BUENOS DÍAS, ESCRIBO PORQUÉ HACE POCO CAMBIÉ DE NAVEGADOR DE FIREFOX A CHROME Y AL POCO TIEMPO MALWAREBYTES ME DETECTA COMO PROGRAMA POTENCIALMENTE NO DESEADO EL ARCHIVO PVP.OPTIONAL.BABYLON UBICADO EN C:\Users\usuario\AppData\Local\Google\Chrome\UserData\Default\SecurePreferences Y LO ELIMINO PERO AL MOMENTO VUELVE A APARECER Y LO MISMO CUANDO EJECUTO ADWCLEANER. COMO PUEDO ELIMINARLO DEFINITIVAMENTE PARA QUE NO ME VUELVA A APRECER ? MUCHAS GRACIAS POR VUESTRA AYUDA
Hola @Nestea bienvenido al nuevo foro
Realiza los siguientes pasos, aunque hayas hecho alguno, sin cambiar el orden:
1) Descarga, actualiza y ejecuta Malwarebytes’ Anti-Malware, revisa en detalle el manual, para que sepas usarlo y configurarlo.
- Realiza un Análisis personalizado, actualizando si te lo pide.
- Pulsar en “Cuarentena seleccionado” para enviarlo a la cuarentena y Reinicias el sistema.
- En el apartado del manual Informes Informe de análisis encontrarás el reporte de MBAM, clic en Exportar Copiar al portapapeles.
2) Descarga AdwCleaner | InfoSpyware en el escritorio.
- Desactiva temporalmente el Antivirus Cómo deshabilitar temporalmente su Antivirus.
- Cierra también todos los programas que tengas abiertos.
- Ejecuta Adwcleaner.exe (Si usas Windows Vista/7 u 8 presiona clic derecho y selecciona "Ejecutar como Administrador".)
- Pulsar en el botón Escanear, y espera a que se realice el proceso, inmediatamente pulsa sobre el botón Limpiar.
- Espera a que se complete y sigue las instrucciones, si te pidiera Reiniciar el sistema Aceptas.
- Guardas el reporte que te aparecerá, para copiarlo y pegarlo en tu próxima respuesta.
- El informe también se puede encontrar en C:\AdwCleaner\AdwCleaner[C1].txt
3) Descarga CCleaner
- Instala Ccleaner
- Abres Ccleaner en la pestaña limpiador dejas como esta configurada predeterminadamente, haces clic en analizar esperas que termine clic en ejecutar limpiador
- Clic en la pestaña Registro clic en buscar problemas esperas que termine clic en Reparar Seleccionadas y haces una copia de seguridad
- Vuelves a darle clic en buscar problemas hasta que no encuentre ninguno.
Pega los reportes de Malwarebytes y AdwCleaner y comentas como va el problema.
Un saludo
Hola Daniela, antes de nada darte las gracias por tu ayuda. Ya he ejecutado los 3 pasos que me has indicado, 1º [Malwarebytes’ Anti-Malware], 2º [AdwCleaner] y 3º [CCleaner]. te adjunto los dos informes que me has dicho. AdwCleaner[S61].txt (5,9 KB) Malwarebytes.txt (1,6 KB) Quedo a la espera de tu respuesta. Gracias
Hola @Nestea
Es un placer ayudarte
El reporte de AdwCleaner es del escaneo, eliminas te después lo que detectó?
Si es así trae el reporte, si no vuelve a ejecutarlo.
Trae el reporte y comenta como sigue el problema.
Un saludo
Hola Daniela, he vuelto a ejecutar el análisis y te adjunto el informe de antes de Limpiar y Reiniciar y el de una vez vuelto a ejecutar.AdwCleaner[C00].txt (1,6 KB) AdwCleaner[S00].txt (1,5 KB)
Hola
Descarga Farbar Recovery Scan Tool.en el escritorio, seleccionando la versión adecuada para la arquitectura(32 o 64bits) de tu equipo. [color=#FF8C00][size=1] ¿Cómo saber si mi Windows es de 32 o 64 bits.?[/size][/color]
- Ejecuta FRST.exe.
- En el mensaje de la ventana del Disclaimer, pulsamos Yes
- En la ventana principal pulsamos en el botón Scan y esperamos a que concluya el proceso.
- Se abrirán dos(2) archivos(Logs), Frst.txt y Addition.txt, estos quedaran grabados en el escritorio.
Pon los dos reportes generados.
Debes copiarlos y pegarlos con todo su contenido y usaras varios mensajes si recibes un mensaje de error indicando que es muy largo(mas de 50.000 caracteres aprox.).
Un saludo
Hola, Adjunto informes
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 11-05.2019
Ran by manel (12-05-2019 01:01:18)
Running from C:\Users\manel\Downloads
Windows 10 Home Version 1809 17763.475 (X64) (2019-02-09 11:01:38)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
Administrador (S-1-5-21-2412839927-3900649023-1217178245-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-2412839927-3900649023-1217178245-503 - Limited - Disabled)
Invitado (S-1-5-21-2412839927-3900649023-1217178245-501 - Limited - Disabled)
manel (S-1-5-21-2412839927-3900649023-1217178245-1001 - Administrator - Enabled) => C:\Users\manel
WDAGUtilityAccount (S-1-5-21-2412839927-3900649023-1217178245-504 - Limited - Disabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Malwarebytes (Enabled - Up to date) {23007AD3-69FE-687C-2629-D584AFFAF72B}
AV: Bitdefender Antivirus (Enabled - Up to date) {0E17DB7D-A20F-62CE-B95B-17DB0CDFE318}
AS: Spybot - Search and Destroy (Enabled - Up to date) {4C1D9672-63FE-5C90-371E-8FDA591C5B75}
AS: Malwarebytes (Enabled - Up to date) {98619B37-4FC4-67F2-1C99-EEF6D47DBD96}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Bitdefender Antispyware (Enabled - Up to date) {B5763A99-8435-6D40-83EB-2CA97758A9A5}
FW: Bitdefender Cortafuego (Enabled) {362C5A58-E860-6396-9204-BEEEF20CA463}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
µTorrent (HKU\S-1-5-21-2412839927-3900649023-1217178245-1001\...\uTorrent) (Version: 3.5.5.45081 - BitTorrent Inc.)
ACDSee 18 (HKLM\...\{6D0F6DF4-553E-43CD-AA95-69AB3644A8FF}) (Version: 18.2.0.252 - ACD Systems International Inc.)
Adobe Acrobat Reader DC - Español (HKLM-x32\...\{AC76BA86-7AD7-1034-7B44-AC0F074E4100}) (Version: 19.010.20099 - Adobe Systems Incorporated)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 32.0.0.116 - Adobe)
Adobe Flash Player 32 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 32.0.0.171 - Adobe)
AnyTrans (HKLM-x32\...\AnyTrans) (Version: - iMobie Inc.)
Apple Application Support (32 bits) (HKLM-x32\...\{9F7041CB-8398-4691-B8CB-0D52273BB3D9}) (Version: 7.4 - Apple Inc.)
Apple Application Support (64 bits) (HKLM\...\{6E7DF4EE-1976-4215-9D81-755AFC95687D}) (Version: 7.4 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{BA2A6DBB-B09A-43D8-84F3-21C1537B47D9}) (Version: 12.2.0.15 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{A30EA700-5515-48F0-88B0-9E99DC356B88}) (Version: 2.6.0.1 - Apple Inc.)
Bitdefender Device Management (HKLM\...\Bitdefender Device Management) (Version: 23.0.22.104 - Bitdefender)
Bitdefender Total Security (HKLM\...\Bitdefender) (Version: 23.0.14.61 - Bitdefender)
Bitdefender VPN (HKLM\...\Bitdefender VPN) (Version: 23.0.8.665 - Bitdefender)
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
Brother MFL-Pro Suite MFC-J4510DW (HKLM-x32\...\{DD98C438-D769-4677-AA87-3481FA32D20C}) (Version: 2.0.0.0 - Brother Industries, Ltd.)
CCleaner (HKLM\...\CCleaner) (Version: 5.56 - Piriform)
Compatibility Pack for the 2007 Office system (HKLM-x32\...\{90120000-0020-0409-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation)
Dolby Audio X2 Windows API SDK (HKLM\...\{F290F786-5F69-48D4-B20B-D21C7DE56EF0}) (Version: 0.8.8.88 - Dolby Laboratories, Inc.)
Dropbox (HKLM-x32\...\Dropbox) (Version: 72.4.136 - Dropbox, Inc.)
Dropbox Update Helper (HKLM-x32\...\{099218A5-A723-43DC-8DB5-6173656A1E94}) (Version: 1.3.189.1 - Dropbox, Inc.) Hidden
Glary Utilities PRO 5.118 (HKLM-x32\...\Glary Utilities 5) (Version: 5.118.0.143 - Glarysoft Ltd)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 74.0.3729.131 - Google Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.34.7 - Google LLC) Hidden
iFunbox (v4.0.4106.1352) (HKLM-x32\...\iFunbox_is1) (Version: v4.0.4106.1352 - iFunbox DevTeam)
Intel Driver && Support Assistant (HKLM-x32\...\{1C86244D-6CBD-4067-BD27-1C263B7D5B35}) (Version: 19.4.18.9 - Intel) Hidden
Intel(R) Computing Improvement Program (HKLM\...\{D40D4164-EEDB-4F0F-85C6-2058A9E34CC7}) (Version: 2.4.04370 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 26.20.100.6709 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 17.2.0.1009 - Intel Corporation)
Intel(R) Wireless Bluetooth(R) (HKLM-x32\...\{00000120-0200-1034-84C8-B8D95FA3C8C3}) (Version: 20.120.0.3 - Intel Corporation)
Intel® Driver & Support Assistant (HKLM-x32\...\{cdfa55ef-79fd-483d-9278-fb714b90b601}) (Version: 19.4.18.9 - Intel)
Intel® Optane™ Pinning Explorer Extensions (HKLM\...\{F4F771E2-6E23-4F27-93E1-27C22C71B7E2}) (Version: 17.2.0.1009 - Intel Corporation)
iTunes (HKLM\...\{B7E544E7-6A30-4369-A305-F93E97FC782F}) (Version: 12.9.4.102 - Apple Inc.)
Java 8 Update 211 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180211F0}) (Version: 8.0.2110.12 - Oracle Corporation)
K-Lite Codec Pack 14.3.0 Full (HKLM-x32\...\KLiteCodecPack_is1) (Version: 14.3.0 - KLCP)
Malwarebytes versión 3.7.1.2839 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.7.1.2839 - Malwarebytes)
Microsoft ASP.NET MVC 2 (HKLM-x32\...\{DD8FF2F3-0D97-4CF3-AF78-FA0E1B242244}) (Version: 2.0.60926.0 - Microsoft Corporation)
Microsoft Office 365 - es-es (HKLM\...\O365HomePremRetail - es-es) (Version: 16.0.11601.20144 - Microsoft Corporation)
Microsoft Office PowerPoint Viewer 2007 (English) (HKLM-x32\...\{95120000-00AF-0409-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office Professional Plus 2010 (HKLM-x32\...\Office14.PROPLUS) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-2412839927-3900649023-1217178245-1001\...\OneDriveSetup.exe) (Version: 19.062.0331.0006 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50918.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x64) - 14.11.25325 (HKLM-x32\...\{6c6356fe-cbfa-4944-9bed-a9e99f45cb7a}) (Version: 14.11.25325.0 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft Works (HKLM-x32\...\{67E03279-F703-408F-B4BF-46B5FC8D70CD}) (Version: 9.7.0621 - Microsoft Corporation)
Microsoft Works 6-9 Converter (HKLM-x32\...\{95140000-0137-0C0A-0000-0000000FF1CE}) (Version: 14.0.6120.5002 - Microsoft Corporation)
Moveslink2 (HKU\S-1-5-21-2412839927-3900649023-1217178245-1001\...\72ba98056758d55b) (Version: 1.5.0.318 - Suunto)
MWSnap 3 (HKLM-x32\...\MWSnap 3) (Version: 3.0.0.74 - Mirek Wojtowicz)
Nitro Pro (HKLM\...\{EF69C0D1-2F30-4257-98CF-DF03E3A28522}) (Version: 12.12.1.522 - Nitro)
Office 16 Click-to-Run Extensibility Component (HKLM-x32\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.11601.20144 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Extensibility Component 64-bit Registration (HKLM\...\{90160000-00DD-0000-1000-0000000FF1CE}) (Version: 16.0.11601.20144 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-008F-0000-1000-0000000FF1CE}) (Version: 16.0.11601.20144 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-0C0A-0000-0000000FF1CE}) (Version: 16.0.11601.20144 - Microsoft Corporation) Hidden
Paquete de idioma de Microsoft Visual Studio 2010 Tools para Office Runtime (x64) - ESN (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - ESN) (Version: 10.0.50903 - Microsoft Corporation)
Revo Uninstaller Pro 4.1.0 (HKLM\...\{67579783-0FB7-4F7B-B881-E5BE47C9DBE0}_is1) (Version: 4.1.0 - VS Revo Group, Ltd.)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM-x32\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{DE28B448-32E8-4E8F-84F0-A52B21A49B5B}) (Version: - Microsoft)
Skype versión 8.43 (HKLM-x32\...\Skype_is1) (Version: 8.43 - Skype Technologies S.A.)
Software Intel® PROSet/Wireless (HKLM-x32\...\{6aa2484c-1a35-428e-a857-8ee0a874d2d1}) (Version: 20.110.0 - Intel Corporation)
Spybot - Search & Destroy (HKLM-x32\...\{B4092C6D-E886-4CB2-BA68-FE5A99D31DE7}_is1) (Version: 2.7.64.0 - Safer-Networking Ltd.)
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{F814D094-197F-43C8-87FA-3210BB780486}) (Version: 2.53.0.0 - Microsoft Corporation)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.6 - VideoLAN)
Winmail Opener 1.6 (HKLM-x32\...\Winmail Opener) (Version: 1.6 - Eolsoft)
WinRAR 5.71 beta 1 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.71.1 - win.rar GmbH)
μTorrent (HKLM-x32\...\μTorrent Pro 3.5.4.44508_is1) (Version: 3.5.4.44508 - BitTorrent Inc.)
==================== Custom CLSID (Whitelisted): ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
CustomCLSID: HKU\S-1-5-21-2412839927-3900649023-1217178245-1001_Classes\CLSID\{233525e0-5434-46ef-b464-fd7e45e2e145}\localserver32 -> C:\Program Files (x86)\Intel\Driver and Support Assistant\DSATray.exe (IDSA Production signing key -> Intel)
CustomCLSID: HKU\S-1-5-21-2412839927-3900649023-1217178245-1001_Classes\CLSID\{E31EA727-12ED-4702-820C-4B6445F28E1A} -> [Dropbox] => C:\Users\manel\Dropbox [2018-08-28 16:51]
ShellExecuteHooks-x32: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [4171480 2013-12-19] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ OptaneIconOverlay] -> {A3AF6F6C-8BED-3D93-8B5D-33427B5D38E9} => C:\Program Files\Intel\OptaneShellExtensions\OptaneShellExt.dll [2019-02-12] () [File not signed]
ShellIconOverlayIdentifiers-x32: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => -> No File
ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => -> No File
ContextMenuHandlers1: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> No File
ContextMenuHandlers1: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers1: [Glary Utilities] -> {B3C418F8-922B-4faf-915E-59BC14448CF7} => C:\Program Files (x86)\Glary Utilities 5\x64\ContextHandler.dll [2019-01-23] (Glarysoft LTD -> Glarysoft Ltd)
ContextMenuHandlers1: [NitroProShellExtensionShim] -> {9C4B85B8-956C-49BF-9BA5-101384E562B2} => C:\Program Files\Common Files\Nitro\NitroProShellExtensionShim.dll [2019-03-26] (Nitro Software, Inc. -> Nitro Software, Inc.)
ContextMenuHandlers1: [PicaViewCtxMenuShlExt] -> {F3CBBA61-EE3F-4D6D-B1C6-B3474E579936} => C:\Program Files\Common Files\ACD Systems\PicaView\ACDSeePV.dll [2015-03-04] (ACD Systems International -> ACD Systems International Inc.)
ContextMenuHandlers1: [SDECon32] -> {44176360-2BBF-4EC1-93CE-384B8681A0BC} => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDECon64.dll [2018-03-23] (Safer-Networking Ltd. -> Safer-Networking Ltd.)
ContextMenuHandlers1: [SDECon64] -> {44176360-2BBF-4EC1-93CE-384B8681A0BC} => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDECon64.dll [2018-03-23] (Safer-Networking Ltd. -> Safer-Networking Ltd.)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-04-02] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-04-02] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers2: [Glary Utilities] -> {B3C418F8-922B-4faf-915E-59BC14448CF7} => C:\Program Files (x86)\Glary Utilities 5\x64\ContextHandler.dll [2019-01-23] (Glarysoft LTD -> Glarysoft Ltd)
ContextMenuHandlers2: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => -> No File
ContextMenuHandlers3: [OptaneContextMenu] -> {AD7EBB13-617D-3270-8FA8-46583499C4FB} => C:\Program Files\Intel\OptaneShellExtensions\OptaneShellExt.dll [2019-02-12] () [File not signed]
ContextMenuHandlers3: [{4A7C4306-57E0-4C0C-83A9-78C1528F618C}] -> {4A7C4306-57E0-4C0C-83A9-78C1528F618C} => -> No File
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => -> No File
ContextMenuHandlers4: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers4: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} => -> No File
ContextMenuHandlers5: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers6: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> No File
ContextMenuHandlers6: [Glary Utilities] -> {B3C418F8-922B-4faf-915E-59BC14448CF7} => C:\Program Files (x86)\Glary Utilities 5\x64\ContextHandler.dll [2019-01-23] (Glarysoft LTD -> Glarysoft Ltd)
ContextMenuHandlers6: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} => -> No File
ContextMenuHandlers6: [RUShellExt] -> {2C5515DC-2A7E-4BFD-B813-CACC2B685EB7} => C:\Program Files\VS Revo Group\Revo Uninstaller Pro\RUExt.dll [2019-03-29] (VS Revo Group Ltd. -> VS Revo Group)
ContextMenuHandlers6: [SDECon32] -> {44176360-2BBF-4EC1-93CE-384B8681A0BC} => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDECon64.dll [2018-03-23] (Safer-Networking Ltd. -> Safer-Networking Ltd.)
ContextMenuHandlers6: [SDECon64] -> {44176360-2BBF-4EC1-93CE-384B8681A0BC} => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDECon64.dll [2018-03-23] (Safer-Networking Ltd. -> Safer-Networking Ltd.)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-04-02] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-04-02] (win.rar GmbH -> Alexander Roshal)
==================== Shortcuts & WMI ========================
(The entries could be listed to be restored or removed.)
Shortcut: C:\Users\manel\Desktop\restaura.bat - Acceso directo.lnk -> C:\restaura.bat ()
==================== Loaded Modules (Whitelisted) ==============
2018-08-29 10:28 - 2009-02-27 16:38 - 000139264 ____R () [File not signed] C:\Program Files (x86)\Brother\BrUtilities\BrLogAPI.dll
2018-12-30 12:35 - 2018-05-12 00:02 - 000102400 _____ () [File not signed] C:\Users\manel\AppData\Roaming\uTorrent\player\libvlc.dll
2018-12-30 12:35 - 2018-05-12 00:02 - 001757696 _____ () [File not signed] C:\Users\manel\AppData\Roaming\uTorrent\player\libvlccore.dll
2018-12-30 12:35 - 2018-05-12 00:02 - 000194560 _____ () [File not signed] C:\Users\manel\AppData\Roaming\uTorrent\player\plugins\access\libdshow_plugin.dll
2018-12-30 12:35 - 2018-05-12 00:01 - 000046080 _____ () [File not signed] C:\Users\manel\AppData\Roaming\uTorrent\player\plugins\audio_output\libaout_directx_plugin.dll
2018-12-30 12:35 - 2018-05-12 00:02 - 000045056 _____ () [File not signed] C:\Users\manel\AppData\Roaming\uTorrent\player\plugins\audio_output\libwaveout_plugin.dll
2018-12-30 12:35 - 2018-05-12 00:01 - 000047104 _____ () [File not signed] C:\Users\manel\AppData\Roaming\uTorrent\player\plugins\control\libhotkeys_plugin.dll
2018-12-30 12:35 - 2018-05-12 00:01 - 000032256 _____ () [File not signed] C:\Users\manel\AppData\Roaming\uTorrent\player\plugins\mmxext\libmemcpymmxext_plugin.dll
2018-12-30 12:35 - 2018-05-12 00:02 - 000065536 _____ () [File not signed] C:\Users\manel\AppData\Roaming\uTorrent\player\plugins\video_output\libdirectx_plugin.dll
2018-08-29 10:28 - 2005-04-22 06:36 - 000143360 _____ () [File not signed] C:\WINDOWS\system32\BrSNMP64.dll
2018-08-29 10:28 - 2012-04-23 15:03 - 000380928 ____N (Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\Browny02\BrMonitor.dll
2018-08-29 10:28 - 2010-09-29 17:07 - 000180224 ____N (Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\Browny02\BroSNMP.dll
2018-08-29 10:28 - 2011-02-28 11:32 - 000208896 ____N (Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\Browny02\Brother\BrFirmUpdateCheck.dll
2018-08-29 10:28 - 2012-06-06 15:31 - 003076096 ____N (Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe
2018-08-29 10:28 - 2012-01-11 14:39 - 000626688 ____N (Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\Browny02\Brother\BrStMonWRes.dll
2018-08-29 10:28 - 2012-06-05 15:56 - 000266240 ____N (Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\Browny02\BrYNSvc.exe
2018-09-10 10:19 - 2012-07-27 07:07 - 000087040 _____ (Brother Industries, Ltd.) [File not signed] C:\WINDOWS\system32\BrNetSti.dll
2019-02-12 15:10 - 2019-02-12 15:10 - 000126976 _____ (Intel Corporation) [File not signed] C:\Program Files\Intel\OptaneShellExtensions\iaStorAfsServiceApi.dll
2018-12-30 12:35 - 2018-05-12 00:02 - 000013824 _____ (Microsoft Corporation) [File not signed] C:\Users\manel\AppData\Roaming\uTorrent\MSIMG32.dll
2018-08-22 08:35 - 2018-08-22 08:35 - 000000000 ____L (Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\root\Office16\AppVIsvSubsystems32.dll
2018-08-22 08:35 - 2018-08-22 08:35 - 000000000 ____L (Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\root\Office16\c2r32.dll
2018-12-19 20:01 - 2018-12-19 20:01 - 001878528 _____ (SQLite Development Team) [File not signed] C:\Program Files\Intel\SUR\QUEENCREEK\x64\sqlite3.dll
2019-05-11 11:28 - 2019-02-01 09:56 - 000035328 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Malwarebytes\Anti-Malware\iconengines\qsvgicon.dll
2019-05-11 11:28 - 2019-02-01 09:56 - 000026112 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Malwarebytes\Anti-Malware\imageformats\qico.dll
2019-05-11 11:28 - 2019-02-01 09:56 - 000020992 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Malwarebytes\Anti-Malware\imageformats\qsvg.dll
2019-05-11 11:28 - 2019-02-01 09:56 - 001181184 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Malwarebytes\Anti-Malware\platforms\qwindows.dll
2019-05-11 11:28 - 2019-02-01 09:55 - 005010944 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Malwarebytes\Anti-Malware\Qt5Core.dll
2019-05-11 11:28 - 2019-02-01 09:56 - 005139968 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Malwarebytes\Anti-Malware\Qt5Gui.dll
2019-05-11 11:28 - 2019-02-01 09:56 - 002234880 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Malwarebytes\Anti-Malware\Qt5Network.dll
2019-05-11 11:28 - 2019-02-01 09:56 - 002950144 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Malwarebytes\Anti-Malware\Qt5Qml.dll
2019-05-11 11:28 - 2019-02-01 09:56 - 003084800 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Malwarebytes\Anti-Malware\Qt5Quick.dll
2019-05-11 11:28 - 2019-02-01 09:56 - 000259584 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Malwarebytes\Anti-Malware\Qt5Svg.dll
2019-05-11 11:28 - 2019-02-01 09:56 - 004571648 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Malwarebytes\Anti-Malware\Qt5Widgets.dll
2019-05-11 11:28 - 2019-02-01 09:56 - 000438272 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Malwarebytes\Anti-Malware\Qt5WinExtras.dll
2019-05-11 11:28 - 2019-02-01 09:56 - 000014848 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Malwarebytes\Anti-Malware\QtQml\Models.2\modelsplugin.dll
2019-05-11 11:28 - 2019-02-01 09:56 - 000014848 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Malwarebytes\Anti-Malware\QtQuick.2\qtquick2plugin.dll
2019-05-11 11:28 - 2019-02-01 09:56 - 000729088 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Malwarebytes\Anti-Malware\QtQuick\Controls\qtquickcontrolsplugin.dll
2019-05-11 11:28 - 2019-02-01 09:56 - 000179712 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Malwarebytes\Anti-Malware\QtQuick\Dialogs\dialogplugin.dll
2019-05-11 11:28 - 2019-02-01 09:56 - 000073216 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Malwarebytes\Anti-Malware\QtQuick\Layouts\qquicklayoutsplugin.dll
2019-05-11 11:28 - 2019-02-01 09:56 - 000101888 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Malwarebytes\Anti-Malware\QtQuick\PrivateWidgets\widgetsplugin.dll
2019-05-11 11:28 - 2019-02-01 09:56 - 000014848 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Malwarebytes\Anti-Malware\QtQuick\Window.2\windowplugin.dll
2019-05-11 11:28 - 2019-02-01 09:56 - 000124928 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Malwarebytes\Anti-Malware\styles\qwindowsvistastyle.dll
==================== Alternate Data Streams (Whitelisted) =========
(If an entry is included in the fixlist, only the ADS will be removed.)
AlternateDataStreams: C:\Windows:nlsPreferences [386]
==================== Safe Mode (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
==================== Association (Whitelisted) ===============
(If an entry is included in the fixlist, the registry item will be restored to default or removed.)
==================== Internet Explorer trusted/restricted ===============
(If an entry is included in the fixlist, it will be removed from the registry.)
IE restricted site: HKU\.DEFAULT\...\007guard.com -> install.007guard.com
IE restricted site: HKU\.DEFAULT\...\008i.com -> 008i.com
IE restricted site: HKU\.DEFAULT\...\008k.com -> www.008k.com
IE restricted site: HKU\.DEFAULT\...\00hq.com -> www.00hq.com
IE restricted site: HKU\.DEFAULT\...\010402.com -> 010402.com
IE restricted site: HKU\.DEFAULT\...\032439.com -> 80gw6ry3i3x3qbrkwhxhw.032439.com
IE restricted site: HKU\.DEFAULT\...\0scan.com -> www.0scan.com
IE restricted site: HKU\.DEFAULT\...\1-2005-search.com -> www.1-2005-search.com
IE restricted site: HKU\.DEFAULT\...\1-domains-registrations.com -> www.1-domains-registrations.com
IE restricted site: HKU\.DEFAULT\...\1000gratisproben.com -> www.1000gratisproben.com
IE restricted site: HKU\.DEFAULT\...\1001namen.com -> www.1001namen.com
IE restricted site: HKU\.DEFAULT\...\100888290cs.com -> mir.100888290cs.com
IE restricted site: HKU\.DEFAULT\...\100sexlinks.com -> www.100sexlinks.com
IE restricted site: HKU\.DEFAULT\...\10sek.com -> www.10sek.com
IE restricted site: HKU\.DEFAULT\...\12-26.net -> user1.12-26.net
IE restricted site: HKU\.DEFAULT\...\12-27.net -> user1.12-27.net
IE restricted site: HKU\.DEFAULT\...\123fporn.info -> www.123fporn.info
IE restricted site: HKU\.DEFAULT\...\123haustiereundmehr.com -> www.123haustiereundmehr.com
IE restricted site: HKU\.DEFAULT\...\123moviedownload.com -> www.123moviedownload.com
IE restricted site: HKU\.DEFAULT\...\123simsen.com -> www.123simsen.com
There are 7941 more sites.
IE trusted site: HKU\S-1-5-21-2412839927-3900649023-1217178245-1001\...\localhost -> localhost
IE restricted site: HKU\S-1-5-21-2412839927-3900649023-1217178245-1001\...\007guard.com -> install.007guard.com
IE restricted site: HKU\S-1-5-21-2412839927-3900649023-1217178245-1001\...\008i.com -> 008i.com
IE restricted site: HKU\S-1-5-21-2412839927-3900649023-1217178245-1001\...\008k.com -> www.008k.com
IE restricted site: HKU\S-1-5-21-2412839927-3900649023-1217178245-1001\...\00hq.com -> www.00hq.com
IE restricted site: HKU\S-1-5-21-2412839927-3900649023-1217178245-1001\...\010402.com -> 010402.com
IE restricted site: HKU\S-1-5-21-2412839927-3900649023-1217178245-1001\...\032439.com -> 80gw6ry3i3x3qbrkwhxhw.032439.com
IE restricted site: HKU\S-1-5-21-2412839927-3900649023-1217178245-1001\...\0scan.com -> www.0scan.com
IE restricted site: HKU\S-1-5-21-2412839927-3900649023-1217178245-1001\...\1-2005-search.com -> www.1-2005-search.com
IE restricted site: HKU\S-1-5-21-2412839927-3900649023-1217178245-1001\...\1-domains-registrations.com -> www.1-domains-registrations.com
IE restricted site: HKU\S-1-5-21-2412839927-3900649023-1217178245-1001\...\1000gratisproben.com -> www.1000gratisproben.com
IE restricted site: HKU\S-1-5-21-2412839927-3900649023-1217178245-1001\...\1001namen.com -> www.1001namen.com
IE restricted site: HKU\S-1-5-21-2412839927-3900649023-1217178245-1001\...\100888290cs.com -> mir.100888290cs.com
IE restricted site: HKU\S-1-5-21-2412839927-3900649023-1217178245-1001\...\100sexlinks.com -> www.100sexlinks.com
IE restricted site: HKU\S-1-5-21-2412839927-3900649023-1217178245-1001\...\10sek.com -> www.10sek.com
IE restricted site: HKU\S-1-5-21-2412839927-3900649023-1217178245-1001\...\12-26.net -> user1.12-26.net
IE restricted site: HKU\S-1-5-21-2412839927-3900649023-1217178245-1001\...\12-27.net -> user1.12-27.net
IE restricted site: HKU\S-1-5-21-2412839927-3900649023-1217178245-1001\...\123fporn.info -> www.123fporn.info
IE restricted site: HKU\S-1-5-21-2412839927-3900649023-1217178245-1001\...\123haustiereundmehr.com -> www.123haustiereundmehr.com
IE restricted site: HKU\S-1-5-21-2412839927-3900649023-1217178245-1001\...\123moviedownload.com -> www.123moviedownload.com
IE restricted site: HKU\S-1-5-21-2412839927-3900649023-1217178245-1001\...\123simsen.com -> www.123simsen.com
There are 7941 more sites.
==================== Hosts content: ==========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2019-04-22 01:04 - 2019-05-12 01:06 - 000454068 _____ C:\WINDOWS\system32\drivers\etc\hosts
0.0.0.0 serius.mwbsys.com
0.0.0.0 keystone.mwbsys.com
127.0.0.1 www.007guard.com
127.0.0.1 007guard.com
127.0.0.1 008i.com
127.0.0.1 www.008k.com
127.0.0.1 008k.com
127.0.0.1 www.00hq.com
127.0.0.1 00hq.com
127.0.0.1 010402.com
127.0.0.1 www.032439.com
127.0.0.1 032439.com
127.0.0.1 www.0scan.com
127.0.0.1 0scan.com
127.0.0.1 1000gratisproben.com
127.0.0.1 www.1000gratisproben.com
127.0.0.1 1001namen.com
127.0.0.1 www.1001namen.com
127.0.0.1 100888290cs.com
127.0.0.1 www.100888290cs.com
127.0.0.1 www.100sexlinks.com
127.0.0.1 100sexlinks.com
127.0.0.1 10sek.com
127.0.0.1 www.10sek.com
127.0.0.1 www.1-2005-search.com
127.0.0.1 1-2005-search.com
127.0.0.1 123fporn.info
127.0.0.1 www.123fporn.info
127.0.0.1 www.123haustiereundmehr.com
127.0.0.1 123haustiereundmehr.com
There are 15613 more lines.
==================== Other Areas ============================
(Currently there is no automatic fix for this section.)
HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path: C:\Program Files (x86)\Common Files\Oracle\Java\javapath;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\;C:\Program Files\Intel\WiFi\bin\;C:\Program Files\Common Files\Intel\WirelessCommon\
HKU\S-1-5-21-2412839927-3900649023-1217178245-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\manel\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper
DNS Servers: 80.58.61.254 - 80.58.61.250
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
If an entry is included in the fixlist, it will be removed.
HKLM\...\StartupApproved\Run32: => "Dropbox"
HKLM\...\StartupApproved\Run32: => "SDTray"
HKU\S-1-5-21-2412839927-3900649023-1217178245-1001\...\StartupApproved\Run: => "CCleaner Smart Cleaning"
HKU\S-1-5-21-2412839927-3900649023-1217178245-1001\...\StartupApproved\Run: => "OneDrive"
==================== FirewallRules (Whitelisted) ===============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [{9B676188-423F-4D27-A4F9-828F04CE3024}] => (Allow) C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe (Intel Corporation -> )
FirewallRules: [{22805BC4-371B-46B1-BD7D-4318B0EA506D}] => (Allow) C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe (Intel(R) Software Development Products -> )
FirewallRules: [{5AF44140-88D5-4085-844F-53B2B0DCD935}] => (Allow) C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe (Intel(R) Software Development Products -> )
FirewallRules: [{CF1D8D75-8D68-44B6-9628-8C590974B684}] => (Block) C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe (Intel(R) Software Development Products -> )
FirewallRules: [{678704D9-2EED-4BE0-B3D5-F584CC0A22EE}] => (Block) C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe (Intel(R) Software Development Products -> )
FirewallRules: [{23AC8EE6-D6B8-424E-AB98-A6601F4E2EB2}] => (Allow) C:\Users\manel\AppData\Roaming\uTorrent\utorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{53B61117-4FCB-4C99-8B13-A2B2C92DB4D7}] => (Allow) C:\Users\manel\AppData\Roaming\uTorrent\utorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{D670A383-DB24-43E4-873B-C5E6EA225619}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{79EE9C75-76F7-49D5-8A6B-EE8F2ACB5ABE}] => (Allow) C:\Program Files (x86)\Brother\Brmfl12b\FAXRX.exe (Brother Industries, Ltd.) [File not signed]
FirewallRules: [{846A6238-1D43-4834-9E2A-5163AB632BC8}] => (Allow) C:\Program Files (x86)\Brother\Brmfl12b\FAXRX.exe (Brother Industries, Ltd.) [File not signed]
FirewallRules: [{FC527FAA-1C1B-4549-9B68-58BBEF612214}] => (Allow) LPort=54925
FirewallRules: [UDP Query User{02D3BA34-7F7B-46FB-88D7-F6D4D326FA4F}C:\windows\microsoft.net\framework\v2.0.50727\vbc.exe] => (Allow) C:\windows\microsoft.net\framework\v2.0.50727\vbc.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [TCP Query User{A733FB14-A336-4082-95CC-73EAA028E11F}C:\windows\microsoft.net\framework\v2.0.50727\vbc.exe] => (Allow) C:\windows\microsoft.net\framework\v2.0.50727\vbc.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{9DEADA1F-ED44-4E34-B1EE-4D5D7B0002D6}] => (Allow) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{B28B22F1-8C9F-429A-8614-56A68B2AEE87}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{3BA44C51-EA6B-4D27-8DB0-DB0DDC0B9D5E}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{622D6F32-70A9-4015-A0DE-5767AB42689E}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{3849A446-B96C-4607-8AD0-D0A1FF0823F1}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{80A7D0EF-D1E6-4D3E-A596-D872288528A8}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)
FirewallRules: [{4D7A771A-F477-4A47-8C00-9A47988FE14B}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)
FirewallRules: [{566E8BFD-BC4E-4602-871A-A5207D70D273}] => (Allow) C:\Users\manel\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{A9D19403-2CAE-4EEE-9496-E3D2CCED9029}] => (Allow) C:\Users\manel\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{D5E85805-BB60-4B8E-ACE2-F771BCE09068}] => (Allow) C:\Program Files\iTunes\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{D96EB3AA-0F91-4435-91B0-1A88946004EA}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{49437A8F-EF6E-4642-AB17-203C85E9DEB6}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{0828D58F-4205-48F2-B3D4-C924D73C2F24}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google Inc.)
FirewallRules: [{21A29E24-D0DC-475F-80A3-4C8AEEEDEB98}] => (Allow) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe (Dropbox, Inc -> Dropbox, Inc.)
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe] => Enabled:Spybot - Search & Destroy tray access
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe] => Enabled:Spybot-S&D 2 Scanner Service
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe] => Enabled:Spybot-S&D 2 Updater
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe] => Enabled:Spybot-S&D 2 Background update service
==================== Restore Points =========================
25-04-2019 18:04:33 Revo Uninstaller Pro's restore point - Malwarebytes versión 3.7.1.2839
29-04-2019 00:24:40 Revo Uninstaller Pro's restore point - Malwarebytes versión 3.7.1.2839
30-04-2019 08:46:51 Revo Uninstaller Pro's restore point - Malwarebytes versión 3.7.1.2839
30-04-2019 10:52:59 Revo Uninstaller Pro's restore point - Malwarebytes versión 3.7.1.2839
30-04-2019 22:44:37 Revo Uninstaller Pro's restore point - Mozilla Firefox 66.0.3 (x64 es-ES)
03-05-2019 07:03:41 Intel® Driver & Support Assistant
04-05-2019 08:43:33 Revo Uninstaller Pro's restore point - Mozilla Firefox 66.0.3 (x64 es-ES)
05-05-2019 08:28:20 Revo Uninstaller Pro's restore point - Malwarebytes versión 3.7.1.2839
07-05-2019 06:57:08 Revo Uninstaller Pro's restore point - Malwarebytes versión 3.7.1.2839
07-05-2019 14:35:19 Revo Uninstaller Pro's restore point - Opera Stable 60.0.3255.70
09-05-2019 22:55:03 Revo Uninstaller Pro's restore point - Malwarebytes versión 3.7.1.2839
10-05-2019 21:43:51 Revo Uninstaller Pro's restore point - Malwarebytes versión 3.7.1.2839
11-05-2019 11:15:47 Revo Uninstaller Pro's restore point - Malwarebytes versión 3.7.1.2839
==================== Faulty Device Manager Devices =============
==================== Event log errors: =========================
Application errors:
==================
Error: (05/11/2019 01:15:10 PM) (Source: PerfNet) (EventID: 2004) (User: )
Description: No se puede abrir el objeto de rendimiento del servicio del servidor. Los primeros cuatro bytes (DWORD) de la sección de datos contienen el código de estado.
Error: (05/11/2019 11:45:39 AM) (Source: PerfNet) (EventID: 2004) (User: )
Description: No se puede abrir el objeto de rendimiento del servicio del servidor. Los primeros cuatro bytes (DWORD) de la sección de datos contienen el código de estado.
Error: (05/11/2019 11:38:01 AM) (Source: PerfNet) (EventID: 2004) (User: )
Description: No se puede abrir el objeto de rendimiento del servicio del servidor. Los primeros cuatro bytes (DWORD) de la sección de datos contienen el código de estado.
Error: (05/11/2019 11:22:32 AM) (Source: PerfNet) (EventID: 2004) (User: )
Description: No se puede abrir el objeto de rendimiento del servicio del servidor. Los primeros cuatro bytes (DWORD) de la sección de datos contienen el código de estado.
Error: (05/11/2019 11:17:03 AM) (Source: PerfNet) (EventID: 2004) (User: )
Description: No se puede abrir el objeto de rendimiento del servicio del servidor. Los primeros cuatro bytes (DWORD) de la sección de datos contienen el código de estado.
Error: (05/11/2019 11:15:47 AM) (Source: VSS) (EventID: 8194) (User: )
Description: Error del Servicio de instantáneas de volumen: error inesperado al consultar la interfaz IVssWriterCallback. HR = 0x80070005, Acceso denegado.
.
A menudo ocurre por una configuración de seguridad incorrecta en el proceso de escritura o de solicitud.
Operación:
Recopilando datos del escritor
Contexto:
Id. de clase del escritor: {e8132975-6f93-4464-a53e-1050253ae220}
Nombre del escritor: System Writer
Id. de instancia del escritor: {d54d991e-23ab-4c60-a4b9-b2647f3a10b3}
Error: (05/11/2019 11:04:32 AM) (Source: ThreadLib) (EventID: 0) (User: )
Description: Event-ID 0
Error: (05/11/2019 07:49:26 AM) (Source: PerfNet) (EventID: 2004) (User: )
Description: No se puede abrir el objeto de rendimiento del servicio del servidor. Los primeros cuatro bytes (DWORD) de la sección de datos contienen el código de estado.
System errors:
=============
Error: (05/12/2019 01:05:55 AM) (Source: TPM) (EventID: 27) (User: NT AUTHORITY)
Description: Error de inicialización del Módulo de plataforma segura (TPM). Es posible que el TPM esté en modo de error. Para permitir el diagnóstico, ponte en contacto con el fabricante del TPM con la información que se adjunta.
Error: (05/12/2019 01:05:55 AM) (Source: TPM) (EventID: 27) (User: NT AUTHORITY)
Description: Error de inicialización del Módulo de plataforma segura (TPM). Es posible que el TPM esté en modo de error. Para permitir el diagnóstico, ponte en contacto con el fabricante del TPM con la información que se adjunta.
Error: (05/12/2019 01:05:55 AM) (Source: TPM) (EventID: 27) (User: NT AUTHORITY)
Description: Error de inicialización del Módulo de plataforma segura (TPM). Es posible que el TPM esté en modo de error. Para permitir el diagnóstico, ponte en contacto con el fabricante del TPM con la información que se adjunta.
Error: (05/12/2019 01:05:55 AM) (Source: TPM) (EventID: 27) (User: NT AUTHORITY)
Description: Error de inicialización del Módulo de plataforma segura (TPM). Es posible que el TPM esté en modo de error. Para permitir el diagnóstico, ponte en contacto con el fabricante del TPM con la información que se adjunta.
Error: (05/12/2019 01:05:55 AM) (Source: TPM) (EventID: 27) (User: NT AUTHORITY)
Description: Error de inicialización del Módulo de plataforma segura (TPM). Es posible que el TPM esté en modo de error. Para permitir el diagnóstico, ponte en contacto con el fabricante del TPM con la información que se adjunta.
Error: (05/12/2019 01:05:55 AM) (Source: TPM) (EventID: 27) (User: NT AUTHORITY)
Description: Error de inicialización del Módulo de plataforma segura (TPM). Es posible que el TPM esté en modo de error. Para permitir el diagnóstico, ponte en contacto con el fabricante del TPM con la información que se adjunta.
Error: (05/12/2019 01:05:55 AM) (Source: TPM) (EventID: 27) (User: NT AUTHORITY)
Description: Error de inicialización del Módulo de plataforma segura (TPM). Es posible que el TPM esté en modo de error. Para permitir el diagnóstico, ponte en contacto con el fabricante del TPM con la información que se adjunta.
Error: (05/12/2019 01:05:55 AM) (Source: TPM) (EventID: 27) (User: NT AUTHORITY)
Description: Error de inicialización del Módulo de plataforma segura (TPM). Es posible que el TPM esté en modo de error. Para permitir el diagnóstico, ponte en contacto con el fabricante del TPM con la información que se adjunta.
CodeIntegrity:
===================================
Date: 2019-05-12 01:06:27.992
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.
Date: 2019-05-12 01:06:27.990
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.
Date: 2019-05-12 01:06:03.024
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\Malwarebytes\Anti-Malware\MBAMService.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2019-05-12 01:06:03.022
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\Malwarebytes\Anti-Malware\MBAMService.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2019-05-12 01:06:02.386
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\Malwarebytes\Anti-Malware\MBAMService.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2019-05-12 01:06:02.384
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\Malwarebytes\Anti-Malware\MBAMService.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2019-05-12 01:03:18.510
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\Malwarebytes\Anti-Malware\MBAMService.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2019-05-12 01:03:18.508
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\Malwarebytes\Anti-Malware\MBAMService.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.
==================== Memory info ===========================
BIOS: LENOVO 0NCN37WW 07/12/2017
Motherboard: LENOVO Lenovo ideapad 710S-13ISK
Processor: Intel(R) Core(TM) i5-6260U CPU @ 1.80GHz
Percentage of memory in use: 70%
Total physical RAM: 7772.49 MB
Available physical RAM: 2289.46 MB
Total Virtual: 14172.49 MB
Available Virtual: 7425.87 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:237.12 GB) (Free:26.82 GB) NTFS
\\?\Volume{a9a1b0a3-e3fc-4c1a-a718-12052f4424b7}\ (Recuperación) (Fixed) (Total:0.44 GB) (Free:0.43 GB) NTFS
\\?\Volume{6e2e11a0-5550-424f-a7ac-8aa0d014cdd6}\ () (Fixed) (Total:0.8 GB) (Free:0.32 GB) NTFS
\\?\Volume{eb3a43a8-9db2-450d-b35a-3f248eace6ca}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (Size: 238.5 GB) (Disk ID: FDAB536D)
Partition: GPT.
==================== End of Addition.txt ============================
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 11-05.2019
Ran by manel (administrator) on DESKTOP-I4GEVAS (LENOVO 80SW) (12-05-2019 00:59:18)
Running from C:\Users\manel\Downloads
Loaded Profiles: manel (Available Profiles: manel)
Platform: Windows 10 Home Version 1809 17763.475 (X64) Language: Español (España, internacional)
Default browser: Chrome
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
() [File not signed] C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.44.40.0_x64__kzf8qxf38zg5c\SkypeBackgroundHost.exe
() [File not signed] C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2019.19031.17720.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
() [File not signed] C:\Program Files\WindowsApps\Microsoft.YourPhone_1.19041.481.0_x64__8wekyb3d8bbwe\YourPhone.exe
() [File not signed] C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.19031.11411.0_x64__8wekyb3d8bbwe\Video.UI.exe
(ACD Systems International -> ) C:\Program Files (x86)\ACD Systems\ACDSee\18.0\ACDSeeCommander18.exe
(Adobe Systems, Incorporated -> Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe
(Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender Agent\ProductAgentService.exe
(Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender\Bitdefender Device Management\DevMgmtService.exe
(Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender\Bitdefender Security\bdagent.exe
(Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender\Bitdefender Security\bdservicehost.exe
(Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender\Bitdefender Security\bdservicehost.exe
(Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender\Bitdefender Security\bdwtxag.exe
(Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender\Bitdefender Security\bdwtxcr.exe
(Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender\Bitdefender Security\updatesrv.exe
(Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender\Bitdefender Security\vsserv.exe
(Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender\Bitdefender Security\vulnerability.scan.exe
(Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender\Bitdefender VPN\BdVpnApp.exe
(Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender\Bitdefender VPN\BdVpnService.exe
(Bitdefender SRL -> Bitdefender) C:\Program Files\Common Files\Bitdefender\SetupInformation\Bitdefender RedLine\bdredline.exe
(BitTorrent Inc -> BitTorrent Inc.) C:\Users\manel\AppData\Roaming\uTorrent\uTorrent.exe
(Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe
(Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\Browny02\BrYNSvc.exe
(Dolby Laboratories, Inc. -> Dolby Laboratories, Inc.) C:\Program Files\Dolby\Dolby DAX2\DAX2_API\DolbyDAX2API.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe
(ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe
(ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe
(ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDIntelligent.exe
(ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDService.exe
(Google Inc -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.34.7\GoogleCrashHandler.exe
(Google Inc -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.34.7\GoogleCrashHandler64.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(IDSA Production signing key -> Intel) C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAService.exe
(IDSA Production signing key -> Intel) C:\Program Files (x86)\Intel\Driver and Support Assistant\DSATray.exe
(IDSA Production signing key -> Intel) C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAUpdateService.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\Intel\DPTF\esif_uf.exe
(Intel Corporation -> Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(Intel Corporation -> Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(Intel Corporation -> Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_4ea0ed0af1507894\igfxCUIService.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_4ea0ed0af1507894\igfxEM.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_98079b1a931ddb0d\IntelCpHDCPSvc.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_98079b1a931ddb0d\IntelCpHeciSvc.exe
(Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iastorac.inf_amd64_5d83605e8696144c\RstMwService.exe
(Intel(R) Software Development Products -> ) C:\Program Files\Intel\SUR\QUEENCREEK\SurSvc.exe
(Intel(R) Software Development Products -> ) C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv.exe
(Intel(R) Software Development Products -> ) C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe
(Intel(R) Wireless Connectivity Solutions -> Intel Corporation) C:\Windows\System32\ibtsiva.exe
(Malwarebytes Corporation -> Malwarebytes) C:\Program Files (x86)\Malwarebytes\Anti-Malware\MBAMService.exe
(Malwarebytes Corporation -> Malwarebytes) C:\Program Files (x86)\Malwarebytes\Anti-Malware\mbamtray.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\root\Office16\ONENOTEM.EXE
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11425.20190.0_x64__8wekyb3d8bbwe\HxOutlook.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11425.20190.0_x64__8wekyb3d8bbwe\HxTsr.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe
(Microsoft Corporation) [File not signed] C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.44.40.0_x64__kzf8qxf38zg5c\SkypeApp.exe
(Microsoft Corporation) [File not signed] C:\Program Files\WindowsApps\Microsoft.WindowsStore_11904.1001.1.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\browser_broker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\cmd.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeCP.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeSH.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersServer.exe
(Nitro Software, Inc. -> Nalpeiron Ltd.) C:\Windows\SysWOW64\NLSSRV32.EXE
(Nitro Software, Inc. -> Nitro Software, Inc.) C:\Program Files\Nitro\Pro\12\nitro_pro_systray.exe
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(Safer-Networking Ltd. -> Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe
(Safer-Networking Ltd. -> Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe
(Safer-Networking Ltd. -> Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe
(Suunto -> Suunto) C:\Users\manel\AppData\Local\Apps\2.0\97B62V8T.471\QHA7MC7T.HVX\move..tion_7b728a49b2b0d019_0001.0005_cab60a8d7bc05604\Moveslink2.exe
==================== Registry (Whitelisted) ===========================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [18390912 2019-04-10] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_Dolby] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1506176 2019-04-10] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_LENOVO_DOLBYDRAGON] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1506176 2019-04-10] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [302904 2019-03-24] (Apple Inc. -> Apple Inc.)
HKLM\...\Run: [Nitro System Tray] => C:\Program Files\Nitro\Pro\12\nitro_pro_systray.exe [124000 2019-03-26] (Nitro Software, Inc. -> Nitro Software, Inc.)
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [319544 2019-02-26] (Intel(R) Rapid Storage Technology -> Intel Corporation)
HKLM\...\Run: [BdVpnApp] => C:\Program Files\Bitdefender\Bitdefender VPN\BdVpnApp.exe [95024 2019-04-11] (Bitdefender SRL -> Bitdefender)
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [5537600 2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
HKLM-x32\...\Run: [ControlCenter4] => C:\Program Files (x86)\ControlCenter4\BrCcBoot.exe [146584 2017-11-07] (Brother Industries, Ltd. -> Brother Industries, Ltd.)
HKLM-x32\...\Run: [BrStsMon00] => C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe [3076096 2012-06-06] (Brother Industries, Ltd.) [File not signed]
HKLM-x32\...\Run: [SDTray] => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe [6788032 2018-04-20] (Safer-Networking Ltd. -> Safer-Networking Ltd.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [645456 2019-04-01] (Oracle America, Inc. -> Oracle Corporation)
HKU\S-1-5-21-2412839927-3900649023-1217178245-1001\...\Run: [ACDSeeCommander18] => C:\Program Files (x86)\ACD Systems\ACDSee\18.0\ACDSeeCommander18.exe [1974280 2015-05-15] (ACD Systems International -> )
HKU\S-1-5-21-2412839927-3900649023-1217178245-1001\...\Run: [GUDelayStartup] => C:\Program Files (x86)\Glary Utilities 5\StartupManager.exe [44024 2019-04-22] (Glarysoft LTD -> Glarysoft Ltd)
HKU\S-1-5-21-2412839927-3900649023-1217178245-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [22515488 2019-04-04] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-2412839927-3900649023-1217178245-1001\...\Run: [Moveslink2] => C:\Users\manel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Suunto\Moveslink2.appref-ms -auto
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\74.0.3729.131\Installer\chrmstp.exe [2019-05-07] (Google LLC -> Google Inc.)
Startup: C:\Users\manel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Enviar a OneNote.lnk [2018-10-01]
ShortcutTarget: Enviar a OneNote.lnk -> C:\Program Files (x86)\Microsoft Office\root\Office16\ONENOTEM.EXE (Microsoft Corporation -> Microsoft Corporation)
BootExecute: autocheck autochk *
==================== Scheduled Tasks (Whitelisted) =============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {02ADB863-0DC1-4BCD-A762-11DA31472A42} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Scan the system => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDScan.exe [7651984 2018-04-20] (Safer-Networking Ltd. -> Safer-Networking Ltd.)
Task: {0B2F372B-A0CD-457E-AF7A-A3CDA2EBE3A6} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [619416 2019-04-04] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {0B66A3E5-10AA-43DE-BF41-07382C7A623F} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Check for updates => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe [6944304 2018-04-20] (Safer-Networking Ltd. -> Safer-Networking Ltd.)
Task: {2B1ACE65-3D1E-4B68-8078-1A497BF9F16F} - System32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132 => C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe [18168 2017-07-13] (Intel(R) Software Asset Manager -> Intel Corporation)
Task: {2F2EFD1C-0D0A-43E3-82FC-2EBC8ED544FB} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [16509040 2019-04-04] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {3A2DB1EF-3C82-419C-B401-BEB157E697F1} - System32\Tasks\klcp_update => CodecTweakTool.exe
Task: {48AEA604-7522-4686-AFEB-8FF17FD839A3} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2019-04-10] (Adobe Inc. -> Adobe)
Task: {57D33CAE-850B-43A2-A9EA-A39A385E3124} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_171_Plugin.exe [1456696 2019-04-10] (Adobe Inc. -> Adobe)
Task: {594EF491-2E00-4CEF-ADD5-A01DF5509CBA} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesCommonX86\Microsoft Shared\Office16\sdxhelper.exe [112672 2019-05-04] (Microsoft Corporation -> Microsoft Corporation)
Task: {711A2D30-5F99-479B-89E3-1E08AB20B736} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156456 2019-05-07] (Google Inc -> Google LLC)
Task: {725DA6E4-2BA1-4CDA-A048-C1DA48C0F724} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesCommonX86\Microsoft Shared\Office16\sdxhelper.exe [112672 2019-05-04] (Microsoft Corporation -> Microsoft Corporation)
Task: {74CF8D8D-7F93-4E07-B603-8A39DF7E0DAB} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe
Task: {77EFE297-B64B-4A73-9010-1A960B47CE9B} - System32\Tasks\USER_ESRV_SVC_QUEENCREEK => "C:\WINDOWS\System32\Wscript.exe" //B //NoLogo "C:\Program Files\Intel\SUR\QUEENCREEK\x64\task.vbs"
Task: {7F99940C-8E77-4CC9-A8D4-EF75F18E944B} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [26196056 2019-04-26] (Microsoft Corporation -> Microsoft Corporation)
Task: {8025CAA6-2E68-4126-8480-6A8F1760BB89} - System32\Tasks\Bitdefender AgentTask_AD394AE64E874073B10A89FEEC305A3C => C:\Program Files\Bitdefender\Bitdefender Security\bdagent.exe [475824 2019-04-09] (Bitdefender SRL -> Bitdefender)
Task: {846053B5-75D4-45A8-B472-3E9D4FB595E0} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [26196056 2019-04-26] (Microsoft Corporation -> Microsoft Corporation)
Task: {84F53677-A826-4C9A-9867-85A0BF121C44} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [616320 2018-01-08] (Apple Inc. -> Apple Inc.)
Task: {87F8CCFD-060A-406D-B637-92DF66AAB42C} - System32\Tasks\EOSv3 Scheduler onLogOn => C:\Users\manel\Downloads\esetonlinescanner_esn.exe
Task: {8A16F3C8-E435-40B4-A0F7-34D196B07C3A} - System32\Tasks\Bitdefender Agent WatchDog_65D6944A0EF74FDAB96E31112AD39864 => C:\Program Files\Bitdefender Agent\WatchDog.exe [462288 2018-11-15] (Bitdefender SRL -> Bitdefender)
Task: {A6BBAF40-96A8-47DF-A70F-96A3A064BB25} - System32\Tasks\EOSv3 Scheduler onTime => C:\Users\manel\Downloads\esetonlinescanner_esn.exe
Task: {A7A24BAB-3641-4324-8D0C-06ACAE5F98B5} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerRegistration => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [1439368 2019-05-04] (Microsoft Corporation -> Microsoft Corporation)
Task: {B63B7BE3-F3A4-4F95-A2B5-BF2A3E6957B8} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerLogon => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [1439368 2019-05-04] (Microsoft Corporation -> Microsoft Corporation)
Task: {DFB08A74-6A64-41A8-9BC4-21E7418BDF6F} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonx86\Microsoft Shared\Office16\OLicenseHeartbeat.exe [1427056 2019-05-04] (Microsoft Corporation -> Microsoft Corporation)
Task: {EAF7A479-DE50-4BC3-9B7E-BFEEC2D2F779} - System32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132-Logon => C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe [18168 2017-07-13] (Intel(R) Software Asset Manager -> Intel Corporation)
Task: {F4207A3A-0322-4739-A543-965DA7E74685} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156456 2019-05-07] (Google Inc -> Google LLC)
Task: {F8FB3F55-C473-4369-81EC-38A1106CC828} - System32\Tasks\AutoKMS => C:\Windows\AutoKMS\AutoKMS.exe
Task: {FEA24066-CC12-4DFC-9AFF-A6BAFFF0BC2E} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Refresh immunization => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDImmunize.exe [7192192 2018-04-20] (Safer-Networking Ltd. -> Safer-Networking Ltd.)
Task: {FF45A124-D53C-419B-AFBD-EB33255A942C} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1195544 2018-12-16] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 80.58.61.254 80.58.61.250
Tcpip\..\Interfaces\{11730afa-b2dc-4faf-bbc5-c6c255781029}: [DhcpNameServer] 172.20.10.1
Tcpip\..\Interfaces\{e0964119-ee96-47a4-9c98-047d85ed7abd}: [DhcpNameServer] 80.58.61.254 80.58.61.250
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-2412839927-3900649023-1217178245-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IESR02&pc=UE00
SearchScopes: HKU\S-1-5-21-2412839927-3900649023-1217178245-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IESR02&pc=UE00
BHO: Bitdefender Wallet -> {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} -> C:\Program Files\Bitdefender\Bitdefender Security\pmbxie.dll [2019-04-09] (Bitdefender SRL -> Bitdefender)
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2019-04-06] (Microsoft Corporation -> Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_211\bin\ssv.dll [2019-04-21] (Oracle America, Inc. -> Oracle Corporation)
BHO: No Name -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> No File
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_211\bin\jp2ssv.dll [2019-04-21] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Bitdefender Wallet -> {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} -> C:\Program Files\Bitdefender\Bitdefender Security\Antispam32\pmbxie.dll [2019-04-09] (Bitdefender SRL -> Bitdefender)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation -> Microsoft Corporation)
Toolbar: HKLM - Bitdefender Wallet - {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} - C:\Program Files\Bitdefender\Bitdefender Security\pmbxie.dll [2019-04-09] (Bitdefender SRL -> Bitdefender)
Toolbar: HKLM-x32 - Bitdefender Wallet - {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} - C:\Program Files\Bitdefender\Bitdefender Security\Antispam32\pmbxie.dll [2019-04-09] (Bitdefender SRL -> Bitdefender)
Toolbar: HKU\S-1-5-21-2412839927-3900649023-1217178245-1001 -> Bitdefender Wallet - {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} - C:\Program Files\Bitdefender\Bitdefender Security\pmbxie.dll [2019-04-09] (Bitdefender SRL -> Bitdefender)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2019-04-06] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2019-04-06] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2019-04-06] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2019-04-06] (Microsoft Corporation -> Microsoft Corporation)
FireFox:
========
FF HKLM\...\Thunderbird\Extensions: [[email protected]] - C:\Program Files\Bitdefender\Bitdefender Security\bdtbext
FF Extension: (Bitdefender Antispam Toolbar) - C:\Program Files\Bitdefender\Bitdefender Security\bdtbext [2018-10-29] [Legacy] [not signed]
FF HKLM-x32\...\Firefox\Extensions: [[email protected]] - C:\Program Files\Bitdefender\Bitdefender Security\bdwteff.xpi
FF Extension: (Bitdefender Wallet) - C:\Program Files\Bitdefender\Bitdefender Security\bdwteff.xpi [2019-03-01]
FF HKLM-x32\...\Thunderbird\Extensions: [[email protected]] - C:\Program Files\Bitdefender\Bitdefender Security\bdtbext
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_32_0_0_171.dll [2019-04-10] (Adobe Inc. -> )
FF Plugin: @java.com/DTPlugin,version=11.211.2 -> C:\Program Files\Java\jre1.8.0_211\bin\dtplugin\npDeployJava1.dll [2019-04-21] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.211.2 -> C:\Program Files\Java\jre1.8.0_211\bin\plugin2\npjp2.dll [2019-04-21] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=3.0.3 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-01-10] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-01-10] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-01-10] (VideoLAN -> VideoLAN)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_171.dll [2019-04-10] (Adobe Inc. -> )
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2019-04-06] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.34.7\npGoogleUpdate3.dll [2019-05-07] (Google Inc -> Google LLC)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.34.7\npGoogleUpdate3.dll [2019-05-07] (Google Inc -> Google LLC)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2019-03-25] (Adobe Inc. -> Adobe Systems Inc.)
Chrome:
=======
CHR HomePage: Default -> hxxp://search.babylon.com/?affID=110823&tt=120912_pcp_3812_4&babsrc=HP_ss&mntrId=127b4935000000000000446d57d07669
CHR StartupUrls: Default -> "hxxps://www.google.es/"
CHR Profile: C:\Users\manel\AppData\Local\Google\Chrome\User Data\Default [2019-05-12]
CHR Extension: (Adblock Plus - bloqueador de anuncios gratis) - C:\Users\manel\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2019-05-10]
CHR Extension: (uBlock Origin) - C:\Users\manel\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjpalhdlnbpafiamejdnhcphjbkeiagm [2019-05-12]
CHR Extension: (Favoritos de iCloud) - C:\Users\manel\AppData\Local\Google\Chrome\User Data\Default\Extensions\fkepacicchenbjecpbpbclokcabebhah [2019-05-10]
CHR Extension: (Bitdefender Wallet) - C:\Users\manel\AppData\Local\Google\Chrome\User Data\Default\Extensions\gannpgaobkkhmpomoijebaigcapoeebl [2019-05-10]
CHR Extension: (Sistema de pagos de Chrome Web Store) - C:\Users\manel\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-05-10]
CHR Extension: (Chrome Media Router) - C:\Users\manel\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-05-10]
CHR HKLM-x32\...\Chrome\Extension: [gannpgaobkkhmpomoijebaigcapoeebl] - hxxps://clients2.google.com/service/update2/crx
==================== Services (Whitelisted) ====================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S3 AfVpnService; C:\Program Files\Bitdefender\Bitdefender VPN\vpnservice.exe [322432 2019-03-25] (AnchorFree Inc -> AnchorFree Inc.)
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [96056 2019-03-08] (Apple Inc. -> Apple Inc.)
R2 BDAuxSrv; C:\Program Files\Bitdefender\Bitdefender Security\bdservicehost.exe [779152 2019-04-09] (Bitdefender SRL -> Bitdefender)
R2 BDProtSrv; C:\Program Files\Bitdefender\Bitdefender Security\bdservicehost.exe [779152 2019-04-09] (Bitdefender SRL -> Bitdefender)
R2 bdredline; C:\Program Files\Common Files\Bitdefender\SetupInformation\Bitdefender RedLine\bdredline.exe [2195320 2018-03-22] (Bitdefender SRL -> Bitdefender)
R2 BdVpnService; C:\Program Files\Bitdefender\Bitdefender VPN\bdvpnservice.exe [96568 2019-04-11] (Bitdefender SRL -> Bitdefender)
R3 BrYNSvc; C:\Program Files (x86)\Browny02\BrYNSvc.exe [266240 2012-06-05] (Brother Industries, Ltd.) [File not signed]
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [11146240 2019-04-26] (Microsoft Corporation -> Microsoft Corporation)
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2018-08-28] (Dropbox, Inc -> Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2018-08-28] (Dropbox, Inc -> Dropbox, Inc.)
R2 DbxSvc; C:\WINDOWS\system32\DbxSvc.exe [51024 2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
R2 DevMgmtService; C:\Program Files\Bitdefender\Bitdefender Device Management\DevMgmtService.exe [95520 2019-03-28] (Bitdefender SRL -> Bitdefender)
R2 Dolby DAX2 API Service; C:\Program Files\Dolby\Dolby DAX2\DAX2_API\DolbyDAX2API.exe [189464 2019-01-21] (Dolby Laboratories, Inc. -> Dolby Laboratories, Inc.)
R2 DSAService; C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAService.exe [26472 2019-05-02] (IDSA Production signing key -> Intel)
R3 DSAUpdateService; C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAUpdateService.exe [72552 2019-05-02] (IDSA Production signing key -> Intel)
R2 esifsvc; C:\WINDOWS\System32\Intel\DPTF\esif_uf.exe [1892512 2018-12-14] (Intel Corporation -> Intel Corporation)
R2 ESRV_SVC_QUEENCREEK; C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe [937208 2018-12-19] (Intel(R) Software Development Products -> )
R2 ETDService; C:\Program Files\Elantech\ETDService.exe [134872 2017-10-30] (ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.)
S4 HfcDisableService; C:\WINDOWS\System32\DriverStore\FileRepository\iastorac.inf_amd64_5d83605e8696144c\HfcDisableService.exe [1860272 2019-02-26] (Intel(R) Rapid Storage Technology -> Intel Corporation)
S3 iaStorAfsService; C:\WINDOWS\System32\iaStorAfsService.exe [2833584 2019-02-26] (Intel(R) Rapid Storage Technology -> Intel Corporation)
R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [17464 2019-02-26] (Intel(R) Rapid Storage Technology -> Intel Corporation)
R2 ibtsiva; C:\WINDOWS\system32\ibtsiva.exe [529904 2019-01-24] (Intel(R) Wireless Connectivity Solutions -> Intel Corporation)
S3 Intel(R) SUR QC SAM; C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe [18168 2017-07-13] (Intel(R) Software Asset Manager -> Intel Corporation)
R2 MBAMService; C:\Program Files (x86)\Malwarebytes\Anti-Malware\mbamservice.exe [6562472 2019-02-01] (Malwarebytes Corporation -> Malwarebytes)
S3 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [310880 2018-12-05] (Intel Corporation -> )
R2 nlsX86cc; C:\WINDOWS\SysWOW64\NLSSRV32.EXE [70752 2019-03-26] (Nitro Software, Inc. -> Nalpeiron Ltd.)
R2 ProductAgentService; C:\Program Files\Bitdefender Agent\ProductAgentService.exe [1293936 2018-11-15] (Bitdefender SRL -> Bitdefender)
R2 RstMwService; C:\WINDOWS\System32\DriverStore\FileRepository\iastorac.inf_amd64_5d83605e8696144c\RstMwService.exe [2115248 2019-02-26] (Intel(R) Rapid Storage Technology -> Intel Corporation)
R2 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [267552 2019-04-10] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
R2 SDScannerService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [3892256 2018-04-20] (Safer-Networking Ltd. -> Safer-Networking Ltd.)
R2 SDUpdateService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [3943664 2018-04-20] (Safer-Networking Ltd. -> Safer-Networking Ltd.)
R2 SDWSCService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [233712 2018-02-06] (Safer-Networking Ltd. -> Safer-Networking Ltd.)
R2 SystemUsageReportSvc_QUEENCREEK; C:\Program Files\Intel\SUR\QUEENCREEK\SurSvc.exe [195832 2018-12-19] (Intel(R) Software Development Products -> )
R2 UPDATESRV; C:\Program Files\Bitdefender\Bitdefender Security\updatesrv.exe [114192 2019-04-09] (Bitdefender SRL -> Bitdefender)
S3 USER_ESRV_SVC_QUEENCREEK; C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe [937208 2018-12-19] (Intel(R) Software Development Products -> )
R2 VSSERV; C:\Program Files\Bitdefender\Bitdefender Security\vsserv.exe [817128 2019-04-09] (Bitdefender SRL -> Bitdefender)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1807.18075-0\NisSrv.exe [3905952 2018-08-20] (Microsoft Corporation -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1807.18075-0\MsMpEng.exe [110944 2018-08-20] (Microsoft Corporation -> Microsoft Corporation)
R2 ZeroConfigService; C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [4102752 2018-12-05] (Intel Corporation -> Intel® Corporation)
===================== Drivers (Whitelisted) ======================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 aftap0901; C:\WINDOWS\System32\drivers\aftap0901.sys [48624 2018-06-15] (AnchorFree Inc -> The OpenVPN Project)
R3 ApkbfiltrService; C:\WINDOWS\System32\drivers\Apkbfiltr.sys [31016 2015-07-23] (Alps Electric Co., LTD. -> Alps Electric Co., Ltd.)
S3 AppleKmdfFilter; C:\WINDOWS\System32\drivers\AppleKmdfFilter.sys [20640 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.)
S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35560 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.)
R1 atc; C:\WINDOWS\System32\DRIVERS\atc.sys [1423680 2019-03-01] (Bitdefender SRL -> BitDefender S.R.L. Bucharest, ROMANIA)
R2 BdDci; C:\WINDOWS\System32\DRIVERS\bddci.sys [367096 2019-03-01] (Bitdefender SRL -> Bitdefender)
S0 bdelam; C:\WINDOWS\System32\drivers\bdelam.sys [22960 2019-04-09] (Microsoft Windows Early Launch Anti-malware Publisher -> Bitdefender)
R0 bdprivmon; C:\WINDOWS\System32\DRIVERS\bdprivmon.sys [45728 2018-09-17] (Bitdefender SRL -> © Bitdefender SRL)
R1 BDVEDISK; C:\WINDOWS\system32\DRIVERS\bdvedisk.sys [96448 2018-04-27] (Bitdefender SRL -> BitDefender)
S3 BrSerIb; C:\WINDOWS\System32\drivers\BrSerIb.sys [95344 2013-11-21] (Brother Industries, Ltd. -> Brother Industries Ltd.)
S3 BrUsbSIb; C:\WINDOWS\System32\drivers\BrUsbSIb.sys [21872 2013-11-21] (Brother Industries, Ltd. -> Brother Industries Ltd.)
S3 dg_ssudbus; C:\WINDOWS\System32\drivers\ssudbus.sys [131984 2017-05-18] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R3 dptf_acpi; C:\WINDOWS\System32\drivers\dptf_acpi.sys [78832 2018-12-14] (Intel Corporation -> Intel Corporation)
R3 dptf_cpu; C:\WINDOWS\System32\drivers\dptf_cpu.sys [75248 2018-12-14] (Intel Corporation -> Intel Corporation)
R3 esif_lf; C:\WINDOWS\system32\DRIVERS\esif_lf.sys [403440 2018-12-14] (Intel Corporation -> Intel Corporation)
R1 ESProtectionDriver; C:\WINDOWS\system32\drivers\mbae64.sys [153328 2019-01-08] (Malwarebytes Corporation -> Malwarebytes)
R3 ETDSMBus; C:\WINDOWS\system32\DRIVERS\ETDSMBus.sys [32328 2017-10-30] (ELAN MICROELECTRONICS CORPORATION -> ELAN Microelectronic Corp.)
R0 Gemma; C:\WINDOWS\System32\DRIVERS\Gemma.sys [374632 2019-03-01] (Bitdefender SRL -> BitDefender S.R.L. Bucharest, ROMANIA)
S1 GUBootStartup; C:\WINDOWS\System32\drivers\GUBootStartup.sys [28936 2018-10-16] (Glarysoft LTD -> Glarysoft Ltd)
R0 gzflt; C:\WINDOWS\System32\DRIVERS\gzflt.sys [201000 2019-03-01] (Bitdefender SRL -> BitDefender LLC)
R3 iaLPSS2_GPIO2; C:\WINDOWS\System32\drivers\iaLPSS2_GPIO2.sys [98864 2018-10-14] (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation)
R0 iaStorAC; C:\WINDOWS\System32\drivers\iaStorAC.sys [1018032 2019-02-26] (Intel(R) Rapid Storage Technology -> Intel Corporation)
S3 iaStorAfs; C:\WINDOWS\System32\drivers\iaStorAfs.sys [73416 2019-02-26] (Intel(R) Rapid Storage Technology -> Intel Corporation)
R3 ibtusb; C:\WINDOWS\system32\DRIVERS\ibtusb.sys [262640 2019-01-24] (Intel(R) Wireless Connectivity Solutions -> Intel Corporation)
R2 Ignis; C:\WINDOWS\System32\DRIVERS\ignis.sys [196392 2019-04-09] (Bitdefender SRL -> Bitdefender)
R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [198512 2019-05-11] (Malwarebytes Corporation -> Malwarebytes)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [20936 2019-02-01] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R3 MBAMFarflt; C:\WINDOWS\System32\DRIVERS\farflt.sys [127136 2019-05-11] (Malwarebytes Corporation -> Malwarebytes)
R3 MBAMProtection; C:\WINDOWS\system32\DRIVERS\mbam.sys [72864 2019-05-11] (Malwarebytes Corporation -> Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [274416 2019-05-11] (Malwarebytes Corporation -> Malwarebytes)
R3 MBAMWebProtection; C:\WINDOWS\system32\DRIVERS\mwac.sys [114040 2019-05-11] (Malwarebytes Corporation -> Malwarebytes)
R3 Netwtw04; C:\WINDOWS\System32\drivers\Netwtw04.sys [8717808 2019-02-23] (Intel(R) Wireless Connectivity Solutions -> Intel Corporation)
S3 rtsuvc; C:\WINDOWS\system32\DRIVERS\rtsuvc.sys [3146760 2016-09-13] (Realtek Semiconductor Corp. -> Realtek Semiconductor Corp.)
R3 semav6msr64; C:\WINDOWS\system32\drivers\semav6msr64.sys [43008 2018-12-19] (Intel Corporation -> )
S3 ssudqcfilter; C:\WINDOWS\System32\drivers\ssudqcfilter.sys [64912 2017-05-18] (Samsung Electronics Co., Ltd. -> QUALCOMM Incorporated)
R0 trufos; C:\WINDOWS\System32\DRIVERS\trufos.sys [610640 2019-03-01] (Bitdefender SRL -> Bitdefender)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [46584 2018-08-20] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [340008 2018-08-20] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [61992 2018-08-20] (Microsoft Windows -> Microsoft Corporation)
R3 XtuAcpiDriver; C:\WINDOWS\System32\drivers\XtuAcpiDriver.sys [63840 2015-07-10] (Intel(R) Software -> Intel Corporation)
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2019-05-12 00:45 - 2019-05-12 00:58 - 000000000 ____D C:\Users\manel\Downloads\The Flash - Temporada 5 [HDTV 720p][Cap.520][AC3 5.1 Castellano][www.pctnew.com]
2019-05-12 00:44 - 2019-05-12 00:57 - 000000000 ____D C:\Users\manel\Downloads\Warrior - Temporada 1 [HDTV 720p][Cap.106][AC3 5.1 Castellano][www.pctnew.com]
2019-05-12 00:44 - 2019-05-12 00:45 - 000000000 ____D C:\Users\manel\Downloads\The Flash - Temporada 5 [HDTV][Cap.520][Castellano][www.pctnew.com]
2019-05-12 00:44 - 2019-05-12 00:44 - 000017345 _____ C:\Users\manel\Downloads\122064_-1557577661-warrior---temporada-1--hdtv-720p-ac3-5-1.torrent
2019-05-12 00:44 - 2019-05-12 00:44 - 000016969 _____ C:\Users\manel\Downloads\122066_-1557578023-the-flash---temporada-5--hdtv-720p-ac3-5-1.torrent
2019-05-12 00:43 - 2019-05-12 00:45 - 000000000 ____D C:\Users\manel\Downloads\Warrior - Temporada 1 [HDTV][Cap.106][Castellano][www.pctnew.com]
2019-05-12 00:43 - 2019-05-12 00:43 - 000021457 _____ C:\Users\manel\Downloads\122063_-1557577520-warrior---temporada-1--hdtv.torrent
2019-05-12 00:43 - 2019-05-12 00:43 - 000020661 _____ C:\Users\manel\Downloads\122065_-1557577843-the-flash---temporada-5--hdtv.torrent
2019-05-12 00:41 - 2019-05-12 00:48 - 000048447 _____ C:\Users\manel\Downloads\Addition.txt
2019-05-12 00:39 - 2019-05-12 01:00 - 000040948 _____ C:\Users\manel\Downloads\FRST.txt
2019-05-12 00:39 - 2019-05-12 00:59 - 000000000 ____D C:\FRST
2019-05-12 00:37 - 2019-05-12 00:37 - 002430976 _____ (Farbar) C:\Users\manel\Downloads\FRST64.exe
2019-05-11 13:10 - 2019-05-11 13:10 - 000274416 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys
2019-05-11 13:10 - 2019-05-11 13:10 - 000127136 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\farflt.sys
2019-05-11 13:10 - 2019-05-11 13:10 - 000114040 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mwac.sys
2019-05-11 13:10 - 2019-05-11 13:10 - 000072864 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys
2019-05-11 11:29 - 2019-05-11 11:29 - 000000000 ____D C:\Users\manel\AppData\Local\mbam
2019-05-11 11:28 - 2019-05-11 11:28 - 000198512 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamChameleon.sys
2019-05-11 11:28 - 2019-05-11 11:28 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
2019-05-11 11:28 - 2019-05-11 11:28 - 000000000 ____D C:\ProgramData\Malwarebytes
2019-05-11 11:28 - 2019-05-11 11:28 - 000000000 ____D C:\Program Files (x86)\Malwarebytes
2019-05-11 11:28 - 2019-02-01 11:20 - 000020936 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamElam.sys
2019-05-11 11:28 - 2019-01-08 15:32 - 000153328 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbae64.sys
2019-05-10 13:21 - 2019-05-10 13:16 - 000267264 _____ C:\Users\manel\Downloads\Comanda Boston home 09-05-2019.msg
2019-05-08 02:56 - 2019-05-08 02:56 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2019-05-08 01:18 - 2019-05-08 01:18 - 000000654 _____ C:\Users\manel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\HIVERN 2012.lnk
2019-05-07 21:59 - 2019-05-07 21:59 - 000000000 ____D C:\Users\manel\AppData\Roaming\Google
2019-05-07 21:56 - 2019-05-07 22:04 - 000000000 ____D C:\Users\manel\AppData\Local\Google
2019-05-07 21:56 - 2019-05-07 21:56 - 000003618 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2019-05-07 21:56 - 2019-05-07 21:56 - 000003494 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2019-05-07 21:56 - 2019-05-07 21:56 - 000002375 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2019-05-07 21:56 - 2019-05-07 21:56 - 000000000 ____D C:\Program Files (x86)\Google
2019-05-07 21:51 - 2019-05-07 21:51 - 000051024 _____ (Dropbox, Inc.) C:\WINDOWS\system32\DbxSvc.exe
2019-05-07 21:51 - 2019-05-07 21:51 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-stable.sys
2019-05-07 21:51 - 2019-05-07 21:51 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-dev.sys
2019-05-07 21:51 - 2019-05-07 21:51 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-canary.sys
2019-05-07 08:03 - 2019-05-07 07:03 - 000454068 _____ C:\WINDOWS\system32\Drivers\etc\hosts.20190507-080336.backup
2019-05-06 23:10 - 2019-05-06 23:10 - 000045892 _____ C:\ProgramData\vpn.1557177029.2508.bin
2019-05-06 23:10 - 2019-05-06 23:10 - 000037080 _____ C:\ProgramData\vpn.uninstall.1557177034.bdinstall.bin
2019-05-06 23:10 - 2019-05-06 23:10 - 000033914 _____ C:\ProgramData\vpn.1557177029.12276.bin
2019-05-06 23:10 - 2019-05-06 23:10 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bitdefender VPN
2019-05-05 08:45 - 2019-05-11 13:09 - 000008142 _____ C:\bdlog.txt
2019-05-05 08:16 - 2019-05-05 08:16 - 000000000 ____D C:\Users\manel\AppData\Roaming\Opera Software
2019-05-04 15:53 - 2019-05-04 15:53 - 000002531 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Word.lnk
2019-05-04 15:53 - 2019-05-04 15:53 - 000002512 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Access.lnk
2019-05-04 15:53 - 2019-05-04 15:53 - 000002494 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerPoint.lnk
2019-05-04 15:53 - 2019-05-04 15:53 - 000002487 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Excel.lnk
2019-05-04 15:53 - 2019-05-04 15:53 - 000002485 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outlook.lnk
2019-05-04 15:53 - 2019-05-04 15:53 - 000002443 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneNote 2016.lnk
2019-05-04 15:53 - 2019-05-04 15:53 - 000002439 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Publisher.lnk
2019-05-04 15:53 - 2019-05-04 15:53 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Herramientas de Microsoft Office
2019-05-04 10:21 - 2019-05-04 10:21 - 026810880 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2019-05-04 10:21 - 2019-05-04 10:21 - 023441920 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2019-05-04 10:21 - 2019-05-04 10:21 - 020815360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2019-05-04 10:21 - 2019-05-04 10:21 - 019025408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2019-05-04 10:21 - 2019-05-04 10:21 - 012844032 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2019-05-04 10:21 - 2019-05-04 10:21 - 012140032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2019-05-04 10:21 - 2019-05-04 10:21 - 009683472 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2019-05-04 10:21 - 2019-05-04 10:21 - 007645632 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2019-05-04 10:21 - 2019-05-04 10:21 - 006544256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2019-05-04 10:21 - 2019-05-04 10:21 - 005436904 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2019-05-04 10:21 - 2019-05-04 10:21 - 005296640 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdp.dll
2019-05-04 10:21 - 2019-05-04 10:21 - 005210904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepository.dll
2019-05-04 10:21 - 2019-05-04 10:21 - 004588544 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2019-05-04 10:21 - 2019-05-04 10:21 - 003982848 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeContent.dll
2019-05-04 10:21 - 2019-05-04 10:21 - 003657728 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2019-05-04 10:21 - 2019-05-04 10:21 - 003551112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2019-05-04 10:21 - 2019-05-04 10:21 - 003426816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cdp.dll
2019-05-04 10:21 - 2019-05-04 10:21 - 003406848 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVidCtl.dll
2019-05-04 10:21 - 2019-05-04 10:21 - 003384832 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2019-05-04 10:21 - 2019-05-04 10:21 - 002995712 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2019-05-04 10:21 - 2019-05-04 10:21 - 002777224 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2019-05-04 10:21 - 2019-05-04 10:21 - 002701512 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2019-05-04 10:21 - 2019-05-04 10:21 - 002469376 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2019-05-04 10:21 - 2019-05-04 10:21 - 002393088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AcGenral.dll
2019-05-04 10:21 - 2019-05-04 10:21 - 002275888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2019-05-04 10:21 - 2019-05-04 10:21 - 002205184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVidCtl.dll
2019-05-04 10:21 - 2019-05-04 10:21 - 002189312 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2019-05-04 10:21 - 2019-05-04 10:21 - 002073960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2019-05-04 10:21 - 2019-05-04 10:21 - 001994976 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2019-05-04 10:21 - 2019-05-04 10:21 - 001768960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Input.Inking.dll
2019-05-04 10:21 - 2019-05-04 10:21 - 001697960 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2019-05-04 10:21 - 2019-05-04 10:21 - 001674696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2019-05-04 10:21 - 2019-05-04 10:21 - 001671352 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
2019-05-04 10:21 - 2019-05-04 10:21 - 001653760 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll
2019-05-04 10:21 - 2019-05-04 10:21 - 001605120 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2019-05-04 10:21 - 2019-05-04 10:21 - 001469168 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2019-05-04 10:21 - 2019-05-04 10:21 - 001467552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll
2019-05-04 10:21 - 2019-05-04 10:21 - 001387520 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvruserservice.dll
2019-05-04 10:21 - 2019-05-04 10:21 - 001382912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Input.Inking.dll
2019-05-04 10:21 - 2019-05-04 10:21 - 001315328 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnapps.dll
2019-05-04 10:21 - 2019-05-04 10:21 - 001309696 _____ (Microsoft Corporation) C:\WINDOWS\system32\webplatstorageserver.dll
2019-05-04 10:21 - 2019-05-04 10:21 - 001054928 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplyTrustOffline.exe
2019-05-04 10:21 - 2019-05-04 10:21 - 001001472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wpnapps.dll
2019-05-04 10:21 - 2019-05-04 10:21 - 000949248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Management.dll
2019-05-04 10:21 - 2019-05-04 10:21 - 000912384 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeManager.dll
2019-05-04 10:21 - 2019-05-04 10:21 - 000833024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webplatstorageserver.dll
2019-05-04 10:21 - 2019-05-04 10:21 - 000815616 _____ (Microsoft Corporation) C:\WINDOWS\system32\MdmDiagnostics.dll
2019-05-04 10:21 - 2019-05-04 10:21 - 000782848 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngcsvc.dll
2019-05-04 10:21 - 2019-05-04 10:21 - 000780632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcrt.dll
2019-05-04 10:21 - 2019-05-04 10:21 - 000725696 _____ (Microsoft Corporation) C:\WINDOWS\system32\kernel32.dll
2019-05-04 10:21 - 2019-05-04 10:21 - 000695296 _____ (Microsoft Corporation) C:\WINDOWS\system32\hhctrl.ocx
2019-05-04 10:21 - 2019-05-04 10:21 - 000679424 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppReadiness.dll
2019-05-04 10:21 - 2019-05-04 10:21 - 000673280 _____ (Microsoft Corporation) C:\WINDOWS\system32\configmanager2.dll
2019-05-04 10:21 - 2019-05-04 10:21 - 000663552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Management.dll
2019-05-04 10:21 - 2019-05-04 10:21 - 000663552 _____ (Microsoft Corporation) C:\WINDOWS\system32\PsmServiceExtHost.dll
2019-05-04 10:21 - 2019-05-04 10:21 - 000663040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EdgeManager.dll
2019-05-04 10:21 - 2019-05-04 10:21 - 000649064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kernel32.dll
2019-05-04 10:21 - 2019-05-04 10:21 - 000638376 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcrt.dll
2019-05-04 10:21 - 2019-05-04 10:21 - 000610304 _____ (Microsoft Corporation) C:\WINDOWS\system32\daxexec.dll
2019-05-04 10:21 - 2019-05-04 10:21 - 000577024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hhctrl.ocx
2019-05-04 10:21 - 2019-05-04 10:21 - 000553656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryPS.dll
2019-05-04 10:21 - 2019-05-04 10:21 - 000553472 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenrollengine.dll
2019-05-04 10:21 - 2019-05-04 10:21 - 000543744 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2019-05-04 10:21 - 2019-05-04 10:21 - 000540720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StateRepository.Core.dll
2019-05-04 10:21 - 2019-05-04 10:21 - 000531968 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcext.dll
2019-05-04 10:21 - 2019-05-04 10:21 - 000514632 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanager.dll
2019-05-04 10:21 - 2019-05-04 10:21 - 000495616 _____ (Microsoft Corporation) C:\WINDOWS\system32\DDDS.dll
2019-05-04 10:21 - 2019-05-04 10:21 - 000461824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dmenrollengine.dll
2019-05-04 10:21 - 2019-05-04 10:21 - 000454160 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys
2019-05-04 10:21 - 2019-05-04 10:21 - 000451080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\policymanager.dll
2019-05-04 10:21 - 2019-05-04 10:21 - 000424960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\daxexec.dll
2019-05-04 10:21 - 2019-05-04 10:21 - 000424960 _____ (Microsoft Corporation) C:\WINDOWS\system32\SDDS.dll
2019-05-04 10:21 - 2019-05-04 10:21 - 000370176 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxdiag.exe
2019-05-04 10:21 - 2019-05-04 10:21 - 000359936 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceEnroller.exe
2019-05-04 10:21 - 2019-05-04 10:21 - 000349696 _____ (Microsoft Corporation) C:\WINDOWS\system32\AcGenral.dll
2019-05-04 10:21 - 2019-05-04 10:21 - 000326144 _____ (Microsoft Corporation) C:\WINDOWS\system32\DiagnosticLogCSP.dll
2019-05-04 10:21 - 2019-05-04 10:21 - 000320512 _____ (Microsoft Corporation) C:\WINDOWS\system32\omadmclient.exe
2019-05-04 10:21 - 2019-05-04 10:21 - 000314368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxdiag.exe
2019-05-04 10:21 - 2019-05-04 10:21 - 000302080 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenterprisediagnostics.dll
2019-05-04 10:21 - 2019-05-04 10:21 - 000280592 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll
2019-05-04 10:21 - 2019-05-04 10:21 - 000263576 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll
2019-05-04 10:21 - 2019-05-04 10:21 - 000254464 _____ (Microsoft Corporation) C:\WINDOWS\system32\notepad.exe
2019-05-04 10:21 - 2019-05-04 10:21 - 000254464 _____ (Microsoft Corporation) C:\WINDOWS\notepad.exe
2019-05-04 10:21 - 2019-05-04 10:21 - 000246784 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmregistration.dll
2019-05-04 10:21 - 2019-05-04 10:21 - 000244224 _____ (Microsoft Corporation) C:\WINDOWS\system32\JpnServiceDS.dll
2019-05-04 10:21 - 2019-05-04 10:21 - 000240128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\notepad.exe
2019-05-04 10:21 - 2019-05-04 10:21 - 000201728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mdmregistration.dll
2019-05-04 10:21 - 2019-05-04 10:21 - 000197120 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatepolicy.dll
2019-05-04 10:21 - 2019-05-04 10:21 - 000153088 _____ (Microsoft Corporation) C:\WINDOWS\system32\fcon.dll
2019-05-04 10:21 - 2019-05-04 10:21 - 000122680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryClient.dll
2019-05-04 10:21 - 2019-05-04 10:21 - 000101376 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActiveSyncCsp.dll
2019-05-04 10:21 - 2019-05-04 10:21 - 000086960 _____ (Microsoft Corporation) C:\WINDOWS\system32\taskhostw.exe
2019-05-04 10:21 - 2019-05-04 10:21 - 000064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\EASPolicyManagerBrokerHost.exe
2019-05-04 10:21 - 2019-05-04 10:21 - 000051712 _____ (Microsoft Corporation) C:\WINDOWS\system32\MdmDiagnosticsTool.exe
2019-05-04 10:20 - 2019-05-04 10:21 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth1.bin
2019-05-04 10:20 - 2019-05-04 10:20 - 004997096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepository.dll
2019-05-04 10:20 - 2019-05-04 10:20 - 002720256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2019-05-04 10:20 - 2019-05-04 10:20 - 001253904 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2019-05-04 10:20 - 2019-05-04 10:20 - 001219640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryPS.dll
2019-05-04 10:20 - 2019-05-04 10:20 - 001044520 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2019-05-04 10:20 - 2019-05-04 10:20 - 000999424 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2019-05-04 10:20 - 2019-05-04 10:20 - 000806600 _____ C:\WINDOWS\SysWOW64\locale.nls
2019-05-04 10:20 - 2019-05-04 10:20 - 000806600 _____ C:\WINDOWS\system32\locale.nls
2019-05-04 10:20 - 2019-05-04 10:20 - 000773120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2019-05-04 10:20 - 2019-05-04 10:20 - 000757664 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcblaunch.exe
2019-05-04 10:20 - 2019-05-04 10:20 - 000676256 _____ (Microsoft Corporation) C:\WINDOWS\system32\StateRepository.Core.dll
2019-05-04 10:20 - 2019-05-04 10:20 - 000651576 _____ (Microsoft Corporation) C:\WINDOWS\system32\securekernel.exe
2019-05-04 10:20 - 2019-05-04 10:20 - 000469504 _____ (Microsoft Corporation) C:\WINDOWS\system32\profsvc.dll
2019-05-04 10:20 - 2019-05-04 10:20 - 000421392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pci.sys
2019-05-04 10:20 - 2019-05-04 10:20 - 000366592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Wldap32.dll
2019-05-04 10:20 - 2019-05-04 10:20 - 000321024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Wldap32.dll
2019-05-04 10:20 - 2019-05-04 10:20 - 000161280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\updatepolicy.dll
2019-05-04 10:20 - 2019-05-04 10:20 - 000157200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryClient.dll
2019-05-04 10:20 - 2019-05-04 10:20 - 000090640 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.dll
2019-05-04 10:20 - 2019-05-04 10:20 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth8.bin
2019-05-04 10:20 - 2019-05-04 10:20 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth7.bin
2019-05-04 10:20 - 2019-05-04 10:20 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth6.bin
2019-05-04 10:20 - 2019-05-04 10:20 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth5.bin
2019-05-04 10:20 - 2019-05-04 10:20 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth4.bin
2019-05-04 10:20 - 2019-05-04 10:20 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth3.bin
2019-05-04 10:20 - 2019-05-04 10:20 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth2.bin
2019-04-30 22:42 - 2019-04-30 21:55 - 000454068 _____ C:\WINDOWS\system32\Drivers\etc\hosts.20190430-224252.backup
2019-04-30 08:53 - 2019-04-30 08:53 - 000000000 _____ C:\WINDOWS\system\cmsys.cmn
2019-04-25 08:19 - 2019-04-25 07:39 - 000000056 _____ C:\WINDOWS\system32\Drivers\etc\hosts.20190425-081927.backup
2019-04-24 09:50 - 2019-04-24 09:50 - 000000000 ____D C:\Program Files\Common Files\Intel Corporation
2019-04-23 17:25 - 2019-04-24 22:59 - 000000000 ____D C:\Users\manel\Downloads\SEGURO COTXE
2019-04-21 22:05 - 2019-04-21 22:05 - 000000000 ____D C:\WINDOWS\Downloaded Installations
2019-04-21 21:04 - 2019-04-21 21:06 - 000000000 ____D C:\Users\manel\Doctor Web
2019-04-21 21:04 - 2019-04-21 21:04 - 000000000 ____D C:\ProgramData\Doctor Web
2019-04-21 21:03 - 2019-04-21 21:03 - 128044056 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\MRT.exe
2019-04-21 21:01 - 2019-04-21 21:01 - 000000000 ____D C:\Program Files (x86)\MSECache
2019-04-21 20:50 - 2019-05-10 23:25 - 000003376 _____ C:\WINDOWS\System32\Tasks\EOSv3 Scheduler onLogOn
2019-04-21 20:50 - 2019-05-10 23:25 - 000003370 _____ C:\WINDOWS\System32\Tasks\EOSv3 Scheduler onTime
2019-04-21 19:45 - 2019-04-21 19:45 - 000000000 ____D C:\Users\manel\AppData\Local\ESET
2019-04-21 15:22 - 2019-03-26 02:28 - 005100648 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RsDMFT64.dll
2019-04-21 15:22 - 2017-10-30 19:20 - 000231640 _____ (ELAN Microelectronics Corp.) C:\WINDOWS\system32\ETDCoInstaller15017.dll
2019-04-21 15:21 - 2015-07-23 15:06 - 001919968 _____ (Microsoft Corporation) C:\WINDOWS\system32\wdfcoinstaller01005.dll
2019-04-21 15:21 - 2015-07-23 15:06 - 000031016 _____ (Alps Electric Co., Ltd.) C:\WINDOWS\system32\Drivers\Apkbfiltr.sys
2019-04-21 15:12 - 2019-04-21 15:12 - 000000000 ____D C:\ProgramData\Dolby
2019-04-21 15:12 - 2019-04-21 15:12 - 000000000 ____D C:\Program Files\Dolby
2019-04-21 15:11 - 2019-04-21 15:11 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Realtek
2019-04-21 15:10 - 2019-04-21 15:11 - 000000000 _____ C:\WINDOWS\system32\fpfftResultsFile.txt
2019-04-21 15:09 - 2019-04-10 21:46 - 003445640 _____ (DTS, Inc.) C:\WINDOWS\system32\slcnt64.dll
2019-04-21 15:09 - 2019-04-10 21:46 - 003340512 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkApi64.dll
2019-04-21 15:09 - 2019-04-10 21:46 - 003306712 _____ (Yamaha Corporation) C:\WINDOWS\system32\YamahaAE2.dll
2019-04-21 15:09 - 2019-04-10 21:46 - 003168280 _____ (DTS, Inc.) C:\WINDOWS\system32\sltech64.dll
2019-04-21 15:09 - 2019-04-10 21:46 - 002197872 _____ (Yamaha Corporation) C:\WINDOWS\system32\YamahaAE.dll
2019-04-21 15:09 - 2019-04-10 21:46 - 001435032 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SRRPTR64.dll
2019-04-21 15:09 - 2019-04-10 21:46 - 001397056 _____ (Sound Research, Corp.) C:\WINDOWS\system32\SECOMN64.dll
2019-04-21 15:09 - 2019-04-10 21:46 - 001386896 _____ (Sound Research, Corp.) C:\WINDOWS\system32\SEHDHF64.dll
2019-04-21 15:09 - 2019-04-10 21:46 - 001382128 _____ (TOSHIBA Corporation) C:\WINDOWS\system32\tosade.dll
2019-04-21 15:09 - 2019-04-10 21:46 - 001337536 _____ (Toshiba Client Solutions Co., Ltd.) C:\WINDOWS\system32\tossaeapo64.dll
2019-04-21 15:09 - 2019-04-10 21:46 - 001294424 _____ (Sound Research, Corp.) C:\WINDOWS\system32\SEAPO64.dll
2019-04-21 15:09 - 2019-04-10 21:46 - 001181008 _____ (Sound Research, Corp.) C:\WINDOWS\system32\SEHDRA64.dll
2019-04-21 15:09 - 2019-04-10 21:46 - 001110072 _____ (DTS, Inc.) C:\WINDOWS\system32\sl3apo64.dll
2019-04-21 15:09 - 2019-04-10 21:46 - 001078792 _____ (Sound Research, Corp.) C:\WINDOWS\SysWOW64\SEHDHF32.dll
2019-04-21 15:09 - 2019-04-10 21:46 - 001061680 _____ (Sound Research, Corp.) C:\WINDOWS\SysWOW64\SECOMN32.dll
2019-04-21 15:09 - 2019-04-10 21:46 - 000964920 _____ (Sony Corporation) C:\WINDOWS\system32\SFSS_APO.dll
2019-04-21 15:09 - 2019-04-10 21:46 - 000873352 _____ (TOSHIBA Corporation) C:\WINDOWS\system32\tadefxapo264.dll
2019-04-21 15:09 - 2019-04-10 21:46 - 000852032 _____ (Toshiba Client Solutions Co., Ltd.) C:\WINDOWS\system32\tosasfapo64.dll
2019-04-21 15:09 - 2019-04-10 21:46 - 000604688 _____ (Toshiba Client Solutions Co., Ltd.) C:\WINDOWS\system32\tossaemaxapo64.dll
2019-04-21 15:09 - 2019-04-10 21:46 - 000541008 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSTSX64.dll
2019-04-21 15:09 - 2019-04-10 21:46 - 000467048 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SRAPO64.dll
2019-04-21 15:09 - 2019-04-10 21:46 - 000447072 _____ (Toshiba Client Solutions Co., Ltd.) C:\WINDOWS\system32\toseaeapo64.dll
2019-04-21 15:09 - 2019-04-10 21:46 - 000393000 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEP64A.dll
2019-04-21 15:09 - 2019-04-10 21:46 - 000381304 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SRCOM64.dll
2019-04-21 15:09 - 2019-04-10 21:46 - 000343816 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtlCPAPI64.dll
2019-04-21 15:09 - 2019-04-10 21:46 - 000341040 _____ (Synopsys, Inc.) C:\WINDOWS\SysWOW64\SRCOM.dll
2019-04-21 15:09 - 2019-04-10 21:46 - 000341040 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SRCOM.dll
2019-04-21 15:09 - 2019-04-10 21:46 - 000231808 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SFNHK64.dll
2019-04-21 15:09 - 2019-04-10 21:46 - 000230600 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSTSH64.dll
2019-04-21 15:09 - 2019-04-10 21:46 - 000220496 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEED64A.dll
2019-04-21 15:09 - 2019-04-10 21:46 - 000218168 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSHP64.dll
2019-04-21 15:09 - 2019-04-10 21:46 - 000174832 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSWOW64.dll
2019-04-21 15:09 - 2019-04-10 21:46 - 000158592 _____ (TOSHIBA Corporation) C:\WINDOWS\system32\tadefxapo.dll
2019-04-21 15:09 - 2019-04-10 21:46 - 000116648 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEL64A.dll
2019-04-21 15:09 - 2019-04-10 21:46 - 000094008 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEG64A.dll
2019-04-21 15:09 - 2019-04-10 21:46 - 000091024 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SFCOM64.dll
2019-04-21 15:09 - 2019-04-10 21:46 - 000088424 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SFAPO64.dll
2019-04-21 15:09 - 2019-04-10 21:46 - 000083728 _____ (Virage Logic Corporation / Sonic Focus) C:\WINDOWS\SysWOW64\SFCOM.dll
2019-04-21 15:09 - 2019-04-10 21:46 - 000075432 _____ (TOSHIBA CORPORATION.) C:\WINDOWS\system32\tepeqapo64.dll
2019-04-21 15:09 - 2019-04-10 21:45 - 003335360 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\SysWOW64\RltkAPO.dll
2019-04-21 15:09 - 2019-04-10 21:45 - 002444792 _____ (Dolby Laboratories) C:\WINDOWS\system32\DolbyDAX2APOv201.dll
2019-04-21 15:09 - 2019-04-10 21:45 - 001971472 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPD64A.dll
2019-04-21 15:09 - 2019-04-10 21:45 - 001965264 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPD64AF3.dll
2019-04-21 15:09 - 2019-04-10 21:45 - 001788064 _____ (DTS) C:\WINDOWS\system32\DTSS2SpeakerDLL64.dll
2019-04-21 15:09 - 2019-04-10 21:45 - 001611064 _____ (Dolby Laboratories) C:\WINDOWS\system32\DolbyAPOv251gm.dll
2019-04-21 15:09 - 2019-04-10 21:45 - 001598504 _____ (DTS) C:\WINDOWS\system32\DTSS2HeadphoneDLL64.dll
2019-04-21 15:09 - 2019-04-10 21:45 - 001596296 _____ (Harman International Industries, Incorporated.) C:\WINDOWS\system32\HarmanAPO64.dll
2019-04-21 15:09 - 2019-04-10 21:45 - 001544360 _____ (Dolby Laboratories) C:\WINDOWS\system32\DAX3APOProp.dll
2019-04-21 15:09 - 2019-04-10 21:45 - 001516376 _____ (DTS) C:\WINDOWS\system32\DTSBoostDLL64.dll
2019-04-21 15:09 - 2019-04-10 21:45 - 001372496 _____ (Dolby Laboratories) C:\WINDOWS\system32\DAX3APOv251.dll
2019-04-21 15:09 - 2019-04-10 21:45 - 001353424 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RTCOM64.dll
2019-04-21 15:09 - 2019-04-10 21:45 - 001287704 _____ (Dolby Laboratories) C:\WINDOWS\system32\DolbyAPOvlldpgm.dll
2019-04-21 15:09 - 2019-04-10 21:45 - 001259840 _____ (Dolby Laboratories) C:\WINDOWS\system32\DolbyDAX2APOvlldp.dll
2019-04-21 15:09 - 2019-04-10 21:45 - 000751408 _____ (DTS) C:\WINDOWS\system32\DTSBassEnhancementDLL64.dll
2019-04-21 15:09 - 2019-04-10 21:45 - 000734880 _____ (DTS) C:\WINDOWS\system32\DTSSymmetryDLL64.dll
2019-04-21 15:09 - 2019-04-10 21:45 - 000715752 _____ (DTS) C:\WINDOWS\system32\DTSVoiceClarityDLL64.dll
2019-04-21 15:09 - 2019-04-10 21:45 - 000692272 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtDataProc64.dll
2019-04-21 15:09 - 2019-04-10 21:45 - 000511752 _____ (DTS) C:\WINDOWS\system32\DTSNeoPCDLL64.dll
2019-04-21 15:09 - 2019-04-10 21:45 - 000453384 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EED64A.dll
2019-04-21 15:09 - 2019-04-10 21:45 - 000452840 _____ (DTS) C:\WINDOWS\system32\DTSLimiterDLL64.dll
2019-04-21 15:09 - 2019-04-10 21:45 - 000448712 _____ (DTS) C:\WINDOWS\system32\DTSGainCompensatorDLL64.dll
2019-04-21 15:09 - 2019-04-10 21:45 - 000406560 _____ (Dolby Laboratories) C:\WINDOWS\system32\HiFiDAX2APIPCLL.dll
2019-04-21 15:09 - 2019-04-10 21:45 - 000367720 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPO64AF3.dll
2019-04-21 15:09 - 2019-04-10 21:45 - 000366224 _____ (Windows (R) Win 7 DDK provider) C:\WINDOWS\system32\HMAPO.dll
2019-04-21 15:09 - 2019-04-10 21:45 - 000360448 _____ (Harman) C:\WINDOWS\system32\HMClariFi.dll
2019-04-21 15:09 - 2019-04-10 21:45 - 000333120 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPO64A.dll
2019-04-21 15:09 - 2019-04-10 21:45 - 000327376 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RP3DHT64.dll
2019-04-21 15:09 - 2019-04-10 21:45 - 000327376 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RP3DAA64.dll
2019-04-21 15:09 - 2019-04-10 21:45 - 000316088 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPA64F3.dll
2019-04-21 15:09 - 2019-04-10 21:45 - 000278376 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPA64.dll
2019-04-21 15:09 - 2019-04-10 21:45 - 000261344 _____ (DTS) C:\WINDOWS\system32\DTSGFXAPO64.dll
2019-04-21 15:09 - 2019-04-10 21:45 - 000261304 _____ (DTS) C:\WINDOWS\system32\DTSLFXAPO64.dll
2019-04-21 15:09 - 2019-04-10 21:45 - 000260320 _____ (DTS) C:\WINDOWS\system32\DTSGFXAPONS64.dll
2019-04-21 15:09 - 2019-04-10 21:45 - 000203968 _____ (Harman) C:\WINDOWS\system32\HMHVS.dll
2019-04-21 15:09 - 2019-04-10 21:45 - 000191040 _____ (Harman) C:\WINDOWS\system32\HMEQ_Voice.dll
2019-04-21 15:09 - 2019-04-10 21:45 - 000191040 _____ (Harman) C:\WINDOWS\system32\HMEQ.dll
2019-04-21 15:09 - 2019-04-10 21:45 - 000179704 _____ (Harman) C:\WINDOWS\system32\HMLimiter.dll
2019-04-21 15:09 - 2019-04-10 21:45 - 000157448 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEL64A.dll
2019-04-21 15:09 - 2019-04-10 21:45 - 000139864 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEA64A.dll
2019-04-21 15:09 - 2019-04-10 21:45 - 000090280 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEG64A.dll
2019-04-21 15:09 - 2019-04-10 18:46 - 072520608 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RCoRes64.dat
2019-04-21 15:09 - 2019-04-10 18:46 - 007178360 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEP64A.dll
2019-04-21 15:09 - 2019-04-10 18:46 - 007101640 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPP64A.dll
2019-04-21 15:09 - 2019-04-10 18:46 - 006270088 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPP64AF3.dll
2019-04-21 15:09 - 2019-04-10 18:46 - 003676960 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RTSnMg64.cpl
2019-04-21 15:09 - 2019-04-10 18:46 - 003159672 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtPgEx64.dll
2019-04-21 15:09 - 2019-04-10 18:46 - 002930048 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RCoInstII64.dll
2019-04-21 15:09 - 2019-04-10 18:46 - 001159072 _____ (Dolby Laboratories) C:\WINDOWS\system32\DolbyDAX2APOProp.dll
2019-04-21 15:09 - 2019-04-10 18:46 - 000487360 _____ (Harman International Industries, Incorporated.) C:\WINDOWS\system32\HarmanAPOUI64.dll
2019-04-21 15:09 - 2019-04-10 18:46 - 000416400 _____ (Harman) C:\WINDOWS\system32\HMUI.dll
2019-04-21 15:09 - 2019-04-10 18:46 - 000266448 _____ (TODO: <Company name>) C:\WINDOWS\system32\slprp64.dll
2019-04-21 15:09 - 2019-04-10 18:46 - 000154256 _____ (Harman) C:\WINDOWS\system32\HarmanAudioInterface.dll
2019-04-21 15:09 - 2019-04-10 18:46 - 000122424 _____ (Real Sound Lab SIA) C:\WINDOWS\system32\CONEQMSAPOGUILibrary.dll
2019-04-21 15:09 - 2019-04-10 18:46 - 000105440 _____ C:\WINDOWS\system32\audioLibVc.dll
2019-04-21 15:09 - 2019-04-10 18:45 - 000118720 _____ C:\WINDOWS\system32\AcpiServiceVnA64.dll
2019-04-21 15:09 - 2019-04-10 18:19 - 030480224 _____ C:\WINDOWS\system32\Drivers\RTAIODAT.DAT
2019-04-21 15:07 - 2019-02-26 15:13 - 001018032 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\iaStorAC.sys
2019-04-21 15:07 - 2018-12-14 14:47 - 000403440 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\esif_lf.sys
2019-04-21 15:07 - 2018-12-14 14:47 - 000078832 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\dptf_acpi.sys
2019-04-21 15:07 - 2018-10-14 22:21 - 000098864 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\iaLPSS2_GPIO2.sys
2019-04-21 14:32 - 2019-04-21 14:32 - 000000000 ____D C:\Users\manel\AppData\LocalLow\Oracle
2019-04-21 14:31 - 2019-04-21 15:33 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2019-04-21 14:31 - 2019-04-21 15:31 - 000110968 _____ (Oracle Corporation) C:\WINDOWS\system32\WindowsAccessBridge-64.dll
2019-04-21 14:31 - 2019-04-21 14:31 - 000000000 ____D C:\Users\manel\AppData\Roaming\Sun
2019-04-21 14:30 - 2019-04-21 14:30 - 000000000 ____D C:\ProgramData\Oracle
2019-04-18 08:54 - 2019-04-18 08:54 - 000517734 _____ C:\Users\manel\Downloads\PEDIDO BOSTON INV 2020.pdf
2019-04-18 08:53 - 2019-04-18 08:53 - 000312825 _____ C:\Users\manel\Downloads\PEDIDO LUTHORNOX IN 2019.pdf
2019-04-18 00:05 - 2019-04-18 00:05 - 000271192 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe
2019-04-18 00:05 - 2019-04-18 00:05 - 000271192 _____ C:\WINDOWS\system32\vulkaninfo.exe
2019-04-18 00:05 - 2019-04-18 00:05 - 000245080 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2019-04-18 00:05 - 2019-04-18 00:05 - 000245080 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2019-04-18 00:01 - 2019-04-18 00:01 - 024901432 _____ (Intel Corporation) C:\WINDOWS\system32\mfxplugin64_hw.dll
2019-04-18 00:01 - 2019-04-18 00:01 - 020796232 _____ (Intel Corporation) C:\WINDOWS\system32\libmfxhw64.dll
2019-04-18 00:01 - 2019-04-18 00:01 - 019728296 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\libmfxhw32.dll
2019-04-18 00:01 - 2019-04-18 00:01 - 011725616 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\mfxplugin32_hw.dll
2019-04-18 00:01 - 2019-04-18 00:01 - 003169792 _____ (Intel Corporation) C:\WINDOWS\system32\mfx_mft_h265ve_64.dll
2019-04-18 00:01 - 2019-04-18 00:01 - 003161968 _____ (Intel Corporation) C:\WINDOWS\system32\mfx_mft_vp9ve_64.dll
2019-04-18 00:01 - 2019-04-18 00:01 - 003148808 _____ (Intel Corporation) C:\WINDOWS\system32\mfx_mft_h264ve_64.dll
2019-04-18 00:01 - 2019-04-18 00:01 - 002991928 _____ (Intel Corporation) C:\WINDOWS\system32\mfx_mft_mjpgvd_64.dll
2019-04-18 00:01 - 2019-04-18 00:01 - 002951888 _____ (Intel Corporation) C:\WINDOWS\system32\mfx_mft_encrypt_64.dll
2019-04-18 00:01 - 2019-04-18 00:01 - 002576328 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\mfx_mft_h265ve_32.dll
2019-04-18 00:01 - 2019-04-18 00:01 - 002571136 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\mfx_mft_vp9ve_32.dll
2019-04-18 00:01 - 2019-04-18 00:01 - 002562656 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\mfx_mft_h264ve_32.dll
2019-04-18 00:01 - 2019-04-18 00:01 - 002433840 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\mfx_mft_mjpgvd_32.dll
2019-04-18 00:01 - 2019-04-18 00:01 - 002410632 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\mfx_mft_encrypt_32.dll
2019-04-18 00:01 - 2019-04-18 00:01 - 001015392 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll
2019-04-18 00:01 - 2019-04-18 00:01 - 001015392 _____ C:\WINDOWS\system32\vulkan-1.dll
2019-04-18 00:01 - 2019-04-18 00:01 - 000878688 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll
2019-04-18 00:01 - 2019-04-18 00:01 - 000878688 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
2019-04-18 00:01 - 2019-04-18 00:01 - 000204664 _____ (Intel Corporation) C:\WINDOWS\system32\intel_gfx_api-x64.dll
2019-04-18 00:01 - 2019-04-18 00:01 - 000176512 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\intel_gfx_api-x86.dll
2019-04-18 00:01 - 2019-04-18 00:01 - 000161080 _____ C:\WINDOWS\SysWOW64\libGLESv2.dll
2019-04-18 00:01 - 2019-04-18 00:01 - 000147248 _____ C:\WINDOWS\SysWOW64\libEGL.dll
2019-04-18 00:01 - 2019-04-18 00:01 - 000125752 _____ C:\WINDOWS\SysWOW64\libGLESv1_CM.dll
2019-04-18 00:01 - 2019-04-18 00:01 - 000121144 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2019-04-18 00:01 - 2019-04-18 00:01 - 000121144 _____ (Khronos Group) C:\WINDOWS\system32\Intel_OpenCL_ICD64.dll
2019-04-18 00:01 - 2019-04-18 00:01 - 000108344 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2019-04-18 00:01 - 2019-04-18 00:01 - 000108344 _____ (Khronos Group) C:\WINDOWS\SysWOW64\Intel_OpenCL_ICD32.dll
2019-04-18 00:01 - 2019-04-18 00:01 - 000071096 _____ C:\WINDOWS\SysWOW64\vp9e_32.vp
2019-04-18 00:01 - 2019-04-18 00:01 - 000065205 _____ C:\WINDOWS\SysWOW64\mj_32.vp
2019-04-18 00:01 - 2019-04-18 00:01 - 000013856 _____ C:\WINDOWS\system32\vp9e_64.vp
2019-04-18 00:01 - 2019-04-18 00:01 - 000013185 _____ C:\WINDOWS\system32\mj_64.vp
2019-04-18 00:00 - 2019-04-18 00:00 - 000071485 _____ C:\WINDOWS\SysWOW64\h265e_32.vp
2019-04-18 00:00 - 2019-04-18 00:00 - 000069921 _____ C:\WINDOWS\SysWOW64\he_32.vp
2019-04-18 00:00 - 2019-04-18 00:00 - 000057143 _____ C:\WINDOWS\SysWOW64\dev_32.vp
2019-04-18 00:00 - 2019-04-18 00:00 - 000056359 _____ C:\WINDOWS\system32\dev_64.vp
2019-04-18 00:00 - 2019-04-18 00:00 - 000014005 _____ C:\WINDOWS\system32\h265e_64.vp
2019-04-18 00:00 - 2019-04-18 00:00 - 000013417 _____ C:\WINDOWS\system32\he_64.vp
2019-04-18 00:00 - 2019-04-18 00:00 - 000001125 _____ C:\WINDOWS\SysWOW64\cpa_32.vp
2019-04-18 00:00 - 2019-04-18 00:00 - 000001125 _____ C:\WINDOWS\system32\cpa_64.vp
2019-04-17 10:48 - 2019-04-17 10:48 - 000072507 _____ C:\ProgramData\dm.update.1555490857.bdinstall.bin
2019-04-17 10:48 - 2019-04-17 10:48 - 000034850 _____ C:\ProgramData\dm.uninstall.1555490865.bdinstall.bin
2019-04-13 08:35 - 2019-03-30 00:52 - 000459529 ____R C:\WINDOWS\system32\Drivers\etc\hosts.20190413-083500.backup
==================== One month (modified) ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2019-05-12 01:00 - 2018-12-30 12:35 - 000000000 ____D C:\Users\manel\AppData\Roaming\uTorrent
2019-05-12 00:57 - 2018-09-15 09:33 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2019-05-12 00:57 - 2018-08-25 15:16 - 000000000 ____D C:\Users\manel\Documents\Archivos de Outlook
2019-05-12 00:34 - 2019-02-09 12:53 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2019-05-11 21:14 - 2018-09-15 08:09 - 000065536 _____ C:\WINDOWS\system32\config\ELAM
2019-05-11 13:20 - 2019-02-09 12:59 - 001775242 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2019-05-11 13:20 - 2018-09-15 18:36 - 000791070 _____ C:\WINDOWS\system32\perfh00A.dat
2019-05-11 13:20 - 2018-09-15 18:36 - 000156308 _____ C:\WINDOWS\system32\perfc00A.dat
2019-05-11 13:20 - 2018-09-15 09:31 - 000000000 ____D C:\WINDOWS\INF
2019-05-11 13:11 - 2019-02-09 13:04 - 000000000 ____D C:\Users\manel\AppData\Local\Deployment
2019-05-11 13:11 - 2018-08-20 21:11 - 000000000 __SHD C:\Users\manel\IntelGraphicsProfiles
2019-05-11 13:10 - 2019-03-29 09:50 - 000000000 ____D C:\Program Files (x86)\Spybot - Search & Destroy 2
2019-05-11 13:10 - 2019-02-09 13:01 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2019-05-11 13:09 - 2018-09-15 08:09 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2019-05-11 11:34 - 2018-08-21 11:27 - 000000000 ____D C:\Users\manel\Desktop\PROGRAMAS
2019-05-11 11:28 - 2018-09-15 09:33 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2019-05-11 11:25 - 2018-08-20 21:13 - 000000000 ___RD C:\Users\manel\OneDrive
2019-05-11 11:11 - 2018-10-16 21:59 - 000000000 ____D C:\Program Files (x86)\Glary Utilities 5
2019-05-11 10:57 - 2018-08-22 10:28 - 000000000 ____D C:\Users\manel\AppData\Roaming\vlc
2019-05-11 10:43 - 2019-02-09 13:01 - 000003380 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2412839927-3900649023-1217178245-1001
2019-05-11 10:43 - 2019-02-09 12:54 - 000002401 _____ C:\Users\manel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2019-05-11 07:13 - 2019-01-22 09:17 - 000000000 ____D C:\Users\manel\AppData\Local\D3DSCache
2019-05-10 22:19 - 2018-09-15 09:33 - 000000000 ___HD C:\Program Files\WindowsApps
2019-05-10 22:19 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\AppReadiness
2019-05-10 13:18 - 2018-08-20 21:11 - 000000000 ____D C:\Users\manel\AppData\Local\Packages
2019-05-08 19:23 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\system32\NDF
2019-05-08 02:56 - 2018-08-28 16:43 - 000000000 ____D C:\Program Files (x86)\Dropbox
2019-05-07 22:49 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2019-05-06 23:22 - 2019-02-09 12:54 - 000000000 ____D C:\Users\manel
2019-05-06 23:10 - 2018-08-21 10:51 - 000000000 ____D C:\Program Files\Bitdefender
2019-05-04 19:16 - 2019-02-09 12:53 - 000474968 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2019-05-04 19:15 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\TextInput
2019-05-04 19:15 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\ShellExperiences
2019-05-04 19:15 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\bcastdvr
2019-05-04 15:52 - 2018-08-22 08:35 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2019-05-04 10:23 - 2018-09-15 09:23 - 000000000 ____D C:\WINDOWS\CbsTemp
2019-05-04 08:44 - 2018-08-21 12:43 - 000000000 ____D C:\Users\manel\AppData\Roaming\Mozilla
2019-05-04 08:44 - 2018-08-21 12:43 - 000000000 ____D C:\Users\manel\AppData\Local\Mozilla
2019-05-04 08:43 - 2018-08-21 12:43 - 000000000 ____D C:\Users\manel\AppData\LocalLow\Mozilla
2019-05-03 07:04 - 2019-01-26 10:13 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel
2019-05-03 07:04 - 2018-08-31 07:43 - 000000000 ____D C:\ProgramData\Package Cache
2019-05-03 07:03 - 2018-08-31 07:59 - 000000000 ____D C:\Program Files (x86)\Intel
2019-04-30 08:55 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\System
2019-04-29 19:58 - 2019-02-09 13:01 - 000004220 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{6BAB21CF-9C28-4CC7-87A7-8B1DF7862736}
2019-04-28 19:25 - 2018-08-28 08:19 - 000000000 ____D C:\Users\manel\Documents\MANEL
2019-04-28 18:59 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\system32\FxsTmp
2019-04-28 18:59 - 2018-08-30 15:02 - 000000198 _____ C:\Users\manel\AppData\Roaming\wklnhst.dat
2019-04-25 23:36 - 2018-08-28 16:51 - 000000000 ___RD C:\Users\manel\Dropbox
2019-04-25 12:13 - 2019-02-26 00:51 - 000000000 ____D C:\Users\manel\AppData\Local\BitTorrentHelper
2019-04-24 09:57 - 2018-08-20 18:49 - 000000000 ____D C:\Program Files\Intel
2019-04-24 09:50 - 2019-01-18 08:59 - 000000000 ____D C:\Program Files\Common Files\Intel
2019-04-22 23:13 - 2018-10-16 21:59 - 000001165 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Glary Utilities 5.lnk
2019-04-21 20:22 - 2018-08-22 09:33 - 000000000 ____D C:\WINDOWS\AutoKMS
2019-04-21 20:13 - 2019-02-11 23:21 - 000000000 ____D C:\Users\manel\AppData\Roaming\iMobie
2019-04-21 15:33 - 2018-08-22 08:21 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java Development Kit
2019-04-21 15:33 - 2018-08-22 08:21 - 000000000 ____D C:\Program Files\Java
2019-04-21 15:24 - 2018-08-20 19:31 - 000000000 ____D C:\Program Files\Elantech
2019-04-21 15:12 - 2018-08-20 18:49 - 000000000 ____D C:\WINDOWS\system32\DAX2
2019-04-21 15:11 - 2018-08-20 18:49 - 000522403 _____ C:\WINDOWS\system32\Drivers\rtkhdasetting.zip
2019-04-21 15:11 - 2018-08-20 18:49 - 000000000 ____D C:\WINDOWS\SysWOW64\RTCOM
2019-04-21 15:10 - 2018-08-20 18:49 - 000000000 ____D C:\WINDOWS\system32\DAX3
2019-04-21 14:31 - 2018-08-22 08:22 - 000000000 ____D C:\Users\manel\AppData\LocalLow\Sun
2019-04-21 12:30 - 2018-08-31 08:01 - 000017382 _____ C:\WINDOWS\system32\results.xml
2019-04-20 23:55 - 2019-02-12 23:05 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2019-04-18 11:04 - 2018-09-26 15:47 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller Pro
2019-04-16 11:17 - 2019-02-09 13:01 - 000004210 _____ C:\WINDOWS\System32\Tasks\CCleaner Update
2019-04-13 08:49 - 2019-04-10 17:15 - 000000000 ____D C:\Users\manel\Downloads\SANBRU HIVERN 2018
2019-04-13 07:50 - 2019-02-09 13:01 - 000003834 _____ C:\WINDOWS\System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473
==================== Files in the root of some directories =======
2018-08-30 15:02 - 2019-04-28 18:59 - 000000198 _____ () C:\Users\manel\AppData\Roaming\wklnhst.dat
==================== SigCheck ===============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ============================
Un Saludo
Hola
No descargaste y ejecutaste FRST desde el escritorio como te indiqué, muévelo allí para realizar elsiguiente paso, si no fallará.
MUY Importante Realiza una copia de seguridad del registro :
-
Para hacerlo descarga DelFix.exe( en tu escritorio).
-
Doble clic para ejecutarlo.(Si usas Windows Vista/7/8 o 10 presiona clic derecho y selecciona -Ejecutar como Administrador-).
-
Atención, ahora marca/selecciona únicamente la casilla "Create registry backup", las demás NO.
-
Pulsar en Run.
Se abrirá el informe (DelFix.txt), guárdalo por si fuera necesario y cierra la herramienta.
A continuación inicia tu equipo desde el Modo Seguro de Windows sin función de red
Con los demás programas cerrados ve a Inicio Ejecutar y escribe Notepad.exe.
- Ahora debes copiar y pegar los códigos/líneas que están en el interior del recuadro de más abajo, dentro del Notepad.
START
CREATERESTOREPOINT:
CLOSEPROCESSES:
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [302904 2019-03-24] (Apple Inc. -> Apple Inc.)
HKLM\...\Run: [Nitro System Tray] => C:\Program Files\Nitro\Pro\12\nitro_pro_systray.exe [124000 2019-03-26] (Nitro Software, Inc. -> Nitro Software, Inc.)
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [5537600 2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
HKLM-x32\...\Run: [ControlCenter4] => C:\Program Files (x86)\ControlCenter4\BrCcBoot.exe [146584 2017-11-07] (Brother Industries, Ltd. -> Brother Industries, Ltd.)
HKLM-x32\...\Run: [BrStsMon00] => C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe [3076096 2012-06-06] (Brother Industries, Ltd.) [File not signed]
HKLM-x32\...\Run: [SDTray] => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe [6788032 2018-04-20] (Safer-Networking Ltd. -> Safer-Networking Ltd.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [645456 2019-04-01] (Oracle America, Inc. -> Oracle Corporation)
HKU\S-1-5-21-2412839927-3900649023-1217178245-1001\...\Run: [ACDSeeCommander18] => C:\Program Files (x86)\ACD Systems\ACDSee\18.0\ACDSeeCommander18.exe [1974280 2015-05-15] (ACD Systems International -> )
HKU\S-1-5-21-2412839927-3900649023-1217178245-1001\...\Run: [GUDelayStartup] => C:\Program Files (x86)\Glary Utilities 5\StartupManager.exe [44024 2019-04-22] (Glarysoft LTD -> Glarysoft Ltd)
HKU\S-1-5-21-2412839927-3900649023-1217178245-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [22515488 2019-04-04] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-2412839927-3900649023-1217178245-1001\...\Run: [Moveslink2] => C:\Users\manel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Suunto\Moveslink2.appref-ms -auto
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\74.0.3729.131\Installer\chrmstp.exe [2019-05-07] (Google LLC -> Google Inc.)
Task: {02ADB863-0DC1-4BCD-A762-11DA31472A42} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Scan the system => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDScan.exe [7651984 2018-04-20] (Safer-Networking Ltd. -> Safer-Networking Ltd.)
Task: {0B2F372B-A0CD-457E-AF7A-A3CDA2EBE3A6} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [619416 2019-04-04] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {0B66A3E5-10AA-43DE-BF41-07382C7A623F} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Check for updates => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe [6944304 2018-04-20] (Safer-Networking Ltd. -> Safer-Networking Ltd.)
Task: {2F2EFD1C-0D0A-43E3-82FC-2EBC8ED544FB} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [16509040 2019-04-04] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {3A2DB1EF-3C82-419C-B401-BEB157E697F1} - System32\Tasks\klcp_update => CodecTweakTool.exe
Task: {77EFE297-B64B-4A73-9010-1A960B47CE9B} - System32\Tasks\USER_ESRV_SVC_QUEENCREEK => "C:\WINDOWS\System32\Wscript.exe" //B //NoLogo "C:\Program Files\Intel\SUR\QUEENCREEK\x64\task.vbs"
Task: {87F8CCFD-060A-406D-B637-92DF66AAB42C} - System32\Tasks\EOSv3 Scheduler onLogOn => C:\Users\manel\Downloads\esetonlinescanner_esn.exe
Task: {A6BBAF40-96A8-47DF-A70F-96A3A064BB25} - System32\Tasks\EOSv3 Scheduler onTime => C:\Users\manel\Downloads\esetonlinescanner_esn.exe
Task: {F8FB3F55-C473-4369-81EC-38A1106CC828} - System32\Tasks\AutoKMS => C:\Windows\AutoKMS\AutoKMS.exe
Task: {FEA24066-CC12-4DFC-9AFF-A6BAFFF0BC2E} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Refresh immunization => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDImmunize.exe [7192192 2018-04-20] (Safer-Networking Ltd. -> Safer-Networking Ltd.)
BHO: No Name -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> No File
Toolbar: HKLM - Bitdefender Wallet - {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} - C:\Program Files\Bitdefender\Bitdefender Security\pmbxie.dll [2019-04-09] (Bitdefender SRL -> Bitdefender)
Toolbar: HKLM-x32 - Bitdefender Wallet - {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} - C:\Program Files\Bitdefender\Bitdefender Security\Antispam32\pmbxie.dll [2019-04-09] (Bitdefender SRL -> Bitdefender)
Toolbar: HKU\S-1-5-21-2412839927-3900649023-1217178245-1001 -> Bitdefender Wallet - {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} - C:\Program Files\Bitdefender\Bitdefender Security\pmbxie.dll [2019-04-09] (Bitdefender SRL -> Bitdefender)
FF Extension: (Bitdefender Antispam Toolbar) - C:\Program Files\Bitdefender\Bitdefender Security\bdtbext [2018-10-29] [Legacy] [not signed]
CHR HomePage: Default -> hxxp://search.babylon.com/?affID=110823&tt=120912_pcp_3812_4&babsrc=HP_ss&mntrId=127b4935000000000000446d57d07669
CHR Extension: (Chrome Media Router) - C:\Users\manel\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-05-10]
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => -> No File
ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => -> No File
ContextMenuHandlers1: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> No File
ContextMenuHandlers2: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => -> No File
ContextMenuHandlers3: [OptaneContextMenu] -> {AD7EBB13-617D-3270-8FA8-46583499C4FB} => C:\Program Files\Intel\OptaneShellExtensions\OptaneShellExt.dll [2019-02-12] () [File not signed]
ContextMenuHandlers3: [{4A7C4306-57E0-4C0C-83A9-78C1528F618C}] -> {4A7C4306-57E0-4C0C-83A9-78C1528F618C} => -> No File
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => -> No File
ContextMenuHandlers4: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} => -> No File
ContextMenuHandlers6: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> No File
ContextMenuHandlers6: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} => -> No File
AlternateDataStreams: C:\Windows:nlsPreferences [386]
HOSTS:
REMOVEPROXY:
EMPTYTEMP:
CMD: netsh winsock reset
CMD: ipconfig /renew
CMD: ipconfig /flushdns
CMD: bitsadmin /reset /allusers
CMD: netsh advfirewall reset
CMD: netsh advfirewall set allprofiles state ON
CMD: netsh int ipv4 reset
CMD: netsh int ipv6 reset
END
Guárdalo bajo el nombre de FIXLIST.TXT en el escritorio Esto es muy importante.
Nota Es importante que la herramienta FRST.exe (Farbar Recovery Scanner Tool) y FIXLIST.TXT se encuentren en la misma ubicación (escritorio) o si no, no trabajara.
- Ejecuta FRST.exe.(Si usas Windows Vista/7/8 o 10, presiona clic derecho y seleccionas -Ejecutar como Administrador-).
- Presionar el botón FIX y aguardar a que termine.
- La Herramienta guardara el reporte de reparación en el escritorio (FIXLOG.TXT).
Pega el contenido de este fichero en tu próxima respuesta.
Reiniciar el equipo y comprobar su funcionamiento en relación al problema planteado y comentarlo.
Un saludo
Hola, ahora si que lo he hecho todo desde el escritorio
Fix result of Farbar Recovery Scan Tool (x64) Version: 11-05.2019
Ran by manel (12-05-2019 20:18:25) Run:1
Running from C:\Users\manel\Desktop
Loaded Profiles: manel (Available Profiles: manel)
Boot Mode: Safe Mode (minimal)
==============================================
fixlist content:
*****************
START
CREATERESTOREPOINT:
CLOSEPROCESSES:
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [302904 2019-03-24] (Apple Inc. -> Apple Inc.)
HKLM\...\Run: [Nitro System Tray] => C:\Program Files\Nitro\Pro\12\nitro_pro_systray.exe [124000 2019-03-26] (Nitro Software, Inc. -> Nitro Software, Inc.)
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [5537600 2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
HKLM-x32\...\Run: [ControlCenter4] => C:\Program Files (x86)\ControlCenter4\BrCcBoot.exe [146584 2017-11-07] (Brother Industries, Ltd. -> Brother Industries, Ltd.)
HKLM-x32\...\Run: [BrStsMon00] => C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe [3076096 2012-06-06] (Brother Industries, Ltd.) [File not signed]
HKLM-x32\...\Run: [SDTray] => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe [6788032 2018-04-20] (Safer-Networking Ltd. -> Safer-Networking Ltd.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [645456 2019-04-01] (Oracle America, Inc. -> Oracle Corporation)
HKU\S-1-5-21-2412839927-3900649023-1217178245-1001\...\Run: [ACDSeeCommander18] => C:\Program Files (x86)\ACD Systems\ACDSee\18.0\ACDSeeCommander18.exe [1974280 2015-05-15] (ACD Systems International -> )
HKU\S-1-5-21-2412839927-3900649023-1217178245-1001\...\Run: [GUDelayStartup] => C:\Program Files (x86)\Glary Utilities 5\StartupManager.exe [44024 2019-04-22] (Glarysoft LTD -> Glarysoft Ltd)
HKU\S-1-5-21-2412839927-3900649023-1217178245-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [22515488 2019-04-04] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-2412839927-3900649023-1217178245-1001\...\Run: [Moveslink2] => C:\Users\manel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Suunto\Moveslink2.appref-ms -auto
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\74.0.3729.131\Installer\chrmstp.exe [2019-05-07] (Google LLC -> Google Inc.)
Task: {02ADB863-0DC1-4BCD-A762-11DA31472A42} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Scan the system => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDScan.exe [7651984 2018-04-20] (Safer-Networking Ltd. -> Safer-Networking Ltd.)
Task: {0B2F372B-A0CD-457E-AF7A-A3CDA2EBE3A6} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [619416 2019-04-04] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {0B66A3E5-10AA-43DE-BF41-07382C7A623F} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Check for updates => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe [6944304 2018-04-20] (Safer-Networking Ltd. -> Safer-Networking Ltd.)
Task: {2F2EFD1C-0D0A-43E3-82FC-2EBC8ED544FB} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [16509040 2019-04-04] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {3A2DB1EF-3C82-419C-B401-BEB157E697F1} - System32\Tasks\klcp_update => CodecTweakTool.exe
Task: {77EFE297-B64B-4A73-9010-1A960B47CE9B} - System32\Tasks\USER_ESRV_SVC_QUEENCREEK => "C:\WINDOWS\System32\Wscript.exe" //B //NoLogo "C:\Program Files\Intel\SUR\QUEENCREEK\x64\task.vbs"
Task: {87F8CCFD-060A-406D-B637-92DF66AAB42C} - System32\Tasks\EOSv3 Scheduler onLogOn => C:\Users\manel\Downloads\esetonlinescanner_esn.exe
Task: {A6BBAF40-96A8-47DF-A70F-96A3A064BB25} - System32\Tasks\EOSv3 Scheduler onTime => C:\Users\manel\Downloads\esetonlinescanner_esn.exe
Task: {F8FB3F55-C473-4369-81EC-38A1106CC828} - System32\Tasks\AutoKMS => C:\Windows\AutoKMS\AutoKMS.exe
Task: {FEA24066-CC12-4DFC-9AFF-A6BAFFF0BC2E} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Refresh immunization => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDImmunize.exe [7192192 2018-04-20] (Safer-Networking Ltd. -> Safer-Networking Ltd.)
BHO: No Name -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> No File
Toolbar: HKLM - Bitdefender Wallet - {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} - C:\Program Files\Bitdefender\Bitdefender Security\pmbxie.dll [2019-04-09] (Bitdefender SRL -> Bitdefender)
Toolbar: HKLM-x32 - Bitdefender Wallet - {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} - C:\Program Files\Bitdefender\Bitdefender Security\Antispam32\pmbxie.dll [2019-04-09] (Bitdefender SRL -> Bitdefender)
Toolbar: HKU\S-1-5-21-2412839927-3900649023-1217178245-1001 -> Bitdefender Wallet - {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} - C:\Program Files\Bitdefender\Bitdefender Security\pmbxie.dll [2019-04-09] (Bitdefender SRL -> Bitdefender)
FF Extension: (Bitdefender Antispam Toolbar) - C:\Program Files\Bitdefender\Bitdefender Security\bdtbext [2018-10-29] [Legacy] [not signed]
CHR HomePage: Default -> hxxp://search.babylon.com/?affID=110823&tt=120912_pcp_3812_4&babsrc=HP_ss&mntrId=127b4935000000000000446d57d07669
CHR Extension: (Chrome Media Router) - C:\Users\manel\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-05-10]
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => -> No File
ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => -> No File
ContextMenuHandlers1: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> No File
ContextMenuHandlers2: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => -> No File
ContextMenuHandlers3: [OptaneContextMenu] -> {AD7EBB13-617D-3270-8FA8-46583499C4FB} => C:\Program Files\Intel\OptaneShellExtensions\OptaneShellExt.dll [2019-02-12] () [File not signed]
ContextMenuHandlers3: [{4A7C4306-57E0-4C0C-83A9-78C1528F618C}] -> {4A7C4306-57E0-4C0C-83A9-78C1528F618C} => -> No File
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => -> No File
ContextMenuHandlers4: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} => -> No File
ContextMenuHandlers6: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> No File
ContextMenuHandlers6: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} => -> No File
AlternateDataStreams: C:\Windows:nlsPreferences [386]
HOSTS:
REMOVEPROXY:
EMPTYTEMP:
CMD: netsh winsock reset
CMD: ipconfig /renew
CMD: ipconfig /flushdns
CMD: bitsadmin /reset /allusers
CMD: netsh advfirewall reset
CMD: netsh advfirewall set allprofiles state ON
CMD: netsh int ipv4 reset
CMD: netsh int ipv6 reset
END
*****************
Error: Restore point can only be created in normal mode.
Processes closed successfully.
"HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\iTunesHelper" => removed successfully
"HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\Nitro System Tray" => removed successfully
"HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\Dropbox" => removed successfully
"HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\ControlCenter4" => removed successfully
"HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\BrStsMon00" => removed successfully
"HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\SDTray" => removed successfully
"HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\SunJavaUpdateSched" => removed successfully
"HKU\S-1-5-21-2412839927-3900649023-1217178245-1001\Software\Microsoft\Windows\CurrentVersion\Run\\ACDSeeCommander18" => removed successfully
"HKU\S-1-5-21-2412839927-3900649023-1217178245-1001\Software\Microsoft\Windows\CurrentVersion\Run\\GUDelayStartup" => removed successfully
"HKU\S-1-5-21-2412839927-3900649023-1217178245-1001\Software\Microsoft\Windows\CurrentVersion\Run\\CCleaner Smart Cleaning" => removed successfully
"HKU\S-1-5-21-2412839927-3900649023-1217178245-1001\Software\Microsoft\Windows\CurrentVersion\Run\\Moveslink2" => removed successfully
HKLM\Software\Microsoft\Active Setup\Installed Components\{8A69D345-D564-463c-AFF1-A69D9E530F96} => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{02ADB863-0DC1-4BCD-A762-11DA31472A42}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{02ADB863-0DC1-4BCD-A762-11DA31472A42}" => removed successfully
C:\WINDOWS\System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Scan the system => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Safer-Networking\Spybot - Search and Destroy\Scan the system" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Boot\{0B2F372B-A0CD-457E-AF7A-A3CDA2EBE3A6}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{0B2F372B-A0CD-457E-AF7A-A3CDA2EBE3A6}" => removed successfully
C:\WINDOWS\System32\Tasks\CCleaner Update => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\CCleaner Update" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{0B66A3E5-10AA-43DE-BF41-07382C7A623F}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{0B66A3E5-10AA-43DE-BF41-07382C7A623F}" => removed successfully
C:\WINDOWS\System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Check for updates => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Safer-Networking\Spybot - Search and Destroy\Check for updates" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{2F2EFD1C-0D0A-43E3-82FC-2EBC8ED544FB}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{2F2EFD1C-0D0A-43E3-82FC-2EBC8ED544FB}" => removed successfully
C:\WINDOWS\System32\Tasks\CCleanerSkipUAC => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\CCleanerSkipUAC" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{3A2DB1EF-3C82-419C-B401-BEB157E697F1}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{3A2DB1EF-3C82-419C-B401-BEB157E697F1}" => removed successfully
C:\WINDOWS\System32\Tasks\klcp_update => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\klcp_update" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{77EFE297-B64B-4A73-9010-1A960B47CE9B}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{77EFE297-B64B-4A73-9010-1A960B47CE9B}" => removed successfully
C:\WINDOWS\System32\Tasks\USER_ESRV_SVC_QUEENCREEK => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\USER_ESRV_SVC_QUEENCREEK" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{87F8CCFD-060A-406D-B637-92DF66AAB42C}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{87F8CCFD-060A-406D-B637-92DF66AAB42C}" => removed successfully
C:\WINDOWS\System32\Tasks\EOSv3 Scheduler onLogOn => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\EOSv3 Scheduler onLogOn" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{A6BBAF40-96A8-47DF-A70F-96A3A064BB25}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{A6BBAF40-96A8-47DF-A70F-96A3A064BB25}" => removed successfully
C:\WINDOWS\System32\Tasks\EOSv3 Scheduler onTime => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\EOSv3 Scheduler onTime" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Boot\{F8FB3F55-C473-4369-81EC-38A1106CC828}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{F8FB3F55-C473-4369-81EC-38A1106CC828}" => removed successfully
C:\WINDOWS\System32\Tasks\AutoKMS => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\AutoKMS" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{FEA24066-CC12-4DFC-9AFF-A6BAFFF0BC2E}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{FEA24066-CC12-4DFC-9AFF-A6BAFFF0BC2E}" => removed successfully
C:\WINDOWS\System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Refresh immunization => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Safer-Networking\Spybot - Search and Destroy\Refresh immunization" => removed successfully
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF} => removed successfully
HKLM\Software\Classes\CLSID\{B4F3A835-0E21-4959-BA22-42B3008E02FF} => removed successfully
"HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar\\{1DAC0C53-7D23-4AB3-856A-B04D98CD982A}" => removed successfully
HKLM\Software\Classes\CLSID\{1DAC0C53-7D23-4AB3-856A-B04D98CD982A} => removed successfully
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar\\{1DAC0C53-7D23-4AB3-856A-B04D98CD982A}" => removed successfully
HKLM\Software\Wow6432Node\Classes\CLSID\{1DAC0C53-7D23-4AB3-856A-B04D98CD982A} => removed successfully
"HKU\S-1-5-21-2412839927-3900649023-1217178245-1001\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{1DAC0C53-7D23-4AB3-856A-B04D98CD982A}" => removed successfully
HKLM\Software\Classes\CLSID\{1DAC0C53-7D23-4AB3-856A-B04D98CD982A} => not found
C:\Program Files\Bitdefender\Bitdefender Security\bdtbext => moved successfully
"Chrome HomePage" => removed successfully
CHR Extension: (Chrome Media Router) - C:\Users\manel\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-05-10] => Error: No automatic fix found for this entry.
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\7-Zip => removed successfully
HKLM\Software\Classes\CLSID\{23170F69-40C1-278A-1000-000100020000} => not found
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\ANotepad++64 => removed successfully
HKLM\Software\Classes\CLSID\{B298D29A-A6ED-11DE-BA8C-A68E55D89593} => not found
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\BriefcaseMenu => removed successfully
"HKLM\Software\Classes\CLSID\{85BBD920-42A0-1069-A2E4-08002B30309D}" => removed successfully
HKLM\Software\Classes\Drive\ShellEx\ContextMenuHandlers\MEGA (Context menu) => removed successfully
HKLM\Software\Classes\CLSID\{0229E5E7-09E9-45CF-9228-0228EC7D5F17} => not found
HKLM\Software\Classes\AllFileSystemObjects\ShellEx\ContextMenuHandlers\OptaneContextMenu => removed successfully
HKLM\Software\Classes\CLSID\{AD7EBB13-617D-3270-8FA8-46583499C4FB} => removed successfully
HKLM\Software\Classes\AllFileSystemObjects\ShellEx\ContextMenuHandlers\{4A7C4306-57E0-4C0C-83A9-78C1528F618C} => removed successfully
HKLM\Software\Classes\CLSID\{4A7C4306-57E0-4C0C-83A9-78C1528F618C} => not found
HKLM\Software\Classes\Directory\ShellEx\ContextMenuHandlers\7-Zip => removed successfully
HKLM\Software\Classes\CLSID\{23170F69-40C1-278A-1000-000100020000} => not found
HKLM\Software\Classes\Directory\ShellEx\ContextMenuHandlers\Offline Files => removed successfully
HKLM\Software\Classes\CLSID\{474C98EE-CF3D-41f5-80E3-4AAB0AB04301} => not found
HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers\BriefcaseMenu => removed successfully
HKLM\Software\Classes\CLSID\{85BBD920-42A0-1069-A2E4-08002B30309D} => not found
HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers\Offline Files => removed successfully
HKLM\Software\Classes\CLSID\{474C98EE-CF3D-41f5-80E3-4AAB0AB04301} => not found
C:\Windows => ":nlsPreferences" ADS removed successfully
C:\Windows\System32\Drivers\etc\hosts => moved successfully
Hosts restored successfully.
========= RemoveProxy: =========
"HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings" => removed successfully
"HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings" => removed successfully
"HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings" => removed successfully
"HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings" => removed successfully
"HKU\S-1-5-21-2412839927-3900649023-1217178245-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings" => removed successfully
"HKU\S-1-5-21-2412839927-3900649023-1217178245-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings" => removed successfully
========= End of RemoveProxy: =========
========= netsh winsock reset =========
El cat logo Winsock se restableci¢ correctamente.
Debe reiniciar el equipo para completar el restablecimiento.
========= End of CMD: =========
========= ipconfig /renew =========
Configuraci¢n IP de Windows
========= End of CMD: =========
========= ipconfig /flushdns =========
Configuraci¢n IP de Windows
No se puede vaciar la cach‚ de resoluci¢n de DNS: Error de una funci¢n durante la ejecuci¢n.
========= End of CMD: =========
========= bitsadmin /reset /allusers =========
BITSADMIN version 3.0
BITS administration utility.
(C) Copyright Microsoft Corp.
Unable to connect to BITS - 0x8007043c
El servicio no puede iniciarse en modo a prueba de errores
========= End of CMD: =========
========= netsh advfirewall reset =========
Error al intentar ponerse en contacto con el servicio Firewall de Windows Defender. Aseg£rate de que el servicio se est ejecutando e intenta la solicitud de nuevo.
========= End of CMD: =========
========= netsh advfirewall set allprofiles state ON =========
Error al intentar ponerse en contacto con el servicio Firewall de Windows Defender. Aseg£rate de que el servicio se est ejecutando e intenta la solicitud de nuevo.
========= End of CMD: =========
========= netsh int ipv4 reset =========
No hay valores configurados por el usuario para restablecer.
========= End of CMD: =========
========= netsh int ipv6 reset =========
No hay valores configurados por el usuario para restablecer.
========= End of CMD: =========
=========== EmptyTemp: ==========
BITS transfer queue => 10248192 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 20001856 B
Java, Flash, Steam htmlcache => 1154 B
Windows/system/drivers => 700264 B
Edge => 68660 B
Chrome => 13948664 B
Firefox => 0 B
Opera => 214062 B
Temp, IE cache, history, cookies, recent:
Default => 0 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 15472 B
LocalService => 0 B
NetworkService => 0 B
NetworkService => 0 B
manel => 19232655 B
RecycleBin => 2565772 B
EmptyTemp: => 63.9 MB temporary data Removed.
================================
The system needed a reboot.
==== End of Fixlog 20:19:29 ====
Un Saludo
Hola
Como sigue el problema.
Un saludo
Hola, desde que he enviado el último informe hace 1 hora, fixlog.txt, sigue todo igual. he pasado un escaneo con Malwarebytes y otro con AwdCleaner y continuan detectando el mismo problema.
Un Saludo
Hola Daniela, El problema continua igual. Cada vez que ejecuto AdwCleaner o Malwarebytes me detecta el archivo PVP.OPTIONAL.BABYLON. Espero tus instrucciones. gracias.
Un Saludo
Hola, Continua todo igual. me podéis ayudar, por favor ? Gracias.
Un Saludo
Hola
Realiza un análisis con EsetOnline como se indica en este manual:
Pega el reporte y comenta como sigue el problema.
Un saludo
Hola, adjunto informe de Eset Online Scanner
07:11:45 # product=EOS
# version=8
# ESETOnlineScanner_ESL.exe=3.0.17.0
# country="Spain"
# lang=13322
07:12:05 # product=EOS
# version=8
# flags=0
# av=0
# fw=7
# admin=0
# ESETOnlineScanner_ESL.exe=3.0.17.0
# EOSSerial=005804b49dabf7429d715ecf55b097d6
# engine=0
# end=finished
# bannerClicked=0
# remove_checked=false
# archives_checked=false
# unwanted_checked=false
# unsafe_checked=false
# antistealth_checked=false
# sfx_checked=false
# utc_time=2019-05-15 05:12:05
# local_time=2019-05-15 07:12:05 (+0100, Hora de verano romance)
# country="Spain"
# lang=13322
# osver=10.0.17763 NT
# compatibility_mode_1='Bitdefender Antivirus'
# compatibility_mode=2079 16777213 83 92 851 33777293 0 0
# compatibility_mode_1=''
# compatibility_mode=5893 16776574 100 88 6427570 20900619 0 0
# scanned=0
# found=0
# cleaned=0
# scan_time=0
# flow=2019-05-15 07:11:45|scr|home|2019-05-15 07:11:54|promo|ems
# periodic=1,1
# stats_enabled=-2147446767
# scan_type=20241656
07:12:06 Call m_esets_charon_send
07:12:06 Call m_esets_charon_destroy
07:12:44 # product=EOS
# version=8
# ESETOnlineScanner_ESL.exe=3.0.17.0
# country="Spain"
# lang=13322
07:16:16 Updating
07:16:16 Update Init
07:16:27 Update Download
07:17:03 esets_scanner_reload returned 0
07:17:03 g_uiModuleBuild: 41398
07:17:03 Update Finalize
07:17:03 Call m_esets_charon_send
07:17:03 Call m_esets_charon_destroy
07:17:04 Updated modules version: 41398
07:17:14 Call m_esets_charon_setup_create
07:17:14 Call m_esets_charon_create
07:17:14 m_esets_charon_create OK
07:17:14 Call m_esets_charon_start_send_thread
07:17:14 Call m_esets_charon_setup_set
07:17:14 m_esets_charon_setup_set OK
07:17:14 Scanner engine: 41398
08:24:59 # product=EOS
# version=8
# flags=0
# av=0
# fw=7
# admin=1
# ESETOnlineScanner_ESL.exe=3.0.17.0
# EOSSerial=005804b49dabf7429d715ecf55b097d6
# engine=41398
# end=finished
# bannerClicked=0
# remove_checked=true
# archives_checked=true
# unwanted_checked=true
# unsafe_checked=true
# antistealth_checked=true
# sfx_checked=true
# utc_time=2019-05-15 06:24:59
# local_time=2019-05-15 08:24:59 (+0100, Hora de verano romance)
# country="Spain"
# lang=13322
# osver=10.0.17763 NT
# compatibility_mode_1='Bitdefender Antivirus'
# compatibility_mode=2079 16777213 83 92 5225 33781667 0 0
# compatibility_mode_1=''
# compatibility_mode=5893 16776574 100 88 6431944 20904993 0 0
# scanned=385599
# found=2
# cleaned=2
# scan_time=3628
# flow=2019-05-15 07:12:44|scr|home|2019-05-15 07:12:50|promo|eis|2019-05-15 07:14:50|scr|scan_type|2019-05-15 07:14:52|scr|custom_target|2019-05-15 07:15:10|scr|pua|2019-05-15 07:15:29|scr|adv_settings|2019-05-15 07:15:48|scr|pua|2019-05-15 07:16:06|scr|updating|2019-05-15 07:17:04|scr|scanning|2019-05-15 08:17:33|scr|all_cleaned|2019-05-15 08:22:52|click|save_report|2019-05-15 08:23:28|scr|report_cleaned|2019-05-15 08:23:28|click|resolved_detections|2019-05-15 08:24:00|scr|periodic_offer|2019-05-15 08:24:39|scr|periodic_activated|2019-05-15 08:24:49|scr|upsell|2019-05-15 08:24:53|scr|thanks_short
# periodic=1,1
# stats_enabled=0
# scan_type=3
sh=79521E73A44B6CF6AAB0E3141A75912B2C0F5314 ft=1 fh=0000000003ecec88 vn="una variante de Win32/HostsEditor.A aplicación potencialmente no segura (desinfectado por eliminación)" ac=C fn="C:\Users\manel\Documents\MANEL\MalwareBytes\Malwarebytes Premium 3.7.1.exe"
sh=79521E73A44B6CF6AAB0E3141A75912B2C0F5314 ft=1 fh=0000000003ecec88 vn="una variante de Win32/HostsEditor.A aplicación potencialmente no segura (desinfectado por eliminación)" ac=C fn="C:\Users\manel\OneDrive\Programas\Malwarebytes\Malwarebytes Premium 3.7.1.exe"
08:25:00 Call m_esets_charon_send
08:25:00 Call m_esets_charon_destroy
08:25:00 Call m_esets_charon_send
08:25:00 Call m_esets_charon_destroy
08:28:39 # product=EOS
# version=8
# ESETOnlineScanner_ESL.exe=3.0.17.0
# country="Spain"
# lang=13322
Espero haberlo hecho bien.
Un Saludo
Hola, El problema continua igual. Cuando escaneo con Malwarebytes y con Adwcleaner me detectan como programa potencialmente no deseado a PVP.OPTIONAL.BABYLON.
Un Saludo
Hola, Continua todo igual. Puedes indicarme que hacer para eliminar los archivos que me detectan como potencialmente maliciosos ? gracias.
Un saludo
Hola
Restablece todos los navegadores como se indica en esta guía :
Guía de cómo eliminar Adwares/PUPs
Comenta como sigue el problema.
Un saludo