Tengo problemas al intentar instalar el Adobe Reader, cuando inicio el instalador llega hasta 98%, despues dice que tengo la ultima version de Adobe Reader instalada, cosa que no es cierta porque los archivos en .pdf me salen para abrirlos con el Google Chrome…
Y si lo busco en los programas instalados no esta (obviamente), pero me dice el launcher del instalador que si… entonces no se que hacer 
Desactiva Temporalmente tu antivirus y cualquier programa de seguridad.
Descarga a Tu Escritorio >> Esto es muy importante<<.,Fabar Recovery Scan Tool, considerando la versión adecuada para tu equipo. (32 o 64 bits) 
¿Cómo saber si mi Windows es de 32 o 64 bits?
Doble clic para ejecutar Frst.exe. En la ventana del Disclaimer, presiona Yes.
En la nueva ventana que se abre, presiona el botón Scan y espera a que concluya el análisis.
Se abrirán dos (2) archivos (Logs), Frst.txt y Addition.txt, que estarán grabados en Tu escritorio.
En Tu próxima respuesta, copias y pegas los dos reportes Frst.txt y Addition.txt de FRST
Nota: Si el/los reportes solicitados no entraran en una sola respuesta porque superan la cantidad de caracteres permitidos, puedes utilizar dos o mas respuestas para pegarlos completamente.
Ran by Administrador (18-11-2018 19:49:51)
Running from E:\Documents\Desktop\=Todo=\Instaladores
Microsoft Windows 7 Ultimate Service Pack 1 (X86) (2012-11-23 01:33:02)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
Administrador (S-1-5-21-2537466858-3879440399-1483233659-500 - Administrator - Enabled) => C:\Users\Administrador
Invitado (S-1-5-21-2537466858-3879440399-1483233659-501 - Limited - Disabled)
UpdatusUser (S-1-5-21-2537466858-3879440399-1483233659-1010 - Limited - Enabled) => C:\Users\UpdatusUser
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Avast Antivirus (Enabled - Up to date) {8EA8924E-BC81-DC44-8BB0-8BAE75D86EBF}
AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Enabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
µTorrent (HKU\S-1-5-21-2537466858-3879440399-1483233659-500\...\uTorrent) (Version: 3.4.9.42923 - BitTorrent Inc.)
2007 Microsoft Office Suite Service Pack 3 (SP3) (HKLM\...\{90120000-0015-0C0A-0000-0000000FF1CE}_ENTERPRISE_{D79E9128-A250-4155-BE90-2BE81DE0406A}) (Version: - Microsoft) Hidden
2007 Microsoft Office Suite Service Pack 3 (SP3) (HKLM\...\{90120000-0016-0C0A-0000-0000000FF1CE}_ENTERPRISE_{D79E9128-A250-4155-BE90-2BE81DE0406A}) (Version: - Microsoft) Hidden
2007 Microsoft Office Suite Service Pack 3 (SP3) (HKLM\...\{90120000-0018-0C0A-0000-0000000FF1CE}_ENTERPRISE_{D79E9128-A250-4155-BE90-2BE81DE0406A}) (Version: - Microsoft) Hidden
2007 Microsoft Office Suite Service Pack 3 (SP3) (HKLM\...\{90120000-0019-0C0A-0000-0000000FF1CE}_ENTERPRISE_{D79E9128-A250-4155-BE90-2BE81DE0406A}) (Version: - Microsoft) Hidden
2007 Microsoft Office Suite Service Pack 3 (SP3) (HKLM\...\{90120000-001A-0C0A-0000-0000000FF1CE}_ENTERPRISE_{D79E9128-A250-4155-BE90-2BE81DE0406A}) (Version: - Microsoft) Hidden
2007 Microsoft Office Suite Service Pack 3 (SP3) (HKLM\...\{90120000-001B-0C0A-0000-0000000FF1CE}_ENTERPRISE_{D79E9128-A250-4155-BE90-2BE81DE0406A}) (Version: - Microsoft) Hidden
2007 Microsoft Office Suite Service Pack 3 (SP3) (HKLM\...\{90120000-001F-0403-0000-0000000FF1CE}_ENTERPRISE_{BEADB115-DB47-4BD0-A9EC-AE585AFAB2D8}) (Version: - Microsoft) Hidden
2007 Microsoft Office Suite Service Pack 3 (SP3) (HKLM\...\{90120000-001F-0409-0000-0000000FF1CE}_ENTERPRISE_{1FF96026-A04A-4C3E-B50A-BB7022654D0F}) (Version: - Microsoft) Hidden
2007 Microsoft Office Suite Service Pack 3 (SP3) (HKLM\...\{90120000-001F-040C-0000-0000000FF1CE}_ENTERPRISE_{71F055E8-E2C6-4214-BB3D-BFE03561B89E}) (Version: - Microsoft) Hidden
2007 Microsoft Office Suite Service Pack 3 (SP3) (HKLM\...\{90120000-001F-0416-0000-0000000FF1CE}_ENTERPRISE_{8A524694-0CA4-476A-9301-B1E9D70FC952}) (Version: - Microsoft) Hidden
2007 Microsoft Office Suite Service Pack 3 (SP3) (HKLM\...\{90120000-001F-042D-0000-0000000FF1CE}_ENTERPRISE_{017A6981-5E03-4A97-830A-35FE0927BB7F}) (Version: - Microsoft) Hidden
2007 Microsoft Office Suite Service Pack 3 (SP3) (HKLM\...\{90120000-001F-0456-0000-0000000FF1CE}_ENTERPRISE_{A3A03B41-14EA-4E50-97D8-FCF429AE0CCB}) (Version: - Microsoft) Hidden
2007 Microsoft Office Suite Service Pack 3 (SP3) (HKLM\...\{90120000-001F-0C0A-0000-0000000FF1CE}_ENTERPRISE_{2314F9A1-126F-45CC-8A5E-DFAF866F3FBC}) (Version: - Microsoft) Hidden
2007 Microsoft Office Suite Service Pack 3 (SP3) (HKLM\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft)
2007 Microsoft Office Suite Service Pack 3 (SP3) (HKLM\...\{90120000-0044-0C0A-0000-0000000FF1CE}_ENTERPRISE_{D79E9128-A250-4155-BE90-2BE81DE0406A}) (Version: - Microsoft) Hidden
2007 Microsoft Office Suite Service Pack 3 (SP3) (HKLM\...\{90120000-006E-0C0A-0000-0000000FF1CE}_ENTERPRISE_{430AE3E6-E982-4958-90FC-1C062BC74E22}) (Version: - Microsoft) Hidden
2007 Microsoft Office Suite Service Pack 3 (SP3) (HKLM\...\{90120000-00A1-0C0A-0000-0000000FF1CE}_ENTERPRISE_{D79E9128-A250-4155-BE90-2BE81DE0406A}) (Version: - Microsoft) Hidden
2007 Microsoft Office Suite Service Pack 3 (SP3) (HKLM\...\{90120000-00BA-0C0A-0000-0000000FF1CE}_ENTERPRISE_{D79E9128-A250-4155-BE90-2BE81DE0406A}) (Version: - Microsoft) Hidden
32 Bit HP CIO Components Installer (HKLM\...\{F1E63043-54FC-429B-AB2C-31AF9FBA4BC7}) (Version: 1.0.0 - Hewlett-Packard) Hidden
3D Ripper DX v1.8.2 (HKLM\...\3D Ripper DX_is1) (Version: - Roman Lut)
Activador Windows Seven (HKLM\...\Activador Windows Seven) (Version: - WCPCGAMES)
Actualización de NVIDIA 1.10.8 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 1.10.8 - NVIDIA Corporation)
Adobe AIR (HKLM\...\Adobe AIR) (Version: 3.6.0.5970 - Adobe Systems Incorporated)
Adobe Flash Player 27 ActiveX (HKLM\...\Adobe Flash Player ActiveX) (Version: 27.0.0.130 - Adobe Systems Incorporated)
Adobe Flash Player 27 NPAPI (HKLM\...\Adobe Flash Player NPAPI) (Version: 27.0.0.130 - Adobe Systems Incorporated)
Adobe Shockwave Player 12.2 (HKLM\...\Adobe Shockwave Player) (Version: 12.2.4.194 - Adobe Systems, Inc.)
AIO_Scan (HKLM\...\{0D2E9DCB-9938-475E-B4DD-8851738852FF}) (Version: 82.0.203.000 - Hewlett-Packard) Hidden
Android USB Driver (HKLM\...\Android USB Driver_is1) (Version: - )
Avast Free Antivirus (HKLM\...\Avast Antivirus) (Version: 18.7.2354 - AVAST Software)
BufferChm (HKLM\...\{BE77A81F-B315-4666-9BF3-AE70C0ADB057}) (Version: 82.0.173.000 - Hewlett-Packard) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 5.46 - Piriform)
Choice Guard (HKLM\...\{8FFC5648-FAF8-43A3-BC8F-42BA1E275C4E}) (Version: 1.2.87.0 - Microsoft Corporation) Hidden
Compatibilidad con Aplicaciones de Apple (HKLM\...\{F5266D28-E0B2-4130-BFC5-EE155AD514DC}) (Version: 2.3 - Apple Inc.)
Copy (HKLM\...\{A3B7C670-4A1E-4EE2-950E-C875BC1965D0}) (Version: 82.0.188.000 - Hewlett-Packard) Hidden
Counter-Strike 1.6 (HKLM\...\Counter-Strike 1.6_is1) (Version: Counter-Strike 1.6 No Steam - KingSOFT DVD)
CPUID CPU-Z 1.72.1 (HKLM\...\CPUID CPU-Z_is1) (Version: - ) <==== ATTENTION
CustomerResearchQFolder (HKLM\...\{6F5E2F4A-377D-4700-B0E3-8F7F7507EA15}) (Version: 1.00.0000 - Hewlett-Packard) Hidden
CyberLink PowerDVD 11 (HKLM\...\InstallShield_{F232C87C-6E92-4775-8210-DFE90B7777D9}) (Version: 11.0.1620.51 - CyberLink Corp.)
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 4.49.1.0356 - Disc Soft Ltd)
Destinations (HKLM\...\{9B1FD9CE-0776-4f0b-A6F5-C6AB7B650CDF}) (Version: 82.0.173.000 - Hewlett-Packard) Hidden
DeviceManagementQFolder (HKLM\...\{AB5D51AE-EBC3-438D-872C-705C7C2084B0}) (Version: 1.00.0000 - Hewlett-Packard) Hidden
DJ_AIO_Software (HKLM\...\{9ECB4705-B9CB-405A-B6D4-33BDF707308E}) (Version: 82.0.203.000 - Hewlett-Packard) Hidden
DJ_AIO_Software_min (HKLM\...\{DC83F417-8068-4074-BA2F-C4F8AB872556}) (Version: 82.0.203.000 - Hewlett-Packard) Hidden
DriveImage XML (Private Edition) (HKLM\...\{F7E1CA14-B39D-452A-960B-39423DDDD933}) (Version: 2.44.000 - Runtime Software)
eSupportQFolder (HKLM\...\{66E6CE0C-5A1E-430C-B40A-0C90FF1804A8}) (Version: 1.00.0000 - Hewlett-Packard) Hidden
Galería fotográfica de Windows Live (HKLM\...\{80A29FE1-4390-4996-B213-EB703832D8B3}) (Version: 14.0.8064.206 - Microsoft Corporation) Hidden
Google Chrome (HKLM\...\Google Chrome) (Version: 69.0.3497.100 - Google Inc.)
Google Update Helper (HKLM\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.17 - Google Inc.) Hidden
Google Update Helper (HKLM\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.25.11 - Google Inc.) Hidden
Herramienta de carga de Windows Live (HKLM\...\{205C6BDD-7B73-42DE-8505-9A093F35A238}) (Version: 14.0.8014.1029 - Microsoft Corporation)
Hextech Repair Tool (HKLM\...\{7F9A97E6-E666-11E5-B582-B88687E82322}) (Version: 1.1.91 - Riot Games, Inc.)
HiPatch (HKLM\...\{3C87E0FF-BC0A-4F5E-951B-68DC3F8DF000}) (Version: 5.1.6.2 - Hi-Rez Studios)
Hi-Rez Studios Authenticate and Update Service (HKLM\...\{3C87E0FF-BC0A-4F5E-951B-68DC3F8DF1FC}) (Version: 3.0.0.0 - Hi-Rez Studios)
HP Customer Participation Program 8.0 (HKLM\...\HPExtendedCapabilities) (Version: 8.0 - HP)
HP Deskjet 2050 J510 series Ayuda (HKLM\...\{7A3DF2E2-CF13-44FB-A93E-F71D5381DB3F}) (Version: 140.0.61.61 - Hewlett Packard)
HP Deskjet 2050 J510 series Estudio para la mejora del producto (HKLM\...\{2ED491F9-E343-45CC-A624-B538615FAABD}) (Version: 28.0.1313.0 - Hewlett-Packard Co.)
HP Deskjet 2050 J510 series Software básico del dispositivo (HKLM\...\{A3FF4458-CC45-4EBC-A7C3-0A843BDC9177}) (Version: 28.0.1313.0 - Hewlett-Packard Co.)
HP Deskjet All-In-One Software 8.0 (HKLM\...\{24557DC0-0839-496f-82F9-C4EB72EFE4FA}) (Version: 8.0 - HP)
HP Imaging Device Functions 8.0 (HKLM\...\HP Imaging Device Functions) (Version: 8.0 - HP)
HP Solution Center 8.0 (HKLM\...\HP Solution Center & Imaging Support Tools) (Version: 8.0 - HP)
HP Update (HKLM\...\{912D30CF-F39E-4B31-AD9A-123C6B794EE2}) (Version: 5.005.002.002 - Hewlett-Packard)
HPProductAssistant (HKLM\...\{67D3F1A0-A1F2-49b7-B9EE-011277B170CD}) (Version: 82.0.173.000 - Hewlett-Packard) Hidden
HPSSupply (HKLM\...\{EB75DE50-5754-4F6F-875D-126EDF8E4CB3}) (Version: 2.1.3.0000 - Nombre de su organización)
Java 8 Update 191 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F32180191F0}) (Version: 8.0.1910.12 - Oracle Corporation)
Junk Mail filter update (HKLM\...\{4DE3E3D9-AE81-45DE-9195-3015F7B1DBF3}) (Version: 14.0.8064.206 - Microsoft Corporation) Hidden
K-Lite Codec Pack 9.7.5 (Full) (HKLM\...\KLiteCodecPack_is1) (Version: 9.7.5 - )
League of Legends (HKLM\...\League of Legends 1.0) (Version: 1.0 - Riot Games, Inc)
MarketResearch (HKLM\...\{95D08F4E-DFC2-4ce3-ACB7-8C8E206217E9}) (Version: 82.0.174.000 - Hewlett-Packard) Hidden
Math Problem Solver (HKU\S-1-5-21-2537466858-3879440399-1483233659-500\...\Math Problem Solver) (Version: - ) <==== ATTENTION
MEGAsync (HKLM\...\MEGAsync) (Version: - Mega Limited)
Microsoft .NET Framework 4.5.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft Games for Windows - LIVE Redistributable (HKLM\...\{59E4543A-D49D-4489-B445-473D763C79AF}) (Version: 2.0.672.0 - Microsoft Corporation)
Microsoft Halo Custom Edition (HKLM\...\Halo CE) (Version: - )
Microsoft Office Enterprise 2007 (HKLM\...\ENTERPRISE) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office Excel 2007 Help Actualización (KB963678) (HKLM\...\{90120000-0016-0C0A-0000-0000000FF1CE}_ENTERPRISE_{59E09C3D-4878-47D9-87DB-6D0018026889}) (Version: - Microsoft)
Microsoft Office File Validation Add-In (HKLM\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Outlook 2007 Help Actualización (KB963677) (HKLM\...\{90120000-001A-0C0A-0000-0000000FF1CE}_ENTERPRISE_{59C244C2-0C37-4E85-8F7E-DBDD3958B694}) (Version: - Microsoft)
Microsoft Office Powerpoint 2007 Help Actualización (KB963669) (HKLM\...\{90120000-0018-0C0A-0000-0000000FF1CE}_ENTERPRISE_{F318245D-05AE-4681-A749-A036CE44AF29}) (Version: - Microsoft)
Microsoft Office Word 2007 Help Actualización (KB963665) (HKLM\...\{90120000-001B-0C0A-0000-0000000FF1CE}_ENTERPRISE_{377BA42A-1C84-45D6-94B8-6D00887D172D}) (Version: - Microsoft)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50907.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Sync Framework Runtime Native v1.0 (x86) (HKLM\...\{8A74E887-8F0F-4017-AF53-CBA42211AAA5}) (Version: 1.0.1215.0 - Microsoft Corporation)
Microsoft Sync Framework Services Native v1.0 (x86) (HKLM\...\{BD64AF4A-8C80-4152-AD77-FCDDF05208AB}) (Version: 1.0.1215.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x86) - 14.10.25008 (HKLM\...\{c239cea1-d49e-4e16-8e87-8c055765f7ec}) (Version: 14.10.25008.0 - Microsoft Corporation)
Microsoft WSE 3.0 Runtime (HKLM\...\{E3E71D07-CD27-46CB-8448-16D4FB29AA13}) (Version: 3.0.5305.0 - Microsoft Corp.)
Microsoft XNA Framework Redistributable 4.0 Refresh (HKLM\...\{D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F}) (Version: 4.0.30901.0 - Microsoft Corporation)
Mozilla Firefox 62.0.3 (x86 es-ES) (HKLM\...\Mozilla Firefox 62.0.3 (x86 es-ES)) (Version: 62.0.3 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 62.0.3.6848 - Mozilla)
MSXML 4.0 SP2 (KB954430) (HKLM\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
Notepad++ (HKLM\...\Notepad++) (Version: 6.3 - )
NVIDIA Controlador de gráficos 309.08 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 309.08 - NVIDIA Corporation)
NVIDIA Drivers (HKLM\...\NVIDIA Drivers) (Version: 1.10.62.40 - NVIDIA Corporation)
NVIDIA PhysX (HKLM\...\{8B922CF8-8A6C-41CE-A858-F1755D7F5D29}) (Version: 9.12.1031 - NVIDIA Corporation)
OpenAL (HKLM\...\OpenAL) (Version: - )
Panel de control de NVIDIA 309.08 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 309.08 - NVIDIA Corporation) Hidden
Papers Please version 1.1.60-S (HKLM\...\Papers Please_is1) (Version: 1.1.60-S - )
Paquete de idioma de Microsoft .NET Framework 4.5 ESN (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 3082) (Version: 4.5.50709 - Microsoft Corporation)
PDFCreator (HKLM\...\{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}) (Version: 1.6.2 - pdfforge)
Photoshop CS5 Extended 12.0 (HKLM\...\Photoshop CS5 Extended 12.0) (Version: - )
Platform (HKLM\...\{20D4A895-748C-4D88-871C-FDB1695B0169}) (Version: 1.34 - VIA Technologies, Inc.) Hidden
Pro Evolution Soccer 2012 (HKLM\...\{E737A098-F161-4B6F-AF22-86AAE34F6FBD}) (Version: 1.03.0000 - KONAMI)
Revo Uninstaller 1.94 (HKLM\...\Revo Uninstaller) (Version: 1.94 - VS Revo Group)
Scan (HKLM\...\{1746EA69-DCB6-4408-B5A5-E75F55439CDF}) (Version: 8.1.0.0 - Hewlett-Packard) Hidden
Soda Manager (HKLM\...\{9BCA490C-5063-4466-BA39-D749F0DC48AE}) (Version: 7.0.0.21719 - LULU Software Limited) Hidden
Soda PDF 3D Reader Asian Fonts Pack (HKLM\...\{8EB40324-9107-4B93-93E4-CCE380C398CD}) (Version: 7.2.3.22270 - LULU Software Limited) Hidden
Soda PDF 3D Reader Create Module (HKLM\...\{555FB2F3-3B7A-4254-9B71-1600BC99227A}) (Version: 7.2.3.22270 - LULU Software Limited) Hidden
Soda PDF 3D Reader View Module (HKLM\...\{8F58B40B-5808-4532-BDA8-39268875AF9E}) (Version: 7.2.3.22270 - LULU Software Limited) Hidden
SolutionCenter (HKLM\...\{A36CD345-625C-4d6c-B3E2-76E1248CB451}) (Version: 82.0.188.000 - Hewlett-Packard) Hidden
Sound Blaster X-Fi MB (HKLM\...\{F3D9AC82-30F4-4BB9-B9AB-8697637568C1}) (Version: 1.0 - Creative Technology Limited)
SpeedFan (remove only) (HKLM\...\SpeedFan) (Version: - )
Status (HKLM\...\{978C25EE-5777-46e4-8988-732C297CBDBD}) (Version: 82.0.173.000 - Hewlett-Packard) Hidden
Steam (HKLM\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
swMSM (HKLM\...\{612C34C7-5E90-47D8-9B5C-0F717DD82726}) (Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
Toolbox (HKLM\...\{C716522C-3731-4667-8579-40B098294500}) (Version: 82.0.173.000 - Hewlett-Packard) Hidden
TrayApp (HKLM\...\{FF075778-6E50-47ed-991D-3B07FD4E3250}) (Version: 82.0.188.000 - Hewlett-Packard) Hidden
TuneUp Utilities Language Pack (es-ES) (HKLM\...\{DED3E411-B3C3-4154-A3F7-AE2EFC98FDBA}) (Version: 12.0.3600.182 - TuneUp Software) Hidden
UE4 Prerequisites (x86) (HKLM\...\{6EAAE1C0-6000-45FA-B46D-D206144925BF}) (Version: 1.0.11.0 - Epic Games, Inc.) Hidden
UE4 Prerequisites (x86) (HKLM\...\{f1203e43-4ddb-4280-974e-73f14d793dbd}) (Version: 1.0.13.0 - Epic Games, Inc.) Hidden
Unity Web Player (HKU\S-1-5-21-2537466858-3879440399-1483233659-500\...\UnityWebPlayer) (Version: - Unity Technologies ApS)
UnloadSupport (HKLM\...\{E06F04B9-45E6-4AC0-8083-85F7515F40F7}) (Version: 1.00.0000 - Hewlett-Packard) Hidden
Update for 2007 Microsoft Office System (KB967642) (HKLM\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft)
VIA Administrador de dispositivos de plataforma (HKLM\...\InstallShield_{20D4A895-748C-4D88-871C-FDB1695B0169}) (Version: 1.34 - VIA Technologies, Inc.)
Visual Studio 2012 x86 Redistributables (HKLM\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
VLC media player 2.0.5 (HKLM\...\VLC media player) (Version: 2.0.5 - VideoLAN)
WebReg (HKLM\...\{179C56A4-F57F-4561-8BBF-F911D26EB435}) (Version: 82.0.173.000 - Hewlett-Packard) Hidden
Windows Live Asistente para el inicio de sesión (HKLM\...\{7593234B-2AEB-4FC9-B02D-C9B30D86084C}) (Version: 5.000.818.5 - Microsoft Corporation)
Windows Live Essentials (HKLM\...\WinLiveSuite_Wave3) (Version: 14.0.8064.0206 - Microsoft Corporation)
Windows Live Sync (HKLM\...\{28F46DFD-F535-4306-BDEB-C5E7FCA2026E}) (Version: 14.0.8064.206 - Microsoft Corporation)
WinRAR 4.20 (32-bit) (HKLM\...\WinRAR archiver) (Version: 4.20.0 - win.rar GmbH)
ZTE Drivers v1.2050.0.10 (HKLM\...\{66239456-F8B1-49EC-818C-822603C5B712}) (Version: 1.0.0.10 - ZTE Corporation)
==================== Custom CLSID (Whitelisted): ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
CustomCLSID: HKU\S-1-5-21-2537466858-3879440399-1483233659-500_Classes\CLSID\{444785F1-DE89-4295-863A-D46C3A781394}\InprocServer32 -> C:\Users\Administrador\AppData\LocalLow\Unity\WebPlayer\loader\UnityWebPluginAX.ocx (Unity Technologies ApS)
ShellIconOverlayIdentifiers: [ MEGA (Pending)] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => C:\Users\Administrador\AppData\Local\MEGAsync\ShellExtX32.dll [2017-10-18] ()
ShellIconOverlayIdentifiers: [ MEGA (Synced)] -> {05B38830-F4E9-4329-978B-1DD28605D202} => C:\Users\Administrador\AppData\Local\MEGAsync\ShellExtX32.dll [2017-10-18] ()
ShellIconOverlayIdentifiers: [ MEGA (Syncing)] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => C:\Users\Administrador\AppData\Local\MEGAsync\ShellExtX32.dll [2017-10-18] ()
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2018-10-18] (AVAST Software)
ContextMenuHandlers1: [ANotepad++] -> {00F3C2EC-A6EE-11DE-A03A-EF8F55D89593} => C:\Program Files\Notepad++\NppShell_05.dll [2012-06-18] ()
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2018-10-18] (AVAST Software)
ContextMenuHandlers1: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\Administrador\AppData\Local\MEGAsync\ShellExtX32.dll [2017-10-18] ()
ContextMenuHandlers1: [PDFManagerExt] -> {6FFE8805-6586-4CDB-B880-047950580CB2} => -> No File
ContextMenuHandlers1: [WinRAR] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2012-06-09] (Alexander Roshal)
ContextMenuHandlers2: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\Administrador\AppData\Local\MEGAsync\ShellExtX32.dll [2017-10-18] ()
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2018-10-18] (AVAST Software)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2018-09-19] (Malwarebytes)
ContextMenuHandlers3: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\Administrador\AppData\Local\MEGAsync\ShellExtX32.dll [2017-10-18] ()
ContextMenuHandlers4: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\Administrador\AppData\Local\MEGAsync\ShellExtX32.dll [2017-10-18] ()
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\system32\nvshext.dll [2015-01-30] (NVIDIA Corporation)
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2018-10-18] (AVAST Software)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2018-09-19] (Malwarebytes)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2012-06-09] (Alexander Roshal)
==================== Scheduled Tasks (Whitelisted) =============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {14A62A49-D691-4655-A7A0-D6D9358B8457} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: {1C71ACAF-91D2-4458-BEB3-ADC6CA4438DB} - System32\Tasks\{8AFBB9A7-BB18-4E7E-BF06-AC682F9CF1D6} => "c:\program files\google\chrome\application\chrome.exe" hxxp://ui.skype.com/ui/0/6.20.0.104/es/abandoninstall?page=tsProgressBar
Task: {1F40531A-2C01-4602-BF3A-942E9672FD98} - System32\Tasks\{0B3357E8-5BAA-4664-A641-B43D345661DB} => C:\Program Files\EA Games\Need for Speed Most Wanted\unins000.exe
Task: {20B2FA9E-FF78-47E9-881D-F71EB5561508} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: {27165EF9-BD1E-4099-BB3C-12E2B84862E5} - System32\Tasks\{30FAF4D7-FD17-4085-B0F3-CF072B5B4DCD} => C:\Program Files\Hi-Rez Studios\HiRezGamesDiagAndSupport.exe [2018-06-11] (Hewlett-Packard Company)
Task: {2CCC948F-6336-4061-BF8A-4CC899AE5ADF} - System32\Tasks\{82368FFB-DD28-4B12-9BB8-9637FC4E1316} => C:\Windows\system32\pcalua.exe -a "C:\Program Files\Counter-Strike 1.6\C-D\cd-client-4_33_4-en.exe" -d "C:\Program Files\Counter-Strike 1.6\C-D\"
Task: {39FA64DB-1AF5-442A-ADD4-3FF66E7E0A49} - System32\Tasks\{CF1A6531-F704-4D06-BF61-78692D9F3293} => C:\Users\Administrador\AppData\Roaming\uTorrent\uTorrent.exe [2016-11-21] (BitTorrent Inc.)
Task: {3CA9B907-0292-46F0-A4B4-B287311A99D0} - System32\Tasks\{DC691C05-1EB6-4FCE-B353-3859929FD740} => C:\Windows\system32\pcalua.exe -a "E:\Documents\Desktop\=Todo=\Fifa 08\Crear Acceso Directo.exe" -d "E:\Documents\Desktop\=Todo=\Fifa 08"
Task: {404079CE-C97C-42EA-9EEC-3C0B55112FC4} - System32\Tasks\AVGPCTuneUp_Task_BkGndMaintenance => C:\Program Files\AVG\AVG PC TuneUp\tuscanx.exe
Task: {45BA8C06-F740-4F92-8D27-4422335F895D} - System32\Tasks\{417126A9-D57C-4ED1-B1C9-ABAC408F6B01} => C:\Windows\system32\pcalua.exe -a "E:\Documents\Desktop\=Todo=\juegos\gta sa\Crack Para El GTA Sa By Th3 Cz4r !.exe" -d "E:\Documents\Desktop\=Todo=\juegos\gta sa"
Task: {475CFFC8-6B54-4F7C-8956-45DFE7B617CC} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe [2018-10-27] (AVAST Software)
Task: {493A76A0-CDDC-42F7-916A-26E5A9247728} - System32\Tasks\AdobeFlashPlayerUpdate 2 => C:\Windows\system32\FlashPlayerUpdateService.exe
Task: {4D09D656-04D9-41B3-925E-9C3746CBC6BF} - System32\Tasks\AvastUpdateTaskMachineCore => C:\Program Files\AVAST Software\Browser\Update\AvastBrowserUpdate.exe
Task: {521CBDEB-CD4B-413E-A9BA-0A28C8532BA6} - System32\Tasks\MRT => C:\Users\Administrador\AppData\Local\Temp\csrss\mrt.exe <==== ATTENTION
Task: {5237952C-D42B-4073-BA15-C5174390004B} - System32\Tasks\Adobe Reader and Acrobat Manager => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
Task: {52B7F51A-0990-4A62-8C92-10BDC201FA0F} - System32\Tasks\AvastUpdateTaskMachineUA => C:\Program Files\AVAST Software\Browser\Update\AvastBrowserUpdate.exe
Task: {532E51A9-87A2-4737-AE1B-1104DF94DCEC} - System32\Tasks\{5BEAF2D9-A549-4701-A90A-09E35C82E09B} => C:\Windows\system32\pcalua.exe -a C:\Windows\system32\massfilter\USBDriverInstaller_x86.exe -c Uninstall
Task: {570BCE5E-344C-49EF-BA04-40C3F6FE7D6E} - System32\Tasks\hp digital imaging - hp all-in-one series => C:\Program Files\HP\HP Software Update\HPWuSchd2.exe [2006-12-10] (Hewlett-Packard Co.)
Task: {5F058D6E-6EB2-4B7E-BAA0-00901E1468C2} - System32\Tasks\{D93FCC9F-EEAC-4A61-912E-40A128C6B812} => C:\Windows\system32\pcalua.exe -a "E:\Documents\Desktop\=Todo=\juegos\gta sa\misterix mod\misterix_mod.exe" -d "E:\Documents\Desktop\=Todo=\juegos\gta sa\misterix mod"
Task: {644A9036-973A-43E6-834C-FBC562F8A6BB} - System32\Tasks\{515AA722-D2B9-43F3-8F62-44EDB360E506} => C:\Windows\system32\pcalua.exe -a "E:\Documents\Desktop\=Todo=\minecraft\counter strike 1.6 by carlossnakefist.exe" -d E:\Documents\Desktop\=Todo=\minecraft
Task: {67FB8DE6-F30D-40F7-B85C-981577502990} - System32\Tasks\{DC0314D2-E4AE-41C6-9BB5-39963762CC29} => C:\Windows\system32\pcalua.exe -a "C:\Program Files\Hi-Rez Studios\HiRezGamesDiagAndSupport.exe" -c uninstall=all
Task: {691ADA10-9412-43BF-9A0A-141F7D2AFE22} - System32\Tasks\{6BB92543-5BC6-463E-9319-7377265AEA64} => C:\Windows\system32\pcalua.exe -a "E:\Documents\Downloads\NotEnoughItems Mod Installer.exe" -d E:\Documents\Downloads
Task: {6BE56F3C-ECA5-4CF9-A52F-9AFE052C31A2} - System32\Tasks\{A12F5C93-A4CF-4F3F-8915-097E733E8F6B} => C:\Program Files\Hi-Rez Studios\HiRezGames\Hand of the Gods\Tactics.exe
Task: {6CC3238B-7A10-4F43-AD0F-CC7325EB29A5} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe
Task: {75B22D58-B16B-4E1E-B861-2F37BAADBADE} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2018-09-10] (Piriform Ltd)
Task: {7D02665D-4666-4559-89D2-176C9E719AF6} - System32\Tasks\{91A81AA2-BC91-43AF-9266-D39166A32B95} => C:\Program Files\EA SPORTS\delete_13.exe
Task: {896CA08B-2FFA-47D9-979D-96F1F3848E0E} - System32\Tasks\{94C5F858-4D87-493D-9293-11D15DDC1E09} => E:\Documents\Desktop\=Todo=\juegos\Garrys.Mod.13.v153\Garry's Mod\hl2.exe
Task: {8B00A401-E65B-4521-A09A-8B3BA7DABE77} - System32\Tasks\{2D4F22B3-1C5A-4B83-B937-6F1EF3E050A9} => C:\Windows\system32\pcalua.exe -a "C:\Users\Administrador\AppData\Roaming\EpicNet Inc\CloudNet\cloudnet.exe" -c /uninstall
Task: {8F62CE17-307A-4BE8-BE57-BC051BB2903B} - System32\Tasks\{A99733B0-C43A-4173-8ECF-2ECD220B2C01} => C:\Windows\system32\pcalua.exe -a "E:\Documents\Desktop\=Todo=\juegos\Instaladores\Fifa 08\Crear Acceso Directo.exe" -d "E:\Documents\Desktop\=Todo=\juegos\Instaladores\Fifa 08"
Task: {91280F77-A970-437C-9621-C78D8A074966} - System32\Tasks\HPCustParticipation HP Deskjet 2050 J510 series => C:\Program Files\HP\HP Deskjet 2050 J510 series\Bin\HPCustPartic.exe [2012-10-02] (Hewlett-Packard Co.)
Task: {93B643BE-4735-44F2-BEE8-F21E7394CF80} - System32\Tasks\{5FED50DF-E9A4-4363-B803-058858B0369C} => C:\Program Files\AVAST Software\Avast\AvastUI.exe [2018-10-31] (AVAST Software)
Task: {965BF341-6639-42D6-8678-17FCAA19BBCA} - System32\Tasks\{CE8E31F1-407B-43A4-941F-621BB15F9503} => C:\Program Files\HP\HP Deskjet 2050 J510 series\Bin\HPScan.exe [2012-10-02] (Hewlett-Packard Co.)
Task: {9F28397B-646A-4213-97F2-3CC2ADCCA624} - System32\Tasks\{5CF51D6B-66C6-4EF3-8174-2FBD9BA31255} => C:\Windows\system32\pcalua.exe -a "C:\Program Files\ShopperPro\SPremove.exe" <==== ATTENTION
Task: {A2C9FDEF-8A68-4874-8F5E-E8EC40E1CF6B} - System32\Tasks\MEGA\MEGAsync Update Task S-1-5-21-2537466858-3879440399-1483233659-500 => C:\Users\Administrador\AppData\Local\MEGAsync\MEGAupdater.exe [2018-01-15] (Mega Limited)
Task: {A51103F6-B683-4329-BF38-446CF47FD761} - System32\Tasks\Java Platform SE Auto Updater => C:\Program Files\Common Files\Java\Java Update\jusched.exe [2018-10-06] (Oracle Corporation)
Task: {A9198552-87BF-4CEE-A62F-E9C2F742EDA6} - System32\Tasks\{72B2A04F-0B92-40F3-844F-DE683AD8F41A} => C:\Program Files\AVAST Software\Avast\AvastUI.exe [2018-10-31] (AVAST Software)
Task: {ACD50A85-E36F-495B-8C60-35DF55857B90} - System32\Tasks\{8C4523A2-BAB1-4700-B018-2BBCE237562E} => C:\Windows\system32\pcalua.exe -a "C:\Program Files\YouTube Accelerator\YTAUninstall.exe"
Task: {AF9A800D-F448-48FD-A391-B8485E8B257B} - System32\Tasks\{27EADE1C-A7D9-46C1-ABB3-4ECC03491F8A} => C:\Windows\system32\pcalua.exe -a C:\Users\ADMINI~1\AppData\Local\Temp\{092FBF8B-47E5-4B61-AD8E-8665B7A1BF59}\setup.exe -d "C:\Program Files\Google\Chrome\Application\37.0.2062.94" <==== ATTENTION
Task: {B2A92EA3-6BAC-40A2-A774-1FDFFD4B571D} - System32\Tasks\{034ACEC7-C6D0-4CFB-B5A5-B767750D395D} => C:\Windows\system32\pcalua.exe -a "C:\Program Files\CCleaner\CCleaner.exe" -d "C:\Program Files\CCleaner"
Task: {C2E2026A-7E5C-4FB5-A26C-32F3F6FD2A3C} - System32\Tasks\{0879E432-8A65-4276-89D9-CF481A819D7A} => C:\Program Files\AVAST Software\Avast\AvastUI.exe [2018-10-31] (AVAST Software)
Task: {C4CD9CF5-8B5C-4C79-BF1C-5AD1965CD693} - System32\Tasks\{CF88641E-E506-445C-B61D-3721218C0BC1} => C:\Windows\system32\pcalua.exe -a "C:\Program Files\BlueStacks\HD-RuntimeUninstaller.exe"
Task: {C713B8C9-A1D6-4E0A-95DF-2230CC9778B9} - System32\Tasks\Microsoft\Windows\Setup\EOSNotify => C:\Windows\system32\EOSNotify.exe [2016-06-25] (Microsoft Corporation)
Task: {C76CF19C-7FBC-46F0-8752-55CD9DE0AE46} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2017-09-12] (Adobe Systems Incorporated)
Task: {CCF43FFA-9321-4A9B-B85F-7C416138806D} - System32\Tasks\{F3AD127E-29AD-4E68-A788-A482F42B2DC3} => C:\Program Files\Photoshop CS5 Extended\App\PhotoshopCS5\Photoshop.exe [1999-12-31] (Adobe Systems, Incorporated)
Task: {D130628C-B374-44C4-AC35-F76DED2C10FE} - System32\Tasks\{804D9402-3356-4883-A5E9-D8C414ACFD85} => C:\Program Files\AVAST Software\Avast\AvastUI.exe [2018-10-31] (AVAST Software)
Task: {DBD52C78-41C0-4B1D-8510-F21EBEAC4E29} - System32\Tasks\{E2125401-71B2-426D-8007-26A924AD80C8} => C:\Program Files\Malwarebytes\Anti-Malware\mbam.exe [2018-09-14] (Malwarebytes)
Task: {E05F1D23-96BF-4CED-B294-669DF2E1845D} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [2018-10-18] (AVAST Software)
Task: {E3872216-3179-4560-A6E3-C6F8F239DA88} - System32\Tasks\{B5C2A12A-3924-41BA-98E5-B4826AB5E0BF} => C:\Windows\system32\pcalua.exe -a C:\Users\ADMINI~1\AppData\Local\Temp\jre-8u51-windows-au.exe -d "C:\Program Files\Common Files\Java\Java Update" -c /installmethod=jau FAMILYUPGRADE=1 <==== ATTENTION
Task: {E3B190EB-E9F5-45F0-90ED-83B6D27F1067} - System32\Tasks\{66791C1D-7BC9-4283-8A57-78DBBB388158} => C:\Windows\system32\pcalua.exe -a "E:\Documents\Desktop\=Todo=\juegos\Instaladores\Fifa 08\Crear Acceso Directo.exe" -d "E:\Documents\Desktop\=Todo=\juegos\Instaladores\Fifa 08"
Task: {E554D4E6-33AE-457A-8B47-2E9D11EFC04B} - System32\Tasks\{055EA2BE-3FFD-4CAC-8EA8-1E4B302BF699} => C:\Windows\system32\pcalua.exe -a C:\Users\ADMINI~1\AppData\Local\Temp\jre-8u121-windows-au.exe -d "C:\Program Files\Common Files\Java\Java Update" -c /installmethod=jau FAMILYUPGRADE=1 <==== ATTENTION
Task: {E6AE6A31-352F-40CE-968F-2E474336DFE9} - System32\Tasks\{F9B393FB-7F8B-4423-9164-6D02C906C6DE} => C:\Windows\system32\pcalua.exe -a "E:\Documents\Desktop\=Todo=\juegos\mvp caribe\MVP_Caribe_2013_1.0.exe" -d "E:\Documents\Desktop\=Todo=\juegos\mvp caribe"
Task: {EAE9FA5B-16E1-4D49-BE9A-26A645F4E062} - System32\Tasks\{04FDB65A-78C2-4458-804D-10D8B09DCBB6} => C:\Program Files\AVAST Software\Avast\AvastUI.exe [2018-10-31] (AVAST Software)
Task: {EE45E297-2479-41EF-9D67-AEF698ECCC04} - System32\Tasks\{CDDAF84D-7D61-489B-ABD1-E73128FF88B6} => C:\Program Files\Hi-Rez Studios\HiRezGames\Hand of the Gods\Tactics.exe
Task: {EF028A3F-191A-4339-B3A1-A3AC91541F1D} - System32\Tasks\{4CF995D6-9387-454D-9AE8-1F45B503C1AC} => C:\Windows\system32\pcalua.exe -a D:\setup.exe -d D:\
Task: {F0D4994C-3A9C-4332-88DC-EB1499F5E9B8} - System32\Tasks\{1E3A98D6-C95A-47BE-969E-4A8D5F542DF3} => C:\Program Files\Malwarebytes\Anti-Malware\mbam.exe [2018-09-14] (Malwarebytes)
Task: {F1BC8541-D83D-4E66-80A2-8CA2CD909B15} - System32\Tasks\AdobeFlashPlayerUpdate => C:\Windows\system32\FlashPlayerUpdateService.exe
Task: {F40A588B-0737-4B46-8421-8EB8D467FD6A} - System32\Tasks\{48DAF315-DBFD-4C0B-8CDC-00732D675B26} => C:\Program Files\AVAST Software\Avast\AvastUI.exe [2018-10-31] (AVAST Software)
Task: {FAEB765E-E00C-40C8-A66A-6FF05E768259} - System32\Tasks\Programa de actualización online de Primax Electronics => C:\Program Files\Common Files\Research In Motion\Auto Update\RIMAutoUpdate.exe
Task: {FE03ADB4-256C-4E86-9C77-71AF8667ECFD} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [2018-09-10] (Piriform Ltd)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
==================== Shortcuts & WMI ========================
(The entries could be listed to be restored or removed.)
ShortcutWithArgument: C:\Users\Administrador\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\69639df789022856\Google Chrome.lnk -> C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory="Profile 1"
==================== Loaded Modules (Whitelisted) ==============
2018-10-18 23:21 - 2018-10-18 23:21 - 000919256 _____ () C:\Program Files\AVAST Software\Avast\anen.dll
2018-10-18 23:21 - 2018-10-18 23:21 - 000598232 _____ () C:\Program Files\AVAST Software\Avast\streamback.dll
2018-11-18 13:46 - 2018-11-18 13:46 - 005724304 _____ () C:\Program Files\AVAST Software\Avast\defs\18111810\algo.dll
2018-10-18 23:21 - 2018-10-18 23:21 - 000496856 _____ () C:\Program Files\AVAST Software\Avast\gui_cache.dll
2018-10-18 23:21 - 2018-10-18 23:21 - 000150744 _____ () C:\Program Files\AVAST Software\Avast\hns_tools.dll
2018-10-18 23:21 - 2018-10-18 23:21 - 001112280 _____ () C:\Program Files\AVAST Software\Avast\shepherdsync.dll
2017-10-18 17:58 - 2017-10-18 17:58 - 000570368 _____ () C:\Users\Administrador\AppData\Local\MEGAsync\ShellExtX32.dll
2018-10-19 18:12 - 2018-10-19 18:12 - 067126928 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2018-02-07 13:47 - 2018-09-10 09:15 - 000095168 _____ () C:\Program Files\CCleaner\lang\lang-1034.dll
2018-10-18 20:15 - 2018-09-12 11:35 - 002230048 _____ () C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\SelfProtectionSdk.dll
2018-09-17 17:49 - 2018-09-15 04:48 - 004317528 _____ () C:\Program Files\Google\Chrome\Application\69.0.3497.100\libglesv2.dll
2018-09-17 17:49 - 2018-09-15 04:48 - 000096600 _____ () C:\Program Files\Google\Chrome\Application\69.0.3497.100\libegl.dll
==================== Alternate Data Streams (Whitelisted) =========
(If an entry is included in the fixlist, only the ADS will be removed.)
AlternateDataStreams: C:\Users\Administrador:Heroes & Generals [38]
AlternateDataStreams: C:\ProgramData\Temp:56E2E879 [118]
AlternateDataStreams: C:\ProgramData\Temp:AD022376 [146]
==================== Safe Mode (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" value will be restored.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\2FC04E79.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\2FC04E79.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
==================== Association (Whitelisted) ===============
(If an entry is included in the fixlist, the registry item will be restored to default or removed.)
==================== Internet Explorer trusted/restricted ===============
(If an entry is included in the fixlist, it will be removed from the registry.)
IE trusted site: HKU\.DEFAULT\...\clonewarsadventures.com -> clonewarsadventures.com
IE trusted site: HKU\.DEFAULT\...\freerealms.com -> freerealms.com
IE trusted site: HKU\.DEFAULT\...\soe.com -> soe.com
IE trusted site: HKU\.DEFAULT\...\sony.com -> sony.com
IE trusted site: HKU\S-1-5-19\...\clonewarsadventures.com -> clonewarsadventures.com
IE trusted site: HKU\S-1-5-19\...\freerealms.com -> freerealms.com
IE trusted site: HKU\S-1-5-19\...\soe.com -> soe.com
IE trusted site: HKU\S-1-5-19\...\sony.com -> sony.com
IE trusted site: HKU\S-1-5-20\...\clonewarsadventures.com -> clonewarsadventures.com
IE trusted site: HKU\S-1-5-20\...\freerealms.com -> freerealms.com
IE trusted site: HKU\S-1-5-20\...\soe.com -> soe.com
IE trusted site: HKU\S-1-5-20\...\sony.com -> sony.com
IE trusted site: HKU\S-1-5-21-2537466858-3879440399-1483233659-500\...\clonewarsadventures.com -> clonewarsadventures.com
IE trusted site: HKU\S-1-5-21-2537466858-3879440399-1483233659-500\...\freerealms.com -> freerealms.com
IE trusted site: HKU\S-1-5-21-2537466858-3879440399-1483233659-500\...\soe.com -> soe.com
IE trusted site: HKU\S-1-5-21-2537466858-3879440399-1483233659-500\...\sony.com -> sony.com
==================== Hosts content: ==========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2009-07-13 22:04 - 2018-11-15 17:09 - 000000223 _____ C:\Windows\system32\Drivers\etc\hosts
137.74.166.76 authserver.mojang.com
137.74.166.76 sessionserver.mojang.com
==================== Other Areas ============================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-2537466858-3879440399-1483233659-500\Control Panel\Desktop\\Wallpaper -> C:\Users\Administrador\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 8.8.8.8 - 8.8.4.4
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
If an entry is included in the fixlist, it will be removed.
MSCONFIG\Services: CLHNServiceForPowerDVD => 2
MSCONFIG\Services: CyberLink PowerDVD 11.0 Monitor Service => 3
MSCONFIG\Services: CyberLink PowerDVD 11.0 Service => 3
MSCONFIG\Services: MozillaMaintenance => 3
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^HP Digital Imaging Monitor.lnk => C:\Windows\pss\HP Digital Imaging Monitor.lnk.CommonStartup
MSCONFIG\startupreg: APSDaemon => "C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe"
MSCONFIG\startupreg: BlueStacks Agent => C:\Program Files\BlueStacks\HD-Agent.exe
MSCONFIG\startupreg: CCleaner Monitoring => "C:\Program Files\CCleaner\CCleaner.exe" /MONITOR
MSCONFIG\startupreg: CCleaner Smart Cleaning => "C:\Program Files\CCleaner\CCleaner.exe" /MONITOR
MSCONFIG\startupreg: CloudNet => "C:\Users\Administrador\AppData\Roaming\EpicNet Inc\CloudNet\cloudnet.exe" 31339
MSCONFIG\startupreg: RemoteControl11 => "C:\Program Files\CyberLink\PowerDVD11\PDVD11Serv.exe"
==================== FirewallRules (Whitelisted) ===============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [{CD75C294-E0BA-43D8-BDA1-12490E51F98C}] => (Allow) C:\Program Files\Windows Live\Messenger\wlcsdk.exe
FirewallRules: [{3D7D7490-FD28-45D9-9DBA-6E80C466C05D}] => (Allow) C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe
FirewallRules: [{FA57108B-0B47-410A-A941-F96D21013034}] => (Allow) C:\Program Files\Common Files\Apple\Apple Application Support\WebKit2WebProcess.exe
FirewallRules: [{1F089B20-FD13-4D18-8691-BA89F47E1734}] => (Allow) C:\Program Files\CyberLink\PowerDVD11\PowerDVD11.exe
FirewallRules: [{F057C9FC-37CD-4B6C-AD47-F0F3BE7A8C6B}] => (Allow) C:\Program Files\CyberLink\PowerDVD11\PDVD11Serv.exe
FirewallRules: [{634ABB2F-AA00-4926-A52B-8DBF63812F06}] => (Allow) C:\Program Files\CyberLink\PowerDVD11\Common\MediaServer\CLMSServer.exe
FirewallRules: [{694CCC0F-81D7-496E-A935-E865A547E94B}] => (Allow) C:\Program Files\CyberLink\PowerDVD11\Movie\PowerDVD Cinema\PowerDVDCinema11.exe
FirewallRules: [{159FD69B-E40E-4AE2-897B-2793D5964A21}] => (Allow) C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
FirewallRules: [{14F9DE19-AD27-46E7-95D3-942570950632}] => (Allow) C:\Windows\System32\PnkBstrA.exe
FirewallRules: [{0CAA3577-4F41-4A55-AC9C-02003EBB5733}] => (Allow) C:\Windows\System32\PnkBstrA.exe
FirewallRules: [{6608C97F-6BFF-4ECA-A556-78FF6FFB9151}] => (Allow) C:\Windows\System32\PnkBstrB.exe
FirewallRules: [{ECE5D2BC-B4F9-45EF-98B4-E95553ACDE01}] => (Allow) C:\Windows\System32\PnkBstrB.exe
FirewallRules: [{25F4D226-60FC-4BDB-9AC2-D538E27FADA1}] => (Allow) C:\Program Files\HP\HP Deskjet 2050 J510 series\Bin\USBSetup.exe
FirewallRules: [TCP Query User{E4FFE013-9076-4EA9-8D77-47F30E2EAA4F}C:\program files\counter-strike 1.6\hl.exe] => (Allow) C:\program files\counter-strike 1.6\hl.exe
FirewallRules: [UDP Query User{032C87C7-66BB-499E-8D27-42C130918E43}C:\program files\counter-strike 1.6\hl.exe] => (Allow) C:\program files\counter-strike 1.6\hl.exe
FirewallRules: [{209BE999-93EB-4818-A721-E242FE916670}] => (Allow) C:\Users\Administrador\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{3A64EE86-4BA8-432B-985D-DCF67128643C}] => (Allow) C:\Users\Administrador\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{CD578C88-760B-4FB1-B627-9A3DB5CFAA66}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{73A8DDF9-5EA6-4999-86B0-290DCCDA0119}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{6CA207B2-EE42-4518-84E3-4C557777F148}] => (Allow) C:\Users\Administrador\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{D8E17F3D-E582-40D5-9C9B-0F5EFBA31BED}] => (Allow) C:\Users\Administrador\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{9D9CE1F7-4F17-4EFB-AB8B-39A6E9A6BED2}] => (Allow) C:\Users\Administrador\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{8FAF719D-55F5-4AB9-96DF-1B6FF2AC83F6}] => (Allow) C:\Users\Administrador\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{350F4898-9BF7-44C6-A435-435EA82BB00D}] => (Allow) C:\Users\Administrador\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{AB31A2DF-32C0-444F-A88E-FA7B92171BA1}] => (Allow) C:\Users\Administrador\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [TCP Query User{03BEE95F-1950-419E-9602-E5200E5580DE}C:\program files\hi-rez studios\hirezgames\smite\binaries\win32\smite.exe] => (Allow) C:\program files\hi-rez studios\hirezgames\smite\binaries\win32\smite.exe
FirewallRules: [UDP Query User{2D50C306-3465-4C44-81F0-BA172E09A38C}C:\program files\hi-rez studios\hirezgames\smite\binaries\win32\smite.exe] => (Allow) C:\program files\hi-rez studios\hirezgames\smite\binaries\win32\smite.exe
FirewallRules: [{121B13CB-E205-460B-A8F5-EF061D47B71C}] => (Allow) C:\Program Files\KONAMI\Pro Evolution Soccer 2012\pes2012.exe
FirewallRules: [{37B4D879-84A6-4534-8B5C-285D03A6056B}] => (Allow) C:\Program Files\KONAMI\Pro Evolution Soccer 2012\pes2012.exe
FirewallRules: [{B26E4FBE-BB2E-4E85-8463-066074B59C24}] => (Allow) C:\Program Files\Steam\Steam.exe
FirewallRules: [{6AFC7D2C-2971-40F1-8E9A-7CB45A6D406C}] => (Allow) C:\Program Files\Steam\Steam.exe
FirewallRules: [{95ACFF47-7547-4925-AE50-F6E49C52FB1F}] => (Allow) C:\Program Files\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{0BE3CB57-3382-4383-9690-96112B24395C}] => (Allow) C:\Program Files\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{F90D1C9F-FF51-4868-A048-629FD13C9EB4}] => (Allow) C:\Program Files\Steam\steamapps\common\World of Tanks Blitz\wotblitz.exe
FirewallRules: [{BD80BA99-8263-4CDB-9684-507EA54198CB}] => (Allow) C:\Program Files\Steam\steamapps\common\World of Tanks Blitz\wotblitz.exe
FirewallRules: [TCP Query User{DDF6FA53-02CC-43BC-BE3B-8B9A429F7F86}C:\program files\microsoft games\halo custom edition\haloce.exe] => (Allow) C:\program files\microsoft games\halo custom edition\haloce.exe
FirewallRules: [UDP Query User{1998861F-5700-4D3C-94B2-09FABAD6DC1F}C:\program files\microsoft games\halo custom edition\haloce.exe] => (Allow) C:\program files\microsoft games\halo custom edition\haloce.exe
FirewallRules: [TCP Query User{3B7B77AD-5DC7-41F1-AA08-7829C48A9BF9}C:\Program Files\Steam\steamapps\common\america's army 3\Binaries\AA3Game.exe] => (Allow) C:\Program Files\Steam\steamapps\common\america's army 3\Binaries\AA3Game.exe
FirewallRules: [UDP Query User{306489DA-2107-4DC8-92B3-C7A939A76749}C:\Program Files\Steam\steamapps\common\america's army 3\Binaries\AA3Game.exe] => (Allow) C:\Program Files\Steam\steamapps\common\america's army 3\Binaries\AA3Game.exe
FirewallRules: [TCP Query User{E7E0F568-151A-4C57-95A1-1FCBBE5E22BD}C:\program files\steam\steamapps\common\smite\binaries\win32\smite.exe] => (Allow) C:\program files\steam\steamapps\common\smite\binaries\win32\smite.exe
FirewallRules: [UDP Query User{B67795F3-0C0D-40F4-8947-2DFFED68C91C}C:\program files\steam\steamapps\common\smite\binaries\win32\smite.exe] => (Allow) C:\program files\steam\steamapps\common\smite\binaries\win32\smite.exe
FirewallRules: [{E0B47FCE-85BD-460E-9084-20CEE764303B}] => (Allow) C:\Program Files\Steam\steamapps\common\Toribash\toribash.exe
FirewallRules: [{D293909B-2349-45C8-A178-23CCA388939F}] => (Allow) C:\Program Files\Steam\steamapps\common\Toribash\toribash.exe
FirewallRules: [TCP Query User{901DCB6D-6C83-413A-810E-4D39E166B374}E:\counter-strike 1.6\hl.exe] => (Allow) E:\counter-strike 1.6\hl.exe
FirewallRules: [UDP Query User{CC8C4AA7-ED60-4784-B615-0970161ED475}E:\counter-strike 1.6\hl.exe] => (Allow) E:\counter-strike 1.6\hl.exe
FirewallRules: [{4D51DAD6-1C76-43AE-88FA-B63586102BC6}] => (Allow) C:\Program Files\Steam\steamapps\common\Everlasting Summer\Everlasting Summer.exe
FirewallRules: [{7EFEE51B-A577-4D7A-9CF5-C613F9A0EF4F}] => (Allow) C:\Program Files\Steam\steamapps\common\Everlasting Summer\Everlasting Summer.exe
FirewallRules: [{4ADEF791-1E00-4C0E-AD6C-B8EE860D5199}] => (Allow) C:\Program Files\Steam\steamapps\common\BrainOut\bin\javaw.exe
FirewallRules: [{5A1F396D-A0DB-450F-8A14-C2D8216BB008}] => (Allow) C:\Program Files\Steam\steamapps\common\BrainOut\bin\javaw.exe
FirewallRules: [{AEB5B718-714F-488F-B0F6-EE669AD6687A}] => (Allow) C:\Program Files\Steam\steamapps\common\Brawlhalla\Brawlhalla.exe
FirewallRules: [{92B64F5F-8FE4-45ED-9854-02FB32B60325}] => (Allow) C:\Program Files\Steam\steamapps\common\Brawlhalla\Brawlhalla.exe
FirewallRules: [{2D792C6C-A700-4C4A-922B-C7CEDA7FB3AC}] => (Allow) C:\Program Files\Steam\steamapps\common\The Elder Scrolls Legends\The Elder Scrolls Legends.exe
FirewallRules: [{E3FE8989-91B8-4110-8993-64B3606C425B}] => (Allow) C:\Program Files\Steam\steamapps\common\The Elder Scrolls Legends\The Elder Scrolls Legends.exe
FirewallRules: [{B3D9B77A-8087-4AF4-8FD9-6F4C9CC2873E}] => (Allow) C:\Program Files\Steam\steamapps\common\Paladins\Binaries\Win32\HirezBridge.exe
FirewallRules: [{BAE58C14-A9B3-4D19-8D33-85A3099DE5E1}] => (Allow) C:\Program Files\Steam\steamapps\common\Paladins\Binaries\Win32\HirezBridge.exe
FirewallRules: [TCP Query User{38F242A5-96AA-4A10-9659-DF06EC3CD688}C:\program files\steam\steamapps\common\paladins\binaries\win32\paladins.exe] => (Allow) C:\program files\steam\steamapps\common\paladins\binaries\win32\paladins.exe
FirewallRules: [UDP Query User{68D1D492-F1B2-456B-9EF6-BD88A74C6EC1}C:\program files\steam\steamapps\common\paladins\binaries\win32\paladins.exe] => (Allow) C:\program files\steam\steamapps\common\paladins\binaries\win32\paladins.exe
FirewallRules: [TCP Query User{A438A875-4880-4E5A-93D9-011A24853150}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.160\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.160\deploy\leagueclient.exe
FirewallRules: [UDP Query User{6D9B3CDE-327B-4D17-BCE8-FAEE86364464}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.160\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.160\deploy\leagueclient.exe
FirewallRules: [{A8DD7995-A366-4D2A-A5CA-0F9812803281}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe
FirewallRules: [{83B00DAB-4C7E-49D5-85B8-EE35444FFEBD}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe
FirewallRules: [TCP Query User{F83A8386-D2C6-4065-B1A2-2F58F1B23D2C}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.162\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.162\deploy\leagueclient.exe
FirewallRules: [UDP Query User{0C19E724-6024-4050-992D-1683C220C226}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.162\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.162\deploy\leagueclient.exe
FirewallRules: [TCP Query User{A4E8773A-E03B-4EDB-B863-A5D64EA5526F}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.163\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.163\deploy\leagueclient.exe
FirewallRules: [UDP Query User{D3FC31FC-74DB-4B96-A2EB-5741EAC982AC}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.163\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.163\deploy\leagueclient.exe
FirewallRules: [{25F78BB6-77A3-4117-990D-CA0A69B3A464}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe
FirewallRules: [TCP Query User{E4CCA09D-3814-4214-B156-4E976ACDC4C1}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.164\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.164\deploy\leagueclient.exe
FirewallRules: [UDP Query User{BEA47117-D9C6-4F23-BA19-87BE6CB0077B}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.164\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.164\deploy\leagueclient.exe
FirewallRules: [TCP Query User{1DF34218-68C8-40CC-971E-7776569E79B9}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.165\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.165\deploy\leagueclient.exe
FirewallRules: [UDP Query User{5569F88E-08B7-4CD7-ABAF-D9FDE3B05F7F}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.165\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.165\deploy\leagueclient.exe
FirewallRules: [TCP Query User{80E6E5D5-B909-4325-9F74-4DCAC231F0E8}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.166\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.166\deploy\leagueclient.exe
FirewallRules: [UDP Query User{6B8871EB-FFEC-4345-8D70-DAF11D590F18}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.166\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.166\deploy\leagueclient.exe
FirewallRules: [TCP Query User{6C13E533-7F0C-4D20-916D-57CFBA4EF26A}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.168\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.168\deploy\leagueclient.exe
FirewallRules: [UDP Query User{EA0E7EAA-D2E8-475A-B3FE-C8A2AE82607E}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.168\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.168\deploy\leagueclient.exe
FirewallRules: [TCP Query User{7EF8A234-F1B5-432F-92F9-4995C8D8458B}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.169\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.169\deploy\leagueclient.exe
FirewallRules: [UDP Query User{FB1BDAE3-E3A3-41F3-ACED-D4B06CE8AAC8}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.169\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.169\deploy\leagueclient.exe
FirewallRules: [TCP Query User{552B3B2F-80C8-49D0-B69E-D7C1BAB2B3DD}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.170\deploy\leagueclient.exe] => (Block) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.170\deploy\leagueclient.exe
FirewallRules: [UDP Query User{C691E957-CB91-44D3-B510-D1D3B1FF0BAE}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.170\deploy\leagueclient.exe] => (Block) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.170\deploy\leagueclient.exe
FirewallRules: [{215705B2-C696-45CB-876D-7EB04CB922F6}] => (Allow) C:\Program Files\Steam\steamapps\common\CSNZ\Bin\cstrike-online.exe
FirewallRules: [{2E518B44-AA91-4546-AAAC-74C18901FB48}] => (Allow) C:\Program Files\Steam\steamapps\common\CSNZ\Bin\cstrike-online.exe
FirewallRules: [{DD2C6506-9C4C-4705-A1D0-C697BAC9BA43}] => (Allow) C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe
FirewallRules: [{3D52AFFE-944C-4F01-A90C-0507737DFFCB}] => (Allow) C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe
FirewallRules: [{EE7BA6BC-3324-4854-944E-0C3380E4C6A6}] => (Allow) C:\Riot Games\League of Legends\LeagueClient.exe
FirewallRules: [{93BCCD34-4251-423C-8903-25C675EB63AF}] => (Allow) C:\Riot Games\League of Legends\LeagueClient.exe
FirewallRules: [{710843D0-5505-43AA-B942-060AE36AC0B9}] => (Allow) C:\Program Files\Steam\steamapps\common\Booty Calls\BootyCalls.exe
FirewallRules: [{D3427FA0-F96D-483E-9231-274C1C1D3F92}] => (Allow) C:\Program Files\Steam\steamapps\common\Booty Calls\BootyCalls.exe
FirewallRules: [TCP Query User{3F18D477-336F-4394-AA2D-31F855C4740A}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.171\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.171\deploy\leagueclient.exe
FirewallRules: [UDP Query User{9D1FAE54-FB83-4FBD-8B0E-69310A397DF4}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.171\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.171\deploy\leagueclient.exe
FirewallRules: [TCP Query User{BCF07466-A326-49C2-A01B-2038343996A1}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.172\deploy\leagueclient.exe] => (Block) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.172\deploy\leagueclient.exe
FirewallRules: [UDP Query User{9EA75710-2546-4D85-A08D-065087270864}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.172\deploy\leagueclient.exe] => (Block) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.172\deploy\leagueclient.exe
FirewallRules: [{ACC217AC-614D-4317-AF32-23BBFAD71FC3}] => (Allow) C:\Program Files\Steam\steamapps\common\Conflict of Nations\Conflict of Nations.exe
FirewallRules: [{E2B6175A-BF76-4077-AFF3-3A8D4806F667}] => (Allow) C:\Program Files\Steam\steamapps\common\Conflict of Nations\Conflict of Nations.exe
FirewallRules: [{8167E5F3-2375-4A62-A2B9-D4307A144382}] => (Allow) C:\Program Files\Steam\steamapps\common\Paladins\Binaries\Win32\PaladinsEAC.exe
FirewallRules: [{88F763BA-B0B6-46EA-BCE5-09E56306C449}] => (Allow) C:\Program Files\Steam\steamapps\common\Paladins\Binaries\Win32\PaladinsEAC.exe
==================== Restore Points =========================
07-11-2018 15:30:24 Punto de control programado
14-11-2018 20:29:48 Punto de control programado
==================== Faulty Device Manager Devices =============
==================== Event log errors: =========================
==================== End of Addition.txt ============================Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 15.11.2018
Ran by Administrador (administrator) on PC-JOAQUIN (18-11-2018 19:48:45)
Running from E:\Documents\Desktop\=Todo=\Instaladores
Loaded Profiles: Administrador (Available Profiles: UpdatusUser & Administrador)
Platform: Microsoft Windows 7 Ultimate Service Pack 1 (X86) Language: Español (España, internacional)
Internet Explorer Version 9 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe
(Macrovision Corporation) C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\aswidsagent.exe
(Microsoft Corporation) C:\Windows\System32\wbem\unsecapp.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
==================== Registry (Whitelisted) ===========================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [RunDLLEntry] => C:\Windows\system32\RunDLL32.exe C:\Windows\system32\AmbRunE.dll,RunDLLEntry
HKLM\...\Run: [] => [X]
HKLM\...\Run: [CTSyncService] => C:\Program Files\InstallShield Installation Information\{F3D9AC82-30F4-4BB9-B9AB-8697637568C1}\AMBSPISyncService.exe /StartRunKey
HKLM\...\Run: [RoxWatchTray] => C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxWatchTray9.exe [236016 2009-07-08] (Sonic Solutions)
HKLM\...\Run: [ShadowPlay] => C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap.dll,ShadowPlayOnSystemStart****************************************************************************************** (the data entry has 65 more characters).
HKLM\...\Run: [VolPanel] => C:\Program Files\Creative\SB X-Fi MB\Volume Panel\VolPanlu.exe [241789 2009-05-04] (Creative Technology Ltd)
HKLM\...\Run: [HDAudDeck] => C:\Program Files\VIA\VIAudioi\VDeck\VDeck.exe [1681408 2009-09-21] (VIA)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [242392 2018-10-19] (AVAST Software)
HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [601424 2018-10-06] (Oracle Corporation)
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-2537466858-3879440399-1483233659-500\...\Run: [ISUSPM] => C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe [206112 2008-10-24] (Macrovision Corporation)
HKU\S-1-5-21-2537466858-3879440399-1483233659-500\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner.exe [13797712 2018-09-10] (Piriform Ltd)
HKU\S-1-5-21-2537466858-3879440399-1483233659-500\...\Policies\Explorer: [NoAutoUpdate] 1
HKU\S-1-5-21-2537466858-3879440399-1483233659-500\...\MountPoints2: H - H:\Setup.exe
HKU\S-1-5-21-2537466858-3879440399-1483233659-500\...\MountPoints2: {06ec0137-cbf3-11e6-a224-002522ecafc0} - H:\Setup.exe
HKU\S-1-5-21-2537466858-3879440399-1483233659-500\...\MountPoints2: {48ff3498-765c-11e3-aba2-002522ecafc0} - G:\Autorun.exe
HKU\S-1-5-21-2537466858-3879440399-1483233659-500\...\MountPoints2: {515d6b07-0d50-11e6-a856-002522ecafc0} - H:\AutoRun.exe
HKU\S-1-5-21-2537466858-3879440399-1483233659-500\...\MountPoints2: {a63db0ea-0933-11e4-9fda-002522ecafc0} - F:\autorun.exe
HKU\S-1-5-21-2537466858-3879440399-1483233659-500\...\MountPoints2: {c85470ee-399d-11e6-9ccf-002522ecafc0} - C:\Windows\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL H:\Install.bat
Startup: C:\Users\Administrador\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Supervisar alertas de tinta - .lnk [2015-03-27]
ShortcutTarget: Supervisar alertas de tinta - .lnk -> C:\Program Files\HP\HP Deskjet 2050 J510 series\Bin\HPStatusBL.dll (Hewlett-Packard Co.)
Startup: C:\Users\Administrador\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Supervisar alertas de tinta - HP Deskjet 2050 J510 series.lnk [2018-11-18]
ShortcutTarget: Supervisar alertas de tinta - HP Deskjet 2050 J510 series.lnk -> C:\Program Files\HP\HP Deskjet 2050 J510 series\Bin\HPStatusBL.dll (Hewlett-Packard Co.)
GroupPolicy: Restriction ? <==== ATTENTION
GroupPolicy\User: Restriction ? <==== ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 8.8.8.8 4.4.4.4
Tcpip\..\Interfaces\{F98536A4-F2E8-4B57-AFEF-28575F0BAD40}: [NameServer] 8.8.8.8,8.8.4.4
Tcpip\..\Interfaces\{F98536A4-F2E8-4B57-AFEF-28575F0BAD40}: [DhcpNameServer] 8.8.8.8 4.4.4.4
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = www.google.com
HKU\S-1-5-21-2537466858-3879440399-1483233659-500\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://latam.msn.com/?ocid=iehp
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-2537466858-3879440399-1483233659-500 -> DefaultScope {9C162588-8D78-4aee-BE4F-25C87D447523} URL = hxxp://www.google.com/custom?client=pub-3794288947762788&forid=1&channel=5480255188&ie=UTF-8&oe=UTF-8&safe=active&cof=GALT%3A%23008000%3BGL%3A1%3BDIV%3A%23336699%3BVLC%3A663399%3BAH%3Acenter%3BBGC%3AFFFFFF%3BLBGC%3A336699%3BALC%3A0000FF%3BLC%3A0000FF%3BT%3A000000%3BGFNT%3A0000FF%3BGIMP%3A0000FF%3BFORID%3A1&hl=es&q={searchTerms}
SearchScopes: HKU\S-1-5-21-2537466858-3879440399-1483233659-500 -> {9C162588-8D78-4aee-BE4F-25C87D447523} URL = hxxp://www.google.com/custom?client=pub-3794288947762788&forid=1&channel=5480255188&ie=UTF-8&oe=UTF-8&safe=active&cof=GALT%3A%23008000%3BGL%3A1%3BDIV%3A%23336699%3BVLC%3A663399%3BAH%3Acenter%3BBGC%3AFFFFFF%3BLBGC%3A336699%3BALC%3A0000FF%3BLC%3A0000FF%3BT%3A000000%3BGFNT%3A0000FF%3BGIMP%3A0000FF%3BFORID%3A1&hl=es&q={searchTerms}
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_191\bin\ssv.dll [2018-10-29] (Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_191\bin\jp2ssv.dll [2018-10-29] (Oracle Corporation)
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - No File
StartMenuInternet: IEXPLORE.EXE - iexplore.exe
FireFox:
========
FF ProfilePath: C:\Users\Administrador\AppData\Roaming\Mozilla\Firefox\Profiles\ksxn0588.default [2018-11-18]
FF Homepage: Mozilla\Firefox\Profiles\ksxn0588.default -> hxxps://www.google.co.ve
FF Extension: (Avast SafePrice) - C:\Users\Administrador\AppData\Roaming\Mozilla\Firefox\Profiles\ksxn0588.default\Extensions\[email protected] [2018-10-18]
FF Extension: (Avast Online Security) - C:\Users\Administrador\AppData\Roaming\Mozilla\Firefox\Profiles\ksxn0588.default\Extensions\[email protected] [2018-10-18]
FF HKLM\...\Firefox\Extensions: [[email protected]] - C:\Program Files\Soda PDF 3D Reader\resources\soda3dreaderfirefoxextension => not found
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF32_27_0_0_130.dll [2017-09-12] ()
FF Plugin: @adobe.com/ShockwavePlayer -> C:\Windows\system32\Adobe\Director\np32dsw_1224194.dll [2016-02-19] (Adobe Systems, Inc.)
FF Plugin: @java.com/DTPlugin,version=11.191.2 -> C:\Program Files\Java\jre1.8.0_191\bin\dtplugin\npDeployJava1.dll [2018-10-29] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.191.2 -> C:\Program Files\Java\jre1.8.0_191\bin\plugin2\npjp2.dll [2018-10-29] (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] ( Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=14.0.8064.0206 -> C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll [2009-02-06] (Microsoft Corporation)
FF Plugin: @raidcall.en/RCplugin -> C:\Users\Administrador\AppData\Roaming\raidcall\plugins\nprcplugin.dll [No File]
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.33.17\npGoogleUpdate3.dll [2018-07-21] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.33.17\npGoogleUpdate3.dll [2018-07-21] (Google Inc.)
FF Plugin: @videolan.org/vlc,version=2.0.5 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2012-12-12] (VideoLAN)
FF Plugin HKU\S-1-5-21-2537466858-3879440399-1483233659-500: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Administrador\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2015-11-06] (Unity Technologies ApS)
Chrome:
=======
CHR DefaultProfile: Profile 1
CHR Profile: C:\Users\Administrador\AppData\Local\Google\Chrome\User Data\Guest Profile [2018-11-08]
CHR Profile: C:\Users\Administrador\AppData\Local\Google\Chrome\User Data\Profile 1 [2018-11-18]
CHR Extension: (AdBlock) - C:\Users\Administrador\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2018-10-20]
CHR Extension: (Morpheon Dark) - C:\Users\Administrador\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\mafbdhjdkjnoafhfelkjpchpaepjknad [2018-10-20]
CHR Extension: (Sistema de pagos de Chrome Web Store) - C:\Users\Administrador\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-10-20]
CHR Extension: (Chrome Media Router) - C:\Users\Administrador\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2018-10-20]
CHR Profile: C:\Users\Administrador\AppData\Local\Google\Chrome\User Data\System Profile [2018-11-08]
CHR HKLM\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - hxxps://clients2.google.com/service/update2/crx
==================== Services (Whitelisted) ====================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [6800144 2018-10-18] (AVAST Software)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [325024 2018-10-18] (AVAST Software)
S3 BEService; C:\Program Files\Common Files\BattlEye\BEService.exe [5520184 2018-07-26] ()
S4 CLHNServiceForPowerDVD; C:\Program Files\CyberLink\PowerDVD11\Kernel\DMP\CLHNServiceForPowerDVD.exe [83240 2011-04-19] ()
S3 Creative ALchemy AL6 Licensing Service; C:\Program Files\Common Files\Creative Labs Shared\Service\AL6Licensing.exe [79360 2012-11-22] (Creative Labs) [File not signed]
S3 Creative Audio Engine Licensing Service; C:\Program Files\Common Files\Creative Labs Shared\Service\CTAELicensing.exe [79360 2012-11-22] (Creative Labs) [File not signed]
S4 CyberLink PowerDVD 11.0 Monitor Service; C:\Program Files\CyberLink\PowerDVD11\Common\MediaServer\CLMSMonitorService.exe [70952 2011-03-31] (CyberLink)
S4 CyberLink PowerDVD 11.0 Service; C:\Program Files\CyberLink\PowerDVD11\Common\MediaServer\CLMSServer.exe [312616 2011-03-31] (CyberLink)
S3 EasyAntiCheat; C:\Program Files\EasyAntiCheat\EasyAntiCheat.exe [780928 2018-08-09] (EasyAntiCheat Ltd)
S3 HiPatchService; C:\Program Files\Hi-Rez Studios\HiPatchService.exe [9728 2018-06-11] (Hi-Rez Studios) [File not signed]
R3 hpqcxs08; C:\Program Files\HP\Digital Imaging\bin\hpqcxs08.dll [225280 2007-01-20] (Hewlett-Packard Co.) [File not signed]
R2 hpqddsvc; C:\Program Files\HP\Digital Imaging\bin\hpqddsvc.dll [131072 2007-01-20] (Hewlett-Packard Co.) [File not signed]
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [5073376 2018-09-19] (Malwarebytes)
S3 mracsvc; C:\Windows\System32\mracsvc.exe [5508824 2018-03-07] (LLC Mail.Ru)
R2 Net Driver HPZ12; C:\Windows\system32\HPZinw12.dll [43520 2006-11-08] (Hewlett-Packard) [File not signed]
R2 Pml Driver HPZ12; C:\Windows\system32\HPZipm12.dll [53248 2006-11-08] (Hewlett-Packard) [File not signed]
S3 UDisk Monitor Driver; C:\Program Files\Froyo_Android_Driver\Bin\MonServiceUDisk.exe [577536 2012-09-29] () [File not signed]
S4 VIAKaraokeService; C:\Windows\system32\viakaraokesrv.exe [27768 2016-11-14] (VIA Technologies, Inc.)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [680960 2013-05-27] (Microsoft Corporation)
S2 MDM; "C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe" [X]
===================== Drivers (Whitelisted) ======================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R0 2FC04E79; C:\Windows\System32\drivers\2FC04E79.sys [153784 2016-08-17] (Kaspersky Lab ZAO)
R1 aswArPot; C:\Windows\System32\drivers\aswArPot.sys [167648 2018-10-18] (AVAST Software)
R1 aswbidsdriver; C:\Windows\System32\drivers\aswbidsdriverx.sys [188952 2018-10-18] (AVAST Software)
R0 aswbidsh; C:\Windows\System32\drivers\aswbidshx.sys [165552 2018-10-18] (AVAST Software)
R0 aswblog; C:\Windows\System32\drivers\aswblogx.sys [284424 2018-10-18] (AVAST Software)
R0 aswbuniv; C:\Windows\System32\drivers\aswbunivx.sys [58072 2018-10-18] (AVAST Software)
R1 aswHdsKe; C:\Windows\System32\drivers\aswHdsKe.sys [139008 2018-10-18] (AVAST Software)
S3 aswHwid; C:\Windows\System32\drivers\aswHwid.sys [42912 2018-10-18] (AVAST Software)
R1 aswKbd; C:\Windows\System32\drivers\aswKbd.sys [40864 2018-10-18] (AVAST Software)
R2 aswMonFlt; C:\Windows\System32\drivers\aswMonFlt.sys [135368 2018-10-18] (AVAST Software)
R1 aswRdr; C:\Windows\System32\drivers\aswRdr2.sys [101152 2018-10-18] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\drivers\aswRvrt.sys [72968 2018-10-18] (AVAST Software)
R1 aswSnx; C:\Windows\System32\drivers\aswSnx.sys [784728 2018-10-18] (AVAST Software)
R1 aswSP; C:\Windows\System32\drivers\aswSP.sys [397136 2018-10-18] (AVAST Software)
R2 aswStm; C:\Windows\System32\drivers\aswStm.sys [157112 2018-10-18] (AVAST Software)
R0 aswVmm; C:\Windows\System32\drivers\aswVmm.sys [310880 2018-10-18] (AVAST Software)
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [243128 2014-06-08] (Disc Soft Ltd)
S3 Generalusbserialser20679; C:\Windows\System32\DRIVERS\CT_U_USBSER.sys [108544 2011-05-24] (Incorporated)
R2 giveio; C:\Windows\system32\giveio.sys [5248 1996-04-03] () [File not signed]
S3 hamachi; C:\Windows\System32\DRIVERS\hamachi.sys [27040 2015-11-12] (LogMeIn, Inc.)
R1 HWiNFO32; C:\Windows\system32\drivers\HWiNFO32.SYS [23840 2016-11-14] (REALiX(tm))
R3 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [229472 2018-11-18] (Malwarebytes)
R2 ntk_PowerDVD; C:\Program Files\CyberLink\PowerDVD11\Kernel\DMP\ntk_PowerDVD.sys [71664 2011-04-19] (Cyberlink Corp.)
S3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad32v.sys [50752 2016-03-21] (NVIDIA Corporation)
R2 speedfan; C:\Windows\system32\speedfan.sys [24184 2012-12-29] (Almico Software)
R0 sptd; C:\Windows\System32\Drivers\sptd.sys [320120 2014-06-07] (Duplex Secure Ltd.)
S3 tap0901; C:\Windows\System32\DRIVERS\tap0901.sys [35088 2013-04-30] (The OpenVPN Project)
R3 VIAHdAudAddService; C:\Windows\System32\drivers\viahduaa.sys [1086976 2009-09-17] (VIA Technologies, Inc.)
R2 {329F96B6-DF1E-4328-BFDA-39EA953C1312}; C:\Program Files\CyberLink\PowerDVD11\Common\NavFilter\000.fcl [77296 2011-04-12] (CyberLink Corp.)
U3 aa39dpkl; C:\Windows\system32\Drivers\aa39dpkl.sys [0 ] (Advanced Micro Devices) <==== ATTENTION (zero byte File/Folder)
S1 imkahnvx; \??\C:\Windows\system32\drivers\imkahnvx.sys [X]
S3 Movilnet; system32\DRIVERS\movilnetusbser.sys [X]
S3 mracdrv; \SystemRoot\System32\drivers\mracdrv.sys [X]
S3 RimUsb; System32\Drivers\RimUsb.sys [X]
S3 Synth3dVsc; System32\drivers\synth3dvsc.sys [X]
S3 tsusbhub; system32\drivers\tsusbhub.sys [X]
S3 VGPU; System32\drivers\rdvgkmd.sys [X]
S3 WinRing0_1_2_0; \??\C:\Program Files\IObit\Game Booster 3\Driver\WinRing0.sys [X]
S3 XDva405; \??\C:\Windows\system32\XDva405.sys [X]
S3 XDva407; \??\C:\Windows\system32\XDva407.sys [X]
S3 XDva409; \??\C:\Windows\system32\XDva409.sys [X]
S3 XDva424; \??\C:\Windows\system32\XDva424.sys [X]
S3 XDva535; \??\C:\Windows\system32\XDva535.sys [X]
S3 xhunter1; \??\C:\Windows\xhunter1.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2018-11-18 19:48 - 2018-11-18 19:48 - 000000000 ____D C:\FRST
2018-11-18 19:10 - 2018-11-18 19:10 - 000229472 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamswissarmy.sys
2018-11-16 12:00 - 2018-11-16 12:00 - 000135216 _____ C:\Windows\Minidump\111618-14375-01.dmp
2018-11-15 21:50 - 2018-11-15 21:50 - 000167976 _____ C:\Windows\Minidump\111518-13500-01.dmp
2018-11-15 21:25 - 2018-11-15 21:25 - 000131072 _____ C:\Windows\Minidump\111518-13765-01.dmp
2018-11-14 23:32 - 2018-11-14 23:32 - 000135216 _____ C:\Windows\Minidump\111418-13281-01.dmp
2018-11-13 19:57 - 2018-11-13 19:57 - 000157672 _____ C:\Windows\Minidump\111318-19062-01.dmp
2018-11-13 17:11 - 2018-11-13 17:11 - 000000000 ____D C:\Users\Administrador\AppData\LocalLow\Bethesda Softworks LLC
2018-11-12 12:51 - 2018-11-12 12:51 - 000131072 _____ C:\Windows\Minidump\111218-17359-01.dmp
2018-11-11 22:39 - 2018-11-11 22:39 - 000165824 _____ C:\Windows\Minidump\111118-17968-01.dmp
2018-11-11 11:32 - 2018-11-11 11:32 - 000162512 _____ C:\Windows\Minidump\111118-17609-01.dmp
2018-11-10 17:27 - 2018-11-10 17:27 - 000157608 _____ C:\Windows\Minidump\111018-17796-01.dmp
2018-11-10 10:31 - 2018-11-10 10:31 - 000135216 _____ C:\Windows\Minidump\111018-17187-01.dmp
2018-11-09 23:00 - 2018-11-18 13:43 - 197090509 _____ C:\Windows\MEMORY.DMP
2018-11-09 23:00 - 2018-11-09 23:00 - 000131072 _____ C:\Windows\Minidump\110918-17125-01.dmp
2018-11-08 18:55 - 2018-11-08 18:55 - 000000000 ____D C:\Users\Administrador\AppData\Local\ElevatedDiagnostics
2018-11-03 00:50 - 2018-11-03 00:50 - 000000000 _____ C:\Users\Administrador\.l
2018-11-01 18:06 - 2018-11-01 18:06 - 000000000 ____D C:\Users\Administrador\AppData\LocalLow\3X Entertainment
2018-10-31 17:02 - 2018-10-18 23:21 - 000323288 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2018-10-29 22:24 - 2018-10-29 22:24 - 000000000 ____D C:\Program Files\Common Files\Oracle
2018-10-20 12:00 - 2018-10-20 12:00 - 000000000 ____D C:\Users\Administrador\AppData\Roaming\Google
2018-10-19 22:38 - 2018-10-19 22:38 - 000222648 _____ (Malwarebytes) C:\Windows\system32\Drivers\373103DC.sys
2018-10-19 22:28 - 2018-10-20 00:30 - 000000000 ____D C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2018-10-19 22:28 - 2018-10-19 22:28 - 000166848 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamchameleon.sys
2018-10-19 18:12 - 2018-10-19 18:12 - 000000000 ____D C:\Users\Administrador\AppData\Roaming\AVAST Software
2018-10-19 18:12 - 2018-10-19 18:12 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVAST Software
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2018-11-18 19:15 - 2009-07-14 00:34 - 000014192 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2018-11-18 19:15 - 2009-07-14 00:34 - 000014192 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2018-11-18 19:10 - 2018-03-25 21:18 - 000000000 ____D C:\Users\Administrador\AppData\Local\AVAST Software
2018-11-18 19:10 - 2009-07-14 00:53 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2018-11-18 13:44 - 2013-06-29 01:56 - 000000000 ____D C:\Windows\Minidump
2018-11-14 22:49 - 2018-05-13 00:26 - 000000000 ____D C:\Program Files\Steam
2018-11-14 19:51 - 2016-11-28 09:18 - 000000000 ____D C:\Users\Administrador\AppData\LocalLow\Mozilla
2018-11-13 15:48 - 2012-11-22 21:37 - 000331698 _____ C:\Windows\system32\PerfStringBackup.INI
2018-11-13 15:48 - 2009-07-14 04:48 - 000014768 _____ C:\Windows\system32\perfh00A.dat
2018-11-13 15:48 - 2009-07-14 04:48 - 000004966 _____ C:\Windows\system32\perfc00A.dat
2018-11-13 15:48 - 2009-07-13 22:37 - 000000000 ____D C:\Windows\inf
2018-11-11 22:16 - 2014-06-01 17:34 - 000007598 _____ C:\Users\Administrador\AppData\Local\Resmon.ResmonCfg
2018-11-08 18:55 - 2009-07-13 22:37 - 000000000 ____D C:\Windows\system32\NDF
2018-11-07 18:03 - 2018-07-24 22:12 - 000000000 ____D C:\Users\Administrador\BrawlhallaReplays
2018-11-04 15:41 - 2013-02-21 18:57 - 000000000 ____D C:\Users\Administrador\AppData\Local\CrashDumps
2018-11-03 09:18 - 2009-07-14 00:53 - 000032630 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2018-11-03 01:50 - 2014-06-25 09:44 - 000000000 ____D C:\Users\Administrador\AppData\Local\Adobe
2018-11-03 01:39 - 2013-02-14 20:27 - 000000000 ____D C:\Program Files\Common Files\Adobe
2018-11-03 01:39 - 2012-11-22 22:01 - 000000000 ____D C:\Program Files\Adobe
2018-11-03 00:50 - 2013-02-14 21:12 - 000000000 ____D C:\Users\Administrador
2018-11-01 18:07 - 2013-02-19 18:13 - 000000000 ____D C:\Users\Administrador\AppData\LocalLow\Unity
2018-10-31 11:56 - 2018-02-09 15:23 - 000000000 ____D C:\Users\UpdatusUser
2018-10-31 11:56 - 2009-07-13 22:37 - 000000000 ____D C:\Windows\registration
2018-10-29 22:24 - 2016-10-07 17:49 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2018-10-29 22:24 - 2016-07-14 20:12 - 000000000 ____D C:\Program Files\Java
2018-10-29 22:22 - 2016-10-07 17:49 - 000096632 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge.dll
2018-10-19 22:38 - 2018-10-18 20:15 - 000000000 ____D C:\ProgramData\Malwarebytes
2018-10-19 15:14 - 2018-10-15 14:47 - 000000000 ____D C:\ProgramData\AVAST Software
2018-10-19 13:32 - 2018-10-17 01:18 - 000000000 ___HD C:\Windows\rss
==================== Files in the root of some directories =======
2016-10-08 12:44 - 2016-08-09 12:44 - 000000032 ____R () C:\ProgramData\hash.dat
2013-03-26 23:08 - 2013-03-26 23:04 - 000000043 _____ () C:\Program Files\autorun.inf
2016-07-02 20:24 - 2016-07-02 20:24 - 000000048 ____H () C:\Program Files\kfq45orm2t.dat
2018-03-29 21:08 - 2018-04-09 00:43 - 000000097 _____ () C:\Users\Administrador\AppData\Roaming\LauncherSettings_live.cfg
2014-07-19 03:42 - 2018-05-29 13:22 - 000138056 _____ () C:\Users\Administrador\AppData\Roaming\PnkBstrK.sys
2018-03-29 21:47 - 2018-03-30 13:09 - 000000045 _____ () C:\Users\Administrador\AppData\Roaming\TheHunterSettings_steam_live.cfg
2015-04-05 14:20 - 2015-04-05 14:20 - 000022923 _____ () C:\Users\Administrador\AppData\Roaming\UserTile.png
2014-06-21 22:18 - 2016-06-29 22:32 - 000000161 _____ () C:\Users\Administrador\AppData\Roaming\WB.CFG
2013-08-30 20:58 - 2013-08-30 21:01 - 145762520 _____ () C:\Users\Administrador\AppData\Local\ACCCx2_1_1_220.zip.aamdownload
2013-08-30 20:58 - 2013-08-30 21:01 - 000001817 _____ () C:\Users\Administrador\AppData\Local\ACCCx2_1_1_220.zip.aamdownload.aamd
2014-06-01 17:34 - 2018-11-11 22:16 - 000007598 _____ () C:\Users\Administrador\AppData\Local\Resmon.ResmonCfg
2017-03-12 13:03 - 2017-03-12 13:03 - 000000000 _____ () C:\Users\Administrador\AppData\Local\rx_image.Cache
2018-08-19 10:46 - 2018-08-19 10:46 - 000000000 _____ () C:\Users\Administrador\AppData\Local\{5A6558F1-ED49-4FF8-B21F-74DDC7A648BC}
2018-05-12 12:19 - 2018-05-12 12:19 - 000000000 _____ () C:\Users\Administrador\AppData\Local\{B09C0C11-67A7-41F6-9304-1C3231EE3BE8}
==================== Bamital & volsnap ======================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2018-11-14 02:55
==================== End of FRST.txt ============================Bien… y ahora sigue estos pasos, MUY Importante ~ Realiza una copia de seguridad del registro :
Para hacerlo descarga Delfix en tu escritorio.
Doble clic para ejecutarlo.(Si usas Windows Vista/7/8 o 10 presiona clic derecho y selecciona "Ejecutar como Administrador.")
Atención, ahora marca/selecciona únicamente la casilla "Create registry backup", las demás NO
Pulsar en Run.
Se abrirá el informe (DelFix.txt), guárdalo por si fuera necesario y cierra la herramienta.
En el equipo con los demas programas cerrados:
Inicio >>> Ejecutar >>>Escribes notepad.exe.
Ahora copia y pega estos archivos dentro del Notepad:
Start
CreateRestorePoint:
CloseProcesses:
HKLM\...\Run: [] => [X]
HKU\S-1-5-21-2537466858-3879440399-1483233659-500\...\MountPoints2: H - H:\Setup.exe
HKU\S-1-5-21-2537466858-3879440399-1483233659-500\...\MountPoints2: {06ec0137-cbf3-11e6-a224-002522ecafc0} - H:\Setup.exe
HKU\S-1-5-21-2537466858-3879440399-1483233659-500\...\MountPoints2: {48ff3498-765c-11e3-aba2-002522ecafc0} - G:\Autorun.exe
HKU\S-1-5-21-2537466858-3879440399-1483233659-500\...\MountPoints2: {515d6b07-0d50-11e6-a856-002522ecafc0} - H:\AutoRun.exe
HKU\S-1-5-21-2537466858-3879440399-1483233659-500\...\MountPoints2: {a63db0ea-0933-11e4-9fda-002522ecafc0} - F:\autorun.exe
HKU\S-1-5-21-2537466858-3879440399-1483233659-500\...\MountPoints2: {c85470ee-399d-11e6-9ccf-002522ecafc0} - C:\Windows\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL H:\Install.bat
GroupPolicy: Restriction ? <==== ATTENTION
GroupPolicy\User: Restriction ? <==== ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - No File
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
S2 MDM; "C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe" [X]
S1 imkahnvx; \??\C:\Windows\system32\drivers\imkahnvx.sys [X]
S3 Movilnet; system32\DRIVERS\movilnetusbser.sys [X]
S3 mracdrv; \SystemRoot\System32\drivers\mracdrv.sys [X]
S3 RimUsb; System32\Drivers\RimUsb.sys [X]
S3 Synth3dVsc; System32\drivers\synth3dvsc.sys [X]
U3 aa39dpkl; C:\Windows\system32\Drivers\aa39dpkl.sys [0 ] (Advanced Micro Devices) <==== ATTENTION (zero byte File/Folder)
S3 tsusbhub; system32\drivers\tsusbhub.sys [X]
S3 VGPU; System32\drivers\rdvgkmd.sys [X]
S3 WinRing0_1_2_0; \??\C:\Program Files\IObit\Game Booster 3\Driver\WinRing0.sys [X]
S3 XDva405; \??\C:\Windows\system32\XDva405.sys [X]
S3 XDva407; \??\C:\Windows\system32\XDva407.sys [X]
S3 XDva409; \??\C:\Windows\system32\XDva409.sys [X]
S3 XDva424; \??\C:\Windows\system32\XDva424.sys [X]
S3 XDva535; \??\C:\Windows\system32\XDva535.sys [X]
S3 xhunter1; \??\C:\Windows\xhunter1.sys [X]
2018-11-03 01:50 - 2014-06-25 09:44 - 000000000 ____D C:\Users\Administrador\AppData\Local\Adobe
2018-11-03 01:39 - 2013-02-14 20:27 - 000000000 ____D C:\Program Files\Common Files\Adobe
2018-11-03 01:39 - 2012-11-22 22:01 - 000000000 ____D C:\Program Files\Adobe
HOSTS:
REMOVEPROXY:
EMPTYTEMP:
CMD: netsh winsock reset
CMD: ipconfig /renew
CMD: ipconfig /flushdns
CMD: bitsadmin /reset /allusers
CMD: netsh advfirewall reset
CMD: netsh advfirewall set allprofiles state ON
CMD: netsh int ipv4 reset
CMD: netsh int ipv6 reset
END
Lo guardas bajo el nombre de fixlist.txt en el escritorio <<< Esto es muy importante.<<
Nota: Es importante que la Hta Frst.exe y fixlist.txt se encuentren en la misma ubicación (escritorio) o si no no trabajara.
Y ahora usa esta Faq de Windows ¿Cómo iniciar Windows en Modo Seguro?, para trabajar desde ese modo de windows.
Ejecutas Frst.exe.
Presionas el botón Fix y aguardas a que termine.
La Herramienta guardara el reporte en tu escritorio (Fixlog.txt).
Lo pegas en tu próxima respuesta, comentado como va el problema
Fix result of Farbar Recovery Scan Tool (x86) Version: 15.11.2018
Ran by Administrador (19-11-2018 15:30:05) Run:1
Running from E:\Documents\Desktop
Loaded Profiles: Administrador (Available Profiles: UpdatusUser & Administrador)
Boot Mode: Safe Mode (with Networking)
==============================================
fixlist content:
*****************
Start
CreateRestorePoint:
CloseProcesses:
HKLM\...\Run: [] => [X]
HKU\S-1-5-21-2537466858-3879440399-1483233659-500\...\MountPoints2: H - H:\Setup.exe
HKU\S-1-5-21-2537466858-3879440399-1483233659-500\...\MountPoints2: {06ec0137-cbf3-11e6-a224-002522ecafc0} - H:\Setup.exe
HKU\S-1-5-21-2537466858-3879440399-1483233659-500\...\MountPoints2: {48ff3498-765c-11e3-aba2-002522ecafc0} - G:\Autorun.exe
HKU\S-1-5-21-2537466858-3879440399-1483233659-500\...\MountPoints2: {515d6b07-0d50-11e6-a856-002522ecafc0} - H:\AutoRun.exe
HKU\S-1-5-21-2537466858-3879440399-1483233659-500\...\MountPoints2: {a63db0ea-0933-11e4-9fda-002522ecafc0} - F:\autorun.exe
HKU\S-1-5-21-2537466858-3879440399-1483233659-500\...\MountPoints2: {c85470ee-399d-11e6-9ccf-002522ecafc0} - C:\Windows\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL H:\Install.bat
GroupPolicy: Restriction ? <==== ATTENTION
GroupPolicy\User: Restriction ? <==== ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - No File
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
S2 MDM; "C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe" [X]
S1 imkahnvx; \??\C:\Windows\system32\drivers\imkahnvx.sys [X]
S3 Movilnet; system32\DRIVERS\movilnetusbser.sys [X]
S3 mracdrv; \SystemRoot\System32\drivers\mracdrv.sys [X]
S3 RimUsb; System32\Drivers\RimUsb.sys [X]
S3 Synth3dVsc; System32\drivers\synth3dvsc.sys [X]
U3 aa39dpkl; C:\Windows\system32\Drivers\aa39dpkl.sys [0 ] (Advanced Micro Devices) <==== ATTENTION (zero byte File/Folder)
S3 tsusbhub; system32\drivers\tsusbhub.sys [X]
S3 VGPU; System32\drivers\rdvgkmd.sys [X]
S3 WinRing0_1_2_0; \??\C:\Program Files\IObit\Game Booster 3\Driver\WinRing0.sys [X]
S3 XDva405; \??\C:\Windows\system32\XDva405.sys [X]
S3 XDva407; \??\C:\Windows\system32\XDva407.sys [X]
S3 XDva409; \??\C:\Windows\system32\XDva409.sys [X]
S3 XDva424; \??\C:\Windows\system32\XDva424.sys [X]
S3 XDva535; \??\C:\Windows\system32\XDva535.sys [X]
S3 xhunter1; \??\C:\Windows\xhunter1.sys [X]
2018-11-03 01:50 - 2014-06-25 09:44 - 000000000 ____D C:\Users\Administrador\AppData\Local\Adobe
2018-11-03 01:39 - 2013-02-14 20:27 - 000000000 ____D C:\Program Files\Common Files\Adobe
2018-11-03 01:39 - 2012-11-22 22:01 - 000000000 ____D C:\Program Files\Adobe
HOSTS:
REMOVEPROXY:
EMPTYTEMP:
CMD: netsh winsock reset
CMD: ipconfig /renew
CMD: ipconfig /flushdns
CMD: bitsadmin /reset /allusers
CMD: netsh advfirewall reset
CMD: netsh advfirewall set allprofiles state ON
CMD: netsh int ipv4 reset
CMD: netsh int ipv6 reset
END
*****************
Error: Restore point can only be created in normal mode.
Processes closed successfully.
"HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\" => removed successfully.
HKU\S-1-5-21-2537466858-3879440399-1483233659-500\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\H => removed successfully.
HKU\S-1-5-21-2537466858-3879440399-1483233659-500\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{06ec0137-cbf3-11e6-a224-002522ecafc0} => removed successfully.
HKLM\Software\Classes\CLSID\{06ec0137-cbf3-11e6-a224-002522ecafc0} => not found
HKU\S-1-5-21-2537466858-3879440399-1483233659-500\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{48ff3498-765c-11e3-aba2-002522ecafc0} => removed successfully.
HKLM\Software\Classes\CLSID\{48ff3498-765c-11e3-aba2-002522ecafc0} => not found
HKU\S-1-5-21-2537466858-3879440399-1483233659-500\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{515d6b07-0d50-11e6-a856-002522ecafc0} => removed successfully.
HKLM\Software\Classes\CLSID\{515d6b07-0d50-11e6-a856-002522ecafc0} => not found
HKU\S-1-5-21-2537466858-3879440399-1483233659-500\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{a63db0ea-0933-11e4-9fda-002522ecafc0} => removed successfully.
HKLM\Software\Classes\CLSID\{a63db0ea-0933-11e4-9fda-002522ecafc0} => not found
HKU\S-1-5-21-2537466858-3879440399-1483233659-500\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{c85470ee-399d-11e6-9ccf-002522ecafc0} => removed successfully.
HKLM\Software\Classes\CLSID\{c85470ee-399d-11e6-9ccf-002522ecafc0} => not found
C:\Windows\system32\GroupPolicy\Machine => moved successfully
C:\Windows\system32\GroupPolicy\GPT.ini => moved successfully
C:\Windows\system32\GroupPolicy\User => moved successfully
HKLM\SOFTWARE\Policies\Google => removed successfully.
HKLM\Software\Classes\PROTOCOLS\Handler\skype4com => removed successfully.
HKLM\Software\Classes\CLSID\{FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} => not found
HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value restored successfully
HKLM\System\CurrentControlSet\Services\MDM => removed successfully.
MDM => service removed successfully.
HKLM\System\CurrentControlSet\Services\imkahnvx => removed successfully.
imkahnvx => service removed successfully.
HKLM\System\CurrentControlSet\Services\Movilnet => removed successfully.
Movilnet => service removed successfully.
HKLM\System\CurrentControlSet\Services\mracdrv => removed successfully.
mracdrv => service removed successfully.
HKLM\System\CurrentControlSet\Services\RimUsb => removed successfully.
RimUsb => service removed successfully.
HKLM\System\CurrentControlSet\Services\Synth3dVsc => removed successfully.
Synth3dVsc => service removed successfully.
aa39dpkl => service not found.
HKLM\System\CurrentControlSet\Services\tsusbhub => removed successfully.
tsusbhub => service removed successfully.
HKLM\System\CurrentControlSet\Services\VGPU => removed successfully.
VGPU => service removed successfully.
HKLM\System\CurrentControlSet\Services\WinRing0_1_2_0 => removed successfully.
WinRing0_1_2_0 => service removed successfully.
HKLM\System\CurrentControlSet\Services\XDva405 => removed successfully.
XDva405 => service removed successfully.
HKLM\System\CurrentControlSet\Services\XDva407 => removed successfully.
XDva407 => service removed successfully.
HKLM\System\CurrentControlSet\Services\XDva409 => removed successfully.
XDva409 => service removed successfully.
HKLM\System\CurrentControlSet\Services\XDva424 => removed successfully.
XDva424 => service removed successfully.
HKLM\System\CurrentControlSet\Services\XDva535 => removed successfully.
XDva535 => service removed successfully.
HKLM\System\CurrentControlSet\Services\xhunter1 => removed successfully.
xhunter1 => service removed successfully.
C:\Users\Administrador\AppData\Local\Adobe => moved successfully
C:\Program Files\Common Files\Adobe => moved successfully
C:\Program Files\Adobe => moved successfully
C:\Windows\System32\Drivers\etc\hosts => moved successfully
Hosts restored successfully.
========= RemoveProxy: =========
"HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings" => removed successfully.
"HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings" => removed successfully.
"HKU\S-1-5-21-2537466858-3879440399-1483233659-500\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings" => removed successfully.
"HKU\S-1-5-21-2537466858-3879440399-1483233659-500\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings" => removed successfully.
========= End of RemoveProxy: =========
========= netsh winsock reset =========
El cat logo Winsock se restableci¢ correctamente.
Debe reiniciar el equipo para completar el restablecimiento.
========= End of CMD: =========
========= ipconfig /renew =========
Configuraci¢n IP de Windows
Adaptador de Ethernet Conexi¢n de rea local:
Sufijo DNS espec¡fico para la conexi¢n. . : interlink.net.ve
Direcci¢n IPv4. . . . . . . . . . . . . . : 190.142.160.186
M scara de subred . . . . . . . . . . . . : 255.255.252.0
Puerta de enlace predeterminada . . . . . : 190.142.160.1
Adaptador de t£nel isatap.interlink.net.ve:
Estado de los medios. . . . . . . . . . . : medios desconectados
Sufijo DNS espec¡fico para la conexi¢n. . :
Adaptador de t£nel Teredo Tunneling Pseudo-Interface:
Estado de los medios. . . . . . . . . . . : medios desconectados
Sufijo DNS espec¡fico para la conexi¢n. . :
Adaptador de t£nel 6TO4 Adapter:
Estado de los medios. . . . . . . . . . . : medios desconectados
Sufijo DNS espec¡fico para la conexi¢n. . :
Adaptador de t£nel Conexi¢n de rea local* 11:
Estado de los medios. . . . . . . . . . . : medios desconectados
Sufijo DNS espec¡fico para la conexi¢n. . :
Adaptador de t£nel Conexi¢n de rea local* 21:
Estado de los medios. . . . . . . . . . . : medios desconectados
Sufijo DNS espec¡fico para la conexi¢n. . :
========= End of CMD: =========
========= ipconfig /flushdns =========
Configuraci¢n IP de Windows
Se vaci¢ correctamente la cach‚ de resoluci¢n de DNS.
========= End of CMD: =========
========= bitsadmin /reset /allusers =========
BITSADMIN version 3.0 [ 7.5.7601 ]
BITS administration utility.
(C) Copyright 2000-2006 Microsoft Corp.
BITSAdmin is deprecated and is not guaranteed to be available in future versions of Windows.
Administrative tools for the BITS service are now provided by BITS PowerShell cmdlets.
Unable to connect to BITS - 0x8007042c
========= End of CMD: =========
========= netsh advfirewall reset =========
Aceptar
========= End of CMD: =========
========= netsh advfirewall set allprofiles state ON =========
Aceptar
========= End of CMD: =========
========= netsh int ipv4 reset =========
Global se restableci¢ correctamente.
Interfaz se restableci¢ correctamente.
Reinicie el equipo para completar esta acci¢n.
========= End of CMD: =========
========= netsh int ipv6 reset =========
Direcci¢n de unidifusi¢n se restableci¢ correctamente.
Ruta se restableci¢ correctamente.
Reinicie el equipo para completar esta acci¢n.
========= End of CMD: =========
=========== EmptyTemp: ==========
BITS transfer queue => 0 B
DOMStoree, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 21280642 B
Java, Flash, Steam htmlcache => 30458318 B
Windows/system/drivers => 267658 B
Edge => 0 B
Chrome => 379237920 B
Firefox => 22562869 B
Opera => 0 B
Temp, IE cache, history, cookies, recent:
Users => 0 B
Default => 66228 B
Public => 0 B
ProgramData => 146621454 B
systemprofile => 269807 B
LocalService => 66228 B
NetworkService => 14704 B
USUARIO => 0 B
UpdatusUser => 66228 B
UpdatusUser => 0 B
Administrador => 7648886 B
RecycleBin => 0 B
EmptyTemp: => 580.4 MB temporary data Removed.
================================
The system needed a reboot.
==== End of Fixlog 15:30:56 ====Y el problema planteado…??
Ya puedo tratar de instalarlo?
Limpia el Registro con Ccleaner ( pasalo hasta que no salgan errores):
Intenta instalar Adobe y comentas
Con permiso, puedo hacer una recomendación. Adobe Reader ya no es necesario, cualquier navegador actual, es capaz de leer los archivos PDF sin problemas, ya no es necesario instalar adobe reader.
Hola @Kikote
Sí es cierto lo que dices pero los lectores que incluyen los navegadores son muy básicos y solo te permiten hacer unas pocas funciones . Si necesitamos por ejemplo imprimir páginas determinadas, hacer algún tipo de edición u otro tipo de cosas, necesitamos un lector externo tipo Adobe Reader … Foxit Reader etcétera
Saludos
Si, ademas si se necesita ver un archivo en pdf sin necesidad de contar con internet, no se puede, de todos modos gracias por la sugerencia 
Nada, sigue apareciendo: Usted cuenta con una nueva versión instalada
Básicamente que lo tengo instalado 
Descarga y ejecuta la herramienta Adobe Dc uninstall Tool
Una vez realizado, reinicias el pc y trata de instalar de nuevo
Yo pude solucionar siguiendo los pasos de este video solucion
Instala version completa Offline >> https://get.adobe.com/es/reader/enterprise/
Terminando la descarga sale esto
Un poco tarde pero bueno…
No me sirvió ya que no tengo el Reader “Instalado”, pero hago lo que me dijo @Fer_Balma y sale lo de mas abajo…
Estoy perdiendo la cabeza ya…
Desactiva Temporalmente tu antivirus y cualquier programa de seguridad.
Descarga a Tu Escritorio >> Esto es muy importante<<.,Fabar Recovery Scan Tool, considerando la versión adecuada para tu equipo. (32 o 64 bits) ¿Cómo saber si mi Windows es de 32 o 64 bits?
Doble clic para ejecutar Frst.exe. En la ventana del Disclaimer, presiona Yes.
En la nueva ventana que se abre, presiona el botón Scan y espera a que concluya el análisis.
Se abrirán dos (2) archivos (Logs), Frst.txt y Addition.txt, que estarán grabados en Tu escritorio.
En Tu próxima respuesta, copias y pegas los dos reportes Frst.txt y Addition.txt de FRST
Nota: Si el/los reportes solicitados no entraran en una sola respuesta porque superan la cantidad de caracteres permitidos, puedes utilizar dos o mas respuestas para pegarlos completamente.
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 03-07-2019
Ran by Administrador (administrator) on PC-JOAQUIN (09-07-2019 23:21:48)
Running from E:\Documents\Desktop
Loaded Profiles: Administrador (Available Profiles: UpdatusUser & Administrador)
Platform: Microsoft Windows 7 Ultimate Service Pack 1 (X86) Language: Español (España, internacional)
Internet Explorer Version 9 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Google Inc -> Google LLC) C:\Program Files\Google\Update\1.3.34.11\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\mqsvc.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe
(Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner.exe
==================== Registry (Whitelisted) ===========================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [RunDLLEntry] => C:\Windows\system32\AmbRunE.dll [14848 2009-02-26] (Creative Technology Ltd.) [File not signed]
HKLM\...\Run: [VolPanel] => C:\Program Files\Creative\SB X-Fi MB\Volume Panel\VolPanlu.exe [241789 2009-05-04] (Creative Technology Ltd) [File not signed]
HKLM\...\Run: [HDAudDeck] => C:\Program Files\VIA\VIAudioi\VDeck\VDeck.exe [1681408 2009-09-21] (VIA) [File not signed]
HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [645456 2019-04-01] (Oracle America, Inc. -> Oracle Corporation)
HKU\S-1-5-21-2537466858-3879440399-1483233659-500\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner.exe [14636224 2018-12-10] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-2537466858-3879440399-1483233659-500\...\Policies\Explorer: [NoAutoUpdate] 1
HKLM\...\Drivers32: [VIDC.FPS1] => C:\Windows\system32\frapsvid.dll [65536 2012-08-30] (Beepa P/L) [File not signed]
HKLM\...\Drivers32: [vidc.VP60] => C:\Windows\system32\vp6vfw.dll [447752 2008-09-04] (Electronic Arts -> On2.com)
HKLM\...\Drivers32: [vidc.VP61] => C:\Windows\system32\vp6vfw.dll [447752 2008-09-04] (Electronic Arts -> On2.com)
HKLM\...\Drivers32: [VIDC.FMVC] => C:\Windows\system32\fmcodec.dll [77824 2008-08-18] (Fox Magic Software) [File not signed]
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\75.0.3770.100\Installer\chrmstp.exe [2019-06-20] (Google LLC -> Google LLC)
BootExecute: autocheck autochk *
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
==================== Scheduled Tasks (Whitelisted) =============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {00331558-A17E-4BBE-BEC7-F5206226692F} - System32\Tasks\{604F3180-F4C7-4594-8FD7-1629FE6BF259} => E:\FIFA 14\Game\fifasetup\fifaconfig.exe
Task: {1C71ACAF-91D2-4458-BEB3-ADC6CA4438DB} - System32\Tasks\{8AFBB9A7-BB18-4E7E-BF06-AC682F9CF1D6} => "c:\program files\google\chrome\application\chrome.exe" hxxp://ui.skype.com/ui/0/6.20.0.104/es/abandoninstall?page=tsProgressBar
Task: {404079CE-C97C-42EA-9EEC-3C0B55112FC4} - System32\Tasks\AVGPCTuneUp_Task_BkGndMaintenance => C:\Program Files\AVG\AVG PC TuneUp\tuscanx.exe
Task: {475CFFC8-6B54-4F7C-8956-45DFE7B617CC} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe [1913648 2019-06-04] (AVAST Software s.r.o. -> AVAST Software)
Task: {5237952C-D42B-4073-BA15-C5174390004B} - System32\Tasks\Adobe Reader and Acrobat Manager => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
Task: {52469867-7E26-4C5F-95CF-3E11EE4374D9} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [156968 2019-02-22] (Google Inc -> Google Inc.)
Task: {53F50AAB-81DD-4EA0-B748-EC9F299F5D7E} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [619416 2019-02-04] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {570BCE5E-344C-49EF-BA04-40C3F6FE7D6E} - System32\Tasks\hp digital imaging - hp all-in-one series => C:\Program Files\HP\HP Software Update\HPWuSchd2.exe [49152 2006-12-10] (Hewlett-Packard Co.) [File not signed]
Task: {6CC3238B-7A10-4F43-AD0F-CC7325EB29A5} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe
Task: {75B22D58-B16B-4E1E-B861-2F37BAADBADE} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [14636224 2018-12-10] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {8DB79221-B32A-4840-B44F-FCDD43D33B82} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [156968 2019-02-22] (Google Inc -> Google Inc.)
Task: {91280F77-A970-437C-9621-C78D8A074966} - System32\Tasks\HPCustParticipation HP Deskjet 2050 J510 series => C:\Program Files\HP\HP Deskjet 2050 J510 series\Bin\HPCustPartic.exe [2938984 2012-10-02] (Hewlett Packard -> Hewlett-Packard Co.)
Task: {A51103F6-B683-4329-BF38-446CF47FD761} - System32\Tasks\Java Platform SE Auto Updater => C:\Program Files\Common Files\Java\Java Update\jusched.exe [645456 2019-04-01] (Oracle America, Inc. -> Oracle Corporation)
Task: {B495A579-4747-4738-B2CB-8CC1D207A68D} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2019-07-09] (Adobe Inc. -> Adobe)
Task: {C14D2E9F-8B6F-4FF7-8D99-00619889DAF2} - System32\Tasks\{214766D0-C466-433B-9C2F-61142A65DCD3} => E:\FIFA 14\Game\fifasetup\fifaconfig.exe
Task: {C7C7FA4B-AD10-4941-8E9C-F8EE0CB6A415} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\Windows\system32\Macromed\Flash\FlashUtil32_32_0_0_223_Plugin.exe [1457208 2019-07-09] (Adobe Inc. -> Adobe)
Task: {C9415EE7-0B49-474D-93E3-FF393D5EBE60} - System32\Tasks\{A66A1CB6-B56F-4126-BDB0-2B25E9B08A61} => C:\Program Files\PocketFantasy\Petw.exe
Task: {D10B6322-DEB5-4E8B-B04E-EE88EF251C6D} - System32\Tasks\{DFAF37A2-5E41-402F-A750-1EA58C3DFA11} => C:\Windows\system32\pcalua.exe -a "C:\Program Files\Microsoft Visual Studio\Installer\vs_installer.exe" -d "C:\Program Files\Microsoft Visual Studio\Installer"
Task: {FAEB765E-E00C-40C8-A66A-6FF05E768259} - System32\Tasks\Programa de actualización online de Primax Electronics => C:\Program Files\Common Files\Research In Motion\Auto Update\RIMAutoUpdate.exe
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 10.1.192.13 10.1.192.12
Tcpip\..\Interfaces\{F98536A4-F2E8-4B57-AFEF-28575F0BAD40}: [NameServer] 8.8.8.8,8.8.4.4
Tcpip\..\Interfaces\{F98536A4-F2E8-4B57-AFEF-28575F0BAD40}: [DhcpNameServer] 10.1.192.13 10.1.192.12
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = www.google.com
HKU\S-1-5-21-2537466858-3879440399-1483233659-500\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://latam.msn.com/?ocid=iehp
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-2537466858-3879440399-1483233659-500 -> DefaultScope {9C162588-8D78-4aee-BE4F-25C87D447523} URL = hxxp://www.google.com/custom?client=pub-3794288947762788&forid=1&channel=5480255188&ie=UTF-8&oe=UTF-8&safe=active&cof=GALT%3A%23008000%3BGL%3A1%3BDIV%3A%23336699%3BVLC%3A663399%3BAH%3Acenter%3BBGC%3AFFFFFF%3BLBGC%3A336699%3BALC%3A0000FF%3BLC%3A0000FF%3BT%3A000000%3BGFNT%3A0000FF%3BGIMP%3A0000FF%3BFORID%3A1&hl=es&q={searchTerms}
SearchScopes: HKU\S-1-5-21-2537466858-3879440399-1483233659-500 -> {9C162588-8D78-4aee-BE4F-25C87D447523} URL = hxxp://www.google.com/custom?client=pub-3794288947762788&forid=1&channel=5480255188&ie=UTF-8&oe=UTF-8&safe=active&cof=GALT%3A%23008000%3BGL%3A1%3BDIV%3A%23336699%3BVLC%3A663399%3BAH%3Acenter%3BBGC%3AFFFFFF%3BLBGC%3A336699%3BALC%3A0000FF%3BLC%3A0000FF%3BT%3A000000%3BGFNT%3A0000FF%3BGIMP%3A0000FF%3BFORID%3A1&hl=es&q={searchTerms}
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_211\bin\ssv.dll [2019-04-20] (Oracle America, Inc. -> Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_211\bin\jp2ssv.dll [2019-04-20] (Oracle America, Inc. -> Oracle Corporation)
StartMenuInternet: IEXPLORE.EXE - iexplore.exe
FireFox:
========
FF ProfilePath: C:\Users\Administrador\AppData\Roaming\Mozilla\Firefox\Profiles\ksxn0588.default [2019-07-09]
FF Homepage: Mozilla\Firefox\Profiles\ksxn0588.default -> hxxps://www.google.co.ve
FF Extension: (Avast Online Security) - C:\Users\Administrador\AppData\Roaming\Mozilla\Firefox\Profiles\ksxn0588.default\Extensions\[email protected] [2019-06-15]
FF Extension: (Firebluesolido) - C:\Users\Administrador\AppData\Roaming\Mozilla\Firefox\Profiles\ksxn0588.default\Extensions\{5ce73f5a-efe5-404f-ac89-d2fb243dd03c}.xpi [2019-06-15]
FF Extension: (Mozilla Nebulla) - C:\Users\Administrador\AppData\Roaming\Mozilla\Firefox\Profiles\ksxn0588.default\Extensions\{a43c90bb-dda3-4817-8dcc-0590d5bf274a}.xpi [2019-06-15]
FF Extension: (thin top blue gradient) - C:\Users\Administrador\AppData\Roaming\Mozilla\Firefox\Profiles\ksxn0588.default\Extensions\{b82aadb5-f514-4853-be6b-8389280af337}.xpi [2019-06-15]
FF Extension: (Official Theme for the SUMMER BREEZE Open Air 2014) - C:\Users\Administrador\AppData\Roaming\Mozilla\Firefox\Profiles\ksxn0588.default\Extensions\{fcd09657-23aa-497d-be34-4adb2dd32ce8}.xpi [2019-06-15]
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF32_32_0_0_223.dll [2019-07-09] (Adobe Inc. -> )
FF Plugin: @adobe.com/ShockwavePlayer -> C:\Windows\system32\Adobe\Director\np32dsw_1234204.dll [2018-06-06] (Adobe Systems, Inc.) [File not signed]
FF Plugin: @java.com/DTPlugin,version=11.211.2 -> C:\Program Files\Java\jre1.8.0_211\bin\dtplugin\npDeployJava1.dll [2019-04-20] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.211.2 -> C:\Program Files\Java\jre1.8.0_211\bin\plugin2\npjp2.dll [2019-04-20] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=14.0.8064.0206 -> C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll [2009-02-06] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @raidcall.en/RCplugin -> C:\Users\Administrador\AppData\Roaming\raidcall\plugins\nprcplugin.dll [No File]
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.34.11\npGoogleUpdate3.dll [2019-05-15] (Google Inc -> Google LLC)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.34.11\npGoogleUpdate3.dll [2019-05-15] (Google Inc -> Google LLC)
FF Plugin: @videolan.org/vlc,version=2.0.5 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-01-10] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-01-10] (VideoLAN -> VideoLAN)
FF Plugin HKU\S-1-5-21-2537466858-3879440399-1483233659-500: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Administrador\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2015-11-06] (Unity Technologies SF -> Unity Technologies ApS)
Chrome:
=======
CHR DefaultProfile: Profile 1
CHR Profile: C:\Users\Administrador\AppData\Local\Google\Chrome\User Data\Guest Profile [2018-11-19]
CHR Profile: C:\Users\Administrador\AppData\Local\Google\Chrome\User Data\Profile 1 [2019-07-09]
CHR Extension: (Tampermonkey) - C:\Users\Administrador\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\dhdgffkkebhmkfjojejmpbldmpobfkfo [2019-05-08]
CHR Extension: (AdBlock) - C:\Users\Administrador\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2019-07-08]
CHR Extension: (Darkness - Temas oscuros hermosos) - C:\Users\Administrador\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\imilbobhamcfahccagbncamhpnbkaenm [2019-05-24]
CHR Extension: (Morpheon Dark) - C:\Users\Administrador\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\mafbdhjdkjnoafhfelkjpchpaepjknad [2018-10-20]
CHR Extension: (Sistema de pagos de Chrome Web Store) - C:\Users\Administrador\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-10-20]
CHR Extension: (TunnelBear VPN) - C:\Users\Administrador\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\omdakjcmkglenbhjadbccaookpfjihpa [2019-03-30]
CHR Extension: (Chrome Media Router) - C:\Users\Administrador\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-06-20]
CHR Profile: C:\Users\Administrador\AppData\Local\Google\Chrome\User Data\System Profile [2019-07-06]
CHR HKLM\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - hxxps://clients2.google.com/service/update2/crx
==================== Services (Whitelisted) ====================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S3 BEService; C:\Program Files\Common Files\BattlEye\BEService.exe [5520184 2018-07-26] (BattlEye Innovations e.K. -> )
S4 CLHNServiceForPowerDVD; C:\Program Files\CyberLink\PowerDVD11\Kernel\DMP\CLHNServiceForPowerDVD.exe [83240 2011-04-19] (CyberLink -> )
S3 Creative ALchemy AL6 Licensing Service; C:\Program Files\Common Files\Creative Labs Shared\Service\AL6Licensing.exe [79360 2012-11-22] (Creative Labs) [File not signed]
S3 Creative Audio Engine Licensing Service; C:\Program Files\Common Files\Creative Labs Shared\Service\CTAELicensing.exe [79360 2012-11-22] (Creative Labs) [File not signed]
S4 CyberLink PowerDVD 11.0 Monitor Service; C:\Program Files\CyberLink\PowerDVD11\Common\MediaServer\CLMSMonitorService.exe [70952 2011-03-31] (CyberLink -> CyberLink)
S4 CyberLink PowerDVD 11.0 Service; C:\Program Files\CyberLink\PowerDVD11\Common\MediaServer\CLMSServer.exe [312616 2011-03-31] (CyberLink -> CyberLink)
S3 EasyAntiCheat; C:\Program Files\EasyAntiCheat\EasyAntiCheat.exe [780928 2018-08-09] (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
R3 hpqcxs08; C:\Program Files\HP\Digital Imaging\bin\hpqcxs08.dll [225280 2007-01-20] (Hewlett-Packard Co.) [File not signed]
R2 hpqddsvc; C:\Program Files\HP\Digital Imaging\bin\hpqddsvc.dll [131072 2007-01-20] (Hewlett-Packard Co.) [File not signed]
S3 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [5073376 2018-09-19] (Malwarebytes Corporation -> Malwarebytes)
S3 mracsvc; C:\Windows\System32\mracsvc.exe [5508824 2018-03-07] (Mail.Ru Games LLC -> LLC Mail.Ru)
R2 Net Driver HPZ12; C:\Windows\system32\HPZinw12.dll [43520 2006-11-08] (Hewlett-Packard) [File not signed]
R2 Pml Driver HPZ12; C:\Windows\system32\HPZipm12.dll [53248 2006-11-08] (Hewlett-Packard) [File not signed]
S3 UDisk Monitor Driver; C:\Program Files\Froyo_Android_Driver\Bin\MonServiceUDisk.exe [577536 2012-09-29] () [File not signed]
S4 VIAKaraokeService; C:\Windows\system32\viakaraokesrv.exe [27768 2016-11-14] (VIA Technologies Inc. -> VIA Technologies, Inc.)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [680960 2013-05-27] (Microsoft Windows -> Microsoft Corporation)
===================== Drivers (Whitelisted) ======================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R0 2FC04E79; C:\Windows\System32\drivers\2FC04E79.sys [153784 2016-08-17] (Kaspersky Lab -> Kaspersky Lab ZAO)
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [243128 2014-06-08] (Disc Soft Ltd -> Disc Soft Ltd)
S3 Generalusbserialser20679; C:\Windows\System32\DRIVERS\CT_U_USBSER.sys [108544 2011-05-24] (Microsoft Windows Hardware Compatibility Publisher -> Incorporated)
R2 giveio; C:\Windows\system32\giveio.sys [5248 1996-04-03] () [File not signed]
R1 GUBootStartup; C:\Windows\System32\drivers\GUBootStartup.sys [25864 2019-01-15] (Glarysoft LTD -> Glarysoft Ltd)
S3 hamachi; C:\Windows\System32\DRIVERS\hamachi.sys [27040 2015-11-12] (LogMeIn, Inc. -> LogMeIn, Inc.)
R1 HWiNFO32; C:\Windows\system32\drivers\HWiNFO32.SYS [23840 2016-11-14] (Martin Malik - REALiX -> REALiX(tm))
R2 ntk_PowerDVD; C:\Program Files\CyberLink\PowerDVD11\Kernel\DMP\ntk_PowerDVD.sys [71664 2011-04-19] (CyberLink -> Cyberlink Corp.)
S3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad32v.sys [50752 2016-03-21] (NVIDIA Corporation -> NVIDIA Corporation)
S3 RimVSerPort; C:\Windows\System32\DRIVERS\RimSerial.sys [27136 2009-01-09] (Microsoft Windows Hardware Compatibility Publisher -> Research in Motion Ltd)
R2 speedfan; C:\Windows\system32\speedfan.sys [24184 2012-12-29] (SOKNO S.R.L. -> Almico Software)
R0 sptd; C:\Windows\System32\Drivers\sptd.sys [320120 2014-06-07] (Disc Soft Ltd -> Duplex Secure Ltd.)
S3 tap0901; C:\Windows\System32\DRIVERS\tap0901.sys [35088 2013-04-30] (AVAST Software -> The OpenVPN Project)
R3 VIAHdAudAddService; C:\Windows\System32\drivers\viahduaa.sys [1086976 2009-09-17] (Microsoft Windows Hardware Compatibility Publisher -> VIA Technologies, Inc.)
R2 {329F96B6-DF1E-4328-BFDA-39EA953C1312}; C:\Program Files\CyberLink\PowerDVD11\Common\NavFilter\000.fcl [77296 2011-04-12] (CyberLink -> CyberLink Corp.)
U3 ar419ezd; C:\Windows\System32\Drivers\ar419ezd.sys [0 0000-00-00] (Advanced Micro Devices)<==== ATTENTION (zero byte File/Folder)
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2019-07-06 17:04 - 2019-07-06 17:04 - 000000000 ____D C:\Users\Administrador\AppData\Local\ElevatedDiagnostics
==================== One month (modified) ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2019-07-09 23:21 - 2018-11-18 19:48 - 000000000 ____D C:\FRST
2019-07-09 21:56 - 2013-02-14 18:04 - 000842296 _____ (Adobe) C:\Windows\system32\FlashPlayerApp.exe
2019-07-09 21:56 - 2013-02-14 18:04 - 000175160 _____ (Adobe) C:\Windows\system32\FlashPlayerCPLApp.cpl
2019-07-09 21:56 - 2013-02-14 18:04 - 000000000 ____D C:\Windows\system32\Macromed
2019-07-09 12:51 - 2009-07-13 22:37 - 000000000 ____D C:\Windows\system32\NDF
2019-07-09 07:00 - 2016-11-28 09:18 - 000000000 ____D C:\Users\Administrador\AppData\LocalLow\Mozilla
2019-07-09 06:36 - 2009-07-14 00:34 - 000014192 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2019-07-09 06:36 - 2009-07-14 00:34 - 000014192 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2019-07-09 06:24 - 2009-07-14 00:53 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2019-07-08 18:56 - 2012-11-22 21:37 - 000331698 _____ C:\Windows\system32\PerfStringBackup.INI
2019-07-08 18:56 - 2009-07-14 04:48 - 000014768 _____ C:\Windows\system32\perfh00A.dat
2019-07-08 18:56 - 2009-07-14 04:48 - 000004966 _____ C:\Windows\system32\perfc00A.dat
2019-07-08 18:56 - 2009-07-13 22:37 - 000000000 ____D C:\Windows\inf
2019-07-08 10:45 - 2018-07-24 22:12 - 000000000 ____D C:\Users\Administrador\BrawlhallaReplays
2019-07-08 09:52 - 2018-05-13 00:26 - 000000000 ____D C:\Program Files\Steam
2019-07-06 16:52 - 2018-10-15 08:19 - 000000000 ____D C:\FSTool
2019-07-03 22:18 - 2014-06-01 17:34 - 000007598 _____ C:\Users\Administrador\AppData\Local\Resmon.ResmonCfg
2019-07-02 18:33 - 2019-03-24 22:24 - 000000000 ____D C:\Program Files\Common Files\Adobe
2019-07-02 18:33 - 2019-02-22 20:18 - 000000000 ____D C:\Program Files\Adobe
2019-07-02 16:06 - 2014-01-21 21:38 - 000000000 ____D C:\Users\Administrador\AppData\Roaming\Media Player Classic
2019-07-02 16:06 - 2013-02-21 18:57 - 000000000 ____D C:\Users\Administrador\AppData\Local\CrashDumps
2019-07-02 12:01 - 2017-07-08 09:31 - 000000000 ____D C:\Program Files\Common Files\BattlEye
2019-07-02 12:01 - 2013-02-14 21:12 - 000000000 ____D C:\Users\Administrador
2019-07-02 12:00 - 2018-10-18 23:22 - 000000000 ____D C:\Program Files\Common Files\AVAST Software
2019-07-02 12:00 - 2018-05-28 15:41 - 000000000 ____D C:\Program Files\EasyAntiCheat
2019-07-02 12:00 - 2018-02-09 15:23 - 000000000 ____D C:\Users\UpdatusUser
2019-07-02 12:00 - 2009-07-13 22:37 - 000000000 ____D C:\Windows\registration
2019-06-26 15:47 - 2018-11-19 23:15 - 000000000 ____D C:\Users\Administrador\AppData\Local\Adobe
2019-06-25 12:32 - 2017-07-09 09:41 - 000000000 ____D C:\15910b134c0d32c90d0c64ee2542
2019-06-24 01:32 - 2018-10-15 14:47 - 000000000 ____D C:\ProgramData\AVAST Software
2019-06-23 23:59 - 2018-03-25 21:18 - 000000000 ____D C:\Users\Administrador\AppData\Local\AVAST Software
2019-06-23 18:57 - 2017-09-29 10:51 - 000000000 _____ C:\Windows\system32\last.dump
2019-06-20 00:56 - 2018-07-21 13:25 - 000002146 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2019-06-12 15:52 - 2009-07-14 00:53 - 000032636 _____ C:\Windows\Tasks\SCHEDLGU.TXT
==================== Files in the root of some directories ================
2016-10-08 12:44 - 2016-08-09 12:44 - 000000032 ____R () C:\ProgramData\hash.dat
2013-03-26 23:08 - 2013-03-26 23:04 - 000000043 _____ () C:\Program Files\autorun.inf
2016-07-02 20:24 - 2016-07-02 20:24 - 000000048 ____H () C:\Program Files\kfq45orm2t.dat
2018-03-29 21:08 - 2018-04-09 00:43 - 000000097 _____ () C:\Users\Administrador\AppData\Roaming\LauncherSettings_live.cfg
2014-07-19 03:42 - 2018-05-29 13:22 - 000138056 _____ () C:\Users\Administrador\AppData\Roaming\PnkBstrK.sys
2018-03-29 21:47 - 2018-03-30 13:09 - 000000045 _____ () C:\Users\Administrador\AppData\Roaming\TheHunterSettings_steam_live.cfg
2015-04-05 14:20 - 2015-04-05 14:20 - 000022923 _____ () C:\Users\Administrador\AppData\Roaming\UserTile.png
2014-06-21 22:18 - 2016-06-29 22:32 - 000000161 _____ () C:\Users\Administrador\AppData\Roaming\WB.CFG
2013-08-30 20:58 - 2013-08-30 21:01 - 145762520 _____ () C:\Users\Administrador\AppData\Local\ACCCx2_1_1_220.zip.aamdownload
2013-08-30 20:58 - 2013-08-30 21:01 - 000001817 _____ () C:\Users\Administrador\AppData\Local\ACCCx2_1_1_220.zip.aamdownload.aamd
2014-06-01 17:34 - 2019-07-03 22:18 - 000007598 _____ () C:\Users\Administrador\AppData\Local\Resmon.ResmonCfg
2017-03-12 13:03 - 2017-03-12 13:03 - 000000000 _____ () C:\Users\Administrador\AppData\Local\rx_image.Cache
2018-08-19 10:46 - 2018-08-19 10:46 - 000000000 _____ () C:\Users\Administrador\AppData\Local\{5A6558F1-ED49-4FF8-B21F-74DDC7A648BC}
2018-05-12 12:19 - 2018-05-12 12:19 - 000000000 _____ () C:\Users\Administrador\AppData\Local\{B09C0C11-67A7-41F6-9304-1C3231EE3BE8}
==================== SigCheck ===============================
(There is no automatic fix for files that do not pass verification.)
LastRegBack: 2019-07-02 00:43
==================== End of FRST.txt ================================================ Accounts: =============================
Administrador (S-1-5-21-2537466858-3879440399-1483233659-500 - Administrator - Enabled) => C:\Users\Administrador
Invitado (S-1-5-21-2537466858-3879440399-1483233659-501 - Limited - Disabled)
UpdatusUser (S-1-5-21-2537466858-3879440399-1483233659-1010 - Limited - Enabled) => C:\Users\UpdatusUser
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
µTorrent (HKU\S-1-5-21-2537466858-3879440399-1483233659-500\...\uTorrent) (Version: 3.4.9.42923 - BitTorrent Inc.)
2007 Microsoft Office Suite Service Pack 3 (SP3) (HKLM\...\{90120000-0015-0C0A-0000-0000000FF1CE}_ENTERPRISE_{D79E9128-A250-4155-BE90-2BE81DE0406A}) (Version: - Microsoft) Hidden
2007 Microsoft Office Suite Service Pack 3 (SP3) (HKLM\...\{90120000-0016-0C0A-0000-0000000FF1CE}_ENTERPRISE_{D79E9128-A250-4155-BE90-2BE81DE0406A}) (Version: - Microsoft) Hidden
2007 Microsoft Office Suite Service Pack 3 (SP3) (HKLM\...\{90120000-0018-0C0A-0000-0000000FF1CE}_ENTERPRISE_{D79E9128-A250-4155-BE90-2BE81DE0406A}) (Version: - Microsoft) Hidden
2007 Microsoft Office Suite Service Pack 3 (SP3) (HKLM\...\{90120000-0019-0C0A-0000-0000000FF1CE}_ENTERPRISE_{D79E9128-A250-4155-BE90-2BE81DE0406A}) (Version: - Microsoft) Hidden
2007 Microsoft Office Suite Service Pack 3 (SP3) (HKLM\...\{90120000-001A-0C0A-0000-0000000FF1CE}_ENTERPRISE_{D79E9128-A250-4155-BE90-2BE81DE0406A}) (Version: - Microsoft) Hidden
2007 Microsoft Office Suite Service Pack 3 (SP3) (HKLM\...\{90120000-001B-0C0A-0000-0000000FF1CE}_ENTERPRISE_{D79E9128-A250-4155-BE90-2BE81DE0406A}) (Version: - Microsoft) Hidden
2007 Microsoft Office Suite Service Pack 3 (SP3) (HKLM\...\{90120000-001F-0403-0000-0000000FF1CE}_ENTERPRISE_{BEADB115-DB47-4BD0-A9EC-AE585AFAB2D8}) (Version: - Microsoft) Hidden
2007 Microsoft Office Suite Service Pack 3 (SP3) (HKLM\...\{90120000-001F-0409-0000-0000000FF1CE}_ENTERPRISE_{1FF96026-A04A-4C3E-B50A-BB7022654D0F}) (Version: - Microsoft) Hidden
2007 Microsoft Office Suite Service Pack 3 (SP3) (HKLM\...\{90120000-001F-040C-0000-0000000FF1CE}_ENTERPRISE_{71F055E8-E2C6-4214-BB3D-BFE03561B89E}) (Version: - Microsoft) Hidden
2007 Microsoft Office Suite Service Pack 3 (SP3) (HKLM\...\{90120000-001F-0416-0000-0000000FF1CE}_ENTERPRISE_{8A524694-0CA4-476A-9301-B1E9D70FC952}) (Version: - Microsoft) Hidden
2007 Microsoft Office Suite Service Pack 3 (SP3) (HKLM\...\{90120000-001F-042D-0000-0000000FF1CE}_ENTERPRISE_{017A6981-5E03-4A97-830A-35FE0927BB7F}) (Version: - Microsoft) Hidden
2007 Microsoft Office Suite Service Pack 3 (SP3) (HKLM\...\{90120000-001F-0456-0000-0000000FF1CE}_ENTERPRISE_{A3A03B41-14EA-4E50-97D8-FCF429AE0CCB}) (Version: - Microsoft) Hidden
2007 Microsoft Office Suite Service Pack 3 (SP3) (HKLM\...\{90120000-001F-0C0A-0000-0000000FF1CE}_ENTERPRISE_{2314F9A1-126F-45CC-8A5E-DFAF866F3FBC}) (Version: - Microsoft) Hidden
2007 Microsoft Office Suite Service Pack 3 (SP3) (HKLM\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft)
2007 Microsoft Office Suite Service Pack 3 (SP3) (HKLM\...\{90120000-0044-0C0A-0000-0000000FF1CE}_ENTERPRISE_{D79E9128-A250-4155-BE90-2BE81DE0406A}) (Version: - Microsoft) Hidden
2007 Microsoft Office Suite Service Pack 3 (SP3) (HKLM\...\{90120000-006E-0C0A-0000-0000000FF1CE}_ENTERPRISE_{430AE3E6-E982-4958-90FC-1C062BC74E22}) (Version: - Microsoft) Hidden
2007 Microsoft Office Suite Service Pack 3 (SP3) (HKLM\...\{90120000-00A1-0C0A-0000-0000000FF1CE}_ENTERPRISE_{D79E9128-A250-4155-BE90-2BE81DE0406A}) (Version: - Microsoft) Hidden
2007 Microsoft Office Suite Service Pack 3 (SP3) (HKLM\...\{90120000-00BA-0C0A-0000-0000000FF1CE}_ENTERPRISE_{D79E9128-A250-4155-BE90-2BE81DE0406A}) (Version: - Microsoft) Hidden
32 Bit HP CIO Components Installer (HKLM\...\{F1E63043-54FC-429B-AB2C-31AF9FBA4BC7}) (Version: 1.0.0 - Hewlett-Packard) Hidden
3D Ripper DX v1.8.2 (HKLM\...\3D Ripper DX_is1) (Version: - Roman Lut)
Activador Windows Seven (HKLM\...\Activador Windows Seven) (Version: - WCPCGAMES)
Actualización de NVIDIA 1.10.8 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 1.10.8 - NVIDIA Corporation)
Adobe AIR (HKLM\...\Adobe AIR) (Version: 32.0.0.89 - Adobe Systems Incorporated)
Adobe Flash Player 32 ActiveX (HKLM\...\Adobe Flash Player ActiveX) (Version: 32.0.0.223 - Adobe)
Adobe Flash Player 32 NPAPI (HKLM\...\Adobe Flash Player NPAPI) (Version: 32.0.0.223 - Adobe)
Adobe Shockwave Player 12.3 (HKLM\...\Adobe Shockwave Player) (Version: 12.3.4.204 - Adobe Systems, Inc.)
AIO_Scan (HKLM\...\{0D2E9DCB-9938-475E-B4DD-8851738852FF}) (Version: 82.0.203.000 - Hewlett-Packard) Hidden
Android USB Driver (HKLM\...\Android USB Driver_is1) (Version: - )
BufferChm (HKLM\...\{BE77A81F-B315-4666-9BF3-AE70C0ADB057}) (Version: 82.0.173.000 - Hewlett-Packard) Hidden
Call of Duty Deluxe Edition versión 1.51 (HKLM\...\{69D66828-AA67-47FE-9F5A-8F40075CD9D0}_is1) (Version: 1.51 - Activision)
CCleaner (HKLM\...\CCleaner) (Version: 5.51 - Piriform)
Choice Guard (HKLM\...\{8FFC5648-FAF8-43A3-BC8F-42BA1E275C4E}) (Version: 1.2.87.0 - Microsoft Corporation) Hidden
Compatibilidad con Aplicaciones de Apple (HKLM\...\{F5266D28-E0B2-4130-BFC5-EE155AD514DC}) (Version: 2.3 - Apple Inc.)
Copy (HKLM\...\{A3B7C670-4A1E-4EE2-950E-C875BC1965D0}) (Version: 82.0.188.000 - Hewlett-Packard) Hidden
Counter-Strike 1.6 (HKLM\...\Counter-Strike 1.6_is1) (Version: Counter-Strike 1.6 No Steam - KingSOFT DVD)
CPUID CPU-Z 1.87 (HKLM\...\CPUID CPU-Z_is1) (Version: 1.87 - CPUID, Inc.)
CustomerResearchQFolder (HKLM\...\{6F5E2F4A-377D-4700-B0E3-8F7F7507EA15}) (Version: 1.00.0000 - Hewlett-Packard) Hidden
CyberLink PowerDVD 11 (HKLM\...\InstallShield_{F232C87C-6E92-4775-8210-DFE90B7777D9}) (Version: 11.0.1620.51 - CyberLink Corp.)
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 4.49.1.0356 - Disc Soft Ltd)
Destinations (HKLM\...\{9B1FD9CE-0776-4f0b-A6F5-C6AB7B650CDF}) (Version: 82.0.173.000 - Hewlett-Packard) Hidden
DeviceManagementQFolder (HKLM\...\{AB5D51AE-EBC3-438D-872C-705C7C2084B0}) (Version: 1.00.0000 - Hewlett-Packard) Hidden
DJ_AIO_Software (HKLM\...\{9ECB4705-B9CB-405A-B6D4-33BDF707308E}) (Version: 82.0.203.000 - Hewlett-Packard) Hidden
DJ_AIO_Software_min (HKLM\...\{DC83F417-8068-4074-BA2F-C4F8AB872556}) (Version: 82.0.203.000 - Hewlett-Packard) Hidden
DriveImage XML (Private Edition) (HKLM\...\{F7E1CA14-B39D-452A-960B-39423DDDD933}) (Version: 2.44.000 - Runtime Software)
eSupportQFolder (HKLM\...\{66E6CE0C-5A1E-430C-B40A-0C90FF1804A8}) (Version: 1.00.0000 - Hewlett-Packard) Hidden
Galería fotográfica de Windows Live (HKLM\...\{80A29FE1-4390-4996-B213-EB703832D8B3}) (Version: 14.0.8064.206 - Microsoft Corporation) Hidden
Glary Utilities 5.112 (HKLM\...\Glary Utilities 5) (Version: 5.112.0.137 - Glarysoft Ltd)
Google Chrome (HKLM\...\Google Chrome) (Version: 75.0.3770.100 - Google LLC)
Google Update Helper (HKLM\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.34.11 - Google LLC) Hidden
Herramienta de carga de Windows Live (HKLM\...\{205C6BDD-7B73-42DE-8505-9A093F35A238}) (Version: 14.0.8014.1029 - Microsoft Corporation)
Hextech Repair Tool (HKLM\...\{7F9A97E6-E666-11E5-B582-B88687E82322}) (Version: 1.1.91 - Riot Games, Inc.)
HP Customer Participation Program 8.0 (HKLM\...\HPExtendedCapabilities) (Version: 8.0 - HP)
HP Deskjet 2050 J510 series Ayuda (HKLM\...\{7A3DF2E2-CF13-44FB-A93E-F71D5381DB3F}) (Version: 140.0.61.61 - Hewlett Packard)
HP Deskjet 2050 J510 series Estudio para la mejora del producto (HKLM\...\{2ED491F9-E343-45CC-A624-B538615FAABD}) (Version: 28.0.1313.0 - Hewlett-Packard Co.)
HP Deskjet 2050 J510 series Software básico del dispositivo (HKLM\...\{A3FF4458-CC45-4EBC-A7C3-0A843BDC9177}) (Version: 28.0.1313.0 - Hewlett-Packard Co.)
HP Deskjet All-In-One Software 8.0 (HKLM\...\{24557DC0-0839-496f-82F9-C4EB72EFE4FA}) (Version: 8.0 - HP)
HP Imaging Device Functions 8.0 (HKLM\...\HP Imaging Device Functions) (Version: 8.0 - HP)
HP Solution Center 8.0 (HKLM\...\HP Solution Center & Imaging Support Tools) (Version: 8.0 - HP)
HP Update (HKLM\...\{912D30CF-F39E-4B31-AD9A-123C6B794EE2}) (Version: 5.005.002.002 - Hewlett-Packard)
HPProductAssistant (HKLM\...\{67D3F1A0-A1F2-49b7-B9EE-011277B170CD}) (Version: 82.0.173.000 - Hewlett-Packard) Hidden
HPSSupply (HKLM\...\{EB75DE50-5754-4F6F-875D-126EDF8E4CB3}) (Version: 2.1.3.0000 - Nombre de su organización)
Java 8 Update 211 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F32180211F0}) (Version: 8.0.2110.12 - Oracle Corporation)
Junk Mail filter update (HKLM\...\{4DE3E3D9-AE81-45DE-9195-3015F7B1DBF3}) (Version: 14.0.8064.206 - Microsoft Corporation) Hidden
K-Lite Codec Pack 9.7.5 (Full) (HKLM\...\KLiteCodecPack_is1) (Version: 9.7.5 - )
League of Legends (HKLM\...\League of Legends 1.0) (Version: 1.0 - Riot Games, Inc)
MarketResearch (HKLM\...\{95D08F4E-DFC2-4ce3-ACB7-8C8E206217E9}) (Version: 82.0.174.000 - Hewlett-Packard) Hidden
Math Problem Solver (HKU\S-1-5-21-2537466858-3879440399-1483233659-500\...\Math Problem Solver) (Version: - ) <==== ATTENTION
MEGAsync (HKLM\...\MEGAsync) (Version: - Mega Limited)
Microsoft .NET Framework 4.5.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft Games for Windows - LIVE Redistributable (HKLM\...\{59E4543A-D49D-4489-B445-473D763C79AF}) (Version: 2.0.672.0 - Microsoft Corporation)
Microsoft Office Enterprise 2007 (HKLM\...\ENTERPRISE) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office Excel 2007 Help Actualización (KB963678) (HKLM\...\{90120000-0016-0C0A-0000-0000000FF1CE}_ENTERPRISE_{59E09C3D-4878-47D9-87DB-6D0018026889}) (Version: - Microsoft)
Microsoft Office File Validation Add-In (HKLM\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Outlook 2007 Help Actualización (KB963677) (HKLM\...\{90120000-001A-0C0A-0000-0000000FF1CE}_ENTERPRISE_{59C244C2-0C37-4E85-8F7E-DBDD3958B694}) (Version: - Microsoft)
Microsoft Office Powerpoint 2007 Help Actualización (KB963669) (HKLM\...\{90120000-0018-0C0A-0000-0000000FF1CE}_ENTERPRISE_{F318245D-05AE-4681-A749-A036CE44AF29}) (Version: - Microsoft)
Microsoft Office Word 2007 Help Actualización (KB963665) (HKLM\...\{90120000-001B-0C0A-0000-0000000FF1CE}_ENTERPRISE_{377BA42A-1C84-45D6-94B8-6D00887D172D}) (Version: - Microsoft)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50907.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Sync Framework Runtime Native v1.0 (x86) (HKLM\...\{8A74E887-8F0F-4017-AF53-CBA42211AAA5}) (Version: 1.0.1215.0 - Microsoft Corporation)
Microsoft Sync Framework Services Native v1.0 (x86) (HKLM\...\{BD64AF4A-8C80-4152-AD77-FCDDF05208AB}) (Version: 1.0.1215.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM\...\{57660847-B1F7-35BD-9118-F62EB863A598}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x86) - 14.10.25008 (HKLM\...\{c239cea1-d49e-4e16-8e87-8c055765f7ec}) (Version: 14.10.25008.0 - Microsoft Corporation)
Microsoft WSE 3.0 Runtime (HKLM\...\{E3E71D07-CD27-46CB-8448-16D4FB29AA13}) (Version: 3.0.5305.0 - Microsoft Corp.)
Microsoft XNA Framework Redistributable 4.0 Refresh (HKLM\...\{D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F}) (Version: 4.0.30901.0 - Microsoft Corporation)
Mozilla Firefox 66.0.2 (x86 es-ES) (HKLM\...\Mozilla Firefox 66.0.2 (x86 es-ES)) (Version: 66.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 66.0.2.7024 - Mozilla)
MSXML 4.0 SP2 (KB954430) (HKLM\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
Notepad++ (HKLM\...\Notepad++) (Version: 6.3 - )
NVIDIA Controlador de gráficos 309.08 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 309.08 - NVIDIA Corporation)
NVIDIA Drivers (HKLM\...\NVIDIA Drivers) (Version: 1.10.62.40 - NVIDIA Corporation)
NVIDIA PhysX (HKLM\...\{8B922CF8-8A6C-41CE-A858-F1755D7F5D29}) (Version: 9.12.1031 - NVIDIA Corporation)
OpenAL (HKLM\...\OpenAL) (Version: - )
osu! (HKLM\...\{8ad608f4-798f-43ad-a49a-650db9caa8b8}) (Version: latest - ppy Pty Ltd)
Panel de control de NVIDIA 309.08 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 309.08 - NVIDIA Corporation) Hidden
Paquete de idioma de Microsoft .NET Framework 4.5 ESN (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 3082) (Version: 4.5.50709 - Microsoft Corporation)
PDFCreator (HKLM\...\{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}) (Version: 1.6.2 - pdfforge)
Photoshop CS5 Extended 12.0 (HKLM\...\Photoshop CS5 Extended 12.0) (Version: - )
Platform (HKLM\...\{20D4A895-748C-4D88-871C-FDB1695B0169}) (Version: 1.34 - VIA Technologies, Inc.) Hidden
Pro Evolution Soccer 2012 (HKLM\...\{E737A098-F161-4B6F-AF22-86AAE34F6FBD}) (Version: 1.03.0000 - KONAMI)
Scan (HKLM\...\{1746EA69-DCB6-4408-B5A5-E75F55439CDF}) (Version: 8.1.0.0 - Hewlett-Packard) Hidden
SolutionCenter (HKLM\...\{A36CD345-625C-4d6c-B3E2-76E1248CB451}) (Version: 82.0.188.000 - Hewlett-Packard) Hidden
Sound Blaster X-Fi MB (HKLM\...\{F3D9AC82-30F4-4BB9-B9AB-8697637568C1}) (Version: 1.0 - Creative Technology Limited)
Status (HKLM\...\{978C25EE-5777-46e4-8988-732C297CBDBD}) (Version: 82.0.173.000 - Hewlett-Packard) Hidden
Steam (HKLM\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
swMSM (HKLM\...\{612C34C7-5E90-47D8-9B5C-0F717DD82726}) (Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
Toolbox (HKLM\...\{C716522C-3731-4667-8579-40B098294500}) (Version: 82.0.173.000 - Hewlett-Packard) Hidden
TrayApp (HKLM\...\{FF075778-6E50-47ed-991D-3B07FD4E3250}) (Version: 82.0.188.000 - Hewlett-Packard) Hidden
TuneUp Utilities Language Pack (es-ES) (HKLM\...\{DED3E411-B3C3-4154-A3F7-AE2EFC98FDBA}) (Version: 12.0.3600.182 - TuneUp Software) Hidden
UE4 Prerequisites (x86) (HKLM\...\{6EAAE1C0-6000-45FA-B46D-D206144925BF}) (Version: 1.0.11.0 - Epic Games, Inc.) Hidden
UE4 Prerequisites (x86) (HKLM\...\{f1203e43-4ddb-4280-974e-73f14d793dbd}) (Version: 1.0.13.0 - Epic Games, Inc.) Hidden
Unity Web Player (HKU\S-1-5-21-2537466858-3879440399-1483233659-500\...\UnityWebPlayer) (Version: - Unity Technologies ApS)
UnloadSupport (HKLM\...\{E06F04B9-45E6-4AC0-8083-85F7515F40F7}) (Version: 1.00.0000 - Hewlett-Packard) Hidden
Update for 2007 Microsoft Office System (KB967642) (HKLM\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft)
VIA Administrador de dispositivos de plataforma (HKLM\...\InstallShield_{20D4A895-748C-4D88-871C-FDB1695B0169}) (Version: 1.34 - VIA Technologies, Inc.)
Visual Studio 2012 x86 Redistributables (HKLM\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.6 - VideoLAN)
WebReg (HKLM\...\{179C56A4-F57F-4561-8BBF-F911D26EB435}) (Version: 82.0.173.000 - Hewlett-Packard) Hidden
Windows Live Asistente para el inicio de sesión (HKLM\...\{7593234B-2AEB-4FC9-B02D-C9B30D86084C}) (Version: 5.000.818.5 - Microsoft Corporation)
Windows Live Essentials (HKLM\...\WinLiveSuite_Wave3) (Version: 14.0.8064.0206 - Microsoft Corporation)
Windows Live Sync (HKLM\...\{28F46DFD-F535-4306-BDEB-C5E7FCA2026E}) (Version: 14.0.8064.206 - Microsoft Corporation)
WinRAR 5.70 (32-bit) (HKLM\...\WinRAR archiver) (Version: 5.70.0 - win.rar GmbH)
ZTE Drivers v1.2050.0.10 (HKLM\...\{66239456-F8B1-49EC-818C-822603C5B712}) (Version: 1.0.0.10 - ZTE Corporation)
==================== Custom CLSID (Whitelisted): ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
CustomCLSID: HKU\S-1-5-21-2537466858-3879440399-1483233659-500_Classes\CLSID\{444785F1-DE89-4295-863A-D46C3A781394}\InprocServer32 -> C:\Users\Administrador\AppData\LocalLow\Unity\WebPlayer\loader\UnityWebPluginAX.ocx (Unity Technologies SF -> Unity Technologies ApS)
ShellIconOverlayIdentifiers: [ MEGA (Pending)] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => C:\Users\Administrador\AppData\Local\MEGAsync\ShellExtX32.dll [2017-10-18] () [File not signed]
ShellIconOverlayIdentifiers: [ MEGA (Synced)] -> {05B38830-F4E9-4329-978B-1DD28605D202} => C:\Users\Administrador\AppData\Local\MEGAsync\ShellExtX32.dll [2017-10-18] () [File not signed]
ShellIconOverlayIdentifiers: [ MEGA (Syncing)] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => C:\Users\Administrador\AppData\Local\MEGAsync\ShellExtX32.dll [2017-10-18] () [File not signed]
ContextMenuHandlers1: [ANotepad++] -> {00F3C2EC-A6EE-11DE-A03A-EF8F55D89593} => C:\Program Files\Notepad++\NppShell_05.dll [2012-06-18] () [File not signed]
ContextMenuHandlers1: [Glary Utilities] -> [CC]{B3C418F8-922B-4faf-915E-59BC14448CF7} => -> No File
ContextMenuHandlers1: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\Administrador\AppData\Local\MEGAsync\ShellExtX32.dll [2017-10-18] () [File not signed]
ContextMenuHandlers1: [PDFManagerExt] -> [CC]{6FFE8805-6586-4CDB-B880-047950580CB2} => -> No File
ContextMenuHandlers1: [WinRAR] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers2: [Glary Utilities] -> {B3C418F8-922B-4faf-915E-59BC14448CF7} => C:\Program Files\Glary Utilities 5\ContextHandler.dll [2018-03-02] (Glarysoft LTD -> Glarysoft Ltd)
ContextMenuHandlers2: [MEGA (Context menu)] -> [CC]{0229E5E7-09E9-45CF-9228-0228EC7D5F17} => -> No File
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2018-09-19] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers3: [MEGA (Context menu)] -> [CC]{0229E5E7-09E9-45CF-9228-0228EC7D5F17} => -> No File
ContextMenuHandlers4: [MEGA (Context menu)] -> [CC]{0229E5E7-09E9-45CF-9228-0228EC7D5F17} => -> No File
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\system32\nvshext.dll [2015-01-30] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [Glary Utilities] -> [CC]{B3C418F8-922B-4faf-915E-59BC14448CF7} => -> No File
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2018-09-19] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
==================== Shortcuts & WMI ========================
(The entries could be listed to be restored or removed.)
ShortcutWithArgument: C:\Users\Administrador\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\69639df789022856\Google Chrome.lnk -> C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory="Profile 1"
==================== Loaded Modules (Whitelisted) ==============
2017-10-18 17:58 - 2017-10-18 17:58 - 000570368 _____ () [File not signed] C:\Users\Administrador\AppData\Local\MEGAsync\ShellExtX32.dll
2012-11-22 22:03 - 2009-02-26 12:37 - 000014848 ____N (Creative Technology Ltd.) [File not signed] C:\Windows\system32\AmbRunE.dll
2007-01-20 00:14 - 2007-01-20 00:14 - 000225280 _____ (Hewlett-Packard Co.) [File not signed] c:\program files\hp\digital imaging\bin\hpqcxs08.dll
2007-01-20 00:14 - 2007-01-20 00:14 - 000184320 _____ (Hewlett-Packard Co.) [File not signed] c:\program files\hp\digital imaging\bin\hpqddcmn.dll
2007-01-20 00:14 - 2007-01-20 00:14 - 000131072 _____ (Hewlett-Packard Co.) [File not signed] c:\program files\hp\digital imaging\bin\hpqddsvc.dll
2006-11-08 17:05 - 2006-11-08 17:05 - 000043520 _____ (Hewlett-Packard) [File not signed] c:\windows\system32\hpzinw12.dll
2006-11-08 17:05 - 2006-11-08 17:05 - 000053248 _____ (Hewlett-Packard) [File not signed] c:\windows\system32\hpzipm12.dll
2013-02-14 18:22 - 2013-01-11 12:09 - 000088576 _____ (pdfforge GbR) [File not signed] C:\Windows\System32\pdfcmon.dll
==================== Alternate Data Streams (Whitelisted) =========
(If an entry is included in the fixlist, only the ADS will be removed.)
AlternateDataStreams: C:\Users\Administrador:Heroes & Generals [38]
AlternateDataStreams: C:\Users\Administrador\Datos de programa:2e7adecd915fad7ede6cff9c6c6e4e6e [362]
AlternateDataStreams: C:\Users\Administrador\AppData\Roaming:2e7adecd915fad7ede6cff9c6c6e4e6e [362]
AlternateDataStreams: C:\ProgramData\Temp:56E2E879 [118]
AlternateDataStreams: C:\ProgramData\Temp:AD022376 [146]
==================== Safe Mode (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" value will be restored.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\2FC04E79.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\2FC04E79.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
==================== Association (Whitelisted) ===============
(If an entry is included in the fixlist, the registry item will be restored to default or removed.)
==================== Internet Explorer trusted/restricted ===============
(If an entry is included in the fixlist, it will be removed from the registry.)
IE trusted site: HKU\.DEFAULT\...\clonewarsadventures.com -> clonewarsadventures.com
IE trusted site: HKU\.DEFAULT\...\freerealms.com -> freerealms.com
IE trusted site: HKU\.DEFAULT\...\soe.com -> soe.com
IE trusted site: HKU\.DEFAULT\...\sony.com -> sony.com
IE trusted site: HKU\S-1-5-19\...\clonewarsadventures.com -> clonewarsadventures.com
IE trusted site: HKU\S-1-5-19\...\freerealms.com -> freerealms.com
IE trusted site: HKU\S-1-5-19\...\soe.com -> soe.com
IE trusted site: HKU\S-1-5-19\...\sony.com -> sony.com
IE trusted site: HKU\S-1-5-20\...\clonewarsadventures.com -> clonewarsadventures.com
IE trusted site: HKU\S-1-5-20\...\freerealms.com -> freerealms.com
IE trusted site: HKU\S-1-5-20\...\soe.com -> soe.com
IE trusted site: HKU\S-1-5-20\...\sony.com -> sony.com
IE trusted site: HKU\S-1-5-21-2537466858-3879440399-1483233659-500\...\clonewarsadventures.com -> clonewarsadventures.com
IE trusted site: HKU\S-1-5-21-2537466858-3879440399-1483233659-500\...\freerealms.com -> freerealms.com
IE trusted site: HKU\S-1-5-21-2537466858-3879440399-1483233659-500\...\soe.com -> soe.com
IE trusted site: HKU\S-1-5-21-2537466858-3879440399-1483233659-500\...\sony.com -> sony.com
==================== Hosts content: ===============================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2009-07-13 22:04 - 2019-01-04 08:57 - 000000038 _____ C:\Windows\system32\drivers\etc\hosts
==================== Other Areas ============================
(Currently there is no automatic fix for this section.)
HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files\Common Files\Oracle\Java\javapath;C:\ProgramData\Oracle\Java\javapath;C:\Program Files\NVIDIA Corporation\PhysX\Common;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files\Common Files\Roxio Shared\DLLShared\;C:\Program Files\Common Files\Roxio Shared\DLLShared\;C:\Program Files\Common Files\Roxio Shared\9.0\DLLShared\
HKU\S-1-5-21-2537466858-3879440399-1483233659-500\Control Panel\Desktop\\Wallpaper -> C:\Users\Administrador\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 8.8.8.8 - 8.8.4.4
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
If an entry is included in the fixlist, it will be removed.
MSCONFIG\Services: CLHNServiceForPowerDVD => 2
MSCONFIG\Services: CyberLink PowerDVD 11.0 Monitor Service => 3
MSCONFIG\Services: CyberLink PowerDVD 11.0 Service => 3
MSCONFIG\Services: MozillaMaintenance => 3
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^HP Digital Imaging Monitor.lnk => C:\Windows\pss\HP Digital Imaging Monitor.lnk.CommonStartup
MSCONFIG\startupfolder: C:^Users^Administrador^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Supervisar alertas de tinta - .lnk => C:\Windows\pss\Supervisar alertas de tinta - .lnk.Startup
MSCONFIG\startupfolder: C:^Users^Administrador^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Supervisar alertas de tinta - HP Deskjet 2050 J510 series.lnk => C:\Windows\pss\Supervisar alertas de tinta - HP Deskjet 2050 J510 series.lnk.Startup
MSCONFIG\startupreg: APSDaemon => "C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe"
MSCONFIG\startupreg: CCleaner Monitoring => "C:\Program Files\CCleaner\CCleaner.exe" /MONITOR
MSCONFIG\startupreg: CCleaner Smart Cleaning => "C:\Program Files\CCleaner\CCleaner.exe" /MONITOR
MSCONFIG\startupreg: DAEMON Tools Lite => "C:\Program Files\DAEMON Tools Lite\DTLite.exe" -autorun
MSCONFIG\startupreg: GUDelayStartup => "C:\Program Files\Glary Utilities 5\StartupManager.exe" -delayrun
MSCONFIG\startupreg: RemoteControl11 => "C:\Program Files\CyberLink\PowerDVD11\PDVD11Serv.exe"
MSCONFIG\startupreg: ShadowPlay => C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap.dll,ShadowPlayOnSystemStart
==================== FirewallRules (Whitelisted) ===============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [TCP Query User{BA256953-DE38-48D7-AFB8-1A7EE1F882E6}C:\program files\steam\steam.exe] => (Allow) C:\program files\steam\steam.exe (Valve -> Valve Corporation)
FirewallRules: [UDP Query User{1C165232-F286-4C5F-B70A-EB41EB17D0D6}C:\program files\steam\steam.exe] => (Allow) C:\program files\steam\steam.exe (Valve -> Valve Corporation)
FirewallRules: [{5A2A6E4C-3184-4C03-B65C-E0FADD90300E}] => (Allow) C:\Program Files\Steam\bin\cef\cef.win7\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{5046268F-C3B8-44C6-84CB-324EFAEA8D39}] => (Allow) C:\Program Files\Steam\bin\cef\cef.win7\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{7EB02016-D47A-496C-964A-C551954C0EFD}] => (Allow) C:\Program Files\Steam\steamapps\common\The Elder Scrolls Legends\The Elder Scrolls Legends.exe (Sparkypants Studios, LLC -> )
FirewallRules: [{28B0D4FA-1215-4098-9666-482337773A4D}] => (Allow) C:\Program Files\Steam\steamapps\common\The Elder Scrolls Legends\The Elder Scrolls Legends.exe (Sparkypants Studios, LLC -> )
FirewallRules: [{DFF119FD-7DBB-43E3-8B2C-EBE6E1E1D683}] => (Allow) C:\Program Files\Steam\steamapps\common\BrainOut\bin\javaw.exe
FirewallRules: [{A41066BA-BB49-4668-9566-D944544D8CA8}] => (Allow) C:\Program Files\Steam\steamapps\common\BrainOut\bin\javaw.exe
FirewallRules: [{BB36DCA0-D688-426A-8ADE-A8C51F7B929B}] => (Allow) C:\Program Files\KONAMI\Pro Evolution Soccer 2012\pes2012.exe (Konami Digital Entertainment Co., Ltd.) [File not signed]
FirewallRules: [{1C39C33C-7D68-4756-9ED4-B3F03BF27F04}] => (Allow) C:\Program Files\KONAMI\Pro Evolution Soccer 2012\pes2012.exe (Konami Digital Entertainment Co., Ltd.) [File not signed]
FirewallRules: [{B36FBD69-2EDE-46B8-B929-65D610CA0D45}] => (Allow) C:\Program Files\KONAMI\Pro Evolution Soccer 2012\pes2012.exe (Konami Digital Entertainment Co., Ltd.) [File not signed]
FirewallRules: [{FFB09342-C47C-432F-844F-C0AA34EE57B0}] => (Allow) C:\Program Files\KONAMI\Pro Evolution Soccer 2012\pes2012.exe (Konami Digital Entertainment Co., Ltd.) [File not signed]
FirewallRules: [{2177ED31-B8A7-4D15-8695-C5F24ED18CEF}] => (Allow) C:\Program Files\Steam\steamapps\common\Brawlhalla\Brawlhalla.exe () [File not signed]
FirewallRules: [{B6A9C834-E0ED-4E4E-B890-89B117EEEAFD}] => (Allow) C:\Program Files\Steam\steamapps\common\Brawlhalla\Brawlhalla.exe () [File not signed]
FirewallRules: [{55311AB0-30CF-454C-BCB3-558014DCF29A}] => (Allow) C:\Program Files\Steam\steamapps\common\World of Tanks Blitz\wotblitz.exe (Wargaming.net) [File not signed]
FirewallRules: [{BF7C8B69-C962-465B-AD5B-A61A4A0B2C66}] => (Allow) C:\Program Files\Steam\steamapps\common\World of Tanks Blitz\wotblitz.exe (Wargaming.net) [File not signed]
FirewallRules: [TCP Query User{2C9507CD-0090-4135-A36D-AEFB0FC6AD4F}C:\program files\counter-strike 1.6\hl.exe] => (Allow) C:\program files\counter-strike 1.6\hl.exe (Valve) [File not signed]
FirewallRules: [UDP Query User{5FFE4EE4-1E35-43BB-9F12-E3CC7FB60425}C:\program files\counter-strike 1.6\hl.exe] => (Allow) C:\program files\counter-strike 1.6\hl.exe (Valve) [File not signed]
FirewallRules: [TCP Query User{9C682449-00BB-4A0E-B988-A4346A4961CF}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.178\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.178\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{207E83F2-246B-4422-A27E-1BF34885E5E0}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.178\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.178\deploy\leagueclient.exe No File
FirewallRules: [TCP Query User{83697600-2FD3-4FC7-BC79-1085B34C9F5B}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.178\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.178\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{EC376D9E-07A9-45EE-AA3A-CAFE8D215F90}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.178\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.178\deploy\leagueclient.exe No File
FirewallRules: [TCP Query User{E36B97E8-7FE7-4E86-B75F-B60CABEB8EF8}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.179\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.179\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{E8122919-46FA-41E7-BBFC-8B2EFABD6721}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.179\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.179\deploy\leagueclient.exe No File
FirewallRules: [{FDBD4B71-CE96-4B72-BB56-8E5F3BBD8B89}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)
FirewallRules: [{AC5E2FBF-B308-49C2-A51D-F1185437138C}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)
FirewallRules: [TCP Query User{C681196B-A972-4769-9352-F9AD85FE2430}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.180\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.180\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{4D2DC7DF-6DAD-4B33-80A7-0EC6A8A22523}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.180\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.180\deploy\leagueclient.exe No File
FirewallRules: [TCP Query User{479F8D29-1C12-40C4-9FD2-E57CB3A958A3}C:\program files\counter-strike 1.6\hl.exe] => (Allow) C:\program files\counter-strike 1.6\hl.exe (Valve) [File not signed]
FirewallRules: [UDP Query User{0EDEABC6-F88E-47FC-8FF7-A1543CCFEFA2}C:\program files\counter-strike 1.6\hl.exe] => (Allow) C:\program files\counter-strike 1.6\hl.exe (Valve) [File not signed]
FirewallRules: [TCP Query User{6BB8583A-6528-43A1-99C7-95E0B9A0A81B}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.181\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.181\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{BB869F04-F66C-4E5C-A8F4-5D60956C9E82}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.181\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.181\deploy\leagueclient.exe No File
FirewallRules: [TCP Query User{0719E148-DA19-4999-BAF4-407487477D7A}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.182\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.182\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{15B8BD4D-3C05-4A0A-861E-A2BF2917B4CE}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.182\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.182\deploy\leagueclient.exe No File
FirewallRules: [TCP Query User{11E61E92-D208-4627-9480-18ACA9A6258F}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.183\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.183\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{42C3198A-C5ED-46F7-BCFF-87647748F0BA}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.183\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.183\deploy\leagueclient.exe No File
FirewallRules: [TCP Query User{5E9F19E7-6D52-4BCE-9D60-C4A16CAD252F}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.184\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.184\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{3AF5B39B-B94B-4227-B2FB-14D7CD03F13E}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.184\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.184\deploy\leagueclient.exe No File
FirewallRules: [{D1809534-5156-49DC-9BAE-9411087A20C9}] => (Allow) C:\Users\Administrador\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{6D9B94B4-8996-4276-A38B-630365C68012}] => (Allow) C:\Users\Administrador\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [TCP Query User{699189BA-71E4-4D9D-AF52-526C5983E23A}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.185\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.185\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{9488E063-6CAE-43FE-BE14-1298C79E3AAB}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.185\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.185\deploy\leagueclient.exe No File
FirewallRules: [TCP Query User{23AE55BA-F3E9-4C09-953B-B0AF8D043332}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.186\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.186\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{C719F1E6-EA2A-4B36-8877-B4A5084321CA}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.186\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.186\deploy\leagueclient.exe No File
FirewallRules: [TCP Query User{33ED3280-9CB5-4DE6-88D9-1B85D1C25EE6}C:\program files\steam\steamapps\common\supraball\binaries\win32\udk.exe] => (Allow) C:\program files\steam\steamapps\common\supraball\binaries\win32\udk.exe No File
FirewallRules: [UDP Query User{81C86A04-4270-436D-BA52-7BDA443E379F}C:\program files\steam\steamapps\common\supraball\binaries\win32\udk.exe] => (Allow) C:\program files\steam\steamapps\common\supraball\binaries\win32\udk.exe No File
FirewallRules: [TCP Query User{C45E064B-9C37-4372-AD6C-8F645759AA59}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.187\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.187\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{AFA5FC08-EC43-42CF-81F9-77CA0C65D9B3}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.187\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.187\deploy\leagueclient.exe No File
FirewallRules: [TCP Query User{2B2B858F-1FBA-49AD-A71C-043D0A5D55EF}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.188\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.188\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{2AF93540-221C-4FD6-8431-8DF6B9360A95}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.188\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.188\deploy\leagueclient.exe No File
FirewallRules: [TCP Query User{AED76FAB-498B-45FD-B0B4-E872D28CC63A}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.189\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.189\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{1D06D58F-4DF1-4497-9798-E0E0ADC0ED69}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.189\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.189\deploy\leagueclient.exe No File
FirewallRules: [TCP Query User{81774C13-CF5F-49E4-B8B5-721548710631}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.190\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.190\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{35C6909C-FE32-4751-8C23-38CC8A7916A9}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.190\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.190\deploy\leagueclient.exe No File
FirewallRules: [TCP Query User{10D12C23-05D9-4D1F-929A-9E00F4F4E71B}E:\call of duty deluxe edition\codmp.exe] => (Block) E:\call of duty deluxe edition\codmp.exe () [File not signed]
FirewallRules: [UDP Query User{8D7DCD39-C4D9-4DEC-AF43-A7E0567303F3}E:\call of duty deluxe edition\codmp.exe] => (Block) E:\call of duty deluxe edition\codmp.exe () [File not signed]
FirewallRules: [TCP Query User{0A8E9539-808A-4D3C-A662-B40496151BA0}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.192\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.192\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{81D972C1-A362-47A9-A67F-300E3675F88B}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.192\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.192\deploy\leagueclient.exe No File
FirewallRules: [{E12E4ACF-E110-4FC7-ACE6-9DCCD650EF74}] => (Allow) C:\Program Files\Steam\steamapps\common\Conflict of Nations\Conflict of Nations.exe (Bytro Labs GmbH) [File not signed]
FirewallRules: [{31C50FA1-757F-4D27-B240-4D5B3DBCCF78}] => (Allow) C:\Program Files\Steam\steamapps\common\Conflict of Nations\Conflict of Nations.exe (Bytro Labs GmbH) [File not signed]
FirewallRules: [{543E8D24-3CE7-4001-BC14-01A171B8BD49}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{7C8E0061-5EDB-4C5E-BBE5-211F876F31DC}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [TCP Query User{325E8376-4591-428C-9582-DACFA54278E3}C:\program files\java\jre1.8.0_201\bin\javaw.exe] => (Block) C:\program files\java\jre1.8.0_201\bin\javaw.exe No File
FirewallRules: [UDP Query User{1111BCBC-2D17-459D-81D7-40B88B28C24A}C:\program files\java\jre1.8.0_201\bin\javaw.exe] => (Block) C:\program files\java\jre1.8.0_201\bin\javaw.exe No File
FirewallRules: [{7AF6B8D9-2210-4E79-B3E3-3972E69D2965}] => (Allow) C:\Program Files\Steam\steamapps\common\Amnesia The Dark Descent\Amnesia.exe () [File not signed]
FirewallRules: [{DFBC4843-D6F9-4E12-B20C-0E96E96EBF15}] => (Allow) C:\Program Files\Steam\steamapps\common\Amnesia The Dark Descent\Amnesia.exe () [File not signed]
FirewallRules: [{1F1F5C6F-F71F-4590-A5F3-EF5B063E7564}] => (Allow) C:\Program Files\Steam\steamapps\common\Amnesia The Dark Descent\Launcher.exe () [File not signed]
FirewallRules: [{F2C21649-CD62-4B06-8F21-9000D28CCCCD}] => (Allow) C:\Program Files\Steam\steamapps\common\Amnesia The Dark Descent\Launcher.exe () [File not signed]
FirewallRules: [TCP Query User{65999F5C-864D-44E0-8101-D81946D7F899}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.193\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.193\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{2895253A-98C3-45E3-AC3B-F92D81EFB6A2}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.193\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.193\deploy\leagueclient.exe No File
FirewallRules: [TCP Query User{50AEECE9-2D57-45AA-AC91-166264B21CFA}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.194\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.194\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{21985FF5-5BA8-454A-87EE-92C8D3412047}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.194\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.194\deploy\leagueclient.exe No File
FirewallRules: [TCP Query User{66A1782C-39F3-4F75-A427-62AF8C1E543C}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.196\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.196\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{FB259A48-D4BC-4FB2-81F8-8F8D54940F1B}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.196\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.196\deploy\leagueclient.exe No File
FirewallRules: [{A4CCA2AC-ACB3-4C48-B9D6-CE2ECC024696}] => (Allow) C:\Program Files\Steam\steamapps\common\Elsword\ESSTEAM.exe (KOG Games, Inc. -> )
FirewallRules: [{8DC2AEC9-7962-4FA7-AFEB-5F2FE2F034AE}] => (Allow) C:\Program Files\Steam\steamapps\common\Elsword\ESSTEAM.exe (KOG Games, Inc. -> )
FirewallRules: [{46209FCB-9939-4AF3-9489-745D730C6DC6}] => (Allow) C:\Program Files\Steam\steamapps\common\Elsword\data\x2.exe (KOG Co., Ltd. -> )
FirewallRules: [{F0A12F52-CC22-4F4D-B6B6-0E6201A808D2}] => (Allow) C:\Program Files\Steam\steamapps\common\Elsword\data\x2.exe (KOG Co., Ltd. -> )
FirewallRules: [TCP Query User{458EDF6B-4044-4979-BEFC-D74C3D2E229B}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.197\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.197\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{A2C24729-1105-453A-A5FC-162EBFA3472D}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.197\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.197\deploy\leagueclient.exe No File
FirewallRules: [TCP Query User{BAF41AAA-3847-4205-A22E-38B37DF5DB60}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.198\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.198\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{0097AE71-5B9E-4619-A4F4-B8CAB02A27C0}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.198\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.198\deploy\leagueclient.exe No File
FirewallRules: [TCP Query User{0A99BDC8-10CB-4E2E-8FC6-D93E87797F26}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.199\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.199\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{CE34A476-8553-4C31-A6C4-77D9E0C97540}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.199\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.199\deploy\leagueclient.exe No File
FirewallRules: [TCP Query User{9C75D1EE-6888-4C93-854F-69506D54F45C}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.200\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.200\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{8C1354FE-1F6D-47DE-8EF8-0EE9EA792542}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.200\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.200\deploy\leagueclient.exe No File
FirewallRules: [{AE8B039A-953B-4F2E-8D62-F49E2ABF545C}] => (Allow) C:\Riot Games\League of Legends\LeagueClient.exe (Riot Games, Inc. -> )
FirewallRules: [{01FAB014-1C7D-4F76-8969-8F12C683119B}] => (Allow) C:\Riot Games\League of Legends\LeagueClient.exe (Riot Games, Inc. -> )
FirewallRules: [{47032473-D0E0-4860-8726-3251BFC324EF}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
==================== Restore Points =========================
28-03-2019 23:39:47 Quitado Herramienta de carga de Windows Live
05-04-2019 18:21:53 Punto de control programado
14-04-2019 05:07:23 Punto de control programado
22-04-2019 00:25:38 Punto de control programado
27-04-2019 17:35:04 Revo Uninstaller's restore point - BlueStacks App Player
05-05-2019 17:30:24 Punto de control programado
15-05-2019 09:12:01 Punto de control programado
23-05-2019 06:20:11 Punto de control programado
30-05-2019 07:22:21 Punto de control programado
07-06-2019 08:02:31 Punto de control programado
15-06-2019 09:15:28 Punto de control programado
22-06-2019 11:49:52 Punto de control programado
23-06-2019 23:55:48 Revo Uninstaller's restore point - Avast Free Antivirus
29-06-2019 21:10:33 Installed Adobe Acrobat Reader DC - Español.
02-07-2019 11:55:01 Operación de restauración
02-07-2019 18:31:01 Installed Adobe Acrobat Reader DC - Español.
==================== Faulty Device Manager Devices =============
==================== Event log errors: =========================
Application errors:
==================
Error: (07/09/2019 06:49:28 AM) (Source: SideBySide) (EventID: 33) (User: )
Description: Error al generar el contexto de activación para "c:\program files\runtime software\driveimage xml\vss64.exe".
No se encontró el ensamblado dependiente Microsoft.VC90.CRT,processorArchitecture="amd64",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="9.0.21022.8".
Use sxstrace.exe para obtener un diagnóstico detallado.
Error: (07/09/2019 06:49:06 AM) (Source: SideBySide) (EventID: 33) (User: )
Description: Error al generar el contexto de activación para "c:\program files\windows live\messenger\wlcsdk.exe".
No se encontró el ensamblado dependiente UCCAPI,processorArchitecture="x86",type="win32",version="2.0.0.0".
Use sxstrace.exe para obtener un diagnóstico detallado.
Error: (07/09/2019 06:48:29 AM) (Source: SideBySide) (EventID: 33) (User: )
Description: Error al generar el contexto de activación para "c:\program files\glary utilities 5\DPInst64.exe".
No se encontró el ensamblado dependiente Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0".
Use sxstrace.exe para obtener un diagnóstico detallado.
Error: (07/09/2019 06:48:08 AM) (Source: SideBySide) (EventID: 33) (User: )
Description: Error al generar el contexto de activación para "C:\Program Files\HP\HP Deskjet 2050 J510 series\DriverStore\Pipeline\amd64\hpinkins8711.exe".
No se encontró el ensamblado dependiente Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0".
Use sxstrace.exe para obtener un diagnóstico detallado.
Error: (07/09/2019 06:31:54 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nombre de la aplicación con errores: CompatTelRunner.exe, versión: 10.0.14361.1000, marca de tiempo: 0x576238a6
Nombre del módulo con errores: KERNELBASE.dll, versión: 6.1.7601.17965, marca de tiempo: 0x506dbd3f
Código de excepción: 0xc06d007f
Desplazamiento de errores: 0x0000c6e3
Id. del proceso con errores: 0xf70
Hora de inicio de la aplicación con errores: 0x01d53641849fc42d
Ruta de acceso de la aplicación con errores: C:\Windows\system32\CompatTelRunner.exe
Ruta de acceso del módulo con errores: C:\Windows\system32\KERNELBASE.dll
Id. del informe: c4d26d4d-a234-11e9-ac39-002522ecafc0
Error: (07/08/2019 12:31:51 AM) (Source: SideBySide) (EventID: 33) (User: )
Description: Error al generar el contexto de activación para "c:\program files\runtime software\driveimage xml\vss64.exe".
No se encontró el ensamblado dependiente Microsoft.VC90.CRT,processorArchitecture="amd64",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="9.0.21022.8".
Use sxstrace.exe para obtener un diagnóstico detallado.
Error: (07/08/2019 12:31:29 AM) (Source: SideBySide) (EventID: 33) (User: )
Description: Error al generar el contexto de activación para "c:\program files\windows live\messenger\wlcsdk.exe".
No se encontró el ensamblado dependiente UCCAPI,processorArchitecture="x86",type="win32",version="2.0.0.0".
Use sxstrace.exe para obtener un diagnóstico detallado.
Error: (07/08/2019 12:30:35 AM) (Source: SideBySide) (EventID: 33) (User: )
Description: Error al generar el contexto de activación para "c:\program files\glary utilities 5\DPInst64.exe".
No se encontró el ensamblado dependiente Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0".
Use sxstrace.exe para obtener un diagnóstico detallado.
System errors:
=============
Error: (07/09/2019 06:24:34 AM) (Source: EventLog) (EventID: 6008) (User: )
Description: El cierre anterior del sistema a las 03:15:50 a.m. del 09/07/2019 resultó inesperado.
Error: (07/08/2019 05:43:57 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: El cierre anterior del sistema a las 12:36:48 p.m. del 08/07/2019 resultó inesperado.
Error: (07/08/2019 11:22:54 AM) (Source: EventLog) (EventID: 6008) (User: )
Description: El cierre anterior del sistema a las 11:13:45 a.m. del 08/07/2019 resultó inesperado.
Error: (07/07/2019 07:41:49 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: El cierre anterior del sistema a las 07:28:02 p.m. del 07/07/2019 resultó inesperado.
Error: (07/07/2019 04:25:08 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: El cierre anterior del sistema a las 04:23:10 p.m. del 07/07/2019 resultó inesperado.
Error: (07/06/2019 09:17:28 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: El cierre anterior del sistema a las 07:19:50 p.m. del 06/07/2019 resultó inesperado.
Windows Defender:
===================================
Date: 2014-09-17 06:31:31.407
Description:
El examen de Windows Defender se detuvo antes de completarse.
Id. de examen:{3DF4B98D-36AB-4B72-84C3-64D124ECB52F}
Tipo de examen:AntiSpyware
Parámetros de examen:Examen rápido
Usuario:NT AUTHORITY\Servicio de red
==================== Memory info ===========================
BIOS: American Megatrends Inc. P1.10 03/04/2011
Motherboard: ASRock N68-VS3 UCC
Processor: AMD Sempron(tm) 145 Processor
Percentage of memory in use: 82%
Total physical RAM: 1791.3 MB
Available physical RAM: 317.8 MB
Total Virtual: 4791.3 MB
Available Virtual: 2385.21 MB
==================== Drives ================================
Drive c: (UnidadPrinc.(win7)) (Fixed) (Total:488.18 GB) (Free:284.1 GB) NTFS
Drive e: (datos) (Fixed) (Total:443.23 GB) (Free:430.96 GB) NTFS
\\?\Volume{65a914f9-3509-11e2-9787-806e6f6e6963}\ (Reservado para el sistema) (Fixed) (Total:0.1 GB) (Free:0.06 GB) NTFS
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 931.5 GB) (Disk ID: 805C8313)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=488.2 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=443.2 GB) - (Type=0F Extended)
==================== End of Addition.txt ============================