Problemas con Protocolo "TLS"

Hola @Jon_Perola

Pincha en el siguiente enlace presionas en Test your Browser del lado izquierdo de la pantalla.

https://www.ssllabs.com/index.html

Toma imágenes de la misma especialmente en la sección Protocols, Protocol Features y Protocol Details

Como subir imágenes al Foro?


Ademas prueba desactivar el Escudo web en Avast Antivirus, navegas por sitios seguros y comprueba si el error aparece.

Nos comentas.

Salu2

Pego imágenes de Test your Browser a continuación:

Haré unas pruebas con los escudos web desactivados y comento luego. Gracias.

Hola:

Vale, por aquí esperamos tu comentarios :coffee:

Salu2

Lo siento, pero aún desactivando el escudo de web, sigue bloqueando algunas páginas con la negociación TLS dichosa, y, claro, después de ésto, ya no funciona y he de reiniciar el sistemea, claro, como antes. Saludos.

Hola @Jon_Perola

Según las imágenes de la pagina los reportes que subiste están todos correctos …:thinking:

Prueba lo siguiente:

1.- Desinstala con Revo Uninstaller en su Modo Avanzado:

  • Firefox

Manual de Revo Uninstaller.

No lo reinstales aun.

2.- Luego realiza lo siguiente:

Desactiva temporalmente tu antivirus y cualquier programa de seguridad.

3.- Descarga Farbar Recovery Scan Tool. en el escritorio, seleccionando la versión adecuada para la arquitectura (32 o 64bits) de su equipo. >> Como saber si mi Windows es de 32 o 64 bits.?

  • Ejecuta FRST.exe.
  • En el mensaje de la ventana del Disclaimer, pulsamos Yes
  • En la ventana principal pulsamos en el botón Scan y esperamos a que concluya el proceso.
  • Se abrirán dos(2) archivos(Logs), Frst.txt y Addition.txt, estos quedaran grabados en el escritorio.

Guía: Como Ejecutar FRST

4.- En tu próxima respuesta, pega los reportes generados.

Guía : ¿Como Pegar reportes en el Foro?

Esperamos esos reporte.

Salu2

Scan Part. 1

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 19-05.2019
Ran by Juan (administrator) on JUAN-PC (22-05-2019 12:04:24)
Running from E:\DIRECTORIO PRINCIPAL\DESCARGAS\FIREFOX
Loaded Profiles: Juan (Available Profiles: Juan)
Platform: Windows 7 Home Premium Service Pack 1 (X64) Language: Español (España, internacional)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

() [File not signed] C:\Program Files (x86)\Common Files\Portrait Displays\Plugins\AM\dtsslsrv.exe
() [File not signed] C:\Program Files (x86)\Common Files\Portrait Displays\Shared\DTSRVC.exe
() [File not signed] C:\Program Files\Logitech\SetPoint\x86\SetPoint32.exe
(Adobe Systems, Incorporated -> Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\afwServ.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Hewlett-Packard Company -> Hewlett-Packard) C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
(Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
(Logitech -> Logitech Inc.) C:\Program Files\Common Files\Logitech\KhalShared\KHALMNPR.exe
(Logitech Inc.) [File not signed] C:\Program Files\Logitech\SetPoint\SetPoint.exe
(Mega Limited -> Mega Limited) C:\Users\Juan\AppData\Local\MEGAsync\MEGAsync.exe
(Microsoft Corporation -> Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corporation -> Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\Office14\ONENOTEM.EXE
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Nero AG -> Nero AG) C:\Program Files (x86)\Nero\Update\NASvc.exe
(Portrait Displays, Inc) [File not signed] C:\Program Files (x86)\Acer Display\eDisplay Management\dthtml.exe
(Portrait Displays, Inc. -> ) C:\Program Files (x86)\Portrait Displays\Pivot Software\Floater.exe
(Portrait Displays, Inc. -> ) C:\Program Files (x86)\Portrait Displays\Pivot Software\wpCtrl.exe
(Portrait Displays, Inc.) [File not signed] C:\Program Files (x86)\Common Files\Portrait Displays\Drivers\pdisrvc.exe
(SUPERAntiSpyware.com -> SUPERAntiSpyware.com) C:\Program Files\SUPERAntiSpyware\SASCore64.exe
(TeamViewer GmbH -> TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(VIA Technologies Inc. -> VIA Technologies, Inc.) C:\Windows\System32\ViakaraokeSrv.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [262024 2019-05-21] (AVAST Software s.r.o. -> AVAST Software)
HKLM-x32\...\Run: [HDAudDeck] => C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe [2472048 2010-08-11] (VIA Technologies Inc. -> VIA)
HKLM-x32\...\Run: [USB3MON] => C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [292088 2000-01-01] (Intel Corporation -> Intel Corporation)
HKLM-x32\...\Run: [PivotSoftware] => C:\Program Files (x86)\Portrait Displays\Pivot Software\wpctrl.exe [694008 2007-02-09] (Portrait Displays, Inc. -> )
HKLM-x32\...\Run: [WinampAgent] => C:\Program Files (x86)\Winamp\winampa.exe [85600 2013-12-13] (Nullsoft Inc. -> Nullsoft, Inc.)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [49208 2011-10-28] (Hewlett-Packard Company -> Hewlett-Packard)
HKLM-x32\...\Run: [DT ACR] => C:\Program Files (x86)\Common Files\Portrait Displays\Shared\DT_startup.exe [81920 2008-06-06] () [File not signed]
HKLM-x32\...\Run: [BCSSync] => C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [89184 2012-11-05] (Microsoft Corporation -> Microsoft Corporation)
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-2258397178-3295816786-390305721-1000\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [22588760 2019-05-09] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-2258397178-3295816786-390305721-1000\...\Run: [Spotify] => C:\Users\Juan\AppData\Roaming\Spotify\Spotify.exe [25817832 2019-05-16] (Spotify AB -> Spotify Ltd)
HKU\S-1-5-21-2258397178-3295816786-390305721-1000\...\Run: [GUDelayStartup] => C:\Program Files (x86)\Glary Utilities 5\StartupManager.exe [44024 2019-04-22] (Glarysoft LTD -> Glarysoft Ltd)
HKU\S-1-5-21-2258397178-3295816786-390305721-1000\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Windows\system32\ssText3d.scr [333824 2010-11-21] (Microsoft Windows -> Microsoft Corporation)
HKLM\...\Drivers32: [VIDC.FMVC] => C:\Windows\SysWOW64\fmcodec.dll [77824 2008-08-18] (Fox Magic Software) [File not signed]
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\74.0.3729.169\Installer\chrmstp.exe [2019-05-22] (Google LLC -> Google Inc.)
HKLM\Software\...\Authentication\Credential Providers: [{F8A0B131-5F68-486c-8040-7E8FC3C85BB6}] -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDCREDPROV.DLL [2012-07-17] (Microsoft Corporation -> Microsoft Corp.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Logitech SetPoint.lnk [2019-04-14]
ShortcutTarget: Logitech SetPoint.lnk -> C:\Program Files\Logitech\SetPoint\SetPoint.exe (Logitech Inc.) [File not signed]
Startup: C:\Users\Juan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\MEGAsync.lnk [2019-05-10]
ShortcutTarget: MEGAsync.lnk -> C:\Users\Juan\AppData\Local\MEGAsync\MEGAsync.exe (Mega Limited -> Mega Limited)
Startup: C:\Users\Juan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Recorte de pantalla y Selector de OneNote 2010.lnk [2019-05-22]
ShortcutTarget: Recorte de pantalla y Selector de OneNote 2010.lnk -> C:\Program Files (x86)\Microsoft Office\Office14\ONENOTEM.EXE (Microsoft Corporation -> Microsoft Corporation)
Startup: C:\Users\Juan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Supervisar alertas de tinta - HP Deskjet 3520 series.lnk [2019-05-22]
ShortcutAndArgument: Supervisar alertas de tinta - HP Deskjet 3520 series.lnk -> C:\Windows\system32\RunDll32.exe => "C:\Program Files\HP\HP Deskjet 3520 series\bin\HPStatusBL.dll",RunDLLEntry SERIALNUMBER=CN36K1C2SR05SY;CONNECTION=USB;MONITOR=1;
BootExecute: autocheck autochk *  
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {016D1C27-46B1-436A-82DF-5B34A2E0D9BB} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe [2380088 2019-04-14] (AVAST Software s.r.o. -> AVAST Software)
Task: {0760F726-C2C3-4D0B-BE2D-BF83AB859D0C} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156456 2019-04-14] (Google Inc -> Google LLC)
Task: {0961FC04-D5B1-40B6-84B2-B547B43FF4CC} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1195544 2018-12-17] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
Task: {1DD69C0C-3171-4F67-A8A6-83379D4F4BEB} - System32\Tasks\{FD4E8400-2A7D-4C45-A5F1-335DEF35A1F7} => C:\Windows\system32\pcalua.exe -a "E:\DIRECTORIO PRINCIPAL\DESCARGAS\FIREFOX\realtek-ac97-audio-driver.exe" -d "E:\DIRECTORIO PRINCIPAL\DESCARGAS\FIREFOX"
Task: {2951B37E-4F0C-4D34-A488-E8944923B990} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156456 2019-04-14] (Google Inc -> Google LLC)
Task: {2CE2185F-25C0-4114-82C2-4065F7653F8A} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [2934152 2019-05-21] (AVAST Software s.r.o. -> AVAST Software)
Task: {30DF1970-C260-4F88-A6DA-A7FBADD9A0F8} - System32\Tasks\Nero\Nero Info => C:\Program Files (x86)\Common Files\Nero\Nero Info\NeroInfo.exe [6562168 2016-09-08] (Nero AG -> Nero AG)
Task: {3307F0FD-0D4E-42A8-9C8F-EF105DCED1E0} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [619416 2019-05-09] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {3B296408-60BE-4D3A-B44E-B86CC00EF14A} - System32\Tasks\Logitech Desktop Messenger => C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
Task: {4220AE60-8E24-4814-ACA1-C341DEDA6AC3} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [16571320 2019-05-09] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {57803817-7A18-4AF2-9FAD-0AA13D1B6E9A} - System32\Tasks\{B2AA2367-E5B4-4094-9BB2-FD570788C35C} => C:\Windows\system32\pcalua.exe -a "C:\Users\Juan\Desktop\AUDIO Y VIDEO\asio4all.exe" -d "C:\Users\Juan\Desktop\AUDIO Y VIDEO"
Task: {60EF6F73-E9CA-4D71-8AB2-0890428A4622} - System32\Tasks\Microsoft\Windows\AvastAntiTrackPremium\AvastAntiTrackPremiumStart => C:\Program Files (x86)\AVAST Software\AvastAntiTrackPremium\AvastAntiTrackPremium.exe [20929560 2019-02-22] (Avast Software s.r.o. -> avast technologies, LLC)
Task: {8659C4D1-8438-4ACB-A623-A4A63DB42E57} - System32\Tasks\MEGA\MEGAsync Update Task S-1-5-21-2258397178-3295816786-390305721-1000 => C:\Users\Juan\AppData\Local\MEGAsync\MEGAupdater.exe [615160 2019-04-16] (Mega Limited -> Mega Limited)
Task: {C893D4D4-68DA-46BA-AF84-FAD3E8C0EE70} - System32\Tasks\{F9C3B1B4-C7FD-46C6-B1E1-E20D3D732A4D} => C:\Windows\system32\pcalua.exe -a "C:\Program Files (x86)\Avast Driver Updater\UninstallStub.exe" -d "C:\Program Files (x86)\Avast Driver Updater"
Task: {E458F351-8D06-490E-9161-2A750CF40A4B} - System32\Tasks\AVGPCTuneUp_Task_BkGndMaintenance => C:\Program Files (x86)\AVG\AVG PC TuneUp\tuscanx.exe

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{C08E4391-895A-4148-81AC-CC2DB56325EE}: [DhcpNameServer] 192.168.0.1

Internet Explorer:
==================
HKU\S-1-5-21-2258397178-3295816786-390305721-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/es-es/?ocid=iehp
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation -> Microsoft Corporation)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17] (Microsoft Corporation -> Microsoft Corp.)
BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2019-04-14] (Google Inc -> Google Inc.)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Aplicación auxiliar de inicio de sesión en la cuenta Microsoft -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17] (Microsoft Corporation -> Microsoft Corp.)
BHO-x32: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2019-04-14] (Google Inc -> Google Inc.)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation -> Microsoft Corporation)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2019-04-14] (Google Inc -> Google Inc.)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2019-04-14] (Google Inc -> Google Inc.)
Toolbar: HKU\S-1-5-21-2258397178-3295816786-390305721-1000 -> Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2019-04-14] (Google Inc -> Google Inc.)

FireFox:
========
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation ->  Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation ->  Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3508.0205 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2013-02-05] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.34.11\npGoogleUpdate3.dll [2019-05-15] (Google Inc -> Google LLC)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.34.11\npGoogleUpdate3.dll [2019-05-15] (Google Inc -> Google LLC)
FF Plugin-x32: @videolan.org/vlc,version=2.2.2 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-01-10] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-01-10] (VideoLAN -> VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2019-05-03] (Adobe Inc. -> Adobe Systems Inc.)

Chrome: 
=======
CHR Profile: C:\Users\Juan\AppData\Local\Google\Chrome\User Data\Default [2019-05-22]
CHR Extension: (Presentaciones) - C:\Users\Juan\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2019-05-08]
CHR Extension: (Documentos) - C:\Users\Juan\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2019-05-08]
CHR Extension: (Google Drive) - C:\Users\Juan\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2019-05-06]
CHR Extension: (YouTube) - C:\Users\Juan\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2019-05-06]
CHR Extension: (Avast SafePrice | Comparaciones, ofertas y cupones) - C:\Users\Juan\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2019-05-08]
CHR Extension: (Hojas de cálculo) - C:\Users\Juan\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2019-05-08]
CHR Extension: (Documentos de Google sin conexión) - C:\Users\Juan\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2019-05-08]
CHR Extension: (Avast Online Security) - C:\Users\Juan\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2019-05-08]
CHR Extension: (Sistema de pagos de Chrome Web Store) - C:\Users\Juan\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-05-08]
CHR Extension: (Gmail) - C:\Users\Juan\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-05-06]
CHR Extension: (Chrome Media Router) - C:\Users\Juan\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-05-08]
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - hxxps://clients2.google.com/service/update2/crx

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 !SASCORE; C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE [173472 2017-01-31] (SUPERAntiSpyware.com -> SUPERAntiSpyware.com)
R2 Asset Management Daemon; C:\Program Files (x86)\Common Files\Portrait Displays\Plugins\AM\dtsslsrv.exe [114688 2008-06-06] () [File not signed]
S3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [6809992 2019-05-21] (AVAST Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [409224 2019-05-21] (AVAST Software s.r.o. -> AVAST Software)
R2 avast! Firewall; C:\Program Files\AVAST Software\Avast\afwServ.exe [416512 2019-05-21] (AVAST Software s.r.o. -> AVAST Software)
R2 DTSRVC; C:\Program Files (x86)\Common Files\Portrait Displays\Shared\DTSRVC.exe [69632 2008-06-06] () [File not signed]
R2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [330136 2015-08-27] (Intel Corporation - pGFX -> Intel Corporation)
S2 KMService; C:\Windows\SysWOW64\srvany.exe [8192 2019-05-10] () [File not signed]
S2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6562472 2019-02-01] (Malwarebytes Corporation -> Malwarebytes)
R2 PdiService; C:\Program Files (x86)\Common Files\Portrait Displays\Drivers\pdisrvc.exe [90112 2008-06-04] (Portrait Displays, Inc.) [File not signed]
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [11795800 2019-04-15] (TeamViewer GmbH -> TeamViewer GmbH)
R2 VIAKaraokeService; C:\Windows\system32\viakaraokesrv.exe [27760 2011-11-12] (VIA Technologies Inc. -> VIA Technologies, Inc.)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Windows -> Microsoft Corporation)

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R1 aswArPot; C:\Windows\System32\drivers\aswArPot.sys [207448 2019-05-21] (AVAST Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; C:\Windows\System32\drivers\aswbidsdriver.sys [262496 2019-05-21] (AVAST Software s.r.o. -> AVAST Software)
R0 aswbidsh; C:\Windows\System32\drivers\aswbidsh.sys [205848 2019-05-21] (AVAST Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:\Windows\System32\drivers\aswbuniv.sys [61472 2019-05-21] (AVAST Software s.r.o. -> AVAST Software)
R1 aswKbd; C:\Windows\System32\drivers\aswKbd.sys [42288 2019-05-21] (AVAST Software s.r.o. -> AVAST Software)
R2 aswMonFlt; C:\Windows\System32\drivers\aswMonFlt.sys [167872 2019-05-21] (AVAST Software s.r.o. -> AVAST Software)
R3 aswNetNd6; C:\Windows\System32\DRIVERS\aswNetNd6.sys [38152 2019-04-29] (AVAST Software s.r.o. -> AVAST Software)
R1 aswNetSec; C:\Windows\System32\drivers\aswNetSec.sys [549200 2019-05-21] (AVAST Software s.r.o. -> AVAST Software)
R1 aswRdr; C:\Windows\System32\drivers\aswRdr2.sys [112312 2019-05-21] (AVAST Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\Windows\System32\drivers\aswRvrt.sys [87944 2019-05-21] (AVAST Software s.r.o. -> AVAST Software)
R1 aswSnx; C:\Windows\System32\drivers\aswSnx.sys [1030784 2019-05-21] (AVAST Software s.r.o. -> AVAST Software)
R1 aswSP; C:\Windows\System32\drivers\aswSP.sys [477584 2019-05-21] (AVAST Software s.r.o. -> AVAST Software)
S2 aswStm; C:\Windows\System32\drivers\aswStm.sys [225096 2019-05-21] (AVAST Software s.r.o. -> AVAST Software)
R0 aswVmm; C:\Windows\System32\drivers\aswVmm.sys [385640 2019-05-21] (AVAST Software s.r.o. -> AVAST Software)
S2 EIO; C:\Windows\SysWOW64\drivers\EIO.sys [9472 2004-12-14] (ASUSTeK Computer Inc.) [File not signed]
R1 GUBootStartup; C:\Windows\System32\drivers\GUBootStartup.sys [28936 2019-05-11] (Glarysoft LTD -> Glarysoft Ltd)
R1 ISODrive; C:\Program Files (x86)\UltraISO\drivers\ISODrv64.sys [115448 2013-11-21] (SHENZHEN YIBO DIGITAL SYSTEMS DEVELOPMENT CO. LTD. -> EZB Systems, Inc.)
R1 netfilter2; C:\Windows\System32\drivers\netfilter2.sys [54744 2018-11-05] (Praetorian Technologies, LLC -> Windows (R) Win 7 DDK provider)
R3 PdiPorts; C:\Windows\System32\DRIVERS\PdiPorts.sys [20520 2008-06-04] (Portrait Displays, Inc. -> Portrait Displays, Inc.)
R2 RtNdPt60; C:\Windows\System32\DRIVERS\RtNdPt60.sys [26624 2007-12-11] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Codename Longhorn DDK provider)
S3 RTVLANPT; C:\Windows\System32\DRIVERS\RtVlan60.sys [24064 2007-12-03] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Codename Longhorn DDK provider)
R1 SASDIFSV; C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS [14928 2011-07-22] (Support.com, Inc. -> SUPERAdBlocker.com and SUPERAntiSpyware.com)
R1 SASKUTIL; C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS [12368 2011-07-12] (Support.com, Inc. -> SUPERAdBlocker.com and SUPERAntiSpyware.com)
R3 VIAHdAudAddService; C:\Windows\System32\drivers\viahduaa.sys [1342064 2010-08-04] (VIA Technologies Inc. -> VIA Technologies, Inc.)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-05-22 11:44 - 2019-05-22 11:44 - 000000035 _____ C:\END
2019-05-22 09:18 - 2019-05-22 12:04 - 000000000 ____D C:\FRST
2019-05-21 08:29 - 2019-05-21 08:29 - 000363400 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2019-05-20 17:27 - 2019-05-20 17:27 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Photoshop CS6
2019-05-20 17:26 - 2019-05-20 17:27 - 000000000 ____D C:\Program Files (x86)\Adobe Photoshop CS6
2019-05-20 08:12 - 2019-05-20 08:37 - 000000000 ____D C:\Users\Juan\Desktop\ForoSpyware
2019-05-16 11:32 - 2019-04-30 20:28 - 000397112 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2019-05-16 11:32 - 2019-04-30 19:37 - 000348984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2019-05-16 11:32 - 2019-04-30 01:51 - 000578560 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2019-05-16 11:32 - 2019-04-30 01:51 - 000499200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2019-05-16 11:32 - 2019-04-25 05:01 - 025730560 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2019-05-16 11:32 - 2019-04-25 04:40 - 002902016 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2019-05-16 11:32 - 2019-04-25 04:31 - 020279296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2019-05-16 11:32 - 2019-04-25 04:28 - 005775360 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2019-05-16 11:32 - 2019-04-25 04:26 - 000790528 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2019-05-16 11:32 - 2019-04-25 04:09 - 002295808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2019-05-16 11:32 - 2019-04-25 04:03 - 000663040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2019-05-16 11:32 - 2019-04-25 03:46 - 015285248 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2019-05-16 11:32 - 2019-04-25 03:40 - 004493312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2019-05-16 11:32 - 2019-04-25 03:35 - 005303808 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2019-05-16 11:32 - 2019-04-25 03:35 - 001155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2019-05-16 11:32 - 2019-04-25 03:24 - 001557504 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2019-05-16 11:32 - 2019-04-25 03:18 - 004831232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2019-05-16 11:32 - 2019-04-25 03:14 - 001323008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2019-05-16 11:32 - 2019-04-19 03:54 - 004057320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2019-05-16 11:32 - 2019-04-19 03:53 - 003963624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2019-05-16 11:32 - 2019-04-19 03:53 - 001314104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2019-05-16 11:32 - 2019-04-19 03:51 - 000555520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2019-05-16 11:32 - 2019-04-19 03:44 - 000185064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pci.sys
2019-05-16 11:32 - 2019-04-19 03:43 - 000708328 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2019-05-16 11:32 - 2019-04-19 03:43 - 000631680 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2019-05-16 11:32 - 2019-04-19 03:43 - 000153832 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2019-05-16 11:32 - 2019-04-19 03:43 - 000064232 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ULIAGPKX.SYS
2019-05-16 11:32 - 2019-04-19 03:43 - 000063208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\termdd.sys
2019-05-16 11:32 - 2019-04-19 03:43 - 000060648 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\AGP440.sys
2019-05-16 11:32 - 2019-04-19 03:43 - 000031976 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mssmbios.sys
2019-05-16 11:32 - 2019-04-19 03:43 - 000023784 _____ (Microsoft Corporation) C:\Windows\system32\streamci.dll
2019-05-16 11:32 - 2019-04-19 03:43 - 000020200 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\isapnp.sys
2019-05-16 11:32 - 2019-04-19 03:42 - 005552864 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2019-05-16 11:32 - 2019-04-19 03:42 - 001664360 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2019-05-16 11:32 - 2019-04-19 03:42 - 000122600 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\NV_AGP.SYS
2019-05-16 11:32 - 2019-04-19 03:42 - 000068328 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\volmgr.sys
2019-05-16 11:32 - 2019-04-19 03:39 - 001472512 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2019-05-16 11:32 - 2019-04-19 03:39 - 000733184 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2019-05-16 11:32 - 2019-04-16 16:17 - 012880896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2019-05-16 11:32 - 2019-04-16 16:17 - 000583680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll
2019-05-16 11:32 - 2019-04-16 16:05 - 014184448 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2019-05-16 11:32 - 2019-04-16 16:05 - 000878080 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2019-05-16 11:32 - 2019-04-14 06:39 - 000071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll
2019-05-16 11:32 - 2019-04-14 06:26 - 000151552 _____ (Microsoft Corporation) C:\Windows\system32\t2embed.dll
2019-05-16 11:32 - 2019-04-14 06:26 - 000101376 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2019-05-16 11:32 - 2019-04-07 16:17 - 011411968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmp.dll
2019-05-16 11:32 - 2019-04-07 16:17 - 000382976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wer.dll
2019-05-16 11:32 - 2019-04-07 16:17 - 000160256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\werui.dll
2019-05-16 11:32 - 2019-04-07 16:03 - 014637568 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll
2019-05-16 11:32 - 2019-04-07 16:03 - 001281536 _____ (Microsoft Corporation) C:\Windows\system32\werconcpl.dll
2019-05-16 11:32 - 2019-04-07 16:03 - 000486400 _____ (Microsoft Corporation) C:\Windows\system32\wer.dll
2019-05-16 11:32 - 2019-04-07 16:03 - 000174080 _____ (Microsoft Corporation) C:\Windows\system32\werui.dll
2019-05-16 11:32 - 2019-04-07 16:03 - 000086016 _____ (Microsoft Corporation) C:\Windows\system32\wercplsupport.dll
2019-05-16 11:32 - 2019-04-07 16:02 - 004120576 _____ (Microsoft Corporation) C:\Windows\system32\mf.dll
2019-05-16 11:32 - 2019-04-07 15:42 - 001311744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msjet40.dll
2019-05-16 11:32 - 2019-04-07 15:42 - 000376320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mspbde40.dll
2019-05-16 11:32 - 2019-04-07 15:42 - 000353280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrd3x40.dll
2019-05-16 11:32 - 2019-04-07 15:42 - 000341504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msexcl40.dll
2019-05-16 11:32 - 2019-04-07 15:42 - 000240640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msltus40.dll
2019-05-16 11:32 - 2019-04-07 15:38 - 000407040 _____ (Microsoft Corporation) C:\Windows\system32\nltest.exe
2019-05-16 11:32 - 2019-04-07 14:05 - 000634312 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe
2019-05-16 11:32 - 2019-04-05 01:34 - 000064000 _____ (Microsoft Corporation) C:\Windows\system32\cryptdll.dll
2019-05-16 11:32 - 2019-04-05 01:23 - 000057856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptdll.dll
2019-05-16 11:31 - 2019-04-25 04:52 - 002724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2019-05-16 11:31 - 2019-04-25 04:52 - 000004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2019-05-16 11:31 - 2019-04-25 04:38 - 000417280 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2019-05-16 11:31 - 2019-04-25 04:38 - 000066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2019-05-16 11:31 - 2019-04-25 04:38 - 000048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2019-05-16 11:31 - 2019-04-25 04:37 - 000088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2019-05-16 11:31 - 2019-04-25 04:31 - 000054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2019-05-16 11:31 - 2019-04-25 04:30 - 000034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2019-05-16 11:31 - 2019-04-25 04:28 - 000615936 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2019-05-16 11:31 - 2019-04-25 04:26 - 000814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2019-05-16 11:31 - 2019-04-25 04:26 - 000144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2019-05-16 11:31 - 2019-04-25 04:26 - 000116224 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2019-05-16 11:31 - 2019-04-25 04:24 - 002724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2019-05-16 11:31 - 2019-04-25 04:19 - 000969216 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2019-05-16 11:31 - 2019-04-25 04:16 - 000489984 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2019-05-16 11:31 - 2019-04-25 04:12 - 000062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2019-05-16 11:31 - 2019-04-25 04:12 - 000047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2019-05-16 11:31 - 2019-04-25 04:11 - 000341504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2019-05-16 11:31 - 2019-04-25 04:11 - 000064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2019-05-16 11:31 - 2019-04-25 04:09 - 000087552 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2019-05-16 11:31 - 2019-04-25 04:09 - 000077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2019-05-16 11:31 - 2019-04-25 04:08 - 000107520 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2019-05-16 11:31 - 2019-04-25 04:06 - 000047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2019-05-16 11:31 - 2019-04-25 04:05 - 000199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2019-05-16 11:31 - 2019-04-25 04:05 - 000092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2019-05-16 11:31 - 2019-04-25 04:05 - 000030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2019-05-16 11:31 - 2019-04-25 04:04 - 000476160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2019-05-16 11:31 - 2019-04-25 04:03 - 000315392 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2019-05-16 11:31 - 2019-04-25 04:02 - 000620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2019-05-16 11:31 - 2019-04-25 04:02 - 000115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2019-05-16 11:31 - 2019-04-25 04:01 - 000152064 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2019-05-16 11:31 - 2019-04-25 03:54 - 000416256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2019-05-16 11:31 - 2019-04-25 03:52 - 000262144 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2019-05-16 11:31 - 2019-04-25 03:50 - 000809472 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2019-05-16 11:31 - 2019-04-25 03:50 - 000728064 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2019-05-16 11:31 - 2019-04-25 03:50 - 000060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2019-05-16 11:31 - 2019-04-25 03:49 - 000091136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2019-05-16 11:31 - 2019-04-25 03:49 - 000073216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2019-05-16 11:31 - 2019-04-25 03:48 - 001359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2019-05-16 11:31 - 2019-04-25 03:47 - 002135552 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2019-05-16 11:31 - 2019-04-25 03:47 - 000168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2019-05-16 11:31 - 2019-04-25 03:46 - 000076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2019-05-16 11:31 - 2019-04-25 03:45 - 000279040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2019-05-16 11:31 - 2019-04-25 03:43 - 000130048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2019-05-16 11:31 - 2019-04-25 03:38 - 000230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2019-05-16 11:31 - 2019-04-25 03:37 - 000696320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2019-05-16 11:31 - 2019-04-25 03:36 - 002059776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2019-05-16 11:31 - 2019-04-25 03:35 - 013682176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2019-05-16 11:31 - 2019-04-25 03:14 - 000800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2019-05-16 11:31 - 2019-04-25 03:12 - 000710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2019-05-16 11:31 - 2019-04-19 03:51 - 001114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2019-05-16 11:31 - 2019-04-19 03:51 - 000666112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2019-05-16 11:31 - 2019-04-19 03:51 - 000275968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2019-05-16 11:31 - 2019-04-19 03:51 - 000261120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2019-05-16 11:31 - 2019-04-19 03:51 - 000254464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2019-05-16 11:31 - 2019-04-19 03:51 - 000223232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2019-05-16 11:31 - 2019-04-19 03:51 - 000172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2019-05-16 11:31 - 2019-04-19 03:51 - 000146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll
2019-05-16 11:31 - 2019-04-19 03:51 - 000141312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpchttp.dll
2019-05-16 11:31 - 2019-04-19 03:51 - 000096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2019-05-16 11:31 - 2019-04-19 03:51 - 000082944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bcrypt.dll
2019-05-16 11:31 - 2019-04-19 03:51 - 000070144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2019-05-16 11:31 - 2019-04-19 03:51 - 000060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll
2019-05-16 11:31 - 2019-04-19 03:51 - 000043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll
2019-05-16 11:31 - 2019-04-19 03:51 - 000022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2019-05-16 11:31 - 2019-04-19 03:51 - 000005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2019-05-16 11:31 - 2019-04-19 03:50 - 000690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
2019-05-16 11:31 - 2019-04-19 03:50 - 000644096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll
2019-05-16 11:31 - 2019-04-19 03:50 - 000342528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certcli.dll
2019-05-16 11:31 - 2019-04-19 03:50 - 000050688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\appidapi.dll
2019-05-16 11:31 - 2019-04-19 03:50 - 000017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2019-05-16 11:31 - 2019-04-19 03:50 - 000006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll
2019-05-16 11:31 - 2019-04-19 03:50 - 000005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2019-05-16 11:31 - 2019-04-19 03:50 - 000004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2019-05-16 11:31 - 2019-04-19 03:50 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2019-05-16 11:31 - 2019-04-19 03:50 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2019-05-16 11:31 - 2019-04-19 03:50 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2019-05-16 11:31 - 2019-04-19 03:50 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2019-05-16 11:31 - 2019-04-19 03:50 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2019-05-16 11:31 - 2019-04-19 03:50 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2019-05-16 11:31 - 2019-04-19 03:50 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2019-05-16 11:31 - 2019-04-19 03:50 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2019-05-16 11:31 - 2019-04-19 03:50 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2019-05-16 11:31 - 2019-04-19 03:50 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2019-05-16 11:31 - 2019-04-19 03:50 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2019-05-16 11:31 - 2019-04-19 03:50 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2019-05-16 11:31 - 2019-04-19 03:50 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2019-05-16 11:31 - 2019-04-19 03:50 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2019-05-16 11:31 - 2019-04-19 03:50 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2019-05-16 11:31 - 2019-04-19 03:50 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2019-05-16 11:31 - 2019-04-19 03:50 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2019-05-16 11:31 - 2019-04-19 03:50 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2019-05-16 11:31 - 2019-04-19 03:50 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2019-05-16 11:31 - 2019-04-19 03:50 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2019-05-16 11:31 - 2019-04-19 03:50 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2019-05-16 11:31 - 2019-04-19 03:50 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2019-05-16 11:31 - 2019-04-19 03:44 - 000095456 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2019-05-16 11:31 - 2019-04-19 03:42 - 000262376 _____ (Microsoft Corporation) C:\Windows\system32\hal.dll
2019-05-16 11:31 - 2019-04-19 03:42 - 000036064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\vdrvroot.sys
2019-05-16 11:31 - 2019-04-19 03:42 - 000015080 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msisadrv.sys
2019-05-16 11:31 - 2019-04-19 03:42 - 000012136 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\swenum.sys
2019-05-16 11:31 - 2019-04-19 03:40 - 001211392 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2019-05-16 11:31 - 2019-04-19 03:40 - 000503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2019-05-16 11:31 - 2019-04-19 03:40 - 000361984 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll
2019-05-16 11:31 - 2019-04-19 03:40 - 000345600 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2019-05-16 11:31 - 2019-04-19 03:40 - 000316928 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2019-05-16 11:31 - 2019-04-19 03:40 - 000312320 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2019-05-16 11:31 - 2019-04-19 03:40 - 000243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2019-05-16 11:31 - 2019-04-19 03:40 - 000236032 _____ (Microsoft Corporation) C:\Windows\system32\srvsvc.dll
2019-05-16 11:31 - 2019-04-19 03:40 - 000215552 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2019-05-16 11:31 - 2019-04-19 03:40 - 000210432 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2019-05-16 11:31 - 2019-04-19 03:40 - 000190464 _____ (Microsoft Corporation) C:\Windows\system32\rpchttp.dll
2019-05-16 11:31 - 2019-04-19 03:40 - 000146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2019-05-16 11:31 - 2019-04-19 03:40 - 000135680 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2019-05-16 11:31 - 2019-04-19 03:40 - 000094208 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2019-05-16 11:31 - 2019-04-19 03:40 - 000063488 _____ (Microsoft Corporation) C:\Windows\system32\setbcdlocale.dll
2019-05-16 11:31 - 2019-04-19 03:40 - 000060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2019-05-16 11:31 - 2019-04-19 03:40 - 000050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2019-05-16 11:31 - 2019-04-19 03:40 - 000028672 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2019-05-16 11:31 - 2019-04-19 03:40 - 000028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2019-05-16 11:31 - 2019-04-19 03:40 - 000016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll
2019-05-16 11:31 - 2019-04-19 03:40 - 000013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll
2019-05-16 11:31 - 2019-04-19 03:40 - 000013312 _____ (Microsoft Corporation) C:\Windows\system32\sscore.dll
2019-05-16 11:31 - 2019-04-19 03:39 - 001162752 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2019-05-16 11:31 - 2019-04-19 03:39 - 000880640 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2019-05-16 11:31 - 2019-04-19 03:39 - 000690688 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2019-05-16 11:31 - 2019-04-19 03:39 - 000463872 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll
2019-05-16 11:31 - 2019-04-19 03:39 - 000419840 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2019-05-16 11:31 - 2019-04-19 03:39 - 000123904 _____ (Microsoft Corporation) C:\Windows\system32\bcrypt.dll
2019-05-16 11:31 - 2019-04-19 03:39 - 000059904 _____ (Microsoft Corporation) C:\Windows\system32\appidapi.dll
2019-05-16 11:31 - 2019-04-19 03:39 - 000044032 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2019-05-16 11:31 - 2019-04-19 03:39 - 000043520 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll
2019-05-16 11:31 - 2019-04-19 03:39 - 000034816 _____ (Microsoft Corporation) C:\Windows\system32\appidsvc.dll
2019-05-16 11:31 - 2019-04-19 03:39 - 000022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2019-05-16 11:31 - 2019-04-19 03:39 - 000006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2019-05-16 11:31 - 2019-04-19 03:39 - 000006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2019-05-16 11:31 - 2019-04-19 03:39 - 000005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2019-05-16 11:31 - 2019-04-19 03:39 - 000004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2019-05-16 11:31 - 2019-04-19 03:39 - 000004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2019-05-16 11:31 - 2019-04-19 03:39 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2019-05-16 11:31 - 2019-04-19 03:39 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2019-05-16 11:31 - 2019-04-19 03:39 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll

Scan Part 2

2019-05-16 11:31 - 2019-04-19 03:39 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2019-05-16 11:31 - 2019-04-19 03:39 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2019-05-16 11:31 - 2019-04-19 03:39 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2019-05-16 11:31 - 2019-04-19 03:39 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2019-05-16 11:31 - 2019-04-19 03:39 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2019-05-16 11:31 - 2019-04-19 03:39 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2019-05-16 11:31 - 2019-04-19 03:39 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2019-05-16 11:31 - 2019-04-19 03:39 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2019-05-16 11:31 - 2019-04-19 03:39 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2019-05-16 11:31 - 2019-04-19 03:39 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2019-05-16 11:31 - 2019-04-19 03:39 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2019-05-16 11:31 - 2019-04-19 03:39 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2019-05-16 11:31 - 2019-04-19 03:39 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2019-05-16 11:31 - 2019-04-19 03:39 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2019-05-16 11:31 - 2019-04-19 03:39 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2019-05-16 11:31 - 2019-04-19 03:39 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2019-05-16 11:31 - 2019-04-19 03:39 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2019-05-16 11:31 - 2019-04-19 03:39 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2019-05-16 11:31 - 2019-04-19 03:39 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2019-05-16 11:31 - 2019-04-19 03:39 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2019-05-16 11:31 - 2019-04-19 03:27 - 000009728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sscore.dll
2019-05-16 11:31 - 2019-04-19 03:26 - 000050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe
2019-05-16 11:31 - 2019-04-19 03:20 - 000025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2019-05-16 11:31 - 2019-04-19 03:20 - 000014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2019-05-16 11:31 - 2019-04-19 03:20 - 000007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2019-05-16 11:31 - 2019-04-19 03:20 - 000002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2019-05-16 11:31 - 2019-04-19 03:19 - 000036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptbase.dll
2019-05-16 11:31 - 2019-04-19 03:18 - 000006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2019-05-16 11:31 - 2019-04-19 03:18 - 000004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2019-05-16 11:31 - 2019-04-19 03:18 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2019-05-16 11:31 - 2019-04-19 03:18 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2019-05-16 11:31 - 2019-04-19 03:15 - 000148480 _____ (Microsoft Corporation) C:\Windows\system32\appidpolicyconverter.exe
2019-05-16 11:31 - 2019-04-19 03:15 - 000062464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\appid.sys
2019-05-16 11:31 - 2019-04-19 03:15 - 000017920 _____ (Microsoft Corporation) C:\Windows\system32\appidcertstorecheck.exe
2019-05-16 11:31 - 2019-04-19 03:14 - 000064000 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
2019-05-16 11:31 - 2019-04-19 03:12 - 000338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2019-05-16 11:31 - 2019-04-19 03:11 - 000296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2019-05-16 11:31 - 2019-04-19 03:11 - 000129024 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\videoprt.sys
2019-05-16 11:31 - 2019-04-19 03:08 - 000464384 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv.sys
2019-05-16 11:31 - 2019-04-19 03:08 - 000406016 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys
2019-05-16 11:31 - 2019-04-19 03:08 - 000291328 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2019-05-16 11:31 - 2019-04-19 03:08 - 000169472 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys
2019-05-16 11:31 - 2019-04-19 03:08 - 000160768 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2019-05-16 11:31 - 2019-04-19 03:08 - 000129536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2019-05-16 11:31 - 2019-04-19 03:07 - 000112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2019-05-16 11:31 - 2019-04-19 03:07 - 000064512 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\amdk8.sys
2019-05-16 11:31 - 2019-04-19 03:07 - 000062464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\intelppm.sys
2019-05-16 11:31 - 2019-04-19 03:07 - 000060928 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\processr.sys
2019-05-16 11:31 - 2019-04-19 03:07 - 000060928 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\amdppm.sys
2019-05-16 11:31 - 2019-04-19 03:07 - 000044544 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\npfs.sys
2019-05-16 11:31 - 2019-04-19 03:07 - 000030720 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2019-05-16 11:31 - 2019-04-16 16:17 - 001425920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ole32.dll
2019-05-16 11:31 - 2019-04-16 16:17 - 000628224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\usp10.dll
2019-05-16 11:31 - 2019-04-16 16:17 - 000313344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2019-05-16 11:31 - 2019-04-16 16:17 - 000026112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleres.dll
2019-05-16 11:31 - 2019-04-16 16:16 - 001499648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ExplorerFrame.dll
2019-05-16 11:31 - 2019-04-16 16:05 - 002072576 _____ (Microsoft Corporation) C:\Windows\system32\ole32.dll
2019-05-16 11:31 - 2019-04-16 16:05 - 001867776 _____ (Microsoft Corporation) C:\Windows\system32\ExplorerFrame.dll
2019-05-16 11:31 - 2019-04-16 16:05 - 000806400 _____ (Microsoft Corporation) C:\Windows\system32\usp10.dll
2019-05-16 11:31 - 2019-04-16 16:05 - 000516096 _____ (Microsoft Corporation) C:\Windows\system32\rpcss.dll
2019-05-16 11:31 - 2019-04-16 16:05 - 000405504 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2019-05-16 11:31 - 2019-04-16 16:05 - 000026112 _____ (Microsoft Corporation) C:\Windows\system32\oleres.dll
2019-05-16 11:31 - 2019-04-16 16:05 - 000008704 _____ (Microsoft Corporation) C:\Windows\system32\comcat.dll
2019-05-16 11:31 - 2019-04-16 15:55 - 000007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comcat.dll
2019-05-16 11:31 - 2019-04-14 06:42 - 000309480 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
2019-05-16 11:31 - 2019-04-14 06:40 - 000111616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\t2embed.dll
2019-05-16 11:31 - 2019-04-14 06:40 - 000025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\lpk.dll
2019-05-16 11:31 - 2019-04-14 06:39 - 000010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dciman32.dll
2019-05-16 11:31 - 2019-04-14 06:28 - 000383720 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2019-05-16 11:31 - 2019-04-14 06:26 - 000046080 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2019-05-16 11:31 - 2019-04-14 06:26 - 000041472 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll
2019-05-16 11:31 - 2019-04-14 06:26 - 000014336 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll
2019-05-16 11:31 - 2019-04-14 06:12 - 000034304 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2019-05-16 11:31 - 2019-04-07 16:17 - 012574208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmploc.DLL
2019-05-16 11:31 - 2019-04-07 16:17 - 000617984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmdrmsdk.dll
2019-05-16 11:31 - 2019-04-07 16:17 - 000179712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll
2019-05-16 11:31 - 2019-04-07 16:16 - 003207168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mf.dll
2019-05-16 11:31 - 2019-04-07 16:16 - 001329664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\quartz.dll
2019-05-16 11:31 - 2019-04-07 16:16 - 000519680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qdvd.dll
2019-05-16 11:31 - 2019-04-07 16:16 - 000504320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msscp.dll
2019-05-16 11:31 - 2019-04-07 16:16 - 000442368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AUDIOKSE.dll
2019-05-16 11:31 - 2019-04-07 16:16 - 000354816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfplat.dll
2019-05-16 11:31 - 2019-04-07 16:16 - 000265216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msnetobj.dll
2019-05-16 11:31 - 2019-04-07 16:16 - 000103424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfps.dll
2019-05-16 11:31 - 2019-04-07 16:16 - 000046592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssign32.dll
2019-05-16 11:31 - 2019-04-07 16:16 - 000002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mferror.dll
2019-05-16 11:31 - 2019-04-07 16:15 - 001177088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2019-05-16 11:31 - 2019-04-07 16:15 - 001005056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptui.dll
2019-05-16 11:31 - 2019-04-07 16:15 - 000988160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\drmv2clt.dll
2019-05-16 11:31 - 2019-04-07 16:15 - 000744960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\blackbox.dll
2019-05-16 11:31 - 2019-04-07 16:15 - 000489984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\evr.dll
2019-05-16 11:31 - 2019-04-07 16:15 - 000406016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\drmmgrtn.dll
2019-05-16 11:31 - 2019-04-07 16:15 - 000373248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioEng.dll
2019-05-16 11:31 - 2019-04-07 16:15 - 000195072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioSes.dll
2019-05-16 11:31 - 2019-04-07 16:15 - 000146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsvc.dll
2019-05-16 11:31 - 2019-04-07 16:15 - 000106496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptnet.dll
2019-05-16 11:31 - 2019-04-07 16:15 - 000080896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsp.dll
2019-05-16 11:31 - 2019-04-07 16:05 - 000094440 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mountmgr.sys
2019-05-16 11:31 - 2019-04-07 16:03 - 012574720 _____ (Microsoft Corporation) C:\Windows\system32\wmploc.DLL
2019-05-16 11:31 - 2019-04-07 16:03 - 001574400 _____ (Microsoft Corporation) C:\Windows\system32\quartz.dll
2019-05-16 11:31 - 2019-04-07 16:03 - 000782848 _____ (Microsoft Corporation) C:\Windows\system32\wmdrmsdk.dll
2019-05-16 11:31 - 2019-04-07 16:03 - 000499712 _____ (Microsoft Corporation) C:\Windows\system32\AUDIOKSE.dll
2019-05-16 11:31 - 2019-04-07 16:03 - 000371712 _____ (Microsoft Corporation) C:\Windows\system32\qdvd.dll
2019-05-16 11:31 - 2019-04-07 16:03 - 000229376 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2019-05-16 11:31 - 2019-04-07 16:03 - 000187904 _____ (Microsoft Corporation) C:\Windows\system32\pcasvc.dll
2019-05-16 11:31 - 2019-04-07 16:03 - 000037376 _____ (Microsoft Corporation) C:\Windows\system32\pcadm.dll
2019-05-16 11:31 - 2019-04-07 16:03 - 000034304 _____ (Microsoft Corporation) C:\Windows\system32\werdiagcontroller.dll
2019-05-16 11:31 - 2019-04-07 16:03 - 000009728 _____ (Microsoft Corporation) C:\Windows\system32\spwmp.dll
2019-05-16 11:31 - 2019-04-07 16:03 - 000008704 _____ (Microsoft Corporation) C:\Windows\system32\pcaevts.dll
2019-05-16 11:31 - 2019-04-07 16:03 - 000005120 _____ (Microsoft Corporation) C:\Windows\system32\msdxm.ocx
2019-05-16 11:31 - 2019-04-07 16:03 - 000005120 _____ (Microsoft Corporation) C:\Windows\system32\dxmasf.dll
2019-05-16 11:31 - 2019-04-07 16:02 - 001484800 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2019-05-16 11:31 - 2019-04-07 16:02 - 001202176 _____ (Microsoft Corporation) C:\Windows\system32\drmv2clt.dll
2019-05-16 11:31 - 2019-04-07 16:02 - 001068544 _____ (Microsoft Corporation) C:\Windows\system32\cryptui.dll
2019-05-16 11:31 - 2019-04-07 16:02 - 000842240 _____ (Microsoft Corporation) C:\Windows\system32\blackbox.dll
2019-05-16 11:31 - 2019-04-07 16:02 - 000680448 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll
2019-05-16 11:31 - 2019-04-07 16:02 - 000641024 _____ (Microsoft Corporation) C:\Windows\system32\msscp.dll
2019-05-16 11:31 - 2019-04-07 16:02 - 000632320 _____ (Microsoft Corporation) C:\Windows\system32\evr.dll
2019-05-16 11:31 - 2019-04-07 16:02 - 000497664 _____ (Microsoft Corporation) C:\Windows\system32\drmmgrtn.dll
2019-05-16 11:31 - 2019-04-07 16:02 - 000438784 _____ (Microsoft Corporation) C:\Windows\system32\AudioEng.dll
2019-05-16 11:31 - 2019-04-07 16:02 - 000433152 _____ (Microsoft Corporation) C:\Windows\system32\mfplat.dll
2019-05-16 11:31 - 2019-04-07 16:02 - 000325632 _____ (Microsoft Corporation) C:\Windows\system32\msnetobj.dll
2019-05-16 11:31 - 2019-04-07 16:02 - 000295936 _____ (Microsoft Corporation) C:\Windows\system32\AudioSes.dll
2019-05-16 11:31 - 2019-04-07 16:02 - 000284672 _____ (Microsoft Corporation) C:\Windows\system32\EncDump.dll
2019-05-16 11:31 - 2019-04-07 16:02 - 000206848 _____ (Microsoft Corporation) C:\Windows\system32\mfps.dll
2019-05-16 11:31 - 2019-04-07 16:02 - 000190976 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll
2019-05-16 11:31 - 2019-04-07 16:02 - 000141824 _____ (Microsoft Corporation) C:\Windows\system32\cryptnet.dll
2019-05-16 11:31 - 2019-04-07 16:02 - 000081920 _____ (Microsoft Corporation) C:\Windows\system32\cryptsp.dll
2019-05-16 11:31 - 2019-04-07 16:02 - 000060416 _____ (Microsoft Corporation) C:\Windows\system32\mssign32.dll
2019-05-16 11:31 - 2019-04-07 16:02 - 000011264 _____ (Microsoft Corporation) C:\Windows\system32\msmmsp.dll
2019-05-16 11:31 - 2019-04-07 16:02 - 000008192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\spwmp.dll
2019-05-16 11:31 - 2019-04-07 16:02 - 000004096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msdxm.ocx
2019-05-16 11:31 - 2019-04-07 16:02 - 000004096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxmasf.dll
2019-05-16 11:31 - 2019-04-07 16:02 - 000002048 _____ (Microsoft Corporation) C:\Windows\system32\mferror.dll
2019-05-16 11:31 - 2019-04-07 16:01 - 000050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rrinstaller.exe
2019-05-16 11:31 - 2019-04-07 16:01 - 000023040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfpmp.exe
2019-05-16 11:31 - 2019-04-07 15:57 - 000663552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\PEAuth.sys
2019-05-16 11:31 - 2019-04-07 15:49 - 000054272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wermgr.exe
2019-05-16 11:31 - 2019-04-07 15:48 - 000028672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\werdiagcontroller.dll
2019-05-16 11:31 - 2019-04-07 15:45 - 000125952 _____ (Microsoft Corporation) C:\Windows\system32\audiodg.exe
2019-05-16 11:31 - 2019-04-07 15:45 - 000055808 _____ (Microsoft Corporation) C:\Windows\system32\rrinstaller.exe
2019-05-16 11:31 - 2019-04-07 15:45 - 000024576 _____ (Microsoft Corporation) C:\Windows\system32\mfpmp.exe
2019-05-16 11:31 - 2019-04-07 15:35 - 000050688 _____ (Microsoft Corporation) C:\Windows\system32\wermgr.exe
2019-05-16 11:31 - 2019-04-07 15:33 - 000011264 _____ (Microsoft Corporation) C:\Windows\system32\pcawrk.exe
2019-05-16 11:31 - 2019-04-07 15:33 - 000009728 _____ (Microsoft Corporation) C:\Windows\system32\pcalua.exe
2019-05-15 16:28 - 2019-05-16 07:21 - 000000000 ____D C:\Users\Juan\Desktop\Eliseo
2019-05-15 15:51 - 2019-05-15 15:51 - 000000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdMtpDr_01_09_00.Wdf
2019-05-14 17:45 - 2019-05-14 17:45 - 000000000 ____D C:\Users\Juan\Documents\Audacity
2019-05-14 16:50 - 2019-05-14 16:50 - 021315608 _____ (Piriform Software Ltd) C:\Users\Juan\Downloads\ccsetup557.exe
2019-05-14 16:44 - 2019-05-14 22:51 - 000000000 ____D C:\Users\Juan\Tracing
2019-05-14 16:30 - 2019-05-14 16:30 - 000001374 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Photo Gallery.lnk
2019-05-14 16:30 - 2019-05-14 16:30 - 000001305 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Movie Maker.lnk
2019-05-14 16:30 - 2019-05-14 16:30 - 000000000 ____D C:\Windows\es
2019-05-14 16:29 - 2019-05-14 16:29 - 000002486 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live Messenger.lnk
2019-05-14 16:29 - 2019-05-14 16:29 - 000001458 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live Mail.lnk
2019-05-14 16:29 - 2019-05-14 16:29 - 000000000 ____D C:\Program Files\Windows Live
2019-05-14 16:29 - 2013-02-05 22:06 - 000057840 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fssfltr.sys
2019-05-14 16:28 - 2010-06-02 04:55 - 000527192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_7.dll
2019-05-14 16:28 - 2010-06-02 04:55 - 000518488 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_7.dll
2019-05-14 16:28 - 2010-06-02 04:55 - 000077656 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_5.dll
2019-05-14 16:28 - 2010-06-02 04:55 - 000074072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_5.dll
2019-05-14 16:28 - 2010-05-26 11:41 - 002526056 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_43.dll
2019-05-14 16:28 - 2010-05-26 11:41 - 000276832 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_43.dll
2019-05-14 16:27 - 2009-09-04 17:29 - 000523088 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_42.dll
2019-05-14 16:27 - 2009-09-04 17:29 - 000453456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_42.dll
2019-05-14 16:26 - 2019-05-14 16:26 - 000002147 _____ C:\Users\Juan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft SkyDrive.lnk
2019-05-14 16:26 - 2019-05-14 16:26 - 000002132 _____ C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft SkyDrive.lnk
2019-05-14 16:26 - 2019-05-14 16:26 - 000002132 _____ C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft SkyDrive.lnk
2019-05-14 16:26 - 2019-05-14 16:26 - 000000000 ___RD C:\Users\Juan\SkyDrive
2019-05-14 16:26 - 2019-05-14 16:26 - 000000000 ____D C:\ProgramData\Microsoft SkyDrive
2019-05-14 16:26 - 2019-05-14 16:26 - 000000000 ____D C:\Program Files (x86)\Microsoft SkyDrive
2019-05-14 16:25 - 2019-05-17 11:43 - 000000000 ____D C:\Users\Juan\AppData\Local\Windows Live
2019-05-14 13:05 - 2019-05-14 13:05 - 000000000 ____D C:\Users\Juan\Documents\XMovieMaker
2019-05-14 13:04 - 2019-05-14 13:05 - 000000000 ____D C:\Users\Juan\AppData\Roaming\xmoviemaker
2019-05-14 13:04 - 2019-05-14 13:04 - 000000000 ____D C:\ProgramData\xmoviemaker
2019-05-13 11:53 - 2012-02-03 14:01 - 000107552 _____ (Realtek Semiconductor Corporation) C:\Windows\system32\RTNUninst64.dll
2019-05-13 11:53 - 2012-02-03 14:01 - 000074344 _____ (Realtek Semiconductor Corporation) C:\Windows\system32\RtNicProp64.dll
2019-05-11 18:03 - 2019-05-11 18:03 - 000000000 ____D C:\ProgramData\GlarySoft
2019-05-11 18:00 - 2019-05-14 10:14 - 000000000 ____D C:\Program Files (x86)\Glary Utilities 5
2019-05-11 18:00 - 2019-05-11 18:18 - 000000000 ____D C:\Users\Juan\AppData\Roaming\GlarySoft
2019-05-11 18:00 - 2019-05-11 18:07 - 000001092 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Glary Utilities 5.lnk
2019-05-11 18:00 - 2019-05-11 18:00 - 000028936 _____ (Glarysoft Ltd) C:\Windows\system32\Drivers\GUBootStartup.sys
2019-05-11 18:00 - 2019-05-11 18:00 - 000000000 ____D C:\Users\Juan\AppData\Roaming\DiskDefrag
2019-05-11 18:00 - 2019-05-11 18:00 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Glary Utilities 5
2019-05-10 16:27 - 2019-05-10 16:26 - 000008192 _____ C:\Windows\SysWOW64\srvany.exe
2019-05-10 10:03 - 2019-05-10 10:03 - 000000000 ____D C:\Users\Juan\AppData\Local\AvastAntiTrackPremium
2019-05-10 10:02 - 2019-05-21 09:51 - 000000000 ____D C:\Program Files (x86)\AVAST Software
2019-05-10 10:02 - 2019-05-10 10:03 - 000000000 ____D C:\Users\Juan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AvastAntiTrackPremium
2019-05-10 09:46 - 2011-06-15 14:11 - 000048416 _____ (Realtek Corporation) C:\Windows\system32\Drivers\RtTeam60.sys
2019-05-06 17:58 - 2019-05-07 15:57 - 000000000 ____D C:\Users\Juan\AppData\Roaming\VEGAS
2019-05-06 17:58 - 2019-05-06 17:58 - 000000000 ____D C:\Users\Juan\AppData\Local\Sony
2019-05-06 17:58 - 2019-05-06 17:58 - 000000000 ____D C:\Users\Juan\AppData\Local\Plugin.VegasOfxStitch
2019-05-06 17:58 - 2019-05-06 17:58 - 000000000 ____D C:\Users\Juan\AppData\Local\Plugin.MxOfxRotation
2019-05-06 17:58 - 2019-05-06 17:58 - 000000000 ____D C:\Users\Juan\AppData\Local\MAGIX
2019-05-06 17:58 - 2019-05-06 17:58 - 000000000 ____D C:\ProgramData\VEGAS Pro
2019-05-06 17:57 - 2019-05-08 16:38 - 000000000 ____D C:\Users\Juan\AppData\Roaming\VEGAS Pro
2019-05-06 17:57 - 2019-05-08 16:38 - 000000000 ____D C:\Users\Juan\AppData\Local\VEGAS Pro
2019-05-06 17:57 - 2019-05-06 17:58 - 000000000 ____D C:\Users\Juan\AppData\Roaming\MAGIX
2019-05-06 17:50 - 2019-05-08 16:39 - 000000000 ____D C:\ProgramData\VEGAS
2019-05-06 17:50 - 2019-05-08 16:39 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VEGAS
2019-05-06 17:50 - 2019-05-08 16:37 - 000000000 ____D C:\Program Files\VEGAS
2019-05-06 17:50 - 2019-05-08 16:36 - 000000000 ____D C:\Program Files (x86)\VEGAS
2019-05-06 17:50 - 2019-05-06 17:50 - 000000000 ____D C:\Users\Juan\AppData\Local\VEGAS
2019-05-06 17:50 - 2019-05-06 17:50 - 000000000 ____D C:\ProgramData\Magix
2019-05-06 17:50 - 2019-05-06 17:50 - 000000000 ____D C:\Program Files\Common Files\OFX
2019-05-06 17:48 - 2019-05-07 09:37 - 000000000 ____D C:\Users\Juan\AppData\Roaming\Sony
2019-05-06 17:13 - 2019-05-06 17:13 - 000000000 ____D C:\Users\Default\AppData\Local\Microsoft Help
2019-05-06 17:13 - 2019-05-06 17:13 - 000000000 ____D C:\Users\Default User\AppData\Local\Microsoft Help
2019-05-06 15:46 - 2019-05-22 08:48 - 000002222 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2019-05-06 15:46 - 2019-05-22 08:48 - 000002181 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2019-05-06 15:06 - 2019-05-06 15:06 - 000007619 _____ C:\Users\Juan\AppData\Local\Resmon.ResmonCfg
2019-05-05 21:18 - 2019-05-08 16:39 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2019-05-05 21:17 - 2019-05-08 16:39 - 000000000 ____D C:\Program Files\Microsoft Silverlight
2019-05-05 21:17 - 2019-05-08 16:39 - 000000000 ____D C:\Program Files (x86)\Microsoft Silverlight
2019-05-05 16:05 - 2019-05-14 16:30 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live
2019-05-05 16:04 - 2019-05-14 16:29 - 000000000 ____D C:\Program Files (x86)\Windows Live
2019-05-05 16:04 - 2019-05-05 16:04 - 000000020 _____ C:\Windows\üõ
2019-05-05 16:04 - 2006-11-29 13:06 - 004398360 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_32.dll
2019-05-05 16:04 - 2006-11-29 13:06 - 003426072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_32.dll
2019-05-05 11:02 - 2019-05-05 11:02 - 000001319 _____ C:\Windows\system32\Drivers\etc\hosts.txt
2019-05-01 11:47 - 2019-05-01 11:47 - 000001245 _____ C:\Users\Juan\Desktop\Magnify.lnk
2019-04-30 10:24 - 2019-04-30 10:24 - 000000971 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer 14.lnk
2019-04-30 10:23 - 2019-05-14 10:19 - 000000000 ____D C:\Users\Juan\AppData\Roaming\TeamViewer
2019-04-30 10:22 - 2019-05-22 11:41 - 000000000 ____D C:\Program Files (x86)\TeamViewer
2019-04-29 15:05 - 2019-05-17 11:46 - 000004128 _____ C:\Windows\System32\Tasks\CCleaner Update
2019-04-29 15:05 - 2019-05-17 11:46 - 000002804 _____ C:\Windows\System32\Tasks\CCleanerSkipUAC
2019-04-29 15:05 - 2019-04-29 15:05 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2019-04-29 15:05 - 2019-04-29 15:05 - 000000000 ____D C:\Program Files\CCleaner
2019-04-29 12:07 - 2019-05-17 11:46 - 000003214 _____ C:\Windows\System32\Tasks\{F9C3B1B4-C7FD-46C6-B1E1-E20D3D732A4D}
2019-04-29 11:36 - 2019-04-11 02:11 - 000419648 _____ C:\Windows\SysWOW64\locale.nls
2019-04-29 11:36 - 2019-04-11 02:11 - 000419648 _____ C:\Windows\system32\locale.nls
2019-04-29 11:26 - 2019-05-21 09:51 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVAST Software
2019-04-29 11:26 - 2019-05-21 08:14 - 000000000 ____D C:\Users\Juan\AppData\Roaming\AVAST Software
2019-04-29 11:25 - 2019-05-21 08:30 - 000003910 _____ C:\Windows\System32\Tasks\Avast Emergency Update
2019-04-29 11:25 - 2019-05-21 08:29 - 001030784 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2019-04-29 11:25 - 2019-05-21 08:29 - 000549200 _____ (AVAST Software) C:\Windows\system32\Drivers\aswNetSec.sys
2019-04-29 11:25 - 2019-05-21 08:29 - 000477584 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2019-04-29 11:25 - 2019-05-21 08:29 - 000385640 _____ (AVAST Software) C:\Windows\system32\Drivers\aswVmm.sys
2019-04-29 11:25 - 2019-05-21 08:29 - 000262496 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbidsdriver.sys
2019-04-29 11:25 - 2019-05-21 08:29 - 000225096 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2019-04-29 11:25 - 2019-05-21 08:29 - 000207448 _____ (AVAST Software) C:\Windows\system32\Drivers\aswArPot.sys
2019-04-29 11:25 - 2019-05-21 08:29 - 000205848 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbidsh.sys
2019-04-29 11:25 - 2019-05-21 08:29 - 000167872 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2019-04-29 11:25 - 2019-05-21 08:29 - 000112312 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2019-04-29 11:25 - 2019-05-21 08:29 - 000087944 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRvrt.sys
2019-04-29 11:25 - 2019-05-21 08:29 - 000061472 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbuniv.sys
2019-04-29 11:25 - 2019-05-21 08:29 - 000042288 _____ (AVAST Software) C:\Windows\system32\Drivers\aswKbd.sys
2019-04-29 11:25 - 2019-04-29 11:25 - 000038152 _____ (AVAST Software) C:\Windows\system32\Drivers\aswNetNd6.sys
2019-04-29 11:24 - 2019-05-09 21:20 - 000000000 ____D C:\Program Files\AVAST Software
2019-04-29 09:33 - 2019-04-29 09:34 - 000000000 ____D C:\Users\Juan\AppData\Local\Nero
2019-04-29 09:33 - 2019-04-29 09:33 - 000000000 ____D C:\Users\Juan\Documents\NeroVideo
2019-04-27 14:03 - 2019-04-27 14:03 - 000000000 ____D C:\Users\Juan\AppData\Local\ESET
2019-04-26 14:58 - 2019-04-26 15:13 - 000000000 ____D C:\Users\Juan\AppData\Roaming\TunesKit Spotify Converter
2019-04-26 14:58 - 2019-04-26 14:58 - 000000000 ____D C:\Users\Juan\Documents\TunesKit Spotify Converter
2019-04-26 14:57 - 2019-04-26 14:57 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TunesKit Spotify Converter
2019-04-26 14:57 - 2019-04-26 14:57 - 000000000 ____D C:\Program Files (x86)\TunesKit Spotify Converter
2019-04-26 14:46 - 2019-05-22 11:50 - 000000000 ____D C:\Users\Juan\AppData\Local\Spotify
2019-04-26 14:46 - 2019-05-22 11:42 - 000000000 ____D C:\Users\Juan\AppData\Roaming\Spotify
2019-04-26 14:46 - 2019-04-26 14:46 - 000001748 _____ C:\Users\Juan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Spotify.lnk
2019-04-26 13:01 - 2019-04-26 13:01 - 000000000 ____D C:\Users\Juan\AppData\Local\Eric_Zhang
2019-04-25 18:30 - 2019-04-25 18:30 - 000000000 ____D C:\ProgramData\Avanquest Software
2019-04-24 21:38 - 2019-04-24 21:38 - 000000000 ____D C:\Users\Juan\AppData\Roaming\HybridReverb2
2019-04-24 21:28 - 2019-05-17 11:46 - 000002760 _____ C:\Windows\System32\Tasks\AVGPCTuneUp_Task_BkGndMaintenance
2019-04-24 20:39 - 2019-04-24 20:39 - 000000886 _____ C:\Users\Juan\Desktop\MUSICA.lnk
2019-04-24 16:01 - 2019-04-26 09:10 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip
2019-04-24 16:01 - 2019-04-26 09:10 - 000000000 ____D C:\Program Files\7-Zip
2019-04-23 18:16 - 2019-04-24 09:15 - 000000000 ____D C:\AdwCleaner
2019-04-23 12:00 - 2019-04-23 12:00 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HybridReverb2
2019-04-23 12:00 - 2019-04-23 12:00 - 000000000 ____D C:\Program Files (x86)\Steinberg
2019-04-23 12:00 - 2019-04-23 12:00 - 000000000 ____D C:\Program Files (x86)\HybridReverb2
2019-04-23 12:00 - 2007-11-07 16:19 - 000054272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vcomp90.dll
2019-04-22 18:33 - 2019-05-17 11:46 - 000003172 _____ C:\Windows\System32\Tasks\{B2AA2367-E5B4-4094-9BB2-FD570788C35C}
2019-04-22 18:24 - 2019-04-22 18:24 - 000000000 ____D C:\Program Files (x86)\ASIO4ALL v2
2019-04-22 17:35 - 2019-04-22 17:35 - 000000000 ____D C:\Users\Juan\Documents\REAPER Media
2019-04-22 17:07 - 2019-05-08 16:39 - 000000000 ____D C:\Users\Juan\AppData\Roaming\REAPER
2019-04-22 17:07 - 2019-04-22 17:07 - 000000828 _____ C:\Users\Public\Desktop\REAPER (x64).lnk
2019-04-22 17:07 - 2019-04-22 17:07 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\REAPER (x64)
2019-04-22 17:07 - 2019-04-22 17:07 - 000000000 ____D C:\Program Files\REAPER (x64)
2019-04-22 17:07 - 2019-04-22 17:07 - 000000000 ____D C:\Program Files\Common Files\Propellerhead Software

==================== One month (modified) ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-05-22 11:47 - 2009-07-14 05:45 - 000022064 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2019-05-22 11:47 - 2009-07-14 05:45 - 000022064 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2019-05-22 11:44 - 2019-04-14 15:40 - 000000000 ____D C:\Users\Juan\AppData\Local\AVAST Software
2019-05-22 11:41 - 2019-04-17 19:57 - 000000000 __SHD C:\Users\Juan\IntelGraphicsProfiles
2019-05-22 11:40 - 2009-07-14 06:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2019-05-22 09:08 - 2019-04-14 16:15 - 000000000 ____D C:\Users\Juan\AppData\LocalLow\Mozilla
2019-05-22 08:37 - 2009-07-14 04:20 - 000000000 ____D C:\Windows\inf
2019-05-21 16:24 - 2019-04-15 08:18 - 000000000 ____D C:\Users\Juan\AppData\Roaming\vlc
2019-05-21 13:03 - 2019-04-04 13:51 - 000000000 ___RD C:\Users\Juan\Desktop\Conversiones
2019-05-21 09:51 - 2019-04-14 15:38 - 000000000 ____D C:\ProgramData\AVAST Software
2019-05-21 09:02 - 2019-04-14 15:43 - 000000000 ____D C:\Users\Juan\Desktop\SEGURIDAD
2019-05-20 18:04 - 2019-04-15 08:41 - 000000000 ____D C:\Users\Juan\Desktop\Imagen y Fotografia
2019-05-20 17:59 - 2019-04-16 14:48 - 000000000 ____D C:\Users\Juan\AppData\LocalLow\Adobe
2019-05-18 12:25 - 2019-04-16 14:44 - 000000000 ____D C:\Users\Juan\AppData\Local\Adobe
2019-05-18 09:09 - 2019-04-19 19:41 - 000000000 ____D C:\Users\Juan\AppData\Roaming\HpUpdate
2019-05-17 14:40 - 2019-04-16 14:46 - 000002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2019-05-17 11:46 - 2019-04-19 15:20 - 000003230 _____ C:\Windows\System32\Tasks\{FD4E8400-2A7D-4C45-A5F1-335DEF35A1F7}
2019-05-17 11:46 - 2019-04-16 14:47 - 000004476 _____ C:\Windows\System32\Tasks\Adobe Acrobat Update Task
2019-05-17 11:46 - 2019-04-15 12:29 - 000003844 _____ C:\Windows\System32\Tasks\Logitech Desktop Messenger
2019-05-17 11:46 - 2019-04-14 15:41 - 000003534 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2019-05-17 11:46 - 2019-04-14 15:41 - 000003406 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2019-05-17 11:46 - 2019-04-14 15:40 - 000000000 ____D C:\Windows\System32\Tasks\Avast Software
2019-05-16 19:10 - 2019-04-14 16:51 - 000000000 ____D C:\Users\Juan\Documents\Blocs de notas de OneNote
2019-05-16 18:46 - 2009-07-14 04:20 - 000000000 ____D C:\Windows\rescache
2019-05-16 16:52 - 2011-04-12 10:10 - 000747396 _____ C:\Windows\system32\perfh00A.dat
2019-05-16 16:52 - 2011-04-12 10:10 - 000158868 _____ C:\Windows\system32\perfc00A.dat
2019-05-16 16:52 - 2009-07-14 06:13 - 001676890 _____ C:\Windows\system32\PerfStringBackup.INI
2019-05-16 11:46 - 2009-07-14 05:45 - 000420296 _____ C:\Windows\system32\FNTCACHE.DAT
2019-05-16 11:44 - 2009-07-14 04:20 - 000000000 ____D C:\Windows\SysWOW64\Dism
2019-05-16 11:44 - 2009-07-14 04:20 - 000000000 ____D C:\Windows\system32\Dism
2019-05-16 11:40 - 2019-04-14 22:05 - 000000000 ____D C:\Windows\system32\MRT
2019-05-16 11:37 - 2019-04-14 22:05 - 132445408 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2019-05-16 11:34 - 2019-04-16 11:45 - 001650540 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
2019-05-15 16:23 - 2019-04-14 18:04 - 000000000 ____D C:\Users\Juan\Desktop\Limpieza y Mantenimiento
2019-05-14 18:29 - 2019-04-15 08:31 - 000000000 ____D C:\Users\Juan\AppData\Roaming\Winamp
2019-05-14 18:22 - 2019-04-15 08:21 - 000000000 ____D C:\Users\Juan\AppData\Roaming\audacity
2019-05-14 16:44 - 2019-04-14 10:56 - 000000000 ____D C:\Users\Juan
2019-05-14 16:28 - 2009-07-14 04:20 - 000000000 ____D C:\Program Files\Common Files\Microsoft Shared
2019-05-14 10:51 - 2019-04-14 14:24 - 000000000 ___RD C:\Users\Juan\Desktop\AUDIO Y VIDEO
2019-05-14 10:17 - 2019-04-15 08:21 - 000000000 ____D C:\Program Files (x86)\Audacity
2019-05-14 10:16 - 2019-04-15 08:21 - 000001019 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Audacity.lnk
2019-05-13 11:53 - 2019-04-14 12:02 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2019-05-13 11:53 - 2019-04-14 12:02 - 000000000 ____D C:\Program Files (x86)\Realtek
2019-05-13 11:52 - 2019-04-14 13:24 - 000037723 _____ C:\Windows\Ascd_tmp.ini
2019-05-13 11:10 - 2019-04-15 11:33 - 000000000 ____D C:\Users\Juan\AppData\Local\AvgSetupLog
2019-05-13 11:10 - 2019-04-15 11:33 - 000000000 ____D C:\ProgramData\Avg
2019-05-13 09:29 - 2009-07-14 04:20 - 000000000 ____D C:\Windows\system32\NDF
2019-05-12 09:31 - 2019-04-15 17:25 - 000153328 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbae64.sys
2019-05-11 18:21 - 2019-04-15 15:29 - 000000000 ____D C:\Users\Juan\Desktop\SETUPS
2019-05-11 18:04 - 2019-04-15 15:34 - 000000000 ___RD C:\Users\Juan\Desktop\2.-Mis ensayos
2019-05-10 09:46 - 2019-04-14 13:33 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Realtek
2019-05-09 09:41 - 2019-04-14 15:58 - 000000000 ____D C:\Users\Juan\AppData\Roaming\Google
2019-05-08 16:43 - 2019-04-14 13:32 - 000109208 _____ C:\Users\Juan\AppData\Local\GDIPFONTCACHEV1.DAT
2019-05-08 16:39 - 2009-07-14 04:20 - 000000000 ____D C:\Windows\registration
2019-05-08 16:38 - 2019-04-14 15:41 - 000000000 ____D C:\Users\Juan\AppData\Local\Google
2019-05-08 16:36 - 2019-04-14 15:41 - 000000000 ____D C:\Program Files (x86)\Google
2019-05-06 17:18 - 2009-07-14 03:34 - 000000478 _____ C:\Windows\win.ini
2019-05-05 21:28 - 2009-07-14 06:08 - 000032514 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2019-05-05 16:04 - 2019-04-14 16:44 - 000000000 ____D C:\Program Files (x86)\Microsoft SQL Server Compact Edition
2019-04-30 13:10 - 2019-04-14 16:05 - 000000000 ____D C:\Users\Juan\Desktop\UTILIDADES
2019-04-29 11:25 - 2019-04-14 15:40 - 000000077 _____ C:\Windows\system32\Drivers\aswSP.sys.sum
2019-04-29 09:33 - 2019-04-16 12:03 - 000000000 ____D C:\Users\Juan\AppData\Roaming\Nero
2019-04-29 09:33 - 2019-04-16 11:53 - 000000000 ____D C:\ProgramData\Nero
2019-04-24 20:48 - 2019-04-14 18:05 - 000000000 ___RD C:\Users\Juan\Desktop\Programas de descargas
2019-04-22 18:24 - 2019-04-19 15:15 - 000000000 ____D C:\Users\Juan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ASIO4ALL v2

==================== Files in the root of some directories =======

2019-05-06 15:06 - 2019-05-06 15:06 - 000007619 _____ () C:\Users\Juan\AppData\Local\Resmon.ResmonCfg

==================== SigCheck ===============================

(There is no automatic fix for files that do not pass verification.)


LastRegBack: 2019-05-14 13:36
==================== End of FRST.txt ============================
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 19-05.2019
Ran by Juan (22-05-2019 12:05:09)
Running from E:\DIRECTORIO PRINCIPAL\DESCARGAS\FIREFOX
Windows 7 Home Premium Service Pack 1 (X64) (2019-04-14 09:56:50)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrador (S-1-5-21-2258397178-3295816786-390305721-500 - Administrator - Disabled)
Invitado (S-1-5-21-2258397178-3295816786-390305721-501 - Limited - Disabled)
Juan (S-1-5-21-2258397178-3295816786-390305721-1000 - Administrator - Enabled) => C:\Users\Juan

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Avast Antivirus (Disabled - Up to date) {8EA8924E-BC81-DC44-8BB0-8BAE75D86EBF}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Disabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402}
FW: Avast Antivirus (Disabled) {B693136B-F6EE-DD1C-A0EF-229B8B0B29C4}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

7-Zip 18.05 (x64) (HKLM\...\7-Zip) (Version: 18.05 - Igor Pavlov)
7-Zip 19.00 (x64 edition) (HKLM\...\{23170F69-40C1-2702-1900-000001000000}) (Version: 19.00.00.0 - Igor Pavlov)
Acer eDisplay Management (HKLM-x32\...\{A586DC50-B18D-48FB-B7CC-A598200457C2}) (Version: 1.20.011 - Portrait Displays, Inc.)
Adobe Acrobat Reader DC - Español (HKLM-x32\...\{AC76BA86-7AD7-1034-7B44-AC0F074E4100}) (Version: 19.012.20034 - Adobe Systems Incorporated)
Adobe Photoshop CS6 versión 13.0.1 (HKLM-x32\...\{A724DC44-6241-42D3-BA57-778B178ABC17}_is1) (Version: 13.0.1 - Adobe Systems, Inc.)
Advanced RAR Repair v1.2 (HKLM-x32\...\Advanced RAR Repair v1.2) (Version:  - )
ASIO4ALL (HKLM-x32\...\ASIO4ALL) (Version: 2.10 - Michael Tippach)
aTube Catcher versión 3.8 (HKLM-x32\...\{D43B360E-722D-421B-BC77-20B9E0F8B6CD}_is1) (Version: 3.8 - DsNET Corp)
Audacity 2.3.2 (HKLM-x32\...\Audacity_is1) (Version: 2.3.2 - Audacity Team)
Avast Driver Updater (HKLM-x32\...\{8804140C-3144-4075-9526-1C662E26CA17}) (Version: 2.5.5 - AVAST Software) Hidden
Avast Premier (HKLM-x32\...\Avast Antivirus) (Version: 19.5.2378 - AVAST Software)
AvastAntiTrackPremium (HKLM-x32\...\AvastAntiTrackPremium) (Version: 1.2.2.21060 - Avast)
CCleaner (HKLM\...\CCleaner) (Version: 5.57 - Piriform)
CDDRV_Installer (HKLM-x32\...\{8CC990CD-87C8-475C-AC32-8A7984E2FCFA}) (Version: 1.00.0000 - Logitech) Hidden
D3DX10 (HKLM-x32\...\{E09C4DB7-630C-4F06-A631-8EA7239923AF}) (Version: 15.4.2368.0902 - Microsoft) Hidden
Diagnostic Utility (HKLM-x32\...\{7236672F-6430-439E-9B27-27EDEAF1D676}) (Version: 1.00.0000 - Realtek)
FileASSASSIN (HKLM-x32\...\FileASSASSIN) (Version: 1.06 - Malwarebytes)
Freemake Video Converter versión 4.1.6 (HKLM-x32\...\Freemake Video Converter_is1) (Version: 4.1.6 - Ellora Assets Corporation)
Galería de fotos (HKLM-x32\...\{F7314CA2-F900-46D7-9EA1-FBDD9D73F765}) (Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Glary Utilities PRO 5.118 (HKLM-x32\...\Glary Utilities 5) (Version: 5.118.0.143 - Glarysoft Ltd)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 74.0.3729.169 - Google Inc.)
Google Toolbar for Internet Explorer (HKLM-x32\...\{18455581-E099-4BA8-BC6B-F34B2F06600C}) (Version: 1.0.0 - Google Inc.) Hidden
Google Toolbar for Internet Explorer (HKLM-x32\...\{2318C2B1-4965-11d4-9B18-009027A5CD4F}) (Version: 7.5.8231.2252 - Google Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.34.11 - Google LLC) Hidden
Google Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.21.169 - Google Inc.) Hidden
HP Deskjet 3520 series Setup Guide (HKLM-x32\...\{AEEDCEB7-00B8-4BE1-B492-AB04803D5F1E}) (Version: 27.0.0 - Hewlett Packard)
HP Deskjet 3520 series Software básico del dispositivo (HKLM\...\{0F694DB2-773D-44A8-B4CF-8AA3056DE318}) (Version: 28.0.1315.0 - Hewlett-Packard Co.)
HP Update (HKLM-x32\...\{6F1C00D2-25C2-4CBA-8126-AE9A6E2E9CD5}) (Version: 5.003.003.001 - Hewlett-Packard)
HPDiagnosticAlert (HKLM-x32\...\{B6465A32-8BE9-4B38-ADC5-4B4BDDC10B0D}) (Version: 1.00.0001 - Microsoft) Hidden
HybridReverb2 (HKLM-x32\...\{9EBB34E3-C29E-49A8-A95F-C61F3108D37F}_is1) (Version:  - Christian Borß)
Intel(R) OpenCL CPU Runtime (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version:  - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.4276 - Intel Corporation)
Intel(R) USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 1.0.10.255 - Intel Corporation)
Junk Mail filter update (HKLM-x32\...\{F6F30C28-38AA-4DBA-AE0B-7E30238E61BB}) (Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
KhalInstallWrapper (HKLM\...\{9B1A8F3D-8059-43FB-A7AE-4F2C21F0AAF2}) (Version: 4.00.121 - Logitech) Hidden
Logitech SetPoint (HKLM-x32\...\{2E8EAC71-BFE4-417A-88F0-5A1BDFBCF5D3}) (Version: 4.00 - Logitech)
Malwarebytes versión 3.7.1.2839 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.7.1.2839 - Malwarebytes)
MEGAsync (HKLM-x32\...\MEGAsync) (Version:  - Mega Limited)
Microsoft .NET Framework 4.7.2 (español) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 3082) (Version: 4.7.03062 - Microsoft Corporation)
Microsoft .NET Framework 4.7.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.7.03062 - Microsoft Corporation)
Microsoft Office Outlook Connector (HKLM-x32\...\{95140000-007A-0C0A-0000-0000000FF1CE}) (Version: 14.0.5118.5000 - Microsoft Corporation)
Microsoft Office Professional Plus 2010 (HKLM-x32\...\Office14.PROPLUS) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Outlook Social Connector Provider for Windows Live Messenger 32-bit (HKLM-x32\...\{95140000-007D-0409-0000-0000000FF1CE}) (Version: 14.0.5120.5000 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50918.0 - Microsoft Corporation)
Microsoft SkyDrive (HKU\S-1-5-21-2258397178-3295816786-390305721-1000\...\SkyDriveSetup.exe) (Version: 16.4.6013.0910 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft SQL Server Compact 4.0 x64 ENU (HKLM\...\{8424B163-D1E0-48B7-88A2-C7A61767B3D7}) (Version: 4.0.8482.1 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6E8E85E8-CE4B-4FF5-91F7-04999C9FAE6A}) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24215 (HKLM-x32\...\{d992c12e-cab2-426f-bde3-fb8c53950b0d}) (Version: 14.0.24215.1 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Movie Maker (HKLM-x32\...\{45898170-E68C-4F02-AA35-C2186BF347A3}) (Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Movie Maker (HKLM-x32\...\{F25C8769-16B6-4B19-BB0B-76F213829AC6}) (Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Music Recorder (HKLM-x32\...\{94A4AE85-9F1D-4687-953F-38371C9D1A4F}) (Version: 18.009.0 - Nero AG) Hidden
Nero 2017 (HKLM-x32\...\{6B81BDC4-3368-4898-8F16-48962F789221}) (Version: 18.0.06100 - Nero AG)
Nero Info (HKLM-x32\...\{F030BFE8-8476-4C08-A553-233DE80A2BE1}) (Version: 18.0.0010 - Nero AG)
Paquete de idioma de Microsoft Visual Studio 2010 Tools para Office Runtime (x64) - ESN (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - ESN) (Version: 10.0.50903 - Microsoft Corporation)
Pivot Software (HKLM-x32\...\{0217E1D1-BCEF-4A61-AF6D-F7740F65A066}) (Version: 8.21.013 - Portrait Displays, Inc.) Hidden
Platform (HKLM-x32\...\{20D4A895-748C-4D88-871C-FDB1695B0169}) (Version: 1.39 - VIA Technologies, Inc.) Hidden
Prerequisite installer (HKLM-x32\...\{EB511CD1-C87C-490D-A7B1-D6C47F57820F}) (Version: 18.0.0003 - Nero AG) Hidden
Realtek AC'97 Audio (HKLM-x32\...\{FB08F381-6533-4108-B7DD-039E11FBC27E}) (Version: 5.36 - Realtek Semiconductor Corp.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.52.203.2012 - Realtek)
Realtek Ethernet Diagnostic Utility (HKLM-x32\...\{DADC7AB0-E554-4705-9F6A-83EA82ED708E}) (Version: 1.006 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 2.28 - Realtek Semiconductor Corp.)
REAPER (x64) (HKLM\...\REAPER) (Version:  - )
Revo Uninstaller Pro 4.0.5 (HKLM\...\{67579783-0FB7-4F7B-B881-E5BE47C9DBE0}_is1) (Version: 4.0.5 - VS Revo Group, Ltd.)
Right Click Image Converter 1.0.0.0 (HKLM-x32\...\Right Click Image Converter 1.0.0.0) (Version:  - )
SDK (HKLM-x32\...\{0DEA342C-15CB-4F52-97B6-06A9C4B9C06F}) (Version: 2.05.004 - Portrait Displays, Inc.) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM-x32\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{DE28B448-32E8-4E8F-84F0-A52B21A49B5B}) (Version:  - Microsoft)
SmartDefender (HKLM-x32\...\{A58CAEF6-D78F-4E0C-8598-ECD5901F4AC2}) (Version: 1.0.0.0 - Vondos Media GmbH)
Spotify (HKU\S-1-5-21-2258397178-3295816786-390305721-1000\...\Spotify) (Version: 1.1.6.113.gb388fe17 - Spotify AB)
SUPERAntiSpyware (HKLM\...\{CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA}) (Version: 8.0.1034 - SUPERAntiSpyware.com)
TeamViewer 14 (HKLM-x32\...\TeamViewer) (Version: 14.2.8352 - TeamViewer)
TunesKit Spotify Converter 1.5.0.525 (HKLM-x32\...\TunesKit Spotify Converter_is1) (Version:  - TunesKit, Inc.)
UltraISO Premium V9.62 (HKLM-x32\...\UltraISO_is1) (Version:  - )
VEGAS Pro 16.0 (HKLM\...\{0ABBD080-A716-11E8-974B-00155D6302F2}) (Version: 16.0.261 - VEGAS)
VIA Administrador de dispositivos de plataforma (HKLM-x32\...\InstallShield_{20D4A895-748C-4D88-871C-FDB1695B0169}) (Version: 1.39 - VIA Technologies, Inc.)
Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies)
Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
VLC media player (HKLM-x32\...\VLC media player) (Version: 3.0.6 - VideoLAN)
Winamp (HKLM-x32\...\Winamp) (Version: 5.666  - Nullsoft, Inc)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3508.0205 - Microsoft Corporation)
Windows Live Sync (HKLM-x32\...\{3F7D70F3-381C-4136-8BBA-358322578EF8}) (Version: 14.0.8050.1202 - Microsoft Corporation)
WinRAR 5.70 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.70.0 - win.rar GmbH)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-2258397178-3295816786-390305721-1000_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\Windows\system32\igfxEM.exe (Intel Corporation - pGFX -> Intel Corporation)
CustomCLSID: HKU\S-1-5-21-2258397178-3295816786-390305721-1000_Classes\CLSID\{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}\InprocServer32 -> C:\Users\Juan\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\amd64\SkyDriveShell64.dll (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2258397178-3295816786-390305721-1000_Classes\CLSID\{BBACC218-34EA-4666-9D7A-C78F2274A524}\InprocServer32 -> C:\Users\Juan\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\amd64\SkyDriveShell64.dll (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2258397178-3295816786-390305721-1000_Classes\CLSID\{F241C880-6982-4CE5-8CF7-7085BA96DA5A}\InprocServer32 -> C:\Users\Juan\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\amd64\SkyDriveShell64.dll (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2258397178-3295816786-390305721-1000_Classes\CLSID\{F8071786-1FD0-4A66-81A1-3CBE29274458}\InprocServer32 -> C:\Users\Juan\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\amd64\FileSyncApi64.dll (Microsoft Corporation -> Microsoft Corporation)
ShellExecuteHooks: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [6671064 2013-12-19] (Microsoft Corporation -> Microsoft Corporation)
ShellExecuteHooks-x32: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [4171480 2013-12-19] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ MEGA (Pending)] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => C:\Users\Juan\AppData\Local\MEGAsync\ShellExtX64.dll [2019-04-16] (Mega Limited -> )
ShellIconOverlayIdentifiers: [ MEGA (Synced)] -> {05B38830-F4E9-4329-978B-1DD28605D202} => C:\Users\Juan\AppData\Local\MEGAsync\ShellExtX64.dll [2019-04-16] (Mega Limited -> )
ShellIconOverlayIdentifiers: [ MEGA (Syncing)] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => C:\Users\Juan\AppData\Local\MEGAsync\ShellExtX64.dll [2019-04-16] (Mega Limited -> )
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-05-21] (AVAST Software s.r.o. -> AVAST Software)
ShellIconOverlayIdentifiers-x32: [ MEGA (Pending)] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => C:\Users\Juan\AppData\Local\MEGAsync\ShellExtX64.dll [2019-04-16] (Mega Limited -> )
ShellIconOverlayIdentifiers-x32: [ MEGA (Synced)] -> {05B38830-F4E9-4329-978B-1DD28605D202} => C:\Users\Juan\AppData\Local\MEGAsync\ShellExtX64.dll [2019-04-16] (Mega Limited -> )
ShellIconOverlayIdentifiers-x32: [ MEGA (Syncing)] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => C:\Users\Juan\AppData\Local\MEGAsync\ShellExtX64.dll [2019-04-16] (Mega Limited -> )
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [File not signed]
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-05-21] (AVAST Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [Glary Utilities] -> {B3C418F8-922B-4faf-915E-59BC14448CF7} => C:\Program Files (x86)\Glary Utilities 5\x64\ContextHandler.dll [2019-03-11] (Glarysoft LTD -> Glarysoft Ltd)
ContextMenuHandlers1: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\Juan\AppData\Local\MEGAsync\ShellExtX64.dll [2019-04-16] (Mega Limited -> )
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers2: [Glary Utilities] -> {B3C418F8-922B-4faf-915E-59BC14448CF7} => C:\Program Files (x86)\Glary Utilities 5\x64\ContextHandler.dll [2019-03-11] (Glarysoft LTD -> Glarysoft Ltd)
ContextMenuHandlers2: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\Juan\AppData\Local\MEGAsync\ShellExtX64.dll [2019-04-16] (Mega Limited -> )
ContextMenuHandlers2: [UltraISO] -> {AD392E40-428C-459F-961E-9B147782D099} => C:\Program Files (x86)\UltraISO\isoshl64.dll [2015-10-08] (SHENZHEN YIBO DIGITAL SYSTEMS DEVELOPMENT CO. LTD. -> EZB Systems, Inc.)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-05-21] (AVAST Software s.r.o. -> AVAST Software)
ContextMenuHandlers3-x32: [FAExt] -> {05672D66-9736-42F5-8BEB-FA1DD3CA51C4} => C:\Program Files (x86)\FileASSASSIN\FileASSASSINExt.dll [2007-03-30] (Malwarebytes) [File not signed]
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2019-02-01] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers3: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\Juan\AppData\Local\MEGAsync\ShellExtX64.dll [2019-04-16] (Mega Limited -> )
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [File not signed]
ContextMenuHandlers4: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\Juan\AppData\Local\MEGAsync\ShellExtX64.dll [2019-04-16] (Mega Limited -> )
ContextMenuHandlers4: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} =>  -> No File
ContextMenuHandlers4: [UltraISO] -> {AD392E40-428C-459F-961E-9B147782D099} => C:\Program Files (x86)\UltraISO\isoshl64.dll [2015-10-08] (SHENZHEN YIBO DIGITAL SYSTEMS DEVELOPMENT CO. LTD. -> EZB Systems, Inc.)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} =>  -> No File
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\Windows\system32\igfxDTCM.dll [2015-08-27] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [File not signed]
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-05-21] (AVAST Software s.r.o. -> AVAST Software)
ContextMenuHandlers6: [Glary Utilities] -> {B3C418F8-922B-4faf-915E-59BC14448CF7} => C:\Program Files (x86)\Glary Utilities 5\x64\ContextHandler.dll [2019-03-11] (Glarysoft LTD -> Glarysoft Ltd)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2019-02-01] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers6: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} =>  -> No File
ContextMenuHandlers6: [UltraISO] -> {AD392E40-428C-459F-961E-9B147782D099} => C:\Program Files (x86)\UltraISO\isoshl64.dll [2015-10-08] (SHENZHEN YIBO DIGITAL SYSTEMS DEVELOPMENT CO. LTD. -> EZB Systems, Inc.)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)

WMI:subscription\__FilterToConsumerBinding->CommandLineEventConsumer.Name=\"BVTConsumer\"",Filter="__EventFilter.Name=\"BVTFilter\"::
WMI:subscription\__EventFilter->BVTFilter::[Query => SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99]
WMI:subscription\CommandLineEventConsumer->BVTConsumer::[CommandLineTemplate => cscript KernCap.vbs][WorkingDirectory => C:\\tools\\kernrate]

==================== Loaded Modules (Whitelisted) ==============

2019-04-14 16:00 - 2008-06-04 16:59 - 000237568 _____ () [File not signed] C:\Program Files (x86)\Common Files\Portrait Displays\drivers\di2c.dll
2019-04-14 16:00 - 2008-06-04 16:58 - 000098304 _____ () [File not signed] C:\Program Files (x86)\Common Files\Portrait Displays\drivers\vista.dll
2019-04-14 16:00 - 2008-06-06 10:42 - 000114688 _____ () [File not signed] C:\Program Files (x86)\Common Files\Portrait Displays\Plugins\AM\dtsslsrv.exe
2019-04-14 16:00 - 2004-05-11 14:51 - 000798720 _____ () [File not signed] C:\Program Files (x86)\Common Files\Portrait Displays\Plugins\AM\LIBEAY32.dll
2019-04-14 15:59 - 2004-11-17 15:49 - 004603904 _____ () [File not signed] C:\Program Files (x86)\Common Files\Portrait Displays\Plugins\AM\qt-mt332.dll
2019-04-14 16:00 - 2004-05-11 14:51 - 000155648 _____ () [File not signed] C:\Program Files (x86)\Common Files\Portrait Displays\Plugins\AM\SSLEAY32.dll
2019-04-14 16:00 - 2008-06-06 10:40 - 000077824 _____ () [File not signed] C:\Program Files (x86)\Common Files\Portrait Displays\Plugins\CC\gui.dll
2019-04-14 15:59 - 2008-06-06 10:40 - 000069632 _____ () [File not signed] C:\Program Files (x86)\Common Files\Portrait Displays\Shared\DTSRVC.exe
2019-04-14 15:59 - 2008-06-06 10:39 - 000102400 _____ () [File not signed] C:\Program Files (x86)\Common Files\Portrait Displays\Shared\PresetsCOM.dll
2019-04-14 16:00 - 2007-02-09 11:16 - 000245760 _____ () [File not signed] C:\Program Files (x86)\Portrait Displays\Pivot Software\winphook.dll
2019-04-14 16:21 - 2007-04-23 03:00 - 000077824 _____ () [File not signed] C:\Program Files\Logitech\SetPoint\x86\SetPoint32.exe
2017-09-10 21:51 - 2017-09-10 21:51 - 000798208 _____ () [File not signed] C:\Users\Juan\AppData\Local\MEGAsync\libsodium.dll
2016-02-18 04:16 - 2016-02-18 04:16 - 023927296 _____ (FFmpeg Project) [File not signed] C:\Users\Juan\AppData\Local\MEGAsync\avcodec-57.dll
2016-02-18 04:16 - 2016-02-18 04:16 - 006306816 _____ (FFmpeg Project) [File not signed] C:\Users\Juan\AppData\Local\MEGAsync\avformat-57.dll
2016-02-18 04:16 - 2016-02-18 04:16 - 000599552 _____ (FFmpeg Project) [File not signed] C:\Users\Juan\AppData\Local\MEGAsync\avutil-55.dll
2016-02-18 04:16 - 2016-02-18 04:16 - 000287232 _____ (FFmpeg Project) [File not signed] C:\Users\Juan\AppData\Local\MEGAsync\swresample-2.dll
2016-02-18 04:16 - 2016-02-18 04:16 - 000513024 _____ (FFmpeg Project) [File not signed] C:\Users\Juan\AppData\Local\MEGAsync\swscale-4.dll
2019-02-21 21:00 - 2019-02-21 21:00 - 000078336 _____ (Igor Pavlov) [File not signed] C:\Program Files\7-Zip\7-zip.dll
2019-04-14 15:55 - 2000-01-01 01:00 - 000073728 _____ (Intel Corporation) [File not signed] C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.dll
2019-04-14 16:00 - 2007-02-09 11:15 - 000372736 _____ (Intel Corporation) [File not signed] C:\Program Files (x86)\Portrait Displays\Pivot Software\ijl15.dll
2019-04-14 15:59 - 2001-06-01 08:26 - 000372736 _____ (Intel Corporation) [File not signed] C:\Windows\ijl15.dll
2007-04-23 03:00 - 2007-04-23 03:00 - 000620032 _____ (Logitech Inc.) [File not signed] C:\Program Files\Common Files\Logitech\KhalShared\KhalApi.dll
2007-04-23 03:00 - 2007-04-23 03:00 - 000518656 _____ (Logitech Inc.) [File not signed] C:\Program Files\Common Files\Logitech\KhalShared\KHALHID.DLL
2007-04-23 03:00 - 2007-04-23 03:00 - 000636928 _____ (Logitech Inc.) [File not signed] C:\Program Files\Common Files\Logitech\KhalShared\KHALHPP.DLL
2007-04-23 03:00 - 2007-04-23 03:00 - 000348672 _____ (Logitech Inc.) [File not signed] C:\Program Files\Common Files\Logitech\KhalShared\KHALITCH.DLL
2007-04-23 03:00 - 2007-04-23 03:00 - 000551936 _____ (Logitech Inc.) [File not signed] C:\Program Files\Common Files\Logitech\KhalShared\KHALMOU.DLL
2007-04-23 03:00 - 2007-04-23 03:00 - 000402944 _____ (Logitech Inc.) [File not signed] C:\Program Files\Common Files\Logitech\KhalShared\KHALMW.DLL
2007-04-23 03:00 - 2007-04-23 03:00 - 000506368 _____ (Logitech Inc.) [File not signed] C:\Program Files\Common Files\Logitech\KhalShared\KHALUSB.DLL
2019-04-14 17:21 - 2007-04-23 03:00 - 000049152 _____ (Logitech Inc.) [File not signed] C:\Program Files\Logitech\SetPoint\GameHook.dll
2019-04-14 17:21 - 2007-04-23 03:00 - 000011776 _____ (Logitech Inc.) [File not signed] C:\Program Files\Logitech\SetPoint\IMHook.dll
2019-04-14 17:21 - 2007-04-23 03:00 - 000097792 _____ (Logitech Inc.) [File not signed] C:\Program Files\Logitech\SetPoint\kgame.dll
2019-04-14 17:21 - 2007-04-23 03:00 - 000059904 _____ (Logitech Inc.) [File not signed] C:\Program Files\Logitech\SetPoint\lgscroll.dll
2019-04-14 17:21 - 2007-04-23 03:00 - 001443328 _____ (Logitech Inc.) [File not signed] C:\Program Files\Logitech\SetPoint\Macros\MacroCore.dll
2019-04-14 17:21 - 2007-04-23 03:00 - 001041920 _____ (Logitech Inc.) [File not signed] C:\Program Files\Logitech\SetPoint\SetPoint.exe
2019-04-14 17:21 - 2007-04-23 03:00 - 000033280 _____ (Logitech Inc.) [File not signed] C:\Program Files\Logitech\SetPoint\SetPointCOM.dll
2019-04-14 17:21 - 2007-04-23 03:00 - 000334336 _____ (Logitech Inc.) [File not signed] C:\Program Files\Logitech\SetPoint\WebBrowserSupport.dll
2019-04-14 16:21 - 2007-04-23 03:00 - 000013824 _____ (Logitech Inc.) [File not signed] C:\Program Files\Logitech\SetPoint\x86\AdobeHookDll.dll
2019-04-14 16:21 - 2007-04-23 03:00 - 000014336 _____ (Logitech Inc.) [File not signed] C:\Program Files\Logitech\SetPoint\x86\AOLHookDll.dll
2019-04-14 16:21 - 2007-04-23 03:00 - 000057344 _____ (Logitech Inc.) [File not signed] C:\Program Files\Logitech\SetPoint\x86\GameHook.dll
2019-04-14 16:21 - 2007-04-23 03:00 - 000012288 _____ (Logitech Inc.) [File not signed] C:\Program Files\Logitech\SetPoint\x86\HookDll.dll
2019-04-14 16:21 - 2007-04-23 03:00 - 000010240 _____ (Logitech Inc.) [File not signed] C:\Program Files\Logitech\SetPoint\x86\IMHook.dll
2019-04-14 16:21 - 2007-04-23 03:00 - 000015360 _____ (Logitech Inc.) [File not signed] C:\Program Files\Logitech\SetPoint\x86\KEMHook.dll
2019-04-14 16:21 - 2007-04-23 03:00 - 000045568 _____ (Logitech Inc.) [File not signed] C:\Program Files\Logitech\SetPoint\x86\lgscroll.dll
2019-04-14 16:21 - 2007-04-23 03:00 - 000069632 _____ (Logitech Inc.) [File not signed] C:\Program Files\Logitech\SetPoint\x86\MessengerHook.dll
2019-04-14 17:21 - 2007-04-23 03:00 - 000228864 _____ (Logitech Inc.) [File not signed] C:\Windows\system32\kemutb.dll
2019-04-14 17:21 - 2007-04-23 03:00 - 000218112 _____ (Logitech Inc.) [File not signed] C:\Windows\system32\KemUtil.dll
2019-04-14 17:21 - 2007-04-23 03:00 - 000152064 _____ (Logitech Inc.) [File not signed] C:\Windows\system32\KemWnd.dll
2019-04-14 17:21 - 2007-04-23 03:00 - 000072192 _____ (Logitech Inc.) [File not signed] C:\Windows\system32\KemXML.dll
2019-04-14 16:00 - 2002-01-05 02:40 - 000487424 _____ (Microsoft Corporation) [File not signed] C:\Program Files (x86)\Portrait Displays\Pivot Software\MSVCP70.dll
2019-04-14 16:00 - 2002-01-05 02:37 - 000344064 _____ (Microsoft Corporation) [File not signed] C:\Program Files (x86)\Portrait Displays\Pivot Software\MSVCR70.dll
2019-04-14 15:59 - 2002-01-05 04:48 - 000974848 _____ (Microsoft Corporation) [File not signed] C:\Windows\mfc70.dll
2019-04-14 15:59 - 2002-01-05 03:40 - 000487424 _____ (Microsoft Corporation) [File not signed] C:\Windows\MSVCP70.dll
2019-05-05 21:15 - 2019-05-05 21:15 - 000113664 _____ (Microsoft Corporation) [File not signed] C:\Windows\WinSxS\amd64_microsoft.vc80.atl_1fc8b3b9a1e18e3b_8.0.50727.6195_none_8a1dd9552ed7f8d8\ATL80.DLL
2019-05-05 21:15 - 2019-05-05 21:15 - 001654784 _____ (Microsoft Corporation) [File not signed] C:\Windows\WinSxS\amd64_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_8448b2bd328df189\MFC80U.DLL
2019-04-14 15:59 - 2008-06-06 10:42 - 000324096 _____ (Portrait Displays, Inc) [File not signed] C:\Program Files (x86)\Acer Display\eDisplay Management\DTHtml.exe
2019-04-14 16:00 - 2008-06-04 16:59 - 000110592 _____ (Portrait Displays, Inc.) [File not signed] C:\Program Files (x86)\Common Files\Portrait Displays\drivers\pdi_nv2.dll
2019-04-14 16:00 - 2008-06-04 16:59 - 000090112 _____ (Portrait Displays, Inc.) [File not signed] C:\Program Files (x86)\Common Files\Portrait Displays\Drivers\pdisrvc.exe
2019-04-14 16:00 - 2008-06-04 16:59 - 000204800 _____ (Portrait Displays, Inc.) [File not signed] C:\Program Files (x86)\Common Files\Portrait Displays\Drivers\WrapI2C.dll
2019-04-14 16:00 - 2008-06-06 10:40 - 000114688 _____ (Portrait Displays, Inc.) [File not signed] C:\Program Files (x86)\Common Files\Portrait Displays\Plugins\CC\colorcal.dll
2017-09-10 20:08 - 2017-09-10 20:08 - 000061952 _____ (The c-ares library, hxxps://c-ares.haxx.se/) [File not signed] C:\Users\Juan\AppData\Local\MEGAsync\cares.dll
2017-10-10 00:33 - 2019-04-16 09:33 - 000275456 _____ (The curl library, hxxps://curl.haxx.se/) [File not signed] C:\Users\Juan\AppData\Local\MEGAsync\libcurl.dll
2017-09-11 00:51 - 2019-04-16 09:33 - 001374208 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Users\Juan\AppData\Local\MEGAsync\LIBEAY32.dll
2017-09-11 00:51 - 2019-04-16 09:33 - 000337920 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Users\Juan\AppData\Local\MEGAsync\SSLEAY32.dll
2017-09-14 07:37 - 2017-09-14 07:37 - 000026112 _____ (The Qt Company Ltd) [File not signed] C:\Users\Juan\AppData\Local\MEGAsync\imageformats\qgif.dll
2017-09-14 07:42 - 2017-09-14 07:42 - 000033280 _____ (The Qt Company Ltd) [File not signed] C:\Users\Juan\AppData\Local\MEGAsync\imageformats\qicns.dll
2017-09-14 07:37 - 2017-09-14 07:37 - 000027648 _____ (The Qt Company Ltd) [File not signed] C:\Users\Juan\AppData\Local\MEGAsync\imageformats\qico.dll
2017-09-14 07:37 - 2017-09-14 07:37 - 000245760 _____ (The Qt Company Ltd) [File not signed] C:\Users\Juan\AppData\Local\MEGAsync\imageformats\qjpeg.dll
2017-09-14 07:42 - 2017-09-14 07:42 - 000021504 _____ (The Qt Company Ltd) [File not signed] C:\Users\Juan\AppData\Local\MEGAsync\imageformats\qsvg.dll
2017-09-14 07:42 - 2017-09-14 07:42 - 000020992 _____ (The Qt Company Ltd) [File not signed] C:\Users\Juan\AppData\Local\MEGAsync\imageformats\qtga.dll
2017-09-14 07:42 - 2017-09-14 07:42 - 000316416 _____ (The Qt Company Ltd) [File not signed] C:\Users\Juan\AppData\Local\MEGAsync\imageformats\qtiff.dll
2017-09-14 07:42 - 2017-09-14 07:42 - 000019968 _____ (The Qt Company Ltd) [File not signed] C:\Users\Juan\AppData\Local\MEGAsync\imageformats\qwbmp.dll
2017-09-14 07:42 - 2017-09-14 07:42 - 000322560 _____ (The Qt Company Ltd) [File not signed] C:\Users\Juan\AppData\Local\MEGAsync\imageformats\qwebp.dll
2017-09-14 07:37 - 2017-09-14 07:37 - 001010688 _____ (The Qt Company Ltd) [File not signed] C:\Users\Juan\AppData\Local\MEGAsync\platforms\qwindows.dll
2017-09-25 15:30 - 2017-09-25 15:30 - 004641792 _____ (The Qt Company Ltd) [File not signed] C:\Users\Juan\AppData\Local\MEGAsync\Qt5Core.dll
2017-09-14 07:32 - 2017-09-14 07:32 - 005016576 _____ (The Qt Company Ltd) [File not signed] C:\Users\Juan\AppData\Local\MEGAsync\Qt5Gui.dll
2017-09-14 07:30 - 2017-09-14 07:30 - 000851968 _____ (The Qt Company Ltd) [File not signed] C:\Users\Juan\AppData\Local\MEGAsync\Qt5Network.dll
2017-09-14 07:42 - 2017-09-14 07:42 - 000255488 _____ (The Qt Company Ltd) [File not signed] C:\Users\Juan\AppData\Local\MEGAsync\Qt5Svg.dll
2017-09-14 07:35 - 2017-09-14 07:35 - 004433920 _____ (The Qt Company Ltd) [File not signed] C:\Users\Juan\AppData\Local\MEGAsync\Qt5Widgets.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)


==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)


==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 03:34 - 2019-04-16 11:39 - 000001319 _____ C:\Windows\system32\drivers\etc\hosts

0.0.0.0                   keystone.mwbsys.com
0.0.0.0                   telemetry.malwarebytes.com
127.0.0.1 23.74.204.49
127.0.0.1 2.20.235.247
127.0.0.1 216.58.214.40
127.0.0.1 151.101.12.143
127.0.0.1 66.117.29.4
127.0.0.1 63.140.41.167
127.0.0.1 13.80.12.54
127.0.0.1 239.255.255.250
127.0.0.1 23.74.204.49
127.0.0.1 2.20.235.247
127.0.0.1 216.58.214.40
127.0.0.1 151.101.12.143
127.0.0.1 66.117.29.4
127.0.0.1 63.140.41.167
127.0.0.1 13.80.12.54
127.0.0.1 239.255.255.250

==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path: C:\Program Files\Common Files\Microsoft Shared\Windows Live;C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x86;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x64;C:\Program Files (x86)\Windows Live\Shared
HKU\S-1-5-21-2258397178-3295816786-390305721-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Juan\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

If an entry is included in the fixlist, it will be removed.


==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{A1D5AADA-D050-4509-BB0D-B353E6BAAD4E}] => (Allow) C:\Program Files (x86)\Winamp\winamp.exe (Nullsoft Inc. -> Nullsoft, Inc.)
FirewallRules: [{ACDE9771-16DD-4612-80B5-819CEBA93325}] => (Allow) C:\Program Files (x86)\Winamp\winamp.exe (Nullsoft Inc. -> Nullsoft, Inc.)
FirewallRules: [{48FE6AEB-E05E-47F1-A778-31FA593CC210}] => (Allow) C:\Program Files (x86)\Nero\Nero 2017\Nero Burning ROM\StartNBR.exe (Nero AG -> Nero AG)
FirewallRules: [{51521F42-F464-4E17-BE66-D520B5A61372}] => (Allow) C:\Program Files (x86)\Nero\Nero 2017\Nero MediaHome\NMDllHost.exe (Nero AG -> Nero AG)
FirewallRules: [{CA59ABF7-D544-4E53-84ED-20D640D377C2}] => (Allow) C:\Program Files (x86)\Nero\Nero 2017\Nero MediaHome\MediaHome.exe (Nero AG -> Nero AG)
FirewallRules: [{31F394D8-E162-4817-B63B-344680E3994D}] => (Allow) C:\Program Files (x86)\Nero\Nero 2017\Nero Burning ROM\nero.exe (Nero AG -> Nero AG)
FirewallRules: [{1C604646-2587-4582-B55E-FC6C8BB48D6A}] => (Allow) C:\Program Files\HP\HP Deskjet 3520 series\Bin\DeviceSetup.exe (Hewlett Packard -> Hewlett-Packard Co.)
FirewallRules: [{44EBE161-F3E7-4E50-9333-6B51588D86C5}] => (Allow) C:\Program Files\HP\HP Deskjet 3520 series\Bin\HPNetworkCommunicator.exe (Hewlett Packard -> Hewlett-Packard Co.)
FirewallRules: [{3F1D6068-29B9-4D7F-A7A1-E487AD210F37}] => (Allow) C:\Program Files\HP\HP Deskjet 3520 series\Bin\HPNetworkCommunicatorCom.exe (Hewlett Packard -> Hewlett-Packard Co.)
FirewallRules: [TCP Query User{01BF5A83-F8FD-4ADE-8090-D792C3147052}C:\users\juan\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\juan\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [UDP Query User{5D5891E7-BF91-40E6-AF85-8F148F55DDB6}C:\users\juan\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\juan\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{A57582FD-4C3B-4B80-9FBD-9C77C2BC297A}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer GmbH -> TeamViewer GmbH)
FirewallRules: [{1B709241-36B3-4CA3-B01B-CF8C02D71181}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer GmbH -> TeamViewer GmbH)
FirewallRules: [{2F0D12BB-F1B1-462B-B15F-34C7D78C6E49}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer GmbH -> TeamViewer GmbH)
FirewallRules: [{613152B3-0548-4765-835C-50476A2108DB}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer GmbH -> TeamViewer GmbH)
FirewallRules: [{D46A99D3-F81B-4C43-A5CC-38CC6686B5EC}] => (Allow) C:\Program Files (x86)\Windows Live\Sync\WindowsLiveSync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{860D9482-139E-4AFB-8C99-08821D0FC2C9}] => (Allow) C:\Users\Juan\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{6C7AF063-FB12-4012-BC26-60692892FC2E}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{5DF2D761-2A4D-4849-B34A-AC4A963B616D}] => (Allow) LPort=2869
FirewallRules: [{4B5B60E2-A3F7-4F69-A1E5-99C532E1B2CF}] => (Allow) LPort=1900
FirewallRules: [{024D3983-A9A9-4E4E-A0CD-C62D3D22CACF}] => (Allow) C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{CAAC6A76-31E5-40AF-9CE3-C0104CEF9238}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google Inc.)

==================== Restore Points =========================

16-05-2019 11:32:45 Windows Update
22-05-2019 11:42:50 Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215
22-05-2019 11:43:50 Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24215

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (05/22/2019 11:41:45 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: No se pudo reactivar el filtro de eventos con la consulta "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" en el espacio de nombres "//./root/CIMV2" por el error 0x80041003. Los eventos no se podrán entregar a través de este filtro hasta que se corrija este problema.

Error: (05/22/2019 10:05:32 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nombre de la aplicación con errores: AUDIODG.EXE, versión: 6.1.7601.24435, marca de tiempo: 0x5caa0ceb
Nombre del módulo con errores: VIASysFx.dll, versión: 1.0.0.0, marca de tiempo: 0x4c59383d
Código de excepción: 0xc0000005
Desplazamiento de errores: 0x000000000005dc9e
Id. del proceso con errores: 0x42c
Hora de inicio de la aplicación con errores: 0x01d5107d2b797d48
Ruta de acceso de la aplicación con errores: C:\Windows\system32\AUDIODG.EXE
Ruta de acceso del módulo con errores: C:\Windows\system32\VIASysFx.dll
Id. del informe: c0745598-7c70-11e9-b3eb-50465da21e3b

Error: (05/22/2019 10:04:50 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: No se pudo reactivar el filtro de eventos con la consulta "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" en el espacio de nombres "//./root/CIMV2" por el error 0x80041003. Los eventos no se podrán entregar a través de este filtro hasta que se corrija este problema.

Error: (05/22/2019 08:40:47 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nombre de la aplicación con errores: AUDIODG.EXE, versión: 6.1.7601.24435, marca de tiempo: 0x5caa0ceb
Nombre del módulo con errores: VIASysFx.dll, versión: 1.0.0.0, marca de tiempo: 0x4c59383d
Código de excepción: 0xc0000005
Desplazamiento de errores: 0x000000000005dc9e
Id. del proceso con errores: 0x43c
Hora de inicio de la aplicación con errores: 0x01d510712d2cd894
Ruta de acceso de la aplicación con errores: C:\Windows\system32\AUDIODG.EXE
Ruta de acceso del módulo con errores: C:\Windows\system32\VIASysFx.dll
Id. del informe: e97b54a4-7c64-11e9-bdf1-50465da21e3b

Error: (05/22/2019 08:38:31 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: No se pudo reactivar el filtro de eventos con la consulta "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" en el espacio de nombres "//./root/CIMV2" por el error 0x80041003. Los eventos no se podrán entregar a través de este filtro hasta que se corrija este problema.

Error: (05/21/2019 02:51:12 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: No se pudo reactivar el filtro de eventos con la consulta "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" en el espacio de nombres "//./root/CIMV2" por el error 0x80041003. Los eventos no se podrán entregar a través de este filtro hasta que se corrija este problema.

Error: (05/21/2019 02:49:58 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nombre de la aplicación con errores: AUDIODG.EXE, versión: 6.1.7601.24435, marca de tiempo: 0x5caa0ceb
Nombre del módulo con errores: VIASysFx.dll, versión: 1.0.0.0, marca de tiempo: 0x4c59383d
Código de excepción: 0xc0000005
Desplazamiento de errores: 0x000000000005dc9e
Id. del proceso con errores: 0x41c
Hora de inicio de la aplicación con errores: 0x01d50fdc076b2f6c
Ruta de acceso de la aplicación con errores: C:\Windows\system32\AUDIODG.EXE
Ruta de acceso del módulo con errores: C:\Windows\system32\VIASysFx.dll
Id. del informe: 51f0bc1b-7bcf-11e9-95c3-50465da21e3b

Error: (05/21/2019 09:57:15 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: No se pudo reactivar el filtro de eventos con la consulta "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" en el espacio de nombres "//./root/CIMV2" por el error 0x80041003. Los eventos no se podrán entregar a través de este filtro hasta que se corrija este problema.


System errors:
=============
Error: (05/22/2019 11:42:43 AM) (Source: Disk) (EventID: 11) (User: )
Description: El controlador detectó un error de controladora en \Device\Harddisk1\DR1.

Error: (05/22/2019 11:42:42 AM) (Source: Disk) (EventID: 11) (User: )
Description: El controlador detectó un error de controladora en \Device\Harddisk1\DR1.

Error: (05/22/2019 11:42:42 AM) (Source: Disk) (EventID: 11) (User: )
Description: El controlador detectó un error de controladora en \Device\Harddisk1\DR1.

Error: (05/22/2019 11:42:41 AM) (Source: Disk) (EventID: 11) (User: )
Description: El controlador detectó un error de controladora en \Device\Harddisk1\DR1.

Error: (05/22/2019 11:42:41 AM) (Source: Disk) (EventID: 11) (User: )
Description: El controlador detectó un error de controladora en \Device\Harddisk1\DR1.

Error: (05/22/2019 11:40:32 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: El servicio EIO no pudo iniciarse debido al siguiente error: 
Se ha bloqueado la descarga de este controlador

Error: (05/22/2019 11:40:32 AM) (Source: Application Popup) (EventID: 1060) (User: )
Description: Se bloqueó la carga de \??\C:\Windows\SysWow64\drivers\EIO.sys por una incompatibilidad con este sistema. Póngase en contacto con el fabricante del software para obtener una versión compatible del controlador.

Error: (05/22/2019 10:03:15 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: El servicio EIO no pudo iniciarse debido al siguiente error: 
Se ha bloqueado la descarga de este controlador


Windows Defender:
===================================
Date: 2019-04-29 11:13:53.996
Description: 
Windows Defender encontró un error al intentar actualizar el motor.
Nueva versión de motor:1.1.15900.4
Versión de motor anterior:1.1.6402.0
Origen de actualización:Usuario
Usuario:NT AUTHORITY\SYSTEM
Código de error:0x8050800c
Descripción de error:Problema inesperado. Instale todas las actualizaciones disponibles e intente iniciar el programa de nuevo. Para obtener más información sobre cómo instalar actualizaciones, consulte Ayuda y soporte técnico. 

CodeIntegrity:
===================================

Date: 2019-05-22 12:00:11.131
Description: 
Integridad de código no puede comprobar la integridad de imagen del archivo \Device\HarddiskVolume2\Windows\System32\ViaKaraokeApo.dll porque el conjunto de hashes de imagen por página no se encuentra en el sistema.

Date: 2019-05-22 11:53:04.978
Description: 
Integridad de código no puede comprobar la integridad de imagen del archivo \Device\HarddiskVolume2\Windows\System32\ViaKaraokeApo.dll porque el conjunto de hashes de imagen por página no se encuentra en el sistema.

Date: 2019-05-22 11:53:04.541
Description: 
Integridad de código no puede comprobar la integridad de imagen del archivo \Device\HarddiskVolume2\Windows\System32\ViaKaraokeApo.dll porque el conjunto de hashes de imagen por página no se encuentra en el sistema.

Date: 2019-05-22 11:51:19.568
Description: 
Integridad de código no puede comprobar la integridad de imagen del archivo \Device\HarddiskVolume2\Windows\System32\ViaKaraokeApo.dll porque el conjunto de hashes de imagen por página no se encuentra en el sistema.

Date: 2019-05-22 11:42:16.215
Description: 
Integridad de código no puede comprobar la integridad de imagen del archivo \Device\HarddiskVolume2\Windows\System32\ViaKaraokeApo.dll porque el conjunto de hashes de imagen por página no se encuentra en el sistema.

Date: 2019-05-22 10:11:02.556
Description: 
Integridad de código no puede comprobar la integridad de imagen del archivo \Device\HarddiskVolume2\Windows\System32\ViaKaraokeApo.dll porque el conjunto de hashes de imagen por página no se encuentra en el sistema.

Date: 2019-05-22 10:09:57.917
Description: 
Integridad de código no puede comprobar la integridad de imagen del archivo \Device\HarddiskVolume2\Windows\System32\ViaKaraokeApo.dll porque el conjunto de hashes de imagen por página no se encuentra en el sistema.

Date: 2019-05-22 10:09:13.541
Description: 
Integridad de código no puede comprobar la integridad de imagen del archivo \Device\HarddiskVolume2\Windows\System32\ViaKaraokeApo.dll porque el conjunto de hashes de imagen por página no se encuentra en el sistema.

==================== Memory info =========================== 

BIOS: American Megatrends Inc. 0703 08/24/2012
Motherboard: ASUSTeK COMPUTER INC. P8B75-M LE
Processor: Intel(R) Core(TM) i3-3220 CPU @ 3.30GHz
Percentage of memory in use: 45%
Total physical RAM: 7865.74 MB
Available physical RAM: 4252.8 MB
Total Virtual: 15729.62 MB
Available Virtual: 12163.84 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:488.93 GB) (Free:302.95 GB) NTFS
Drive e: (E: Disco externo) (Fixed) (Total:931.51 GB) (Free:503.85 GB) NTFS
Drive j: (Juan) (Fixed) (Total:442.49 GB) (Free:441.83 GB) NTFS

\\?\Volume{971352ff-5e99-11e9-bac9-806e6f6e6963}\ () (Fixed) (Total:0.09 GB) (Free:0.08 GB) FAT32

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 931.5 GB) (Disk ID: AB49EE94)
Partition 1: (Active) - (Size=100 MB) - (Type=0B)
Partition 2: (Not Active) - (Size=488.9 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=442.5 GB) - (Type=07 NTFS)

========================================================
Disk: 1 (MBR Code: Windows XP) (Size: 931.5 GB) (Disk ID: 0011235A)
Partition 1: (Not Active) - (Size=931.5 GB) - (Type=07 NTFS)

==================== End of Addition.txt ============================

Bueno, estos son los resultados del scan. Ya me direis como va todo. Gracias. Saludos.

Hola @Jon_Perola

Ejecutaste FRST desde una ubicación incorrecta:

Running from E:\DIRECTORIO PRINCIPAL\DESCARGAS\FIREFOX

Se ve claramente que tu Sistema Operativo esta en C: y FRST debe ejecutarse desde el escritorio de donde tienes el SO.

Pega el ejecutable de FRST en el escritorio de C: lo ejecutas desde allí y nos traes los nuevos reporte.

Salu2

Ok. Quiza haya pecado de metodista. Me pongo a ello.

Bueno, allá va:

FRST - Parte 1:

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 19-05.2019
Ran by Juan (administrator) on JUAN-PC (23-05-2019 08:55:20)
Running from C:\Users\Juan\Desktop
Loaded Profiles: Juan (Available Profiles: Juan)
Platform: Windows 7 Home Premium Service Pack 1 (X64) Language: Español (España, internacional)
Internet Explorer Version 11 (Default browser not detected!)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

() [File not signed] C:\Program Files (x86)\Common Files\Portrait Displays\Plugins\AM\dtsslsrv.exe
() [File not signed] C:\Program Files (x86)\Common Files\Portrait Displays\Shared\DTSRVC.exe
() [File not signed] C:\Program Files\Logitech\SetPoint\x86\SetPoint32.exe
(Adobe Systems, Incorporated -> Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\afwServ.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Hewlett-Packard Company -> Hewlett-Packard) C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
(Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
(Logitech -> Logitech Inc.) C:\Program Files\Common Files\Logitech\KhalShared\KHALMNPR.exe
(Logitech Inc.) [File not signed] C:\Program Files\Logitech\SetPoint\SetPoint.exe
(Mega Limited -> Mega Limited) C:\Users\Juan\AppData\Local\MEGAsync\MEGAsync.exe
(Microsoft Corporation -> Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corporation -> Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\Office14\ONENOTEM.EXE
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Nero AG -> Nero AG) C:\Program Files (x86)\Nero\Update\NASvc.exe
(Portrait Displays, Inc) [File not signed] C:\Program Files (x86)\Acer Display\eDisplay Management\dthtml.exe
(Portrait Displays, Inc. -> ) C:\Program Files (x86)\Portrait Displays\Pivot Software\Floater.exe
(Portrait Displays, Inc. -> ) C:\Program Files (x86)\Portrait Displays\Pivot Software\wpCtrl.exe
(Portrait Displays, Inc.) [File not signed] C:\Program Files (x86)\Common Files\Portrait Displays\Drivers\pdisrvc.exe
(SUPERAntiSpyware.com -> SUPERAntiSpyware.com) C:\Program Files\SUPERAntiSpyware\SASCore64.exe
(TeamViewer GmbH -> TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(VIA Technologies Inc. -> VIA Technologies, Inc.) C:\Windows\System32\ViakaraokeSrv.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [262024 2019-05-21] (AVAST Software s.r.o. -> AVAST Software)
HKLM-x32\...\Run: [HDAudDeck] => C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe [2472048 2010-08-11] (VIA Technologies Inc. -> VIA)
HKLM-x32\...\Run: [USB3MON] => C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [292088 2000-01-01] (Intel Corporation -> Intel Corporation)
HKLM-x32\...\Run: [PivotSoftware] => C:\Program Files (x86)\Portrait Displays\Pivot Software\wpctrl.exe [694008 2007-02-09] (Portrait Displays, Inc. -> )
HKLM-x32\...\Run: [WinampAgent] => C:\Program Files (x86)\Winamp\winampa.exe [85600 2013-12-13] (Nullsoft Inc. -> Nullsoft, Inc.)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [49208 2011-10-28] (Hewlett-Packard Company -> Hewlett-Packard)
HKLM-x32\...\Run: [DT ACR] => C:\Program Files (x86)\Common Files\Portrait Displays\Shared\DT_startup.exe [81920 2008-06-06] () [File not signed]
HKLM-x32\...\Run: [BCSSync] => C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [89184 2012-11-05] (Microsoft Corporation -> Microsoft Corporation)
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-2258397178-3295816786-390305721-1000\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [22588760 2019-05-09] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-2258397178-3295816786-390305721-1000\...\Run: [Spotify] => C:\Users\Juan\AppData\Roaming\Spotify\Spotify.exe [25817832 2019-05-16] (Spotify AB -> Spotify Ltd)
HKU\S-1-5-21-2258397178-3295816786-390305721-1000\...\Run: [GUDelayStartup] => C:\Program Files (x86)\Glary Utilities 5\StartupManager.exe [44024 2019-04-22] (Glarysoft LTD -> Glarysoft Ltd)
HKU\S-1-5-21-2258397178-3295816786-390305721-1000\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Windows\system32\ssText3d.scr [333824 2010-11-21] (Microsoft Windows -> Microsoft Corporation)
HKLM\...\Drivers32: [VIDC.FMVC] => C:\Windows\SysWOW64\fmcodec.dll [77824 2008-08-18] (Fox Magic Software) [File not signed]
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\74.0.3729.169\Installer\chrmstp.exe [2019-05-22] (Google LLC -> Google Inc.)
HKLM\Software\...\Authentication\Credential Providers: [{F8A0B131-5F68-486c-8040-7E8FC3C85BB6}] -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDCREDPROV.DLL [2012-07-17] (Microsoft Corporation -> Microsoft Corp.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Logitech SetPoint.lnk [2019-04-14]
ShortcutTarget: Logitech SetPoint.lnk -> C:\Program Files\Logitech\SetPoint\SetPoint.exe (Logitech Inc.) [File not signed]
Startup: C:\Users\Juan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\MEGAsync.lnk [2019-05-10]
ShortcutTarget: MEGAsync.lnk -> C:\Users\Juan\AppData\Local\MEGAsync\MEGAsync.exe (Mega Limited -> Mega Limited)
Startup: C:\Users\Juan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Recorte de pantalla y Selector de OneNote 2010.lnk [2019-05-23]
ShortcutTarget: Recorte de pantalla y Selector de OneNote 2010.lnk -> C:\Program Files (x86)\Microsoft Office\Office14\ONENOTEM.EXE (Microsoft Corporation -> Microsoft Corporation)
Startup: C:\Users\Juan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Supervisar alertas de tinta - HP Deskjet 3520 series.lnk [2019-05-23]
ShortcutAndArgument: Supervisar alertas de tinta - HP Deskjet 3520 series.lnk -> C:\Windows\system32\RunDll32.exe => "C:\Program Files\HP\HP Deskjet 3520 series\bin\HPStatusBL.dll",RunDLLEntry SERIALNUMBER=CN36K1C2SR05SY;CONNECTION=USB;MONITOR=1;
BootExecute: autocheck autochk *  
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {016D1C27-46B1-436A-82DF-5B34A2E0D9BB} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe [2380088 2019-04-14] (AVAST Software s.r.o. -> AVAST Software)
Task: {0760F726-C2C3-4D0B-BE2D-BF83AB859D0C} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156456 2019-04-14] (Google Inc -> Google LLC)
Task: {0961FC04-D5B1-40B6-84B2-B547B43FF4CC} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1195544 2018-12-17] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
Task: {1DD69C0C-3171-4F67-A8A6-83379D4F4BEB} - System32\Tasks\{FD4E8400-2A7D-4C45-A5F1-335DEF35A1F7} => C:\Windows\system32\pcalua.exe -a "E:\DIRECTORIO PRINCIPAL\DESCARGAS\FIREFOX\realtek-ac97-audio-driver.exe" -d "E:\DIRECTORIO PRINCIPAL\DESCARGAS\FIREFOX"
Task: {2951B37E-4F0C-4D34-A488-E8944923B990} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156456 2019-04-14] (Google Inc -> Google LLC)
Task: {2CE2185F-25C0-4114-82C2-4065F7653F8A} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [2934152 2019-05-21] (AVAST Software s.r.o. -> AVAST Software)
Task: {30DF1970-C260-4F88-A6DA-A7FBADD9A0F8} - System32\Tasks\Nero\Nero Info => C:\Program Files (x86)\Common Files\Nero\Nero Info\NeroInfo.exe [6562168 2016-09-08] (Nero AG -> Nero AG)
Task: {3307F0FD-0D4E-42A8-9C8F-EF105DCED1E0} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [619416 2019-05-09] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {3B296408-60BE-4D3A-B44E-B86CC00EF14A} - System32\Tasks\Logitech Desktop Messenger => C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
Task: {4220AE60-8E24-4814-ACA1-C341DEDA6AC3} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [16571320 2019-05-09] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {57803817-7A18-4AF2-9FAD-0AA13D1B6E9A} - System32\Tasks\{B2AA2367-E5B4-4094-9BB2-FD570788C35C} => C:\Windows\system32\pcalua.exe -a "C:\Users\Juan\Desktop\AUDIO Y VIDEO\asio4all.exe" -d "C:\Users\Juan\Desktop\AUDIO Y VIDEO"
Task: {60EF6F73-E9CA-4D71-8AB2-0890428A4622} - System32\Tasks\Microsoft\Windows\AvastAntiTrackPremium\AvastAntiTrackPremiumStart => C:\Program Files (x86)\AVAST Software\AvastAntiTrackPremium\AvastAntiTrackPremium.exe [20929560 2019-02-22] (Avast Software s.r.o. -> avast technologies, LLC)
Task: {8659C4D1-8438-4ACB-A623-A4A63DB42E57} - System32\Tasks\MEGA\MEGAsync Update Task S-1-5-21-2258397178-3295816786-390305721-1000 => C:\Users\Juan\AppData\Local\MEGAsync\MEGAupdater.exe [615160 2019-04-16] (Mega Limited -> Mega Limited)
Task: {C893D4D4-68DA-46BA-AF84-FAD3E8C0EE70} - System32\Tasks\{F9C3B1B4-C7FD-46C6-B1E1-E20D3D732A4D} => C:\Windows\system32\pcalua.exe -a "C:\Program Files (x86)\Avast Driver Updater\UninstallStub.exe" -d "C:\Program Files (x86)\Avast Driver Updater"
Task: {E458F351-8D06-490E-9161-2A750CF40A4B} - System32\Tasks\AVGPCTuneUp_Task_BkGndMaintenance => C:\Program Files (x86)\AVG\AVG PC TuneUp\tuscanx.exe

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{C08E4391-895A-4148-81AC-CC2DB56325EE}: [DhcpNameServer] 192.168.0.1

Internet Explorer:
==================
HKU\S-1-5-21-2258397178-3295816786-390305721-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/es-es/?ocid=iehp
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation -> Microsoft Corporation)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17] (Microsoft Corporation -> Microsoft Corp.)
BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2019-04-14] (Google Inc -> Google Inc.)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Aplicación auxiliar de inicio de sesión en la cuenta Microsoft -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17] (Microsoft Corporation -> Microsoft Corp.)
BHO-x32: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2019-04-14] (Google Inc -> Google Inc.)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation -> Microsoft Corporation)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2019-04-14] (Google Inc -> Google Inc.)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2019-04-14] (Google Inc -> Google Inc.)
Toolbar: HKU\S-1-5-21-2258397178-3295816786-390305721-1000 -> Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2019-04-14] (Google Inc -> Google Inc.)

FireFox:
========
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation ->  Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation ->  Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3508.0205 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2013-02-05] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.34.11\npGoogleUpdate3.dll [2019-05-15] (Google Inc -> Google LLC)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.34.11\npGoogleUpdate3.dll [2019-05-15] (Google Inc -> Google LLC)
FF Plugin-x32: @videolan.org/vlc,version=2.2.2 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-01-10] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-01-10] (VideoLAN -> VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2019-05-03] (Adobe Inc. -> Adobe Systems Inc.)

Chrome: 
=======
CHR Profile: C:\Users\Juan\AppData\Local\Google\Chrome\User Data\Default [2019-05-23]
CHR Extension: (Presentaciones) - C:\Users\Juan\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2019-05-08]
CHR Extension: (Documentos) - C:\Users\Juan\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2019-05-08]
CHR Extension: (Google Drive) - C:\Users\Juan\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2019-05-06]
CHR Extension: (YouTube) - C:\Users\Juan\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2019-05-06]
CHR Extension: (Avast SafePrice | Comparaciones, ofertas y cupones) - C:\Users\Juan\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2019-05-08]
CHR Extension: (Hojas de cálculo) - C:\Users\Juan\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2019-05-08]
CHR Extension: (Documentos de Google sin conexión) - C:\Users\Juan\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2019-05-08]
CHR Extension: (Avast Online Security) - C:\Users\Juan\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2019-05-08]
CHR Extension: (Sistema de pagos de Chrome Web Store) - C:\Users\Juan\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-05-08]
CHR Extension: (Gmail) - C:\Users\Juan\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-05-06]
CHR Extension: (Chrome Media Router) - C:\Users\Juan\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-05-08]
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - hxxps://clients2.google.com/service/update2/crx

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 !SASCORE; C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE [173472 2017-01-31] (SUPERAntiSpyware.com -> SUPERAntiSpyware.com)
R2 Asset Management Daemon; C:\Program Files (x86)\Common Files\Portrait Displays\Plugins\AM\dtsslsrv.exe [114688 2008-06-06] () [File not signed]
S3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [7126928 2019-05-22] (AVAST Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [409224 2019-05-21] (AVAST Software s.r.o. -> AVAST Software)
R2 avast! Firewall; C:\Program Files\AVAST Software\Avast\afwServ.exe [416512 2019-05-21] (AVAST Software s.r.o. -> AVAST Software)
R2 DTSRVC; C:\Program Files (x86)\Common Files\Portrait Displays\Shared\DTSRVC.exe [69632 2008-06-06] () [File not signed]
R2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [330136 2015-08-27] (Intel Corporation - pGFX -> Intel Corporation)
S2 KMService; C:\Windows\SysWOW64\srvany.exe [8192 2019-05-10] () [File not signed]
S2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6562472 2019-02-01] (Malwarebytes Corporation -> Malwarebytes)
R2 PdiService; C:\Program Files (x86)\Common Files\Portrait Displays\Drivers\pdisrvc.exe [90112 2008-06-04] (Portrait Displays, Inc.) [File not signed]
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [11795800 2019-04-15] (TeamViewer GmbH -> TeamViewer GmbH)
R2 VIAKaraokeService; C:\Windows\system32\viakaraokesrv.exe [27760 2011-11-12] (VIA Technologies Inc. -> VIA Technologies, Inc.)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Windows -> Microsoft Corporation)

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R1 aswArPot; C:\Windows\System32\drivers\aswArPot.sys [207448 2019-05-21] (AVAST Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; C:\Windows\System32\drivers\aswbidsdriver.sys [262496 2019-05-21] (AVAST Software s.r.o. -> AVAST Software)
R0 aswbidsh; C:\Windows\System32\drivers\aswbidsh.sys [205848 2019-05-21] (AVAST Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:\Windows\System32\drivers\aswbuniv.sys [61472 2019-05-21] (AVAST Software s.r.o. -> AVAST Software)
R1 aswKbd; C:\Windows\System32\drivers\aswKbd.sys [42288 2019-05-21] (AVAST Software s.r.o. -> AVAST Software)
R2 aswMonFlt; C:\Windows\System32\drivers\aswMonFlt.sys [167872 2019-05-21] (AVAST Software s.r.o. -> AVAST Software)
R3 aswNetNd6; C:\Windows\System32\DRIVERS\aswNetNd6.sys [38152 2019-04-29] (AVAST Software s.r.o. -> AVAST Software)
R1 aswNetSec; C:\Windows\System32\drivers\aswNetSec.sys [549200 2019-05-21] (AVAST Software s.r.o. -> AVAST Software)
R1 aswRdr; C:\Windows\System32\drivers\aswRdr2.sys [112312 2019-05-21] (AVAST Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\Windows\System32\drivers\aswRvrt.sys [87944 2019-05-21] (AVAST Software s.r.o. -> AVAST Software)
R1 aswSnx; C:\Windows\System32\drivers\aswSnx.sys [1030784 2019-05-21] (AVAST Software s.r.o. -> AVAST Software)
R1 aswSP; C:\Windows\System32\drivers\aswSP.sys [477584 2019-05-21] (AVAST Software s.r.o. -> AVAST Software)
S2 aswStm; C:\Windows\System32\drivers\aswStm.sys [225096 2019-05-21] (AVAST Software s.r.o. -> AVAST Software)
R0 aswVmm; C:\Windows\System32\drivers\aswVmm.sys [385640 2019-05-21] (AVAST Software s.r.o. -> AVAST Software)
S2 EIO; C:\Windows\SysWOW64\drivers\EIO.sys [9472 2004-12-14] (ASUSTeK Computer Inc.) [File not signed]
R1 GUBootStartup; C:\Windows\System32\drivers\GUBootStartup.sys [28936 2019-05-11] (Glarysoft LTD -> Glarysoft Ltd)
R1 ISODrive; C:\Program Files (x86)\UltraISO\drivers\ISODrv64.sys [115448 2013-11-21] (SHENZHEN YIBO DIGITAL SYSTEMS DEVELOPMENT CO. LTD. -> EZB Systems, Inc.)
R1 netfilter2; C:\Windows\System32\drivers\netfilter2.sys [54744 2018-11-05] (Praetorian Technologies, LLC -> Windows (R) Win 7 DDK provider)
R3 PdiPorts; C:\Windows\System32\DRIVERS\PdiPorts.sys [20520 2008-06-04] (Portrait Displays, Inc. -> Portrait Displays, Inc.)
R2 RtNdPt60; C:\Windows\System32\DRIVERS\RtNdPt60.sys [26624 2007-12-11] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Codename Longhorn DDK provider)
S3 RTVLANPT; C:\Windows\System32\DRIVERS\RtVlan60.sys [24064 2007-12-03] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Codename Longhorn DDK provider)
R1 SASDIFSV; C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS [14928 2011-07-22] (Support.com, Inc. -> SUPERAdBlocker.com and SUPERAntiSpyware.com)
R1 SASKUTIL; C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS [12368 2011-07-12] (Support.com, Inc. -> SUPERAdBlocker.com and SUPERAntiSpyware.com)
R3 VIAHdAudAddService; C:\Windows\System32\drivers\viahduaa.sys [1342064 2010-08-04] (VIA Technologies Inc. -> VIA Technologies, Inc.)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-05-23 08:55 - 2019-05-23 08:55 - 000023734 _____ C:\Users\Juan\Desktop\FRST.txt
2019-05-22 14:47 - 2019-05-22 15:24 - 000000000 ____D C:\Users\Juan\Desktop\Capturas de Video
2019-05-22 12:07 - 2019-05-22 12:09 - 000000000 ____D C:\Users\Juan\Desktop\FRST64
2019-05-22 11:44 - 2019-05-22 11:44 - 000000035 _____ C:\END
2019-05-22 09:18 - 2019-05-23 08:55 - 000000000 ____D C:\FRST
2019-05-22 09:00 - 2019-05-22 09:00 - 002435072 _____ (Farbar) C:\Users\Juan\Desktop\FRST64.exe
2019-05-21 08:29 - 2019-05-21 08:29 - 000363400 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2019-05-20 17:27 - 2019-05-20 17:27 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Photoshop CS6
2019-05-20 17:26 - 2019-05-20 17:27 - 000000000 ____D C:\Program Files (x86)\Adobe Photoshop CS6
2019-05-20 08:12 - 2019-05-20 08:37 - 000000000 ____D C:\Users\Juan\Desktop\ForoSpyware
2019-05-16 11:32 - 2019-04-30 20:28 - 000397112 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2019-05-16 11:32 - 2019-04-30 19:37 - 000348984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2019-05-16 11:32 - 2019-04-30 01:51 - 000578560 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2019-05-16 11:32 - 2019-04-30 01:51 - 000499200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2019-05-16 11:32 - 2019-04-25 05:01 - 025730560 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2019-05-16 11:32 - 2019-04-25 04:40 - 002902016 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2019-05-16 11:32 - 2019-04-25 04:31 - 020279296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2019-05-16 11:32 - 2019-04-25 04:28 - 005775360 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2019-05-16 11:32 - 2019-04-25 04:26 - 000790528 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2019-05-16 11:32 - 2019-04-25 04:09 - 002295808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2019-05-16 11:32 - 2019-04-25 04:03 - 000663040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2019-05-16 11:32 - 2019-04-25 03:46 - 015285248 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2019-05-16 11:32 - 2019-04-25 03:40 - 004493312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2019-05-16 11:32 - 2019-04-25 03:35 - 005303808 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2019-05-16 11:32 - 2019-04-25 03:35 - 001155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2019-05-16 11:32 - 2019-04-25 03:24 - 001557504 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2019-05-16 11:32 - 2019-04-25 03:18 - 004831232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2019-05-16 11:32 - 2019-04-25 03:14 - 001323008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2019-05-16 11:32 - 2019-04-19 03:54 - 004057320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2019-05-16 11:32 - 2019-04-19 03:53 - 003963624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2019-05-16 11:32 - 2019-04-19 03:53 - 001314104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2019-05-16 11:32 - 2019-04-19 03:51 - 000555520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2019-05-16 11:32 - 2019-04-19 03:44 - 000185064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pci.sys
2019-05-16 11:32 - 2019-04-19 03:43 - 000708328 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2019-05-16 11:32 - 2019-04-19 03:43 - 000631680 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2019-05-16 11:32 - 2019-04-19 03:43 - 000153832 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2019-05-16 11:32 - 2019-04-19 03:43 - 000064232 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ULIAGPKX.SYS
2019-05-16 11:32 - 2019-04-19 03:43 - 000063208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\termdd.sys
2019-05-16 11:32 - 2019-04-19 03:43 - 000060648 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\AGP440.sys
2019-05-16 11:32 - 2019-04-19 03:43 - 000031976 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mssmbios.sys
2019-05-16 11:32 - 2019-04-19 03:43 - 000023784 _____ (Microsoft Corporation) C:\Windows\system32\streamci.dll
2019-05-16 11:32 - 2019-04-19 03:43 - 000020200 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\isapnp.sys
2019-05-16 11:32 - 2019-04-19 03:42 - 005552864 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2019-05-16 11:32 - 2019-04-19 03:42 - 001664360 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2019-05-16 11:32 - 2019-04-19 03:42 - 000122600 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\NV_AGP.SYS
2019-05-16 11:32 - 2019-04-19 03:42 - 000068328 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\volmgr.sys
2019-05-16 11:32 - 2019-04-19 03:39 - 001472512 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2019-05-16 11:32 - 2019-04-19 03:39 - 000733184 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2019-05-16 11:32 - 2019-04-16 16:17 - 012880896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2019-05-16 11:32 - 2019-04-16 16:17 - 000583680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll
2019-05-16 11:32 - 2019-04-16 16:05 - 014184448 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2019-05-16 11:32 - 2019-04-16 16:05 - 000878080 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2019-05-16 11:32 - 2019-04-14 06:39 - 000071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll
2019-05-16 11:32 - 2019-04-14 06:26 - 000151552 _____ (Microsoft Corporation) C:\Windows\system32\t2embed.dll
2019-05-16 11:32 - 2019-04-14 06:26 - 000101376 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2019-05-16 11:32 - 2019-04-07 16:17 - 011411968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmp.dll
2019-05-16 11:32 - 2019-04-07 16:17 - 000382976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wer.dll
2019-05-16 11:32 - 2019-04-07 16:17 - 000160256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\werui.dll
2019-05-16 11:32 - 2019-04-07 16:03 - 014637568 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll
2019-05-16 11:32 - 2019-04-07 16:03 - 001281536 _____ (Microsoft Corporation) C:\Windows\system32\werconcpl.dll
2019-05-16 11:32 - 2019-04-07 16:03 - 000486400 _____ (Microsoft Corporation) C:\Windows\system32\wer.dll
2019-05-16 11:32 - 2019-04-07 16:03 - 000174080 _____ (Microsoft Corporation) C:\Windows\system32\werui.dll
2019-05-16 11:32 - 2019-04-07 16:03 - 000086016 _____ (Microsoft Corporation) C:\Windows\system32\wercplsupport.dll
2019-05-16 11:32 - 2019-04-07 16:02 - 004120576 _____ (Microsoft Corporation) C:\Windows\system32\mf.dll
2019-05-16 11:32 - 2019-04-07 15:42 - 001311744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msjet40.dll
2019-05-16 11:32 - 2019-04-07 15:42 - 000376320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mspbde40.dll
2019-05-16 11:32 - 2019-04-07 15:42 - 000353280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrd3x40.dll
2019-05-16 11:32 - 2019-04-07 15:42 - 000341504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msexcl40.dll
2019-05-16 11:32 - 2019-04-07 15:42 - 000240640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msltus40.dll
2019-05-16 11:32 - 2019-04-07 15:38 - 000407040 _____ (Microsoft Corporation) C:\Windows\system32\nltest.exe
2019-05-16 11:32 - 2019-04-07 14:05 - 000634312 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe
2019-05-16 11:32 - 2019-04-05 01:34 - 000064000 _____ (Microsoft Corporation) C:\Windows\system32\cryptdll.dll
2019-05-16 11:32 - 2019-04-05 01:23 - 000057856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptdll.dll
2019-05-16 11:31 - 2019-04-25 04:52 - 002724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2019-05-16 11:31 - 2019-04-25 04:52 - 000004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2019-05-16 11:31 - 2019-04-25 04:38 - 000417280 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2019-05-16 11:31 - 2019-04-25 04:38 - 000066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2019-05-16 11:31 - 2019-04-25 04:38 - 000048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2019-05-16 11:31 - 2019-04-25 04:37 - 000088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2019-05-16 11:31 - 2019-04-25 04:31 - 000054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2019-05-16 11:31 - 2019-04-25 04:30 - 000034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2019-05-16 11:31 - 2019-04-25 04:28 - 000615936 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2019-05-16 11:31 - 2019-04-25 04:26 - 000814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2019-05-16 11:31 - 2019-04-25 04:26 - 000144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2019-05-16 11:31 - 2019-04-25 04:26 - 000116224 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2019-05-16 11:31 - 2019-04-25 04:24 - 002724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2019-05-16 11:31 - 2019-04-25 04:19 - 000969216 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2019-05-16 11:31 - 2019-04-25 04:16 - 000489984 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2019-05-16 11:31 - 2019-04-25 04:12 - 000062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2019-05-16 11:31 - 2019-04-25 04:12 - 000047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2019-05-16 11:31 - 2019-04-25 04:11 - 000341504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2019-05-16 11:31 - 2019-04-25 04:11 - 000064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2019-05-16 11:31 - 2019-04-25 04:09 - 000087552 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2019-05-16 11:31 - 2019-04-25 04:09 - 000077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2019-05-16 11:31 - 2019-04-25 04:08 - 000107520 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2019-05-16 11:31 - 2019-04-25 04:06 - 000047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2019-05-16 11:31 - 2019-04-25 04:05 - 000199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2019-05-16 11:31 - 2019-04-25 04:05 - 000092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2019-05-16 11:31 - 2019-04-25 04:05 - 000030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2019-05-16 11:31 - 2019-04-25 04:04 - 000476160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2019-05-16 11:31 - 2019-04-25 04:03 - 000315392 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2019-05-16 11:31 - 2019-04-25 04:02 - 000620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2019-05-16 11:31 - 2019-04-25 04:02 - 000115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2019-05-16 11:31 - 2019-04-25 04:01 - 000152064 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2019-05-16 11:31 - 2019-04-25 03:54 - 000416256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2019-05-16 11:31 - 2019-04-25 03:52 - 000262144 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2019-05-16 11:31 - 2019-04-25 03:50 - 000809472 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2019-05-16 11:31 - 2019-04-25 03:50 - 000728064 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2019-05-16 11:31 - 2019-04-25 03:50 - 000060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2019-05-16 11:31 - 2019-04-25 03:49 - 000091136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2019-05-16 11:31 - 2019-04-25 03:49 - 000073216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2019-05-16 11:31 - 2019-04-25 03:48 - 001359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2019-05-16 11:31 - 2019-04-25 03:47 - 002135552 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2019-05-16 11:31 - 2019-04-25 03:47 - 000168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2019-05-16 11:31 - 2019-04-25 03:46 - 000076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2019-05-16 11:31 - 2019-04-25 03:45 - 000279040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2019-05-16 11:31 - 2019-04-25 03:43 - 000130048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2019-05-16 11:31 - 2019-04-25 03:38 - 000230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2019-05-16 11:31 - 2019-04-25 03:37 - 000696320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2019-05-16 11:31 - 2019-04-25 03:36 - 002059776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2019-05-16 11:31 - 2019-04-25 03:35 - 013682176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2019-05-16 11:31 - 2019-04-25 03:14 - 000800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2019-05-16 11:31 - 2019-04-25 03:12 - 000710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2019-05-16 11:31 - 2019-04-19 03:51 - 001114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2019-05-16 11:31 - 2019-04-19 03:51 - 000666112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2019-05-16 11:31 - 2019-04-19 03:51 - 000275968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2019-05-16 11:31 - 2019-04-19 03:51 - 000261120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2019-05-16 11:31 - 2019-04-19 03:51 - 000254464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2019-05-16 11:31 - 2019-04-19 03:51 - 000223232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2019-05-16 11:31 - 2019-04-19 03:51 - 000172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2019-05-16 11:31 - 2019-04-19 03:51 - 000146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll
2019-05-16 11:31 - 2019-04-19 03:51 - 000141312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpchttp.dll
2019-05-16 11:31 - 2019-04-19 03:51 - 000096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2019-05-16 11:31 - 2019-04-19 03:51 - 000082944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bcrypt.dll
2019-05-16 11:31 - 2019-04-19 03:51 - 000070144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2019-05-16 11:31 - 2019-04-19 03:51 - 000060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll
2019-05-16 11:31 - 2019-04-19 03:51 - 000043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll
2019-05-16 11:31 - 2019-04-19 03:51 - 000022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2019-05-16 11:31 - 2019-04-19 03:51 - 000005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2019-05-16 11:31 - 2019-04-19 03:50 - 000690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
2019-05-16 11:31 - 2019-04-19 03:50 - 000644096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll
2019-05-16 11:31 - 2019-04-19 03:50 - 000342528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certcli.dll
2019-05-16 11:31 - 2019-04-19 03:50 - 000050688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\appidapi.dll
2019-05-16 11:31 - 2019-04-19 03:50 - 000017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2019-05-16 11:31 - 2019-04-19 03:50 - 000006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll
2019-05-16 11:31 - 2019-04-19 03:50 - 000005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2019-05-16 11:31 - 2019-04-19 03:50 - 000004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2019-05-16 11:31 - 2019-04-19 03:50 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2019-05-16 11:31 - 2019-04-19 03:50 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2019-05-16 11:31 - 2019-04-19 03:50 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2019-05-16 11:31 - 2019-04-19 03:50 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2019-05-16 11:31 - 2019-04-19 03:50 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2019-05-16 11:31 - 2019-04-19 03:50 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2019-05-16 11:31 - 2019-04-19 03:50 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2019-05-16 11:31 - 2019-04-19 03:50 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2019-05-16 11:31 - 2019-04-19 03:50 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2019-05-16 11:31 - 2019-04-19 03:50 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2019-05-16 11:31 - 2019-04-19 03:50 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2019-05-16 11:31 - 2019-04-19 03:50 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2019-05-16 11:31 - 2019-04-19 03:50 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2019-05-16 11:31 - 2019-04-19 03:50 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2019-05-16 11:31 - 2019-04-19 03:50 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2019-05-16 11:31 - 2019-04-19 03:50 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2019-05-16 11:31 - 2019-04-19 03:50 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2019-05-16 11:31 - 2019-04-19 03:50 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2019-05-16 11:31 - 2019-04-19 03:50 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2019-05-16 11:31 - 2019-04-19 03:50 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2019-05-16 11:31 - 2019-04-19 03:50 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll

ADDITION:

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 19-05.2019
Ran by Juan (23-05-2019 08:56:07)
Running from C:\Users\Juan\Desktop
Windows 7 Home Premium Service Pack 1 (X64) (2019-04-14 09:56:50)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrador (S-1-5-21-2258397178-3295816786-390305721-500 - Administrator - Disabled)
Invitado (S-1-5-21-2258397178-3295816786-390305721-501 - Limited - Disabled)
Juan (S-1-5-21-2258397178-3295816786-390305721-1000 - Administrator - Enabled) => C:\Users\Juan

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Avast Antivirus (Disabled - Up to date) {8EA8924E-BC81-DC44-8BB0-8BAE75D86EBF}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Disabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402}
FW: Avast Antivirus (Disabled) {B693136B-F6EE-DD1C-A0EF-229B8B0B29C4}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

7-Zip 18.05 (x64) (HKLM\...\7-Zip) (Version: 18.05 - Igor Pavlov)
7-Zip 19.00 (x64 edition) (HKLM\...\{23170F69-40C1-2702-1900-000001000000}) (Version: 19.00.00.0 - Igor Pavlov)
Acer eDisplay Management (HKLM-x32\...\{A586DC50-B18D-48FB-B7CC-A598200457C2}) (Version: 1.20.011 - Portrait Displays, Inc.)
Adobe Acrobat Reader DC - Español (HKLM-x32\...\{AC76BA86-7AD7-1034-7B44-AC0F074E4100}) (Version: 19.012.20034 - Adobe Systems Incorporated)
Adobe Photoshop CS6 versión 13.0.1 (HKLM-x32\...\{A724DC44-6241-42D3-BA57-778B178ABC17}_is1) (Version: 13.0.1 - Adobe Systems, Inc.)
Advanced RAR Repair v1.2 (HKLM-x32\...\Advanced RAR Repair v1.2) (Version:  - )
ASIO4ALL (HKLM-x32\...\ASIO4ALL) (Version: 2.10 - Michael Tippach)
aTube Catcher versión 3.8 (HKLM-x32\...\{D43B360E-722D-421B-BC77-20B9E0F8B6CD}_is1) (Version: 3.8 - DsNET Corp)
Audacity 2.3.2 (HKLM-x32\...\Audacity_is1) (Version: 2.3.2 - Audacity Team)
Avast Driver Updater (HKLM-x32\...\{8804140C-3144-4075-9526-1C662E26CA17}) (Version: 2.5.5 - AVAST Software) Hidden
Avast Premier (HKLM-x32\...\Avast Antivirus) (Version: 19.5.2378 - AVAST Software)
AvastAntiTrackPremium (HKLM-x32\...\AvastAntiTrackPremium) (Version: 1.2.2.21060 - Avast)
CCleaner (HKLM\...\CCleaner) (Version: 5.57 - Piriform)
CDDRV_Installer (HKLM-x32\...\{8CC990CD-87C8-475C-AC32-8A7984E2FCFA}) (Version: 1.00.0000 - Logitech) Hidden
D3DX10 (HKLM-x32\...\{E09C4DB7-630C-4F06-A631-8EA7239923AF}) (Version: 15.4.2368.0902 - Microsoft) Hidden
Diagnostic Utility (HKLM-x32\...\{7236672F-6430-439E-9B27-27EDEAF1D676}) (Version: 1.00.0000 - Realtek)
FileASSASSIN (HKLM-x32\...\FileASSASSIN) (Version: 1.06 - Malwarebytes)
Freemake Video Converter versión 4.1.6 (HKLM-x32\...\Freemake Video Converter_is1) (Version: 4.1.6 - Ellora Assets Corporation)
Galería de fotos (HKLM-x32\...\{F7314CA2-F900-46D7-9EA1-FBDD9D73F765}) (Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Glary Utilities PRO 5.118 (HKLM-x32\...\Glary Utilities 5) (Version: 5.118.0.143 - Glarysoft Ltd)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 74.0.3729.169 - Google Inc.)
Google Toolbar for Internet Explorer (HKLM-x32\...\{18455581-E099-4BA8-BC6B-F34B2F06600C}) (Version: 1.0.0 - Google Inc.) Hidden
Google Toolbar for Internet Explorer (HKLM-x32\...\{2318C2B1-4965-11d4-9B18-009027A5CD4F}) (Version: 7.5.8231.2252 - Google Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.34.11 - Google LLC) Hidden
Google Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.21.169 - Google Inc.) Hidden
HP Deskjet 3520 series Setup Guide (HKLM-x32\...\{AEEDCEB7-00B8-4BE1-B492-AB04803D5F1E}) (Version: 27.0.0 - Hewlett Packard)
HP Deskjet 3520 series Software básico del dispositivo (HKLM\...\{0F694DB2-773D-44A8-B4CF-8AA3056DE318}) (Version: 28.0.1315.0 - Hewlett-Packard Co.)
HP Update (HKLM-x32\...\{6F1C00D2-25C2-4CBA-8126-AE9A6E2E9CD5}) (Version: 5.003.003.001 - Hewlett-Packard)
HPDiagnosticAlert (HKLM-x32\...\{B6465A32-8BE9-4B38-ADC5-4B4BDDC10B0D}) (Version: 1.00.0001 - Microsoft) Hidden
HybridReverb2 (HKLM-x32\...\{9EBB34E3-C29E-49A8-A95F-C61F3108D37F}_is1) (Version:  - Christian Borß)
Intel(R) OpenCL CPU Runtime (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version:  - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.4276 - Intel Corporation)
Intel(R) USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 1.0.10.255 - Intel Corporation)
Junk Mail filter update (HKLM-x32\...\{F6F30C28-38AA-4DBA-AE0B-7E30238E61BB}) (Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
KhalInstallWrapper (HKLM\...\{9B1A8F3D-8059-43FB-A7AE-4F2C21F0AAF2}) (Version: 4.00.121 - Logitech) Hidden
Logitech SetPoint (HKLM-x32\...\{2E8EAC71-BFE4-417A-88F0-5A1BDFBCF5D3}) (Version: 4.00 - Logitech)
Malwarebytes versión 3.7.1.2839 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.7.1.2839 - Malwarebytes)
MEGAsync (HKLM-x32\...\MEGAsync) (Version:  - Mega Limited)
Microsoft .NET Framework 4.7.2 (español) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 3082) (Version: 4.7.03062 - Microsoft Corporation)
Microsoft .NET Framework 4.7.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.7.03062 - Microsoft Corporation)
Microsoft Office Outlook Connector (HKLM-x32\...\{95140000-007A-0C0A-0000-0000000FF1CE}) (Version: 14.0.5118.5000 - Microsoft Corporation)
Microsoft Office Professional Plus 2010 (HKLM-x32\...\Office14.PROPLUS) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Outlook Social Connector Provider for Windows Live Messenger 32-bit (HKLM-x32\...\{95140000-007D-0409-0000-0000000FF1CE}) (Version: 14.0.5120.5000 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50918.0 - Microsoft Corporation)
Microsoft SkyDrive (HKU\S-1-5-21-2258397178-3295816786-390305721-1000\...\SkyDriveSetup.exe) (Version: 16.4.6013.0910 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft SQL Server Compact 4.0 x64 ENU (HKLM\...\{8424B163-D1E0-48B7-88A2-C7A61767B3D7}) (Version: 4.0.8482.1 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6E8E85E8-CE4B-4FF5-91F7-04999C9FAE6A}) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24215 (HKLM-x32\...\{d992c12e-cab2-426f-bde3-fb8c53950b0d}) (Version: 14.0.24215.1 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Movie Maker (HKLM-x32\...\{45898170-E68C-4F02-AA35-C2186BF347A3}) (Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Movie Maker (HKLM-x32\...\{F25C8769-16B6-4B19-BB0B-76F213829AC6}) (Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Music Recorder (HKLM-x32\...\{94A4AE85-9F1D-4687-953F-38371C9D1A4F}) (Version: 18.009.0 - Nero AG) Hidden
Nero 2017 (HKLM-x32\...\{6B81BDC4-3368-4898-8F16-48962F789221}) (Version: 18.0.06100 - Nero AG)
Nero Info (HKLM-x32\...\{F030BFE8-8476-4C08-A553-233DE80A2BE1}) (Version: 18.0.0010 - Nero AG)
Paquete de idioma de Microsoft Visual Studio 2010 Tools para Office Runtime (x64) - ESN (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - ESN) (Version: 10.0.50903 - Microsoft Corporation)
Pivot Software (HKLM-x32\...\{0217E1D1-BCEF-4A61-AF6D-F7740F65A066}) (Version: 8.21.013 - Portrait Displays, Inc.) Hidden
Platform (HKLM-x32\...\{20D4A895-748C-4D88-871C-FDB1695B0169}) (Version: 1.39 - VIA Technologies, Inc.) Hidden
Prerequisite installer (HKLM-x32\...\{EB511CD1-C87C-490D-A7B1-D6C47F57820F}) (Version: 18.0.0003 - Nero AG) Hidden
Realtek AC'97 Audio (HKLM-x32\...\{FB08F381-6533-4108-B7DD-039E11FBC27E}) (Version: 5.36 - Realtek Semiconductor Corp.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.52.203.2012 - Realtek)
Realtek Ethernet Diagnostic Utility (HKLM-x32\...\{DADC7AB0-E554-4705-9F6A-83EA82ED708E}) (Version: 1.006 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 2.28 - Realtek Semiconductor Corp.)
REAPER (x64) (HKLM\...\REAPER) (Version:  - )
Revo Uninstaller Pro 4.0.5 (HKLM\...\{67579783-0FB7-4F7B-B881-E5BE47C9DBE0}_is1) (Version: 4.0.5 - VS Revo Group, Ltd.)
Right Click Image Converter 1.0.0.0 (HKLM-x32\...\Right Click Image Converter 1.0.0.0) (Version:  - )
SDK (HKLM-x32\...\{0DEA342C-15CB-4F52-97B6-06A9C4B9C06F}) (Version: 2.05.004 - Portrait Displays, Inc.) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM-x32\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{DE28B448-32E8-4E8F-84F0-A52B21A49B5B}) (Version:  - Microsoft)
SmartDefender (HKLM-x32\...\{A58CAEF6-D78F-4E0C-8598-ECD5901F4AC2}) (Version: 1.0.0.0 - Vondos Media GmbH)
Spotify (HKU\S-1-5-21-2258397178-3295816786-390305721-1000\...\Spotify) (Version: 1.1.6.113.gb388fe17 - Spotify AB)
SUPERAntiSpyware (HKLM\...\{CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA}) (Version: 8.0.1034 - SUPERAntiSpyware.com)
TeamViewer 14 (HKLM-x32\...\TeamViewer) (Version: 14.2.8352 - TeamViewer)
TunesKit Spotify Converter 1.5.0.525 (HKLM-x32\...\TunesKit Spotify Converter_is1) (Version:  - TunesKit, Inc.)
UltraISO Premium V9.62 (HKLM-x32\...\UltraISO_is1) (Version:  - )
VEGAS Pro 16.0 (HKLM\...\{0ABBD080-A716-11E8-974B-00155D6302F2}) (Version: 16.0.261 - VEGAS)
VIA Administrador de dispositivos de plataforma (HKLM-x32\...\InstallShield_{20D4A895-748C-4D88-871C-FDB1695B0169}) (Version: 1.39 - VIA Technologies, Inc.)
Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies)
Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
VLC media player (HKLM-x32\...\VLC media player) (Version: 3.0.6 - VideoLAN)
Winamp (HKLM-x32\...\Winamp) (Version: 5.666  - Nullsoft, Inc)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3508.0205 - Microsoft Corporation)
Windows Live Sync (HKLM-x32\...\{3F7D70F3-381C-4136-8BBA-358322578EF8}) (Version: 14.0.8050.1202 - Microsoft Corporation)
WinRAR 5.70 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.70.0 - win.rar GmbH)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-2258397178-3295816786-390305721-1000_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\Windows\system32\igfxEM.exe (Intel Corporation - pGFX -> Intel Corporation)
CustomCLSID: HKU\S-1-5-21-2258397178-3295816786-390305721-1000_Classes\CLSID\{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}\InprocServer32 -> C:\Users\Juan\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\amd64\SkyDriveShell64.dll (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2258397178-3295816786-390305721-1000_Classes\CLSID\{BBACC218-34EA-4666-9D7A-C78F2274A524}\InprocServer32 -> C:\Users\Juan\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\amd64\SkyDriveShell64.dll (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2258397178-3295816786-390305721-1000_Classes\CLSID\{F241C880-6982-4CE5-8CF7-7085BA96DA5A}\InprocServer32 -> C:\Users\Juan\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\amd64\SkyDriveShell64.dll (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2258397178-3295816786-390305721-1000_Classes\CLSID\{F8071786-1FD0-4A66-81A1-3CBE29274458}\InprocServer32 -> C:\Users\Juan\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\amd64\FileSyncApi64.dll (Microsoft Corporation -> Microsoft Corporation)
ShellExecuteHooks: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [6671064 2013-12-19] (Microsoft Corporation -> Microsoft Corporation)
ShellExecuteHooks-x32: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [4171480 2013-12-19] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ MEGA (Pending)] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => C:\Users\Juan\AppData\Local\MEGAsync\ShellExtX64.dll [2019-04-16] (Mega Limited -> )
ShellIconOverlayIdentifiers: [ MEGA (Synced)] -> {05B38830-F4E9-4329-978B-1DD28605D202} => C:\Users\Juan\AppData\Local\MEGAsync\ShellExtX64.dll [2019-04-16] (Mega Limited -> )
ShellIconOverlayIdentifiers: [ MEGA (Syncing)] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => C:\Users\Juan\AppData\Local\MEGAsync\ShellExtX64.dll [2019-04-16] (Mega Limited -> )
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-05-21] (AVAST Software s.r.o. -> AVAST Software)
ShellIconOverlayIdentifiers-x32: [ MEGA (Pending)] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => C:\Users\Juan\AppData\Local\MEGAsync\ShellExtX64.dll [2019-04-16] (Mega Limited -> )
ShellIconOverlayIdentifiers-x32: [ MEGA (Synced)] -> {05B38830-F4E9-4329-978B-1DD28605D202} => C:\Users\Juan\AppData\Local\MEGAsync\ShellExtX64.dll [2019-04-16] (Mega Limited -> )
ShellIconOverlayIdentifiers-x32: [ MEGA (Syncing)] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => C:\Users\Juan\AppData\Local\MEGAsync\ShellExtX64.dll [2019-04-16] (Mega Limited -> )
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [File not signed]
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-05-21] (AVAST Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [Glary Utilities] -> {B3C418F8-922B-4faf-915E-59BC14448CF7} => C:\Program Files (x86)\Glary Utilities 5\x64\ContextHandler.dll [2019-03-11] (Glarysoft LTD -> Glarysoft Ltd)
ContextMenuHandlers1: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\Juan\AppData\Local\MEGAsync\ShellExtX64.dll [2019-04-16] (Mega Limited -> )
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers2: [Glary Utilities] -> {B3C418F8-922B-4faf-915E-59BC14448CF7} => C:\Program Files (x86)\Glary Utilities 5\x64\ContextHandler.dll [2019-03-11] (Glarysoft LTD -> Glarysoft Ltd)
ContextMenuHandlers2: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\Juan\AppData\Local\MEGAsync\ShellExtX64.dll [2019-04-16] (Mega Limited -> )
ContextMenuHandlers2: [UltraISO] -> {AD392E40-428C-459F-961E-9B147782D099} => C:\Program Files (x86)\UltraISO\isoshl64.dll [2015-10-08] (SHENZHEN YIBO DIGITAL SYSTEMS DEVELOPMENT CO. LTD. -> EZB Systems, Inc.)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-05-21] (AVAST Software s.r.o. -> AVAST Software)
ContextMenuHandlers3-x32: [FAExt] -> {05672D66-9736-42F5-8BEB-FA1DD3CA51C4} => C:\Program Files (x86)\FileASSASSIN\FileASSASSINExt.dll [2007-03-30] (Malwarebytes) [File not signed]
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2019-02-01] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers3: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\Juan\AppData\Local\MEGAsync\ShellExtX64.dll [2019-04-16] (Mega Limited -> )
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [File not signed]
ContextMenuHandlers4: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\Juan\AppData\Local\MEGAsync\ShellExtX64.dll [2019-04-16] (Mega Limited -> )
ContextMenuHandlers4: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} =>  -> No File
ContextMenuHandlers4: [UltraISO] -> {AD392E40-428C-459F-961E-9B147782D099} => C:\Program Files (x86)\UltraISO\isoshl64.dll [2015-10-08] (SHENZHEN YIBO DIGITAL SYSTEMS DEVELOPMENT CO. LTD. -> EZB Systems, Inc.)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} =>  -> No File
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\Windows\system32\igfxDTCM.dll [2015-08-27] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [File not signed]
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-05-21] (AVAST Software s.r.o. -> AVAST Software)
ContextMenuHandlers6: [Glary Utilities] -> {B3C418F8-922B-4faf-915E-59BC14448CF7} => C:\Program Files (x86)\Glary Utilities 5\x64\ContextHandler.dll [2019-03-11] (Glarysoft LTD -> Glarysoft Ltd)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2019-02-01] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers6: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} =>  -> No File
ContextMenuHandlers6: [UltraISO] -> {AD392E40-428C-459F-961E-9B147782D099} => C:\Program Files (x86)\UltraISO\isoshl64.dll [2015-10-08] (SHENZHEN YIBO DIGITAL SYSTEMS DEVELOPMENT CO. LTD. -> EZB Systems, Inc.)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)

WMI:subscription\__FilterToConsumerBinding->CommandLineEventConsumer.Name=\"BVTConsumer\"",Filter="__EventFilter.Name=\"BVTFilter\"::
WMI:subscription\__EventFilter->BVTFilter::[Query => SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99]
WMI:subscription\CommandLineEventConsumer->BVTConsumer::[CommandLineTemplate => cscript KernCap.vbs][WorkingDirectory => C:\\tools\\kernrate]

==================== Loaded Modules (Whitelisted) ==============

2019-04-14 16:00 - 2008-06-04 16:59 - 000237568 _____ () [File not signed] C:\Program Files (x86)\Common Files\Portrait Displays\drivers\di2c.dll
2019-04-14 16:00 - 2008-06-04 16:58 - 000098304 _____ () [File not signed] C:\Program Files (x86)\Common Files\Portrait Displays\drivers\vista.dll
2019-04-14 16:00 - 2008-06-06 10:42 - 000114688 _____ () [File not signed] C:\Program Files (x86)\Common Files\Portrait Displays\Plugins\AM\dtsslsrv.exe
2019-04-14 16:00 - 2004-05-11 14:51 - 000798720 _____ () [File not signed] C:\Program Files (x86)\Common Files\Portrait Displays\Plugins\AM\LIBEAY32.dll
2019-04-14 15:59 - 2004-11-17 15:49 - 004603904 _____ () [File not signed] C:\Program Files (x86)\Common Files\Portrait Displays\Plugins\AM\qt-mt332.dll
2019-04-14 16:00 - 2004-05-11 14:51 - 000155648 _____ () [File not signed] C:\Program Files (x86)\Common Files\Portrait Displays\Plugins\AM\SSLEAY32.dll
2019-04-14 16:00 - 2008-06-06 10:40 - 000077824 _____ () [File not signed] C:\Program Files (x86)\Common Files\Portrait Displays\Plugins\CC\gui.dll
2019-04-14 15:59 - 2008-06-06 10:40 - 000069632 _____ () [File not signed] C:\Program Files (x86)\Common Files\Portrait Displays\Shared\DTSRVC.exe
2019-04-14 15:59 - 2008-06-06 10:39 - 000102400 _____ () [File not signed] C:\Program Files (x86)\Common Files\Portrait Displays\Shared\PresetsCOM.dll
2019-04-14 16:00 - 2007-02-09 11:16 - 000245760 _____ () [File not signed] C:\Program Files (x86)\Portrait Displays\Pivot Software\winphook.dll
2019-04-14 16:21 - 2007-04-23 03:00 - 000077824 _____ () [File not signed] C:\Program Files\Logitech\SetPoint\x86\SetPoint32.exe
2017-09-10 21:51 - 2017-09-10 21:51 - 000798208 _____ () [File not signed] C:\Users\Juan\AppData\Local\MEGAsync\libsodium.dll
2016-02-18 04:16 - 2016-02-18 04:16 - 023927296 _____ (FFmpeg Project) [File not signed] C:\Users\Juan\AppData\Local\MEGAsync\avcodec-57.dll
2016-02-18 04:16 - 2016-02-18 04:16 - 006306816 _____ (FFmpeg Project) [File not signed] C:\Users\Juan\AppData\Local\MEGAsync\avformat-57.dll
2016-02-18 04:16 - 2016-02-18 04:16 - 000599552 _____ (FFmpeg Project) [File not signed] C:\Users\Juan\AppData\Local\MEGAsync\avutil-55.dll
2016-02-18 04:16 - 2016-02-18 04:16 - 000287232 _____ (FFmpeg Project) [File not signed] C:\Users\Juan\AppData\Local\MEGAsync\swresample-2.dll
2016-02-18 04:16 - 2016-02-18 04:16 - 000513024 _____ (FFmpeg Project) [File not signed] C:\Users\Juan\AppData\Local\MEGAsync\swscale-4.dll
2019-02-21 21:00 - 2019-02-21 21:00 - 000078336 _____ (Igor Pavlov) [File not signed] C:\Program Files\7-Zip\7-zip.dll
2019-04-14 15:55 - 2000-01-01 01:00 - 000073728 _____ (Intel Corporation) [File not signed] C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.dll
2019-04-14 16:00 - 2007-02-09 11:15 - 000372736 _____ (Intel Corporation) [File not signed] C:\Program Files (x86)\Portrait Displays\Pivot Software\ijl15.dll
2019-04-14 15:59 - 2001-06-01 08:26 - 000372736 _____ (Intel Corporation) [File not signed] C:\Windows\ijl15.dll
2007-04-23 03:00 - 2007-04-23 03:00 - 000620032 _____ (Logitech Inc.) [File not signed] C:\Program Files\Common Files\Logitech\KhalShared\KhalApi.dll
2007-04-23 03:00 - 2007-04-23 03:00 - 000518656 _____ (Logitech Inc.) [File not signed] C:\Program Files\Common Files\Logitech\KhalShared\KHALHID.DLL
2007-04-23 03:00 - 2007-04-23 03:00 - 000636928 _____ (Logitech Inc.) [File not signed] C:\Program Files\Common Files\Logitech\KhalShared\KHALHPP.DLL
2007-04-23 03:00 - 2007-04-23 03:00 - 000348672 _____ (Logitech Inc.) [File not signed] C:\Program Files\Common Files\Logitech\KhalShared\KHALITCH.DLL
2007-04-23 03:00 - 2007-04-23 03:00 - 000551936 _____ (Logitech Inc.) [File not signed] C:\Program Files\Common Files\Logitech\KhalShared\KHALMOU.DLL
2007-04-23 03:00 - 2007-04-23 03:00 - 000402944 _____ (Logitech Inc.) [File not signed] C:\Program Files\Common Files\Logitech\KhalShared\KHALMW.DLL
2007-04-23 03:00 - 2007-04-23 03:00 - 000506368 _____ (Logitech Inc.) [File not signed] C:\Program Files\Common Files\Logitech\KhalShared\KHALUSB.DLL
2019-04-14 17:21 - 2007-04-23 03:00 - 000049152 _____ (Logitech Inc.) [File not signed] C:\Program Files\Logitech\SetPoint\GameHook.dll
2019-04-14 17:21 - 2007-04-23 03:00 - 000011776 _____ (Logitech Inc.) [File not signed] C:\Program Files\Logitech\SetPoint\IMHook.dll
2019-04-14 17:21 - 2007-04-23 03:00 - 000097792 _____ (Logitech Inc.) [File not signed] C:\Program Files\Logitech\SetPoint\kgame.dll
2019-04-14 17:21 - 2007-04-23 03:00 - 000059904 _____ (Logitech Inc.) [File not signed] C:\Program Files\Logitech\SetPoint\lgscroll.dll
2019-04-14 17:21 - 2007-04-23 03:00 - 001443328 _____ (Logitech Inc.) [File not signed] C:\Program Files\Logitech\SetPoint\Macros\MacroCore.dll
2019-04-14 17:21 - 2007-04-23 03:00 - 001041920 _____ (Logitech Inc.) [File not signed] C:\Program Files\Logitech\SetPoint\SetPoint.exe
2019-04-14 17:21 - 2007-04-23 03:00 - 000033280 _____ (Logitech Inc.) [File not signed] C:\Program Files\Logitech\SetPoint\SetPointCOM.dll
2019-04-14 17:21 - 2007-04-23 03:00 - 000334336 _____ (Logitech Inc.) [File not signed] C:\Program Files\Logitech\SetPoint\WebBrowserSupport.dll
2019-04-14 16:21 - 2007-04-23 03:00 - 000013824 _____ (Logitech Inc.) [File not signed] C:\Program Files\Logitech\SetPoint\x86\AdobeHookDll.dll
2019-04-14 16:21 - 2007-04-23 03:00 - 000014336 _____ (Logitech Inc.) [File not signed] C:\Program Files\Logitech\SetPoint\x86\AOLHookDll.dll
2019-04-14 16:21 - 2007-04-23 03:00 - 000057344 _____ (Logitech Inc.) [File not signed] C:\Program Files\Logitech\SetPoint\x86\GameHook.dll
2019-04-14 16:21 - 2007-04-23 03:00 - 000012288 _____ (Logitech Inc.) [File not signed] C:\Program Files\Logitech\SetPoint\x86\HookDll.dll
2019-04-14 16:21 - 2007-04-23 03:00 - 000010240 _____ (Logitech Inc.) [File not signed] C:\Program Files\Logitech\SetPoint\x86\IMHook.dll
2019-04-14 16:21 - 2007-04-23 03:00 - 000015360 _____ (Logitech Inc.) [File not signed] C:\Program Files\Logitech\SetPoint\x86\KEMHook.dll
2019-04-14 16:21 - 2007-04-23 03:00 - 000045568 _____ (Logitech Inc.) [File not signed] C:\Program Files\Logitech\SetPoint\x86\lgscroll.dll
2019-04-14 16:21 - 2007-04-23 03:00 - 000069632 _____ (Logitech Inc.) [File not signed] C:\Program Files\Logitech\SetPoint\x86\MessengerHook.dll
2019-04-14 17:21 - 2007-04-23 03:00 - 000228864 _____ (Logitech Inc.) [File not signed] C:\Windows\system32\kemutb.dll
2019-04-14 17:21 - 2007-04-23 03:00 - 000218112 _____ (Logitech Inc.) [File not signed] C:\Windows\system32\KemUtil.dll
2019-04-14 17:21 - 2007-04-23 03:00 - 000152064 _____ (Logitech Inc.) [File not signed] C:\Windows\system32\KemWnd.dll
2019-04-14 17:21 - 2007-04-23 03:00 - 000072192 _____ (Logitech Inc.) [File not signed] C:\Windows\system32\KemXML.dll
2019-04-14 16:00 - 2002-01-05 02:40 - 000487424 _____ (Microsoft Corporation) [File not signed] C:\Program Files (x86)\Portrait Displays\Pivot Software\MSVCP70.dll
2019-04-14 16:00 - 2002-01-05 02:37 - 000344064 _____ (Microsoft Corporation) [File not signed] C:\Program Files (x86)\Portrait Displays\Pivot Software\MSVCR70.dll
2019-04-14 15:59 - 2002-01-05 04:48 - 000974848 _____ (Microsoft Corporation) [File not signed] C:\Windows\mfc70.dll
2019-04-14 15:59 - 2002-01-05 03:40 - 000487424 _____ (Microsoft Corporation) [File not signed] C:\Windows\MSVCP70.dll
2019-05-05 21:15 - 2019-05-05 21:15 - 000113664 _____ (Microsoft Corporation) [File not signed] C:\Windows\WinSxS\amd64_microsoft.vc80.atl_1fc8b3b9a1e18e3b_8.0.50727.6195_none_8a1dd9552ed7f8d8\ATL80.DLL
2019-05-05 21:15 - 2019-05-05 21:15 - 001654784 _____ (Microsoft Corporation) [File not signed] C:\Windows\WinSxS\amd64_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_8448b2bd328df189\MFC80U.DLL
2019-04-14 15:59 - 2008-06-06 10:42 - 000324096 _____ (Portrait Displays, Inc) [File not signed] C:\Program Files (x86)\Acer Display\eDisplay Management\DTHtml.exe
2019-04-14 16:00 - 2008-06-04 16:59 - 000110592 _____ (Portrait Displays, Inc.) [File not signed] C:\Program Files (x86)\Common Files\Portrait Displays\drivers\pdi_nv2.dll
2019-04-14 16:00 - 2008-06-04 16:59 - 000090112 _____ (Portrait Displays, Inc.) [File not signed] C:\Program Files (x86)\Common Files\Portrait Displays\Drivers\pdisrvc.exe
2019-04-14 16:00 - 2008-06-04 16:59 - 000204800 _____ (Portrait Displays, Inc.) [File not signed] C:\Program Files (x86)\Common Files\Portrait Displays\Drivers\WrapI2C.dll
2019-04-14 16:00 - 2008-06-06 10:40 - 000114688 _____ (Portrait Displays, Inc.) [File not signed] C:\Program Files (x86)\Common Files\Portrait Displays\Plugins\CC\colorcal.dll
2017-09-10 20:08 - 2017-09-10 20:08 - 000061952 _____ (The c-ares library, hxxps://c-ares.haxx.se/) [File not signed] C:\Users\Juan\AppData\Local\MEGAsync\cares.dll
2017-10-10 00:33 - 2019-04-16 09:33 - 000275456 _____ (The curl library, hxxps://curl.haxx.se/) [File not signed] C:\Users\Juan\AppData\Local\MEGAsync\libcurl.dll
2017-09-11 00:51 - 2019-04-16 09:33 - 001374208 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Users\Juan\AppData\Local\MEGAsync\LIBEAY32.dll
2017-09-11 00:51 - 2019-04-16 09:33 - 000337920 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Users\Juan\AppData\Local\MEGAsync\SSLEAY32.dll
2017-09-14 07:37 - 2017-09-14 07:37 - 000026112 _____ (The Qt Company Ltd) [File not signed] C:\Users\Juan\AppData\Local\MEGAsync\imageformats\qgif.dll
2017-09-14 07:42 - 2017-09-14 07:42 - 000033280 _____ (The Qt Company Ltd) [File not signed] C:\Users\Juan\AppData\Local\MEGAsync\imageformats\qicns.dll
2017-09-14 07:37 - 2017-09-14 07:37 - 000027648 _____ (The Qt Company Ltd) [File not signed] C:\Users\Juan\AppData\Local\MEGAsync\imageformats\qico.dll
2017-09-14 07:37 - 2017-09-14 07:37 - 000245760 _____ (The Qt Company Ltd) [File not signed] C:\Users\Juan\AppData\Local\MEGAsync\imageformats\qjpeg.dll
2017-09-14 07:42 - 2017-09-14 07:42 - 000021504 _____ (The Qt Company Ltd) [File not signed] C:\Users\Juan\AppData\Local\MEGAsync\imageformats\qsvg.dll
2017-09-14 07:42 - 2017-09-14 07:42 - 000020992 _____ (The Qt Company Ltd) [File not signed] C:\Users\Juan\AppData\Local\MEGAsync\imageformats\qtga.dll
2017-09-14 07:42 - 2017-09-14 07:42 - 000316416 _____ (The Qt Company Ltd) [File not signed] C:\Users\Juan\AppData\Local\MEGAsync\imageformats\qtiff.dll
2017-09-14 07:42 - 2017-09-14 07:42 - 000019968 _____ (The Qt Company Ltd) [File not signed] C:\Users\Juan\AppData\Local\MEGAsync\imageformats\qwbmp.dll
2017-09-14 07:42 - 2017-09-14 07:42 - 000322560 _____ (The Qt Company Ltd) [File not signed] C:\Users\Juan\AppData\Local\MEGAsync\imageformats\qwebp.dll
2017-09-14 07:37 - 2017-09-14 07:37 - 001010688 _____ (The Qt Company Ltd) [File not signed] C:\Users\Juan\AppData\Local\MEGAsync\platforms\qwindows.dll
2017-09-25 15:30 - 2017-09-25 15:30 - 004641792 _____ (The Qt Company Ltd) [File not signed] C:\Users\Juan\AppData\Local\MEGAsync\Qt5Core.dll
2017-09-14 07:32 - 2017-09-14 07:32 - 005016576 _____ (The Qt Company Ltd) [File not signed] C:\Users\Juan\AppData\Local\MEGAsync\Qt5Gui.dll
2017-09-14 07:30 - 2017-09-14 07:30 - 000851968 _____ (The Qt Company Ltd) [File not signed] C:\Users\Juan\AppData\Local\MEGAsync\Qt5Network.dll
2017-09-14 07:42 - 2017-09-14 07:42 - 000255488 _____ (The Qt Company Ltd) [File not signed] C:\Users\Juan\AppData\Local\MEGAsync\Qt5Svg.dll
2017-09-14 07:35 - 2017-09-14 07:35 - 004433920 _____ (The Qt Company Ltd) [File not signed] C:\Users\Juan\AppData\Local\MEGAsync\Qt5Widgets.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)


==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)


==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 03:34 - 2019-04-16 11:39 - 000001319 _____ C:\Windows\system32\drivers\etc\hosts

0.0.0.0                   keystone.mwbsys.com
0.0.0.0                   telemetry.malwarebytes.com
127.0.0.1 23.74.204.49
127.0.0.1 2.20.235.247
127.0.0.1 216.58.214.40
127.0.0.1 151.101.12.143
127.0.0.1 66.117.29.4
127.0.0.1 63.140.41.167
127.0.0.1 13.80.12.54
127.0.0.1 239.255.255.250
127.0.0.1 23.74.204.49
127.0.0.1 2.20.235.247
127.0.0.1 216.58.214.40
127.0.0.1 151.101.12.143
127.0.0.1 66.117.29.4
127.0.0.1 63.140.41.167
127.0.0.1 13.80.12.54
127.0.0.1 239.255.255.250

==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path: C:\Program Files\Common Files\Microsoft Shared\Windows Live;C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x86;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x64;C:\Program Files (x86)\Windows Live\Shared
HKU\S-1-5-21-2258397178-3295816786-390305721-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Juan\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

If an entry is included in the fixlist, it will be removed.


==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{A1D5AADA-D050-4509-BB0D-B353E6BAAD4E}] => (Allow) C:\Program Files (x86)\Winamp\winamp.exe (Nullsoft Inc. -> Nullsoft, Inc.)
FirewallRules: [{ACDE9771-16DD-4612-80B5-819CEBA93325}] => (Allow) C:\Program Files (x86)\Winamp\winamp.exe (Nullsoft Inc. -> Nullsoft, Inc.)
FirewallRules: [{48FE6AEB-E05E-47F1-A778-31FA593CC210}] => (Allow) C:\Program Files (x86)\Nero\Nero 2017\Nero Burning ROM\StartNBR.exe (Nero AG -> Nero AG)
FirewallRules: [{51521F42-F464-4E17-BE66-D520B5A61372}] => (Allow) C:\Program Files (x86)\Nero\Nero 2017\Nero MediaHome\NMDllHost.exe (Nero AG -> Nero AG)
FirewallRules: [{CA59ABF7-D544-4E53-84ED-20D640D377C2}] => (Allow) C:\Program Files (x86)\Nero\Nero 2017\Nero MediaHome\MediaHome.exe (Nero AG -> Nero AG)
FirewallRules: [{31F394D8-E162-4817-B63B-344680E3994D}] => (Allow) C:\Program Files (x86)\Nero\Nero 2017\Nero Burning ROM\nero.exe (Nero AG -> Nero AG)
FirewallRules: [{1C604646-2587-4582-B55E-FC6C8BB48D6A}] => (Allow) C:\Program Files\HP\HP Deskjet 3520 series\Bin\DeviceSetup.exe (Hewlett Packard -> Hewlett-Packard Co.)
FirewallRules: [{44EBE161-F3E7-4E50-9333-6B51588D86C5}] => (Allow) C:\Program Files\HP\HP Deskjet 3520 series\Bin\HPNetworkCommunicator.exe (Hewlett Packard -> Hewlett-Packard Co.)
FirewallRules: [{3F1D6068-29B9-4D7F-A7A1-E487AD210F37}] => (Allow) C:\Program Files\HP\HP Deskjet 3520 series\Bin\HPNetworkCommunicatorCom.exe (Hewlett Packard -> Hewlett-Packard Co.)
FirewallRules: [TCP Query User{01BF5A83-F8FD-4ADE-8090-D792C3147052}C:\users\juan\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\juan\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [UDP Query User{5D5891E7-BF91-40E6-AF85-8F148F55DDB6}C:\users\juan\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\juan\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{A57582FD-4C3B-4B80-9FBD-9C77C2BC297A}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer GmbH -> TeamViewer GmbH)
FirewallRules: [{1B709241-36B3-4CA3-B01B-CF8C02D71181}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer GmbH -> TeamViewer GmbH)
FirewallRules: [{2F0D12BB-F1B1-462B-B15F-34C7D78C6E49}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer GmbH -> TeamViewer GmbH)
FirewallRules: [{613152B3-0548-4765-835C-50476A2108DB}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer GmbH -> TeamViewer GmbH)
FirewallRules: [{D46A99D3-F81B-4C43-A5CC-38CC6686B5EC}] => (Allow) C:\Program Files (x86)\Windows Live\Sync\WindowsLiveSync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{860D9482-139E-4AFB-8C99-08821D0FC2C9}] => (Allow) C:\Users\Juan\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{6C7AF063-FB12-4012-BC26-60692892FC2E}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{5DF2D761-2A4D-4849-B34A-AC4A963B616D}] => (Allow) LPort=2869
FirewallRules: [{4B5B60E2-A3F7-4F69-A1E5-99C532E1B2CF}] => (Allow) LPort=1900
FirewallRules: [{024D3983-A9A9-4E4E-A0CD-C62D3D22CACF}] => (Allow) C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{CAAC6A76-31E5-40AF-9CE3-C0104CEF9238}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google Inc.)

==================== Restore Points =========================

22-05-2019 11:42:50 Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215
22-05-2019 11:43:50 Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24215

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (05/23/2019 08:03:27 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nombre de la aplicación con errores: AUDIODG.EXE, versión: 6.1.7601.24435, marca de tiempo: 0x5caa0ceb
Nombre del módulo con errores: VIASysFx.dll, versión: 1.0.0.0, marca de tiempo: 0x4c59383d
Código de excepción: 0xc0000005
Desplazamiento de errores: 0x000000000005dc9e
Id. del proceso con errores: 0x41c
Hora de inicio de la aplicación con errores: 0x01d511350bf67f11
Ruta de acceso de la aplicación con errores: C:\Windows\system32\AUDIODG.EXE
Ruta de acceso del módulo con errores: C:\Windows\system32\VIASysFx.dll
Id. del informe: dcc019bd-7d28-11e9-afad-50465da21e3b

Error: (05/23/2019 08:00:54 AM) (Source: Windows Search Service) (EventID: 7010) (User: )
Description: No se puede inicializar el índice.

Detalles:
	El catálogo del índice de contenido está dañado.  (HRESULT : 0xc0041801) (0xc0041801)

Error: (05/23/2019 08:00:54 AM) (Source: Windows Search Service) (EventID: 3058) (User: )
Description: No se puede inicializar la aplicación.

Contexto: aplicación Windows

Detalles:
	El catálogo del índice de contenido está dañado.  (HRESULT : 0xc0041801) (0xc0041801)

Error: (05/23/2019 08:00:54 AM) (Source: Windows Search Service) (EventID: 3028) (User: )
Description: No se puede inicializar el objeto Recopilador.

Contexto: aplicación Windows, catálogo SystemIndex

Detalles:
	El catálogo del índice de contenido está dañado.  (HRESULT : 0xc0041801) (0xc0041801)

Error: (05/23/2019 08:00:54 AM) (Source: Windows Search Service) (EventID: 3029) (User: )
Description: No se puede inicializar el complemento <Search.TripoliIndexer>.

Contexto: aplicación Windows, catálogo SystemIndex

Detalles:
	No se ha encontrado el elemento.  (HRESULT : 0x80070490) (0x80070490)

Error: (05/23/2019 08:00:53 AM) (Source: Windows Search Service) (EventID: 3029) (User: )
Description: No se puede inicializar el complemento <Search.JetPropStore>.

Contexto: aplicación Windows, catálogo SystemIndex

Detalles:
	El catálogo del índice de contenido está dañado.  (HRESULT : 0xc0041801) (0xc0041801)

Error: (05/23/2019 08:00:53 AM) (Source: Windows Search Service) (EventID: 9002) (User: )
Description: El servicio Windows Search no puede cargar la información del almacén de propiedades.

Contexto: aplicación Windows, catálogo SystemIndex

Detalles:
	La base de datos del índice de contenido está dañada.  (HRESULT : 0xc0041800) (0xc0041800)

Error: (05/23/2019 08:00:53 AM) (Source: Windows Search Service) (EventID: 7042) (User: )
Description: El servicio Windows Search se está deteniendo porque hay un problema con el indizador: The catalog is corrupt.

Detalles:
	El catálogo del índice de contenido está dañado.  (HRESULT : 0xc0041801) (0xc0041801)


System errors:
=============
Error: (05/23/2019 08:02:21 AM) (Source: Service Control Manager) (EventID: 7032) (User: )
Description: El Administrador de control de servicios intentó realizar una acción correctora (Reiniciar el servicio) después de la terminación inesperada del servicio Windows Search, pero ocurrió el siguiente error: 
Ya se está ejecutando una instancia de este servicio.

Error: (05/23/2019 08:01:08 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: El servicio Windows Search terminó inesperadamente. Esto se ha repetido 1 veces. Se realizará la siguiente acción correctora en 30000 milisegundos: Reiniciar el servicio.

Error: (05/23/2019 08:00:55 AM) (Source: Service Control Manager) (EventID: 7024) (User: )
Description: El servicio Windows Search se cerró con el error específico de servicio %%-1073473535.

Error: (05/23/2019 07:59:29 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: El servicio EIO no pudo iniciarse debido al siguiente error: 
Se ha bloqueado la descarga de este controlador

Error: (05/23/2019 07:59:29 AM) (Source: Application Popup) (EventID: 1060) (User: )
Description: Se bloqueó la carga de \??\C:\Windows\SysWow64\drivers\EIO.sys por una incompatibilidad con este sistema. Póngase en contacto con el fabricante del software para obtener una versión compatible del controlador.

Error: (05/22/2019 11:42:43 AM) (Source: Disk) (EventID: 11) (User: )
Description: El controlador detectó un error de controladora en \Device\Harddisk1\DR1.

Error: (05/22/2019 11:42:42 AM) (Source: Disk) (EventID: 11) (User: )
Description: El controlador detectó un error de controladora en \Device\Harddisk1\DR1.

Error: (05/22/2019 11:42:42 AM) (Source: Disk) (EventID: 11) (User: )
Description: El controlador detectó un error de controladora en \Device\Harddisk1\DR1.


Windows Defender:
===================================
Date: 2019-04-29 11:13:53.996
Description: 
Windows Defender encontró un error al intentar actualizar el motor.
Nueva versión de motor:1.1.15900.4
Versión de motor anterior:1.1.6402.0
Origen de actualización:Usuario
Usuario:NT AUTHORITY\SYSTEM
Código de error:0x8050800c
Descripción de error:Problema inesperado. Instale todas las actualizaciones disponibles e intente iniciar el programa de nuevo. Para obtener más información sobre cómo instalar actualizaciones, consulte Ayuda y soporte técnico. 

CodeIntegrity:
===================================

Date: 2019-05-23 08:55:15.512
Description: 
Integridad de código no puede comprobar la integridad de imagen del archivo \Device\HarddiskVolume2\Windows\System32\ViaKaraokeApo.dll porque el conjunto de hashes de imagen por página no se encuentra en el sistema.

Date: 2019-05-23 08:54:06.405
Description: 
Integridad de código no puede comprobar la integridad de imagen del archivo \Device\HarddiskVolume2\Windows\System32\ViaKaraokeApo.dll porque el conjunto de hashes de imagen por página no se encuentra en el sistema.

Date: 2019-05-23 08:53:59.731
Description: 
Integridad de código no puede comprobar la integridad de imagen del archivo \Device\HarddiskVolume2\Windows\System32\ViaKaraokeApo.dll porque el conjunto de hashes de imagen por página no se encuentra en el sistema.

Date: 2019-05-23 08:53:16.669
Description: 
Integridad de código no puede comprobar la integridad de imagen del archivo \Device\HarddiskVolume2\Windows\System32\ViaKaraokeApo.dll porque el conjunto de hashes de imagen por página no se encuentra en el sistema.

Date: 2019-05-23 08:52:29.608
Description: 
Integridad de código no puede comprobar la integridad de imagen del archivo \Device\HarddiskVolume2\Windows\System32\ViaKaraokeApo.dll porque el conjunto de hashes de imagen por página no se encuentra en el sistema.

Date: 2019-05-23 08:41:13.358
Description: 
Integridad de código no puede comprobar la integridad de imagen del archivo \Device\HarddiskVolume2\Windows\System32\ViaKaraokeApo.dll porque el conjunto de hashes de imagen por página no se encuentra en el sistema.

Date: 2019-05-23 08:37:02.359
Description: 
Integridad de código no puede comprobar la integridad de imagen del archivo \Device\HarddiskVolume2\Windows\System32\ViaKaraokeApo.dll porque el conjunto de hashes de imagen por página no se encuentra en el sistema.

Date: 2019-05-23 08:03:25.282
Description: 
Integridad de código no puede comprobar la integridad de imagen del archivo \Device\HarddiskVolume2\Windows\System32\ViaKaraokeApo.dll porque el conjunto de hashes de imagen por página no se encuentra en el sistema.

==================== Memory info =========================== 

BIOS: American Megatrends Inc. 0703 08/24/2012
Motherboard: ASUSTeK COMPUTER INC. P8B75-M LE
Processor: Intel(R) Core(TM) i3-3220 CPU @ 3.30GHz
Percentage of memory in use: 36%
Total physical RAM: 7865.74 MB
Available physical RAM: 4992.52 MB
Total Virtual: 15729.62 MB
Available Virtual: 12356.14 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:488.93 GB) (Free:302.03 GB) NTFS
Drive e: (E: Disco externo) (Fixed) (Total:931.51 GB) (Free:503 GB) NTFS
Drive j: (Juan) (Fixed) (Total:442.49 GB) (Free:441.83 GB) NTFS

\\?\Volume{971352ff-5e99-11e9-bac9-806e6f6e6963}\ () (Fixed) (Total:0.09 GB) (Free:0.08 GB) FAT32

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 931.5 GB) (Disk ID: AB49EE94)
Partition 1: (Active) - (Size=100 MB) - (Type=0B)
Partition 2: (Not Active) - (Size=488.9 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=442.5 GB) - (Type=07 NTFS)

========================================================
Disk: 1 (MBR Code: Windows XP) (Size: 931.5 GB) (Disk ID: 0011235A)
Partition 1: (Not Active) - (Size=931.5 GB) - (Type=07 NTFS)

==================== End of Addition.txt ============================

Listo. A ver ahora. Saludos.

Hola @Jon_Perola

Revisa el reporte que pegaste de FRST, la segunda parte pegaste el mismo que la primera. Lo deje para que lo vieras.

Pega la segunda parte así podemos continuar.

Salu2

Vamos a ver ahora. Quizás los primeros “00003072” estén repetidos. Que haya suerte.

2019-05-16 11:31 - 2019-04-19 03:39 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2019-05-16 11:31 - 2019-04-19 03:39 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2019-05-16 11:31 - 2019-04-19 03:39 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2019-05-16 11:31 - 2019-04-19 03:39 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2019-05-16 11:31 - 2019-04-19 03:39 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2019-05-16 11:31 - 2019-04-19 03:39 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2019-05-16 11:31 - 2019-04-19 03:39 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2019-05-16 11:31 - 2019-04-19 03:39 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2019-05-16 11:31 - 2019-04-19 03:39 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2019-05-16 11:31 - 2019-04-19 03:39 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2019-05-16 11:31 - 2019-04-19 03:39 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2019-05-16 11:31 - 2019-04-19 03:39 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2019-05-16 11:31 - 2019-04-19 03:27 - 000009728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sscore.dll
2019-05-16 11:31 - 2019-04-19 03:26 - 000050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe
2019-05-16 11:31 - 2019-04-19 03:20 - 000025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2019-05-16 11:31 - 2019-04-19 03:20 - 000014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2019-05-16 11:31 - 2019-04-19 03:20 - 000007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2019-05-16 11:31 - 2019-04-19 03:20 - 000002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2019-05-16 11:31 - 2019-04-19 03:19 - 000036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptbase.dll
2019-05-16 11:31 - 2019-04-19 03:18 - 000006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2019-05-16 11:31 - 2019-04-19 03:18 - 000004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2019-05-16 11:31 - 2019-04-19 03:18 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2019-05-16 11:31 - 2019-04-19 03:18 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2019-05-16 11:31 - 2019-04-19 03:15 - 000148480 _____ (Microsoft Corporation) C:\Windows\system32\appidpolicyconverter.exe
2019-05-16 11:31 - 2019-04-19 03:15 - 000062464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\appid.sys
2019-05-16 11:31 - 2019-04-19 03:15 - 000017920 _____ (Microsoft Corporation) C:\Windows\system32\appidcertstorecheck.exe
2019-05-16 11:31 - 2019-04-19 03:14 - 000064000 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
2019-05-16 11:31 - 2019-04-19 03:12 - 000338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2019-05-16 11:31 - 2019-04-19 03:11 - 000296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2019-05-16 11:31 - 2019-04-19 03:11 - 000129024 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\videoprt.sys
2019-05-16 11:31 - 2019-04-19 03:08 - 000464384 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv.sys
2019-05-16 11:31 - 2019-04-19 03:08 - 000406016 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys
2019-05-16 11:31 - 2019-04-19 03:08 - 000291328 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2019-05-16 11:31 - 2019-04-19 03:08 - 000169472 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys
2019-05-16 11:31 - 2019-04-19 03:08 - 000160768 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2019-05-16 11:31 - 2019-04-19 03:08 - 000129536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2019-05-16 11:31 - 2019-04-19 03:07 - 000112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2019-05-16 11:31 - 2019-04-19 03:07 - 000064512 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\amdk8.sys
2019-05-16 11:31 - 2019-04-19 03:07 - 000062464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\intelppm.sys
2019-05-16 11:31 - 2019-04-19 03:07 - 000060928 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\processr.sys
2019-05-16 11:31 - 2019-04-19 03:07 - 000060928 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\amdppm.sys
2019-05-16 11:31 - 2019-04-19 03:07 - 000044544 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\npfs.sys
2019-05-16 11:31 - 2019-04-19 03:07 - 000030720 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2019-05-16 11:31 - 2019-04-16 16:17 - 001425920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ole32.dll
2019-05-16 11:31 - 2019-04-16 16:17 - 000628224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\usp10.dll
2019-05-16 11:31 - 2019-04-16 16:17 - 000313344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2019-05-16 11:31 - 2019-04-16 16:17 - 000026112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleres.dll
2019-05-16 11:31 - 2019-04-16 16:16 - 001499648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ExplorerFrame.dll
2019-05-16 11:31 - 2019-04-16 16:05 - 002072576 _____ (Microsoft Corporation) C:\Windows\system32\ole32.dll
2019-05-16 11:31 - 2019-04-16 16:05 - 001867776 _____ (Microsoft Corporation) C:\Windows\system32\ExplorerFrame.dll
2019-05-16 11:31 - 2019-04-16 16:05 - 000806400 _____ (Microsoft Corporation) C:\Windows\system32\usp10.dll
2019-05-16 11:31 - 2019-04-16 16:05 - 000516096 _____ (Microsoft Corporation) C:\Windows\system32\rpcss.dll
2019-05-16 11:31 - 2019-04-16 16:05 - 000405504 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2019-05-16 11:31 - 2019-04-16 16:05 - 000026112 _____ (Microsoft Corporation) C:\Windows\system32\oleres.dll
2019-05-16 11:31 - 2019-04-16 16:05 - 000008704 _____ (Microsoft Corporation) C:\Windows\system32\comcat.dll
2019-05-16 11:31 - 2019-04-16 15:55 - 000007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comcat.dll
2019-05-16 11:31 - 2019-04-14 06:42 - 000309480 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
2019-05-16 11:31 - 2019-04-14 06:40 - 000111616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\t2embed.dll
2019-05-16 11:31 - 2019-04-14 06:40 - 000025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\lpk.dll
2019-05-16 11:31 - 2019-04-14 06:39 - 000010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dciman32.dll
2019-05-16 11:31 - 2019-04-14 06:28 - 000383720 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2019-05-16 11:31 - 2019-04-14 06:26 - 000046080 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2019-05-16 11:31 - 2019-04-14 06:26 - 000041472 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll
2019-05-16 11:31 - 2019-04-14 06:26 - 000014336 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll
2019-05-16 11:31 - 2019-04-14 06:12 - 000034304 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2019-05-16 11:31 - 2019-04-07 16:17 - 012574208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmploc.DLL
2019-05-16 11:31 - 2019-04-07 16:17 - 000617984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmdrmsdk.dll
2019-05-16 11:31 - 2019-04-07 16:17 - 000179712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll
2019-05-16 11:31 - 2019-04-07 16:16 - 003207168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mf.dll
2019-05-16 11:31 - 2019-04-07 16:16 - 001329664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\quartz.dll
2019-05-16 11:31 - 2019-04-07 16:16 - 000519680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qdvd.dll
2019-05-16 11:31 - 2019-04-07 16:16 - 000504320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msscp.dll
2019-05-16 11:31 - 2019-04-07 16:16 - 000442368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AUDIOKSE.dll
2019-05-16 11:31 - 2019-04-07 16:16 - 000354816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfplat.dll
2019-05-16 11:31 - 2019-04-07 16:16 - 000265216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msnetobj.dll
2019-05-16 11:31 - 2019-04-07 16:16 - 000103424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfps.dll
2019-05-16 11:31 - 2019-04-07 16:16 - 000046592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssign32.dll
2019-05-16 11:31 - 2019-04-07 16:16 - 000002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mferror.dll
2019-05-16 11:31 - 2019-04-07 16:15 - 001177088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2019-05-16 11:31 - 2019-04-07 16:15 - 001005056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptui.dll
2019-05-16 11:31 - 2019-04-07 16:15 - 000988160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\drmv2clt.dll
2019-05-16 11:31 - 2019-04-07 16:15 - 000744960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\blackbox.dll
2019-05-16 11:31 - 2019-04-07 16:15 - 000489984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\evr.dll
2019-05-16 11:31 - 2019-04-07 16:15 - 000406016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\drmmgrtn.dll
2019-05-16 11:31 - 2019-04-07 16:15 - 000373248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioEng.dll
2019-05-16 11:31 - 2019-04-07 16:15 - 000195072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioSes.dll
2019-05-16 11:31 - 2019-04-07 16:15 - 000146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsvc.dll
2019-05-16 11:31 - 2019-04-07 16:15 - 000106496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptnet.dll
2019-05-16 11:31 - 2019-04-07 16:15 - 000080896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsp.dll
2019-05-16 11:31 - 2019-04-07 16:05 - 000094440 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mountmgr.sys
2019-05-16 11:31 - 2019-04-07 16:03 - 012574720 _____ (Microsoft Corporation) C:\Windows\system32\wmploc.DLL
2019-05-16 11:31 - 2019-04-07 16:03 - 001574400 _____ (Microsoft Corporation) C:\Windows\system32\quartz.dll
2019-05-16 11:31 - 2019-04-07 16:03 - 000782848 _____ (Microsoft Corporation) C:\Windows\system32\wmdrmsdk.dll
2019-05-16 11:31 - 2019-04-07 16:03 - 000499712 _____ (Microsoft Corporation) C:\Windows\system32\AUDIOKSE.dll
2019-05-16 11:31 - 2019-04-07 16:03 - 000371712 _____ (Microsoft Corporation) C:\Windows\system32\qdvd.dll
2019-05-16 11:31 - 2019-04-07 16:03 - 000229376 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2019-05-16 11:31 - 2019-04-07 16:03 - 000187904 _____ (Microsoft Corporation) C:\Windows\system32\pcasvc.dll
2019-05-16 11:31 - 2019-04-07 16:03 - 000037376 _____ (Microsoft Corporation) C:\Windows\system32\pcadm.dll
2019-05-16 11:31 - 2019-04-07 16:03 - 000034304 _____ (Microsoft Corporation) C:\Windows\system32\werdiagcontroller.dll
2019-05-16 11:31 - 2019-04-07 16:03 - 000009728 _____ (Microsoft Corporation) C:\Windows\system32\spwmp.dll
2019-05-16 11:31 - 2019-04-07 16:03 - 000008704 _____ (Microsoft Corporation) C:\Windows\system32\pcaevts.dll
2019-05-16 11:31 - 2019-04-07 16:03 - 000005120 _____ (Microsoft Corporation) C:\Windows\system32\msdxm.ocx
2019-05-16 11:31 - 2019-04-07 16:03 - 000005120 _____ (Microsoft Corporation) C:\Windows\system32\dxmasf.dll
2019-05-16 11:31 - 2019-04-07 16:02 - 001484800 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2019-05-16 11:31 - 2019-04-07 16:02 - 001202176 _____ (Microsoft Corporation) C:\Windows\system32\drmv2clt.dll
2019-05-16 11:31 - 2019-04-07 16:02 - 001068544 _____ (Microsoft Corporation) C:\Windows\system32\cryptui.dll
2019-05-16 11:31 - 2019-04-07 16:02 - 000842240 _____ (Microsoft Corporation) C:\Windows\system32\blackbox.dll
2019-05-16 11:31 - 2019-04-07 16:02 - 000680448 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll
2019-05-16 11:31 - 2019-04-07 16:02 - 000641024 _____ (Microsoft Corporation) C:\Windows\system32\msscp.dll
2019-05-16 11:31 - 2019-04-07 16:02 - 000632320 _____ (Microsoft Corporation) C:\Windows\system32\evr.dll
2019-05-16 11:31 - 2019-04-07 16:02 - 000497664 _____ (Microsoft Corporation) C:\Windows\system32\drmmgrtn.dll
2019-05-16 11:31 - 2019-04-07 16:02 - 000438784 _____ (Microsoft Corporation) C:\Windows\system32\AudioEng.dll
2019-05-16 11:31 - 2019-04-07 16:02 - 000433152 _____ (Microsoft Corporation) C:\Windows\system32\mfplat.dll
2019-05-16 11:31 - 2019-04-07 16:02 - 000325632 _____ (Microsoft Corporation) C:\Windows\system32\msnetobj.dll
2019-05-16 11:31 - 2019-04-07 16:02 - 000295936 _____ (Microsoft Corporation) C:\Windows\system32\AudioSes.dll
2019-05-16 11:31 - 2019-04-07 16:02 - 000284672 _____ (Microsoft Corporation) C:\Windows\system32\EncDump.dll
2019-05-16 11:31 - 2019-04-07 16:02 - 000206848 _____ (Microsoft Corporation) C:\Windows\system32\mfps.dll
2019-05-16 11:31 - 2019-04-07 16:02 - 000190976 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll
2019-05-16 11:31 - 2019-04-07 16:02 - 000141824 _____ (Microsoft Corporation) C:\Windows\system32\cryptnet.dll
2019-05-16 11:31 - 2019-04-07 16:02 - 000081920 _____ (Microsoft Corporation) C:\Windows\system32\cryptsp.dll
2019-05-16 11:31 - 2019-04-07 16:02 - 000060416 _____ (Microsoft Corporation) C:\Windows\system32\mssign32.dll
2019-05-16 11:31 - 2019-04-07 16:02 - 000011264 _____ (Microsoft Corporation) C:\Windows\system32\msmmsp.dll
2019-05-16 11:31 - 2019-04-07 16:02 - 000008192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\spwmp.dll
2019-05-16 11:31 - 2019-04-07 16:02 - 000004096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msdxm.ocx
2019-05-16 11:31 - 2019-04-07 16:02 - 000004096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxmasf.dll
2019-05-16 11:31 - 2019-04-07 16:02 - 000002048 _____ (Microsoft Corporation) C:\Windows\system32\mferror.dll
2019-05-16 11:31 - 2019-04-07 16:01 - 000050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rrinstaller.exe
2019-05-16 11:31 - 2019-04-07 16:01 - 000023040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfpmp.exe
2019-05-16 11:31 - 2019-04-07 15:57 - 000663552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\PEAuth.sys
2019-05-16 11:31 - 2019-04-07 15:49 - 000054272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wermgr.exe
2019-05-16 11:31 - 2019-04-07 15:48 - 000028672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\werdiagcontroller.dll
2019-05-16 11:31 - 2019-04-07 15:45 - 000125952 _____ (Microsoft Corporation) C:\Windows\system32\audiodg.exe
2019-05-16 11:31 - 2019-04-07 15:45 - 000055808 _____ (Microsoft Corporation) C:\Windows\system32\rrinstaller.exe
2019-05-16 11:31 - 2019-04-07 15:45 - 000024576 _____ (Microsoft Corporation) C:\Windows\system32\mfpmp.exe
2019-05-16 11:31 - 2019-04-07 15:35 - 000050688 _____ (Microsoft Corporation) C:\Windows\system32\wermgr.exe
2019-05-16 11:31 - 2019-04-07 15:33 - 000011264 _____ (Microsoft Corporation) C:\Windows\system32\pcawrk.exe
2019-05-16 11:31 - 2019-04-07 15:33 - 000009728 _____ (Microsoft Corporation) C:\Windows\system32\pcalua.exe
2019-05-15 16:28 - 2019-05-16 07:21 - 000000000 ____D C:\Users\Juan\Desktop\Eliseo
2019-05-15 15:51 - 2019-05-15 15:51 - 000000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdMtpDr_01_09_00.Wdf
2019-05-14 17:45 - 2019-05-14 17:45 - 000000000 ____D C:\Users\Juan\Documents\Audacity
2019-05-14 16:50 - 2019-05-14 16:50 - 021315608 _____ (Piriform Software Ltd) C:\Users\Juan\Downloads\ccsetup557.exe
2019-05-14 16:44 - 2019-05-14 22:51 - 000000000 ____D C:\Users\Juan\Tracing
2019-05-14 16:30 - 2019-05-14 16:30 - 000001374 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Photo Gallery.lnk
2019-05-14 16:30 - 2019-05-14 16:30 - 000001305 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Movie Maker.lnk
2019-05-14 16:30 - 2019-05-14 16:30 - 000000000 ____D C:\Windows\es
2019-05-14 16:29 - 2019-05-14 16:29 - 000002486 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live Messenger.lnk
2019-05-14 16:29 - 2019-05-14 16:29 - 000001458 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live Mail.lnk
2019-05-14 16:29 - 2019-05-14 16:29 - 000000000 ____D C:\Program Files\Windows Live
2019-05-14 16:29 - 2013-02-05 22:06 - 000057840 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fssfltr.sys
2019-05-14 16:28 - 2010-06-02 04:55 - 000527192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_7.dll
2019-05-14 16:28 - 2010-06-02 04:55 - 000518488 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_7.dll
2019-05-14 16:28 - 2010-06-02 04:55 - 000077656 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_5.dll
2019-05-14 16:28 - 2010-06-02 04:55 - 000074072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_5.dll
2019-05-14 16:28 - 2010-05-26 11:41 - 002526056 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_43.dll
2019-05-14 16:28 - 2010-05-26 11:41 - 000276832 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_43.dll
2019-05-14 16:27 - 2009-09-04 17:29 - 000523088 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_42.dll
2019-05-14 16:27 - 2009-09-04 17:29 - 000453456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_42.dll
2019-05-14 16:26 - 2019-05-14 16:26 - 000002147 _____ C:\Users\Juan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft SkyDrive.lnk
2019-05-14 16:26 - 2019-05-14 16:26 - 000002132 _____ C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft SkyDrive.lnk
2019-05-14 16:26 - 2019-05-14 16:26 - 000002132 _____ C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft SkyDrive.lnk
2019-05-14 16:26 - 2019-05-14 16:26 - 000000000 ___RD C:\Users\Juan\SkyDrive
2019-05-14 16:26 - 2019-05-14 16:26 - 000000000 ____D C:\ProgramData\Microsoft SkyDrive
2019-05-14 16:26 - 2019-05-14 16:26 - 000000000 ____D C:\Program Files (x86)\Microsoft SkyDrive
2019-05-14 16:25 - 2019-05-17 11:43 - 000000000 ____D C:\Users\Juan\AppData\Local\Windows Live
2019-05-14 13:05 - 2019-05-14 13:05 - 000000000 ____D C:\Users\Juan\Documents\XMovieMaker
2019-05-14 13:04 - 2019-05-14 13:05 - 000000000 ____D C:\Users\Juan\AppData\Roaming\xmoviemaker
2019-05-14 13:04 - 2019-05-14 13:04 - 000000000 ____D C:\ProgramData\xmoviemaker
2019-05-13 11:53 - 2012-02-03 14:01 - 000107552 _____ (Realtek Semiconductor Corporation) C:\Windows\system32\RTNUninst64.dll
2019-05-13 11:53 - 2012-02-03 14:01 - 000074344 _____ (Realtek Semiconductor Corporation) C:\Windows\system32\RtNicProp64.dll
2019-05-11 18:03 - 2019-05-11 18:03 - 000000000 ____D C:\ProgramData\GlarySoft
2019-05-11 18:00 - 2019-05-14 10:14 - 000000000 ____D C:\Program Files (x86)\Glary Utilities 5
2019-05-11 18:00 - 2019-05-11 18:18 - 000000000 ____D C:\Users\Juan\AppData\Roaming\GlarySoft
2019-05-11 18:00 - 2019-05-11 18:07 - 000001092 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Glary Utilities 5.lnk
2019-05-11 18:00 - 2019-05-11 18:00 - 000028936 _____ (Glarysoft Ltd) C:\Windows\system32\Drivers\GUBootStartup.sys
2019-05-11 18:00 - 2019-05-11 18:00 - 000000000 ____D C:\Users\Juan\AppData\Roaming\DiskDefrag
2019-05-11 18:00 - 2019-05-11 18:00 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Glary Utilities 5
2019-05-10 16:27 - 2019-05-10 16:26 - 000008192 _____ C:\Windows\SysWOW64\srvany.exe
2019-05-10 10:03 - 2019-05-10 10:03 - 000000000 ____D C:\Users\Juan\AppData\Local\AvastAntiTrackPremium
2019-05-10 10:02 - 2019-05-21 09:51 - 000000000 ____D C:\Program Files (x86)\AVAST Software
2019-05-10 10:02 - 2019-05-10 10:03 - 000000000 ____D C:\Users\Juan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AvastAntiTrackPremium
2019-05-10 09:46 - 2011-06-15 14:11 - 000048416 _____ (Realtek Corporation) C:\Windows\system32\Drivers\RtTeam60.sys
2019-05-06 17:58 - 2019-05-07 15:57 - 000000000 ____D C:\Users\Juan\AppData\Roaming\VEGAS
2019-05-06 17:58 - 2019-05-06 17:58 - 000000000 ____D C:\Users\Juan\AppData\Local\Sony
2019-05-06 17:58 - 2019-05-06 17:58 - 000000000 ____D C:\Users\Juan\AppData\Local\Plugin.VegasOfxStitch
2019-05-06 17:58 - 2019-05-06 17:58 - 000000000 ____D C:\Users\Juan\AppData\Local\Plugin.MxOfxRotation
2019-05-06 17:58 - 2019-05-06 17:58 - 000000000 ____D C:\Users\Juan\AppData\Local\MAGIX
2019-05-06 17:58 - 2019-05-06 17:58 - 000000000 ____D C:\ProgramData\VEGAS Pro
2019-05-06 17:57 - 2019-05-08 16:38 - 000000000 ____D C:\Users\Juan\AppData\Roaming\VEGAS Pro
2019-05-06 17:57 - 2019-05-08 16:38 - 000000000 ____D C:\Users\Juan\AppData\Local\VEGAS Pro
2019-05-06 17:57 - 2019-05-06 17:58 - 000000000 ____D C:\Users\Juan\AppData\Roaming\MAGIX
2019-05-06 17:50 - 2019-05-08 16:39 - 000000000 ____D C:\ProgramData\VEGAS
2019-05-06 17:50 - 2019-05-08 16:39 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VEGAS
2019-05-06 17:50 - 2019-05-08 16:37 - 000000000 ____D C:\Program Files\VEGAS
2019-05-06 17:50 - 2019-05-08 16:36 - 000000000 ____D C:\Program Files (x86)\VEGAS
2019-05-06 17:50 - 2019-05-06 17:50 - 000000000 ____D C:\Users\Juan\AppData\Local\VEGAS
2019-05-06 17:50 - 2019-05-06 17:50 - 000000000 ____D C:\ProgramData\Magix
2019-05-06 17:50 - 2019-05-06 17:50 - 000000000 ____D C:\Program Files\Common Files\OFX
2019-05-06 17:48 - 2019-05-07 09:37 - 000000000 ____D C:\Users\Juan\AppData\Roaming\Sony
2019-05-06 17:13 - 2019-05-06 17:13 - 000000000 ____D C:\Users\Default\AppData\Local\Microsoft Help
2019-05-06 17:13 - 2019-05-06 17:13 - 000000000 ____D C:\Users\Default User\AppData\Local\Microsoft Help
2019-05-06 15:46 - 2019-05-22 08:48 - 000002222 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2019-05-06 15:46 - 2019-05-22 08:48 - 000002181 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2019-05-06 15:06 - 2019-05-06 15:06 - 000007619 _____ C:\Users\Juan\AppData\Local\Resmon.ResmonCfg
2019-05-05 21:18 - 2019-05-08 16:39 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2019-05-05 21:17 - 2019-05-08 16:39 - 000000000 ____D C:\Program Files\Microsoft Silverlight
2019-05-05 21:17 - 2019-05-08 16:39 - 000000000 ____D C:\Program Files (x86)\Microsoft Silverlight
2019-05-05 16:05 - 2019-05-14 16:30 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live
2019-05-05 16:04 - 2019-05-14 16:29 - 000000000 ____D C:\Program Files (x86)\Windows Live
2019-05-05 16:04 - 2019-05-05 16:04 - 000000020 _____ C:\Windows\üõ
2019-05-05 16:04 - 2006-11-29 13:06 - 004398360 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_32.dll
2019-05-05 16:04 - 2006-11-29 13:06 - 003426072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_32.dll
2019-05-05 11:02 - 2019-05-05 11:02 - 000001319 _____ C:\Windows\system32\Drivers\etc\hosts.txt
2019-05-01 11:47 - 2019-05-01 11:47 - 000001245 _____ C:\Users\Juan\Desktop\Magnify.lnk
2019-04-30 10:24 - 2019-04-30 10:24 - 000000971 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer 14.lnk
2019-04-30 10:23 - 2019-05-14 10:19 - 000000000 ____D C:\Users\Juan\AppData\Roaming\TeamViewer
2019-04-30 10:22 - 2019-05-23 08:00 - 000000000 ____D C:\Program Files (x86)\TeamViewer
2019-04-29 15:05 - 2019-05-22 21:34 - 000004128 _____ C:\Windows\System32\Tasks\CCleaner Update
2019-04-29 15:05 - 2019-05-22 21:34 - 000002804 _____ C:\Windows\System32\Tasks\CCleanerSkipUAC
2019-04-29 15:05 - 2019-04-29 15:05 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2019-04-29 15:05 - 2019-04-29 15:05 - 000000000 ____D C:\Program Files\CCleaner
2019-04-29 12:07 - 2019-05-22 21:34 - 000003214 _____ C:\Windows\System32\Tasks\{F9C3B1B4-C7FD-46C6-B1E1-E20D3D732A4D}
2019-04-29 11:36 - 2019-04-11 02:11 - 000419648 _____ C:\Windows\SysWOW64\locale.nls
2019-04-29 11:36 - 2019-04-11 02:11 - 000419648 _____ C:\Windows\system32\locale.nls
2019-04-29 11:26 - 2019-05-21 09:51 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVAST Software
2019-04-29 11:26 - 2019-05-21 08:14 - 000000000 ____D C:\Users\Juan\AppData\Roaming\AVAST Software
2019-04-29 11:25 - 2019-05-21 08:30 - 000003910 _____ C:\Windows\System32\Tasks\Avast Emergency Update
2019-04-29 11:25 - 2019-05-21 08:29 - 001030784 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2019-04-29 11:25 - 2019-05-21 08:29 - 000549200 _____ (AVAST Software) C:\Windows\system32\Drivers\aswNetSec.sys
2019-04-29 11:25 - 2019-05-21 08:29 - 000477584 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2019-04-29 11:25 - 2019-05-21 08:29 - 000385640 _____ (AVAST Software) C:\Windows\system32\Drivers\aswVmm.sys
2019-04-29 11:25 - 2019-05-21 08:29 - 000262496 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbidsdriver.sys
2019-04-29 11:25 - 2019-05-21 08:29 - 000225096 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2019-04-29 11:25 - 2019-05-21 08:29 - 000207448 _____ (AVAST Software) C:\Windows\system32\Drivers\aswArPot.sys
2019-04-29 11:25 - 2019-05-21 08:29 - 000205848 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbidsh.sys
2019-04-29 11:25 - 2019-05-21 08:29 - 000167872 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2019-04-29 11:25 - 2019-05-21 08:29 - 000112312 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2019-04-29 11:25 - 2019-05-21 08:29 - 000087944 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRvrt.sys
2019-04-29 11:25 - 2019-05-21 08:29 - 000061472 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbuniv.sys
2019-04-29 11:25 - 2019-05-21 08:29 - 000042288 _____ (AVAST Software) C:\Windows\system32\Drivers\aswKbd.sys
2019-04-29 11:25 - 2019-04-29 11:25 - 000038152 _____ (AVAST Software) C:\Windows\system32\Drivers\aswNetNd6.sys
2019-04-29 11:24 - 2019-05-09 21:20 - 000000000 ____D C:\Program Files\AVAST Software
2019-04-29 09:33 - 2019-04-29 09:34 - 000000000 ____D C:\Users\Juan\AppData\Local\Nero
2019-04-29 09:33 - 2019-04-29 09:33 - 000000000 ____D C:\Users\Juan\Documents\NeroVideo
2019-04-27 14:03 - 2019-04-27 14:03 - 000000000 ____D C:\Users\Juan\AppData\Local\ESET
2019-04-26 14:58 - 2019-04-26 15:13 - 000000000 ____D C:\Users\Juan\AppData\Roaming\TunesKit Spotify Converter
2019-04-26 14:58 - 2019-04-26 14:58 - 000000000 ____D C:\Users\Juan\Documents\TunesKit Spotify Converter
2019-04-26 14:57 - 2019-04-26 14:57 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TunesKit Spotify Converter
2019-04-26 14:57 - 2019-04-26 14:57 - 000000000 ____D C:\Program Files (x86)\TunesKit Spotify Converter
2019-04-26 14:46 - 2019-05-23 08:36 - 000000000 ____D C:\Users\Juan\AppData\Roaming\Spotify
2019-04-26 14:46 - 2019-05-23 08:36 - 000000000 ____D C:\Users\Juan\AppData\Local\Spotify
2019-04-26 14:46 - 2019-04-26 14:46 - 000001748 _____ C:\Users\Juan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Spotify.lnk
2019-04-26 13:01 - 2019-04-26 13:01 - 000000000 ____D C:\Users\Juan\AppData\Local\Eric_Zhang
2019-04-25 18:30 - 2019-04-25 18:30 - 000000000 ____D C:\ProgramData\Avanquest Software
2019-04-24 21:38 - 2019-04-24 21:38 - 000000000 ____D C:\Users\Juan\AppData\Roaming\HybridReverb2
2019-04-24 21:28 - 2019-05-22 21:34 - 000002760 _____ C:\Windows\System32\Tasks\AVGPCTuneUp_Task_BkGndMaintenance
2019-04-24 20:39 - 2019-04-24 20:39 - 000000886 _____ C:\Users\Juan\Desktop\MUSICA.lnk
2019-04-24 16:01 - 2019-04-26 09:10 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip
2019-04-24 16:01 - 2019-04-26 09:10 - 000000000 ____D C:\Program Files\7-Zip
2019-04-23 18:16 - 2019-04-24 09:15 - 000000000 ____D C:\AdwCleaner
2019-04-23 12:00 - 2019-04-23 12:00 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HybridReverb2
2019-04-23 12:00 - 2019-04-23 12:00 - 000000000 ____D C:\Program Files (x86)\Steinberg
2019-04-23 12:00 - 2019-04-23 12:00 - 000000000 ____D C:\Program Files (x86)\HybridReverb2
2019-04-23 12:00 - 2007-11-07 16:19 - 000054272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vcomp90.dll

==================== One month (modified) ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-05-23 08:54 - 2019-04-14 16:15 - 000000000 ____D C:\Users\Juan\AppData\Roaming\Mozilla
2019-05-23 08:54 - 2009-07-14 04:20 - 000000000 ____D C:\Windows\inf
2019-05-23 08:52 - 2019-04-14 16:15 - 000000000 ____D C:\Users\Juan\AppData\LocalLow\Mozilla
2019-05-23 08:14 - 2009-07-14 05:45 - 000022064 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2019-05-23 08:14 - 2009-07-14 05:45 - 000022064 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2019-05-23 08:02 - 2019-04-14 15:40 - 000000000 ____D C:\Users\Juan\AppData\Local\AVAST Software
2019-05-23 08:01 - 2019-04-17 19:57 - 000000000 __SHD C:\Users\Juan\IntelGraphicsProfiles
2019-05-23 07:59 - 2009-07-14 06:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2019-05-22 21:34 - 2019-04-22 18:33 - 000003172 _____ C:\Windows\System32\Tasks\{B2AA2367-E5B4-4094-9BB2-FD570788C35C}
2019-05-22 21:34 - 2019-04-19 15:20 - 000003230 _____ C:\Windows\System32\Tasks\{FD4E8400-2A7D-4C45-A5F1-335DEF35A1F7}
2019-05-22 21:34 - 2019-04-16 14:47 - 000004476 _____ C:\Windows\System32\Tasks\Adobe Acrobat Update Task
2019-05-22 21:34 - 2019-04-15 12:29 - 000003844 _____ C:\Windows\System32\Tasks\Logitech Desktop Messenger
2019-05-22 21:34 - 2019-04-14 15:41 - 000003534 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2019-05-22 21:34 - 2019-04-14 15:41 - 000003406 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2019-05-22 21:34 - 2019-04-14 15:40 - 000000000 ____D C:\Windows\System32\Tasks\Avast Software
2019-05-22 19:43 - 2019-04-04 13:51 - 000000000 ___RD C:\Users\Juan\Desktop\Conversiones
2019-05-22 18:27 - 2019-04-15 08:18 - 000000000 ____D C:\Users\Juan\AppData\Roaming\vlc
2019-05-22 17:06 - 2019-04-16 14:48 - 000000000 ____D C:\Users\Juan\AppData\LocalLow\Adobe
2019-05-21 09:51 - 2019-04-14 15:38 - 000000000 ____D C:\ProgramData\AVAST Software
2019-05-21 09:02 - 2019-04-14 15:43 - 000000000 ____D C:\Users\Juan\Desktop\SEGURIDAD
2019-05-20 18:04 - 2019-04-15 08:41 - 000000000 ____D C:\Users\Juan\Desktop\Imagen y Fotografia
2019-05-18 12:25 - 2019-04-16 14:44 - 000000000 ____D C:\Users\Juan\AppData\Local\Adobe
2019-05-18 09:09 - 2019-04-19 19:41 - 000000000 ____D C:\Users\Juan\AppData\Roaming\HpUpdate
2019-05-17 14:40 - 2019-04-16 14:46 - 000002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2019-05-16 19:10 - 2019-04-14 16:51 - 000000000 ____D C:\Users\Juan\Documents\Blocs de notas de OneNote
2019-05-16 18:46 - 2009-07-14 04:20 - 000000000 ____D C:\Windows\rescache
2019-05-16 16:52 - 2011-04-12 10:10 - 000747396 _____ C:\Windows\system32\perfh00A.dat
2019-05-16 16:52 - 2011-04-12 10:10 - 000158868 _____ C:\Windows\system32\perfc00A.dat
2019-05-16 16:52 - 2009-07-14 06:13 - 001676890 _____ C:\Windows\system32\PerfStringBackup.INI
2019-05-16 11:46 - 2009-07-14 05:45 - 000420296 _____ C:\Windows\system32\FNTCACHE.DAT
2019-05-16 11:44 - 2009-07-14 04:20 - 000000000 ____D C:\Windows\SysWOW64\Dism
2019-05-16 11:44 - 2009-07-14 04:20 - 000000000 ____D C:\Windows\system32\Dism
2019-05-16 11:40 - 2019-04-14 22:05 - 000000000 ____D C:\Windows\system32\MRT
2019-05-16 11:37 - 2019-04-14 22:05 - 132445408 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2019-05-16 11:34 - 2019-04-16 11:45 - 001650540 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
2019-05-15 16:23 - 2019-04-14 18:04 - 000000000 ____D C:\Users\Juan\Desktop\Limpieza y Mantenimiento
2019-05-14 18:29 - 2019-04-15 08:31 - 000000000 ____D C:\Users\Juan\AppData\Roaming\Winamp
2019-05-14 18:22 - 2019-04-15 08:21 - 000000000 ____D C:\Users\Juan\AppData\Roaming\audacity
2019-05-14 16:44 - 2019-04-14 10:56 - 000000000 ____D C:\Users\Juan
2019-05-14 16:28 - 2009-07-14 04:20 - 000000000 ____D C:\Program Files\Common Files\Microsoft Shared
2019-05-14 10:51 - 2019-04-14 14:24 - 000000000 ___RD C:\Users\Juan\Desktop\AUDIO Y VIDEO
2019-05-14 10:17 - 2019-04-15 08:21 - 000000000 ____D C:\Program Files (x86)\Audacity
2019-05-14 10:16 - 2019-04-15 08:21 - 000001019 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Audacity.lnk
2019-05-13 11:53 - 2019-04-14 12:02 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2019-05-13 11:53 - 2019-04-14 12:02 - 000000000 ____D C:\Program Files (x86)\Realtek
2019-05-13 11:52 - 2019-04-14 13:24 - 000037723 _____ C:\Windows\Ascd_tmp.ini
2019-05-13 11:10 - 2019-04-15 11:33 - 000000000 ____D C:\Users\Juan\AppData\Local\AvgSetupLog
2019-05-13 11:10 - 2019-04-15 11:33 - 000000000 ____D C:\ProgramData\Avg
2019-05-13 09:29 - 2009-07-14 04:20 - 000000000 ____D C:\Windows\system32\NDF
2019-05-12 09:31 - 2019-04-15 17:25 - 000153328 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbae64.sys
2019-05-11 18:21 - 2019-04-15 15:29 - 000000000 ____D C:\Users\Juan\Desktop\SETUPS
2019-05-11 18:04 - 2019-04-15 15:34 - 000000000 ___RD C:\Users\Juan\Desktop\2.-Mis ensayos
2019-05-10 09:46 - 2019-04-14 13:33 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Realtek
2019-05-09 09:41 - 2019-04-14 15:58 - 000000000 ____D C:\Users\Juan\AppData\Roaming\Google
2019-05-08 16:43 - 2019-04-14 13:32 - 000109208 _____ C:\Users\Juan\AppData\Local\GDIPFONTCACHEV1.DAT
2019-05-08 16:39 - 2019-04-22 17:07 - 000000000 ____D C:\Users\Juan\AppData\Roaming\REAPER
2019-05-08 16:39 - 2009-07-14 04:20 - 000000000 ____D C:\Windows\registration
2019-05-08 16:38 - 2019-04-14 15:41 - 000000000 ____D C:\Users\Juan\AppData\Local\Google
2019-05-08 16:36 - 2019-04-14 15:41 - 000000000 ____D C:\Program Files (x86)\Google
2019-05-06 17:18 - 2009-07-14 03:34 - 000000478 _____ C:\Windows\win.ini
2019-05-05 21:28 - 2009-07-14 06:08 - 000032514 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2019-05-05 16:04 - 2019-04-14 16:44 - 000000000 ____D C:\Program Files (x86)\Microsoft SQL Server Compact Edition
2019-04-30 13:10 - 2019-04-14 16:05 - 000000000 ____D C:\Users\Juan\Desktop\UTILIDADES
2019-04-29 11:25 - 2019-04-14 15:40 - 000000077 _____ C:\Windows\system32\Drivers\aswSP.sys.sum
2019-04-29 09:33 - 2019-04-16 12:03 - 000000000 ____D C:\Users\Juan\AppData\Roaming\Nero
2019-04-29 09:33 - 2019-04-16 11:53 - 000000000 ____D C:\ProgramData\Nero
2019-04-24 20:48 - 2019-04-14 18:05 - 000000000 ___RD C:\Users\Juan\Desktop\Programas de descargas

==================== Files in the root of some directories =======

2019-05-06 15:06 - 2019-05-06 15:06 - 000007619 _____ () C:\Users\Juan\AppData\Local\Resmon.ResmonCfg

==================== SigCheck ===============================

(There is no automatic fix for files that do not pass verification.)


LastRegBack: 2019-05-14 13:36
==================== End of FRST.txt ============================

Hola @Jon_Perola

Sigue estos pasos:

1.- Muy Importante >>> Realizar una copia de Seguridad de su Registro.

  • Descarga DelFix en el escritorio de Windows.
  • Clic Derecho, “Ejecutar como Administrador”.
  • En la ventana principal, marca solamente la casilla “Create Registry Backup”.
  • Clic en Run.

Al terminar se abrirá un reporte llamado DelFix.txt, guárdelo por si fuera necesario y cierre la herramienta…

2.- Desactiva Temporalmente tu antivirus.

3.- Abre un nuevo archivo Notepad y copia y pega este contenido:


Start
CloseProcesses:
CreateRestorePoint:
HKLM-x32\...\Run: [] => [X]
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
Task: {1DD69C0C-3171-4F67-A8A6-83379D4F4BEB} - System32\Tasks\{FD4E8400-2A7D-4C45-A5F1-335DEF35A1F7} => C:\Windows\system32\pcalua.exe -a "E:\DIRECTORIO PRINCIPAL\DESCARGAS\FIREFOX\realtek-ac97-audio-driver.exe" -d "E:\DIRECTORIO PRINCIPAL\DESCARGAS\FIREFOX"
HKU\S-1-5-21-2258397178-3295816786-390305721-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/es-es/?ocid=iehp
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation ->  Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation ->  Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3508.0205 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2013-02-05] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.34.11\npGoogleUpdate3.dll [2019-05-15] (Google Inc -> Google LLC)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.34.11\npGoogleUpdate3.dll [2019-05-15] (Google Inc -> Google LLC)
FF Plugin-x32: @videolan.org/vlc,version=2.2.2 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-01-10] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-01-10] (VideoLAN -> VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2019-05-03] (Adobe Inc. -> Adobe Systems Inc.)
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - hxxps://clients2.google.com/service/update2/crx
2019-04-27 14:03 - 2019-04-27 14:03 - 000000000 ____D C:\Users\Juan\AppData\Local\ESET
2019-05-23 08:54 - 2019-04-14 16:15 - 000000000 ____D C:\Users\Juan\AppData\Roaming\Mozilla
2019-05-23 08:52 - 2019-04-14 16:15 - 000000000 ____D C:\Users\Juan\AppData\LocalLow\Mozilla
2019-05-22 21:34 - 2019-04-19 15:20 - 000003230 _____ C:\Windows\System32\Tasks\{FD4E8400-2A7D-4C45-A5F1-335DEF35A1F7}
2019-05-22 21:34 - 2019-04-22 18:33 - 000003172 _____ C:\Windows\System32\Tasks\{B2AA2367-E5B4-4094-9BB2-FD570788C35C}
2019-05-13 11:10 - 2019-04-15 11:33 - 000000000 ____D C:\Users\Juan\AppData\Local\AvgSetupLog
2019-05-13 11:10 - 2019-04-15 11:33 - 000000000 ____D C:\ProgramData\Avg
ContextMenuHandlers4: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} =>  -> No File
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} =>  -> No File
ContextMenuHandlers6: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} =>  -> No File
WMI:subscription\__FilterToConsumerBinding->CommandLineEventConsumer.Name=\"BVTConsumer\"",Filter="__EventFilter.Name=\"BVTFilter\"::
WMI:subscription\__EventFilter->BVTFilter::[Query => SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99]
WMI:subscription\CommandLineEventConsumer->BVTConsumer::[CommandLineTemplate => cscript KernCap.vbs][WorkingDirectory => C:\\tools\\kernrate]
Tcpip\..\Interfaces\{C08E4391-895A-4148-81AC-CC2DB56325EE}: [DhcpNameServer] 192.168.0.1

CMD: ipconfig /flushdns
CMD: ipconfig /renew
CMD: bitsadmin /reset /allusers
CMD: netsh winsock reset
CMD: netsh advfirewall reset
CMD: netsh advfirewall set allprofiles state ON
CMD: netsh int ipv4 reset
CMD: netsh int ipv6 reset
RemoveProxy:
EmptyTemp:
Hosts:
END
  • Lo guardas bajo el nombre de fixlist.txt en el escritorio <<< Esto es muy importante.

Nota: Es necesario que el ejecutable Frst.exe y fixlist.txt se encuentren en la misma ubicación (escritorio) o si no la herramienta no trabajara.

  • Ejecutas Frst.exe.
  • Presionas el botón Fix y aguardas a que termine.
  • La Herramienta guardara el reporte en tu escritorio (Fixlog.txt).
  • Lo pegas en tu próxima respuesta.

Al finalizar y luego de reiniciar descargas un nuevo instalador de Mozila Firefox del siguiente enlace:

Lo instalas, pruebas como va y nos comentas.

Salu2.

Ultimo reporte FRST. Espero que vaya todo bien. Gracias por la ayuda y la paciencia que teneis.`

Fix result of Farbar Recovery Scan Tool (x64) Version: 19-05.2019
Ran by Juan (24-05-2019 07:42:10) Run:1
Running from C:\Users\Juan\Desktop
Loaded Profiles: Juan (Available Profiles: Juan)
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start
CloseProcesses:
CreateRestorePoint:
HKLM-x32\...\Run: [] => [X]
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
Task: {1DD69C0C-3171-4F67-A8A6-83379D4F4BEB} - System32\Tasks\{FD4E8400-2A7D-4C45-A5F1-335DEF35A1F7} => C:\Windows\system32\pcalua.exe -a "E:\DIRECTORIO PRINCIPAL\DESCARGAS\FIREFOX\realtek-ac97-audio-driver.exe" -d "E:\DIRECTORIO PRINCIPAL\DESCARGAS\FIREFOX"
HKU\S-1-5-21-2258397178-3295816786-390305721-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/es-es/?ocid=iehp
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation ->  Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation ->  Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3508.0205 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2013-02-05] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.34.11\npGoogleUpdate3.dll [2019-05-15] (Google Inc -> Google LLC)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.34.11\npGoogleUpdate3.dll [2019-05-15] (Google Inc -> Google LLC)
FF Plugin-x32: @videolan.org/vlc,version=2.2.2 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-01-10] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-01-10] (VideoLAN -> VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2019-05-03] (Adobe Inc. -> Adobe Systems Inc.)
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - hxxps://clients2.google.com/service/update2/crx
2019-04-27 14:03 - 2019-04-27 14:03 - 000000000 ____D C:\Users\Juan\AppData\Local\ESET
2019-05-23 08:54 - 2019-04-14 16:15 - 000000000 ____D C:\Users\Juan\AppData\Roaming\Mozilla
2019-05-23 08:52 - 2019-04-14 16:15 - 000000000 ____D C:\Users\Juan\AppData\LocalLow\Mozilla
2019-05-22 21:34 - 2019-04-19 15:20 - 000003230 _____ C:\Windows\System32\Tasks\{FD4E8400-2A7D-4C45-A5F1-335DEF35A1F7}
2019-05-22 21:34 - 2019-04-22 18:33 - 000003172 _____ C:\Windows\System32\Tasks\{B2AA2367-E5B4-4094-9BB2-FD570788C35C}
2019-05-13 11:10 - 2019-04-15 11:33 - 000000000 ____D C:\Users\Juan\AppData\Local\AvgSetupLog
2019-05-13 11:10 - 2019-04-15 11:33 - 000000000 ____D C:\ProgramData\Avg
ContextMenuHandlers4: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} =>  -> No File
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} =>  -> No File
ContextMenuHandlers6: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} =>  -> No File
WMI:subscription\__FilterToConsumerBinding->CommandLineEventConsumer.Name=\"BVTConsumer\"",Filter="__EventFilter.Name=\"BVTFilter\"::
WMI:subscription\__EventFilter->BVTFilter::[Query => SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99]
WMI:subscription\CommandLineEventConsumer->BVTConsumer::[CommandLineTemplate => cscript KernCap.vbs][WorkingDirectory => C:\\tools\\kernrate]
Tcpip\..\Interfaces\{C08E4391-895A-4148-81AC-CC2DB56325EE}: [DhcpNameServer] 192.168.0.1

CMD: ipconfig /flushdns
CMD: ipconfig /renew
CMD: bitsadmin /reset /allusers
CMD: netsh winsock reset
CMD: netsh advfirewall reset
CMD: netsh advfirewall set allprofiles state ON
CMD: netsh int ipv4 reset
CMD: netsh int ipv6 reset
RemoveProxy:
EmptyTemp:
Hosts:
END
*****************

Processes closed successfully.
Restore point was successfully created.
"HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\" => removed successfully
HKLM\SOFTWARE\Policies\Mozilla => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{1DD69C0C-3171-4F67-A8A6-83379D4F4BEB}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{1DD69C0C-3171-4F67-A8A6-83379D4F4BEB}" => removed successfully
C:\Windows\System32\Tasks\{FD4E8400-2A7D-4C45-A5F1-335DEF35A1F7} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{FD4E8400-2A7D-4C45-A5F1-335DEF35A1F7}" => removed successfully
"HKU\S-1-5-21-2258397178-3295816786-390305721-1000\Software\Microsoft\Internet Explorer\Main\\Start Page Redirect Cache" => removed successfully
HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE => removed successfully
"HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation" => not found
C:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll => moved successfully
"HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation" => not found
"FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation)" => not found
HKLM\Software\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE => removed successfully
"HKLM\Software\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation" => not found
C:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll => moved successfully
"HKLM\Software\Wow6432Node\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation" => not found
"FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation)" => not found
"HKLM\Software\Wow6432Node\MozillaPlugins\@microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation" => not found
"FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation -> Microsoft Corporation)" => not found
"HKLM\Software\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=16.4.3508.0205 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2013-02-05] (Microsoft Corporation" => not found
C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll => moved successfully
"HKLM\Software\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.34.11\npGoogleUpdate3.dll [2019-05-15] (Google Inc" => not found
C:\Program Files (x86)\Google\Update\1.3.34.11\npGoogleUpdate3.dll => moved successfully
"HKLM\Software\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.34.11\npGoogleUpdate3.dll [2019-05-15] (Google Inc" => not found
"C:\Program Files (x86)\Google\Update\1.3.34.11\npGoogleUpdate3.dll" => not found
"HKLM\Software\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.2.2 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-01-10] (VideoLAN" => not found
C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll => moved successfully
"HKLM\Software\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=3.0.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-01-10] (VideoLAN" => not found
"C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll" => not found
"HKLM\Software\Wow6432Node\MozillaPlugins\Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2019-05-03] (Adobe Inc." => not found
C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll => moved successfully
HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\eofcbnmajmjmplflapaojjnihcjkigck => removed successfully
HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\gomekmidlodglbbmalcneegieacbdmki => removed successfully
C:\Users\Juan\AppData\Local\ESET => moved successfully
C:\Users\Juan\AppData\Roaming\Mozilla => moved successfully
C:\Users\Juan\AppData\LocalLow\Mozilla => moved successfully
"C:\Windows\System32\Tasks\{FD4E8400-2A7D-4C45-A5F1-335DEF35A1F7}" => not found
C:\Windows\System32\Tasks\{B2AA2367-E5B4-4094-9BB2-FD570788C35C} => moved successfully
C:\Users\Juan\AppData\Local\AvgSetupLog => moved successfully
C:\ProgramData\Avg => moved successfully
HKLM\Software\Classes\Directory\ShellEx\ContextMenuHandlers\Offline Files => removed successfully
HKLM\Software\Classes\CLSID\{474C98EE-CF3D-41f5-80E3-4AAB0AB04301} => not found
HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers\igfxcui => removed successfully
HKLM\Software\Classes\CLSID\{3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => not found
HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers\Offline Files => removed successfully
HKLM\Software\Classes\CLSID\{474C98EE-CF3D-41f5-80E3-4AAB0AB04301} => not found
"CommandLineEventConsumer.Name=\"BVTConsumer\"",Filter="__EventFilter.Name=\"BVTFilter\"" => removed successfully
"BVTFilter" => removed successfully
"BVTConsumer" => removed successfully
"HKLM\System\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{C08E4391-895A-4148-81AC-CC2DB56325EE}\\DhcpNameServer" => removed successfully

========= ipconfig /flushdns =========


Configuraci¢n IP de Windows

Se vaci¢ correctamente la cach‚ de resoluci¢n de DNS.

========= End of CMD: =========


========= ipconfig /renew =========


Configuraci¢n IP de Windows


Adaptador de Ethernet Conexi¢n de  rea local:

   Sufijo DNS espec¡fico para la conexi¢n. . : 
   V¡nculo: direcci¢n IPv6 local. . . : fe80::289f:ad03:17bc:5830%11
   Direcci¢n IPv4. . . . . . . . . . . . . . : 192.168.0.10
   M scara de subred . . . . . . . . . . . . : 255.255.255.0
   Puerta de enlace predeterminada . . . . . : 192.168.0.1

========= End of CMD: =========


========= bitsadmin /reset /allusers =========


BITSADMIN version 3.0 [ 7.5.7601 ]
BITS administration utility.
(C) Copyright 2000-2006 Microsoft Corp.

BITSAdmin is deprecated and is not guaranteed to be available in future versions of Windows.
Administrative tools for the BITS service are now provided by BITS PowerShell cmdlets.

Unable to cancel {02549934-A51A-4567-9E0D-8DEA03AF4C01}.
Unable to cancel {C2564240-FCC9-49B7-B340-A09C74A0A0FC}.
Unable to cancel {725BBFDE-6C01-4FF4-B563-8EFE091AA778}.
Unable to cancel {FA610BA7-7848-44AF-B864-81AB89EA1CED}.
Unable to cancel {66930968-0B23-4C5C-BEF1-2E64E68646A7}.
0 out of 5 jobs canceled.

========= End of CMD: =========


========= netsh winsock reset =========


El cat logo Winsock se restableci¢ correctamente.
Debe reiniciar el equipo para completar el restablecimiento.


========= End of CMD: =========


========= netsh advfirewall reset =========

Aceptar


========= End of CMD: =========


========= netsh advfirewall set allprofiles state ON =========

Aceptar


========= End of CMD: =========


========= netsh int ipv4 reset =========

Global se restableci¢ correctamente.
Interfaz se restableci¢ correctamente.
Reinicie el equipo para completar esta acci¢n.


========= End of CMD: =========


========= netsh int ipv6 reset =========

No hay valores configurados por el usuario para restablecer.


========= End of CMD: =========


========= RemoveProxy: =========

"HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings" => removed successfully
"HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings" => removed successfully
"HKU\S-1-5-21-2258397178-3295816786-390305721-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings" => removed successfully
"HKU\S-1-5-21-2258397178-3295816786-390305721-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings" => removed successfully


========= End of RemoveProxy: =========

C:\Windows\System32\Drivers\etc\hosts => moved successfully
Hosts restored successfully.

=========== EmptyTemp: ==========

BITS transfer queue => 8388608 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 11726971 B
Java, Flash, Steam htmlcache => 0 B
Windows/system/drivers => 5320 B
Edge => 0 B
Chrome => 17850855 B
Firefox => 0 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Users => 0 B
Default => 0 B
Public => 0 B
ProgramData => 0 B
systemprofile => 83725 B
systemprofile32 => 66356 B
LocalService => 66228 B
NetworkService => 0 B
Juan => 1886153 B

RecycleBin => 0 B
EmptyTemp: => 38.2 MB temporary data Removed.

================================


The system needed a reboot.

==== End of Fixlog 07:42:43 ====

Hola @Jon_Perola

Falta que comentes que paso con los últimos pasos que te indique instalaste nuevamente Firefox?

Salu2