF5-91F7-04999C9FAE6A}) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (HKLM\...\{F1685080-A18F-39F7-87CC-1FC1C5357364}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729 (HKLM\...\{E34002C7-8CE7-3F76-B36C-09FA973BC4F6}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{09C0A8D5-EEC1-369D-8C7A-2E2DD17DCA5E}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{402ED4A1-8F5B-387A-8688-997ABF58B8F2}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{57660847-B1F7-35BD-9118-F62EB863A598}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (HKLM-x32\...\{22154f09-719a-4619-bb71-5b3356999fbf}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Movie Templates - Starter Kit (HKLM-x32\...\{E498385E-1C51-459A-B45F-1721E37AA1A0}) (Version: 9.4.6.0 - Nero AG) Hidden
Mozilla Firefox 69.0 (x64 es-AR) (HKLM\...\Mozilla Firefox 69.0 (x64 es-AR)) (Version: 69.0 - Mozilla)
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
MSXML 4.0 SP2 Parser and SDK (HKLM-x32\...\{716E0306-8318-4364-8B8F-0CC4E9376BAC}) (Version: 4.20.9818.0 - Microsoft Corporation)
Native Instruments Controller Editor (HKLM-x32\...\Native Instruments Controller Editor) (Version:  - Native Instruments)
Native Instruments Guitar Rig 5 (HKLM-x32\...\Native Instruments Guitar Rig 5) (Version: 5.2.0.2770 - Native Instruments)
Native Instruments Guitar Rig Mobile IO Driver (HKLM-x32\...\Native Instruments Guitar Rig Mobile IO Driver) (Version:  - Native Instruments)
Native Instruments Guitar Rig Session IO Driver (HKLM-x32\...\Native Instruments Guitar Rig Session IO Driver) (Version:  - Native Instruments)
Native Instruments Rig Kontrol 3 Driver (HKLM-x32\...\Native Instruments Rig Kontrol 3 Driver) (Version:  - Native Instruments)
Native Instruments Service Center (HKLM-x32\...\Native Instruments Service Center) (Version: 2.4.4.1428 - Native Instruments)
Nero 9 Trial (HKLM-x32\...\{704fcd9f-b599-4146-a091-807257696688}) (Version:  - Nero AG)
NVIDIA Display Control Panel (HKLM\...\NVIDIA Display Control Panel) (Version: 6.14.12.5896 - NVIDIA Corporation)
NVIDIA Drivers (HKLM\...\NVIDIA Drivers) (Version: 1.10.62.40 - NVIDIA Corporation)
Open Broadcaster Software (HKLM-x32\...\Open Broadcaster Software) (Version:  - )
PCSX2 - Playstation 2 Emulator (HKLM-x32\...\pcsx2-r5350) (Version:  - )
Piano Electrónico 2.6 (HKLM-x32\...\Piano Electrónico 2.6_is1) (Version: 2.6.0.0 - Maurício Antunes Oliveira)
Picasa 3 (HKLM-x32\...\Picasa 3) (Version: 3.9 - Google, Inc.)
Pro Evolution Soccer 6 (HKLM-x32\...\{EBB794ED-D282-4334-92FB-254481EFF514}) (Version: 1.00.0000 - KONAMI) Hidden
Pro Evolution Soccer 6 (HKLM-x32\...\InstallShield_{EBB794ED-D282-4334-92FB-254481EFF514}) (Version: 1.00.0000 - KONAMI)
PVSonyDll (HKLM\...\{3D3E663D-4E7E-4577-A560-7ECDDD45548A}) (Version: 1.00.0001 - NVIDIA Corporation) Hidden
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.86.508.2014 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7373 - Realtek Semiconductor Corp.)
REDRAGON Gaming Mouse V1.0.07 (HKLM-x32\...\{4A5BB50A-1F4B-4D17-BA7A-E278DCFED941}_is1) (Version: 1.00.05 - )
Resident Evil 2 2019 Deluxe Edition MULTi12 - ElAmigos versión 1.0 (HKLM-x32\...\{E8E7E0A8-73F1-4E9B-B50E-25CA040AD7EC}_is1) (Version: 1.0 - Capcom)
Revo Uninstaller 2.1.0 (HKLM\...\{A28DBDA2-3CC7-4ADC-8BFE-66D7743C6C97}_is1) (Version: 2.1.0 - VS Revo Group, Ltd.)
Software Updater (HKLM-x32\...\{E1BAD1BA-C0E8-4018-9281-E7D2C6B07474}) (Version: 4.3.6 - SEIKO EPSON CORPORATION)
SoundTrax (HKLM-x32\...\{C5A7CB6C-E76D-408F-BA0E-85605420FE9D}) (Version: 4.4.37.1 - Nero AG) Hidden
Spelling Dictionaries Support For Adobe Reader 9 (HKLM-x32\...\{AC76BA86-7AD7-5464-3428-900000000004}) (Version: 9.0.0 - Adobe Systems Incorporated)
swMSM (HKLM-x32\...\{612C34C7-5E90-47D8-9B5C-0F717DD82726}) (Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
Total Commander v7.50a (HKLM-x32\...\Total Commander v7.50a_is1) (Version:  - )
Twitch (HKU\S-1-5-21-786306497-2436674552-526500336-500\...\{DEE70742-F4E9-44CA-B2B9-EE95DCF37295}) (Version: 7.0.0.0 - Twitch Interactive, Inc.)
Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version:  - Microsoft)
Windows Live Sync (HKLM-x32\...\{953D4586-9A16-495E-BA1F-EE5AA66604DB}) (Version: 14.0.8089.726 - Microsoft Corporation)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

ShellExecuteHooks-x32: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2217832 2009-02-26] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers1-x32: [Cover Designer] -> {73FCA462-9BD5-4065-A73F-A8E5F6904EF7} => C:\Program Files (x86)\Nero\Nero 9\Nero CoverDesigner\CoverEdExtension.dll [2009-09-24] (Nero AG -> Nero AG)
ContextMenuHandlers1: [EPP] -> {09A47860-11B0-4DA5-AFA5-26D86198A780} => C:\Program Files\Microsoft Security Client\shellext.dll [2016-11-14] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2009-06-10] () [File not signed]
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext32.dll [2009-06-10] () [File not signed]
ContextMenuHandlers2: [EPP] -> {09A47860-11B0-4DA5-AFA5-26D86198A780} => C:\Program Files\Microsoft Security Client\shellext.dll [2016-11-14] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2019-06-26] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers4: [EPP] -> {09A47860-11B0-4DA5-AFA5-26D86198A780} => C:\Program Files\Microsoft Security Client\shellext.dll [2016-11-14] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers4: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2009-06-10] () [File not signed]
ContextMenuHandlers4-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext32.dll [2009-06-10] () [File not signed]
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\Program Files\AMD\CNext\CNext\atiacm64.dll [2016-09-16] (Advanced Micro Devices, Inc.) [File not signed]
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\system32\nvshext.dll [2010-07-09] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2019-06-26] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2009-06-10] () [File not signed]
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext32.dll [2009-06-10] () [File not signed]

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)


==================== Loaded Modules (Whitelisted) ==============

2010-03-12 14:00 - 2009-06-10 21:08 - 000165888 _____ () [File not signed] C:\Program Files (x86)\WinRAR\rarext.dll
2016-09-13 02:01 - 2016-09-13 02:01 - 000011776 _____ () [File not signed] C:\Program Files\AMD\CNext\CNext\libEGL.dll
2016-09-13 02:01 - 2016-09-13 02:01 - 002013696 _____ () [File not signed] C:\Program Files\AMD\CNext\CNext\libGLESv2.dll
2016-09-13 02:01 - 2016-09-13 02:01 - 000014336 _____ () [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick.2\qtquick2plugin.dll
2016-09-13 02:01 - 2016-09-13 02:01 - 000739840 _____ () [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Controls\qtquickcontrolsplugin.dll
2016-09-13 02:01 - 2016-09-13 02:01 - 000071168 _____ () [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Layouts\qquicklayoutsplugin.dll
2016-09-13 02:01 - 2016-09-13 02:01 - 000014336 _____ () [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Window.2\windowplugin.dll
2016-09-16 16:13 - 2016-09-16 16:13 - 000851456 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\Program Files\AMD\CNext\CNext\atiacm64.dll
2016-09-16 16:13 - 2016-09-16 16:13 - 000005120 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\Program Files\AMD\CNext\CNext\atiamesp.dll
2014-12-29 04:52 - 1999-12-31 21:00 - 000073728 _____ (Intel Corporation) [File not signed] C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.dll
2006-10-26 13:44 - 2006-10-26 13:44 - 000123904 _____ (Microsoft Corporation) [File not signed] C:\Program Files (x86)\Common Files\Microsoft Shared\VS7Debug\csm.dll
2009-05-23 02:45 - 2009-05-23 02:45 - 000247808 _____ (Microsoft Corporation) [File not signed] C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\msdbg2.dll
2011-08-26 03:01 - 2011-08-26 03:01 - 001093120 _____ (Microsoft Corporation) [File not signed] C:\Windows\WinSxS\x86_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_cbf5e994470a1a8f\MFC80U.DLL
2005-01-13 10:47 - 2005-01-13 10:47 - 000049152 _____ (SEIKO EPSON CORP.) [File not signed] C:\Program Files (x86)\EPSON Software\Event Manager\ESPSUTL.dll
2011-04-14 09:25 - 2011-04-14 09:25 - 000206336 _____ (SEIKO EPSON CORP.) [File not signed] C:\Program Files (x86)\EPSON Software\Event Manager\ScnCom10.dll
2011-04-14 09:25 - 2011-04-14 09:25 - 000082944 _____ (SEIKO EPSON CORP.) [File not signed] C:\Program Files (x86)\EPSON Software\Event Manager\ScnEps25.dll
2011-04-14 09:25 - 2011-04-14 09:25 - 000055808 _____ (SEIKO EPSON CORP.) [File not signed] C:\Program Files (x86)\EPSON Software\Event Manager\ScnMgr10.dll
2012-02-09 12:53 - 2012-02-09 12:53 - 000110080 _____ (SEIKO EPSON CORPORATION) [File not signed] C:\Program Files (x86)\EPSON Software\Event Manager\epnsm.dll
2009-10-21 17:39 - 2009-10-21 17:39 - 000291328 _____ (SEIKO EPSON CORPORATION) [File not signed] C:\Program Files (x86)\EPSON Software\Event Manager\LcMgr.dll
2011-04-14 09:16 - 2011-04-14 09:16 - 000136704 _____ (SEIKO EPSON CORPORATION) [File not signed] C:\Program Files (x86)\EPSON Software\Event Manager\ScanEngine30.dll
2015-01-07 21:45 - 2011-08-30 13:38 - 000558080 _____ (SEIKO EPSON CORPORATION) [File not signed] C:\Windows\System32\enppmon.dll
2015-01-07 21:45 - 2011-08-01 18:24 - 000252416 _____ (SEIKO EPSON CORPORATION) [File not signed] C:\Windows\System32\enpres.dll
2016-09-13 02:01 - 2016-09-13 02:01 - 000049664 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qdds.dll
2016-09-13 02:01 - 2016-09-13 02:01 - 000029696 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qgif.dll
2016-09-13 02:01 - 2016-09-13 02:01 - 000037376 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qicns.dll
2016-09-13 02:01 - 2016-09-13 02:01 - 000030208 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qico.dll
2016-09-13 02:01 - 2016-09-13 02:01 - 000459776 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qjp2.dll
2016-09-13 02:01 - 2016-09-13 02:01 - 000236544 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qjpeg.dll
2016-09-13 02:01 - 2016-09-13 02:01 - 000275456 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qmng.dll
2016-09-13 02:01 - 2016-09-13 02:01 - 000023552 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qsvg.dll
2016-09-13 02:01 - 2016-09-13 02:01 - 000022528 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qtga.dll
2016-09-13 02:01 - 2016-09-13 02:01 - 000351744 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qtiff.dll
2016-09-13 02:01 - 2016-09-13 02:01 - 000021504 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qwbmp.dll
2016-09-13 02:01 - 2016-09-13 02:01 - 000374784 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qwebp.dll
2016-09-13 02:01 - 2016-09-13 02:01 - 001212416 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\platforms\qwindows.dll
2016-09-13 02:00 - 2016-09-13 02:00 - 000912384 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Charts.dll
2016-09-13 02:00 - 2016-09-13 02:00 - 005496320 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Core.dll
2016-09-13 02:00 - 2016-09-13 02:00 - 005804544 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Gui.dll
2016-09-13 02:00 - 2016-09-13 02:00 - 001061376 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Network.dll
2016-09-13 02:00 - 2016-09-13 02:00 - 003187712 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Qml.dll
2016-09-13 02:00 - 2016-09-13 02:00 - 002924544 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Quick.dll
2016-09-13 02:00 - 2016-09-13 02:00 - 000310784 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Svg.dll
2016-09-13 02:00 - 2016-09-13 02:00 - 005444608 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Widgets.dll
2016-09-13 02:01 - 2016-09-13 02:01 - 000277504 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5WinExtras.dll
2016-09-13 02:01 - 2016-09-13 02:01 - 000193024 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Xml.dll

==================== Alternate Data Streams (Whitelisted) =========

==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)


==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2015-03-24 18:38 - 2019-09-15 02:40 - 000000035 _____ C:\Windows\system32\drivers\etc\hosts


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\Program Files (x86)\Intel\iCLS Client\;C:\Program Files\Intel\iCLS Client\;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT
HKU\S-1-5-21-786306497-2436674552-526500336-500\Control Panel\Desktop\\Wallpaper -> C:\Users\Administrador\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 200.42.4.199 - 200.49.130.51
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

If an entry is included in the fixlist, it will be removed.


==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [TCP Query User{684CEA77-2212-4F4C-B081-BB9347268E1B}C:\program files (x86)\epson software\event manager\eeventmanager.exe] => (Block) C:\program files (x86)\epson software\event manager\eeventmanager.exe (SEIKO EPSON Corporation -> SEIKO EPSON CORPORATION)
FirewallRules: [UDP Query User{2357FF15-A4F2-4505-A783-BDAF70798FFA}C:\program files (x86)\epson software\event manager\eeventmanager.exe] => (Block) C:\program files (x86)\epson software\event manager\eeventmanager.exe (SEIKO EPSON Corporation -> SEIKO EPSON CORPORATION)

==================== Restore Points =========================

13-09-2019 02:49:34 JRT Pre-Junkware Removal
13-09-2019 03:27:23 AdwCleaner_BeforeCleaning_13/09/2019_03:27:18
13-09-2019 03:40:30 AdwCleaner_BeforeCleaning_13/09/2019_03:40:24
13-09-2019 04:31:39 AdwCleaner_BeforeCleaning_13/09/2019_04:31:32
15-09-2019 02:21:00 Revo Uninstaller's restore point - Steam
15-09-2019 02:25:01 Revo Uninstaller's restore point - Spotify
15-09-2019 02:25:50 Revo Uninstaller's restore point - Java 8 Update 40
15-09-2019 02:26:02 Removed Java 8 Update 40
15-09-2019 02:28:31 Revo Uninstaller's restore point - Google+ Auto Backup
15-09-2019 02:39:18 Restore Point Created by FRST

==================== Faulty Device Manager Devices =============

Name: Adaptador de tunelización Teredo de Microsoft
Description: Adaptador de tunelización Teredo de Microsoft
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.


==================== Event log errors: =========================

Application errors:
==================
Error: (09/15/2019 02:39:18 AM) (Source: VSS) (EventID: 8194) (User: )
Description: Error del Servicio de instantáneas de volumen: error inesperado al consultar la interfaz IVssWriterCallback. HR = 0x80070005, Acceso denegado.
.
A menudo ocurre por una configuración de seguridad incorrecta en el proceso de escritura o de solicitud.


Operación:
   Recopilando datos del escritor

Contexto:
   Id. de clase del escritor: {e8132975-6f93-4464-a53e-1050253ae220}
   Nombre del escritor: System Writer
   Id. de instancia del escritor: {1cb1d8b4-f17b-40ad-8d96-0f28da6d47dd}

Error: (09/15/2019 02:20:59 AM) (Source: VSS) (EventID: 8194) (User: )
Description: Error del Servicio de instantáneas de volumen: error inesperado al consultar la interfaz IVssWriterCallback. HR = 0x80070005, Acceso denegado.
.
A menudo ocurre por una configuración de seguridad incorrecta en el proceso de escritura o de solicitud.


Operación:
   Recopilando datos del escritor

Contexto:
   Id. de clase del escritor: {e8132975-6f93-4464-a53e-1050253ae220}
   Nombre del escritor: System Writer
   Id. de instancia del escritor: {ca08173d-2d37-422b-9a0c-d660415a44bd}

Error: (09/15/2019 02:06:29 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nombre de la aplicación con errores: steamwebhelper.exe, versión: 5.34.50.81, marca de tiempo: 0x5d77edb5
Nombre del módulo con errores: chrome_elf.dll, versión: 72.0.3626.121, marca de tiempo: 0x5c776ad0
Código de excepción: 0x80000003
Desplazamiento de errores: 0x000000000001ab39
Id. del proceso con errores: 0xb58
Hora de inicio de la aplicación con errores: 0x01d56b835545c91c
Ruta de acceso de la aplicación con errores: C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
Ruta de acceso del módulo con errores: C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\chrome_elf.dll
Id. del informe: 92fe3add-d776-11e9-8bc8-60a44cae3a0d

Error: (09/15/2019 02:06:19 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nombre de la aplicación con errores: steamwebhelper.exe, versión: 5.34.50.81, marca de tiempo: 0x5d77edb5
Nombre del módulo con errores: chrome_elf.dll, versión: 72.0.3626.121, marca de tiempo: 0x5c776ad0
Código de excepción: 0x80000003
Desplazamiento de errores: 0x000000000001ab39
Id. del proceso con errores: 0x12f8
Hora de inicio de la aplicación con errores: 0x01d56b834f3a8aaa
Ruta de acceso de la aplicación con errores: C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
Ruta de acceso del módulo con errores: C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\chrome_elf.dll
Id. del informe: 8cf55dcc-d776-11e9-8bc8-60a44cae3a0d

Error: (09/15/2019 02:06:08 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nombre de la aplicación con errores: steamwebhelper.exe, versión: 5.34.50.81, marca de tiempo: 0x5d77edb5
Nombre del módulo con errores: chrome_elf.dll, versión: 72.0.3626.121, marca de tiempo: 0x5c776ad0
Código de excepción: 0x80000003
Desplazamiento de errores: 0x000000000001ab39
Id. del proceso con errores: 0x1278
Hora de inicio de la aplicación con errores: 0x01d56b83491ea296
Ruta de acceso de la aplicación con errores: C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
Ruta de acceso del módulo con errores: C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\chrome_elf.dll
Id. del informe: 86d71457-d776-11e9-8bc8-60a44cae3a0d

Error: (09/15/2019 02:05:58 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nombre de la aplicación con errores: steamwebhelper.exe, versión: 5.34.50.81, marca de tiempo: 0x5d77edb5
Nombre del módulo con errores: chrome_elf.dll, versión: 72.0.3626.121, marca de tiempo: 0x5c776ad0
Código de excepción: 0x80000003
Desplazamiento de errores: 0x000000000001ab39
Id. del proceso con errores: 0xb68
Hora de inicio de la aplicación con errores: 0x01d56b8342fdd0b1
Ruta de acceso de la aplicación con errores: C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
Ruta de acceso del módulo con errores: C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\chrome_elf.dll
Id. del informe: 80b8cae3-d776-11e9-8bc8-60a44cae3a0d

Error: (09/15/2019 02:05:50 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nombre de la aplicación con errores: steamwebhelper.exe, versión: 5.34.50.81, marca de tiempo: 0x5d77edb5
Nombre del módulo con errores: chrome_elf.dll, versión: 72.0.3626.121, marca de tiempo: 0x5c776ad0
Código de excepción: 0x80000003
Desplazamiento de errores: 0x000000000001ab39
Id. del proceso con errores: 0x12d4
Hora de inicio de la aplicación con errores: 0x01d56b833d118422
Ruta de acceso de la aplicación con errores: C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
Ruta de acceso del módulo con errores: C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\chrome_elf.dll
Id. del informe: 7b944adb-d776-11e9-8bc8-60a44cae3a0d

Error: (09/15/2019 02:05:38 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nombre de la aplicación con errores: steamwebhelper.exe, versión: 5.34.50.81, marca de tiempo: 0x5d77edb5
Nombre del módulo con errores: chrome_elf.dll, versión: 72.0.3626.121, marca de tiempo: 0x5c776ad0
Código de excepción: 0x80000003
Desplazamiento de errores: 0x000000000001ab39
Id. del proceso con errores: 0x1300
Hora de inicio de la aplicación con errores: 0x01d56b8336e02fac
Ruta de acceso de la aplicación con errores: C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
Ruta de acceso del módulo con errores: C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\chrome_elf.dll
Id. del informe: 7498a16d-d776-11e9-8bc8-60a44cae3a0d


System errors:
=============
Error: (09/15/2019 03:19:53 AM) (Source: Disk) (EventID: 7) (User: )
Description: El dispositivo, \Device\Harddisk0\DR0, tiene un bloque defectuoso.

Error: (09/15/2019 03:19:51 AM) (Source: Disk) (EventID: 7) (User: )
Description: El dispositivo, \Device\Harddisk0\DR0, tiene un bloque defectuoso.

Error: (09/15/2019 02:52:18 AM) (Source: Disk) (EventID: 7) (User: )
Description: El dispositivo, \Device\Harddisk0\DR0, tiene un bloque defectuoso.

Error: (09/15/2019 02:52:15 AM) (Source: Disk) (EventID: 7) (User: )
Description: El dispositivo, \Device\Harddisk0\DR0, tiene un bloque defectuoso.

Error: (09/15/2019 02:41:11 AM) (Source: Service Control Manager) (EventID: 7032) (User: )
Description: El Administrador de control de servicios intentó realizar una acción correctora (Reiniciar el servicio) después de la terminación inesperada del servicio Instalador de módulos de Windows, pero ocurrió el siguiente error: 
Ya se está ejecutando una instancia de este servicio.

Error: (09/15/2019 02:39:17 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: El servicio Servicio de uso compartido de red del Reproductor de Windows Media terminó inesperadamente. Esto se ha repetido 1 veces. Se realizará la siguiente acción correctora en 30000 milisegundos: Reiniciar el servicio.

Error: (09/15/2019 02:39:11 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: El servicio Protección de software terminó inesperadamente. Esto se ha repetido 1 veces. Se realizará la siguiente acción correctora en 120000 milisegundos: Reiniciar el servicio.

Error: (09/15/2019 02:39:11 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: El servicio Instalador de módulos de Windows terminó inesperadamente. Esto se ha repetido 1 veces. Se realizará la siguiente acción correctora en 120000 milisegundos: Reiniciar el servicio.


==================== Memory info =========================== 

BIOS: American Megatrends Inc. 1806 01/03/2013
Motherboard: ASUSTeK COMPUTER INC. P8Z77-M
Processor: Intel(R) Core(TM) i5-3570 CPU @ 3.40GHz
Percentage of memory in use: 67%
Total physical RAM: 8138.07 MB
Available physical RAM: 2651.88 MB
Total Virtual: 16274.29 MB
Available Virtual: 9803.74 MB

==================== Drives ================================

Drive c: (Sistema) (Fixed) (Total:200 GB) (Free:63.26 GB) NTFS ==>[drive with boot components (obtained from BCD)]
Drive d: (Datos) (Fixed) (Total:1197.26 GB) (Free:720.59 GB) NTFS
Drive g: (DVD_ROM) (CDROM) (Total:0.05 GB) (Free:0 GB) UDF


==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 1397.3 GB) (Disk ID: 98976799)
Partition 1: (Active) - (Size=200 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=1197.3 GB) - (Type=05)

==================== End of Addition.txt ============================

saludos!!

Hola nuevamente!!!

Quedan aun bastantes restos.

Sigue estos pasos:

1.- Muy Importante >>> Realizar una copia de Seguridad de su Registro nuevamente

  • Ejecuta DelFix en el escritorio de Windows.
  • Clic Derecho, “Ejecutar como Administrador”.
  • En la ventana principal, marca solamente la casilla “Create Registry Backup”.
  • Clic en Run.

Al terminar se abrirá un reporte llamado DelFix.txt, guárdelo por si fuera necesario y cierre la herramienta…

2.- Desactiva Temporalmente tu antivirus.

3.- Abre un nuevo archivo Notepad/Bloc de Notas y copia y pega este contenido:


Start
CloseProcesses:
CreateRestorePoint:
HKLM\...\Drivers32: [VIDC.FMVC] => C:\Windows\SysWOW64\fmcodec.dll 
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> "C:\Program Files (x86)\Google\Chrome\Application\63.0.3239.108\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level
C:\Program Files (x86)\Google\Chrome
Task: {19346FB1-0ABA-4000-AAF4-0F34DE1CD970} - System32\Tasks\{F5A1EF45-0710-4D6D-8A7F-CE9F850906F9} => C:\Users\Administrador\AppData\Roaming\Spotify\Spotify.exe
C:\Users\Administrador\AppData\Roaming\Spotify
Task: {35C475AB-B1A4-4DB0-9A5C-ACE9D80975EE} - System32\Tasks\{101ED32C-D73B-4FB0-8B34-5C0F7CE74C7F} => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe 
Task: {5300324C-75E9-4B1F-8EAD-634E712A0C34} - System32\Tasks\{92341FED-34E3-4192-8936-B24866AA31FB} => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe 
Task: {892BCEA1-A68D-4E36-AD40-449741EA703A} - System32\Tasks\{D1F8B07C-E0D5-4BCF-9CD9-F65898F73D56} => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe 
Task: {9B817A18-A71A-4B27-9DC6-8EE89652D9B1} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-786306497-2436674552-526500336-500Core => C:\Users\Administrador\AppData\Local\Google\Update\GoogleUpdate.exe
C:\Users\Administrador\AppData\Local\Google\Update\GoogleUpdate.exe
Task: {BB120B98-C7DE-4B50-BAA8-72E8584F3113} - System32\Tasks\{4115A142-8C01-43D7-BC81-688FECD07FA5} => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe 
Task: {CF240568-1BA8-489D-A0DD-A9E81E46022D} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-786306497-2436674552-526500336-500UA => C:\Users\Administrador\AppData\Local\Google\Update\GoogleUpdate.exe
Task: {D5A6FE5B-8613-4D64-A3F3-7A9979C9D9F5} - System32\Tasks\{DAD0AF15-315B-4B5F-8CDF-3DB401A6A9A4} => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe 
FF Extension: (Steam Database) - C:\Users\Administrador\AppData\Roaming\Mozilla\Firefox\Profiles\bij10560.default-1472267121028-1517939563534\Extensions\[email protected] [2019-08-31]
FF Extension: (Augmented Steam) - C:\Users\Administrador\AppData\Roaming\Mozilla\Firefox\Profiles\bij10560.default-1472267121028-1517939563534\Extensions\{1be309c5-3e4f-4b99-927d-bb500eb4fa88}.xpi [2019-08-31]
S3 ALSysIO; \??\C:\Users\ADMINI~1\AppData\Local\Temp\ALSysIO64.sys [X] <==== ATTENTION
S3 cpuz136; \??\C:\Users\ADMINI~1\AppData\Local\Temp\cpuz136\cpuz136_x64.sys [X] <==== ATTENTION
S3 LgBttPort; system32\DRIVERS\lgbtpt64.sys [X]
S3 lgbusenum; system32\DRIVERS\lgbtbs64.sys [X]
S3 LGVMODEM; system32\DRIVERS\lgvmdm64.sys [X]
S3 Synth3dVsc; System32\drivers\synth3dvsc.sys [X]
S3 tsusbhub; system32\drivers\tsusbhub.sys [X]
S3 usbbus; system32\DRIVERS\lgx64bus.sys [X]
S3 UsbDiag; system32\DRIVERS\lgx64diag.sys [X]
S3 USBModem; system32\DRIVERS\lgx64modem.sys [X]
S3 VGPU; System32\drivers\rdvgkmd.sys [X]
2019-08-22 18:10 - 2019-08-22 18:10 - 000002994 _____ C:\Windows\System32\Tasks\{F5A1EF45-0710-4D6D-8A7F-CE9F850906F9}
2019-09-10 14:50 - 2010-03-12 16:39 - 000000000 ____D C:\Program Files (x86)\Google
Google Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.21.169 - Google Inc.) Hidden
EmptyTemp:
END
  • Lo guardas bajo el nombre de fixlist.txt en el escritorio <<< Esto es muy importante.

Nota: Es necesario que el ejecutable Frst.exe y fixlist.txt se encuentren en la misma ubicación (escritorio) o si no la herramienta no trabajara.

  • Ejecutas Frst.exe.
  • Presionas el botón Fix y aguardas a que termine.
  • La Herramienta guardara el reporte en tu escritorio (Fixlog.txt).
  • Lo pegas en tu próxima respuesta.

Nos comentas como sigue el equipo.

Salu2.

Hola de nuevo !! Gracias, aqui va el otro reporte!

Fix result of Farbar Recovery Scan Tool (x64) Version: 14-09-2019
Ran by Administrador (15-09-2019 04:47:33) Run:2
Running from D:\Users\Administrador\Desktop
Loaded Profiles: Administrador (Available Profiles: Administrador)
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start
CloseProcesses:
CreateRestorePoint:
HKLM\...\Drivers32: [VIDC.FMVC] => C:\Windows\SysWOW64\fmcodec.dll 
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> "C:\Program Files (x86)\Google\Chrome\Application\63.0.3239.108\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level
C:\Program Files (x86)\Google\Chrome
Task: {19346FB1-0ABA-4000-AAF4-0F34DE1CD970} - System32\Tasks\{F5A1EF45-0710-4D6D-8A7F-CE9F850906F9} => C:\Users\Administrador\AppData\Roaming\Spotify\Spotify.exe
C:\Users\Administrador\AppData\Roaming\Spotify
Task: {35C475AB-B1A4-4DB0-9A5C-ACE9D80975EE} - System32\Tasks\{101ED32C-D73B-4FB0-8B34-5C0F7CE74C7F} => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe 
Task: {5300324C-75E9-4B1F-8EAD-634E712A0C34} - System32\Tasks\{92341FED-34E3-4192-8936-B24866AA31FB} => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe 
Task: {892BCEA1-A68D-4E36-AD40-449741EA703A} - System32\Tasks\{D1F8B07C-E0D5-4BCF-9CD9-F65898F73D56} => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe 
Task: {9B817A18-A71A-4B27-9DC6-8EE89652D9B1} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-786306497-2436674552-526500336-500Core => C:\Users\Administrador\AppData\Local\Google\Update\GoogleUpdate.exe
C:\Users\Administrador\AppData\Local\Google\Update\GoogleUpdate.exe
Task: {BB120B98-C7DE-4B50-BAA8-72E8584F3113} - System32\Tasks\{4115A142-8C01-43D7-BC81-688FECD07FA5} => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe 
Task: {CF240568-1BA8-489D-A0DD-A9E81E46022D} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-786306497-2436674552-526500336-500UA => C:\Users\Administrador\AppData\Local\Google\Update\GoogleUpdate.exe
Task: {D5A6FE5B-8613-4D64-A3F3-7A9979C9D9F5} - System32\Tasks\{DAD0AF15-315B-4B5F-8CDF-3DB401A6A9A4} => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe 
FF Extension: (Steam Database) - C:\Users\Administrador\AppData\Roaming\Mozilla\Firefox\Profiles\bij10560.default-1472267121028-1517939563534\Extensions\[email protected] [2019-08-31]
FF Extension: (Augmented Steam) - C:\Users\Administrador\AppData\Roaming\Mozilla\Firefox\Profiles\bij10560.default-1472267121028-1517939563534\Extensions\{1be309c5-3e4f-4b99-927d-bb500eb4fa88}.xpi [2019-08-31]
S3 ALSysIO; \??\C:\Users\ADMINI~1\AppData\Local\Temp\ALSysIO64.sys [X] <==== ATTENTION
S3 cpuz136; \??\C:\Users\ADMINI~1\AppData\Local\Temp\cpuz136\cpuz136_x64.sys [X] <==== ATTENTION
S3 LgBttPort; system32\DRIVERS\lgbtpt64.sys [X]
S3 lgbusenum; system32\DRIVERS\lgbtbs64.sys [X]
S3 LGVMODEM; system32\DRIVERS\lgvmdm64.sys [X]
S3 Synth3dVsc; System32\drivers\synth3dvsc.sys [X]
S3 tsusbhub; system32\drivers\tsusbhub.sys [X]
S3 usbbus; system32\DRIVERS\lgx64bus.sys [X]
S3 UsbDiag; system32\DRIVERS\lgx64diag.sys [X]
S3 USBModem; system32\DRIVERS\lgx64modem.sys [X]
S3 VGPU; System32\drivers\rdvgkmd.sys [X]
2019-08-22 18:10 - 2019-08-22 18:10 - 000002994 _____ C:\Windows\System32\Tasks\{F5A1EF45-0710-4D6D-8A7F-CE9F850906F9}
2019-09-10 14:50 - 2010-03-12 16:39 - 000000000 ____D C:\Program Files (x86)\Google
Google Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.21.169 - Google Inc.) Hidden
EmptyTemp:
END
*****************

Processes closed successfully.
Restore point was successfully created.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Drivers32\\VIDC.FMVC" => not found
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components\{8A69D345-D564-463c-AFF1-A69D9E530F96} => removed successfully
"C:\Program Files (x86)\Google\Chrome" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{19346FB1-0ABA-4000-AAF4-0F34DE1CD970}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{19346FB1-0ABA-4000-AAF4-0F34DE1CD970}" => removed successfully
C:\Windows\System32\Tasks\{F5A1EF45-0710-4D6D-8A7F-CE9F850906F9} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{F5A1EF45-0710-4D6D-8A7F-CE9F850906F9}" => removed successfully
"C:\Users\Administrador\AppData\Roaming\Spotify" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{35C475AB-B1A4-4DB0-9A5C-ACE9D80975EE}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{35C475AB-B1A4-4DB0-9A5C-ACE9D80975EE}" => removed successfully
C:\Windows\System32\Tasks\{101ED32C-D73B-4FB0-8B34-5C0F7CE74C7F} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{101ED32C-D73B-4FB0-8B34-5C0F7CE74C7F}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{5300324C-75E9-4B1F-8EAD-634E712A0C34}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{5300324C-75E9-4B1F-8EAD-634E712A0C34}" => removed successfully
C:\Windows\System32\Tasks\{92341FED-34E3-4192-8936-B24866AA31FB} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{92341FED-34E3-4192-8936-B24866AA31FB}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{892BCEA1-A68D-4E36-AD40-449741EA703A}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{892BCEA1-A68D-4E36-AD40-449741EA703A}" => removed successfully
C:\Windows\System32\Tasks\{D1F8B07C-E0D5-4BCF-9CD9-F65898F73D56} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{D1F8B07C-E0D5-4BCF-9CD9-F65898F73D56}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{9B817A18-A71A-4B27-9DC6-8EE89652D9B1}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{9B817A18-A71A-4B27-9DC6-8EE89652D9B1}" => removed successfully
C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-786306497-2436674552-526500336-500Core => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskUserS-1-5-21-786306497-2436674552-526500336-500Core" => removed successfully
"C:\Users\Administrador\AppData\Local\Google\Update\GoogleUpdate.exe" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{BB120B98-C7DE-4B50-BAA8-72E8584F3113}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{BB120B98-C7DE-4B50-BAA8-72E8584F3113}" => removed successfully
C:\Windows\System32\Tasks\{4115A142-8C01-43D7-BC81-688FECD07FA5} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{4115A142-8C01-43D7-BC81-688FECD07FA5}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{CF240568-1BA8-489D-A0DD-A9E81E46022D}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{CF240568-1BA8-489D-A0DD-A9E81E46022D}" => removed successfully
C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-786306497-2436674552-526500336-500UA => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskUserS-1-5-21-786306497-2436674552-526500336-500UA" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{D5A6FE5B-8613-4D64-A3F3-7A9979C9D9F5}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{D5A6FE5B-8613-4D64-A3F3-7A9979C9D9F5}" => removed successfully
C:\Windows\System32\Tasks\{DAD0AF15-315B-4B5F-8CDF-3DB401A6A9A4} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{DAD0AF15-315B-4B5F-8CDF-3DB401A6A9A4}" => removed successfully
C:\Users\Administrador\AppData\Roaming\Mozilla\Firefox\Profiles\bij10560.default-1472267121028-1517939563534\Extensions\[email protected] => moved successfully
C:\Users\Administrador\AppData\Roaming\Mozilla\Firefox\Profiles\bij10560.default-1472267121028-1517939563534\Extensions\{1be309c5-3e4f-4b99-927d-bb500eb4fa88}.xpi => moved successfully
HKLM\System\CurrentControlSet\Services\ALSysIO => removed successfully
ALSysIO => service removed successfully
HKLM\System\CurrentControlSet\Services\cpuz136 => removed successfully
cpuz136 => service removed successfully
HKLM\System\CurrentControlSet\Services\LgBttPort => removed successfully
LgBttPort => service removed successfully
HKLM\System\CurrentControlSet\Services\lgbusenum => removed successfully
lgbusenum => service removed successfully
HKLM\System\CurrentControlSet\Services\LGVMODEM => removed successfully
LGVMODEM => service removed successfully
HKLM\System\CurrentControlSet\Services\Synth3dVsc => removed successfully
Synth3dVsc => service removed successfully
HKLM\System\CurrentControlSet\Services\tsusbhub => removed successfully
tsusbhub => service removed successfully
HKLM\System\CurrentControlSet\Services\usbbus => removed successfully
usbbus => service removed successfully
HKLM\System\CurrentControlSet\Services\UsbDiag => removed successfully
UsbDiag => service removed successfully
HKLM\System\CurrentControlSet\Services\USBModem => removed successfully
USBModem => service removed successfully
HKLM\System\CurrentControlSet\Services\VGPU => removed successfully
VGPU => service removed successfully
"C:\Windows\System32\Tasks\{F5A1EF45-0710-4D6D-8A7F-CE9F850906F9}" => not found
C:\Program Files (x86)\Google => moved successfully
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}\\SystemComponent" => removed successfully

=========== EmptyTemp: ==========

BITS transfer queue => 8388608 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 3152264 B
Java, Flash, Steam htmlcache => 0 B
Windows/system/drivers => 9190 B
Edge => 0 B
Chrome => 0 B
Firefox => 211312093 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Users => 0 B
Default => 0 B
Public => 0 B
ProgramData => 0 B
systemprofile => 128 B
systemprofile32 => 0 B
LocalService => 0 B
NetworkService => 850 B
A => 0 B
A => 0 B
Administrador => 2508692 B

RecycleBin => 0 B
EmptyTemp: => 214.9 MB temporary data Removed.

================================


The system needed a reboot.

==== End of Fixlog 04:47:59 ====

Saludos!!

Hola @n_f1

Perfecto, ahora si reinstala el navegador Google Chrome.

Lo priebas y nos comentas como va.

Salu2

Hola @SanMar lo volvi a bajar y aun sigue sin abrirse Google Chrome, es extraño :thinking::thinking: crees que sea por mi S.O o algo relacionado a ello? :sob:

Hola:

No deberías tener problema.

LO que necesito cuando te de algún error es que tomes una captura.


Pues toca empezar de nuevo trae un reporte fresco de FRST y Adittion tal como ya lo has hecho anteriormente.

Salu2

Hola! Ok ok, ahí van los reportes, hasta ahora no ha habido ningún error desde el comienzo de la consulta por las dudas :grin:

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 14-09-2019
Ran by Administrador (administrator) on FAB-PC (15-09-2019 16:50:48)
Running from D:\Users\Administrador\Desktop
Loaded Profiles: Administrador (Available Profiles: Administrador)
Platform: Windows 7 Ultimate Service Pack 1 (X64) Language: Español (España, internacional)
Internet Explorer Version 11 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Adobe Inc. -> Adobe Systems) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\RadeonSettings.exe
(Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\atieclxx.exe
(Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\atiesrxx.exe
(Google Inc -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.34.11\GoogleCrashHandler.exe
(Google Inc -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.34.11\GoogleCrashHandler64.exe
(Google Inc -> Google LLC) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
(Intel Corporation - Intel® Management Engine Firmware -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation - Software and Firmware Products -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
(Intel(R) Corporation) [File not signed] C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Malwarebytes Corporation -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Security Client\MsMpEng.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Security Client\NisSrv.exe
(Microsoft Corporation) [File not signed] C:\Program Files (x86)\Common Files\microsoft shared\VS7DEBUG\mdm.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(NATIVE INSTRUMENTS GmbH -> Native Instruments GmbH) C:\Program Files\Common Files\Native Instruments\Hardware\NIHardwareService.exe
(Nero AG -> Nero AG) C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Piriform Software Ltd -> Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(PXI) [File not signed] C:\Program Files (x86)\REDRAGON\Gaming Mouse\vdDaemon.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(REDRAGON) [File not signed] C:\Program Files (x86)\REDRAGON\Gaming Mouse\hid.exe
(REDRAGON) [File not signed] C:\Program Files (x86)\REDRAGON\Gaming Mouse\TrayIcon.exe
(SEIKO EPSON Corporation -> SEIKO EPSON CORPORATION) C:\Program Files (x86)\EPSON Software\Event Manager\EEventManager.exe
(SEIKO EPSON Corporation -> SEIKO EPSON CORPORATION) C:\Program Files\EPSON\EpsonCustomerParticipation\EPCP.exe
(SEIKO EPSON Corporation -> Seiko Epson Corporation) C:\Windows\System32\escsvc64.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [7660760 1999-12-31] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [MSC] => C:\Program Files\Microsoft Security Client\msseces.exe [1353680 2016-11-14] (Microsoft Corporation -> Microsoft Corporation)
HKLM\...\Run: [StartCN] => C:\Program Files\AMD\CNext\CNext\RadeonSettings.exe [8027016 2016-09-16] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [USB3MON] => C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [292088 1999-12-31] (Intel Corporation -> Intel Corporation)
HKLM-x32\...\Run: [EEventManager] => C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe [1058400 2012-01-26] (SEIKO EPSON Corporation -> SEIKO EPSON CORPORATION)
HKLM-x32\...\Run: [REDRAGON] => C:\Program Files (x86)\REDRAGON\Gaming Mouse\Hid.exe [611328 2017-03-07] (REDRAGON) [File not signed]
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [644552 2019-07-04] (Oracle America, Inc. -> Oracle Corporation)
HKU\S-1-5-21-786306497-2436674552-526500336-500\...\Run: [DAEMON Tools Lite] => C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3672640 2013-03-14] (Disc Soft Ltd -> Disc Soft Ltd)
HKU\S-1-5-21-786306497-2436674552-526500336-500\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [22714912 2019-08-15] (Piriform Software Ltd -> Piriform Ltd)
HKU\S-1-5-21-786306497-2436674552-526500336-500\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Windows\system32\PhotoScreensaver.scr [477696 2010-11-20] (Microsoft Windows -> Microsoft Corporation)
HKU\S-1-5-18\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [22714912 2019-08-15] (Piriform Software Ltd -> Piriform Ltd)
HKLM\...\Drivers32: [VIDC.FMVC] => C:\Windows\SysWOW64\fmcodec.dll [77824 2008-08-18] (Fox Magic Software) [File not signed]
HKLM\Software\Microsoft\Active Setup\Installed Components: [{2D46B6DC-2207-486B-B523-A557E6D54B47}] -> C:\Windows\system32\cmd.exe /D /C start C:\Windows\system32\ie4uinit.exe -ClearIconCache
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\77.0.3865.75\Installer\chrmstp.exe [2019-09-15] (Google LLC -> Google LLC)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{2D46B6DC-2207-486B-B523-A557E6D54B47}] -> C:\Windows\system32\cmd.exe /D /C start C:\Windows\system32\ie4uinit.exe -ClearIconCache
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{A6EADE66-0000-0000-484E-7E8A45000000}] -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Esl\AiodLite.dll [2019-05-02] (Adobe Inc. -> Adobe Systems, Inc.)

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {06341341-BA2B-47D5-BD07-8DB882AB89C3} - System32\Tasks\AMD Updater => C:\Program Files\AMD\CIM\\Bin64\InstallManagerApp.exe [10387848 2016-09-16] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {1AC584AF-62A6-4B4A-86DC-22B4CFEEC90A} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-09-15] (Google Inc -> Google LLC)
Task: {2F462DB2-22A3-49C0-92DF-181F8716F3C0} - System32\Tasks\{0F4979AE-3499-4301-A90B-CCCC61EBF101} => C:\Program Files (x86)\Mozilla Firefox\firefox.exe 
Task: {57E80BF7-19D0-4BF5-81C5-13F8067F5791} - System32\Tasks\SidebarExecute => C:\Program Files (x86)\Windows Sidebar\sidebar.exe [1174016 2010-11-20] (Microsoft Windows -> Microsoft Corporation)
Task: {5E83108B-8548-44F7-8F54-32328357D478} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-09-15] (Google Inc -> Google LLC)
Task: {70F1D177-B847-4A84-8A27-B6B63B3942E3} - System32\Tasks\{8D19F94C-B760-4434-8073-E0757AC49BF5} => C:\Program Files (x86)\Mozilla Firefox\firefox.exe 
Task: {816FBC6A-C282-4A5E-B0D9-1072B715E2F5} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_255_Plugin.exe [1457720 2019-09-10] (Adobe Inc. -> Adobe)
Task: {A2E71A14-4387-4B07-90B8-4356161A29CD} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [16585328 2019-08-15] (Piriform Software Ltd -> Piriform Ltd)
Task: {C5A54170-DCF9-4227-BC29-A3206D644E04} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1236048 2019-07-24] (Adobe Inc. -> Adobe Systems)
Task: {C5AB4C37-49A1-4184-A419-4BF2C1076C1D} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [619416 2019-08-15] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {DE534944-2810-43BA-8951-093EE657617B} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2019-09-10] (Adobe Inc. -> Adobe)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 200.42.4.199 200.49.130.51 200.49.130.51
Tcpip\..\Interfaces\{604C0362-A527-4191-AA0D-B471014270A5}: [DhcpNameServer] 200.42.4.199 200.49.130.51 200.49.130.51

Internet Explorer:
==================
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_221\bin\ssv.dll [2019-09-15] (Oracle America, Inc. -> Oracle Corporation)
BHO: Easy Photo Print -> {9421DD08-935F-4701-A9CA-22DF90AC4EA6} -> C:\Program Files (x86)\Epson Software\Easy Photo Print\EPTBL.dll [2012-01-25] (SEIKO EPSON Corporation -> SEIKO EPSON CORPORATION)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_221\bin\jp2ssv.dll [2019-09-15] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: E-Web Print -> {201CF130-E29C-4E5C-A73F-CD197DEFA6AE} -> C:\Program Files (x86)\Epson Software\E-Web Print\ewps_tb.dll [2014-11-27] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26] (Microsoft Corporation -> Microsoft Corporation)
Toolbar: HKLM - Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files (x86)\Epson Software\Easy Photo Print\EPTBL.dll [2012-01-25] (SEIKO EPSON Corporation -> SEIKO EPSON CORPORATION)
Toolbar: HKLM-x32 - E-Web Print - {201CF130-E29C-4E5C-A73F-CD197DEFA6AE} - C:\Program Files (x86)\Epson Software\E-Web Print\ewps_tb.dll [2014-11-27] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)

FireFox:
========
FF DefaultProfile: bij10560.default-1472267121028-1517939563534
FF ProfilePath: C:\Users\Administrador\AppData\Roaming\Mozilla\Firefox\Profiles\bij10560.default-1472267121028-1517939563534 [2019-09-15]
FF DownloadDir: D:\Users\Administrador\Desktop\Descargas Firefox
FF Homepage: Mozilla\Firefox\Profiles\bij10560.default-1472267121028-1517939563534 -> hxxps://www.youtube.com/
FF HKLM-x32\...\Firefox\Extensions: [[email protected]] - C:\Program Files (x86)\Epson Software\E-Web Print\Firefox Add-on => not found
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_32_0_0_255.dll [2019-09-10] (Adobe Inc. -> )
FF Plugin: @java.com/DTPlugin,version=11.221.2 -> C:\Program Files\Java\jre1.8.0_221\bin\dtplugin\npDeployJava1.dll [2019-09-15] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.221.2 -> C:\Program Files\Java\jre1.8.0_221\bin\plugin2\npjp2.dll [2019-09-15] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE -> C:\Windows\system32\Wat\npWatWeb.dll [2015-08-29] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation ->  Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_255.dll [2019-09-10] (Adobe Inc. -> )
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\SysWOW64\Adobe\Director\np32dsw_1167637.dll [2012-08-08] (Adobe Systems, Inc.) [File not signed]
FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll [No File]
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [1999-12-31] (Intel® Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [1999-12-31] (Intel® Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> C:\Windows\system32\Wat\npWatWeb.dll [2015-08-29] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation ->  Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.34.11\npGoogleUpdate3.dll [2019-09-15] (Google Inc -> Google LLC)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.34.11\npGoogleUpdate3.dll [2019-09-15] (Google Inc -> Google LLC)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2019-07-31] (Adobe Inc. -> Adobe Systems Inc.)

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [287112 2016-09-16] (Advanced Micro Devices, Inc. -> AMD)
R2 EpsonScanSvc; C:\Windows\system32\EscSvc64.exe [135824 2011-12-12] (SEIKO EPSON Corporation -> Seiko Epson Corporation)
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [747520 2013-08-27] (Intel(R) Corporation) [File not signed]
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [828376 2013-08-27] (Intel® Trusted Connect Service -> Intel(R) Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 1999-12-31] (Intel Corporation - Intel® Management Engine Firmware -> Intel Corporation)
S2 KMService; C:\Windows\SysWOW64\srvany.exe [8192 2011-04-05] () [File not signed]
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6744288 2019-06-26] (Malwarebytes Corporation -> Malwarebytes)
R2 MDM; C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe [335872 2006-10-26] (Microsoft Corporation) [File not signed]
R2 MsMpSvc; C:\Program Files\Microsoft Security Client\MsMpEng.exe [119864 2016-11-14] (Microsoft Corporation -> Microsoft Corporation)
R3 NisSrv; C:\Program Files\Microsoft Security Client\NisSrv.exe [361816 2016-11-14] (Microsoft Corporation -> Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Windows -> Microsoft Corporation)
S3 gusvc; "C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe" [X]

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 amdkmdag; C:\Windows\System32\DRIVERS\atikmdag.sys [26550784 2016-09-16] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc.)
R3 amdkmdap; C:\Windows\System32\DRIVERS\atikmpag.sys [518536 2016-09-16] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
R3 AtiHDAudioService; C:\Windows\System32\drivers\AtihdW76.sys [96256 2016-03-30] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices)
S3 AX88178; C:\Windows\System32\DRIVERS\ax88178.sys [56320 2009-10-02] (Microsoft Windows Hardware Compatibility Publisher -> ASIX Electronics Corp.)
S3 AX88772; C:\Windows\System32\DRIVERS\ax88772.sys [79360 2011-06-01] (Microsoft Windows Hardware Compatibility Publisher -> ASIX Electronics Corp.)
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283200 2013-10-17] (DT Soft Ltd -> DT Soft Ltd)
R1 ESProtectionDriver; C:\Windows\system32\drivers\mbae64.sys [153312 2019-08-27] (Malwarebytes Corporation -> Malwarebytes)
R0 iaStorF; C:\Windows\System32\DRIVERS\iaStorF.sys [28656 2013-03-18] (Intel Corporation - Intel® Rapid Storage Technology -> Intel Corporation)
R2 MBAMChameleon; C:\Windows\System32\Drivers\MbamChameleon.sys [199768 2019-09-14] (Malwarebytes Corporation -> Malwarebytes)
R3 MBAMFarflt; C:\Windows\System32\DRIVERS\farflt.sys [225944 2019-09-15] (Malwarebytes Inc -> Malwarebytes)
R3 MBAMProtection; C:\Windows\system32\DRIVERS\mbam.sys [73584 2019-09-15] (Malwarebytes Corporation -> Malwarebytes)
R3 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [275232 2019-09-15] (Malwarebytes Corporation -> Malwarebytes)
R3 MBAMWebProtection; C:\Windows\System32\DRIVERS\mwac.sys [106344 2019-09-15] (Malwarebytes Corporation -> Malwarebytes)
R3 MEIx64; C:\Windows\System32\DRIVERS\TeeDriverx64.sys [100312 1999-12-31] (Intel Corporation - Intel® Management Engine Firmware -> Intel Corporation)
R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [295000 2016-08-25] (Microsoft Corporation -> Microsoft Corporation)
R3 NisDrv; C:\Windows\System32\DRIVERS\NisDrvWFP.sys [135928 2016-08-25] (Microsoft Corporation -> Microsoft Corporation)
R3 REDRAGON_MOUSE; C:\Windows\System32\drivers\REDRAGON_MOUSE.sys [26112 2017-09-21] (Microsoft Windows Hardware Compatibility Publisher ->  )
R3 VKbms; C:\Windows\System32\DRIVERS\VKbms.sys [13824 2014-07-12] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider)
S3 XSplit_Dummy; C:\Windows\System32\drivers\xspltspk.sys [26200 2015-05-25] (Splitmedialabs Limited -> SplitmediaLabs Limited)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-09-15 16:34 - 2019-09-15 16:34 - 000073584 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbam.sys
2019-09-15 16:34 - 2019-09-15 16:34 - 000002297 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2019-09-15 16:33 - 2019-09-15 16:34 - 000002256 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2019-09-15 16:33 - 2019-09-15 16:33 - 000225944 _____ (Malwarebytes) C:\Windows\system32\Drivers\farflt.sys
2019-09-15 16:33 - 2019-09-15 16:33 - 000106344 _____ (Malwarebytes) C:\Windows\system32\Drivers\mwac.sys
2019-09-15 16:33 - 2019-09-15 16:33 - 000003534 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2019-09-15 16:33 - 2019-09-15 16:33 - 000003406 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2019-09-15 16:30 - 2019-09-15 16:30 - 000275232 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamswissarmy.sys
2019-09-15 16:11 - 2019-09-15 16:33 - 000000000 ____D C:\Program Files (x86)\Google
2019-09-15 02:52 - 2019-09-15 02:52 - 000000000 ____D C:\Users\Administrador\AppData\Roaming\Sun
2019-09-15 02:52 - 2019-09-15 02:51 - 000110064 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge-64.dll
2019-09-15 02:50 - 2019-09-15 02:50 - 000000000 ____D C:\Program Files\Java
2019-09-15 02:19 - 2019-09-15 02:19 - 000001041 _____ C:\Users\Public\Desktop\Revo Uninstaller.lnk
2019-09-15 02:19 - 2019-09-15 02:19 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller
2019-09-15 02:19 - 2019-09-15 02:19 - 000000000 ____D C:\Program Files\VS Revo Group
2019-09-14 18:57 - 2019-09-14 18:57 - 000199768 _____ (Malwarebytes) C:\Windows\system32\Drivers\MbamChameleon.sys
2019-09-14 06:41 - 2019-09-15 16:50 - 000000000 ____D C:\FRST
2019-09-13 04:58 - 2019-09-13 04:58 - 000001874 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2019-09-13 04:58 - 2019-09-13 04:58 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
2019-09-13 04:58 - 2019-08-27 05:50 - 000153312 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbae64.sys
2019-09-13 04:30 - 2019-09-13 04:31 - 000000000 ____D C:\AdwCleaner
2019-09-13 03:50 - 2019-09-13 04:52 - 000000000 ____D C:\Users\Administrador\AppData\Roaming\ZHP
2019-09-12 17:11 - 2019-09-12 17:11 - 000342393 __RSH C:\MOUNC
2019-09-12 15:31 - 2019-09-12 17:08 - 000000000 ___HD C:\$WINDOWS.~BT
2019-09-12 15:22 - 2019-09-12 15:22 - 000000000 ___HD C:\$Windows.~WS
2019-09-12 15:15 - 2019-09-12 17:11 - 000000020 __RSH C:\win7.ld
2019-09-11 05:47 - 2019-08-15 22:02 - 000123904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\poqexec.exe
2019-09-11 05:47 - 2019-08-15 21:56 - 000142336 _____ (Microsoft Corporation) C:\Windows\system32\poqexec.exe
2019-09-11 05:45 - 2019-08-28 23:56 - 003966904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2019-09-11 05:45 - 2019-08-28 23:55 - 004061112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2019-09-11 05:45 - 2019-08-28 23:53 - 005553104 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2019-09-11 05:45 - 2019-08-28 23:50 - 001078784 _____ (Microsoft Corporation) C:\Windows\system32\msctf.dll
2019-09-11 05:45 - 2019-08-27 02:07 - 025752064 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2019-09-11 05:45 - 2019-08-27 00:29 - 002909184 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2019-09-11 05:45 - 2019-08-27 00:27 - 000579072 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2019-09-11 05:45 - 2019-08-27 00:21 - 020290560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2019-09-11 05:45 - 2019-08-27 00:17 - 005500928 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2019-09-11 05:45 - 2019-08-27 00:03 - 000496128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2019-09-11 05:45 - 2019-08-26 23:59 - 002301952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2019-09-11 05:45 - 2019-08-26 23:36 - 015389184 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2019-09-11 05:45 - 2019-08-26 23:34 - 000350208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\HdAudio.sys
2019-09-11 05:45 - 2019-08-26 23:30 - 004112384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2019-09-11 05:45 - 2019-08-26 23:23 - 013791744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2019-09-11 05:45 - 2019-08-26 23:15 - 001568256 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2019-09-11 05:45 - 2019-08-26 23:06 - 001331712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2019-09-11 05:45 - 2019-08-20 00:59 - 000022016 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ws2ifsl.sys
2019-09-11 05:45 - 2019-08-20 00:51 - 003232256 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2019-09-11 05:45 - 2019-08-15 04:59 - 000878080 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2019-09-11 05:45 - 2019-08-15 04:59 - 000583680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll
2019-09-11 05:45 - 2019-08-14 14:54 - 000271360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tsmf.dll
2019-09-11 05:45 - 2019-08-14 14:53 - 000253440 _____ (Microsoft) C:\Windows\SysWOW64\DShowRdpFilter.dll
2019-09-11 05:45 - 2019-08-14 02:20 - 000300032 _____ (Microsoft Corporation) C:\Windows\system32\tsmf.dll
2019-09-11 05:45 - 2019-08-14 02:20 - 000282112 _____ (Microsoft) C:\Windows\system32\DShowRdpFilter.dll
2019-09-11 05:45 - 2019-08-14 01:59 - 000053760 _____ (Microsoft Corporation) C:\Windows\system32\LSCSHostPolicy.dll
2019-09-11 05:45 - 2019-08-12 23:50 - 004927488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2019-09-11 05:45 - 2019-08-12 21:56 - 005785600 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2019-09-11 05:45 - 2019-08-12 21:56 - 001650176 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2019-09-11 05:44 - 2019-08-28 23:55 - 000627424 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2019-09-11 05:44 - 2019-08-28 23:54 - 001319496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2019-09-11 05:44 - 2019-08-28 23:53 - 000709856 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2019-09-11 05:44 - 2019-08-28 23:53 - 000264120 _____ (Microsoft Corporation) C:\Windows\system32\hal.dll
2019-09-11 05:44 - 2019-08-28 23:53 - 000155360 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2019-09-11 05:44 - 2019-08-28 23:53 - 000096992 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2019-09-11 05:44 - 2019-08-28 23:52 - 000836608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msctf.dll
2019-09-11 05:44 - 2019-08-28 23:52 - 000666112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2019-09-11 05:44 - 2019-08-28 23:52 - 000644096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll
2019-09-11 05:44 - 2019-08-28 23:52 - 000555520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2019-09-11 05:44 - 2019-08-28 23:52 - 000342528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certcli.dll
2019-09-11 05:44 - 2019-08-28 23:52 - 000096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2019-09-11 05:44 - 2019-08-28 23:51 - 001670784 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2019-09-11 05:44 - 2019-08-28 23:50 - 001472512 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2019-09-11 05:44 - 2019-08-28 23:50 - 001211392 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2019-09-11 05:44 - 2019-08-28 23:50 - 001162752 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2019-09-11 05:44 - 2019-08-28 23:50 - 000880640 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2019-09-11 05:44 - 2019-08-28 23:50 - 000733184 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2019-09-11 05:44 - 2019-08-28 23:50 - 000463872 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll
2019-09-11 05:44 - 2019-08-28 23:50 - 000408576 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2019-09-11 05:44 - 2019-08-28 23:50 - 000361984 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll
2019-09-11 05:44 - 2019-08-28 23:50 - 000345600 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2019-09-11 05:44 - 2019-08-28 23:50 - 000317440 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2019-09-11 05:44 - 2019-08-28 23:50 - 000312320 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2019-09-11 05:44 - 2019-08-28 23:50 - 000243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2019-09-11 05:44 - 2019-08-28 23:50 - 000236032 _____ (Microsoft Corporation) C:\Windows\system32\srvsvc.dll
2019-09-11 05:44 - 2019-08-28 23:50 - 000215552 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2019-09-11 05:44 - 2019-08-28 23:19 - 000129536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\videoprt.sys
2019-09-11 05:44 - 2019-08-28 23:15 - 000464384 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv.sys
2019-09-11 05:44 - 2019-08-28 23:15 - 000406016 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys
2019-09-11 05:44 - 2019-08-28 23:15 - 000291328 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2019-09-11 05:44 - 2019-08-28 23:15 - 000169984 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys
2019-09-11 05:44 - 2019-08-28 23:15 - 000161280 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2019-09-11 05:44 - 2019-08-28 23:14 - 000112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2019-09-11 05:44 - 2019-08-27 17:50 - 000390536 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2019-09-11 05:44 - 2019-08-27 16:59 - 000341896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2019-09-11 05:44 - 2019-08-27 00:27 - 000417280 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2019-09-11 05:44 - 2019-08-27 00:27 - 000066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2019-09-11 05:44 - 2019-08-27 00:27 - 000048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2019-09-11 05:44 - 2019-08-27 00:26 - 000088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2019-09-11 05:44 - 2019-08-27 00:20 - 000054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2019-09-11 05:44 - 2019-08-27 00:17 - 000615936 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2019-09-11 05:44 - 2019-08-27 00:16 - 000144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2019-09-11 05:44 - 2019-08-27 00:15 - 000814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2019-09-11 05:44 - 2019-08-27 00:15 - 000790528 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2019-09-11 05:44 - 2019-08-27 00:08 - 000969216 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2019-09-11 05:44 - 2019-08-27 00:05 - 000489984 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2019-09-11 05:44 - 2019-08-27 00:02 - 000341504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2019-09-11 05:44 - 2019-08-26 23:59 - 000077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2019-09-11 05:44 - 2019-08-26 23:58 - 000107520 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2019-09-11 05:44 - 2019-08-26 23:58 - 000087552 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2019-09-11 05:44 - 2019-08-26 23:56 - 000047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2019-09-11 05:44 - 2019-08-26 23:55 - 000199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2019-09-11 05:44 - 2019-08-26 23:54 - 000476160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2019-09-11 05:44 - 2019-08-26 23:54 - 000092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2019-09-11 05:44 - 2019-08-26 23:53 - 000663040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2019-09-11 05:44 - 2019-08-26 23:53 - 000620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2019-09-11 05:44 - 2019-08-26 23:53 - 000115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2019-09-11 05:44 - 2019-08-26 23:52 - 000315392 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2019-09-11 05:44 - 2019-08-26 23:50 - 000152064 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2019-09-11 05:44 - 2019-08-26 23:45 - 000416256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2019-09-11 05:44 - 2019-08-26 23:42 - 000262144 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2019-09-11 05:44 - 2019-08-26 23:40 - 000728064 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2019-09-11 05:44 - 2019-08-26 23:39 - 000809472 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2019-09-11 05:44 - 2019-08-26 23:37 - 002132480 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2019-09-11 05:44 - 2019-08-26 23:37 - 001359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2019-09-11 05:44 - 2019-08-26 23:37 - 000168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2019-09-11 05:44 - 2019-08-26 23:36 - 000076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2019-09-11 05:44 - 2019-08-26 23:35 - 000279040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2019-09-11 05:44 - 2019-08-26 23:34 - 000130048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2019-09-11 05:44 - 2019-08-26 23:28 - 000230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2019-09-11 05:44 - 2019-08-26 23:27 - 002058752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2019-09-11 05:44 - 2019-08-26 23:27 - 000696320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2019-09-11 05:44 - 2019-08-26 23:26 - 004859392 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2019-09-11 05:44 - 2019-08-26 23:26 - 001155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2019-09-11 05:44 - 2019-08-26 23:09 - 004387840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2019-09-11 05:44 - 2019-08-26 23:04 - 000800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2019-09-11 05:44 - 2019-08-26 23:04 - 000710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2019-09-11 05:44 - 2019-08-22 19:07 - 000628480 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe
2019-09-11 05:44 - 2019-08-20 22:59 - 000311008 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
2019-09-11 05:44 - 2019-08-20 01:24 - 000385248 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2019-09-11 05:44 - 2019-08-19 23:47 - 001251840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll
2019-09-11 05:44 - 2019-08-14 02:22 - 000374496 _____ (Microsoft Corporation) C:\Windows\system32\clfs.sys
2019-09-11 05:44 - 2019-08-14 02:20 - 000133120 _____ (Microsoft Corporation) C:\Windows\system32\tssrvlic.dll
2019-09-11 05:44 - 2019-08-14 01:52 - 000455680 _____ (Microsoft Corporation) C:\Windows\system32\winlogon.exe
2019-09-11 05:44 - 2019-08-13 19:20 - 000162016 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe
2019-09-11 05:44 - 2019-08-13 19:19 - 000988384 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2019-09-11 05:44 - 2019-08-13 19:19 - 000267488 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys
2019-09-11 05:44 - 2019-08-13 19:16 - 001009664 _____ (Microsoft Corporation) C:\Windows\system32\user32.dll
2019-09-11 05:44 - 2019-08-13 19:16 - 000484864 _____ (Microsoft Corporation) C:\Windows\system32\StructuredQuery.dll
2019-09-11 05:44 - 2019-08-13 19:15 - 000405504 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2019-09-11 05:44 - 2019-08-13 19:15 - 000144384 _____ (Microsoft Corporation) C:\Windows\system32\cdd.dll
2019-09-11 05:44 - 2019-08-13 19:13 - 000833536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user32.dll
2019-09-11 05:44 - 2019-08-13 19:13 - 000363520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\StructuredQuery.dll
2019-09-11 05:44 - 2019-08-13 19:13 - 000313344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2019-09-11 05:44 - 2019-08-12 23:58 - 001312256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msjet40.dll
2019-09-11 05:44 - 2019-08-12 23:58 - 000475648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxbde40.dll
2019-09-11 05:44 - 2019-08-12 23:58 - 000353280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrd3x40.dll
2019-09-11 05:44 - 2019-08-12 23:58 - 000313344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrd2x40.dll
2019-09-11 05:44 - 2019-08-12 21:56 - 000802304 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2019-09-11 05:43 - 2019-08-28 23:52 - 001114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2019-09-11 05:43 - 2019-08-28 23:52 - 000690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
2019-09-11 05:43 - 2019-08-28 23:52 - 000275968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2019-09-11 05:43 - 2019-08-28 23:52 - 000261632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2019-09-11 05:43 - 2019-08-28 23:52 - 000254464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2019-09-11 05:43 - 2019-08-28 23:52 - 000223232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2019-09-11 05:43 - 2019-08-28 23:52 - 000172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2019-09-11 05:43 - 2019-08-28 23:52 - 000146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll
2019-09-11 05:43 - 2019-08-28 23:52 - 000141312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpchttp.dll
2019-09-11 05:43 - 2019-08-28 23:52 - 000082944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bcrypt.dll
2019-09-11 05:43 - 2019-08-28 23:52 - 000070144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2019-09-11 05:43 - 2019-08-28 23:52 - 000060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll
2019-09-11 05:43 - 2019-08-28 23:52 - 000050688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\appidapi.dll
2019-09-11 05:43 - 2019-08-28 23:52 - 000043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll
2019-09-11 05:43 - 2019-08-28 23:52 - 000022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2019-09-11 05:43 - 2019-08-28 23:52 - 000017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2019-09-11 05:43 - 2019-08-28 23:52 - 000007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll
2019-09-11 05:43 - 2019-08-28 23:52 - 000005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2019-09-11 05:43 - 2019-08-28 23:52 - 000005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2019-09-11 05:43 - 2019-08-28 23:52 - 000004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2019-09-11 05:43 - 2019-08-28 23:52 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2019-09-11 05:43 - 2019-08-28 23:52 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2019-09-11 05:43 - 2019-08-28 23:52 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2019-09-11 05:43 - 2019-08-28 23:52 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2019-09-11 05:43 - 2019-08-28 23:52 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2019-09-11 05:43 - 2019-08-28 23:52 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2019-09-11 05:43 - 2019-08-28 23:52 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2019-09-11 05:43 - 2019-08-28 23:52 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2019-09-11 05:43 - 2019-08-28 23:52 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2019-09-11 05:43 - 2019-08-28 23:52 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2019-09-11 05:43 - 2019-08-28 23:52 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2019-09-11 05:43 - 2019-08-28 23:52 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2019-09-11 05:43 - 2019-08-28 23:52 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2019-09-11 05:43 - 2019-08-28 23:52 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2019-09-11 05:43 - 2019-08-28 23:52 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2019-09-11 05:43 - 2019-08-28 23:52 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2019-09-11 05:43 - 2019-08-28 23:52 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2019-09-11 05:43 - 2019-08-28 23:52 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2019-09-11 05:43 - 2019-08-28 23:52 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2019-09-11 05:43 - 2019-08-28 23:52 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2019-09-11 05:43 - 2019-08-28 23:52 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2019-09-11 05:43 - 2019-08-28 23:52 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2019-09-11 05:43 - 2019-08-28 23:50 - 000690688 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2019-09-11 05:43 - 2019-08-28 23:50 - 000503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2019-09-11 05:43 - 2019-08-28 23:50 - 000210432 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2019-09-11 05:43 - 2019-08-28 23:50 - 000190464 _____ (Microsoft Corporation) C:\Windows\system32\rpchttp.dll
2019-09-11 05:43 - 2019-08-28 23:50 - 000146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2019-09-11 05:43 - 2019-08-28 23:50 - 000135680 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2019-09-11 05:43 - 2019-08-28 23:50 - 000123904 _____ (Microsoft Corporation) C:\Windows\system32\bcrypt.dll
2019-09-11 05:43 - 2019-08-28 23:50 - 000094208 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2019-09-11 05:43 - 2019-08-28 23:50 - 000063488 _____ (Microsoft Corporation) C:\Windows\system32\setbcdlocale.dll
2019-09-11 05:43 - 2019-08-28 23:50 - 000060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2019-09-11 05:43 - 2019-08-28 23:50 - 000059904 _____ (Microsoft Corporation) C:\Windows\system32\appidapi.dll
2019-09-11 05:43 - 2019-08-28 23:50 - 000050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2019-09-11 05:43 - 2019-08-28 23:50 - 000044032 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2019-09-11 05:43 - 2019-08-28 23:50 - 000043520 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll
2019-09-11 05:43 - 2019-08-28 23:50 - 000034816 _____ (Microsoft Corporation) C:\Windows\system32\appidsvc.dll
2019-09-11 05:43 - 2019-08-28 23:50 - 000028672 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2019-09-11 05:43 - 2019-08-28 23:50 - 000028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2019-09-11 05:43 - 2019-08-28 23:50 - 000022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2019-09-11 05:43 - 2019-08-28 23:50 - 000016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll
2019-09-11 05:43 - 2019-08-28 23:50 - 000013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll
2019-09-11 05:43 - 2019-08-28 23:50 - 000013312 _____ (Microsoft Corporation) C:\Windows\system32\sscore.dll
2019-09-11 05:43 - 2019-08-28 23:50 - 000007168 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2019-09-11 05:43 - 2019-08-28 23:50 - 000006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2019-09-11 05:43 - 2019-08-28 23:50 - 000005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2019-09-11 05:43 - 2019-08-28 23:50 - 000004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2019-09-11 05:43 - 2019-08-28 23:50 - 000004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2019-09-11 05:43 - 2019-08-28 23:50 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2019-09-11 05:43 - 2019-08-28 23:50 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2019-09-11 05:43 - 2019-08-28 23:50 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2019-09-11 05:43 - 2019-08-28 23:50 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2019-09-11 05:43 - 2019-08-28 23:50 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2019-09-11 05:43 - 2019-08-28 23:50 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2019-09-11 05:43 - 2019-08-28 23:50 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2019-09-11 05:43 - 2019-08-28 23:50 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2019-09-11 05:43 - 2019-08-28 23:50 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2019-09-11 05:43 - 2019-08-28 23:50 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2019-09-11 05:43 - 2019-08-28 23:50 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2019-09-11 05:43 - 2019-08-28 23:50 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2019-09-11 05:43 - 2019-08-28 23:50 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2019-09-11 05:43 - 2019-08-28 23:50 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2019-09-11 05:43 - 2019-08-28 23:50 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2019-09-11 05:43 - 2019-08-28 23:50 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2019-09-11 05:43 - 2019-08-28 23:50 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2019-09-11 05:43 - 2019-08-28 23:50 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2019-09-11 05:43 - 2019-08-28 23:50 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2019-09-11 05:43 - 2019-08-28 23:50 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2019-09-11 05:43 - 2019-08-28 23:50 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2019-09-11 05:43 - 2019-08-28 23:50 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2019-09-11 05:43 - 2019-08-28 23:50 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2019-09-11 05:43 - 2019-08-28 23:50 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2019-09-11 05:43 - 2019-08-28 23:27 - 000050688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe
2019-09-11 05:43 - 2019-08-28 23:27 - 000009728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sscore.dll
2019-09-11 05:43 - 2019-08-28 23:22 - 000148480 _____ (Microsoft Corporation) C:\Windows\system32\appidpolicyconverter.exe
2019-09-11 05:43 - 2019-08-28 23:22 - 000064512 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
2019-09-11 05:43 - 2019-08-28 23:22 - 000062464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\appid.sys
2019-09-11 05:43 - 2019-08-28 23:22 - 000025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2019-09-11 05:43 - 2019-08-28 23:22 - 000017920 _____ (Microsoft Corporation) C:\Windows\system32\appidcertstorecheck.exe
2019-09-11 05:43 - 2019-08-28 23:22 - 000014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2019-09-11 05:43 - 2019-08-28 23:22 - 000007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2019-09-11 05:43 - 2019-08-28 23:22 - 000002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2019-09-11 05:43 - 2019-08-28 23:21 - 000036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptbase.dll
2019-09-11 05:43 - 2019-08-28 23:21 - 000006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2019-09-11 05:43 - 2019-08-28 23:21 - 000004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2019-09-11 05:43 - 2019-08-28 23:21 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2019-09-11 05:43 - 2019-08-28 23:21 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2019-09-11 05:43 - 2019-08-28 23:19 - 000338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2019-09-11 05:43 - 2019-08-28 23:18 - 000296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2019-09-11 05:43 - 2019-08-28 23:15 - 000129536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2019-09-11 05:43 - 2019-08-28 23:14 - 000064512 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\amdk8.sys
2019-09-11 05:43 - 2019-08-28 23:14 - 000062464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\intelppm.sys
2019-09-11 05:43 - 2019-08-28 23:14 - 000060928 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\processr.sys
2019-09-11 05:43 - 2019-08-28 23:14 - 000060928 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\amdppm.sys
2019-09-11 05:43 - 2019-08-28 23:14 - 000044544 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\npfs.sys
2019-09-11 05:43 - 2019-08-28 23:14 - 000030720 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2019-09-11 05:43 - 2019-08-27 00:41 - 002724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2019-09-11 05:43 - 2019-08-27 00:41 - 000004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2019-09-11 05:43 - 2019-08-27 00:19 - 000034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2019-09-11 05:43 - 2019-08-27 00:16 - 000116224 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2019-09-11 05:43 - 2019-08-27 00:15 - 002724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2019-09-11 05:43 - 2019-08-27 00:03 - 000062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2019-09-11 05:43 - 2019-08-27 00:02 - 000047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2019-09-11 05:43 - 2019-08-27 00:01 - 000064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2019-09-11 05:43 - 2019-08-26 23:56 - 000030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2019-09-11 05:43 - 2019-08-26 23:40 - 000073216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2019-09-11 05:43 - 2019-08-26 23:40 - 000060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2019-09-11 05:43 - 2019-08-26 23:39 - 000091136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2019-09-11 05:43 - 2019-08-20 22:56 - 000071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll
2019-09-11 05:43 - 2019-08-20 22:56 - 000025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\lpk.dll
2019-09-11 05:43 - 2019-08-20 22:56 - 000010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dciman32.dll
2019-09-11 05:43 - 2019-08-20 20:19 - 000034304 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2019-09-11 05:43 - 2019-08-20 01:21 - 000101376 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2019-09-11 05:43 - 2019-08-20 01:21 - 000046080 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2019-09-11 05:43 - 2019-08-20 01:21 - 000041472 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll
2019-09-11 05:43 - 2019-08-20 01:21 - 000014336 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll
2019-09-11 05:43 - 2019-08-13 19:15 - 000732160 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2019-09-11 05:43 - 2019-08-12 21:56 - 002863104 _____ (Microsoft Corporation) C:\Windows\system32\aitstatic.exe
2019-09-11 05:43 - 2019-08-12 21:56 - 001712640 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2019-09-11 05:43 - 2019-08-12 21:56 - 000634368 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2019-09-11 05:43 - 2019-08-12 21:56 - 000501760 _____ (Microsoft Corporation) C:\Windows\system32\centel.dll
2019-09-11 05:43 - 2019-08-12 21:56 - 000456192 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2019-09-11 05:43 - 2019-08-12 21:56 - 000315904 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
2019-09-11 05:43 - 2019-08-12 21:56 - 000257024 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll
2019-09-11 03:02 - 2019-09-12 15:31 - 000000000 ____D C:\ESD
2019-09-03 12:36 - 2019-09-15 15:22 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox
2019-09-03 08:40 - 2019-09-13 15:33 - 000000000 ____D C:\Users\Administrador\AppData\Roaming\Blitz-helpers
2019-09-03 08:33 - 2019-09-15 12:52 - 000000000 ____D C:\Users\Administrador\AppData\Roaming\Blitz
2019-09-03 08:33 - 2019-09-12 20:54 - 000000000 ____D C:\Users\Administrador\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Blitz Inc
2019-09-01 17:46 - 2019-09-01 17:46 - 000002802 _____ C:\Windows\System32\Tasks\CCleanerSkipUAC

==================== One month (modified) ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-09-15 16:41 - 2009-07-14 01:45 - 000023632 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2019-09-15 16:41 - 2009-07-14 01:45 - 000023632 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2019-09-15 16:31 - 2016-11-15 23:21 - 000000000 ____D C:\Users\Administrador\AppData\LocalLow\Mozilla
2019-09-15 16:29 - 2009-07-14 02:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2019-09-15 16:27 - 2016-08-05 17:46 - 000065536 _____ C:\Windows\system32\spu_storage.bin
2019-09-15 16:25 - 2011-04-05 19:07 - 000000000 ____D C:\Users\Administrador\AppData\Local\Google
2019-09-15 04:45 - 2016-06-01 21:19 - 000000263 _____ C:\DelFix.txt
2019-09-15 04:05 - 2009-07-14 00:20 - 000000000 ____D C:\Windows\rescache
2019-09-15 02:52 - 2014-10-06 18:21 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2019-09-15 02:50 - 2013-11-18 08:05 - 000000000 ____D C:\ProgramData\Oracle
2019-09-15 02:48 - 2010-03-22 15:22 - 000000000 ____D C:\Users\Administrador\AppData\LocalLow\Sun
2019-09-14 21:54 - 2010-03-12 14:17 - 000000000 ____D C:\Windows\SysWOW64\Macromed
2019-09-13 04:58 - 2016-06-02 16:25 - 000000000 ____D C:\ProgramData\Malwarebytes
2019-09-13 04:33 - 2015-01-07 21:44 - 000000000 ____D C:\ProgramData\EPSON
2019-09-13 04:11 - 2009-07-14 00:20 - 000000000 ____D C:\Windows\inf
2019-09-13 03:58 - 2015-06-20 02:57 - 000000000 ____D C:\Windows\Minidump
2019-09-13 02:51 - 2015-11-11 04:40 - 000001902 _____ C:\Users\Administrador\Desktop\JRT.txt
2019-09-12 20:54 - 2017-03-18 04:59 - 000000000 ____D C:\ProgramData\Administrador
2019-09-12 16:03 - 2015-08-31 03:50 - 000003732 _____ C:\Windows\diagerr.xml
2019-09-12 16:03 - 2015-08-31 03:50 - 000001890 _____ C:\Windows\diagwrn.xml
2019-09-12 16:03 - 2010-03-12 08:49 - 000008192 __RSH C:\BOOTSECT.BAK
2019-09-12 16:01 - 2015-08-31 03:55 - 000000001 ___SH C:\BOOTNXT
2019-09-12 15:32 - 2010-03-12 08:49 - 000000000 ____D C:\Windows\Panther
2019-09-12 14:39 - 2016-06-01 21:14 - 000425648 _____ C:\Windows\system32\FNTCACHE.DAT
2019-09-12 06:11 - 2015-08-29 17:20 - 000000000 ___SD C:\Windows\system32\CompatTel
2019-09-11 04:16 - 2009-07-14 00:20 - 000000000 ____D C:\Windows\system32\oobe
2019-09-10 18:04 - 2018-03-14 03:04 - 000004504 _____ C:\Windows\System32\Tasks\Adobe Flash Player NPAPI Notifier
2019-09-10 18:04 - 2013-10-15 01:10 - 000004320 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2019-09-10 18:04 - 2012-10-25 16:57 - 000842296 _____ (Adobe) C:\Windows\SysWOW64\FlashPlayerApp.exe
2019-09-10 18:04 - 2012-10-25 16:57 - 000175160 _____ (Adobe) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2019-09-10 18:04 - 2012-10-25 16:57 - 000000000 ____D C:\Windows\system32\Macromed
2019-09-10 14:21 - 2016-06-15 06:58 - 000111296 _____ C:\Windows\SysWOW64\GDIPFONTCACHEV1.DAT
2019-09-04 10:48 - 2016-01-06 11:25 - 000111296 _____ C:\Windows\system32\GDIPFONTCACHEV1.DAT
2019-09-03 02:27 - 2016-07-24 18:07 - 000000000 ____D C:\Users\Administrador\AppData\Roaming\uTorrent
2019-09-03 02:27 - 2013-10-17 21:24 - 000000000 ____D C:\Users\Administrador\AppData\Roaming\DAEMON Tools Lite
2019-09-03 02:27 - 2010-03-22 15:13 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Compumap
2019-09-03 02:16 - 2016-06-02 18:52 - 000000829 _____ C:\Users\Public\Desktop\CCleaner.lnk
2019-09-01 17:46 - 2018-01-02 23:56 - 000003870 _____ C:\Windows\System32\Tasks\CCleaner Update
2019-09-01 17:46 - 2016-06-02 18:52 - 000000000 ____D C:\Program Files\CCleaner
2019-08-23 17:24 - 2016-10-13 15:30 - 000002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2019-08-21 19:04 - 2009-07-14 00:20 - 000000000 ____D C:\Windows\system32\NDF

==================== Files in the root of some directories ================

2011-04-05 15:49 - 2011-04-05 15:49 - 000000000 _____ () C:\Users\Administrador\AppData\Roaming\chrtmp
2014-02-06 10:16 - 2019-06-01 05:40 - 000000156 _____ () C:\Users\Administrador\AppData\Roaming\default.rss
2013-10-24 21:04 - 2013-10-24 21:04 - 002423608 _____ (Piriform Ltd) C:\Users\Administrador\AppData\Local\CCleaner.exe
2013-10-24 21:04 - 2013-10-24 21:05 - 000000990 _____ () C:\Users\Administrador\AppData\Local\ccleaner.ini
2013-10-24 21:04 - 2013-10-24 21:04 - 000033280 _____ () C:\Users\Administrador\AppData\Local\lang-1034.dll

==================== SigCheck ===============================

(There is no automatic fix for files that do not pass verification.)


LastRegBack: 2019-09-11 06:34
==================== End of FRST.txt ============================
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 14-09-2019
Ran by Administrador (15-09-2019 16:54:22)
Running from D:\Users\Administrador\Desktop
Windows 7 Ultimate Service Pack 1 (X64) (2010-03-12 16:00:21)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrador (S-1-5-21-786306497-2436674552-526500336-500 - Administrator - Enabled) => %SystemDrive%\Users\Administrador
HomeGroupUser$ (S-1-5-21-786306497-2436674552-526500336-1007 - Limited - Enabled)
Invitado (S-1-5-21-786306497-2436674552-526500336-501 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Microsoft Security Essentials (Enabled - Up to date) {B7ECF8CD-0188-6703-DBA4-AA65C6ACFB0A}
AS: Microsoft Security Essentials (Enabled - Up to date) {0C8D1929-27B2-688D-E114-9117BD2BB1B7}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adobe Acrobat Reader DC - Español (HKLM-x32\...\{AC76BA86-7AD7-1034-7B44-AC0F074E4100}) (Version: 19.012.20040 - Adobe Systems Incorporated)
Adobe Flash Player 32 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 32.0.0.255 - Adobe)
Adobe Flash Player 32 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 32.0.0.255 - Adobe)
Adobe Shockwave Player 11.6 (HKLM-x32\...\Adobe Shockwave Player) (Version: 11.6.7.637 - Adobe Systems, Inc.)
Advertising Center (HKLM-x32\...\{B2EC4A38-B545-4A00-8214-13FE0E915E6D}) (Version: 0.0.0.2 - Nero AG) Hidden
AMD Install Manager (HKLM\...\AMD Catalyst Install Manager) (Version: 9.0.000.4 - Advanced Micro Devices, Inc.)
ASIO4ALL (HKLM-x32\...\ASIO4ALL) (Version: 2.10 - Michael Tippach)
AX88772A & AX88772 Vista Drivers (HKLM-x32\...\{D4CE807B-E15D-4715-98D4-BA7573222844}) (Version: 1.0.1.0 - ASIX Electronics Corporation) Hidden
AX88772A & AX88772 Vista Drivers (HKLM-x32\...\InstallShield_{D4CE807B-E15D-4715-98D4-BA7573222844}) (Version: 1.0.1.0 - ASIX Electronics Corporation)
Blitz (HKU\S-1-5-21-786306497-2436674552-526500336-500\...\Blitz) (Version: 1.3.0 - Blitz Inc.)
Catalyst Control Center Next Localization BR (HKLM\...\{C80C12DC-3959-4028-1681-F2BF00866439}) (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CHS (HKLM\...\{B0199EE9-B640-3D24-29F8-99B1C425697A}) (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CHT (HKLM\...\{8F5D8F15-4A07-E887-C8FD-498804F2522F}) (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CS (HKLM\...\{55FB36B8-663A-06C2-9A6F-34A0AFFD906C}) (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization DA (HKLM\...\{27D9A3A3-D0D2-2260-A2AA-A7228B6022B6}) (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization DE (HKLM\...\{C59870AD-505D-4C9E-B625-D1DE6B1ABF8D}) (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization EL (HKLM\...\{38072574-E1D1-9B6C-EAB4-27E207E0B54A}) (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization ES (HKLM\...\{C7F2F764-33A8-7ED1-8ED9-BD594C814386}) (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization FI (HKLM\...\{352C8FF2-CB23-F2C3-CC82-B2F20AC15B5C}) (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization FR (HKLM\...\{13556222-6637-F9E8-A6A6-186D6996E5E0}) (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization HU (HKLM\...\{3B8435FC-47AD-7A7E-BCBD-13DF296DB149}) (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization IT (HKLM\...\{1E60CDCF-E4AF-2B49-3473-E9C10C0D6031}) (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization JA (HKLM\...\{2459C0BB-C5C8-2FD0-2437-BD92FB666A15}) (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization KO (HKLM\...\{58011544-00D2-DD75-4E0D-944AD2D3773D}) (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization NL (HKLM\...\{9E93DDED-A342-2621-8B33-A7FDE09E2A15}) (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization NO (HKLM\...\{EBCCB5CD-B2B0-6870-DCC3-A7CCCC1B1B68}) (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization PL (HKLM\...\{D214F8C8-A231-E193-971C-7D185108F908}) (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization RU (HKLM\...\{C078842D-6E39-ACBA-8927-51697B6D89B0}) (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization SV (HKLM\...\{CE1A9479-C86A-81A5-729F-9B65120D15E1}) (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization TH (HKLM\...\{81DFFE49-771C-3262-99DD-35AB35FEF71A}) (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization TR (HKLM\...\{56C43946-966D-1B4B-3910-3B4741F9CAF9}) (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 5.61 - Piriform)
Compresor WinRAR (HKLM\...\WinRAR archiver) (Version:  - )
DAEMON Tools Lite (HKLM-x32\...\DAEMON Tools Lite) (Version: 4.47.1.0333 - Disc Soft Ltd)
DolbyFiles (HKLM-x32\...\{B1ADF008-E898-4FE2-8A1F-690D9A06ACAF}) (Version: 2.0 - Nero AG) Hidden
Epson Customer Participation (HKLM\...\{814FA673-A085-403C-9545-747FC1495069}) (Version: 1.4.0.0 - SEIKO EPSON CORPORATION)
Epson Easy Photo Print 2 (HKLM-x32\...\{79D0F056-39DE-4FDD-83FD-1554CE2C6443}) (Version: 2.4.0.0 - SEIKO EPSON CORPORATION)
Epson Easy Photo Print Plug-in for PMB(Picture Motion Browser) (HKLM-x32\...\{B2D55EB8-32C5-4B43-9006-9E97DECBA178}) (Version: 1.00.0000 - SEIKO EPSON CORPORATION2)
Epson Easy Photo Print Plug-in for Windows Live Photo Gallery (HKLM-x32\...\EEPPPlugIn) (Version:  - SEIKO EPSON Corporation)
Epson Easy Photo Print Plug-in for Windows Live Photo Gallery Setup (HKLM-x32\...\{7B7044AE-6D1F-456D-B2BA-28BFFFAF3F71}) (Version: 1.00.0000 - SEIKO EPSON Corporation) Hidden
Epson Event Manager (HKLM-x32\...\{44F72193-F59C-4303-BAE8-E3E4BC1C122C}) (Version: 3.01.0003 - Seiko Epson Corporation)
Epson E-Web Print (HKLM-x32\...\{682A3328-9621-4BAD-91FA-873A076610C4}) (Version: 1.21.0000 - SEIKO EPSON CORPORATION)
EPSON L355 Series Printer Uninstall (HKLM\...\EPSON L355 Series) (Version:  - SEIKO EPSON Corporation)
EPSON Scan (HKLM-x32\...\EPSON Scanner) (Version:  - Seiko Epson Corporation)
EpsonNet Print (HKLM-x32\...\{3E31400D-274E-4647-916C-2CACC3741799}) (Version: 2.5.00 - SEIKO EPSON CORPORATION)
ESET Online Scanner v3 (HKLM-x32\...\ESET Online Scanner) (Version:  - )
Final Fantasy VIII (HKLM-x32\...\Final Fantasy VIII_is1) (Version:  - )
Firestorm Launcher versión 1.1 (HKLM-x32\...\{008D5963-9A73-4472-8C16-A5BF04491B9D}_is1) (Version: 1.1 - Firestorm)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 77.0.3865.75 - Google LLC)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.34.11 - Google LLC) Hidden
ImagXpress (HKLM-x32\...\{A8F2089B-1F79-4BF6-B385-A2C2B0B9A74D}) (Version: 7.0.74.0 - Nero AG) Hidden
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.5.23.1766 - Intel Corporation)
Intel(R) USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 1.0.10.255 - Intel Corporation)
Java 8 Update 221 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180221F0}) (Version: 8.0.2210.11 - Oracle Corporation)
K-Lite Codec Pack 9.3.0 (Full) (HKLM-x32\...\KLiteCodecPack_is1) (Version: 9.3.0 - )
League of Legends (HKLM-x32\...\{E86FBD55-9636-46A1-ACA7-57F8C09CC322}) (Version: 3.0.1 - Riot Games) Hidden
League of Legends (HKLM-x32\...\League of Legends 3.0.1) (Version: 3.0.1 - Riot Games)
Malwarebytes versión 3.8.3.2965 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.8.3.2965 - Malwarebytes)
Menu Templates - Starter Kit (HKLM-x32\...\{B78120A0-CF84-4366-A393-4D0A59BC546C}) (Version: 9.4.6.0 - Nero AG) Hidden
Microsoft .NET Framework 4.7.2 (español) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 3082) (Version: 4.7.03062 - Microsoft Corporation)
Microsoft .NET Framework 4.7.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.7.03062 - Microsoft Corporation)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version:  - Microsoft)
Microsoft Office Enterprise 2007 (HKLM-x32\...\ENTERPRISE) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office Excel 2007 Help Actualización (KB963678) (HKLM-x32\...\{90120000-0016-0C0A-0000-0000000FF1CE}_ENTERPRISE_{59E09C3D-4878-47D9-87DB-6D0018026889}) (Version:  - Microsoft)
Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Outlook 2007 Help Actualización (KB963677) (HKLM-x32\...\{90120000-001A-0C0A-0000-0000000FF1CE}_ENTERPRISE_{59C244C2-0C37-4E85-8F7E-DBDD3958B694}) (Version:  - Microsoft)
Microsoft Office Powerpoint 2007 Help Actualización (KB963669) (HKLM-x32\...\{90120000-0018-0C0A-0000-0000000FF1CE}_ENTERPRISE_{F318245D-05AE-4681-A749-A036CE44AF29}) (Version:  - Microsoft)
Microsoft Office Word 2007 Help Actualización (KB963665) (HKLM-x32\...\{90120000-001B-0C0A-0000-0000000FF1CE}_ENTERPRISE_{377BA42A-1C84-45D6-94B8-6D00887D172D}) (Version:  - Microsoft)
Microsoft Security Essentials (HKLM\...\Microsoft Security Client) (Version: 4.10.209.0 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50918.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{A49F249F-0C91-497F-86DF-B2585E8E76B7}) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6E8E85E8-CE4B-4FF5-91F7-04999C9FAE6A}) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (HKLM\...\{F1685080-A18F-39F7-87CC-1FC1C5357364}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729 (HKLM\...\{E34002C7-8CE7-3F76-B36C-09FA973BC4F6}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{09C0A8D5-EEC1-369D-8C7A-2E2DD17DCA5E}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{402ED4A1-8F5B-387A-8688-997ABF58B8F2}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{57660847-B1F7-35BD-9118-F62EB863A598}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (HKLM-x32\...\{22154f09-719a-4619-bb71-5b3356999fbf}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Movie Templates - Starter Kit (HKLM-x32\...\{E498385E-1C51-459A-B45F-1721E37AA1A0}) (Version: 9.4.6.0 - Nero AG) Hidden
Mozilla Firefox 69.0 (x64 es-AR) (HKLM\...\Mozilla Firefox 69.0 (x64 es-AR)) (Version: 69.0 - Mozilla)
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
MSXML 4.0 SP2 Parser and SDK (HKLM-x32\...\{716E0306-8318-4364-8B8F-0CC4E9376BAC}) (Version: 4.20.9818.0 - Microsoft Corporation)
Native Instruments Controller Editor (HKLM-x32\...\Native Instruments Controller Editor) (Version:  - Native Instruments)
Native Instruments Guitar Rig 5 (HKLM-x32\...\Native Instruments Guitar Rig 5) (Version: 5.2.0.2770 - Native Instruments)
Native Instruments Guitar Rig Mobile IO Driver (HKLM-x32\...\Native Instruments Guitar Rig Mobile IO Driver) (Version:  - Native Instruments)
Native Instruments Guitar Rig Session IO Driver (HKLM-x32\...\Native Instruments Guitar Rig Session IO Driver) (Version:  - Native Instruments)
Native Instruments Rig Kontrol 3 Driver (HKLM-x32\...\Native Instruments Rig Kontrol 3 Driver) (Version:  - Native Instruments)
Native Instruments Service Center (HKLM-x32\...\Native Instruments Service Center) (Version: 2.4.4.1428 - Native Instruments)
Nero 9 Trial (HKLM-x32\...\{704fcd9f-b599-4146-a091-807257696688}) (Version:  - Nero AG)
NVIDIA Display Control Panel (HKLM\...\NVIDIA Display Control Panel) (Version: 6.14.12.5896 - NVIDIA Corporation)
NVIDIA Drivers (HKLM\...\NVIDIA Drivers) (Version: 1.10.62.40 - NVIDIA Corporation)
Open Broadcaster Software (HKLM-x32\...\Open Broadcaster Software) (Version:  - )
PCSX2 - Playstation 2 Emulator (HKLM-x32\...\pcsx2-r5350) (Version:  - )
Piano Electrónico 2.6 (HKLM-x32\...\Piano Electrónico 2.6_is1) (Version: 2.6.0.0 - Maurício Antunes Oliveira)
Picasa 3 (HKLM-x32\...\Picasa 3) (Version: 3.9 - Google, Inc.)
Pro Evolution Soccer 6 (HKLM-x32\...\{EBB794ED-D282-4334-92FB-254481EFF514}) (Version: 1.00.0000 - KONAMI) Hidden
Pro Evolution Soccer 6 (HKLM-x32\...\InstallShield_{EBB794ED-D282-4334-92FB-254481EFF514}) (Version: 1.00.0000 - KONAMI)
PVSonyDll (HKLM\...\{3D3E663D-4E7E-4577-A560-7ECDDD45548A}) (Version: 1.00.0001 - NVIDIA Corporation) Hidden
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.86.508.2014 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7373 - Realtek Semiconductor Corp.)
REDRAGON Gaming Mouse V1.0.07 (HKLM-x32\...\{4A5BB50A-1F4B-4D17-BA7A-E278DCFED941}_is1) (Version: 1.00.05 - )
Resident Evil 2 2019 Deluxe Edition MULTi12 - ElAmigos versión 1.0 (HKLM-x32\...\{E8E7E0A8-73F1-4E9B-B50E-25CA040AD7EC}_is1) (Version: 1.0 - Capcom)
Revo Uninstaller 2.1.0 (HKLM\...\{A28DBDA2-3CC7-4ADC-8BFE-66D7743C6C97}_is1) (Version: 2.1.0 - VS Revo Group, Ltd.)
Software Updater (HKLM-x32\...\{E1BAD1BA-C0E8-4018-9281-E7D2C6B07474}) (Version: 4.3.6 - SEIKO EPSON CORPORATION)
SoundTrax (HKLM-x32\...\{C5A7CB6C-E76D-408F-BA0E-85605420FE9D}) (Version: 4.4.37.1 - Nero AG) Hidden
Spelling Dictionaries Support For Adobe Reader 9 (HKLM-x32\...\{AC76BA86-7AD7-5464-3428-900000000004}) (Version: 9.0.0 - Adobe Systems Incorporated)
swMSM (HKLM-x32\...\{612C34C7-5E90-47D8-9B5C-0F717DD82726}) (Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
Total Commander v7.50a (HKLM-x32\...\Total Commander v7.50a_is1) (Version:  - )
Twitch (HKU\S-1-5-21-786306497-2436674552-526500336-500\...\{DEE70742-F4E9-44CA-B2B9-EE95DCF37295}) (Version: 7.0.0.0 - Twitch Interactive, Inc.)
Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version:  - Microsoft)
Windows Live Sync (HKLM-x32\...\{953D4586-9A16-495E-BA1F-EE5AA66604DB}) (Version: 14.0.8089.726 - Microsoft Corporation)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

ShellExecuteHooks-x32: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2217832 2009-02-26] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers1-x32: [Cover Designer] -> {73FCA462-9BD5-4065-A73F-A8E5F6904EF7} => C:\Program Files (x86)\Nero\Nero 9\Nero CoverDesigner\CoverEdExtension.dll [2009-09-24] (Nero AG -> Nero AG)
ContextMenuHandlers1: [EPP] -> {09A47860-11B0-4DA5-AFA5-26D86198A780} => C:\Program Files\Microsoft Security Client\shellext.dll [2016-11-14] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2009-06-10] () [File not signed]
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext32.dll [2009-06-10] () [File not signed]
ContextMenuHandlers2: [EPP] -> {09A47860-11B0-4DA5-AFA5-26D86198A780} => C:\Program Files\Microsoft Security Client\shellext.dll [2016-11-14] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2019-06-26] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers4: [EPP] -> {09A47860-11B0-4DA5-AFA5-26D86198A780} => C:\Program Files\Microsoft Security Client\shellext.dll [2016-11-14] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers4: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2009-06-10] () [File not signed]
ContextMenuHandlers4-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext32.dll [2009-06-10] () [File not signed]
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\Program Files\AMD\CNext\CNext\atiacm64.dll [2016-09-16] (Advanced Micro Devices, Inc.) [File not signed]
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\system32\nvshext.dll [2010-07-09] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2019-06-26] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2009-06-10] () [File not signed]
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext32.dll [2009-06-10] () [File not signed]

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)


==================== Loaded Modules (Whitelisted) ==============

2010-03-12 14:00 - 2009-06-10 21:08 - 000165888 _____ () [File not signed] C:\Program Files (x86)\WinRAR\rarext.dll
2016-09-13 02:01 - 2016-09-13 02:01 - 000011776 _____ () [File not signed] C:\Program Files\AMD\CNext\CNext\libEGL.dll
2016-09-13 02:01 - 2016-09-13 02:01 - 002013696 _____ () [File not signed] C:\Program Files\AMD\CNext\CNext\libGLESv2.dll
2016-09-13 02:01 - 2016-09-13 02:01 - 000014336 _____ () [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick.2\qtquick2plugin.dll
2016-09-13 02:01 - 2016-09-13 02:01 - 000739840 _____ () [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Controls\qtquickcontrolsplugin.dll
2016-09-13 02:01 - 2016-09-13 02:01 - 000071168 _____ () [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Layouts\qquicklayoutsplugin.dll
2016-09-13 02:01 - 2016-09-13 02:01 - 000014336 _____ () [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Window.2\windowplugin.dll
2014-12-29 04:52 - 1999-12-31 21:00 - 000073728 _____ (Intel Corporation) [File not signed] C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.dll
2006-10-26 13:44 - 2006-10-26 13:44 - 000123904 _____ (Microsoft Corporation) [File not signed] C:\Program Files (x86)\Common Files\Microsoft Shared\VS7Debug\csm.dll
2009-05-23 02:45 - 2009-05-23 02:45 - 000247808 _____ (Microsoft Corporation) [File not signed] C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\msdbg2.dll
2011-08-26 03:01 - 2011-08-26 03:01 - 001093120 _____ (Microsoft Corporation) [File not signed] C:\Windows\WinSxS\x86_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_cbf5e994470a1a8f\MFC80U.DLL
2005-01-13 10:47 - 2005-01-13 10:47 - 000049152 _____ (SEIKO EPSON CORP.) [File not signed] C:\Program Files (x86)\EPSON Software\Event Manager\ESPSUTL.dll
2011-04-14 09:25 - 2011-04-14 09:25 - 000206336 _____ (SEIKO EPSON CORP.) [File not signed] C:\Program Files (x86)\EPSON Software\Event Manager\ScnCom10.dll
2011-04-14 09:25 - 2011-04-14 09:25 - 000082944 _____ (SEIKO EPSON CORP.) [File not signed] C:\Program Files (x86)\EPSON Software\Event Manager\ScnEps25.dll
2011-04-14 09:25 - 2011-04-14 09:25 - 000055808 _____ (SEIKO EPSON CORP.) [File not signed] C:\Program Files (x86)\EPSON Software\Event Manager\ScnMgr10.dll
2012-02-09 12:53 - 2012-02-09 12:53 - 000110080 _____ (SEIKO EPSON CORPORATION) [File not signed] C:\Program Files (x86)\EPSON Software\Event Manager\epnsm.dll
2009-10-21 17:39 - 2009-10-21 17:39 - 000291328 _____ (SEIKO EPSON CORPORATION) [File not signed] C:\Program Files (x86)\EPSON Software\Event Manager\LcMgr.dll
2011-04-14 09:16 - 2011-04-14 09:16 - 000136704 _____ (SEIKO EPSON CORPORATION) [File not signed] C:\Program Files (x86)\EPSON Software\Event Manager\ScanEngine30.dll
2015-01-07 21:45 - 2011-08-30 13:38 - 000558080 _____ (SEIKO EPSON CORPORATION) [File not signed] C:\Windows\System32\enppmon.dll
2015-01-07 21:45 - 2011-08-01 18:24 - 000252416 _____ (SEIKO EPSON CORPORATION) [File not signed] C:\Windows\System32\enpres.dll
2016-09-13 02:01 - 2016-09-13 02:01 - 000049664 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qdds.dll
2016-09-13 02:01 - 2016-09-13 02:01 - 000029696 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qgif.dll
2016-09-13 02:01 - 2016-09-13 02:01 - 000037376 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qicns.dll
2016-09-13 02:01 - 2016-09-13 02:01 - 000030208 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qico.dll
2016-09-13 02:01 - 2016-09-13 02:01 - 000459776 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qjp2.dll
2016-09-13 02:01 - 2016-09-13 02:01 - 000236544 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qjpeg.dll
2016-09-13 02:01 - 2016-09-13 02:01 - 000275456 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qmng.dll
2016-09-13 02:01 - 2016-09-13 02:01 - 000023552 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qsvg.dll
2016-09-13 02:01 - 2016-09-13 02:01 - 000022528 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qtga.dll
2016-09-13 02:01 - 2016-09-13 02:01 - 000351744 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qtiff.dll
2016-09-13 02:01 - 2016-09-13 02:01 - 000021504 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qwbmp.dll
2016-09-13 02:01 - 2016-09-13 02:01 - 000374784 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qwebp.dll
2016-09-13 02:01 - 2016-09-13 02:01 - 001212416 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\platforms\qwindows.dll
2016-09-13 02:00 - 2016-09-13 02:00 - 000912384 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Charts.dll
2016-09-13 02:00 - 2016-09-13 02:00 - 005496320 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Core.dll
2016-09-13 02:00 - 2016-09-13 02:00 - 005804544 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Gui.dll
2016-09-13 02:00 - 2016-09-13 02:00 - 001061376 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Network.dll
2016-09-13 02:00 - 2016-09-13 02:00 - 003187712 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Qml.dll
2016-09-13 02:00 - 2016-09-13 02:00 - 002924544 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Quick.dll
2016-09-13 02:00 - 2016-09-13 02:00 - 000310784 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Svg.dll
2016-09-13 02:00 - 2016-09-13 02:00 - 005444608 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Widgets.dll
2016-09-13 02:01 - 2016-09-13 02:01 - 000277504 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5WinExtras.dll
2016-09-13 02:01 - 2016-09-13 02:01 - 000193024 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Xml.dll

==================== Alternate Data Streams (Whitelisted) =========

==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)


==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2015-03-24 18:38 - 2019-09-15 02:40 - 000000035 _____ C:\Windows\system32\drivers\etc\hosts


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\Program Files (x86)\Intel\iCLS Client\;C:\Program Files\Intel\iCLS Client\;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT
HKU\S-1-5-21-786306497-2436674552-526500336-500\Control Panel\Desktop\\Wallpaper -> C:\Users\Administrador\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 200.42.4.199 - 200.49.130.51
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

If an entry is included in the fixlist, it will be removed.


==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [TCP Query User{684CEA77-2212-4F4C-B081-BB9347268E1B}C:\program files (x86)\epson software\event manager\eeventmanager.exe] => (Block) C:\program files (x86)\epson software\event manager\eeventmanager.exe (SEIKO EPSON Corporation -> SEIKO EPSON CORPORATION)
FirewallRules: [UDP Query User{2357FF15-A4F2-4505-A783-BDAF70798FFA}C:\program files (x86)\epson software\event manager\eeventmanager.exe] => (Block) C:\program files (x86)\epson software\event manager\eeventmanager.exe (SEIKO EPSON Corporation -> SEIKO EPSON CORPORATION)
FirewallRules: [TCP Query User{DAA08384-924E-47FB-B60D-0FF689DD396F}C:\riot games\league of legends\game\league of legends.exe] => (Allow) C:\riot games\league of legends\game\league of legends.exe (Riot Games, Inc. -> )
FirewallRules: [UDP Query User{EF35B120-2A9B-4B09-BCF7-9B8D2DE6B0B2}C:\riot games\league of legends\game\league of legends.exe] => (Allow) C:\riot games\league of legends\game\league of legends.exe (Riot Games, Inc. -> )
FirewallRules: [TCP Query User{9ACD8EE0-95BF-4705-91DE-AB56C6006DB3}C:\program files (x86)\epson software\event manager\eeventmanager.exe] => (Block) C:\program files (x86)\epson software\event manager\eeventmanager.exe (SEIKO EPSON Corporation -> SEIKO EPSON CORPORATION)
FirewallRules: [UDP Query User{1B72359A-8292-4C1C-A1CB-953AC7FFC5D1}C:\program files (x86)\epson software\event manager\eeventmanager.exe] => (Block) C:\program files (x86)\epson software\event manager\eeventmanager.exe (SEIKO EPSON Corporation -> SEIKO EPSON CORPORATION)
FirewallRules: [TCP Query User{773A4CC0-640A-4ACA-B39B-CFE1893A0B59}C:\programdata\administrador\blitz\current\blitz.exe] => (Allow) C:\programdata\administrador\blitz\current\blitz.exe (Swift Media Entertainment, Inc. -> Blitz Inc.)
FirewallRules: [UDP Query User{81A7FF3E-6308-47E5-93D5-3338AD404A76}C:\programdata\administrador\blitz\current\blitz.exe] => (Allow) C:\programdata\administrador\blitz\current\blitz.exe (Swift Media Entertainment, Inc. -> Blitz Inc.)
FirewallRules: [{1E9AC505-1574-4740-83EF-CAB03E8D9053}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)

==================== Restore Points =========================

13-09-2019 02:49:34 JRT Pre-Junkware Removal
13-09-2019 03:27:23 AdwCleaner_BeforeCleaning_13/09/2019_03:27:18
13-09-2019 03:40:30 AdwCleaner_BeforeCleaning_13/09/2019_03:40:24
13-09-2019 04:31:39 AdwCleaner_BeforeCleaning_13/09/2019_04:31:32
15-09-2019 02:21:00 Revo Uninstaller's restore point - Steam
15-09-2019 02:25:01 Revo Uninstaller's restore point - Spotify
15-09-2019 02:25:50 Revo Uninstaller's restore point - Java 8 Update 40
15-09-2019 02:26:02 Removed Java 8 Update 40
15-09-2019 02:28:31 Revo Uninstaller's restore point - Google+ Auto Backup
15-09-2019 02:39:18 Restore Point Created by FRST
15-09-2019 04:47:35 Restore Point Created by FRST
15-09-2019 16:22:15 Revo Uninstaller's restore point - Google Chrome
15-09-2019 16:25:48 Revo Uninstaller's restore point - Google Update Helper

==================== Faulty Device Manager Devices =============

Name: Adaptador de tunelización Teredo de Microsoft
Description: Adaptador de tunelización Teredo de Microsoft
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.


==================== Event log errors: =========================

Application errors:
==================
Error: (09/15/2019 04:38:20 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nombre de la aplicación con errores: chrome.exe, versión: 77.0.3865.75, marca de tiempo: 0x5d744737
Nombre del módulo con errores: chrome_elf.dll, versión: 77.0.3865.75, marca de tiempo: 0x5d744737
Código de excepción: 0x80000003
Desplazamiento de errores: 0x00000000000257ea
Id. del proceso con errores: 0x1744
Hora de inicio de la aplicación con errores: 0x01d56bfd20e32f57
Ruta de acceso de la aplicación con errores: C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
Ruta de acceso del módulo con errores: C:\Program Files (x86)\Google\Chrome\Application\77.0.3865.75\chrome_elf.dll
Id. del informe: 5e993fb9-d7f0-11e9-887f-60a44cae3a0d

Error: (09/15/2019 04:38:08 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nombre de la aplicación con errores: chrome.exe, versión: 77.0.3865.75, marca de tiempo: 0x5d744737
Nombre del módulo con errores: chrome_elf.dll, versión: 77.0.3865.75, marca de tiempo: 0x5d744737
Código de excepción: 0x80000003
Desplazamiento de errores: 0x00000000000257ea
Id. del proceso con errores: 0x14dc
Hora de inicio de la aplicación con errores: 0x01d56bfd1a33b1f2
Ruta de acceso de la aplicación con errores: C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
Ruta de acceso del módulo con errores: C:\Program Files (x86)\Google\Chrome\Application\77.0.3865.75\chrome_elf.dll
Id. del informe: 57e9c254-d7f0-11e9-887f-60a44cae3a0d

Error: (09/15/2019 04:38:03 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nombre de la aplicación con errores: chrome.exe, versión: 77.0.3865.75, marca de tiempo: 0x5d744737
Nombre del módulo con errores: chrome_elf.dll, versión: 77.0.3865.75, marca de tiempo: 0x5d744737
Código de excepción: 0x80000003
Desplazamiento de errores: 0x00000000000257ea
Id. del proceso con errores: 0x16c4
Hora de inicio de la aplicación con errores: 0x01d56bfd16ca18ee
Ruta de acceso de la aplicación con errores: C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
Ruta de acceso del módulo con errores: C:\Program Files (x86)\Google\Chrome\Application\77.0.3865.75\chrome_elf.dll
Id. del informe: 54828ab0-d7f0-11e9-887f-60a44cae3a0d

Error: (09/15/2019 04:37:54 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nombre de la aplicación con errores: chrome.exe, versión: 77.0.3865.75, marca de tiempo: 0x5d744737
Nombre del módulo con errores: chrome_elf.dll, versión: 77.0.3865.75, marca de tiempo: 0x5d744737
Código de excepción: 0x80000003
Desplazamiento de errores: 0x00000000000257ea
Id. del proceso con errores: 0x9f4
Hora de inicio de la aplicación con errores: 0x01d56bfd10137768
Ruta de acceso de la aplicación con errores: C:\Users\ADMINI~1\AppData\Local\Temp\Rar$EX05.004\Chrome-bin\chrome.exe
Ruta de acceso del módulo con errores: C:\Users\ADMINI~1\AppData\Local\Temp\Rar$EX05.004\Chrome-bin\77.0.3865.75\chrome_elf.dll
Id. del informe: 4f3f3fd4-d7f0-11e9-887f-60a44cae3a0d

Error: (09/15/2019 04:36:58 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nombre de la aplicación con errores: chrome.exe, versión: 77.0.3865.75, marca de tiempo: 0x5d744737
Nombre del módulo con errores: chrome_elf.dll, versión: 77.0.3865.75, marca de tiempo: 0x5d744737
Código de excepción: 0x80000003
Desplazamiento de errores: 0x00000000000257ea
Id. del proceso con errores: 0x112c
Hora de inicio de la aplicación con errores: 0x01d56bfced2d5e90
Ruta de acceso de la aplicación con errores: C:\Users\ADMINI~1\AppData\Local\Temp\Rar$EX00.917\Chrome-bin\chrome.exe
Ruta de acceso del módulo con errores: C:\Users\ADMINI~1\AppData\Local\Temp\Rar$EX00.917\Chrome-bin\77.0.3865.75\chrome_elf.dll
Id. del informe: 2df9b7cc-d7f0-11e9-887f-60a44cae3a0d

Error: (09/15/2019 04:35:16 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nombre de la aplicación con errores: chrome.exe, versión: 77.0.3865.75, marca de tiempo: 0x5d744737
Nombre del módulo con errores: chrome_elf.dll, versión: 77.0.3865.75, marca de tiempo: 0x5d744737
Código de excepción: 0x80000003
Desplazamiento de errores: 0x00000000000257ea
Id. del proceso con errores: 0x118
Hora de inicio de la aplicación con errores: 0x01d56bfcb349259a
Ruta de acceso de la aplicación con errores: C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
Ruta de acceso del módulo con errores: C:\Program Files (x86)\Google\Chrome\Application\77.0.3865.75\chrome_elf.dll
Id. del informe: f1385702-d7ef-11e9-887f-60a44cae3a0d

Error: (09/15/2019 04:34:26 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nombre de la aplicación con errores: chrome.exe, versión: 77.0.3865.75, marca de tiempo: 0x5d744737
Nombre del módulo con errores: chrome_elf.dll, versión: 77.0.3865.75, marca de tiempo: 0x5d744737
Código de excepción: 0x80000003
Desplazamiento de errores: 0x00000000000257ea
Id. del proceso con errores: 0x15ac
Hora de inicio de la aplicación con errores: 0x01d56bfc909cba3c
Ruta de acceso de la aplicación con errores: C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
Ruta de acceso del módulo con errores: C:\Program Files (x86)\Google\Chrome\Application\77.0.3865.75\chrome_elf.dll
Id. del informe: d321720b-d7ef-11e9-887f-60a44cae3a0d

Error: (09/15/2019 04:34:25 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nombre de la aplicación con errores: chrome.exe, versión: 77.0.3865.75, marca de tiempo: 0x5d744737
Nombre del módulo con errores: chrome_elf.dll, versión: 77.0.3865.75, marca de tiempo: 0x5d744737
Código de excepción: 0x80000003
Desplazamiento de errores: 0x00000000000257ea
Id. del proceso con errores: 0x156c
Hora de inicio de la aplicación con errores: 0x01d56bfc8bd9f9b0
Ruta de acceso de la aplicación con errores: C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
Ruta de acceso del módulo con errores: C:\Program Files (x86)\Google\Chrome\Application\77.0.3865.75\chrome_elf.dll
Id. del informe: d30c05a9-d7ef-11e9-887f-60a44cae3a0d


System errors:
=============
Error: (09/15/2019 04:55:22 PM) (Source: Disk) (EventID: 7) (User: )
Description: El dispositivo, \Device\Harddisk0\DR0, tiene un bloque defectuoso.

Error: (09/15/2019 04:55:18 PM) (Source: Disk) (EventID: 7) (User: )
Description: El dispositivo, \Device\Harddisk0\DR0, tiene un bloque defectuoso.

Error: (09/15/2019 02:19:41 PM) (Source: Disk) (EventID: 7) (User: )
Description: El dispositivo, \Device\Harddisk0\DR0, tiene un bloque defectuoso.

Error: (09/15/2019 02:19:38 PM) (Source: Disk) (EventID: 7) (User: )
Description: El dispositivo, \Device\Harddisk0\DR0, tiene un bloque defectuoso.

Error: (09/15/2019 04:48:03 AM) (Source: Service Control Manager) (EventID: 7032) (User: )
Description: El Administrador de control de servicios intentó realizar una acción correctora (Reiniciar el servicio) después de la terminación inesperada del servicio Windows Search, pero ocurrió el siguiente error: 
Ya se está ejecutando una instancia de este servicio.

Error: (09/15/2019 04:47:33 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: El servicio Intel(R) Dynamic Application Loader Host Interface Service se terminó de manera inesperada. Esto ha sucedido 1 veces.

Error: (09/15/2019 04:47:33 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: El servicio Intel(R) Management and Security Application Local Management Service se terminó de manera inesperada. Esto ha sucedido 1 veces.

Error: (09/15/2019 04:47:33 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: El servicio Windows Search terminó inesperadamente. Esto se ha repetido 1 veces. Se realizará la siguiente acción correctora en 30000 milisegundos: Reiniciar el servicio.


==================== Memory info =========================== 

BIOS: American Megatrends Inc. 1806 01/03/2013
Motherboard: ASUSTeK COMPUTER INC. P8Z77-M
Processor: Intel(R) Core(TM) i5-3570 CPU @ 3.40GHz
Percentage of memory in use: 73%
Total physical RAM: 8138.07 MB
Available physical RAM: 2161.04 MB
Total Virtual: 16274.29 MB
Available Virtual: 8898.6 MB

==================== Drives ================================

Drive c: (Sistema) (Fixed) (Total:200 GB) (Free:54.03 GB) NTFS ==>[drive with boot components (obtained from BCD)]
Drive d: (Datos) (Fixed) (Total:1197.26 GB) (Free:720.59 GB) NTFS
Drive g: (DVD_ROM) (CDROM) (Total:0.05 GB) (Free:0 GB) UDF


==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 1397.3 GB) (Disk ID: 98976799)
Partition 1: (Active) - (Size=200 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=1197.3 GB) - (Type=05)

==================== End of Addition.txt ============================

pd: agradezco mucho todo este accionar, queria decir que tambien veo una mejora al iniciar la PC!!

saludos!